# API Scopes

Every user-generate API key offers granular access control using API scopes. The following scopes are included by default and housed in the [config file](https://docs.usegravity.app/gravity-server/config) and you can extend this with your own scopes.

* account.read&#x20;
* account.update
* account.delete
* billing.read
* billing.update
* invite.create
* invite.read
* invite.delete
* key.create
* key.read
* key.update
* key.delete
* user.read
* user.update
* user.delete
* event.create
* job.create
* job.read
* job.update
* job.delete