Create or select a Google Cloud project
To use the Google Merchant API with OAuth 2.0, you need a Google Cloud project.
Sign in to Google Cloud
Sign in to your Google Cloud Console.
Enable the Merchant API
Enable the Merchant API for your project. This step is required whether you created a new project or selected an existing one.
Configure Google Auth Platform
Before creating OAuth credentials, ensure Google Auth Platform is configured.
Navigate to Google Auth Platform
In the Google Cloud Console, go to APIs & Services > OAuth consent screen. This will open the Google Auth Platform dashboard.
Start configuration
If you have already configured Auth Platform (the OAuth Overview page with usage metrics is shown), skip this step and navigate to the Branding page from the sidebar. Otherwise, you will see a Get started button — click it to begin the configuration process.
Enter app information
Fill in the required fields for your application.
- App name: Enter a name for your application (e.g., StackOne Integration).
- User support email: Select an email for user inquiries.
- Click Next to continue.
Select audience
Choose the appropriate user type for your application.
- Internal: Only users within your Google Workspace organization can authorize (no app verification required).
- External: Any Google account can authorize (requires app verification for production use).
- Click Next to continue.
Enter contact information
Provide email addresses for Google to notify you about any changes to your project. Click Next to continue.
Configure scopes
In Google Auth Platform, go to Data Access and click Add or Remove Scopes to configure the OAuth scopes your application needs. All three scopes below are required — userinfo.email is what lets the connector read the OAuth user’s email at connect time to bootstrap the one-time GCP developer registration (without it, the consent screen will not return the email, and Google will not auto-grant the API_DEVELOPER role).
Add scopes
Add all three Google scopes listed below. Omitting userinfo.email will cause the first-connect test to skip the auto-grant and require the API Developer role to be assigned manually.
Select scopes from the list
In the Update selected scopes side panel that opens, check the required scopes from the list. openid and https://www.googleapis.com/auth/userinfo.email typically appear under Sensitive scopes (or Your sensitive scopes); https://www.googleapis.com/auth/content is the Merchant API scope.
Manually add scopes (if needed)
If a required scope is not shown in the list (most commonly https://www.googleapis.com/auth/content), use the Manually add scopes section.
- Enter the full scope URL in the input field.
- Click Add to table.
Apply and save
Confirm and persist your scope configuration.
- Click Update to apply the selected scopes. The side panel will close.
- On the Data Access page, click Save to persist the scope configuration.
- If you are updating an existing OAuth client (not creating a new one), end users on existing connections must re-authenticate to grant the new
userinfo.emailscope — otherwise the test action will still receive an empty email.
Create OAuth 2.0 client credentials
Set up OAuth client credentials to authenticate with the Google Merchant API. If you already have an existing OAuth 2.0 client, you can reuse it by adding the StackOne redirect URI and generating a new secret.
Option A — Create a new OAuth client
Skip this step if you are using an existing client.
- Click + Create Credentials and select OAuth client ID.
- Select Web application as the application type.
- Enter a Name for your OAuth client (e.g., StackOne Merchant Integration).
- Under Authorized redirect URIs, click Add URI and enter
https://api.stackone.com/connect/oauth2/googleshopping/callback. - Click Create. A dialog will display your Client ID and Client Secret — copy and store them securely.
Option B — Use an existing OAuth client
Skip this step if you created a new client above.
- Click on your existing OAuth 2.0 client ID from the list.
- Under Authorized redirect URIs, click Add URI, enter
https://api.stackone.com/connect/oauth2/googleshopping/callback, and click Save. - Under Client secrets, click + Add secret to generate a new secret. Copy it and store it securely — it will not be shown again.
- Your Client ID is shown on the same page under Additional information.
Add the authenticating user to Merchant Center
The Google account that completes the OAuth consent must already exist in the target Merchant Center account with Admin access. Without it, the connector’s on-connect developer registration fails with 401 PERMISSION_DENIED_ACCOUNTS.
Add or verify the user
In the Merchant Center UI, open Settings > Access and services > People and access and confirm the Google account that will complete the OAuth consent appears in the People table with role Admin and status Verified. If it is missing, click Add person to invite it as an Admin and have the invitee accept before continuing.
Creating the StackOne Connector Profile
To create the Connector Profile in StackOne for Google Shopping:Navigate to Connector Profiles