how to force kong-plugin-jwt-keycloak to check list of scopes

[alihossein]

Hi. thank you for a great plugin. I want the service to be available when both scopes are in the token (for example opened view_profile) but I read the Readme :

A list of scopes the token must have to access the api, i.e. ["email"]. The token only has to have one of the listed scopes to be authorized.

How can I do this?