CORSTRATE · MAILING

Approve Corstrate Email Tool for your Google Workspace

You only need this page if your organisation’s Google Workspace restricts third-party apps. If a user trying to connect their mailbox to the Corstrate Email Tool sees “Access blocked — your administrator needs to approve this app”, a Workspace administrator can resolve it in about two minutes by marking our OAuth application as Trusted for the relevant user(s). This is the cleanest, most auditable way to approve it — the Google equivalent of a Microsoft 365 admin consent.

If your Workspace does not restrict third-party apps, no action is needed here — the user can connect their mailbox directly.

What you are approving

ApplicationCorstrate Email Tool (a.k.a. “Corstrate Mailing”)
PublisherCorstrate
OAuth client ID
424547003941-vlphllebqvk942tg2aafnqtaaghk3gr2.apps.googleusercontent.com
Access modelPer-user, delegated. The app only ever accesses the mailbox of the single user who signs in and consents — never other users, never an org-wide / domain-wide scope.
Data residencyEuropean Union.
Contactijelassi@corstrate.com

Permissions requested (Gmail scopes)

ScopeWhy it is needed
gmail.sendSend the campaign and follow-up emails from the connected user’s own mailbox.
gmail.modifyRead the connected mailbox to detect replies, out-of-office and bounce notifications, and move those messages into sub-folders/labels. (This scope includes read access, so a separate read-only scope is not required.)
The app does not delete mail, does not access any mailbox other than the consenting user’s, does not request domain-wide delegation, and does not sell or share data. A full security overview is available at oauth.corstrate.com/security-overview.

How to approve it (≈ 2 minutes)

In the Google Admin console (admin.google.com), signed in as a super-administrator:

  1. Go to Security → Access and data control → API controls.
  2. Under App access control, click Manage third-party app access.
  3. Click Add app → OAuth App Name Or Client ID.
  4. Paste the OAuth client ID above and search, then tick the matching app and click Select.
  5. Choose the scope of users (your whole organisation, or just the relevant OU/group), then set access to Trusted and click Configure / Finish.
Once the app is Trusted, your user can connect their mailbox normally — no “unverified app” warning, and no per-user review needed from your side.
Labels in the Admin console occasionally change. If a menu name differs, search the Admin console help for “Control which third-party & internal apps access Google Workspace data” — it is the same setting.

How to revoke it later

At any time, in the same screen (Security → API controls → App access control → Manage third-party app access), select the app and change its access to Blocked, or remove it. The individual user can also revoke access from their own Google Account → Security → Third-party access.