Google social login contacts permissions

animalbrain · November 27, 2017, 12:37am

In the social connections > Google > permissions setup in auth0, there is an option to request permissions to a user’s google contacts. That permission setting seems to resolve to the google scope https://www.googleapis.com/auth/contacts.

That scope requests full contact management permission. In reviewing my permission requests, Google has suggested I use the READ-ONLY contacts scope:
https://www.googleapis.com/auth/contacts.readonly

I agree, and only want to request read-only contacts permissions of my users, but I don’t see a way to do that in auth0.

Is there any way to request read-only contact permissions instead of full management permissions?

jmangelo · November 27, 2017, 7:58pm

You should be able to accomplish that by not selecting the scope in question through the dashboard and then request the scope you actually need through a parameter. In particular, according to this documentation you can use the connection_scope parameter to include the read-only scope that you want to be requested from Google.

Topic		Replies	Views
Readonly Gmail Scope in Google Social Login Help	2	4863	July 25, 2019
Pass contacts.readonly scope to google IDP Help php	7	4670	July 26, 2019
Social Permissions in Auth0 vs Scope in Google OAuth consent Screen Help	2	3244	November 15, 2020
Pass IdP specific scopes when using universal login Help social-connections , idp	2	2493	May 25, 2022
Google asks too much permissions Help google	3	3528	March 2, 2018

Google social login contacts permissions

Related Topics