We are using GenericOAuthenticator configured to use a Keycloak Open ID client.
It works as expected, however it enables access to Jupyter Hub for the whole Keycloak Realm.
We would like to restrict access using claims, such as some claim must have some specified value.
That doesn’t seem presently possible.
Did I miss something or would that be a new feature?
Thank you for your time