For this guide let's create two scopes:
write. Applications authorized with the
read scope will be able to read public data from our API. The
write scope will let applications change data in our API.
Go to doorkeeper's initializer and add:
config/initializers/doorkeeper.rbDoorkeeper.configure dodefault_scopes :readoptional_scopes :writeenforce_configured_scopesend
The last line with
enforce_configured_scopes ensures applications to be able to ask only for configured scopes defined in