JWT Deprecation - next steps

I have several apps at work that interact heavily with the Rest API. I use the JWT method for authentication, and I can see that this will be deprecated in 2023. These are internal apps, used only by me and my team. I don’t want a published/public app, I just want to make sure these automations keep running through 2023. So, I’m looking at the Server-To-Server app type, as that is what is recommended in the deprecation info.

What I don’t understand is the part with scopes. I don’t want to scope certain portions of the Rest API, I just want a durable set of credentials that give me access to every every endpoint the API has to offer, for whatever requests I get. The app doesn’t activate unless I scope out certain fields. Should my next move to be to just check every box that is offered? Can there be a ‘check all’ feature, if this is the case? If not, how am should I be thinking of this differently?

Thanks,

Hi @patrickgi ,

I totally understand this. We have scopes to enhance account info security, but you can select all the scopes if you truly want access to all of them. There is no “check all” feature. Hope this helps!

1 Like

It does, and I totally get the heightened security!

Thanks,

1 Like