JWT vs. OAuth Account Level Apps

Is there a way to create multiple JWT apps and limit the permissions of what the app can do? Or is there a way to create an OAuth account level app that follows the client credentials Oauth flow and doesn’t require a redirect URL?

I don’t think you can do an OAuth account-level app without going through the OAuth process at least once (and every time you need to update scopes).

It is pretty seamless after the first time though, as you can just store the latest refresh_token to get a new access_token when needed.

Spot on @samly - thanks for answering.

@clp207 Admin-level permissions are given through OAuth (user-level tokens). A refresh_token can be stored for 15 years, given user permissions/scopes do not change.