Hi
I have a big issue, I have to restrict the scopes a user has consented to, by making a new subset of the consented scopes in a rule. This is impossible since I don’t know what scopes a user has given consent to!

Any solution to this? I don’t understand why we have access to accessToken.scope without knowing the scope a user has given consent to.

If scopes a user has given consent to isn’t available, is there any way to set scopes in rules where the scope is filtered again by Auth0?

Is there a reason why scopes a user has given consent to isn’t available in rules?