I think OP is saying that Google's oauth2 screen should have asked him to provide a password, to confirm that this should happen.
I think I agree with OP. Remember click-jacking? Or cats jumping on keyboards?
I wouldn't want my entire gmail history[1] getting delivered to a third party because of one erroneous click.
1. My gmail history actually goes back further than ... what the hell. I imported 1999 era email into gmail years ago and now I can't find it. I am officially sidetracked! [UPDATE]: yeah, my email history goes back to BEFORE gmail launched, because I imported old emails. Early 2003, actually, not 1999... Dunno where those emails went.
I think I agree with OP. Remember click-jacking? Or cats jumping on keyboards?
I wouldn't want my entire gmail history[1] getting delivered to a third party because of one erroneous click.
1. My gmail history actually goes back further than ... what the hell. I imported 1999 era email into gmail years ago and now I can't find it. I am officially sidetracked! [UPDATE]: yeah, my email history goes back to BEFORE gmail launched, because I imported old emails. Early 2003, actually, not 1999... Dunno where those emails went.