Google permissions
UMA requires the following permission scope to work with your Google Workspace environment:
https://www.googleapis.com/auth/calendar
Read and write calendars in all mailboxes
We need this permission to write to your users and resource calendars.
This is required when booking or editing a booking through UMA.
https://www.googleapis.com/auth/admin.directory.resource.calendar
Scope for access to all calendar resources operations
We need this permission to get a list of all resource calendars.
This is required when booking or editing a booking through UMA.
https://www.googleapis.com/auth/admin.directory.group.readonly
Read all groups
We need this permission to read your Google Workspace groups for user sync.
https://www.googleapis.com/auth/admin.directory.group.member.readonly
Read all group memberships
We need this permission to read the members of your Google Workspace groups for user sync.
https://www.googleapis.com/auth/admin.directory.user.readonly
Read all users full profiles
Allows UMA to read the full set of profile properties, reports, and managers of other users in your organisation, on behalf of the signed-in user.
For further information on Google Workspace scopes follow the documentation here:
