docs: drive: make clear "testing" apps have short token grant time

This commit is contained in:
Simmon Li (he/him) 2023-02-13 09:30:20 -05:00 committed by GitHub
parent 49a6533bc1
commit b8ea79042c
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 14 additions and 12 deletions

View File

@ -1531,22 +1531,24 @@ then select "OAuth client ID".
(If you selected "External" at Step 5 continue to Step 9. (If you selected "External" at Step 5 continue to Step 9.
If you chose "Internal" you don't need to publish and can skip straight to If you chose "Internal" you don't need to publish and can skip straight to
Step 11.) Step 10 but your destination drive must be part of the same Google Workspace.)
9. Go to "Oauth consent screen" and confirm that your intended email is shown 9. Go to "Oauth consent screen" and then click "PUBLISH APP" button and confirm.
as a test user, and that "Publishing status" is shown as "Testing". You will also want to add yourself as a test user.
10. Provide the noted client ID and client secret to rclone. 10. Provide the noted client ID and client secret to rclone.
Be aware that, due to the "enhanced security" introduced by Google, you are Be aware that, due to the "enhanced security" recently introduced by
theoretically expected to "submit your app for verification" and then wait a Google, you are theoretically expected to "submit your app for verification"
few weeks(!) for their response; in practice, if you keep your app in testing, and then wait a few weeks(!) for their response; in practice, you can go right
then you can go right ahead and use the client ID and client secret with rclone, ahead and use the client ID and client secret with rclone, the only issue will
the only issue will be a very scary confirmation screen shown when you connect be a very scary confirmation screen shown when you connect via your browser
via your browser for rclone to be able to get its token-id (but as this only for rclone to be able to get its token-id (but as this only happens during
happens during the remote configuration, it's not such a big deal). Because we the remote configuration, it's not such a big deal). Keeping the application in
anticipate that we will be the only user on this client-id, testing should be "Testing" will work as well, but the limitation is that any grants will expire
sufficient for most use cases. after a week, which can be annoying to refresh constantly. If, for whatever
reason, a short grant time is not a problem, then keeping the application in
testing mode would also be sufficient.
(Thanks to @balazer on github for these instructions.) (Thanks to @balazer on github for these instructions.)