{"componentChunkName":"component---src-templates-simple-markdown-js","path":"/iga/oauth2/","matchPath":"","result":{"data":{"markdownRemark":{"html":"<h1 style=\"position:relative;\"><a href=\"#oauth-20-scopes\" aria-label=\"oauth 20 scopes permalink\" class=\"anchor before\"><svg aria-hidden=\"true\" focusable=\"false\" height=\"16\" version=\"1.1\" viewBox=\"0 0 16 16\" width=\"16\"><path fill-rule=\"evenodd\" d=\"M4 9h1v1H4c-1.5 0-3-1.69-3-3.5S2.55 3 4 3h4c1.45 0 3 1.69 3 3.5 0 1.41-.91 2.72-2 3.25V8.59c.58-.45 1-1.27 1-2.09C10 5.22 8.98 4 8 4H4c-.98 0-2 1.22-2 2.5S3 9 4 9zm9-3h-1v1h1c1 0 2 1.22 2 2.5S13.98 12 13 12H9c-.98 0-2-1.22-2-2.5 0-.83.42-1.64 1-2.09V6.25c-1.09.53-2 1.84-2 3.25C6 11.31 7.55 13 9 13h4c1.45 0 3-1.69 3-3.5S14.5 6 13 6z\"></path></svg></a><div class=\"hidden-anchor\" id=\"oauth-20-scopes\"></div>OAuth 2.0 Scopes</h1>\n<h2 style=\"position:relative;\"><a href=\"#okta-governance-api\" aria-label=\"okta governance api permalink\" class=\"anchor before\"><svg aria-hidden=\"true\" focusable=\"false\" height=\"16\" version=\"1.1\" viewBox=\"0 0 16 16\" width=\"16\"><path fill-rule=\"evenodd\" d=\"M4 9h1v1H4c-1.5 0-3-1.69-3-3.5S2.55 3 4 3h4c1.45 0 3 1.69 3 3.5 0 1.41-.91 2.72-2 3.25V8.59c.58-.45 1-1.27 1-2.09C10 5.22 8.98 4 8 4H4c-.98 0-2 1.22-2 2.5S3 9 4 9zm9-3h-1v1h1c1 0 2 1.22 2 2.5S13.98 12 13 12H9c-.98 0-2-1.22-2-2.5 0-.83.42-1.64 1-2.09V6.25c-1.09.53-2 1.84-2 3.25C6 11.31 7.55 13 9 13h4c1.45 0 3-1.69 3-3.5S14.5 6 13 6z\"></path></svg></a><div class=\"hidden-anchor\" id=\"okta-governance-api\"></div>Okta Governance API</h2>\n<table>\n<thead>\n<tr>\n<th>Scope</th>\n<th>Description</th>\n</tr>\n</thead>\n<tbody>\n<tr>\n<td>okta.governance.accessCertifications.manage</td>\n<td>Allows the app to create and manage Access Certification Campaigns</td>\n</tr>\n<tr>\n<td>okta.governance.accessCertifications.read</td>\n<td>Allows the app to read information about Access Certification Campaigns and Reviews in your Okta organization</td>\n</tr>\n<tr>\n<td>okta.governance.accessRequests.manage</td>\n<td>Allows the app to create and manage V1 Access Requests, Request Types, and Teams</td>\n</tr>\n<tr>\n<td>okta.governance.accessRequests.read</td>\n<td>Allows the app to read information about V1 Access Requests, Request Types, and Teams in your Okta organization</td>\n</tr>\n<tr>\n<td>okta.governance.entitlements.read</td>\n<td>Allows the app to read information about Entitlements, Entitlement bundles and Grant</td>\n</tr>\n<tr>\n<td>okta.governance.entitlements.manage</td>\n<td>Allows the app to create and manage Entitlements, Entitlement bundles and Grants</td>\n</tr>\n<tr>\n<td>okta.accessRequests.catalog.read</td>\n<td>Allows the app to read information about Access Request Catalogs in your Okta organization</td>\n</tr>\n<tr>\n<td>okta.accessRequests.condition.manage</td>\n<td>Allows the app to create and manage Conditions for the Access Request Resource Catalog</td>\n</tr>\n<tr>\n<td>okta.accessRequests.condition.read</td>\n<td>Allows the app to read information about Conditions for the Access Request Resource Catalog</td>\n</tr>\n<tr>\n<td>okta.accessRequests.request.manage</td>\n<td>Allows the app to create and manage V2 Access Requests through the Access Request Resource Catalog</td>\n</tr>\n<tr>\n<td>okta.accessRequests.request.read</td>\n<td>Allows the app to read information about V2 Access Requests created through the Access Requests Resource Catalog</td>\n</tr>\n<tr>\n<td>okta.governance.collections.manage</td>\n<td>Allows the app to create and manage collections</td>\n</tr>\n<tr>\n<td>okta.governance.collections.read</td>\n<td>Allows the app to read information about