Scope
In the context of application development and user permissions, Scopes refer to a mechanism that defines the specific actions or operations an application can perform on behalf of a user within a third-party service or platform. Scopes play an essential part of the authorization process.
Here's how you view
1 Go to Dashboard > Applications.
2 Click on the application you wish to view.
3 Click on Scope.
ezto auth has two types of Scopes
1 Default Application Scopes
For all application, the Default Application Scopes are automatically included when tokens are generated. On the other hand, the Protocol mappers and role scope mappings are always enforced, regardless of the scope parameter specified in the OIDC Authorization request. This ensures that certain access rights and permissions are consistently applied, enhancing security and control over the application's functionality.
2 Optional Application Scopes
There are Optional Scopes that can be granted when tokens are issued. However, these scopes will only be included in the issued tokens if they are specifically requested through the scope parameter during the OIDC (OpenID Connect) Authorization request. This approach allows for a more flexible and controlled access management system, as users can tailor their permissions based on their specific needs and requirements.
Single Sign-On (SSO) does not utilize the concept of Scopes.