Aiven · OAuth Scopes

Aiven OAuth Scopes

OAuth 2.0 derived

Aiven publishes 34 OAuth 2.0 scopes via the authorizationCode flow. Scopes are the fine-grained permissions an application requests at authorization time to act against the Aiven API on a user’s behalf.

Tokens are issued from https://api.aiven.io/v1/oauth2/token.

This index is generated from the provider’s OpenAPI security definitions (and, where available, its documented scope reference) and refreshes on every APIs.io network build. Browse every provider’s scopes at scopes.apis.io.

Managed Data InfrastructureApache KafkaPostgreSQLOpenSearchClickHouseRedisMySQLOpen SourceCloud DatabaseDBaaSData StreamingData Platform
Scopes: 34 Flows: authorizationCode Method: derived

OAuth endpoints

Authorization URL
https://console.aiven.io/oauth/authorize
Token URL
https://api.aiven.io/v1/oauth2/token
Flows
authorizationCode

Scopes (34)

ScopeDescriptionFlows
accounts Allow enumerating and reading accounts configuration authorizationCode
accounts:read Allow modifying account configuration authorizationCode
accounts:write Provides full access to authentication related API authorizationCode
all Provide full access to the API authorizationCode
authentication Provides full access to authentication related API authorizationCode
authentication:read Allow reading authentication related configuration on resources (user profile, accounts) authorizationCode
authentication:write Allow modifying authentication related configurations on resources (user profile, accounts) authorizationCode
billing Provide full access to billing APIs authorizationCode
billing:read Allow reading billing information and configuration authorizationCode
billing:write Allow writing billing configuration authorizationCode
payments Provide full access to payment method APIs authorizationCode
payments:read Allow reading the payment method configurations authorizationCode
payments:write Allows writing payment method configuration authorizationCode
privatelink Provide full access to private link APIs authorizationCode
privatelink:read Allow enumerating and reading private link items and configurations authorizationCode
privatelink:write Allow writing (creating, modifying, deleting) private link items authorizationCode
projects Provide full access to projects APIs authorizationCode
projects:read Allow enumerating projects and reading their configuration authorizationCode
projects:write Allow writing (creating, modifying, deleting) projects authorizationCode
scim Provide full access to SCIM operations authorizationCode
scim:read Allow reading SCIM endpoints authorizationCode
scim:write Allow writing (modifying) SCIM endpoints authorizationCode
services Provide full access to services APIs authorizationCode
services:read Allow enumerating services and reading their configuration authorizationCode
services:write Allow writing (creating, modifying, deleting) services authorizationCode
static_ips Provide full access to static IPs APIs authorizationCode
static_ips:read Allow enumerating and reading static IP items and configurations authorizationCode
static_ips:write Allow writing (creating, modifying, deleting) static IP items authorizationCode
tickets Provide full access to support ticket APIs authorizationCode
tickets:read Allow enumerating and reading support tickets authorizationCode
tickets:write Allow writing (creating, modifying) support tickets authorizationCode
user Provide full access to user profile APIs authorizationCode
user:read Allow reading user profile and configuration authorizationCode
user:write Allow writing (modifying) user profile and configuration authorizationCode

