How do I create a scope for my Authorization Server? Skip to main content
https://support.okta.com/help/oktaarticledetailpage?childcateg=&id=ka02a0000005ungsai&source=documentation&refurl=http%3a%2f%2fsupport.okta.com%2fhelp%2fdocumentation%2fknowledge_article%2fhow-do-i-create-a-scope-for-my-authorization-server
How satisfied are you with the Okta Help Center?
Thank you for your feedback!
How satisfied are you with the Okta Help Center?
1
2
3
4
5
Very Dissatisfied
Very satisfied
Enter content less than 200 characters.
How do I create a scope for my Authorization Server?
Published: Nov 3, 2017   -   Updated: Jun 22, 2018

Issue: How do I create a scope for my Authorization Server?

Applies to:  
  • Okta environments with the API Access Management SKU
Resolution:  

Scopes represent high-level operations that can be performed on your API endpoints. These are coded into applications, which then ask for them from the authorization server, and the access policy decides which ones to grant and which ones to deny.

If you need scopes in addition to the reserved scopes provided, create them now.

  1. Choose the name of the authorization server to display it, and then select Scopes.

  2. Choose Scopes > Add Scope,
  3. Enter a name and description.
  4. (Optional) Select Default scope if you want to allow Okta to grant authorization requests to apps that do not specify scopes on an authorization request. If the client omits the scope parameter in an authorization request, Okta returns all default scopes in the Access Token that are permitted by the access policy rule.

  5. Click Create to save the scope.
For more detail, please review: https://help.okta.com/en/prod/Content/Topics/Security/API_Access.htm