Hi! As I'm learning about Keystone and the process of authenticating and issuing tokens, I meet with the concept of scope. I've heard about the domain-scoped and tenant/project-scoped token, but what does the trust-scoped token mean? What's the difference between trust-scope tokens and the former two types?

Thanks! :)