The SysCloud API uses scopes to control access to different resources and actions within the API. By assigning specific scopes to access tokens, you can limit the permissions granted to client applications.
The SysCloud API defines the following scopes:
Each scope grants access to specific resources or actions within the SysCloud API. Below are the permissions associated with each scope:
To access resources or perform actions requiring specific scopes, clients must include those scopes when requesting access tokens from the SysCloud API. Ensure that your application requests only the scopes necessary for its functionality to minimize the risk of unauthorized access.
The SysCloud API validates the scopes included in access tokens to determine whether the requested actions or resources are authorized for the requesting client. If the token does not include the required scopes, the corresponding request may be denied with a 403 Forbidden
error.