Get scopes for a user in an organization tailored by the organization roles

GET /api/organizations/{id}/users/{userId}/scopes

Get scopes assigned to a user in the specified organization tailored by the organization roles. The scopes are derived from the organization roles assigned to the user.

Path parameters

  • id string Required

    The unique identifier of the organization.

  • userId string Required

    The unique identifier of the user.

Responses

  • 200 application/json

    A list of scopes assigned to the user.

    Hide response attributes Show response attributes object
    • tenantId string Required

      Maximum length is 21.

    • id string Required

      Minimum length is 1, maximum length is 21.

    • name string Required

      Minimum length is 1, maximum length is 128.

    • description string | null Required

      Maximum length is 256.

  • Bad Request

  • Unauthorized

  • Forbidden

  • The user is not a member of the organization.

GET /api/organizations/{id}/users/{userId}/scopes
curl \
 -X GET https://[tenant_id].logto.app/api/organizations/{id}/users/{userId}/scopes \
 -H "Authorization: Bearer $ACCESS_TOKEN"
Response examples (200)
[
  {
    "tenantId": "string",
    "id": "string",
    "name": "string",
    "description": "string"
  }
]