When authorizing a user and requesting access to multiple scopes, the authorization to the resource server rejects access to the resource telling me the following:
Inspecting the data in the datasource tells me I do have access to the specified scope. After inspecting I traced it back to the oauth2-helper file, specifically the isScopeAllowed function. Seems it has a small bug there using the right scope array to check with.
When authorizing a user and requesting access to multiple scopes, the authorization to the resource server rejects access to the resource telling me the following:
{"error":"insufficient_scope","error_description":"Insufficient scope"}Inspecting the data in the datasource tells me I do have access to the specified scope. After inspecting I traced it back to the oauth2-helper file, specifically the isScopeAllowed function. Seems it has a small bug there using the right scope array to check with.