: How do I create a scope for my Authorization Server?Applies to
- Okta environments with the API Access Management SKU
Scopes represent high-level operations that can be performed on your API endpoints. These are coded into applications, which then ask for them from the authorization server, and the access policy decides which ones to grant and which ones to deny.
If you need scopes in addition to the reserved scopes provided, create them now.
Choose the name of the authorization server to display it, and then select Scopes.
- Choose Scopes > Add Scope,
- Enter a name and description.
(Optional) Select Default scope if you want to allow Okta to grant authorization requests to apps that do not specify scopes on an authorization request. If the client omits the scope parameter in an authorization request, Okta returns all default scopes in the Access Token that are permitted by the access policy rule.
- Click Create to save the scope.
For more detail, please review: https://help.okta.com/en/prod/Content/Topics/Security/API_Access.htm