The scopes define the access rights of the client application. When an access token is issued and the resource owner is asked for permissions, the scopes define the permission grade. Once an access token is generated the scopes are static and cannot be changed. If access for other scopes is needed a new access token has to be requested.
Each API endpoint requires different scopes. The client application has to make sure that the resource owner granted permission to the respective resource.
Access to general profile information.
Access to the email address.
Read and write access to mind maps.
Read only access to the mind maps.