Access scopes include permissions, such as
write_products, that allow apps to access data from a shop. The list of access scopes retrieved is based on the access token used for the request, and it contains only those access scopes that are granted to the token. For example, the list may contain all access scopes, or it may contain a subset if the access token has limited permissions. You can find the related documentation here.