Due to an increase of scope to Google's ongoing commitment to protecting your data, it is required as of now to whitelist CustomerSuccessBox Gmail OAuth App in your GSuite. This change pertains to Restricted Scopes usage.
CustomerSuccessBox Gmail OAuth app uses two restricted scopes:
1. gmail.readonly - we use this to bring in emails from your connected mailbox
2. gmail.send - we use this to send out emails from your connected mailbox
This is completely safe as each Customer Success team member authorises their own individual mailbox and utilizes their connected mailbox while sending out an email from CustomerSuccessBox.
This step is primarily required so that your Customer Success team do not land on "Unverified Application" prompt while connecting their Google Mailboxes to CustomerSuccessBox.
In other words, if this is not done, each Customer Success team will need to use "Go to CustomerSuccessBox (unsafe)" option on "Unverified Application" prompt while connecting Google Mailbox to CustomerSuccessBox.
To learn more about how your Success Team can connect their Google mailbox to CustomerSuccessBox, you can refer to this support article.
Who's this for?
You are a G-Suite Super Admin for your organization who will be adding CustomerSuccessBox Gmail OAuth app as a Trusted app for your organization.
The following set of steps is a minor paraphrasing of Google's official support documentation around Whitelisting of Trusted Apps (Step 2)
- Login into Google Admin Site as a user with Super Admin privileges
- From the Admin console Home page, go to Security
- Click API Permissions.
- At the bottom of the list of apps, click the Trusted Apps link.
- Click Whitelist an App
The Add App To Trusted List window opens
- In the Select App Type list, select "Web applications" option:
- Web applications—requires you to fill in the OAuth2 Client ID.
- Specify CustomerSuccessBox Gmail OAuth app client ID: 575532006826-vd9cqb6tn7mrt4frbnr7j5epr6svpl3a.apps.googleusercontent.com
- Click Add