Open
Description
The ask: Instruct users to build policies that use an entity's unique ID only (typically sub for user and id for groups). This will provide a standardized method that works with every IdP we support, but will force/urge users to rewrite policies that use name or group name claims to regulate access.
This issue is linked to this issue.