Skip to main content
POST
/
api
/
{serviceId}
/
client
/
extension
/
requestable_scopes
/
update
/
{clientId}
Typescript (SDK)
import { Authlete } from "@authlete/typescript-sdk";

const authlete = new Authlete({
  bearer: process.env["AUTHLETE_BEARER"] ?? "",
});

async function run() {
  const result = await authlete.clientManagement.clientExtensionRequestablesScopesUpdateApiPost({
    serviceId: "<id>",
    clientId: "<id>",
    clientExtensionRequestableScopesUpdateRequest: {},
  });

  console.log(result);
}

run();
{
  "requestableScopes": [
    "<string>"
  ]
}

Authorizations

Authorization
string
header
required

Authenticate every request with a Service Access Token or Organization Token. Set the token value in the Authorization: Bearer <token> header.

Service Access Token: Scoped to a single service. Use when automating service-level configuration or runtime flows.

Organization Token: Scoped to the organization; inherits permissions across services. Use for org-wide automation or when managing multiple services programmatically.

Both token types are issued by the Authlete console or provisioning APIs.

Path Parameters

serviceId
string
required

A service ID.

clientId
string
required

A client ID.

Body

application/json
requestableScopes
string[]

The set of scopes that the client application is allowed to request. This parameter will be one of the following. Details are described in the description.

  • an empty set
  • a set with at least one element

If this parameter contains scopes that the service does not support, those scopes are just ignored. Also, if this parameter is null or is not included in the request, it is equivalent to calling /client/extension/requestable_scopes/delete API.

Response

Requestable scopes updated successfully

requestableScopes
string[]