Added
API Auth Scopes
March 1st, 2015
We have added auth scopes that express Wrike data user permissions. The scope is selected during the OAuth 2.0 authorization (details in our docs on OAuth). Possible values are the following:
- wsReadOnly, wsReadWrite: required for requests involving all data available to users in the Wrike workspace (tasks, folders, comments, timelogs, etc.). Access is either read-only or read/write, respectively.
- amReadOnlyInvitation, amReadWriteInvitation: invitation related requests. Access is either read-only or read/write, respectively.
If no scope is explicitly requested, we set the default scope to the API client, which is equal to wsReadWrite. This means that by default, users interacting with Wrike through the API can modify any data available to them in the Wrike accounts they have access to, except user invitations.