When an app needs access to a user’s G Suite data, such as Gmail or Google Drive files, the user is prompted to allow the app to access that data. Sometimes, this prompt can be confusing and alarming for users. As an administrator for your organization, you can authorize the app so your users don’t have to allow permission.
Before you begin
Publish the App Maker app to a deployment.
Step 1: Get your app’s client ID
- Open the app in App Maker and click Settings Deployments.
- Next to the deployment, click the Down arrow.
- Click View Logs to open the Google Cloud Platform Console in a new tab. Leave the Deployments tab open because you'll need the information later.
- In the Google Cloud Platform Console, click Menu APIs & ServicesCredentials.
- In the OAuth 2.0 client IDs table, in the Client ID column, click Copy to copy the Client ID value.
Step 2: Add your app as an authorized API client
Open a new browser window for the following steps.
From the Admin console Home page, go to Security.
- Click Advanced SettingsManage API client access.
- In the Authorized API clients column of the table, in the Client Name box, paste the Client ID value that you copied earlier. Don’t paste the project name.
- In App Maker, on the Deployments tab next to the OAuth scope, click Copy .
- In the Google Admin console, in the One or More API Scopes box, paste the OAuth scope.
- If you have more than one scope, paste each scope in the One or More API Scopes box and separate the scopes with commas. If you have a lot of scopes, click Show all scopes to make sure you copy all of them.
- Click Authorize.
- If users are still prompted to review permissions, go back to the Google Admin console and confirm that the client ID is correct and that all OAuth scopes are entered in a comma-separated list. If one OAuth scope is missing, users are prompted to review permissions for all OAuth scopes.