Disable checkboxes on Google consent screen

by

Answer:

These checkboxes are due to the rolling out of a new granular account permission system, they are completely normal, and can not be turned off.

More Information:

After some digging, I discovered this Google Developers blog post from 2018 in which it is discussed that in the new permission system, users will have the ability to grant or deny permissions individually.

From the blog post:

Over the next few months, we’ll start rolling out an improvement to our API infrastructure. We will show each permission that an app requests one at a time, within its own dialog, instead of presenting all permissions in a single dialog*. Users will have the ability to grant or deny permissions individually.

*our different login scopes (profile, email, and openid are all combined in the same consent and don’t need to be requested separately.

It seems that this is still in the roll-out phase, even though at the time of writing this answer 26 months have passed since the announcement.

Preparing for the change:

The following are guidelines provided by Google as to how to prepare for the changes they are making to the Google Account permission system for OAuth and APIs:

  • Review the Google API Services: User Data Policy and make sure you are following them.
  • Before making an API call, check to see if the user has already granted permission to your app. This will help you avoid insufficient permission errors which could lead to unexpected app errors and a bad user experience. Learn more about this by referring to documentation on your platform below:
    • Documentation for Android
    • Documentation for the web
    • Documentation for iOS
  • Request permissions only when you need them. You’ll be able to stage when each permission is requested, and we recommend being thoughtful about doing this in context. You should avoid asking for multiple scopes at sign-in, when users may be using your app for the first time and are unfamiliar with the app’s features. Bundling together a request for several scopes makes it hard for users to understand why your app needs the permission and may alarm and deter them from further use of your app.
  • Provide justification before asking for access. Clearly explain why you need access, what you’ll do with a user’s data, and how they will benefit from providing access. Our research indicates that these explanations increase user trust and engagement.

You can read the aforelinked blog post for full information about the change.

References:

More Related Contents:

  1. How to change Google consent screen email?
  2. Can I really not ship open source with Client ID? [closed]
  3. Why do access tokens expire?
  4. Google API OAuth2, Service Account, “error” : “invalid_grant”
  5. How do I authorise an app (web or installed) without user intervention?
  6. Get user info via Google API
  7. How to specify the scope of Google API to get the birthday
  8. Sign in with Google temporarily disabled for this app
  9. OAuth 2.0 with Google Analytics API v3
  10. gapi.auth.signOut(); not working I’m lost
  11. How is OAuth 2 different from OAuth 1?
  12. CORS issue while making an Ajax request for oauth2 access token
  13. How to validate an OAuth 2.0 access token for a resource server?
  14. Google OAuth 2.0 redirect_uri with several parameters
  15. Google OAuth API to get user’s email address?
  16. Using Postman to access OAuth 2.0 Google APIs
  17. Getting a 403 – Forbidden for Google Service Account
  18. OAuth 2.0: Benefits and use cases — why?
  19. How can I verify a Google authentication API access token?
  20. How to correctly use Google Plus Sign In with multiple activities?
  21. Google Calendar API v3 – authenticate with hardcoded credentials
  22. Create Spreadsheet using Google Spreadsheet API in Google drive in Java
  23. How to use the Gmail API, OAuth2 for Apps Script, and Domain-Wide Delegation to set email signatures for users in a G Suite domain
  24. Can we access GMAIL API using Service Account?
  25. Twitter API – Logout
  26. How to programmatically remove a file from “share with me” in Google drive
  27. Where can I get Google developer key
  28. Bulk-fetching emails in the new Gmail API
  29. LinkedIn OAuth2: “Unable to verify access token”
  30. Netsuite OAuth Not Working

Leave a Comment