You must specify an unique id when creating a scope. You can then reference this id when verifying API keys using the SDKs
Scopes are a way to add permissions and rbac to your API. For example, you can create a scope called profile
. That way when you create an API key for a user, you can assign the profile
scope along with access like read
, create
, update
, and delete
.
There are two ways to create a scope.
You can create a scope in the dashboard
You can create a scope using the API or SDK. See how you can create a scope using the Create Scope API:
You can easily add permissions to your API endpoints by adding scopes in Verify Request endpoint. This way, only the API keys with the required scopes will be considered VALID
and can access your endpoint.
panda
without any meaning