I have two services, A and B, and I want to create an access policy to allow the service A access the service B only if it is inside of an allowed group.
I created a policy like to that to all clients.:
IF Grant type is client credentials
and User is Assigned the app and a member of one of the following Services Allowed to B Group
and scopes service_b
But, even the service A isn’t inside of Services Allowed to B Group it can generate a token.
Can someone help me? Thanks!