Microsoft 365 Copilot · OAuth Scopes
Microsoft 365 Copilot OAuth Scopes
OAuth 2.0
derived
Microsoft 365 Copilot publishes 7 OAuth 2.0 scopes via the authorizationCode and clientCredentials flows. Scopes are the fine-grained permissions an application requests at authorization time to act against the Microsoft 365 Copilot API on a user’s behalf.
Tokens are issued from https://login.microsoftonline.com/common/oauth2/v2.0/token.
This index is generated from the provider’s OpenAPI security definitions (and, where available, its documented scope reference) and refreshes on every APIs.io network build. Browse every provider’s scopes at scopes.apis.io.
Artificial IntelligenceCopilotEnterpriseLLMMicrosoft 365Natural Language ProcessingProductivity
Scopes: 7
Flows: authorizationCode, clientCredentials
Method: derived
OAuth endpoints
Authorization URL
https://login.microsoftonline.com/common/oauth2/v2.0/authorize
https://login.microsoftonline.com/common/oauth2/v2.0/authorize
Token URL
https://login.microsoftonline.com/common/oauth2/v2.0/token
https://login.microsoftonline.com/common/oauth2/v2.0/token
Flows
authorizationCodeclientCredentials
authorizationCodeclientCredentials
Scopes (7)
| Scope | Description | Flows |
|---|---|---|
| Calendars.Read | Read user calendars | authorizationCode |
| ExternalConnection.ReadWrite.OwnedBy | Manage owned Copilot connector connections | authorizationCode |
| ExternalItem.ReadWrite.OwnedBy | Manage owned external items | authorizationCode |
| Files.Read.All | Read all files | authorizationCode |
| Mail.Read | Read user mail | authorizationCode |
| User.Read | Sign in and read user profile | authorizationCode |
| https://graph.microsoft.com/.default | Use app-registered Graph permissions | clientCredentials |