Inclu Cat
Reputation: 402
Google OAuth consent screen: How do I know the user grants the requested access?
I'm building an Angular application that uses the Google API Client Library for JavaScript and it requires user permissions at login.
Permission to access Google Drive is required, but it is not checked when the consent screen is initially displayed.
So I need to know if the user has checked that checkbox on the consent screen to make sure the app works correctly.
How do I know that from the JavaScript code?
Upvotes: 1
Views: 1686
Answers (1)
Johannes Passing
Reputation: 2805
The response from the token endpoint (https://oauth2.googleapis.com/token) contains a scope field. This field tells you which scopes were actually granted:
{
"access_token": "ya29.A0...",
"expires_in": 3599,
"scope": "https://www.googleapis.com/auth/cloud-platform https://www.googleapis.com/auth/userinfo.email openid",
"token_type": "Bearer",
"id_token": "ey..."
}
Upvotes: 2
Related Questions
- OAuth consent screen localhost
- How to check if user is logged in or not with "Google Sign In" (OAuth 2.0)
- Google developers console, different consent screen settings for different users
- Issue with OAUTH consent screen
- What is google oauth consent screen values?
- OAuth Consent Screen
- Google OAuth consent screen not showing scope options
- Node.js google drive api - authorize without consent screen
- How can I configure the google OAuth2 consent screen?
- Google OAuth - How to check that user has already allowed access to my application