OAuth 2.0 Scopes
OAuth scopes govern the access and privileges an Adobe user will grant authorization to a third-party application for. As an application developer, you will choose the set of scopes that a user will encounter in an authorization approval screen by specifying the scopes as part of the OAuth authorization request.
Identity scopes#
Scope | Consent description | Details |
---|---|---|
openid | Can access user account and read a unique identifier | Mandatory scope to enable authorization flows. |
email | Can read user email address | Returns email and email_verified claims. |
address | Can read user postal address | Returns address claim. Currently this contains only the country code. |
profile | Can read basic user profile, including information like name | Returns name , family_name , given_name , account_type claims. |
offline_access | The app can access the data user has given permission to, even when user is not using the app | Allows the return of a refresh token. |
Creative Cloud#
Scopes for Creative Cloud OAuth based APIs
APIs | Scopes |
---|---|
Adobe Stock | openid |
Creative SDK | openid,creative_sdk |
Photoshop | openid,creative_sdk |
Lightroom | openid,creative_sdk |
Experience Cloud#
Scopes for Experience Cloud OAuth based APIs
APIs | Scopes |
---|---|
Adobe Analytics | openid, AdobeID, read_organizations, additional_info.projectedProductContext, additional_info.job_function |