Jacques Visser
When attempting to access the cards endpoint (https://openapi.investec.com/za/v1/cards) with a token that does not have
cards
included in it's scope, a non-informative 200-response is returned:
{
"data": { "cards": "Error" },
"links": { "self": null },
"meta": { "totalPages": 1 }
}
It would be cool if this could return a 403 response explaining that the token does not have the
cards
scope.