Overview
The SCIM connector bundle is designed to manage provisioning through the SCIM 1.1 and 2.0 specifications.
Two different connectors are actually available within this bundle:
net.tirasa.connid.bundles.scim.v11.SCIMv11Connector
net.tirasa.connid.bundles.scim.v2.SCIMv2Connector
Supported operations
Create
Delete
Update
Search
Test
Schema
Configuration
Configuration Properties
The following table describes all of the properties that you can specify for the configuration:
Configuration Property | Type | Required | Description |
---|---|---|---|
baseAddress | String | X | Base address of the SCIM REST service. |
username | String | Username for authentication to the target RESTful service | |
password | GuardedString | Password for authentication to the target RESTful service | |
accept | String | X | Value for the HTTP |
contentType | String | X | Value for the HTTP |
clientId | String | Client id for authentication to the target RESTful service | |
clientSecret | String | Client secret for authentication to the target RESTful service | |
accessTokenNodeId | String | Field id of the JSON object node, returned from target Access Token RESTful service, that contains token value; defaults to access_token | |
accessTokenBaseAddress | String | Base address of the target RESTful service used to obtain access token | |
accessTokenContentType | String | Value for the HTTP Content-Type header for the target Access Token RESTful service; defaults to application/x-www-form-urlencoded | |
customAttributesJSON | String | SCIM Resource Schema representation in JSON format, used to specify custom attributes. See here as reference | |
updateMethod | String | Method used for updates ( |
A sample value for { "id": "urn:scim:schemas:core:1.0:User", "name": "User", "description": "Core User", "schema": "urn:scim:schemas:core:1.0", "endpoint": "/Users", "attributes": [ { "name": "myCustomName", "type": "string", "multiValued": false, "description": "", "schema": "urn:scim:schemas:core:1.0", "readOnly": false, "required": false, "caseExact": false } ] } The following, instead, is a sample for 2.0 version: { "id": "urn:mem:params:scim:schemas:extension:LuckyNumberExtension", "name": "LuckyNumbers", "description": "Lucky Numbers", "endpoint": "/Users", "attributes": [ { "name": "luckyNumber", "type": "integer", "multiValued": false, "description": "", "required": true, "caseExact": false, "mutability": "readWrite", "returned": "default", "uniqueness": "server" } ] } The important parts are:
Indeed, the resulting schema representation will use the same name convention used for other complex attributes, e.g.:
so in this case it will be:
To manage version 2.0 Enterprise User attributes just use the following attributes:
To manage version 1.1 Enterprise User attributes just use the following attributes:
|