Typically, in OAuth grant flows, the user needs to confirm the requesting app can access your profile (the first time). I think this is a nice privacy check, to make sure this is the user's intention. It's happened to me, that I accidentally click login, all of a sudden, I have an account.
This will also add an extra "click" step, for all the fake account bots. I'm uncertain if this will have an impact, but it will be an extra step towards signups in (i.e., Forums, GitLab, etc).
I am not aware of any possible impacts, apart from new first time logins to apps.
Typically, in OAuth grant flows, the user needs to confirm the requesting app can access your profile (the first time). I think this is a nice privacy check, to make sure this is the user's intention. It's happened to me, that I accidentally click login, all of a sudden, I have an account.
This will also add an extra "click" step, for all the fake account bots. I'm uncertain if this will have an impact, but it will be an extra step towards signups in (i.e., Forums, GitLab, etc).
I am not aware of any possible impacts, apart from new first time logins to apps.
See doorkeeper docs on Skip Authorization