[scim] Extend core schema multivalue complex attribute

"Karaimin, Aleyidin" <aleyidin.karaimin@sap.com> Mon, 19 October 2020 10:56 UTC

Return-Path: <aleyidin.karaimin@sap.com>
X-Original-To: scim@ietfa.amsl.com
Delivered-To: scim@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 745AA3A0AE6 for <scim@ietfa.amsl.com>; Mon, 19 Oct 2020 03:56:51 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.197
X-Spam-Level:
X-Spam-Status: No, score=-0.197 tagged_above=-999 required=5 tests=[DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=sap.com header.b=P8yHRF4P; dkim=pass (1024-bit key) header.d=sap.onmicrosoft.com header.b=DdI+cOtO
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id KpoJL1cNkljZ for <scim@ietfa.amsl.com>; Mon, 19 Oct 2020 03:56:49 -0700 (PDT)
Received: from esa3.sap.c3s2.iphmx.com (esa3.sap.c3s2.iphmx.com [68.232.159.191]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 244583A0ADF for <scim@ietf.org>; Mon, 19 Oct 2020 03:56:48 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=sap.com; i=@sap.com; q=dns/txt; s=it-20200722; t=1603105010; x=1634641010; h=from:to:subject:date:message-id:mime-version; bh=Yk0tP8VH7FYqGNlXoqXRdC5NntmtVTt4pLYPa5VR/jk=; b=P8yHRF4P/fDQG1bJ9p/kBBiMdtnIsmXCV0rq3y6kvSJhBTac/HmIZI5U ZXEAsNrpD3I4vG8a0Svn6x0aDMT/HNw79+LVJngJWyqhaL5GRqnf4hkwB RHrdES3vM6tqxpegTaN7fpOh8KSjsLNYbH1NMAKw/z7LNuAxiVJtO/MNt L53qseHujPW2NxHm5zRCoXgVG/kWyYtvTuluKKu0bvK53syuyUXH0CfJv p3jL0I51lg+Rx1HJQrQT00g8rJ/aNd4lMrDwFb/zXrUzk1RaQHExlhaae vVsGkyGId7tD0RVHR9KirVrOYDUBz3GFdw2JnthSGdcA4pNgsS8kcWbBm Q==;
IronPort-SDR: gjTGb6a/agvG8i7iygEW/DRBt83Kimg6scF5h2u+gzIwPWmGp3YoTpDyHFpIvDGSjZgrytuVsN w6/oMO2U8W0DWRSHjg8MxdPpxpXmmCHpLwKJtrl+krVNTXD7jplp9hUq65qAb5FlbEnyHIcAvB hRYgvfnGtNaF++l8VzBQ7eq9L2i+Flm+vIsPkiAitlQaUzmaiQCButAZti1bfLo6sfVbqwVDTP bQ4KNSDnv3Fqm+eeF4w494iO94hMuDZaIuUAR/l3KidqUnK6mnjmY/y1nG6UeOraAYBGxLIU6M LvdilKi0aGsgs1Q/x+be7DIE
X-Amp-Result: SKIPPED(no attachment in message)
Received: from smtpgw01.mail.net.sap (HELO smtpgw.sap-ag.de) ([155.56.66.96]) by esa3.sap.c3s2.iphmx.com with ESMTP/TLS/ECDHE-RSA-AES256-SHA384; 19 Oct 2020 12:56:46 +0200
Received: from EUR02-VE1-obe.outbound.protection.outlook.com (104.47.6.58) by smtpgw01.mail.net.sap (155.56.66.96) with Microsoft SMTP Server (TLS) id 15.0.1497.2; Mon, 19 Oct 2020 12:56:45 +0200
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=C0Nvo8uF4l7MCJqDym4lpMp/+QerB1NbxOa4XZxECQtX5Qf+UeTSRULzyRPb/NsqVNoA7NEGWv79tfPq4yAJchAsUhzNKftvpTvgIJY5U6+v+RdPI0zYUgJitEoNaqU8lSSXOFcauD+mNRwM04g1Fd44q9JIbywMCYzeqNMSqTWpDWwLhakFlb8Uu6BFrg4r7UQKdJfGIOrkcDJTG14XqBKPB7FvHVOHLpIV+m6Th6VoNR4XTmvPxPts8fQVI6ai1bQg0/6HNUV2IEyYYZzbMj20amXI+4wPnMCEd9NCpoZcy+Z82EdMXmRMZmSl7HmGZ2mj/3OHrVdY3H8MVYCw5w==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=Yk0tP8VH7FYqGNlXoqXRdC5NntmtVTt4pLYPa5VR/jk=; b=Wd6HSsHDifGGTmjulFzjFuj+n/q5AYfN7qw3qk7LJrd5vD/ajyNeGuD9FOyN9bXdOvOvZVREiF+YJmSoD4j0Lbr9CV7Y9tzzCIlgC5hMyxKSkIe946tGAIQPC3iEmreoRmc02Th9SFHgdovkNTClfzy6t+NNFb4tEY+Tb6fdl7QkiQcoWUubKyr6VnU+LRrpRfa2rq+k2OfprxS53FyQjGhigGWk7DWrCxIZPeGsz2ZteNoM8KHbkKvjD0sgBY9wtYRXczGyzxFimnqVP+Rji0P99Bpee8bOt66XyOBmLBNgW5DnpYJO2lvqCfEqkCl6JXY/0ZBHFP27pW3eZ53E7g==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=sap.com; dmarc=pass action=none header.from=sap.com; dkim=pass header.d=sap.