This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Log in to ask a question
Log in to ask a question

Is it possible to change scope of the Existing OAuth2 Access Token in Apigee

Posted on 12-06-2019 07:54 AM
leela2004duggir
New Member
Reply posted on --/--/---- --:-- AM

I would like to change Scope of the issued OAuth2 Access Token. Is it possible to do in Apigee.

Example :

1. Initially Token issued with scope1.

2, After updating Token should be valid for scope2.

Please help me out. Thanks in advance..!!

0 1 772
Topic Labels
0 Likes
1 REPLY 1

Posted on --/--/---- --:-- AM
deboraelkin
Staff
Reply posted on --/--/---- --:-- AM

AFAIK, the OAuth2 standard does not contemplate the possibility of altering the scope of an issued token, except when a token is being refreshed, in which case the new scope could be a subset of the originally approved scope.

If you think about it, it makes sense. An end user approves an app to access a given scope. Changing it without the user knowing about this is not a good idea.

0 Likes