Microsoft Azure Cloud · OAuth Scopes

Microsoft Azure Cloud OAuth Scopes

OAuth 2.0 derived

Microsoft Azure Cloud publishes 1 OAuth 2.0 scope via the authorizationCode and clientCredentials flows. Scopes are the fine-grained permissions an application requests at authorization time to act against the Microsoft Azure Cloud API on a user’s behalf.

Tokens are issued from https://login.microsoftonline.com/common/oauth2/v2.0/token.

This index is generated from the provider’s OpenAPI security definitions (and, where available, its documented scope reference) and refreshes on every APIs.io network build. Browse every provider’s scopes at scopes.apis.io.

AICloud ComputingDatabasesIaaSInfrastructureMachine LearningMicrosoftNetworkingPaaSPlatform as a ServiceSaaSStorage
Scopes: 1 Flows: authorizationCode, clientCredentials Method: derived

OAuth endpoints

Authorization URL
https://login.microsoftonline.com/common/oauth2/v2.0/authorize
Token URL
https://login.microsoftonline.com/common/oauth2/v2.0/token
Flows
authorizationCodeclientCredentials

Scopes (1)

ScopeDescriptionFlows
https://management.azure.com/.default Manage Azure resources authorizationCode, clientCredentials

Source

OAuth Scopes

azure-cloud-scopes.yml Raw ↑
generated: '2026-07-11'
method: derived
source: openapi/azure-cloud-openapi.yml
schemes:
- name: entra
  source: openapi/azure-cloud-openapi.yml
  flows:
  - flow: authorizationCode
    authorizationUrl: https://login.microsoftonline.com/common/oauth2/v2.0/authorize
    tokenUrl: https://login.microsoftonline.com/common/oauth2/v2.0/token
  - flow: clientCredentials
    tokenUrl: https://login.microsoftonline.com/common/oauth2/v2.0/token
  description: Microsoft Entra ID OAuth 2.0 bearer token (scope https://management.azure.com/.default)
scopes:
- scope: https://management.azure.com/.default
  description: Manage Azure resources
  flows:
  - authorizationCode
  - clientCredentials
  sources:
  - openapi/azure-cloud-openapi.yml