Looking for a best practice on how to make the identity provider the source of truth for standard claims (such as email, givenname, surname
email
givenname
surname
