hi all,

i want to talk about a use case that, for an authentication user, there will be access token issued to access a certain resources/API.

For calling API ‘api_a’, i want to issue an access token with aud field =‘api_a’, while calling API ‘api_b’, need an access token with ‘aud’ field = ‘api_b’.

this feature seems relevant to rfc8707.

can you please share how do you achieve similar restriction on access token handling?

thanks.