I have an application registered with google that asks users for permission to read and write all files in their google drive account.
I would find this alarming as an end-user, and my application does not in fact need the ability to read and write all files in the end-user's google drive account.
In fact I would only need the ability to read and write a single file, a file that my application creates.
Is something like this possible?
For example the scope here
https://www.googleapis.com/auth/drive
permits all access to all drive files.
I am not finding a way to limit the scope at the file, or even to a folder, which would be nice: https://developers.google.com/identity/protocols/googlescopes
https://www.googleapis.com/auth/driveis used. I think that there are several solutions. So please think of this as just one of them. I posted this as a comment, because I'm not sure whether this is the result you want. - Tanaike