diff --git a/Services/server/src/utils/auth.ts b/Services/server/src/utils/auth.ts
index 0c0835a..0f56597 100644
--- a/Services/server/src/utils/auth.ts
+++ b/Services/server/src/utils/auth.ts
@@ -57,6 +57,7 @@ export async function expressAuthentication(
 
   if (
     scopes &&
+    scopes.length > 0 &&
     scopes
       .map((v) => (v === "management-role" ? process.env.MANAGEMENT_ROLE : v))
       .every((v) => !payload.resource_access[payload.azp].roles.includes(v))