Is it possible to manage scope for embedded app without going through Shopify managed installation?

I have a simple embedded app that can acquire session token using app bridge. I am sending the session token back to back-end, which is then acquiring access token exchanging the session token - following steps mentioned here [1] . The returned json also contains scope information , which is currently set to 'read_products'.

In all these steps, I can't seem to find the step to adjust the scope. From documentation, it appears I have to use shopify managed installation[2], using TOML, to adjust the scope. But is it possible to adjust the scope without using shopify managed installation(TOML)?

If it is not possible, I will switch Authorization code grant flow[3] where I can explicitly set the scopes in the scope parameter in the OAuth url.

[1] https://shopify.dev/docs/apps/build/authentication-authorization/session-tokens/set-up-session-token...

[2] https://shopify.dev/docs/apps/build/authentication-authorization/app-installation

[3] https://shopify.dev/docs/apps/build/authentication-authorization/get-access-tokens/auth-code-grant/i...