Hi,
Thanks for your reply.
We are trying to call the GetUsers Management API but keep getting an unautherized response, I believe because the token does not contain any scopes. We previously had this working in our application by using the https://{domain}/oauth/token api to retrieve the token. However this had recently stopped working. To investigate why this has stopped working I tried using the test token and found that that also didn’t contain any scopes. Screenshots below (tokens, domains and ID’s removed):
Getting test token
Set api token (no scopes in token)
Scopes are enabled for application