Skip to main content

Setting up Google authentication for your native mobile app

Written by Sofia Maconi
Updated over a week ago

Adding Google sign-in to your native mobile app lets users log in or sign up with their existing Google account — no extra password required. This guide walks you through everything you need: installing the plugin, configuring your Google credentials, and wiring up the login workflow in your native app.

What you'll need

  • A Bubble app with a native mobile app set up

  • A Google Cloud account to generate your API credentials

  • The Bubble-made Google plugin installed in your app

How Google auth works in Bubble native mobile

Google auth in a native mobile app works differently from the web. Bubble's Native Mobile Beta uses a browser-based OAuth redirect flow — not a true native Google SDK integration. Here's what happens when a user taps "Sign in with Google":

  1. The user taps "Sign in with Google" in your native app.

  2. Bubble opens a web browser (in-app or system) pointed at your Bubble web app's OAuth endpoint.

  3. Google handles authentication there.

  4. Google redirects back to your app via the Bubble redirect URI (/api/1.1/oauth_redirect).

  5. The user is logged in and returned to the native app, still authenticated.

⚠️ Don't use the standard "Sign up/in with OAuth provider" action in your native app — this causes Error 400 and redirect mismatches on mobile.

The dynamic ?on_login=... parameter Bubble appends can't be pre-registered in Google Cloud Console. Use the Signup/login with a web browser action instead (covered in Step 4).

Step 1: Install the Google plugin

  1. In the Bubble editor, open the Plugins tab and click Install new plugins.

  2. Search for Google. You can check the Login service checkbox to filter results.

  3. To confirm it's the official plugin, scroll to Built by in the filters and select Official — look for the Bubble logo in the bottom-right corner of the plugin card.

  4. Click Install.

Step 2: Set up your Google API credentials

You'll need two credentials from Google Cloud: an App ID (Client ID) and a Secret Key. These authenticate your app's connection to Google.

  • App ID (Client ID): the public identifier for your app. You don't need to keep this secret.

  • Secret Key: works like a password between your app and Google's servers. Keep this strictly private — if it's ever exposed, revoke it immediately and generate a new one.

To generate these credentials, follow the official Google documentation:

External page: Using OAuth 2.0 to Access Google APIs

Exposed secret key? Revoke it right away and create a new one. Once you've updated the key in your plugin settings, make sure to deploy your changes to Live.

Step 3: Configure the Google plugin in Bubble

  1. In the Bubble editor, go to Plugins and click on the Google plugin.

  2. Paste your App ID into the App ID field.

  3. Paste your Secret Key into the Secret key field.

  4. If you want to test without affecting live data, add your development tokens in the designated fields — Bubble will use these automatically in preview mode.

Step 4: Set up the login workflow in your native app

Native mobile apps have a dedicated action for handling OAuth login: Signup/login with a web browser. This uses a page from your web app to handle the login flow, so you don't need to build a separate version for mobile. It supports Google OAuth, email/password login, and 2FA out of the box.

  1. In your native app's login view, create a button (e.g. "Continue with Google").

  2. Open the workflow editor and add the Signup/login with a web browser action.

  3. Set the page to the login page on your web app where Google sign-in is configured.

  4. When a user taps the button, a web browser will open for them to authenticate with Google. Once they're done, the browser closes automatically and they're logged in.

The Signup/login with a web browser action works the same way for new sign-ups and returning logins — no need to build separate flows for each.

FAQ

What if I accidentally expose my App ID?

No action needed. The App ID is a public identifier and doesn't need to be replaced if it's exposed.

What if I accidentally expose my Secret Key?

Revoke it immediately in Google Cloud and generate a new one. Update the key in your plugin settings and deploy your changes to Live.

Does Google authentication work the same on iOS and Android?

Yes. The Signup/login with a web browser action and the Google plugin work across both platforms.

Related Articles
Authentication plugins: Fitbit plugin
Authentication plugins: Google plugin
Building for...: Native iOS and Android -What is a native mobile app?
Building for...: Native iOS and Android -Native mobile vs. web development
Building for...: Native iOS and Android -Native mobile app terminology
Did this answer your question?