Deny access to SAML user if no specific role


I just discovered The installation for SAML is really easy.

Do you know if there is an option to forbid access to users if they do not have a specific role in the IDP ?

I want to expose a chat to a subset of users and not to everyone who authenticates with SAML.

If there is no such option, does someone know if that would be rather easy to implement, and if yes point some hints on how he would do it :slight_smile: ?