Ways to support large number of scopes in OAuth?

Hi team,

As the product grows so does the number of entities, and permissions pool. The scopes are encoded in JWT and the web servers have a limit of 8kb ( going with least as of Node < 14 and default Tomcat limit ). What are some of the ways to bypass this. Are there any established ways to mapping or compressing scopes to avoid hitting the limit?

Thanks,

Hi there @ajaynarainmathur!

Have you had a chance to look into using RBAC? This might help cut down on scopes/permissions per token by having a collection of permissions under each role.

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.