We do not allow to manually control the android manifest file.
Nevertheless, the permissions used in current android versions (since 6.0+) are runtime permissions. This means the user is asked in runtime for the permission he did not accept yet (while trying to use the feature that requires the permission). Moreover, user can revoke already granted permissions at any time.
Thank you for your reply! Since the client does not even want the user to be able to have certain options, they could take the .apk file we generate and add their customization (i.e, remove user permission) and then repackage, right?