We have an issue with App registration custom role functionality within Active directory in Azure. When a user is added to a custom role we need a way to somehow specify additional information that we need to send from azure to client application. Precisely in our case we have entity “restaurants" within our client application. We need to somehow inform the client app from Azure that certain roles can access only certain restaurants or multiple restaurants. So in a way we need to add additional information to the role-user relationship (which is many to many) and specify for which restaurant the role is added to the user.
Currently the only way for me to do this is to add a pattern in the custom app role value field and to specify restaurant ID (or IDs) for each role but that means we need to add a custom role for each role and restaurants. If we have 50 restaurants and 3 roles that would result us in having to make 150 custom app roles inside azure. Please let us know if this is somehow possible to set up this relationship more elegantly.
Please let me know if further clarification is needed.
Thank you.
