[scim] SCIM 2.0 PATCH - modifying custom or enterprise schema attributes with missing "path"
"Karaimin, Aleyidin" <aleyidin.karaimin@sap.com> Wed, 14 November 2018 13:00 UTC
Return-Path: <aleyidin.karaimin@sap.com>
X-Original-To: scim@ietfa.amsl.com
Delivered-To: scim@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 74806130E41 for <scim@ietfa.amsl.com>; Wed, 14 Nov 2018 05:00:53 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.901
X-Spam-Level:
X-Spam-Status: No, score=-6.901 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_MED=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=sap.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id mkFnmwtcbrbq for <scim@ietfa.amsl.com>; Wed, 14 Nov 2018 05:00:45 -0800 (PST)
Received: from smtpgw04.sap-ag.de (smtpgw04.sap-ag.de [155.56.66.99]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 030B5130E3F for <scim@ietf.org>; Wed, 14 Nov 2018 05:00:43 -0800 (PST)
Received: from EUR03-DB5-obe.outbound.protection.outlook.com (94.245.120.88) by smtpgw04.sap-ag.de (155.56.66.99) with Microsoft SMTP Server (TLS) id 15.0.1347.2; Wed, 14 Nov 2018 14:00:41 +0100
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=sap.onmicrosoft.com; s=selector1-sap-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=8hNVJz8bOdZ7I4vPz64eWfekDiNw65TI5EnaLt9CFzY=; b=TqZuKFFnesr6sZzsmvi5geaLe0JnAkROnjYChf1qNMg+fV7QwYo3XB3o1spWQQa3czoMAYQtP6qChUs22XW7uNIX2/aoKH5YFcmQ1mqLDrGoVa0/YmKQdv0H0lOMM9NaxGtdRdO0CGhBrlAaAsn0KBaTNsGsOYufqNHbtD1+iEg=
Received: from HE1PR0202MB2652.eurprd02.prod.outlook.com (10.168.184.144) by HE1PR0202MB2699.eurprd02.prod.outlook.com (10.168.185.10) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.1294.45; Wed, 14 Nov 2018 13:00:40 +0000
Received: from HE1PR0202MB2652.eurprd02.prod.outlook.com ([fe80::71e8:6eda:e9aa:954]) by HE1PR0202MB2652.eurprd02.prod.outlook.com ([fe80::71e8:6eda:e9aa:954%7]) with mapi id 15.20.1294.045; Wed, 14 Nov 2018 13:00:40 +0000
From: "Karaimin, Aleyidin" <aleyidin.karaimin@sap.com>
To: "scim@ietf.org" <scim@ietf.org>
Thread-Topic: SCIM 2.0 PATCH - modifying custom or enterprise schema attributes with missing "path"
Thread-Index: AdR8GgIZyKvGosNgRwGaACDFfh7sjQ==
Date: Wed, 14 Nov 2018 13:00:40 +0000
Message-ID: <HE1PR0202MB2652CEB4D38C2400F443E95EF8C30@HE1PR0202MB2652.eurprd02.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=aleyidin.karaimin@sap.com;
x-originating-ip: [193.57.20.13]
x-ms-publictraffictype: Email
x-microsoft-exchange-diagnostics: 1; HE1PR0202MB2699; 6:Y0ZR7i7L8maRq9yg3AAApRhpuWYXsWHjvhApRzS0RGNIOoZ1PmOCX2weThF9NVjwtUEk3TutmFp0taGYYQ4sgdJ86trglB/vCqTDIl8sgmaXKixJHyYklSNA6bYfy/aAFo6fhMyYhMxd8oxIk5QTbvc7wQkF0v524AATqUAocDvExwBttf+sg7+PHkAe6kZ+35UidWlOfxJ3Eh9WF9Zs3DPIb7QNbR7q8HKXe5W8mQUHH+mrbBBoFcj668qEMCm9nyRPOwbX80AF/eLF7rFggMH6N5Wv6eyp0uYJMhPiOXX0RBkdtXJrivG4E0fcFtBU32vjaCxtehpuJf7HX89fZGisRr6dZG7ZxRPHLcMVKCrLLKXoTvRMu5DnOc05tLa2GJJEhZvL73O8d96UKEeF5bTuFR04sHjIHaeYaPsNwlz8e2eMPztOB7/xocuIzNmEaBzW2NC9rdFXwUbEYxbVrw==; 5:AflQpGp8CL3CrBbFAGnna9yPOuKIWXhADDnIvbQMTbTArjevk6XHBDbT6bT+E0GfdgTZhiw90Smp3M71kMtj8ovTTEBLtFQDhBtno6YQvfwd3NQYnJqbGgvQN7BNpFOJJKP7jZf3Ki1E7eI4NWkeCJNOO/RDSnBulkkfmnVWW4c=; 7:xnxmbUvFGSwiiWBi5/rZ81WNLt0f4EqPdzRHywe40u931DK3wEO8ixH2c5zFa63wV4Gq25obvun9TESsroZjs0BSlwJE2vWh+UgtvRO1XXXd3afCz2lXIWX0L2a5md5YTpo1psjxtdiH25QlQqsCTg==
x-ms-exchange-antispam-srfa-diagnostics: SOS;
x-ms-office365-filtering-correlation-id: 68a64acf-6c03-4195-7bb6-08d64a312df3
x-microsoft-antispam: BCL:0; PCL:0; RULEID:(2390098)(7020095)(4652040)(8989299)(5600074)(711020)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(2017052603328)(7153060)(7193020); SRVR:HE1PR0202MB2699;
x-ms-traffictypediagnostic: HE1PR0202MB2699:
x-microsoft-antispam-prvs: <HE1PR0202MB269912F2056FA34F29A24CB0F8C30@HE1PR0202MB2699.eurprd02.prod.outlook.com>
x-exchange-antispam-report-test: UriScan:(788757137089)(21748063052155)(28532068793085)(190501279198761)(227612066756510);
x-ms-exchange-senderadcheck: 1
