OAuth Scopes and Endpoints
Required Scopes and Endpoint Domains for LinkedIn
When integrating with LinkedIn, your application needs specific permissions to interact with the API.These permissions are defined by access scopes, which determine what data your application can access and what actions it can perform.
This topic provides information about the required access scopes and endpoint domains for the LinkedIn driver.
Understanding Scopes
Scopes are a way to limit an application's access to a user's data. They define the specific actions that an application can perform on behalf of the user.
For example, a read-only scope might allow an application to view data, while a full access scope might allow it to modify data.
Required Scopes for LinkedIn
To see what scopes are granted by each API product, refer to LinkedIn's documentation.
| Entity | Statement Types | Minimal Required Scopes |
| Comments | SELECT | r_organization_social |
| Comments | INSERT UPDATE DELETE | w_organization_social |
| CompanyStatusUpdates | SELECT | r_organization_social |
| CompanyStatusUpdates | INSERT UPDATE DELETE | w_organization_social |
| Events | SELECT | r_events
NOTE: CData's embedded OAuth application does not support this scope. You must create a custom OAuth application and request access for Events Management API from the list of products (see Creating a Custom OAuth Application). |
| Events | UPDATE | rw_events
NOTE: CData's embedded OAuth application does not support this scope. You must create a custom OAuth application and request access for Events Management API from the list of products (see Creating a Custom OAuth Application). |
| CreateEvent | EXECUTE | rw_events |
| CompanyDetails | SELECT | r_organization_admin |
| CompanyFollowerStatistics | SELECT | r_organization_admin |
| CompanyList | SELECT | r_organization_admin |
| CompanyPageStatistics | SELECT | r_organization_admin |
| CompanyUpdateStatistics | SELECT | r_organization_admin |
| Documents | SELECT | r_organization_social |
| GeoLocation | SELECT | - |
| Images | SELECT | r_organization_social |
| Industries | SELECT | - |
| OrganizationAuthorizationActions | SELECT | rw_organization_admin |
| OrganizationFollowerCount | SELECT | - |
| OrganizationLocations | SELECT | r_organization_admin |
| Organizations | SELECT | r_organization_admin |
| Profiles | SELECT | r_basicprofile |
| Videos | SELECT | r_organization_social |
| VideoTimeWatchedForVideoViewsStatistics | SELECT | r_organization_social |
| VideoTimeWatchedStatistics | SELECT | r_organization_social |
| VideoViewerStatistics | SELECT | r_organization_social |
| VideoViewStatistics | SELECT | r_organization_social |
| DownloadAsset | EXECUTE | r_organization_social |
| UploadDocument | EXECUTE | w_organization_social |
| UploadImage | EXECUTE | w_organization_social |
| UploadVideo | EXECUTE | w_organization_social |
| UploadVideoCaptions | EXECUTE | - |
| UploadVideoThumbnail | EXECUTE | - |
Understanding Endpoint Domains
Endpoint domains are the specific URLs that the application needs to communicate with in order to authenticate, retrieve records, and perform other essential operations.
Allowlisting these domains ensures that the network traffic between your application and the API is not blocked by firewalls or security settings.
Note: Most users do not need to make any special configurations. Allowlisting is typically only necessary for environments with strict security measures, such as restricted outbound network traffic.
Required Endpoint Domains for LinkedIn
| Domain | Always Required | Description |
| linkedin.com | True | The main domain used for accessing the main LinkedIn API-s that the driver uses. |
| licdn.com | False | The domain used for downloading LinkedIn assets through its CDN such as Images or Videos (see DownloadAsset as well). |