MIME-Version: 1.0
References: 
 <CAOoRr-OUq26BPbNM7EqyEgSUzDaNPuN-XyyAU+kQr9sZ-1u01A@mail.gmail.com>
 <BCA320D4-9E1D-4944-B2F7-26BE3B13B687@independentid.com>
In-Reply-To: <BCA320D4-9E1D-4944-B2F7-26BE3B13B687@independentid.com>
From: Danny Zollner <danny.zollner@okta.com>
Date: Wed, 4 Feb 2026 21:32:10 -0600
Message-ID: 
 <CADzbaOoQAFT0xsPeC38dpyMi1houBcb1WGR-Wii=mK7vDX42EQ@mail.gmail.com>
To: Phillip Hunt <phil.hunt@independentid.com>
Content-Type: multipart/related; boundary="00000000000012a10e064a0b521c"
Message-ID-Hash: KECRMT2ZU6YD4637EZ54LY346JX4ITIZ
CC: Daniel Cormier <daniel.cormier+ietf@gmail.com>, scim@ietf.org
Precedence: list
Subject: =?utf-8?q?=5Bscim=5D_Re=3A_Pagination_Support_for_Multi-Valued_Attributes_in?=
	=?utf-8?q?_SCIM_2=2E0?=
Archived-At: 
 <https://mailarchive.ietf.org/arch/msg/scim/beAvJMzTdDCzZfv6jgj4U8qMjPA>

--00000000000012a10e064a0b521c
Content-Type: multipart/alternative; boundary="00000000000012a10d064a0b521b"

--00000000000012a10d064a0b521b
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable

I've had various conversations about this over the last few years and
representing the multi-valued attribute as a (sub)resource has always ended
up looking like a cleaner option than the SCIM query/filter-based methods
described in draft-hunt-scim-mv-filtering-00 and in the recent email to
this mailing list by Saurabh. Going deeper on the multi-valued attribute as
a (sub)resource approach, there are a few different ideas that have come to
mind:


   1. A draft to explicitly address group memberships, as that's the
   primary real world scenario I've seen where SCIM resource sizes become t=
oo
   large to manage. I've seen some other APIs represent group memberships a=
s
   their own resource (e.g.: /GroupMembers) and I think that has value in S=
CIM
   as well when thinking about things like delta query/change detection. I
   think /Groups/<id>/members is useful too and can exist alongside
   /GroupMembers without issue.

   2. A draft to explicitly address existing attributes defined in the SCIM
   specifications - the members attribute on groups, but also potentially
   roles, entitlements, the "groups" attribute on users (and other
   resources?), etc.

   3. A draft to define an extensible approach to representing a
   multi-valued attribute as a sub-resource endpoint (e.g.:
   /Users/<id>/entitlements, or /Users/<id>/<customAttributeURN>


Separate from the sub-resource approach, a few other ideas that have come
up in my discussions:


   - Define a way to paginate a SCIM resource that treats the JSON object
   representing the SCIM resource as the thing to be paginated, rather than
   the list of values in an array for a specific multi-valued attribute. Th=
is
   has the benefit of helping with pagination on a resource with several
   multi-valued attributes that each require pagination, and with
   single-valued attributes that have large values.

   - Utilize an existing feature in HTTP (or another standard). I'm not an
   expert on HTTP, but Chunked Transfer Encoding stood out when I was looki=
ng
   into this.


I lean towards option #1 or #3 from the list of subresource representation
variations.

Thanks,

Danny



On Thu, Jan 29, 2026 at 11:58=E2=80=AFAM Phillip Hunt <phil.hunt@independen=
tid.com>
wrote:

