The Ad Manager API introduces a new read-only OAuth scope: https://www.googleapis.com/auth/admanager.readonly. This scope allows developers to request read-only access to users' Ad Manager data, enabling them to read data and run reports without permissions to write or modify data. This enhances security for read-only integrations like reporting dashboards or alerting tools.
Scope Availability and Compatibility
- The read-only scope is exclusive to the Ad Manager API.
- It is not supported by the legacy Ad Manager SOAP API, which still requires the full-access scope.
Benefits and Recommendations
- No changes are needed for existing integrations.
- Applications that do not require write access are encouraged to migrate to the new read-only scope.
- For OAuth configuration, developers can refer to Using Oauth 2.0 for Web Server Authentication.
Access Controls
- Ad Manager access controls, including user roles and team restrictions, apply to all API requests regardless of the OAuth scope used.
For further questions or discussions, the Google Advertising and Measurement Community Discord server is available as a resource.
— Chris Seeley, Ad Manager API Team
