App without restricted and sensitive scope still showing "unverified apps"

[Pratibha Praveen]

We are using email, profile, openid and /auth/drive.file scopes in our app, none of the scopes are sensitive or restricted scope. We are neither getting option of "Submit for verification", still it shows "Unverified apps" to users.

[Harmit Rishi (Cloud Platform Support)]

Hello, 

Looks like you have asked this question on two different postings. I will address the issues discussed on both here.

In regards to the message you are seeing. The following FAQ documentation here by the OAuth support team indicates that there are three types of verification. These types of verification are the following: 

1.Brand verification : Ensure that an app accurately represents its identity and intent per the Google API policy via verifying icon, display name, URLs, domain ownership, etc.

2. Sensitive scope verification:  Ensure that an app’s usage of sensitive scopes is not deceptive to protect user data per the Google API policy.

3. Restricted scope verification and security assessment: Ensure that an app does not misuse user data obtained using restricted scopes per the Google API policy and the Additional Requirements for Specific API Scopes. Security assessment is required for apps that store (or transmit) data via servers

As you have mentioned that you do not have any sensitive or restricted scopes, you may verify if you require brand verification. 

In regards to submitting for verification, the following FAQ answer for "How do I submit for verification?" provides steps on how to do this. You may feel free to follow them here. You will have to navigate to OAuth consent screen within the Google Cloud Platform console. 

I hope this helps!