For further improving security, you can limit your OAuth application to only be enabled to access data within certain scopes.
When integrating with the Silverfin SyncAPI, it's essential to exercise caution and only enable the API scopes you genuinely require for your application's functionality. Enabling unnecessary scopes can pose security risks and potentially expose sensitive data.
Scopes
We currently support the following scopes specially for the SyncAPI:
financials:transactions:syncwebhooks
Do you want to know our general available scopes? Check out: Oauth Application scopes
Scoping questions
| Example of required data | Scope(s) |
|---|---|
| You want to push transactional data into Silverfin? | financials:transactions:sync |
| You want to get a new company has been connected to your sync entity? | webhooks |
| More examples on our other scopes? | Oauth Application scopes |