I have want to give Proxy1 and Proxy2 access to App1 and Proxy3 access only to App2.
This should be achieved using the scopes in Cognito and the same scopes used in the Proxy -> Resources -> Request Method -> Authorization Scopes, or is there any best practice?