Gitlab CE omniauth_providers HD param and multiple gSuite

oauth

#1

I have setup gitlab login as suggested in docs. And can login with gmail login from one organization. But when I try another one I get

This client is restricted to users within its organization.

gitlab_rails['omniauth_allow_single_sign_on'] = ['google_oauth2']
#gitlab_rails['omniauth_sync_email_from_provider'] = 'google_oauth2'
# gitlab_rails['omniauth_sync_profile_from_provider'] = ['saml']
#gitlab_rails['omniauth_sync_profile_attributes'] = ['email']
#itlab_rails['omniauth_auto_sign_in_with_provider'] = 'saml'
gitlab_rails['omniauth_block_auto_created_users'] = false
# gitlab_rails['omniauth_auto_link_ldap_user'] = false
# gitlab_rails['omniauth_auto_link_saml_user'] = false
#gitlab_rails['omniauth_external_providers'] = ['google_oauth2']
gitlab_rails['omniauth_providers'] = [
  {
"name" => "google_oauth2",
"app_id" => "asdfasdf.apps.googleusercontent.com",
"app_secret" => "asdfasdf",
"args" => { "access_type" => "offline", "approval_prompt" => "asdfasdf", "hd" => "*" }
  }
]

How can I add another gSuite organization ?
I guess this is also something I need to setup inside gSuite API settings. But just don’t know what to read.