Scope

Overview

Scopes are an important concept in Exoway as they are used to specify the exact level of access to resources that can be granted.

Scopes vs permissions​

What's the difference between scopes and permissions? Scopes define what the user is authorized to access in the organization of the owner. Permissions (RBAC, ACL) define what the user themselves are allowed to do.

By using scopes, owners can control the level of access that users have to protected resources. Permissions ensure a user has access to their resources only, not the resources of other users.