Recently we received an mail saying that our app may be impacted by an upcoming change in GCP, which would have prevented at least one user from accessing our app in the past month.
It says that our application is using the user's credentials to call GCP APIs, and saying that we can modify our application to preserve access for all users by updating your application’s OAuth consent to remove its use of the cloud-platform OAuth scope or any other GCP scopes you may depend on. It also says that our application may still use GCP by leveraging service account authentication flows.
Finally it says that this new enforcement will begin rolling out June 30, 2023. We would like to know what the mentioned GCP scopes are and the impact on this.
Does anyone know the information about this notification?
I have tried to search the announcement for this, but nothing found so far. I also checked the app verification page and it looks like everything works fine with green check on each of the restricted / sensitive scopes.
We expect that there exists at least some annoucement on what scopes we are using should be removed , or how we can proceed on this issue.
Google is applying changes that more tightly enforce policies around cloud-platform usage. These policies prevent users from calling GCP through OAuth when their access to GCP is restricted.
We're recommending that developers migrate to using service accounts when calling GCP APIs so that the service account is initiating the request rather than the end user of your application.