The scopes define the access rights of the client application. When an access token is issued and the resource owner is asked for permissions, the scopes define the permission grade. Once an access token is generated the scopes are static and cannot be changed. If access for other scopes is needed a new access token has to be requested.

Each API endpoint requires different scopes. The client application has to make sure that the resource owner granted permission to the respective resource.

userinfo.profileAccess to general profile information.
userinfo.emailAccess to the email address.
mindmeisterRead and write access to mind maps.
mindmeister.readonlyRead only access to the mind maps.