Hi community,Can the OASValidation policy be used to enforce that JWT
access token (or introspection response) contains specific scopes as
required in OpenAPI? This would be a great and efficient solution to
enforce the presence of scopes. And avoid ...