Overview
Google is making changes to how third-party apps connect to your Google Workspace.
These new controls especially affect users under 18, with stricter requirements to ensure apps accessing sensitive data meet privacy standards.
Google will now block access to third-party apps unless the school/admin has explicitly reviewed and approved them. This prevents apps from accessing your personal data without proper checks.
What do I need to do?
If your students use Google to sign in to SpacesEDU, Admins must mark SpacesEDU as a trusted app.
Steps to confirm third-party app settings
Google provides a guided experience for super admins and admins with the Security privilege.
Open the Admin console → Security → Access and data control → API controls → Manage third‑party app access
Locate SpacesEDU in “Configured apps.” If it doesn’t appear yet, follow the guided setup under “Access pending review”
Set access to “Trusted” for your entire domain or for the organizational unit(s) that require it.
Confirm & Save your changes before the deadline passes.
What happens if we do not approve access for third-party apps?
The below errors will occur in SpacesEDU when a user tries to sign in via Google.
Error 400: access_not_configured - received when an OAuth connection is rejected because your app has not been configured.
Error 400: admin_policy_enforced - received when an OAuth connection is rejected because the administrator has blocked your application.
Google Resources
Please view the below resources from Google's Help Center for more information.