Specifies the OAuth scopes requested during authentication. Multiple scopes must be separated by whitespace.

Data Type

string

Default Value

""

Remarks

This property defines the set of permissions that the connector requests when authenticating with OAuth or AzureAD. Scopes determine which operations can be performed after authentication. Set this property when you need to request additional permissions or limit the permissions for a specific authentication flow. Scopes must be separated with a space. If omitted, the connector applies the defaults required for the selected AuthScheme.

OAuth Defaults

When using OAuth, the connector requests the SharePoint add-in scopes required for Microsoft Project access. The default set includes scopes such as ProjectAdmin.Manage, Projects.Write, ProjectResources.Write, and ProjectReporting.Read.

For a complete list of available OAuth scopes and aliases, see SharePoint Add-in Authorization and Scope Aliases.

AzureAD Defaults

When using AzureAD, the connector requests standard Microsoft identity platform scopes. The default values include offline_access and the SharePoint resource scope for your organization, typically expressed as https://YourOrganization.sharepoint.com/.default.

You can find a list of the available Azure scopes under API Permissions > SharePoint when customizing any app in the Azure Portal's App Registrations page.