---
title: Application Resource Grants
description: Resources are the protected endpoints that applications request access to using OAuth 2 authorization services. A resource access grant specifies the identifier of the resource associated with the specified application.
component: pingone-api
page_id: pingone-api:platform:applications/application-resource-grants
canonical_url: https://developer.pingidentity.com/pingone-api/platform/applications/application-resource-grants.html
section_ids:
  applications-resource-grant-data-model: Applications resource grant data model
  response-codes: Response codes
---

# Application Resource Grants

Resources are the protected endpoints that applications request access to using OAuth 2 authorization services. A resource access grant specifies the identifier of the resource associated with the specified application.

## Applications resource grant data model

| Property         | Type      | Required? | Mutable?  | Description                                                     |
| ---------------- | --------- | --------- | --------- | --------------------------------------------------------------- |
| `application.id` | String    | N/A       | Read-only | The application resource ID associated with the resource grant. |
| `createdAt`      | Date      | N/A       | Read-only | The time the resource was created.                              |
| `id`             | String    | N/A       | Read-only | The application resource grant ID.                              |
| `resource.id`    | String    | N/A       | Read-only | The ID of the protected resource associated with this grant.    |
| `scopes.id`      | String\[] | Required  | Mutable   | The IDs of the scopes associated with this grant.               |
| `updatedAt`      | Date      | N/A       | Read only | The time the resource was last updated.                         |

Refer also to [Authorization flow by grant type](../../foundations/authentication-concepts/authorization-flow-by-grant-type.html).

## Response codes

|   |                                                                                                                                                                                                                                                     |
| - | --------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- |
|   | The `/environments/{{envID}}/applications/{{appID}}/grants` endpoint returns a `404 NOT FOUND` on `GET`, `POST`, `PUT`, and `DELETE` operations if the application's `type` property is set to `PING_ONE_ADMIN_CONSOLE` or `PING_ONE_SELF_SERVICE`. |

| Code | Message                                                               |
| ---- | --------------------------------------------------------------------- |
| 200  | Successful operation.                                                 |
| 201  | Successfully created.                                                 |
| 204  | Successfully removed. No content.                                     |
| 400  | The request could not be completed.                                   |
| 401  | You do not have access to this resource.                              |
| 403  | You do not have permissions or are not licensed to make this request. |
| 404  | The requested resource was not found.                                 |
| 500  | An unexpected error occurred.                                         |

|   |                                                                                                |
| - | ---------------------------------------------------------------------------------------------- |
|   | You need the Client Application Developer role to perform operations on application resources. |