BambooHR · OAuth Scopes

BambooHR OAuth Scopes

OAuth 2.0 derived

BambooHR publishes 1 OAuth 2.0 scope via the authorizationCode flow. Scopes are the fine-grained permissions an application requests at authorization time to act against the BambooHR API on a user’s behalf.

Tokens are issued from https://api.bamboohr.com/token.php.

This index is generated from the provider’s OpenAPI security definitions (and, where available, its documented scope reference) and refreshes on every APIs.io network build. Browse every provider’s scopes at scopes.apis.io.

HRHRISHuman ResourcesPayrollTime TrackingApplicant TrackingPerformance Management
Scopes: 1 Flows: authorizationCode Method: derived

OAuth endpoints

Authorization URL
https://api.bamboohr.com/oauth/authorize.php
Token URL
https://api.bamboohr.com/token.php
Flows
authorizationCode

Scopes (1)

ScopeDescriptionFlows
offline_access Issue a refresh token along with the access token authorizationCode

Source

OAuth Scopes

bamboohr-scopes.yml Raw ↑
generated: '2026-07-11'
method: derived
source: openapi/bamboohr-openapi.yml
schemes:
- name: oauth2
  source: openapi/bamboohr-openapi.yml
  flows:
  - flow: authorizationCode
    authorizationUrl: https://api.bamboohr.com/oauth/authorize.php
    tokenUrl: https://api.bamboohr.com/token.php
  description: OAuth 2.0 authorization code flow (for multi-customer apps).
scopes:
- scope: offline_access
  description: Issue a refresh token along with the access token
  flows:
  - authorizationCode
  sources:
  - openapi/bamboohr-openapi.yml