Re: [scim] SCIM 2.0 PATCH - modifying custom or enterprise schema attributes with missing "path"
"Karaimin, Aleyidin" <aleyidin.karaimin@sap.com> Thu, 15 November 2018 09:16 UTC
Return-Path: <aleyidin.karaimin@sap.com>
X-Original-To: scim@ietfa.amsl.com
Delivered-To: scim@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id CA664126BED for <scim@ietfa.amsl.com>; Thu, 15 Nov 2018 01:16:23 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.9
X-Spam-Level:
X-Spam-Status: No, score=-6.9 tagged_above=-999 required=5 tests=[AC_DIV_BONANZA=0.001, BAYES_00=-1.9, DKIMWL_WL_MED=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=sap.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ochRN7MW_IuP for <scim@ietfa.amsl.com>; Thu, 15 Nov 2018 01:16:20 -0800 (PST)
Received: from smtpgw04.sap-ag.de (smtpgw04.sap-ag.de [155.56.66.99]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 2E99F12D4ED for <scim@ietf.org>; Thu, 15 Nov 2018 01:16:19 -0800 (PST)
Received: from EUR03-AM5-obe.outbound.protection.outlook.com (213.199.154.113) by smtpgw04.sap-ag.de (155.56.66.99) with Microsoft SMTP Server (TLS) id 15.0.1347.2; Thu, 15 Nov 2018 10:16:17 +0100
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=sap.onmicrosoft.com; s=selector1-sap-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=xp/bGVCUaHTil3s75O6ThMnJcGr9LM85H1CgIIm+DDs=; b=pyE1/+z3kbl4JyWFk4obDO4+a8kuEyKYsxlJup/TEf2lLXZHZ6DffavSkJiKh18aDAeHNBmMmZtA0PuNroiQFRRQxnIFPhVhjjBsiTvMdNApfOvrmKN998D1+TKUpmavCyIIFTmWb/houY7C5RrOzvXBsQi3rAflJ8YRi/IzsTI=
Received: from HE1PR0202MB2652.eurprd02.prod.outlook.com (10.168.184.144) by HE1PR0202MB2860.eurprd02.prod.outlook.com (10.171.93.9) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.1294.26; Thu, 15 Nov 2018 09:16:16 +0000
Received: from HE1PR0202MB2652.eurprd02.prod.outlook.com ([fe80::71e8:6eda:e9aa:954]) by HE1PR0202MB2652.eurprd02.prod.outlook.com ([fe80::71e8:6eda:e9aa:954%7]) with mapi id 15.20.1294.045; Thu, 15 Nov 2018 09:16:15 +0000
From: "Karaimin, Aleyidin" <aleyidin.karaimin@sap.com>
To: Phil Hunt <phil.hunt@oracle.com>
CC: "scim@ietf.org" <scim@ietf.org>
Thread-Topic: [scim] SCIM 2.0 PATCH - modifying custom or enterprise schema attributes with missing "path"
Thread-Index: AdR8GgIZyKvGosNgRwGaACDFfh7sjQANfiOAABznxoA=
Date: Thu, 15 Nov 2018 09:16:15 +0000
Message-ID: <HE1PR0202MB2652361E4EEFD1D962B776DDF8DC0@HE1PR0202MB2652.eurprd02.prod.outlook.com>
References: <HE1PR0202MB2652CEB4D38C2400F443E95EF8C30@HE1PR0202MB2652.eurprd02.prod.outlook.com> <983AD2BE-E40F-4AF9-B738-8B75FAFE473A@oracle.com>
In-Reply-To: <983AD2BE-E40F-4AF9-B738-8B75FAFE473A@oracle.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=aleyidin.karaimin@sap.com;
x-originating-ip: [193.57.20.13]
x-ms-publictraffictype: Email
x-microsoft-exchange-diagnostics: 1; HE1PR0202MB2860; 6:dk5QM/no4MrhaUKs4QwM2RW7jJLMiUXeogL29KplMYFjdjq+jpxYuAQn/tcG/4KqW6VGI/8TPCc07sC3jT7qJQLcclLLwWki8xUgkbwhsoe9YHcBuQoMWHHXjxOeozzfu79uCrh2iGaReL7ryPTndL2wnq3dFSziFDA77LfwIUdRKTMte14frpHeTdSH6sUouZIBQHr/oZ4fzS+7Lrir6CTWpFf//yn9twe4FnvWQqfNlU/yiiXmy6IH4B09YMs974J0vM+OfP+C9feSArmN5e526trnNOpVbEWoRGd6PvduUxcodnJ247fHlSlezSVwYxLmhIdrMEwlb2QZ1zsSdl+NuMwQAqR+MH8UQzWZoviM3Hp3a42RGjBtm08X/nD9NxIo7zV9ZyXauPEfkAyVy3KqJ/IVgJ8miB12JAMAciE5/fCUFvNl42bSORe46xtJEMFhRgODB4vGqHey05RfcQ==; 5:KWkO3DU+Bjz7sou3DrGY8Pn0azy8+zGheW6GBe3HZZfu5Id1LmmEpwGnb1aib+AYygA3/+fnrmytCNhySe8txXAQpgjPe7a6g0idWrOn9pYjt0+eVsRxAVj4MtocCuFKXUpUZ5PPRL/YydXnet8NOOQ+BrSMlg9zaaiSTWFp5Wg=; 7:4/TfPOBzTfCW55zPQm5D/G/GOcw1x9gIaNTt9SOvTUTM2j7BsuyiZwOySQ7Vb3/7r3e+9UA1kJ102kt0wLmcDconNfhjLi85u5c70A8YXZXIsvHybome4qnRKlcsDOEjqXEQXaWf7p9lTm1RiLjG+Q==
