You're on your way to the next level! Join the Kudos program to earn points and save your progress.
Level 1: Seed
25 / 150 points
1 badge earned
Challenges come and go, but your rewards stay with you. Do more to earn more!
What goes around comes around! Share the love by gifting kudos to your peers.
Keep earning points to reach the top of the leaderboard. It resets every quarter so you always have a chance!
Join now to unlock these features and more
when invoking REST API using App Password on https://api.bitbucket.org/2.0/user,
the response headers' property x-oauth-scopes does not contain write-related scopes like repository:write or snippet:write, just the read-related headers repository, snippet
EDITED: this was caused by cache in browser and etag header being used. Thus the problem here is generally having access to the x-oauth-scopes header when in CORS mode. See my comment below.
I actually have generated App Password having selected all the available scopes, but the listed values in response headers do not show.
Why is it so and is there a way how to list all the scopes? I need to reflect the capabilities in the app I am writing.