Hello!
It is certainly possible to use Apigee Edge > Products > Allowed OAuth Scopes to deter OWASP Top 10 API Broken Object Authorisation Level ("BOLA").
However, the maintenance of this OAuth Scopes is really a nightmare.
Is there some way to perform an integration of the Allowed OAuth Scopes with an identity store such as AWS IAM, Microsoft Identity, Google Cloud Identity?
Nathan Aw (Singapore)
LinkedIn
Twitter
