![what is identity api scope approval ui what is identity api scope approval ui](https://forum.vivaldi.net/assets/uploads/files/1633983337615-2021-10-11-23_13_57-підтвердити-дозволи.png)
You don't need to configure Trusted Origin. You can access all of the endpoints mentioned here from the browser in cross-origin scenarios using the bearer token. These scopes are used to perform end user API operations. The self scopes ( lf) only allow access to the user who authorized the token. Use the okta.read scopes to perform GET API operations and the okta.manage scopes to perform POST, PUT, and DELETE API operations. The manage scope is used to create a new resource, manage a resource, or delete a resource. The read scope is used to read information about a resource. For example, you can have resources that are users, clients, or apps with read or manage operations. Okta scopes have the following format: okta. Every action on an endpoint that supports OAuth 2.0 requires a specific scope.