Hi,
Now I am facing another struggle with policy for jwt authentication. I have an API which requires jwt token in authorization header and this API have different levels of access. For some path patterns, user role can access while other path patterns require admin role. So I think of create 2 policies for different access level but only one policy name is allowed in API definition for “Policy Field Name”.
(If I list policies in this field, I cannot access API because policy does not match)
I dont know if there is any way to tell API to accept any policy in a policy list so I can use different jwt token with different access (defined by policy) to access my API or is Tyk supporting this?
Thanks,