← Back to glossary
Glossary

OAuth Scope

Reviewed 20 March 2026 Canonical definition

An OAuth scope is a label that defines the specific permissions carried by an access token. Scopes limit what an agent can do, such as reading a document but not deleting it, and are a core mechanism for enforcing least privilege.

Related articles

MCP How MCP Secures Agent Authentication MCP How MCP Secures Agent Authentication Compliance Authentication Best Practices for Agent-to-Agent Authentication

Related terms

NIST AI Risk Management Framework (AI RMF)Non-Human Identity (NHI)OAuth 2.0 (Open Authorization 2.0)OIDC (OpenID Connect)On-Premises AIOutput Validation