Here is the list of all OAuth scopes in the Lucca API (as of version 2024-11-01).

Each scope is given a “criticality” level to help you protect your data.

ScopeRelated resourcesDescriptionCriticality
legal-entities.readonlylegal-entityRead legal-entity objects.🟢 Low
business-establishments.readonlybusiness-establishmentRead business-establishment objects.🟢 Low
departments.readonlydepartmentRead department objects.🟢 Low
employees.readonlyemployeeRead employee objects.

This could reveal future arrivals or former employees.
🟠 Medium
employees.readwriteemployeeRead, create, update or delete employee objects.🟠 Medium
employee-personal-records.readonlyemployee-personal-recordRead employee-personal-record objects.

This contains personal information about employees and thus could be confidential.
🔴 High
employee-personal-records.readwriteemployee-personal-recordRead, create, update or delete employee-personal-record objects.

This contains personal information about employees and thus could be confidential.
🔴 High
employments.readonlyemploymentRead employment objects.

This could reveal an upcoming employee termination or arrival.
🟠 Medium
employment.readwriteemploymentRead, create, update or delete employment objects.

This could reveal an upcoming employee termination or arrival.
🟠 Medium
employment-templates.readonlyemployment-templateRead employment-template objects.

This could reveal the existence of little known forms of employment.
🟠 Medium
employment-templates.readwriteemployment-templateRead, create, update or delete employment-template objects.

This could reveal the existence of little known forms of employment.
🟠 Medium
job-positions.readonlyjob-positionRead job-position and related probationary-period objects.🟢 Low
job-positions.readwritejob-positionRead, create, update or delete job-position objects.

This may reveal employment dates (through “out-of-bound” errors).
🟠 Medium
probationary-periods.readonlyprobationary-periodRead probationary-period objects.

Probationary-periods and their renewal may be considered confidential.
🟠 Medium
probationary-periods.readwriteprobationary-periodRead, create, update or delete probationary-period objects.

Probationary-periods and their renewal may be considered confidential.

This may reveal employment dates (through “out-of-bound” errors).
🟠 Medium
occupation-categories.readonlyoccupation-categoryRead occupation-category objects.

This may reveal little known employee categories.
🟢 Low
occupation-categories.readwriteoccupation-categoryRead, create, update or delete occupation-category objects.

This may reveal little known employee categories.
🟠 Medium
job-qualifications.readonlyjob-qualification and professionsRead job-qualification and profession objects.

This may reveal little known employee job-qualification.
🟢 Low
job-qualifications.readwritejob-qualification and professionsRead, create, update or delete job-qualification and profession objects.

This may reveal little known employee job-qualification.
🟠 Medium