OAuth Verification Cost

[Lider Pan]

Hi experts,

I add a logo to OAuth consent screen that requires verification.

My app just accesses user 's email, profile and openid. 

I'm wondering if I will be charged any verification cost e.g. $15k-$75k. It looks quite horrible. Hope experts could solve my concern. Thank you!

[Anibal (Google Cloud Platform Support)]

Hello,

There are three kinds of verification your app may need to undergo: Brand verification, sensitive scopes verification, restricted scopes verification.

First, adding a logo to the consent screen falls in the first category, which means there is a verification process to ensure your app accurately presents it's identity and it's compliant with Google API Policy, as described here

Secondly, the independent security audit is not required unless you request access to restricted scopes. From your description you access the email, profile and openid scopes so you'd be requesting access to the scopes below as per this documentation :

https://www.googleapis.com/auth/userinfo.email	View your email address
https://www.googleapis.com/auth/userinfo.profile	See your personal info, including any personal info you've made publicly available
openid	Associate you with your personal info on Google

 These scopes are not included in the list of restricted scopes that could be found here, therefore you're unlikely to undergo the security review unless you require access to other scopes not listed in your message.

[Lider Pan]

Dear Anibal,

Many thanks for your explanation! 🙂