Bitwarden · OAuth Scopes

Bitwarden OAuth Scopes

OAuth 2.0 derived

Bitwarden publishes 1 OAuth 2.0 scope via the clientCredentials flow. Scopes are the fine-grained permissions an application requests at authorization time to act against the Bitwarden API on a user’s behalf.

Tokens are issued from https://identity.bitwarden.com/connect/token.

This index is generated from the provider’s OpenAPI security definitions (and, where available, its documented scope reference) and refreshes on every APIs.io network build. Browse every provider’s scopes at scopes.apis.io.

SecurityPassword ManagerOpen SourceVaultIdentitySCIM
Scopes: 1 Flows: clientCredentials Method: derived

OAuth endpoints

Token URL
https://identity.bitwarden.com/connect/token
Flows
clientCredentials

Scopes (1)

ScopeDescriptionFlows
api.organization Organization APIs clientCredentials

Source

OAuth Scopes

bitwarden-scopes.yml Raw ↑
generated: '2026-07-11'
method: derived
source: openapi/bitwarden-public-swagger.json
schemes:
- name: OAuth2 Client Credentials
  source: openapi/bitwarden-public-swagger.json
  flows:
  - flow: clientCredentials
    tokenUrl: https://identity.bitwarden.com/connect/token
scopes:
- scope: api.organization
  description: Organization APIs
  flows:
  - clientCredentials
  sources:
  - openapi/bitwarden-public-swagger.json