> *This message originated outside your organization.*
>
> ------------------------------
>
> There was a mult-value paging extension draft submitted back in 2019.
>
> SCIM Protocol: Multi-Value Paging Extension
> <https://urldefense.com/v3/__https://datatracker.ietf.org/doc/draft-hunt-=
scim-mv-paging/__;!!PwKahg!-QXA_7ekr2W3bWqtyUF8mHPk4mH7F0m5NQfl7nBcUg1Cm1nC=
K8PiBBe0aaQTePX72wIdSK3Dlv7VJL_dJMc6-0k6p4g$>
> datatracker.ietf.org
> <https://urldefense.com/v3/__https://datatracker.ietf.org/doc/draft-hunt-=
scim-mv-paging/__;!!PwKahg!-QXA_7ekr2W3bWqtyUF8mHPk4mH7F0m5NQfl7nBcUg1Cm1nC=
K8PiBBe0aaQTePX72wIdSK3Dlv7VJL_dJMc6-0k6p4g$>
> [image: ietf-logo-nor-180.png]
> <https://urldefense.com/v3/__https://datatracker.ietf.org/doc/draft-hunt-=
scim-mv-paging/__;!!PwKahg!-QXA_7ekr2W3bWqtyUF8mHPk4mH7F0m5NQfl7nBcUg1Cm1nC=
K8PiBBe0aaQTePX72wIdSK3Dlv7VJL_dJMc6-0k6p4g$>
> <https://urldefense.com/v3/__https://datatracker.ietf.org/doc/draft-hunt-=
scim-mv-paging/__;!!PwKahg!-QXA_7ekr2W3bWqtyUF8mHPk4mH7F0m5NQfl7nBcUg1Cm1nC=
K8PiBBe0aaQTePX72wIdSK3Dlv7VJL_dJMc6-0k6p4g$>
>
> This was basically adding paging features to the filter query so that
> queries like the following become possible:
>
> In the following example, all Groups are searched and only Groups
>    whose name starts with "Group" are selected.  Additionally, the
>    members attribute values are filtered return only member values with
>    "type" equal to "groups" (as in sub-groups) returning only the first
>    5 values using the attributes paging qualifying parameters.
> GET /v2/Groups?filter=3DdisplayName sw 'Group'&attributes=3D*,members[typ=
e
>       eq \"Group\"&count=3D5&startIndex=3D1]
>
>
> The draft had the advantage of being backwards compatible and was
> relatively stateless.
>
> One note, it=E2=80=99s not clear, but the first example in the draft of r=
etrieving
> only work emails is to show existing core
> SCIM functionality.  The following example show how the extension of
> adding paging values, allows a client to
> ask for sub-sets of items.
>
> I think it was lost in the Covid shutdown that happened after.
>
> Cheers,
>
> Phil Hunt
> phil.hunt@independentid.com
>
>
>
>
>
>
> On Jan 29, 2026, at 6:32=E2=80=AFAM, Daniel Cormier <daniel.cormier+ietf@=
gmail.com>
> wrote:
>
> We've had the same problem getting groups with many members (some with
>
> 100k). For what it's worth, since it is an internal implementation,
>
> we added a new endpoint: GET /Groups/{id}/members. Our flow was to
> retrieve the group (GET /Groups/{id}) with its members excluded, then
> paginate through GET /Group/{id}/members separately. It worked well
> for our case.
>
> Some previous discussion around group member pagination:
>
> * <https://mailarchive.ietf.org/arch/msg/scim/YCcs_ZRWOo4HM8zxKbXlAi2Cpag=
/
> <https://urldefense.com/v3/__https://mailarchive.ietf.org/arch/msg/scim/Y=
Ccs_ZRWOo4HM8zxKbXlAi2Cpag/__;!!PwKahg!-QXA_7ekr2W3bWqtyUF8mHPk4mH7F0m5NQfl=
7nBcUg1Cm1nCK8PiBBe0aaQTePX72wIdSK3Dlv7VJL_dJMc6FvmOQQI$>
> >
> <-- Mentions the same solution we used
>  * <
> https://mailarchive.ietf.org/arch/msg/scim/67Bd0iotMoEx5rcjCUsHUzQzQGU/
> <https://urldefense.com/v3/__https://mailarchive.ietf.org/arch/msg/scim/6=
7Bd0iotMoEx5rcjCUsHUzQzQGU/__;!!PwKahg!-QXA_7ekr2W3bWqtyUF8mHPk4mH7F0m5NQfl=
7nBcUg1Cm1nCK8PiBBe0aaQTePX72wIdSK3Dlv7VJL_dJMc6CDlxIfw$>
> >
> * <https://mailarchive.ietf.org/arch/msg/scim/txBFAJgcxb0mhIi1Bp0jaL6t2WU=
/
> <https://urldefense.com/v3/__https://mailarchive.ietf.org/arch/msg/scim/t=
xBFAJgcxb0mhIi1Bp0jaL6t2WU/__;!!PwKahg!-QXA_7ekr2W3bWqtyUF8mHPk4mH7F0m5NQfl=
7nBcUg1Cm1nCK8PiBBe0aaQTePX72wIdSK3Dlv7VJL_dJMc61biKnDQ$>
> >
>
> _______________________________________________
> scim mailing list -- scim@ietf.org
> To unsubscribe send an email to scim-leave@ietf.org
>
>
> _______________________________________________
> scim mailing list -- scim@ietf.org
> To unsubscribe send an email to scim-leave@ietf.org
>

