Authentication
The core system is using OAuth 2.01 for authentication and acting as authorization server.
- restrict third-party apps to a limited subset of resources.
- revoke access for a particular third-party without changing credentials
Scopes
The list of available scopes may change.
| Scope | Description |
|---|---|
| openid2 | access the users public profile e.g.: username |
| profile2 | access the users personal profile information e.g.: firstname, lastname |
| email2 | access the users associated email address. |
| phone2 | access the users associated phone number. |
| library:read | Read only access the list of all photos owned by the user. |
| library:append | Limited write access access to add new photos, create new albums. |
| library:edit | access to edit photos owned by the user. |
| library:write | access to add and edit photos, albums, tags. |
| library:share | access to create new shares (photos/videos/albums). |
| admin.users:read | access to list users on the system. |
| admin.users:invite | access to invite new users to the system. |
| admin.users:write | access to manage users on the system. |