IETF Logo Mail Archive

Re: [scim] Question regarding multiple User Stores

Gayan Gunawardana <gayan@wso2.com> Sat, 18 February 2017 13:54 UTC

Return-Path: <gayan@wso2.com>
X-Original-To: scim@ietfa.amsl.com
Delivered-To: scim@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id EC6D1129516 for <scim@ietfa.amsl.com>; Sat, 18 Feb 2017 05:54:44 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.7
X-Spam-Level:
X-Spam-Status: No, score=-2.7 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=wso2.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id b0zAj-ZqcLaD for <scim@ietfa.amsl.com>; Sat, 18 Feb 2017 05:54:42 -0800 (PST)
Received: from mail-wm0-x233.google.com (mail-wm0-x233.google.com [IPv6:2a00:1450:400c:c09::233]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id B5E791294FD for <scim@ietf.org>; Sat, 18 Feb 2017 05:54:41 -0800 (PST)
Received: by mail-wm0-x233.google.com with SMTP id r141so26361026wmg.1 for <scim@ietf.org>; Sat, 18 Feb 2017 05:54:41 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=wso2.com; s=google; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=C88+BnjWv7dKkPxgjTST+YpRehQXwujE6WNBFp0FZNo=; b=jYXW7rTd33a18ApeznehiW4JvBKMN8XjFOJRc1lvsHDpm1/dvqQE9x/7ZTIXlDzZ7C co4asHhusvYXb8hTuv4YEOLnidz3xceQg+Pky5W2qS2hC9IaAd58nRpnQCAUINa7/kIX OmREPkOLADwAAaZDOP+uzGEafYc2HgQr9cop8=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=C88+BnjWv7dKkPxgjTST+YpRehQXwujE6WNBFp0FZNo=; b=KLMz/3GpYl28mOWKF8sQo2Wr+UthwgDPF5EdabmP6l4SQGY8XEmfWH8yD9P6m4M6nm VzWaMFOtWtqu/gbWq2FNRQzlacc1k32Zv7vvQozfViuADp+4hqGhWjGGjpf/apsPxfA8 djx52N5L2g340/3Kb2QJI9/8g8Bc0ZDpIhE2yu3LUB03WsrKhFjdSGkp9blDD5tIXJv3 vIOVs0VNonq6e/1Y5Ra/scNJAzcOn1Z/xksTvPbV7jfgza5PJ/rdSYiSKkaZVZyRdJHS Bjs9rZnpfqi92Aj6HE5me2RegtUTLF6da1sK/Q2f/Z7aPf4YGt59gYBRt23ymN9+HAuT ZLUw==
X-Gm-Message-State: AMke39nG2KmXqEL+eSILLgsMfJPbE24k6vPXz9iaTDOweDT4LQkQm+WJzFp/5oX134LLHy/JYmWe8V+kr5FFPhxz
X-Received: by 10.28.109.70 with SMTP id i67mr8902854wmc.102.1487426080011; Sat, 18 Feb 2017 05:54:40 -0800 (PST)
MIME-Version: 1.0
Received: by 10.223.134.169 with HTTP; Sat, 18 Feb 2017 05:54:39 -0800 (PST)
In-Reply-To: <CY1PR04MB2363E529EB9A3C99874440F4E2580@CY1PR04MB2363.namprd04.prod.outlook.com>
References: <CALzgRAD+3WomcF0DwDMimHbMYBbH0io2wNT57A9UbGrD8uK2Jw@mail.gmail.com> <CALzgRAApToje8GrJdkVzw=_ZkMXq546RNvW=Rx7qEVFjzx4ODQ@mail.gmail.com> <CY1PR04MB2363E529EB9A3C99874440F4E2580@CY1PR04MB2363.namprd04.prod.outlook.com>
From: Gayan Gunawardana <gayan@wso2.com>
Date: Sat, 18 Feb 2017 19:24:39 +0530
Message-ID: <CALzgRAApP0tP5sT7_x9rYdt10GYRwNDdbY+mgYQzoSs7LB4XMg@mail.gmail.com>
To: Kelly Grizzle <kelly.grizzle@sailpoint.com>
Content-Type: multipart/alternative; boundary="001a11468c7e21163b0548ce5faf"
Archived-At: <https://mailarchive.ietf.org/arch/msg/scim/N4d15AnbAhqeyLlalatTJ3vnr7s>
Cc: "scim@ietf.org" <scim@ietf.org>, Phil Hunt <phil.hunt@oracle.com>
Subject: Re: [scim] Question regarding multiple User Stores
X-BeenThere: scim@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: Simple Cloud Identity Management BOF <scim.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/scim>, <mailto:scim-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/scim/>
List-Post: <mailto:scim@ietf.org>
List-Help: <mailto:scim-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/scim>, <mailto:scim-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 18 Feb 2017 13:54:45 -0000

HI Kelly,

On Wed, Feb 15, 2017 at 12:14 AM, Kelly Grizzle <kelly.grizzle@sailpoint.com
> wrote:

> There are different options here depending on whether it is feasible for
> the server to present a single /Users endpoint across both stores (for
> example, can you query, sort, and page between both stores when someone
> makes a request against /Users).
>
Yes. Idea is to present single /Users endpoint across both stores.

>
>
> If possible, I would say that it would be preferable to include both under
> the /Users endpoint.  You could define a new attribute in an extended
> schema that indicates which store the user is a part of.
>
Of course this is great. Thanks Kelly.

>
>
> If using a single, unified /Users endpoint is not technically feasible,
> then you’ll probably need to create a new ResourceType for one of these.
>
>
>
> --Kelly
>
>
>
> *From:* scim [mailto:scim-bounces@ietf.org] *On Behalf Of *Gayan
> Gunawardana
> *Sent:* Sunday, February 12, 2017 2:13 AM
> *To:* scim@ietf.org; Phil Hunt <phil.hunt@oracle.com>
> *Subject:* Re: [scim] Question regarding multiple User Stores
>
>
>
>
>
>
>
> On Fri, Feb 10, 2017 at 1:22 PM, Gayan Gunawardana <gayan@wso2.com> wrote:
>
> For given SCIM implementation if I have multiple user stores underneath.
>
> Idea of multiple user stores from organizational perspective, suppose I
> have LDAP for employee information and separate AD for customer
> information.
>
> How can I list or filter result from customer user store ?
>
> Similarly how can I add a user to customer user store ?
>
>
>  What is the best way to specify user store domain in the SCIM request?
>
> --
>
> Gayan Gunawardana
>
> Software Engineer; WSO2 Inc.; http://wso2.com/
>
> Email: gayan@wso2.com
>
> Mobile: +94 (71) 8020933 <+94%2071%20802%200933>
>
>
>
>
> --
>
> Gayan Gunawardana
>
> Software Engineer; WSO2 Inc.; http://wso2.com/
>
> Email: gayan@wso2.com
>
> Mobile: +94 (71) 8020933 <+94%2071%20802%200933>
>



-- 
Gayan Gunawardana
Software Engineer; WSO2 Inc.; http://wso2.com/
Email: gayan@wso2.com
Mobile: +94 (71) 8020933

v2.23.0 | Report a Bug | By Email