Lichess · OAuth Scopes

Lichess OAuth Scopes

OAuth 2.0 derived

Lichess publishes 23 OAuth 2.0 scopes via the authorizationCode flow. Scopes are the fine-grained permissions an application requests at authorization time to act against the Lichess API on a user’s behalf.

Tokens are issued from https://lichess.org/api/token.

This index is generated from the provider’s OpenAPI security definitions (and, where available, its documented scope reference) and refreshes on every APIs.io network build. Browse every provider’s scopes at scopes.apis.io.

ChessGamesOpen SourceNonprofitTournamentsPuzzlesBotsStreamingND-JSONOAuth
Scopes: 23 Flows: authorizationCode Method: derived

OAuth endpoints

Authorization URL
https://lichess.org/oauth
Token URL
https://lichess.org/api/token
Flows
authorizationCode

Scopes (23)

ScopeDescriptionFlows
board:play Play with the Board API authorizationCode
bot:play Play with the Bot API. Only for [Bot accounts](#tag/bot/POST/api/bot/account/upgrade) authorizationCode
challenge:bulk Create, delete, query bulk pairings authorizationCode
challenge:read Read incoming challenges authorizationCode
challenge:write Create, accept, decline challenges authorizationCode
email:read Read your email address authorizationCode
engine:read Read your external engines authorizationCode
engine:write Create, update, delete your external engines authorizationCode
follow:read Read followed players authorizationCode
follow:write Follow and unfollow other players authorizationCode
msg:write Send private messages to other players authorizationCode
preference:read Read your preferences authorizationCode
preference:write Write your preferences authorizationCode
puzzle:read Read puzzle activity authorizationCode
puzzle:write Write puzzle activity authorizationCode
racer:write Create and join puzzle races authorizationCode
study:read Read private studies and broadcasts authorizationCode
study:write Create, update, delete studies and broadcasts authorizationCode
team:lead Manage teams (kick members, send PMs) authorizationCode
team:read Read private team information authorizationCode
team:write Join, leave teams authorizationCode
tournament:write Create tournaments authorizationCode
web:mod Use moderator tools (within the bounds of your permissions) authorizationCode

Source

OAuth Scopes

lichess-scopes.yml Raw ↑
generated: '2026-07-11'
method: derived
source: openapi/lichess-openapi.yml
schemes:
- name: OAuth2
  source: openapi/lichess-openapi.yml
  flows:
  - flow: authorizationCode
    authorizationUrl: https://lichess.org/oauth
    tokenUrl: https://lichess.org/api/token
  description: Read [the introduction for how to make authenticated requests](#description/authentication).
scopes:
- scope: board:play
  description: Play with the Board API
  flows:
  - authorizationCode
  sources:
  - openapi/lichess-openapi.yml
- scope: bot:play
  description: Play with the Bot API. Only for [Bot accounts](#tag/bot/POST/api/bot/account/upgrade)
  flows:
  - authorizationCode
  sources:
  - openapi/lichess-openapi.yml
- scope: challenge:bulk
  description: Create, delete, query bulk pairings
  flows:
  - authorizationCode
  sources:
  - openapi/lichess-openapi.yml
- scope: challenge:read
  description: Read incoming challenges
  flows:
  - authorizationCode
  sources:
  - openapi/lichess-openapi.yml
- scope: challenge:write
  description: Create, accept, decline challenges
  flows:
  - authorizationCode
  sources:
  - openapi/lichess-openapi.yml
- scope: email:read
  description: Read your email address
  flows:
  - authorizationCode
  sources:
  - openapi/lichess-openapi.yml
- scope: engine:read
  description: Read your external engines
  flows:
  - authorizationCode
  sources:
  - openapi/lichess-openapi.yml
- scope: engine:write
  description: Create, update, delete your external engines
  flows:
  - authorizationCode
  sources:
  - openapi/lichess-openapi.yml
- scope: follow:read
  description: Read followed players
  flows:
  - authorizationCode
  sources:
  - openapi/lichess-openapi.yml
- scope: follow:write
  description: Follow and unfollow other players
  flows:
  - authorizationCode
  sources:
  - openapi/lichess-openapi.yml
- scope: msg:write
  description: Send private messages to other players
  flows:
  - authorizationCode
  sources:
  - openapi/lichess-openapi.yml
- scope: preference:read
  description: Read your preferences
  flows:
  - authorizationCode
  sources:
  - openapi/lichess-openapi.yml
- scope: preference:write
  description: Write your preferences
  flows:
  - authorizationCode
  sources:
  - openapi/lichess-openapi.yml
- scope: puzzle:read
  description: Read puzzle activity
  flows:
  - authorizationCode
  sources:
  - openapi/lichess-openapi.yml
- scope: puzzle:write
  description: Write puzzle activity
  flows:
  - authorizationCode
  sources:
  - openapi/lichess-openapi.yml
- scope: racer:write
  description: Create and join puzzle races
  flows:
  - authorizationCode
  sources:
  - openapi/lichess-openapi.yml
- scope: study:read
  description: Read private studies and broadcasts
  flows:
  - authorizationCode
  sources:
  - openapi/lichess-openapi.yml
- scope: study:write
  description: Create, update, delete studies and broadcasts
  flows:
  - authorizationCode
  sources:
  - openapi/lichess-openapi.yml
- scope: team:lead
  description: Manage teams (kick members, send PMs)
  flows:
  - authorizationCode
  sources:
  - openapi/lichess-openapi.yml
- scope: team:read
  description: Read private team information
  flows:
  - authorizationCode
  sources:
  - openapi/lichess-openapi.yml
- scope: team:write
  description: Join, leave teams
  flows:
  - authorizationCode
  sources:
  - openapi/lichess-openapi.yml
- scope: tournament:write
  description: Create tournaments
  flows:
  - authorizationCode
  sources:
  - openapi/lichess-openapi.yml
- scope: web:mod
  description: Use moderator tools (within the bounds of your permissions)
  flows:
  - authorizationCode
  sources:
  - openapi/lichess-openapi.yml