How should Diaspora API scopes be broken down?

We need a consensus of how the API scopes (permissions) should be broken down. Should we keep it simple (e.g, just read and write) or break it down further? Should we have the option to have applications ask for certain permissions and then allow users to disable some permissions that the application asked for on an application page? Please see https://github.com/diaspora/diaspora/issues/6289 as some opinions have already been spoken.