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=sap.onmicrosoft.com; s=selector2-sap-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=Yk0tP8VH7FYqGNlXoqXRdC5NntmtVTt4pLYPa5VR/jk=; b=DdI+cOtOfv25BtsGlCFy0FQlTAFkgqRRpx3xFn9hWJWC8ux9nLNdqnrUIknOWzK27/yti0WPObLLr22vqidHgT2mdKS2CTGVZKevhyvpu59gvxEhIj4wk2RNR0+2H1EFeOaCfQGdG+fnWNfOrUcaZg5Gas9NHSIIHAj4N6c9sUg=
Received: from VI1PR02MB5200.eurprd02.prod.outlook.com (2603:10a6:803:b7::14) by VI1PR02MB3213.eurprd02.prod.outlook.com (2603:10a6:802:1a::18) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.3477.21; Mon, 19 Oct 2020 10:56:41 +0000
Received: from VI1PR02MB5200.eurprd02.prod.outlook.com ([fe80::29cf:9c9d:14c2:7584]) by VI1PR02MB5200.eurprd02.prod.outlook.com ([fe80::29cf:9c9d:14c2:7584%3]) with mapi id 15.20.3477.028; Mon, 19 Oct 2020 10:56:41 +0000
From: "Karaimin, Aleyidin" <aleyidin.karaimin@sap.com>
To: "scim@ietf.org" <scim@ietf.org>
Thread-Topic: Extend core schema multivalue complex attribute
Thread-Index: AQHWpgQfQMGrLicbAUeZv9T/Z311KA==
Date: Mon, 19 Oct 2020 10:56:41 +0000
Message-ID: <VI1PR02MB5200B81A304D8131E2E9DA97F81E0@VI1PR02MB5200.eurprd02.prod.outlook.com>
Accept-Language: en-US, bg-BG
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [78.90.93.41]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: e6062bee-6ea8-44c2-fb54-08d8741da902
x-ms-traffictypediagnostic: VI1PR02MB3213:
x-microsoft-antispam-prvs: <VI1PR02MB321388FC112C1131BECF1A5EF81E0@VI1PR02MB3213.eurprd02.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:9508;
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: vMUDkPXNO3S9MnQ/gerlvxb8Cnl2GgZbAHliIrPwrnHnjQHaKb+DoYXydut/rFOqnZzYcJOLswTvzH+YGYcyc4U2bAFlCvJgV583kyw1uM8WxTBsozNSRSg804OqxROAG0e7jLIuyrtWvKJEK7GqzKJv6VkRHdDYc6l9QAszsS1QoNSYeyGtVx2C7nGDEIJFqY7BZtQu4tcMuxTPUF4Jqm/tSrj7J7ds7pBg5YgtyLiuCnF1t8SYvvOfeea1qeYJcBcrI1mPp+dx+vAdgfOIJurE8yLNxdntBW5j2WJwoex1Arb0YtEG9vcOoVRqZMW4OINNZ1fVpqYeA5PUFTJC7g==
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:VI1PR02MB5200.eurprd02.prod.outlook.com; PTR:; CAT:NONE; SFS:(4636009)(396003)(376002)(346002)(39860400002)(366004)(136003)(316002)(6506007)(8676002)(7696005)(86362001)(26005)(8936002)(186003)(66946007)(33656002)(71200400001)(66446008)(66476007)(64756008)(52536014)(9686003)(478600001)(6916009)(2906002)(5660300002)(76116006)(66556008)(55016002); DIR:OUT; SFP:1101;
x-ms-exchange-antispam-messagedata: uvYFAIjiGKUiEFFC9xAMiuIsEPvJbf+FzSszjgRgYuzphyZ50mCx2zb+witJ24ISEnjJfLGIVn+RrtsOMJebEVtNgZ5Y3HKlS2a7gBud2cJN17ZaS+QLEZSbvNhkIg3YrSfRHdFgc8gYQEz1OMKngxna/AsWsY+0eve/THDqGeBH8orG9zgVoF3lujZJL2SyJjB8YwHSFDUKBqTNeiFrHewVUC68S0enJ1q/RVdwXk84wXjqRhStpw2VEwdGbVZ3FT7Y3QysVXrDVqIQG5+L8FcpfhxK3KTV1do8td/7SjgPPvD2grgHMkuzxzm1qJk5Hbh86HD9l72IUCau4Zwvxj7jRic2Y3hcKr22GmuJ+wS1Icz87qT37/CPVyzwhPJ+vVRBzzIb+nizbgFwmdG5lN96eYNBM9Abe20e4MtOe+BBjRahUCOYeSbmF4UR4DNjub2ebawPV8XE4CzCVxU62P2qhFDKbAIdZvH1bYYGGUsG/y4JAOULKX/6VL/bjX9O8bRe4VNyO4wpe1+hGjd4fEexP+qUoIbR/5bqj/cevFWRbbs+MjUbFmsZxcY2Ryh8YG45wf/bMGp3936kMccoK40PYaN9AhU55O1IsNmssXWBdTEhUN/PF1V/MQ1fgYXGJx294RDpvEVEM16O5JViDA==
