Support multiple scopes during GitLab Registry authentication

Presently GitLab only supports a single scope per token exchange. While this works for some tools, other tools attempt to utilize multiple scopes for fast intra-registry copies, which fails.

One such tool is kaniko, see here: https://github.com/GoogleContainerTools/kaniko/issues/181#issuecomment-389294167

We should support multiple scopes.