Not able to make API calls without access_tokens generated with private scope!

When the access_token generated with just public scope is used to make a call - curl -X GET "{categoryName}?fields=&offset=&limit=&sortBy=&sortOrder="

I get the message: “Unauthorized for this resource scope”.

However, I get the appropriate response when the scope is both private and public.

Do I need to use client_credentials grant type for such calls or ask the user during OAuth to check mark the second option so that the scope of the access_token generated is both public and private.

Thank you!


problems/{categoryName} URL should work with the public scope. Can you check it with test app console?