App's capabilities and permissions are defined by next scopes:

boards:read — Read boards you have access to
Get Board Get Board User Connections Get Board Widgets Get Board Widget Get Board User Connection Get Picture Get Team Boards
boards:write — Modify boards you have access to
Create Board Share Board Update Board Create board widget Update Board Widget Delete Board Widgets Update Board User Connection Delete Board User Connection Create or Update Picture Delete Picture
team:read — Read current team information
Get Team Get Team User Connections Get Team User Connection Get User Get Picture
team:write — Modify current team title, invite users, change
Update Team Invite To Team Update Team User Connection Delete Team User Connection Create or Update Picture Delete Picture
identity:read — Read your profile information
Get Current User
identity:write — Modify your profile information
Update Current User
auditlogs:read — Read audit logs for this team's organization
Get logs