403 Error when trying to create device credentials using management api

I’m trying to use a M2M access token to register a device credential for a user using the following request.

POST /device-credentials? HTTP/1.1
Host: https://xxxxxxx/api/v2
Authorization: Bearer xxxxxxxxxxxxxxxxxxx
Content-Type: application/json

    "device_name": "Test Device",
    "type": "public_key",
    "value": "xxxxxxxxxxxxxx",
    "device_id": "test_device",
    "client_id": "test"

But I get the response

    "statusCode": 403,
    "error": "Forbidden",
    "message": "Insufficient scope, expected any of: create:current_user_device_credentials",
    "errorCode": "insufficient_scope"

I can’t assign create:current_user_device_credentials to M2M application. I don’t understand how the management api can be used to register a device credential under a specific user because in the above request, I don’t see a way to specify a user id.

Then I created a test application and a user in our application with create:current_user_device_credentials scope and tried the above request with that user’s access token retrieved using “realm” flow. Then I get the error “Bad audience”.

Also, can you please fix the documentation. Clearly, it’s a copy-paste error. The description for POST is exactly the same as for GET.