--00000000000012a10d064a0b521b
Content-Type: text/html; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable

<div dir=3D"ltr">I&#39;ve had various conversations about this over the las=
t few years and representing the multi-valued attribute as a (sub)resource =
has always ended up looking like a cleaner option than the SCIM query/filte=
r-based methods described in draft-hunt-scim-mv-filtering-00 and in the rec=
ent email to this mailing list by Saurabh. Going deeper on the multi-valued=
 attribute as a (sub)resource approach, there are a few different ideas tha=
t have come to mind:<br><br><ol><li>A draft to explicitly address group mem=
berships, as that&#39;s the primary real world scenario I&#39;ve seen where=
 SCIM resource sizes become too large to manage. I&#39;ve seen some other A=
PIs represent group memberships as their own resource (e.g.: /GroupMembers)=
 and I think that has value in SCIM as well when thinking about things like=
 delta query/change detection. I think /Groups/&lt;id&gt;/members is useful=
 too and can exist alongside /GroupMembers without issue.<br><br></li><li>A=
 draft to explicitly address existing attributes defined in the SCIM specif=
ications - the members attribute on groups, but also potentially roles, ent=
itlements, the &quot;groups&quot; attribute on users (and other resources?)=
, etc.<br><br></li><li>A draft to define an extensible approach to represen=
ting a multi-valued attribute as a sub-resource endpoint (e.g.: /Users/&lt;=
id&gt;/entitlements, or /Users/&lt;id&gt;/&lt;customAttributeURN&gt;<br></l=
i></ol><div><br></div><div>Separate from the sub-resource approach, a few o=
ther ideas that have come up in my discussions:</div><div><br></div><div><u=
l><li>Define a way to paginate a SCIM resource that treats the JSON object =
representing the SCIM resource as the thing to be paginated, rather than th=
e list of values in an array for a specific multi-valued attribute. This ha=
s the benefit of helping with pagination on a resource with several multi-v=
alued attributes that each require pagination, and with single-valued attri=
butes that have large values.=C2=A0<br><br></li><li>Utilize an existing fea=
ture in HTTP (or another standard). I&#39;m not an expert on HTTP, but Chun=
ked Transfer Encoding stood out when I was looking into this.=C2=A0</li></u=
l></div><div><div><br></div></div><div>I lean towards option #1 or #3 from =
the list of subresource representation variations.=C2=A0</div><div><br></di=
v><div>Thanks,</div><div><br></div><div>Danny</div><div><br></div><div><br>=
</div></div><br><div class=3D"gmail_quote"><div dir=3D"ltr" class=3D"gmail_=
attr">On Thu, Jan 29, 2026 at 11:58=E2=80=AFAM Phillip Hunt &lt;<a href=3D"=
mailto:phil.hunt@independentid.com" target=3D"_blank">phil.hunt@independent=
id.com</a>&gt; wrote:<br></div><blockquote class=3D"gmail_quote" style=3D"m=
argin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left=
:1ex"><div>
<div>
<p><strong>This message originated outside your organization.</strong></p><=
br>
  <hr><br>
</div>There was a mult-value paging extension draft submitted back in 2019.=
<div><br></div><div><div style=3D"display:block"><div style=3D"display:inli=
ne-block" role=3D"link"><a style=3D"border-radius:10px;font-family:-apple-s=
ystem,Helvetica,Arial,sans-serif;display:block;width:300px;overflow:hidden;=
text-decoration:none" rel=3D"nofollow" href=3D"https://urldefense.com/v3/__=
https://datatracker.ietf.org/doc/draft-hunt-scim-mv-paging/__;!!PwKahg!-QXA=
_7ekr2W3bWqtyUF8mHPk4mH7F0m5NQfl7nBcUg1Cm1nCK8PiBBe0aaQTePX72wIdSK3Dlv7VJL_=
