Xero Accounting · OAuth Scopes
Xero Accounting OAuth Scopes
OAuth 2.0
derived
Xero Accounting publishes 6 OAuth 2.0 scopes via the authorizationCode flow. Scopes are the fine-grained permissions an application requests at authorization time to act against the Xero Accounting API on a user’s behalf.
Tokens are issued from https://identity.xero.com/connect/token.
This index is generated from the provider’s OpenAPI security definitions (and, where available, its documented scope reference) and refreshes on every APIs.io network build. Browse every provider’s scopes at scopes.apis.io.
AccountingSmall BusinessInvoicingBookkeepingFinancial ReportingSaaS
Scopes: 6
Flows: authorizationCode
Method: derived
OAuth endpoints
Authorization URL
https://login.xero.com/identity/connect/authorize
https://login.xero.com/identity/connect/authorize
Token URL
https://identity.xero.com/connect/token
https://identity.xero.com/connect/token
Flows
authorizationCode
authorizationCode
Scopes (6)
| Scope | Description | Flows |
|---|---|---|
| accounting.attachments | Grant read/write access to attachments | authorizationCode |
| accounting.contacts | Grant read/write access to contacts and contact groups | authorizationCode |
| accounting.journals.read | Grant read-only access to journals | authorizationCode |
| accounting.reports.read | Grant read-only access to accounting reports | authorizationCode |
| accounting.settings | Grant read/write access to organisation and account settings | authorizationCode |
| accounting.transactions | Grant read/write access to bank transactions, credit notes, invoices, repeating invoices | authorizationCode |