x-ms-exchange-transport-forked: True
Content-Type: multipart/alternative; boundary="_000_VI1PR02MB5200B81A304D8131E2E9DA97F81E0VI1PR02MB5200eurp_"
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: VI1PR02MB5200.eurprd02.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: e6062bee-6ea8-44c2-fb54-08d8741da902
X-MS-Exchange-CrossTenant-originalarrivaltime: 19 Oct 2020 10:56:41.0264 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 42f7676c-f455-423c-82f6-dc2d99791af7
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: zlzpArOQbpaHljHxWIC4LPppJc/M2Abtp/Pq1vpuzZGmmPc0/GQcjvjYNhBdRBwya5A64oErHZDkUQSLj0YbhSsw2+a/1G5GLGGwTaW9aD4=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: VI1PR02MB3213
Archived-At: <https://mailarchive.ietf.org/arch/msg/scim/ohyg_6tDFE2QEMS6Ht5YnHec-9U>
Subject: [scim] Extend core schema multivalue complex attribute
X-BeenThere: scim@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Simple Cloud Identity Management BOF <scim.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/scim>, <mailto:scim-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/scim/>
List-Post: <mailto:scim@ietf.org>
List-Help: <mailto:scim-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/scim>, <mailto:scim-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 19 Oct 2020 10:56:51 -0000

Hi

I would like to ask you for possible way to extend multivalue attribute. Our use cases require to support additional sub-attributes for some User and Groups multivalue complex attributes. For example:

{
                "schemas": [
        "urn:ietf:params:scim:schemas:core:2.0:User"
    ],
    "userName": "sample",
    "emails": [
                {
                                "type": "work",
                                "value" "sample@example.com".com",
                                "otherAttribute": "value" // the name is known (It is defined by us)
                }
    ]
}

According to spec, this will conflict with the core schema. I know that I could define extension schema and add this attribute but this would lead to a lot duplicate data.

{
                "schemas": [
        "urn:ietf:params:scim:schemas:core:2.0:User"
    ],
    "userName": "sample",
    "emails": [
                {
                                "type": "work",
                                "value" "sample@example.com".com",
                                ...
                }
    ],
    "urn:ietf:params:scim:schemas:extension:enterprise:2.0:Emails" : {
                "emails": [
                {
                                "type": "work",
                                "value" "sample@example.com".com",
                                "otherAttribute": "value" // the name is known (It is defined by us)
                                ...
                }
    ]
    }
}

My question is if there is another solution to achieve this.
Thank you.

Best Regards
Aleydin