dJMc6-0k6p4g$" dir=3D"ltr" role=3D"button" width=3D"300" target=3D"_blank">=
<table style=3D"table-layout:fixed;border-collapse:collapse;width:300px;bac=
kground-color:rgb(230,230,230);font-family:-apple-system,Helvetica,Arial,sa=
ns-serif" cellpadding=3D"0" cellspacing=3D"0" border=3D"0" width=3D"300"><t=
body><tr><td><table bgcolor=3D"#E6E6E6" cellpadding=3D"0" cellspacing=3D"0"=
 width=3D"300" style=3D"table-layout:fixed;font-family:-apple-system,Helvet=
ica,Arial,sans-serif;background-color:rgb(230,230,230)"><tbody><tr><td styl=
e=3D"padding:8px 0px"><div style=3D"max-width:100%;margin:0px 16px;overflow=
:hidden"><div style=3D"font-weight:500;font-size:12px;overflow:hidden;text-=
overflow:ellipsis;text-align:left"><a rel=3D"nofollow" href=3D"https://urld=
efense.com/v3/__https://datatracker.ietf.org/doc/draft-hunt-scim-mv-paging/=
__;!!PwKahg!-QXA_7ekr2W3bWqtyUF8mHPk4mH7F0m5NQfl7nBcUg1Cm1nCK8PiBBe0aaQTePX=
72wIdSK3Dlv7VJL_dJMc6-0k6p4g$" style=3D"text-decoration:none" target=3D"_bl=
ank"><font color=3D"#272727" style=3D"color:rgba(0,0,0,0.847)">SCIM Protoco=
l: Multi-Value Paging Extension</font></a></div><div style=3D"font-weight:4=
00;font-size:11px;overflow:hidden;text-overflow:ellipsis;text-align:left"><=
a rel=3D"nofollow" href=3D"https://urldefense.com/v3/__https://datatracker.=
ietf.org/doc/draft-hunt-scim-mv-paging/__;!!PwKahg!-QXA_7ekr2W3bWqtyUF8mHPk=
4mH7F0m5NQfl7nBcUg1Cm1nCK8PiBBe0aaQTePX72wIdSK3Dlv7VJL_dJMc6-0k6p4g$" style=
=3D"text-decoration:none" target=3D"_blank"><font color=3D"#808080" style=
=3D"color:rgba(0,0,0,0.498)">datatracker.ietf.org</font></a></div></div></t=
d><td style=3D"padding:6px 12px 6px 0px" width=3D"30"><a rel=3D"nofollow" h=
ref=3D"https://urldefense.com/v3/__https://datatracker.ietf.org/doc/draft-h=
unt-scim-mv-paging/__;!!PwKahg!-QXA_7ekr2W3bWqtyUF8mHPk4mH7F0m5NQfl7nBcUg1C=
m1nCK8PiBBe0aaQTePX72wIdSK3Dlv7VJL_dJMc6-0k6p4g$" target=3D"_blank"><img st=
yle=3D"display: inline-block; width: 30px; height: 30px; border-radius: 3px=
;" width=3D"30" height=3D"30" alt=3D"ietf-logo-nor-180.png" src=3D"cid:ii_1=
9c2b647e97b54048e51"></a></td></tr></tbody></table></td></tr></tbody></tabl=
e></a></div></div><div><br></div>This was basically adding paging features =
to the filter query so that queries like the following become possible:</di=
v><div><div><br></div><div><div></div></div><blockquote type=3D"cite"><div>=
<div>In the following example, all Groups are searched and only Groups</div=
><div>=C2=A0 =C2=A0whose name starts with &quot;Group&quot; are selected.=
=C2=A0 Additionally, the</div><div>=C2=A0 =C2=A0members attribute values ar=
e filtered return only member values with</div><div>=C2=A0 =C2=A0&quot;type=
&quot; equal to &quot;groups&quot; (as in sub-groups) returning only the fi=
rst</div><div>=C2=A0 =C2=A05 values using the attributes paging qualifying =
parameters.</div></div><div>GET /v2/Groups?filter=3DdisplayName sw &#39;Gro=
up&#39;&amp;attributes=3D*,members[type</div><div>=C2=A0 =C2=A0 =C2=A0 eq \=
&quot;Group\&quot;&amp;count=3D5&amp;startIndex=3D1]</div></blockquote><div=
>
<div dir=3D"auto" style=3D"color:rgb(0,0,0);letter-spacing:normal;text-alig=
n:start;text-indent:0px;text-transform:none;white-space:normal;word-spacing=
:0px;text-decoration:none"><div dir=3D"auto" style=3D"color:rgb(0,0,0);lett=
er-spacing:normal;text-align:start;text-indent:0px;text-transform:none;whit=
e-space:normal;word-spacing:0px;text-decoration:none"><div dir=3D"auto" sty=
le=3D"color:rgb(0,0,0);letter-spacing:normal;text-align:start;text-indent:0=
