Example:
suppose i have rest point URL 'http://fqdn<ip>:8080'. In this I can access A, B,resources..
Ex: http://fqdn<ip>:8080/A/B etc.
Here, for any user I would like to restrict access to particular resources. When a user try to access them authentication 403 message should be shown.
First, I'll assume there is an OAuth token that the client is sending in. The token can be an opaque token, or a JWT access token. In either case, Apigee can inspect and validate the token and determine what claims (in the case of JWT) or attributes (in the case of an opaque Apigee token) are on the token.
A few things to consider:
In Apigee product you can specify the resource path allowed which will be applicable for a client id of the app with which the product is registered. If the resource path is not specified in the product you will see the error for resource path access.