CapacitorGoogleAuth icon indicating copy to clipboard operation
CapacitorGoogleAuth copied to clipboard

Published 20 hours ago verified publisher icon CodetrixStudio

app "wants additional access to your Google Account"

Open jonit-dev opened this issue 2 years ago • 16 comments

Hi folks

Can someone explain to me why it asks for "additional access", if I'm only requesting the user e-mail and profile?

Is there a way to remove this message? I already received a 1-star review on google play because of it. Some paranoid users think that my app is "suspicious" because of that, but I'm only getting user name/email to create their accounts.

Screenshot_20210829-100410_Google Play services

capacitor.config.json

  "GoogleAuth": {
      "scopes": ["profile", "email"],
      ...

EDIT: I tried removing the profile scope but it doesn't work at all

jonit-dev avatar Aug 29 '21 17:08 jonit-dev

Does anyone have an answer for this??

DexterHuang avatar Sep 07 '21 08:09 DexterHuang

@jonit-dev you have to read about OAuth consent screen here: https://console.cloud.google.com/apis/credentials/consent

h-gerami avatar Sep 24 '21 09:09 h-gerami

@h-gerami did you solve it changing this screen? I read on other posts that it seems to be an issue that has no solution for this plugin

jonit-dev avatar Sep 24 '21 16:09 jonit-dev

I have changed the consent screen scope to only email, but it's doesn't help, do you guys think there is some malicious code somewhere that overrides and sends the data to somewhere?.. Or I just didn't set it up properly?..

DexterHuang avatar Sep 27 '21 14:09 DexterHuang

@jonit-dev any updates?

I have a similar issue. I've configured the consent screen according to instuctions, added profile, email, and openId (looks like it should be by default) scopes But getting the same "...wants additional access" message on the screen

IhorBilobran avatar Sep 29 '21 09:09 IhorBilobran

@jonit-dev any updates?

I have a similar issue. I've configured the consent screen according to instuctions, added profile, email, and openId (looks like it should be by default) scopes But getting the same "...wants additional access" message on the screen

I think it simply doesn't work. I didn't find a workaround so far...

Let me know if you guys find another dependency that works well with Ionic

jonit-dev avatar Sep 29 '21 15:09 jonit-dev

@jonit-dev fyi After I wasted days of investigation, I removed CodetrixStudio/CapacitorGoogleAuth and installed @ionic-native/google-plus, which works fine (with the same OAuth consent screen configuration, clientID and scopes) it doesn't show the "untrusted" screen

IhorBilobran avatar Oct 01 '21 09:10 IhorBilobran

@jonit-dev fyi After I wasted days of investigation, I removed CodetrixStudio/CapacitorGoogleAuth and installed @ionic-native/google-plus, which works fine (with the same OAuth consent screen configuration, clientID and scopes) it doesn't show the "untrusted" screen

Thanks for this tip! I'll take a look on this one

jonit-dev avatar Oct 01 '21 15:10 jonit-dev

Does anyone have a solution for this issue other than trying a new plugin?

manubenjamin avatar Oct 04 '21 05:10 manubenjamin

@jonit-dev fyi After I wasted days of investigation, I removed CodetrixStudio/CapacitorGoogleAuth and installed @ionic-native/google-plus, which works fine (with the same OAuth consent screen configuration, clientID and scopes) it doesn't show the "untrusted" screen

thanks, switch to use this plugin instead fixes the problem 👍

DexterHuang avatar Oct 04 '21 05:10 DexterHuang

@jonit-dev fyi After I wasted days of investigation, I removed CodetrixStudio/CapacitorGoogleAuth and installed @ionic-native/google-plus, which works fine (with the same OAuth consent screen configuration, clientID and scopes) it doesn't show the "untrusted" screen

working in cordova and only with angular, this plugin use capacitor and framework agnostic

reslear avatar Jan 04 '22 04:01 reslear

I am also getting this. Any solutions found apart from using other plugins?

DevDianDankie avatar Feb 04 '22 08:02 DevDianDankie

I found this https://stackoverflow.com/questions/68453150/google-signin-error-gettoken-need-remote-consent- which might be related to the java implementation?

DevDianDankie avatar Feb 04 '22 08:02 DevDianDankie

image

I found my problem...

I added forceCodeForRefreshToken in my capacitor config because I wanted to be able to log in a different user when current one logs out.

This is what had the side effect where it will ask additional credential.

So yea removing it worked but now selecting a different account is the problem again. Is there perhaps a way to solve that without using forceCodeForRefreshToken?

DevDianDankie avatar Feb 04 '22 13:02 DevDianDankie

Guessing clearing the app cache/storage on logout will do the trick

DevDianDankie avatar Feb 04 '22 13:02 DevDianDankie

image

I found my problem...

I added forceCodeForRefreshToken in my capacitor config because I wanted to be able to log in a different user when current one logs out.

This is what had the side effect where it will ask additional credential.

So yea removing it worked but now selecting a different account is the problem again. Is there perhaps a way to solve that without using forceCodeForRefreshToken?

putting forceCodeForRefreshToken: false in capacitor.config.ts fixes the problem.

TwixD avatar May 10 '22 18:05 TwixD