Glossary

Scope

A scope is a named capability on an OAuth token — like applications:write — that bounds what the token can do. Request only the scopes you use.

2 min read

Definition

A scope names a capability a token is allowed to exercise. You request scopes when you mint an access token, and the token can do nothing outside them — a call to an out-of-scope capability returns a 403.

In plain terms

The list of things a particular token is permitted to do.

Why it matters here

Scoping narrowly bounds the blast radius of a leaked credential — the heart of least privilege.

Funding for UK limited companies

Credicorp lends to your company, not to you personally — short-term working capital with no personal guarantee. See what your business could access.