I'm configuring the scopes that my application requires for accessing Google and I can't find the difference between those two:
In the documentation we can see the following:
https://www.googleapis.com/auth/userinfo.email View your email address https://www.googleapis.com/auth/userinfo.profile View your basic profile info
However, when I access userinfo via api-client-library I get all the info even in case I don't request one of the scopes.
com.google.api.services.oauth2.Oauth2#userinfo
Returns complete object. Event if I don't use email scope, email is still returned. But, if I don't use both of the scopes - access is restricted and call fails. The question is what's the difference between these two scopes and which one is preferable?