x-ms-exchange-antispam-srfa-diagnostics: SOS;
x-ms-office365-filtering-correlation-id: a15600a8-73c6-41e4-5eaa-08d64adafee5
x-microsoft-antispam: BCL:0; PCL:0; RULEID:(2390098)(7020095)(4652040)(8989299)(5600074)(711020)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(2017052603328)(7153060)(7193020); SRVR:HE1PR0202MB2860;
x-ms-traffictypediagnostic: HE1PR0202MB2860:
x-microsoft-antispam-prvs: <HE1PR0202MB2860C1638C7B90DE27B249D4F8DC0@HE1PR0202MB2860.eurprd02.prod.outlook.com>
x-exchange-antispam-report-test: UriScan:(146099531331640)(55761251573089)(158342451672863)(192374486261705)(788757137089)(10436049006162)(21748063052155)(28532068793085)(190501279198761)(227612066756510);
x-ms-exchange-senderadcheck: 1
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(6040522)(2401047)(5005006)(8121501046)(10201501046)(3002001)(93006095)(93001095)(3231415)(944501410)(52105112)(148016)(149066)(150057)(6041310)(20161123558120)(20161123560045)(20161123562045)(201703131423095)(201702281528075)(20161123555045)(201703061421075)(201703061406153)(20161123564045)(201708071742011)(7699051)(76991095); SRVR:HE1PR0202MB2860; BCL:0; PCL:0; RULEID:; SRVR:HE1PR0202MB2860;
x-forefront-prvs: 08572BD77F
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(396003)(346002)(366004)(39860400002)(376002)(136003)(51914003)(189003)(199004)(25786009)(33656002)(14444005)(8936002)(68736007)(5660300001)(81166006)(478600001)(2900100001)(966005)(74316002)(229853002)(256004)(186003)(81156014)(14454004)(99286004)(105586002)(8676002)(2906002)(1680700002)(606006)(7696005)(6506007)(476003)(53546011)(106356001)(7736002)(53936002)(6916009)(3846002)(102836004)(6116002)(53386004)(66066001)(236005)(6246003)(486006)(54896002)(76176011)(345774005)(316002)(6306002)(97736004)(790700001)(446003)(4326008)(86362001)(9686003)(55016002)(71190400001)(6436002)(11346002)(71200400001)(26005); DIR:OUT; SFP:1101; SCL:1; SRVR:HE1PR0202MB2860; H:HE1PR0202MB2652.eurprd02.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; MX:1; A:1;
received-spf: None (protection.outlook.com: sap.com does not designate permitted sender hosts)
x-microsoft-antispam-message-info: x6ZUJ6MUTTDiZPntPed1aykl35kmz3IYfXDGx685GlzlLCZSYcB9+Oql1hgDXNDK9cCIQy+k8AV8ArjgHVbZ0zOxaoOibC8G/Gr4ylSRLbZCfhLfRsIk1d6POevpbP6UNrV/SMSJaDuonqNEx2EHSp9BvMQb2C2rGoIyPoaJjbAuBibOZpMoGslTKbz0XztpRz8nrev9VMDYjmRhr+eov/Y9ztl8CY8pkl6g6+czPF+MJVjbxxZvC0b9WPCfwT/vGLSAOlpA2KhhgXfEpR+HLGhQGfruhajqfuobKUDCSejoLReLap3nMmImx1yawSNsUQKvqVnJCwOudEUWUp44IdzaBUCFBBCsyTMYBvarH1c=
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: multipart/alternative; boundary="_000_HE1PR0202MB2652361E4EEFD1D962B776DDF8DC0HE1PR0202MB2652_"
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-Network-Message-Id: a15600a8-73c6-41e4-5eaa-08d64adafee5
X-MS-Exchange-CrossTenant-originalarrivaltime: 15 Nov 2018 09:16:15.7543 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 42f7676c-f455-423c-82f6-dc2d99791af7
X-MS-Exchange-Transport-CrossTenantHeadersStamped: HE1PR0202MB2860
