OAuth scopes define what data and actions third-party applications can access on behalf of users. When SaaS apps like Google Workspace, Microsoft 365, or Slack connect to your environment, each requests a set of scopes—essentially permissions—that determine its level of access to sensitive information. This collection explains the OAuth scopes used by popular business apps, helping security teams understand what each permission grants, identify over-privileged integrations, and strengthen their organization’s SaaS security posture.
