Both PATs and OAuth tokens are scoped to specific resources. This way you can limit what 3rd party applications are allowed to do with your account. We currently have 4 different scopes that you can grant to PATs or OAuth Apps:
Please note that the "write" scopes implicitly provide access to read, but not vice versa.
The board scope grants access to board information and everything that lies within. This includes:
- Card Assignees
- Due Dates
The user scope grants access to information of the user associated with the token. This includes:
- User profile