Xero Accounting · OAuth Scopes

Xero Accounting OAuth Scopes

OAuth 2.0 derived

Xero Accounting publishes 6 OAuth 2.0 scopes via the authorizationCode flow. Scopes are the fine-grained permissions an application requests at authorization time to act against the Xero Accounting API on a user’s behalf.

Tokens are issued from https://identity.xero.com/connect/token.

This index is generated from the provider’s OpenAPI security definitions (and, where available, its documented scope reference) and refreshes on every APIs.io network build. Browse every provider’s scopes at scopes.apis.io.

AccountingSmall BusinessInvoicingBookkeepingFinancial ReportingSaaS
Scopes: 6 Flows: authorizationCode Method: derived

OAuth endpoints

Authorization URL
https://login.xero.com/identity/connect/authorize
Token URL
https://identity.xero.com/connect/token
Flows
authorizationCode

Scopes (6)

ScopeDescriptionFlows
accounting.attachments Grant read/write access to attachments authorizationCode
accounting.contacts Grant read/write access to contacts and contact groups authorizationCode
accounting.journals.read Grant read-only access to journals authorizationCode
accounting.reports.read Grant read-only access to accounting reports authorizationCode
accounting.settings Grant read/write access to organisation and account settings authorizationCode
accounting.transactions Grant read/write access to bank transactions, credit notes, invoices, repeating invoices authorizationCode

Source

OAuth Scopes

xero-accounting-scopes.yml Raw ↑
generated: '2026-07-11'
method: derived
source: openapi/xero-accounting-openapi.yml
schemes:
- name: OAuth2
  source: openapi/xero-accounting-openapi.yml
  flows:
  - flow: authorizationCode
    authorizationUrl: https://login.xero.com/identity/connect/authorize
    tokenUrl: https://identity.xero.com/connect/token
scopes:
- scope: accounting.attachments
  description: Grant read/write access to attachments
  flows:
  - authorizationCode
  sources:
  - openapi/xero-accounting-openapi.yml
- scope: accounting.contacts
  description: Grant read/write access to contacts and contact groups
  flows:
  - authorizationCode
  sources:
  - openapi/xero-accounting-openapi.yml
- scope: accounting.journals.read
  description: Grant read-only access to journals
  flows:
  - authorizationCode
  sources:
  - openapi/xero-accounting-openapi.yml
- scope: accounting.reports.read
  description: Grant read-only access to accounting reports
  flows:
  - authorizationCode
  sources:
  - openapi/xero-accounting-openapi.yml
- scope: accounting.settings
  description: Grant read/write access to organisation and account settings
  flows:
  - authorizationCode
  sources:
  - openapi/xero-accounting-openapi.yml
- scope: accounting.transactions
  description: Grant read/write access to bank transactions, credit notes, invoices, repeating
    invoices
  flows:
  - authorizationCode
  sources:
  - openapi/xero-accounting-openapi.yml