feat: support different jwt scope claim strategies

[brett-patterson]

Adds a strategies.jwt.scope_claim optional configuration property that controls how the scope claim is represented in JWT access tokens. It can be set to one of list, string, or both. list (the default behavior) matches the current behavior of using a scp claim that is an array of strings. string uses a scope claim as defined in this RFC, a single space-delimited string. both will include both the scp and scope claim in the token.

Related issue(s)

#3524

Checklist

• I have read the contributing guidelines.
• I have referenced an issue containing the design document if my change
  introduces a new feature.
• I am following the
  contributing code guidelines.
• I have read the security policy.
• I confirm that this pull request does not address a security
  vulnerability. If this pull request addresses a security vulnerability, I
  confirm that I got the approval (please contact
  security@ory.sh) from the maintainers to push
  the changes.
• I have added tests that prove my fix is effective or that my feature
  works.
• I have added or changed the documentation.

Further Comments

These different scope claim strategies were already available in fosite, this PR is just exposing them through a Hydra configuration property. Open to suggestions on configuration property naming! Will update docs but wanted to get this PR settled first to know what to add to the docs.

[codecov]

Codecov Report

Merging #3531 (58c06b0) into master (116c1e8) will decrease coverage by 0.02%.
The diff coverage is 83.33%.

❗ Current head 58c06b0 differs from pull request most recent head 3c986de. Consider uploading reports for the commit 3c986de to get more accurate results

@@            Coverage Diff             @@
##           master    #3531      +/-   ##
==========================================
- Coverage   76.64%   76.62%   -0.02%     
==========================================
  Files         129      129              
  Lines        9630     9640      +10     
==========================================
+ Hits         7381     7387       +6     
- Misses       1748     1751       +3     
- Partials      501      502       +1     

Impacted Files	Coverage Δ
cmd/cmd_list_clients.go	80.64% <ø> (ø)
driver/config/provider.go	82.75% <ø> (ø)
driver/config/provider_fosite.go	81.81% <80.00%> (-0.54%)	⬇️
fositex/config.go	86.11% <100.00%> (ø)
persistence/sql/persister.go	85.00% <100.00%> (ø)

... and 1 file with indirect coverage changes

[aeneasr]

Awesome, thank you! 🎉 Your contribution makes Ory better :)

[vinckr]

Hello @brett-patterson
Thanks so much for the contribution 🙌

Let me know if I can support you in adding something to the documentation. I have never used the feature so I would need some rough pointers/drafts.

Thanks!

[Lelekova]

Hi there!
@brett-patterson thanks a lot for the feature :)

I have a question for the Ory guys: is this feature already a part of any release? If yes, which one? If no, when should we expect it?
@aeneasr I guess you might be able to answer this question :)