We have enabled OIDC auth method and configured the same with an auth role (example: reader) where a policy is also applied. OIDC auth method works perfectly fine.
An identity policy is applied on a group of people who are loggig into vault via OIDC. But the policy in the OIDC auth role always takes precendence over the identity policy.
For example: identity policy says full rights over identity/group but the policy in the auth role allows only read and list rights on the path identity/group. Here the resultant rights are just read and list. Is there any option to prioritize identity policy
Vault Ver: 1.8.4