We'd like the ability for Port to evaluate a claim from Entra ID (such as userType) at login time and block access to the Port application for users whose claim value doesn’t meet a configured rule (ex: userType != "Member" would deny access).

For context, we have guest users and member users in Entra, and we don't want to restrict access with flag, as it is not scalable to provision access by user and groups specifically for us. Would work better to restrict by userType claim in our case.