-
-
Notifications
You must be signed in to change notification settings - Fork 1
Installation
A simple snitch tool which alerts any Google Drive user who has access to their files who may pose a security risk.
Web Application Appliance Now Available
- GUI to interact with the script
- Revoke functionality for the web application.
For small businesses using Google Suite, Google provides built in access controls for all users within that company's Google Suite; however, what if someone in the business shares files within Google Drive with someone outside the organisation? This tool provides a simple and effective way of returning any files that can be accessed by potentially untrusted persons.
Additionally this tool is recommended for promoting personal security too by allowing individuals to govern who they give access to.
The application itself allows anyone to use it, but you will have to authenticate to google to be able to run your tasks.
-
Follow Google's instructions here to create an OAuth 2.0 Client ID, suitable to be used with GDAG.
-
Once created, on the GCP credentials page, underneath "OAuth 2.0 Client IDs", find your newly-created OAuth 2.0 Client ID, then click the down-arrow underneath "Actions".
-
Click "DOWNLOAD JSON" and save the file as
credentials.json
- Ensure you have python3 and python3-pip packages installed.
- Clone this repository and navigating to the directory:
user@linux:~$ git clone https://github.com/matamorphosis/GDrive-Access-Governance && cd GDrive-Access-Governance/installation- Run the installation script:
user@linux:~/Path/to/GDrive-Access-Governance/installation/$ sudo bash ./install.sh- You will need a
credentials.jsonfile. To obtain this file, log into your Google Account and navigate to the Python Google Drive API Page here, then click the blue button called "Enable the Drive API". A pop-up box should come up and there will be another blue button called "DOWNLOAD CLIENT CONFIGURATION". Click this button to download your credentials.json file and then copy it to the following directories in your GDrive-Access-Governance directory.
~/Path/to/GDrive-Access-Governance/app/config
~/Path/to/GDrive-Access-Governance/scripts-
If not done already, ensure you have the Google Drive API enabled by navigating to the settings here.
-
If you wish to switch the certificate files, please alter the following section of the
~/Path/to/GDrive-Access-Governance/app/config/config.jsonfile to point to your certificate pair:
6 "certificate_file": "../certs/certificate.crt",
7 "key_file": "../certs/privateKey.key"