Hello, I'm having an issue with account linking with Google. I'm pretty sure I have everything configured in the Ory console to enable Google Sign-in as the google sign-in feature itself works, but I'm having an issue with users logging with Google when they already had an account with the same email setup. So my understanding is that linking should be done automatically. I tried creating an account with a personal email address (e.g.

<mailto:personal_email@gmail.com|personal_email@gmail.com>

) by registering with just email and password. Then I tried logging in via Google using the same gmail address. It logged me in and then redirected me to the account link flow and prompted me to enter my original credentials to complete the account link. That all works as expected. The problem is when I try the same process with a Google Workspace email address (e.g.

<mailto:work_email@company.com|work_email@company.com>

). It isn't a gmail address but it is a Google Account. However, when I try to log in via Google, I don't redirected to the account link flow like I did earlier. Instead it takes me to the registration flow and I get stuck in a loop of sorts. I followed the process here for setting up google sign in: https://www.ory.sh/docs/kratos/social-signin/google and used the same data mapping setup as explained in that article. I looked at this article on troubleshooting: https://www.ory.sh/docs/troubleshooting/troubleshooting-social-sign-in#redirect-loops-after-successful-registration and it seems like maybe the identity schema may be wrong that we have setup but I'm not sure. We have properties for

first_name

,

last_name

and

email

in the identity schema according to the Ory console (Identities -> Identity Schema), but I'm not sure if I need to add something here to have it work with Google Workspace emails. Any advice or guidance on this would be greatly appreciated, thank you 🙏

We've been facing similar issue. But in our case linking with a Gmail address or Google workspace address isn't working. We're trying to use the self service recovery flow, where user is authorized from the recovery link, there after they can login with google to link their provider account. It redirects to Gmail but after completing login process redirects to error page with invalid grant error. But this issue in only on linking flow, if we attempt to signup or sign-in directly with same emails it works