Add documentation around OAuth/Personal Access Token scopes.

author: Timothy Andrew <mail@timothyandrew.net> 2016-12-21 20:09:44 +0530
committer: Timothy Andrew <mail@timothyandrew.net> 2017-01-19 14:05:06 +0530
commit: 63e8dc8a76184ff76feb9c3f4c21d3180edd218c (patch)
tree: b5944118b1d890c86ec9d79036b1b0de468627a7 /doc/integration
parent: 7e88b242ce194958c6a59755eb434c17625c4395 (diff)
download: gitlab-ce-63e8dc8a76184ff76feb9c3f4c21d3180edd218c.tar.gz
1 files changed, 5 insertions, 3 deletions
diff --git a/doc/integration/oauth_provider.md b/doc/integration/oauth_provider.md
index 0c53584d201..af8a1c4e5ed 100644
--- a/doc/integration/oauth_provider.md
+++ b/doc/integration/oauth_provider.md
@@ -74,8 +74,10 @@ in the **Authorized applications** section under **Profile Settings > Applicatio
 
 ---
 
-As you can see, the default scope `api` is used, which is the only scope that
-GitLab supports so far. At any time you can revoke any access by just clicking
-**Revoke**.
+GitLab's OAuth applications support scopes, which allow various actions that any given
+application can perform. Although there are only two scopes available at the
+moment – `read_user` and `api` – the groundwork has been laid to add more scopes easily.
+
+At any time you can revoke any access by just clicking **Revoke**.
 
 [oauth]: http://oauth.net/2/ "OAuth website"
author	Timothy Andrew <mail@timothyandrew.net>	2016-12-21 20:09:44 +0530
committer	Timothy Andrew <mail@timothyandrew.net>	2017-01-19 14:05:06 +0530
commit	63e8dc8a76184ff76feb9c3f4c21d3180edd218c (patch)
tree	b5944118b1d890c86ec9d79036b1b0de468627a7 /doc/integration
parent	7e88b242ce194958c6a59755eb434c17625c4395 (diff)
download	gitlab-ce-63e8dc8a76184ff76feb9c3f4c21d3180edd218c.tar.gz