AppAuth-iOS
AppAuth-iOS copied to clipboard
Google OAuth sign in page lists 'email address' as part of the authorization request even though the scope supplied doesn't have email access
I'm using UnityGoogleDrive which relies on AppAuth for both iOS and Android. I'm not entirely sure if this is more of a question for AppAuth maintainers, or possibly Google. But when using the following scopes https://www.googleapis.com/auth/drive.file
and openid
, I see this page when signing in:
Android exhibits the same behavior on that first screen. On the second screen, the scope permissions are listed correctly.
I've tested this on an iPad Pro running iPadOS 15.5 and on an Android Pixel XL running Android 10.
Does this seem more like a Google issue? I just don't want to confuse users, as we're explicitly not requesting email. Thanks!