Skip to content
Visit Kinde’s marketing website Kinde Docs
  • SDKs and APIs
  • Kinde API

About scopes and Kinde API access

The Kinde management API uses JSON Web Tokens (JWTs) to authenticate requests. The token’s scopes claim indicates which endpoints can be accessed when calling the management API.

Example scopes

Link to this section
  • read:users for fetching user details.
  • write:users for modifying user details.
  • read:roles or write:roles for managing roles.

You can select scopes when you authorize a new application or you can add scopes to an existing application. We recommend adding as few scopes as you need, to maintain API security.

Change or add scopes to an application accessing the Kinde Management API

Link to this section

Follow this procedure if you already have an application and you experience a scope error, if you want to add scopes for an application, or remove scopes to tighten security.

  1. Go to Settings > Applications and select the relevant M2M application.
  2. On the left, select APIs.
  3. Select the three dots next to the Kinde management API, then choose Manage scopes.
  4. Select the scopes you want to include in the token. For maximum security only enable the minimum scopes you require.
  5. Select Save. The scopes will now be included in the token. You do not need to also send them in the token request.

Related articles

Useful links

  • Join the community

    Get support from the Kinde team and expert users in the Kinde community

    Join via Slack or Discord

  • Contact support

    Chat to support through the Kinde help widget, or send a question via email

    Send an email