feat: refactor scope handling by separating admin and user scopes and updating access token parser

apps/app/src/interfaces/scope.ts

@@ -1,5 +1,5 @@
 // If you want to add a new scope, you only need to add a new key to the ORIGINAL_SCOPE object.
-export const ORIGINAL_SCOPE = {
+export const ORIGINAL_SCOPE_ADMIN = {
   admin: {
     top: {},
     app: {},
@@ -19,6 +19,9 @@ export const ORIGINAL_SCOPE = {
     ai_integration: {},
     full_text_search: {},
   },
+} as const;
+
+export const ORIGINAL_SCOPE_USER = {
   user: {
     info: {},
     external_account: {},
@@ -34,6 +37,11 @@ export const ORIGINAL_SCOPE = {
   },
 } as const;
 
+export const ORIGINAL_SCOPE = {
+  ...ORIGINAL_SCOPE_ADMIN,
+  ...ORIGINAL_SCOPE_USER,
+} as const;
+
 export const ACTION = {
   READ: 'read',
   WRITE: 'write',

apps/app/src/server/routes/apiv3/personal-setting/get-access-tokens.ts

@@ -25,7 +25,7 @@ export const getAccessTokenHandlerFactory: GetAccessTokenHandlerFactory = (crowi
   const addActivity = generateAddActivityMiddleware();
 
   return [
-    accessTokenParser(),
+    accessTokenParser([SCOPE.READ.USER.API.ACCESS_TOKEN]),
     loginRequiredStrictly,
     addActivity,
     async(req: GetAccessTokenRequest, res: ApiV3Response) => {