Google OAuth not allowing"web-views" on mobile devices could cause authentication to fail with 403: Error: Disallowed_useragent.


As of April 20, 2017, Google no longer allows OAuth requests to Google in embedded browsers known as "web-views", such as the WebView UI element on Android and UIWebView/WKWebView on iOS, and equivalents on Windows and OS X. It blocks OAuth requests using web-views for all OAuth clients on platforms where viable alternatives exist.


Steps to Reproduce

  1. Set up an SSO provider that uses Google OAuth as its authentication (for example, PING).

    For more information, see the product documentation topic OAuth 2.0.

  2. Set up the primary IdP to this SSO record.

    For more information, see the product documentation topic Identity Provider (IdP) system properties.

  3. Try to log in to the instance using the Google OAuth authentication.

    Note that Google will block the request.

    Google request blocked



If you need to log in using mobile applications, avoid using Google OAuth or configure your internal Authentication to avoid using "web-views" on Google OAuth. Users facing this problem need to log in using the desktop version.

Related Problem: PRB994306