...
The InEntityGroup
type is a PolicyRule that returns true if the Name of any of the EntitiesDescriptors that the entity of the requester is in matches the supplied parameter. This replaces the (deprecated) saml:AttributeRequesterInEntityGroup
type from V2.
...
groupID
: a required attribute that specifies the EntitiesDescriptor Name to match against.
Child Elements
...