We are using 3-legged OAuth for our internal application. We would like to manage the scope as discussed here ( http://www.google.com/support/a/bin/answer.py?answer=162106). However, it seems that no matter what scope we use in the 'One or More API Scopes' section, the authenticating application always has full access to all APIs and scopes.
I understand that the section is titled 'Manage third party OAuth Client access'. Does this mean that internal applications authenticating with OAuth will always have full access? -- You received this message because you are subscribed to the Google Groups "Google Apps Domain Information and Management APIs" group. To view this discussion on the web visit https://groups.google.com/d/msg/google-apps-mgmt-apis/-/6xCFsUgIdoMJ. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/google-apps-mgmt-apis?hl=en.
