Right now server has one big list of openIDs. Ideally, it should support different lists for "groups". E.g. two openid_sync clients may want to use the same server, within one organization, but one clinet (site) may only want to allow access to "developers" group, while the other - to "admins" group or something like that.