ApplicationGrants
The scopes (OAuth) granted to the OIDC application for each resource.
View-Specific Information
SELECT
Reading data from this entity requires Read Grant/applications:read:grant permission.We recommend using the built-in Client Application Developer role.
To execute SELECT statements on this entity, the OIDCApplicationId column must be specified in the criteria as shown in the examples below:
SELECT * FROM Administrators.ApplicationGrants WHERE OIDCApplicationId = '8f2c6a33-1f7f-458e-8b58-f92507742293';
SELECT * FROM Administrators.ApplicationGrants WHERE OIDCApplicationId IN ('8f2c6a33-1f7f-458e-8b58-f92507742293', '4441de0a-e4f2-47da-a217-545955eb23a5');
The server uses the PingOne Platform API to process WHERE clause conditions built with the following columns and operators.
- OIDCApplicationId supports the following operators: =, IN.
All other filters are processed client-side within the server.
Columns
| Name | Type | References | Description |
| Id [KEY] | String | The grant identifier (UUID). | |
| OIDCApplicationId | String | OIDCApplications.Id | The identifier (UUID) of the application related with the grant. |
| Scopes | String | The identifiers (UUID) of the scopes granted to the application. This information is represented in JSON format (aggregate). | |
| ResourceId | String | Resources.Id | The identifier (UUID) of the resource related with the scopes assigned. |
| CreatedAt | Datetime | The time at which the grant was created. | |
| UpdatedAt | Datetime | The time at which the grant was last updated. |