Optimizely · OAuth Scopes

Optimizely OAuth Scopes

OAuth 2.0 searched

Optimizely publishes 4 OAuth 2.0 scopes via the clientCredentials flow. Scopes are the fine-grained permissions an application requests at authorization time to act against the Optimizely API on a user’s behalf.

Tokens are issued from https://api.cmp.optimizely.com/oauth/token.

This index is generated from the provider’s OpenAPI security definitions (and, where available, its documented scope reference) and refreshes on every APIs.io network build. Browse every provider’s scopes at scopes.apis.io.

A/B TestingContent ManagementCustomer DataE-CommerceExperimentationFeature FlagsMarketing
Scopes: 4 Flows: clientCredentials Method: searched

OAuth endpoints

Token URL
https://api.cmp.optimizely.com/oauth/token
Flows
clientCredentials

Scopes (4)

ScopeDescriptionFlows
all The only supported scope for the Optimizely Web Experimentation REST API OAuth 2.0 flow. The generated token has permissions that match the user role of the authorizing user.
openid OpenID Connect scope used in the Optimizely CMP authorization code flow to identify the user.
profile OpenID Connect scope used in the Optimizely CMP authorization code flow to access user profile information.
offline_access OpenID Connect scope used in the Optimizely CMP authorization code flow to obtain refresh tokens for long-lived access.

Source

OAuth Scopes

optimizely-scopes.yml Raw ↑
generated: '2026-07-11'
method: searched
source: openapi/optimizely-cmp-openapi.yml
docs: https://docs.developers.optimizely.com/web-experimentation/docs/registration
schemes:
- name: oauth2
  source: openapi/optimizely-cmp-openapi.yml
  flows:
  - flow: clientCredentials
    tokenUrl: https://api.cmp.optimizely.com/oauth/token
  description: OAuth 2.0 authentication for the CMP API.
scopes:
- scope: all
  description: >-
    The only supported scope for the Optimizely Web Experimentation REST API
    OAuth 2.0 flow. The generated token has permissions that match the user
    role of the authorizing user.
  sources:
  - https://docs.developers.optimizely.com/web-experimentation/docs/registration
- scope: openid
  description: >-
    OpenID Connect scope used in the Optimizely CMP authorization code flow to
    identify the user.
  sources:
  - https://docs.developers.optimizely.com/content-marketing-platform/docs/authentication-1
- scope: profile
  description: >-
    OpenID Connect scope used in the Optimizely CMP authorization code flow to
    access user profile information.
  sources:
  - https://docs.developers.optimizely.com/content-marketing-platform/docs/authentication-1
- scope: offline_access
  description: >-
    OpenID Connect scope used in the Optimizely CMP authorization code flow to
    obtain refresh tokens for long-lived access.
  sources:
  - https://docs.developers.optimizely.com/content-marketing-platform/docs/authentication-1