I’m looking for guidance on integrating Azure AD–based authorization with Valkey, specifically using OAuth and Azure AD group membership.

Today, Valkey authorization is handled via users.acl. I’m trying to understand:

Is it possible to authorize Valkey users based on Azure AD groups using OAuth?

What are the recommended or commonly used integration patterns for this?

How can Azure AD group information (claims) be mapped or synced to Valkey users.acl?

Any limitations or trade-offs with Valkey ACLs when used with external identity providers?

If anyone has implemented something similar or can share examples, best practices, or pitfalls, I’d really appreciate it.

Thanks in advance!