How to specify scopes to be checked

/auth/introspection API can accept "scopes" parameter. You can use it to check if an access token that is a value of "token" parameter covers particular scopes that are specified the "scopes" parameter.

The "scopes" parameter is an array. It includes each scope as a value. For example, you can check if an access token covers "account" and "payment" scopes by describing them as follows:

"scopes":["account", "payment"]

Note that the following example doesn't work as expected.

"scopes":["account payment"]

Authlete would recognize this value as a single scope, "account payment", that doesn't actually exist, and understand no values are specified for the scopes parameter:


As a result, Authlete would do nothing in terms of checking scopes.
How did we do with this article?