This simple Java Servlet Filter is used on NetIQ Access Manager to restrict applications access to OAuth2.0 scopes. The usage is being detailed described at NetIQ Cool Solutions site: https://www.netiq.com/communities/cool-solutions/oauth-scopesclaims-restriction/