px;text-transform:none;white-space:normal;word-spacing:0px;text-decoration:=
none"><div><br></div><div>The draft had the advantage of being backwards co=
mpatible and was relatively stateless.</div><div><br></div><div>One note, i=
t=E2=80=99s not clear, but the first example in the draft of retrieving onl=
y work emails is to show existing core</div><div>SCIM functionality.=C2=A0 =
The following example show how the extension of adding paging values, allow=
s a client to</div><div>ask for sub-sets of items.</div><div><br></div><div=
>I think it was lost in the Covid shutdown that happened after.</div><div><=
br></div><div>Cheers,</div><div><br></div><div>Phil Hunt</div><div><a href=
=3D"mailto:phil.hunt@independentid.com" target=3D"_blank">phil.hunt@indepen=
dentid.com</a></div><div><br></div></div><br></div><br></div><br><br>
</div>
<div><br><blockquote type=3D"cite"><div>On Jan 29, 2026, at 6:32=E2=80=AFAM=
, Daniel Cormier &lt;<a href=3D"mailto:daniel.cormier%2Bietf@gmail.com" tar=
get=3D"_blank">daniel.cormier+ietf@gmail.com</a>&gt; wrote:</div><br><div><=
div>We&#39;ve had the same problem getting groups with many members (some w=
ith<br><blockquote type=3D"cite">100k). For what it&#39;s worth, since it i=
s an internal implementation,<br></blockquote>we added a new endpoint: GET =
/Groups/{id}/members. Our flow was to<br>retrieve the group (GET /Groups/{i=
d}) with its members excluded, then<br>paginate through GET /Group/{id}/mem=
bers separately. It worked well<br>for our case.<br><br>Some previous discu=
ssion around group member pagination:<br><br>* &lt;<a href=3D"https://urlde=
fense.com/v3/__https://mailarchive.ietf.org/arch/msg/scim/YCcs_ZRWOo4HM8zxK=
bXlAi2Cpag/__;!!PwKahg!-QXA_7ekr2W3bWqtyUF8mHPk4mH7F0m5NQfl7nBcUg1Cm1nCK8Pi=
BBe0aaQTePX72wIdSK3Dlv7VJL_dJMc6FvmOQQI$" target=3D"_blank">https://mailarc=
hive.ietf.org/arch/msg/scim/YCcs_ZRWOo4HM8zxKbXlAi2Cpag/</a>&gt;<br>&lt;-- =
Mentions the same solution we used<br> =C2=A0* &lt;<a href=3D"https://urlde=
fense.com/v3/__https://mailarchive.ietf.org/arch/msg/scim/67Bd0iotMoEx5rcjC=
UsHUzQzQGU/__;!!PwKahg!-QXA_7ekr2W3bWqtyUF8mHPk4mH7F0m5NQfl7nBcUg1Cm1nCK8Pi=
BBe0aaQTePX72wIdSK3Dlv7VJL_dJMc6CDlxIfw$" target=3D"_blank">https://mailarc=
hive.ietf.org/arch/msg/scim/67Bd0iotMoEx5rcjCUsHUzQzQGU/</a>&gt;<br>* &lt;<=
a href=3D"https://urldefense.com/v3/__https://mailarchive.ietf.org/arch/msg=
/scim/txBFAJgcxb0mhIi1Bp0jaL6t2WU/__;!!PwKahg!-QXA_7ekr2W3bWqtyUF8mHPk4mH7F=
0m5NQfl7nBcUg1Cm1nCK8PiBBe0aaQTePX72wIdSK3Dlv7VJL_dJMc61biKnDQ$" target=3D"=
_blank">https://mailarchive.ietf.org/arch/msg/scim/txBFAJgcxb0mhIi1Bp0jaL6t=
2WU/</a>&gt;<br><br>_______________________________________________<br>scim=
 mailing list -- <a href=3D"mailto:scim@ietf.org" target=3D"_blank">scim@ie=
tf.org</a><br>To unsubscribe send an email to <a href=3D"mailto:scim-leave@=
ietf.org" target=3D"_blank">scim-leave@ietf.org</a><br></div></div></blockq=
uote></div><br></div></div>
_______________________________________________<br>
scim mailing list -- <a href=3D"mailto:scim@ietf.org" target=3D"_blank">sci=
m@ietf.org</a><br>
To unsubscribe send an email to <a href=3D"mailto:scim-leave@ietf.org" targ=
et=3D"_blank">scim-leave@ietf.org</a><br>
</blockquote></div>

--00000000000012a10d064a0b521b--

--00000000000012a10e064a0b521c
Content-Type: image/png; name="ietf-logo-nor-180.png"
Content-Disposition: inline; filename="ietf-logo-nor-180.png"
Content-Transfer-Encoding: base64
Content-ID: <ii_19c2b647e97b54048e51>
X-Attachment-Id: ii_19c2b647e97b54048e51
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--00000000000012a10e064a0b521c--