Skip to content

Scopes

Scopes control which API areas an OAuth client is allowed to access. You assign scopes when creating an API access in the Offisy settings.

Setting up API access is described in the Help Center.

Available scopes

ScopeLabelDescriptionUnlocked endpoints
full_accessFull accessAccess to all endpointsAll
appointmentsAppointmentsRetrieve and book appointments. GET /appointments and GET /appointments/{uuid} always require users in addition. For course appointments (with attendees and instructors) additionally customers.GET /appointments, GET /appointments/{uuid}, GET /booking/available-slots, GET /booking/available-slots/batch, GET /booking/available-slots/next, POST /appointments/service
customersCustomersRetrieve, create, and update customersGET /customers, GET /customers/{uuid}, POST /customers, PUT /customers/{uuid}
servicesServicesRetrieve servicesGET /services, GET /services/{uuid}, GET /service/categories, GET /service/categories/{uuid}
companyCompanyRetrieve company profile and tenantsGET /company, GET /tenancies, GET /tenancies/{uuid}
locationsLocationsRetrieve locationsGET /locations, GET /locations/{uuid}
usersUsersRetrieve usersGET /users, GET /users/{uuid}
executionsService assignmentsRetrieve service assignments — which users offer which service at which locationGET /executions
medicalsMedical fee servicesRetrieve, create, and update medical fee servicesGET /medicals, GET /medicals/{uuid}, POST /medicals, PUT /medicals/{uuid}

Note: A client with the full_access scope passes every scope check automatically — regardless of which scope is required at a given endpoint.

Offisy GmbH