Hi Madhan, I agree that having the realm-id in the resource hierarchies is really helpful. It is especially useful when the external PDP has a unified logic for different realms within a single Polaris instance.
As you noted, it is also trivial to ignore the realm-id (using wildcards like '*') when the PDP doesn't need it, or in cases where a Polaris instance only has one realm. I have one question to follow up: how does Ranger distinguish between different Polaris services? Thanks,
