I’m trying to set up a new policy. I have a single api called “myapi”. I then create a policy that uses myapi and tries to set the path based permission to /endpoint/subpoint/(.)/something/(.). I then create a catalogue item and set the policy to this.
If I go to /endpoint/subpoint/foo/something/bar then they get access. But if I go to /endpoint2/blah they also get access. So it seems it’s ignoring my path all together. Am I missing something?