collections in your Okta org</td>\n</tr>\n<tr>\n<td>okta.governance.riskRule.manage</td>\n<td>Allows the app to create and manage rules</td>\n</tr>\n<tr>\n<td>okta.governance.riskRule.read</td>\n<td>Allows the app to read information about rules in your Okta organization</td>\n</tr>\n<tr>\n<td>okta.governance.resourceOwner.manage</td>\n<td>Allows the app to create and manage resource owners</td>\n</tr>\n<tr>\n<td>okta.governance.resourceOwner.read</td>\n<td>Allows the app to read information about resource owners in your Okta organization</td>\n</tr>\n<tr>\n<td>okta.governance.labels.manage</td>\n<td>Allows the user to create and manage labels</td>\n</tr>\n<tr>\n<td>okta.governance.labels.read</td>\n<td>Allows the user to read information about labels in your Okta organization</td>\n</tr>\n<tr>\n<td>okta.governance.securityAccessReviews.admin.manage</td>\n<td>Allows the admin app to create and manage security access reviews</td>\n</tr>\n<tr>\n<td>okta.governance.securityAccessReviews.admin.read</td>\n<td>Allows the admin app to read information about security access reviews</td>\n</tr>\n<tr>\n<td>okta.governance.securityAccessReviews.endUser.manage</td>\n<td>Allows the end user app to create and manage security access reviews</td>\n</tr>\n<tr>\n<td>okta.governance.securityAccessReviews.endUser.read</td>\n<td>Allows the end user to read information about security access reviews</td>\n</tr>\n<tr>\n<td>okta.governance.principalSettings.manage</td>\n<td>Allows the app to create and manage governance settings for any user in your Okta organization</td>\n</tr>\n<tr>\n<td>okta.governance.principalSettings.read</td>\n<td>Allows the app to read information about governance settings for any user in your Okta organization</td>\n</tr>\n<tr>\n<td>okta.governance.settings.manage</td>\n<td>Allows the app to create and manage governance settings for the Okta organization</td>\n</tr>\n<tr>\n<td>okta.governance.settings.read</td>\n<td>Allows the app to read information about governance settings for the Okta organization</td>\n</tr>\n<tr>\n<td>okta.governance.delegates.read</td>\n<td>Allows the app to read information about delegates in your Okta organization</td>\n</tr>\n<tr>\n<td>okta.governance.reviewer.read</td>\n<td>Allows the end user to read information about access certification reviews assigned to them</td>\n</tr>\n</tbody>\n</table>","headings":[{"value":"OAuth 2.0 Scopes","depth":1},{"value":"Okta Governance API","depth":2}]},"contentItem":{"data":{"lastModified":"2026-01-08T05:08:34.000Z","enableToc":null,"disableLastModified":null,"tocMaxDepth":null,"requestLogin":false}},"siteConfig":{"enableToc":false,"disableLastModified":true,"tocMaxDepth":4}},"pageContext":{"matchPath":"","id":"7b084b46-3ea6-5ad6-9609-d47cfe367f1a__redocly content/iga/oauth2/","seo":{"title":"OAuth 2.0 Scopes","description":null,"image":"","keywords":null,"jsonLd":null,"lang":null,"siteUrl":null},"pageId":"iga/oauth2.md","pageBaseUrl":"/iga/oauth2","type":"markdown","toc":{"enable":true,"maxDepth":4,"headings":[{"depth":1,"value":"OAuth 2.0 Scopes","id":"oauth-20-scopes"},{"depth":2,"value":"Okta Governance API","id":"okta-governance-api"}]},"data":{"title":"OAuth 2.0 Scopes","meta":[{"name":"description","content":"List of all Okta OAuth 2.0 scopes used for governance APIs."}]},"catalogInfo":null,"link":"/iga/oauth2/","sidebarName":"reference","isLanding":false,"showPrevButton":null,"showNextButton":null,"apiVersions":null,"apiVersionId":null,"isDefaultApiVersion":null}},"staticQueryHashes":["1123603147","1302185487","1344209882","1398840060","1520077861","1975142765","2667623876","2950305614","3240152602","3743992808","561138138"]}