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(6040522)(2401047)(8121501046)(5005006)(3002001)(3231410)(944501410)(52105112)(93006095)(93001095)(10201501046)(148016)(149066)(150057)(6041310)(201703131423095)(201702281528075)(20161123555045)(201703061421075)(201703061406153)(20161123560045)(20161123564045)(20161123562045)(20161123558120)(201708071742011)(7699051)(76991095); SRVR:HE1PR0202MB2699; BCL:0; PCL:0; RULEID:; SRVR:HE1PR0202MB2699;
x-forefront-prvs: 085634EFF4
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(376002)(346002)(136003)(366004)(396003)(39860400002)(199004)(189003)(66066001)(14454004)(186003)(478600001)(6916009)(2501003)(97736004)(86362001)(316002)(26005)(790700001)(6116002)(71200400001)(256004)(3846002)(71190400001)(102836004)(6506007)(2906002)(99286004)(5660300001)(7736002)(2351001)(7696005)(74316002)(33656002)(9326002)(476003)(486006)(81166006)(2900100001)(8676002)(1730700003)(81156014)(68736007)(6436002)(8936002)(105586002)(54896002)(6306002)(9686003)(53936002)(55016002)(25786009)(106356001)(5640700003); DIR:OUT; SFP:1101; SCL:1; SRVR:HE1PR0202MB2699; H:HE1PR0202MB2652.eurprd02.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; A:1; MX:1;
received-spf: None (protection.outlook.com: sap.com does not designate permitted sender hosts)
x-microsoft-antispam-message-info: EkIAQDX7wHKnRs3YlRmSzsZE2jJalIib13eMrYeIy4fmGE6w6kF/YEHPNsBlKM59vgGmxRQTv8Hm0M9X8h5uXMokA6WcRO870o9jphFBrZkl7k1YzUM+hJfWDg6Hu51XqR5gRx/yifm8wneX17g7RpRhdtDLEKElAdG3CyNOdt0Xa7M3zkCgU2SPe9uZRFo4fo1qbbNkUHG+70KuujvY/TSoZz2nuw5/lHB5MTFlzyQc07pV0bEIDLlnMtgPwlQYGZDQArA7V4fXu5ZOxNLccUxy9H69cn31MCSvgBMWKRtxLDKK0DeLHBvmtBWUSH6Vm3ISOQU+3jXPOxIXBt/OgpZwExbIY1zQ2FJv5tpgSJY=
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: multipart/alternative; boundary="_000_HE1PR0202MB2652CEB4D38C2400F443E95EF8C30HE1PR0202MB2652_"
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-Network-Message-Id: 68a64acf-6c03-4195-7bb6-08d64a312df3
X-MS-Exchange-CrossTenant-originalarrivaltime: 14 Nov 2018 13:00:40.3347 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 42f7676c-f455-423c-82f6-dc2d99791af7
X-MS-Exchange-Transport-CrossTenantHeadersStamped: HE1PR0202MB2699
Archived-At: <https://mailarchive.ietf.org/arch/msg/scim/bwT2s7BdvK5IWSwgeY5sRS2oBCc>
Subject: [scim] SCIM 2.0 PATCH - modifying custom or enterprise schema attributes with missing "path"
X-BeenThere: scim@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Simple Cloud Identity Management BOF <scim.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/scim>, <mailto:scim-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/scim/>
List-Post: <mailto:scim@ietf.org>
List-Help: <mailto:scim-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/scim>, <mailto:scim-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 14 Nov 2018 13:00:53 -0000
Hello,
According to the RFC 7644-System for Cross-domain Identity Management: Protocol, section 3.5.2-Modifying with PATCH,
'The "path" attribute is
OPTIONAL for "add" and "replace" and is REQUIRED for "remove"
'
Let's assume that in some case, "path" is not provided for add or replace operation. Is it possible to assign value to custom schema attribute (or extension Enterprise for User) ?.
Suppose we have the following bodies of PATCH Requests
Example 1:
{ "schemas":
["urn:ietf:params:scim:api:messages:2.0:PatchOp"],
"Operations":[
{
"op":"add",
"value": {
"urn:ietf:params:scim:schemas:extension:enterprise:2.0:User" : {
"employeeNumber" : "12345"
},
"nickname" : "simpleNickname"
}
}
]
}
Is the above example valid ? Can we assign custom attribute to corresponding value in "value" body ?
Example 2:
{ "schemas":
["urn:ietf:params:scim:api:messages:2.0:PatchOp"],
"Operations":[
{
"op":"add",
"value": {
"urn:ietf:params:scim:schemas:extension:enterprise:2.0:User:employeeNumber" : "12345",
"nickname" : "simpleNickname"
}
}
]
}
If the Example 1 is valid, is it allowed to specify full attribute path in the "value" body ?
Thank you,
Aleydin Karaimin
- [scim] SCIM 2.0 PATCH - modifying custom or enter… Karaimin, Aleyidin
- Re: [scim] SCIM 2.0 PATCH - modifying custom or e… Phil Hunt
- Re: [scim] SCIM 2.0 PATCH - modifying custom or e… Karaimin, Aleyidin