Step 1: Create a Google Workspace Add-on Project
- Navigate to https://script.google.com/ and login as the domain super admin.
-
Select New project.
-
Select Untitled project, rename the project Report potential phishing, and then select Rename.
-
Select the plus sign (+) next to Files, and then select Script.
-
Enter Config as the file name and press Enter.
The following example shows the file list:
-
At the bottom of the navigation bar, select the Settings icon.
-
Select the Show "appscript.json" manifest file in editor checkbox.
-
In the navigation bar, select the Code Editor icon.
The appscript.json file appears in the file list like the example below:
-
Using the provided GmailAddOn.zip file, extract, copy, and paste the contents of each file into the corresponding files in the Apps Script editor.
-
Before
-
After
-
-
After the files are copied into and saved in the Apps Script editor, select Deploy and select New deployment.
-
Select the gear icon next to Select type, and then select Web app and Add-on.
- On the Configuration pane, do the following:
- In the New description field, enter Report potential phishing.
- In the Who has access field, select the Anyone within… option.
-
Select Deploy.
-
After the deployment is complete, under Deployment ID, select Copy, and then save the ID for use in a later step.
Note
Keep this tab open. You return to it in a later step.
Step 2: Create a Google Workspace Cloud Project
- In a new browser tab, navigate to https://console.cloud.google.com/projectcreate.
-
Enter Report potential phishing as the project name, and then select CREATE.
-
From the menu on the left, select APIs & Services > Enabled APIs & services.
-
Search for Google Workspace Marketplace SDK.
-
From the search results, select Google Workspace Marketplace SDK.
-
Select ENABLE.
-
Select the App Configuration tab.
-
From the App Configuration tab, select The OAuth Consent Screen must be enabled for this project.
-
On the OAuth consent screen, select Internal, and then select CREATE.
-
Complete the following fields, leaving the rest empty:
- App name: Report potential phishing
- User support email: enter an email address for the security team/help desk where end users can direct general questions if they have any
- Developer contact information: support@expel.com
- Select SAVE AND CONTINUE.
-
On the Edit app registration page, select ADD OR REMOVE SCOPES.
-
In the Update selected scopes area that opens, copy the following scopes into the Manually add scopes field.
- https://www.googleapis.com/auth/gmail.addons.execute
- https://www.googleapis.com/auth/gmail.addons.current.message.readonly
-
https://www.googleapis.com/auth/gmail.send
-
Select ADD TO TABLE.
-
Verify that the following scopes are added to the table and chosen, and then select UPDATE.
-
The Edit app registration page appears, showing the 3 scopes. Scroll to the bottom of the page and select SAVE AND CONTINUE.
Step 3: Connect Google Workspace Cloud and Add-on Projects
- Navigate to https://console.cloud.google.com/apis/api/appsmarket-component.googleapis.com/googleapps_sdk.
-
Copy the App ID.
- Return to the Apps Script tab, or navigate to the Report potential phishing project at https://script.google.com.
-
Navigate to Project Settings, and then, at the bottom of the page, select Change project.
-
Paste the copied App ID from Step 3.1 into the GCP Project Number field, and then select Set project.
- Go back to the API & Services cloud console tab https://console.cloud.google.com/apis/api/appsmarket-component.googleapis.com/googleapps_sdk, and then do the following:
- Select the Google Workspace Add-on checkbox.
- Select the Deploy using Apps Script deployment id checkbox.
-
Enter the Deployment ID copied from Step 1.
-
In the OAuth Scopes section, select ADD SCOPE, and then add the 3 scopes below.
- https://www.googleapis.com/auth/gmail.addons.execute
- https://www.googleapis.com/auth/gmail.addons.current.message.readonly
- https://www.googleapis.com/auth/gmail.send
As a result, the list includes five scopes, including two defaults:
- Select the following options:
- In Installation Settings, select Admin Only Install.
- In App Visibility, select Private.
- Select SAVE.
- Scroll to Developer Links and enter the following:
- Developer Name: Expel
- Developer Website URL: https://expel.io
- Developer Email: support@expel.io
-
Select the Store Listing tab in the middle of the page.
- Under App Details, Next to English, select the down arrow.
- Fill in the following App Details fields:
- Application Name: Report potential phishing
- Short Description: Report potential phishing emails
-
Detailed Description: Utility to help send potential phishing emails for triage
- select DONE.
- Fill in the following remaining fields:
- Category: Administration and Management
-
Graphic Assets (select BROWSE and upload image from zip file):
- Application Icon 32x32: 32x32.png
- Application Icon 128x128: 128x128.png
- Application Card Banner: 128x128.png
- Screenshot (select BROWSE and upload image from zip file): 80x80.png
-
Support Links:
- Terms of Service URL: https://expel.io
- Privacy Policy URL: https://expel.io
- Support URL: https://support.expel.io
-
Distribution: select All Regions or select from the Regions list.
- Select PUBLISH.
Step 4: Install Add-on to Domain
- Navigate to https://gsuite.google.com/marketplace/mydomainapps.
-
Select the Report potential phishing app, and then select Domain Install.
-
In the Domain wide install area, select CONTINUE.
-
On the OAuth Consent Screen, agree to the terms of service, and then select ALLOW.
-
In the success message window, select DONE.
The add-on becomes available to end users shortly. It can take as long as 24 hours for the deployment to take effect.