Skip to main content

Question

 René van Seuren (Renév545)
BPM Company
Senior BPM architect
BPM Company
NL
Renév545 Member since 2014 6 posts
BPM Company
Posted: 7 hours 54 minutes ago
Last activity: 7 hours 54 minutes ago
Posted: 29 Sep 2025 9:33 EDT
Last activity: 29 Sep 2025 9:33 EDT

Where is scope (email) configured for access_token?

When we look at the json-message containing the access_token we noticed that "email" is part of the scope eventhough (as far as we know) we didn't specify any scope. 

{
  "sub": "SNS2551838",
  "app_version": "25.34",
  "iss": "urn:www-t1.snsbank.nl",
  "psync_id": "256f7e4d84eff68ebeb3704f164084c3",
  "operator_access": "PcHypotheekC11n:Customer",
  "aud": "urn:22709575095215276110",
  "app_name": "PcHypotheekC11n",
  "nbf": 1753971318,
  "scope": [
    "app.alias.PcHypotheekC11n",
    "email"
  ],
  "exp": 1753973318,
  "iat": 1753972418,
  "jti": "72d484ce74fbf23db248122d99da797a"
}

We would like to know where this can be configured or is this something that is added by the Pega Platform?

I hope anybody can help us.
Kind regards,
René van Seuren

To see attachments, please log in.
Pega Platform '24.1.2
Pega Platform
Security
Financial Services
Senior System Architect

  • Reply

We'd prefer it if you saw us at our best.

Pega Collaboration Center has detected you are using a browser which may prevent you from experiencing the site as intended. To improve your experience, please update your browser.

Close Deprecation Notice