Skip to content
  • SDKs and APIs
  • Kinde API

About scopes and Kinde API access

The Kinde management API uses JSON Web Tokens (JWTs) to authenticate requests. The token’s scopes claim indicates which endpoints can be accessed when calling the management API.

Example scopes

Link to this section
  • read:users for fetching user details.
  • write:users for modifying user details.
  • read:roles or write:roles for managing roles.

You can select scopes when you authorize a new application or you can add scopes to an existing application. We recommend adding as few scopes as you need, to maintain API security.

Change or add scopes to an application accessing the Kinde Management API

Link to this section

Follow this procedure if you already have an application and you experience a scope error, if you want to add scopes for an application, or remove scopes to tighten security.

  1. Go to Settings > Applications and select the relevant M2M application.
  2. On the left, select APIs.
  3. Select the three dots next to the Kinde management API, then choose Manage scopes.
  4. Select the scopes you want to include in the token. For maximum security only enable the minimum scopes you require.
  5. Select Save.