Google Marketplace domain application data access/revoke -
i not sure how correctly handle google domain application access/revoke. situation quite standard:
- domain admin installs application through marketplace workflow (scopes, setup url, ...)
- application listed in admin console domain (https://admin.google.com/adminhome?fral=1#appslist:servicetype=marketplace)
- everything works fine, users can access app
- at moment, reason admin revokes application data access through admin console whatever reason (application not deleted, "disabled")
- since than, there no privilege granted app in domain, every user accesses application redirected error page
and here comes question - how detect , handle this. google docs say, app should re-request required privileges through consent screen (approval force param). tests show - when user (admin or non-admin) accepts scopes needed on consent screen, application on admin console still displayed no data access. same application instead listed in user's connected apps (https://security.google.com/settings/security/permissions), domain-installable app!
so programmatically handle situation. there way, or should redirect (admin)user admin console manually turn data access application on?
btw, after marketplace installation, "sometimes" consent screen pops first time visiting app url - requests same scopes marketplace listing - why that? on case, application dually listed in previous case - in domain , in user's connected apps.
Comments
Post a Comment