I’m new to Auth0 and getting a bit confused about scopes and permissions and how they relate. A lot of the documentation implies that scopes are permissions, and that you should create scopes such as “read:messages” and “write:messages”. But when you create Permissions in the API, and then request…

:wave: I would like to share some updates for the core authorization . We introduced TOKEN_DIALECT which helps to get the scopes in the Access Token based on the permissions assigned to the user either directly or through roles. When the RBAC feature is enabled along with token dialect for an API, …

Scopes vs Permissions confusion

Get Help

mathiasconradt September 16, 2019, 6:52am 2

Hi @chrisj2,

here are some related threads on this:

1 Like

Topic		Replies	Views
Permissions: claim or scopes Get Help scopes , claims , permissions	11	18067	December 8, 2020
Difference between scopes and permissions in access token Get Help scopes , permissions	5	10499	August 31, 2019
Scopes vs API permissions Get Help security-question-concern , security-compliance	2	2044	April 6, 2023
Trouble understanding scopes vs permissions Get Help api , scopes , access-token , api-authorization , scope	7	9345	January 4, 2021
RBAC permissions for SPA app and API Get Help rbac	1	5464	September 12, 2019

Scopes vs Permissions confusion

Related topics