We have a market place app with one service account and one web application client id listed in the project. We request a bunch of scopes when the app is installed, however the user still hits a second permission screen the first time he runs the app
In the market place app api config page, we request the following scopes when we install the app:
URL../userinfo.email
URL../userinfo.profile
URL../drive
URL../admin.directory.user
[Sorry cannot list entire url[
When user tries to signin to the our app, we make an oauth request with scope = "openid email" as per https://developers.google.com/accounts/docs/OAuth2Login#scope-param
It seems the second permissions consent screen is due to some discrepancy in the requested scopes, but I am not able to trace it down.
