Trying to audit our org’s OAuth clients programmatically. The docs show GET /api/v2/oauth/clients lists them, but the response is sparse. It doesn’t include the actual scope assignments. I need to verify which clients have admin:users:read without clicking through each one in the admin UI.
I’ve tried hitting the endpoint with a full admin token. The response only gives me the client ID and name. Is there a separate endpoint to pull the scopes for a specific client ID? Or is this data buried in the client details response that I’m missing?