Authentication: Re-authentication necessary when updating client credential scopes

Currently, when existing API credentials are updated by adding/removing endpoint scopes, the existing tokens are not invalidated. Starting September 2, once scopes are added or removed, the existing authenticated API credentials will be invalidated, requiring clients to re-authenticate.