Source

OAuth Scopes

aiven-scopes.yml Raw ↑
generated: '2026-07-11'
method: derived
source: openapi/aiven-aiven-api-openapi.yml
schemes:
- name: oauth2
  source: openapi/aiven-aiven-api-openapi.yml
  flows:
  - flow: authorizationCode
    authorizationUrl: https://console.aiven.io/oauth/authorize
    tokenUrl: https://api.aiven.io/v1/oauth2/token
  description: OAuth2 security scheme
scopes:
- scope: accounts
  description: Allow enumerating and reading accounts configuration
  flows:
  - authorizationCode
  sources:
  - openapi/aiven-aiven-api-openapi.yml
- scope: accounts:read
  description: Allow modifying account configuration
  flows:
  - authorizationCode
  sources:
  - openapi/aiven-aiven-api-openapi.yml
- scope: accounts:write
  description: Provides full access to authentication related API
  flows:
  - authorizationCode
  sources:
  - openapi/aiven-aiven-api-openapi.yml
- scope: all
  description: Provide full access to the API
  flows:
  - authorizationCode
  sources:
  - openapi/aiven-aiven-api-openapi.yml
- scope: authentication
  description: Provides full access to authentication related API
  flows:
  - authorizationCode
  sources:
  - openapi/aiven-aiven-api-openapi.yml
- scope: authentication:read
  description: Allow reading authentication related configuration on resources (user profile,
    accounts)
  flows:
  - authorizationCode
  sources:
  - openapi/aiven-aiven-api-openapi.yml
- scope: authentication:write
  description: Allow modifying authentication related configurations on resources (user profile,
    accounts)
  flows:
  - authorizationCode
  sources:
  - openapi/aiven-aiven-api-openapi.yml
- scope: billing
  description: Provide full access to billing APIs
  flows:
  - authorizationCode
  sources:
  - openapi/aiven-aiven-api-openapi.yml
- scope: billing:read
  description: Allow reading billing information and configuration
  flows:
  - authorizationCode
  sources:
  - openapi/aiven-aiven-api-openapi.yml
- scope: billing:write
  description: Allow writing billing configuration
  flows:
  - authorizationCode
  sources:
  - openapi/aiven-aiven-api-openapi.yml
- scope: payments
  description: Provide full access to payment method APIs
  flows:
  - authorizationCode
  sources:
  - openapi/aiven-aiven-api-openapi.yml
- scope: payments:read
  description: Allow reading the payment method configurations
  flows:
  - authorizationCode
  sources:
  - openapi/aiven-aiven-api-openapi.yml
- scope: payments:write
  description: Allows writing payment method configuration
  flows:
  - authorizationCode
  sources:
  - openapi/aiven-aiven-api-openapi.yml
- scope: privatelink
  description: Provide full access to private link APIs
  flows:
  - authorizationCode
  sources:
  - openapi/aiven-aiven-api-openapi.yml
- scope: privatelink:read
  description: Allow enumerating and reading private link items and configurations
  flows:
  - authorizationCode
  sources:
  - openapi/aiven-aiven-api-openapi.yml
- scope: privatelink:write
  description: Allow writing (creating, modifying, deleting) private link items
  flows:
  - authorizationCode
  sources:
  - openapi/aiven-aiven-api-openapi.yml
- scope: projects
  description: Provide full access to projects APIs
  flows:
  - authorizationCode
  sources:
  - openapi/aiven-aiven-api-openapi.yml
- scope: projects:read
  description: Allow enumerating projects and reading their configuration
  flows:
  - authorizationCode
  sources:
  - openapi/aiven-aiven-api-openapi.yml
- scope: projects:write
  description: Allow writing (creating, modifying, deleting) projects
  flows:
  - authorizationCode
  sources:
  - openapi/aiven-aiven-api-openapi.yml
- scope: scim
  description: Provide full access to SCIM operations
  flows:
  - authorizationCode
  sources:
  - openapi/aiven-aiven-api-openapi.yml
- scope: scim:read
  description: Allow reading SCIM endpoints
  flows:
  - authorizationCode
  sources:
  - openapi/aiven-aiven-api-openapi.yml
- scope: scim:write
  description: Allow writing (modifying) SCIM endpoints
  flows:
  - authorizationCode
  sources:
  - openapi/aiven-aiven-api-openapi.yml
- scope: services
  description: Provide full access to services APIs
  flows:
  - authorizationCode
  sources:
  - openapi/aiven-aiven-api-openapi.yml
- scope: services:read
  description: Allow enumerating services and reading their configuration
  flows:
  - authorizationCode
  sources:
  - openapi/aiven-aiven-api-openapi.yml
- scope: services:write
  description: Allow writing (creating, modifying, deleting) services
  flows:
  - authorizationCode
  sources:
  - openapi/aiven-aiven-api-openapi.yml
- scope: static_ips
  description: Provide full access to static IPs APIs
  flows:
  - authorizationCode
  sources:
  - openapi/aiven-aiven-api-openapi.yml
- scope: static_ips:read
  description: Allow enumerating and reading static IP items and configurations
  flows:
  - authorizationCode
  sources:
  - openapi/aiven-aiven-api-openapi.yml
- scope: static_ips:write
  description: Allow writing (creating, modifying, deleting) static IP items
  flows:
  - authorizationCode
  sources:
  - openapi/aiven-aiven-api-openapi.yml
- scope: tickets
  description: Provide full access to support ticket APIs
  flows:
  - authorizationCode
  sources:
  - openapi/aiven-aiven-api-openapi.yml
- scope: tickets:read
  description: Allow enumerating and reading support tickets
  flows:
  - authorizationCode
  sources:
  - openapi/aiven-aiven-api-openapi.yml
- scope: tickets:write
  description: Allow writing (creating, modifying) support tickets
  flows:
  - authorizationCode
  sources:
  - openapi/aiven-aiven-api-openapi.yml
- scope: user
  description: Provide full access to user profile APIs
  flows:
  - authorizationCode
  sources:
  - openapi/aiven-aiven-api-openapi.yml
- scope: user:read
  description: Allow reading user profile and configuration
  flows:
  - authorizationCode
  sources:
  - openapi/aiven-aiven-api-openapi.yml
- scope: user:write
  description: Allow writing (modifying) user profile and configuration
  flows:
  - authorizationCode
  sources:
  - openapi/aiven-aiven-api-openapi.yml