Your team members can now see and manage their own OAuth app permissions directly from the Employee Portal, without any admin involvement.
Google does offer this buried in accounts.google.com, but most employees don’t know it exists or where to find it. And even if they do, there’s no context about which apps your organization considers risky.
We’ve added an App Permissions tab to the Employee Portal where every team member can:
- See all third-party apps they’ve authorized, with the scopes each app can access
- Understand the risk level of each app’s permissions at a glance (sensitivity indicators show whether an app has basic read access or full account control)
- Revoke access to any app they no longer use or trust, right from the portal with a simple confirmation step
How It Works
When a team member opens the Employee Portal and navigates to App Permissions, they see a list of every OAuth token they’ve granted. Each entry shows the app name, what it can access, and when it was authorized. If something looks off, or they just finished using a tool for a one-time project, they can revoke it immediately.
Getting Started
- Open the Employee Portal and click App Permissions in the sidebar
- Review the list of apps that have access to your account
- Click the revoke button on any app you’d like to disconnect
- Confirm by typing “revoke” and it’s done
Admins still have full visibility from the Permissions Dashboard. This just gives your team the power to clean up their own house.