In this article
| Table of Contents | ||||||
|---|---|---|---|---|---|---|
|
Overview
This account is used by the Snaps in the Google Analytics Snap Pack.
| Note | ||
|---|---|---|
| ||
In the 4.23 release, we have migrated to a new Google OAuth application that the Google Analytics Snap Pack uses when authorizing and authenticating users. The new OAuth application is verified by Google and should not result in warnings any longer for new user authorizations. Although existing accounts should work without modification, we recommend you to either create new Google Analytics Snap Accounts or manually re-authorize existing accounts by clicking the Authorize button to migrate to the new verified client. |
You can create an account from Designer or Manager. In Designer, when working on pipelines, every Snap that needs an account prompts you to create a new account or use an existing account. The accounts can be created in or used from:
- Your private project folder: This folder contains the pipelines that will use the account.
- Your Project Space’s shared folder: This folder is accessible to all the users that belong to the Project Space.
- The global shared folder: This folder is accessible to all the users within an organization in the SnapLogic instance.
Account Configuration
In Manager, you can navigate to the required folder and create an account in it (see Accounts). To create an account for Analytics (Google) OAuth2:
- Click Create, then select Analytics > Google OAuth2 or Google Dynamic OAuth2.
- Google OAuth2:
- Supply an account label.
- Click Authorize. You will be asked to login into a Google account. Login with user credentials, after successfully login user will be asked to provide few steps for permissions.User has to allow permissions to make a connection.
- Google Dynamic OAuth2:
- Provide a valid access token to make requests against OAuth2 enabled endpoints. The token can be a pipeline parameter.
- (Optional) Supply additional information on this account in the Notes field of the Info tab.
- Click Apply.
Account Types
Google OAuth2
Label | Required. User provided label for the account instance | |
|---|---|---|
Access token | Required. The access token for the application. The retrieval of the access token is done when setting up the account for the endpoint. There, the OAuth2 flow will be executed and the resulting access token will be stored in this property. The access token might be refreshable, in that case an optional refresh token can be stored. The user must get a new access token if the access token has expired and no refresh token was defined or both the access and the refresh token have expired. | |
| Refresh token | The refresh token for the application. The retrieval of the refresh token is done when setting up the account for the endpoint. There, the OAuth2 flow will be executed and the resulting refresh token can be stored in this property. If the refresh token is stored, then the access token can be refreshed automatically before it expires. | |
| Access token expiration | The access token expiration value. | |
OAuth2 Endpoint | Required. Authorization endpoint to authorize the application. Default value: https://accounts.google.com/o/oauth2/auth | |
OAuth2 Token | Required. Token endpoint to get the access token. Default value: https://accounts.google.com/o/oauth2/token | |
| Auth endpoint config | Provides custom properties for the OAuth2 auth endpoint. | |
Access type | The access type for the token, if offline, then it will be persisted in the account | |
Approval prompt | The approval type for the token. Default value: force | |
Application scope | The scope for the applications execution. As an example, the Snap could define that only a read of data by the application should be allowed. Default value: https://www.googleapis.com/auth/analytics.readonly | |
| Refresh | Refresh access token. Available after the account has been saved. | |
| Auto-refresh token | Refreshes the token automatically using the refresh token if the property is enabled. Otherwise the token might expire and will not be automatically refreshed. | |
| Authorize | Starts the OAuth authorization flow. Account will be saved before authorize. | |
Account Encryption
| Standard Encryption | If you are using Standard Encryption, the High sensitivity settings under Enhanced Encryption are followed. | |
|---|---|---|
| Enhanced Encryption | If you have the Enhanced Account Encryption feature, the following describes which fields are encrypted for each sensitivity level selected per each account. Account:
| |
Google Dynamic OAuth2
Label | Required. User provided label for the account instance | |
|---|---|---|
Access token | Required. The access token for the application. The provided token will be passed as 'Authorization: bearer <access_token_value> to the Snap if 'Header authenticated' property is enabled. Some endpoints require an uppercase letter for Bearer, then the property value for the token must be provided as 'Bearer <access_token_value>' for the access token property value. The access token is not refreshable, but can be passed as a pipeline parameter. | |
Account Encryption
| Standard Encryption | If you are using Standard Encryption, the High sensitivity settings under Enhanced Encryption are followed. | |
|---|---|---|
| Enhanced Encryption | If you have the Enhanced Account Encryption feature, the following describes which fields are encrypted for each sensitivity level selected per each account. Account:
| |
See Also
| Insert excerpt | ||||||
|---|---|---|---|---|---|---|
|