About Scopes

Scopes are the mechanism by which an Application communicates with the Authorization Platform. Scopes act as the endpoint between the two interfaces, translating the Application’s Request into the required API code that is required by the runtime. The Scope is then responsible for communicating the Response back to the Application.

The Scope is used to optimize the response payload by returning a focused access decision. Upon receipt of the Authorization Platform's Authorization decision, the Scope is then responsible for communicating the Response back to the Application.

• You can create as many Applications as you like, as well as multiple Scopes. One Scope can be associated to multiple Applications, but only one Application can be associated to multiple Scopes. Scopes are used to optimize the response payload by returning access decision-relevant only for the Asset Types connected to it. Scopes are defined at the Environment level, in the Environment Settings screen, and applied to Applications or created automatically within the process of creating an Application. After you create a Scope, it is automatically assigned a Client ID and Client Secret.

To copy the Client ID and Secret:

1. Hover over the Scope you created.
2. Click on Manage Keys.
3. Copy the Client ID at the top of the window.
4. Add a Key and regenerate the Key Value to obtain the Client Secret.

Scopes are managed on the Environment Settings screen.