Hi Team, I created a protected glue Backend API endpoint. It is accessible only with Valid token Now i need to define a scope, so that authenticated user has access only some set of APIs, rather than entire set of APIs, for which i created Glue API authorization scopes followed entire steps mentioned https://docs.spryker.com/docs/scos/dev/glue-api-guides/202204.0/decoupled-glue-infras[…]/how-to-guides/how-to-use-glue-api-authorization-scopes.html

myResourceRouteProviderPlugin implements ScopeRouteProviderPluginInterface

and added

$postRoute->addDefaults(['scope' => 'backend:vinresponse:write']);

Executed docker/sdk console oauthscope collection filegenerate Warning: Neither SSH agent or COMPOSER_AUTH is configured. Private repositories would not be accessible. --> DEVELOPMENT MODE Store: DE | Environment: docker.dev ---------------------------------------- Scopes collecting in progress Finished. All Done. TESTING STEPS 1 - generated the token with scope as one of the request body params 2 - called the API for which scope is defined, below forbidden response [ { "status": 403, "code": null, "message": "Forbidden." } ] Also noticed in DB, only following scopes are available MariaDB [eu-docker]> select * from spy_oauth_scope; +----------------+-------------+------------------------+ | id_oauth_scope | description | identifier | +----------------+-------------+------------------------+ | 1 | NULL | customer | | 2 | NULL | customer_impersonation | | 3 | NULL | company_user | | 4 | NULL | agent | | 5 | NULL | user | +----------------+-------------+------------------------+ 5 rows in set (0.000 sec) Can someone help me if am missing any steps for authorization scope for glue BE API