Archived-At: <https://mailarchive.ietf.org/arch/msg/scim/vauBxY6eS5-_3x2vbQ3lvsxSZC0>
Subject: Re: [scim] SCIM 2.0 PATCH - modifying custom or enterprise schema attributes with missing "path"
X-BeenThere: scim@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Simple Cloud Identity Management BOF <scim.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/scim>, <mailto:scim-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/scim/>
List-Post: <mailto:scim@ietf.org>
List-Help: <mailto:scim-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/scim>, <mailto:scim-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 15 Nov 2018 09:16:24 -0000
Thank you for the fast response, Phil. Regards, Aleyidin From: Phil Hunt <phil.hunt@oracle.com> Sent: Wednesday, November 14, 2018 9:27 PM To: Karaimin, Aleyidin <aleyidin.karaimin@sap.com> Cc: scim@ietf.org Subject: Re: [scim] SCIM 2.0 PATCH - modifying custom or enterprise schema attributes with missing "path" Aleydin, Thanks for the interesting example. IMO both examples are valid. A rule of thumb for me, is if you can understand it clearly, you should accept it. If you are writing a client, be aware that there are lots of server implementations that aren’t as “robust” as they might be and may fail on this one. Phil Oracle Corporation, Cloud Security and Identity Architect @independentid www.independentid.com<http://www.independentid.com> phil.hunt@oracle.com<mailto:phil.hunt@oracle.com> On Nov 14, 2018, at 5:00 AM, Karaimin, Aleyidin <aleyidin.karaimin@sap.com<mailto:aleyidin.karaimin@sap.com>> wrote: Hello, According to the RFC 7644-System for Cross-domain Identity Management: Protocol, section 3.5.2-Modifying with PATCH, ‘The "path" attribute is OPTIONAL for "add" and "replace" and is REQUIRED for "remove" ’ Let’s assume that in some case, “path” is not provided for add or replace operation. Is it possible to assign value to custom schema attribute (or extension Enterprise for User) ?. Suppose we have the following bodies of PATCH Requests Example 1: { "schemas": ["urn:ietf:params:scim:api:messages:2.0:PatchOp"], "Operations":[ { "op":"add", "value": { "urn:ietf:params:scim:schemas:extension:enterprise:2.0:User" : { "employeeNumber" : "12345" }, "nickname" : "simpleNickname" } } ] } Is the above example valid ? Can we assign custom attribute to corresponding value in “value” body ? Example 2: { "schemas": ["urn:ietf:params:scim:api:messages:2.0:PatchOp"], "Operations":[ { "op":"add", "value": { "urn:ietf:params:scim:schemas:extension:enterprise:2.0:User:employeeNumber" : "12345", "nickname" : "simpleNickname" } } ] } If the Example 1 is valid, is it allowed to specify full attribute path in the “value” body ? Thank you, Aleydin Karaimin _______________________________________________ scim mailing list scim@ietf.org<mailto:scim@ietf.org> https://urldefense.proofpoint.com/v2/url?u=https-3A__www.ietf.org_mailman_listinfo_scim&d=DwICAg&c=RoP1YumCXCgaWHvlZYR8PZh8Bv7qIrMUB65eapI_JnE&r=na5FVzBTWmanqWNy4DpctyXPpuYqPkAI1aLcLN4KZNA&m=IM8g4xCE7ueFZYCMNifU_o_J4kgaWb4y8e5fPKIO2d0&s=xn2tQFGKNxirT3fsN6MPv5zSobvRJ7yDI6q237paKJM&e=
- [scim] SCIM 2.0 PATCH - modifying custom or enter… Karaimin, Aleyidin
- Re: [scim] SCIM 2.0 PATCH - modifying custom or e… Phil Hunt
- Re: [scim] SCIM 2.0 PATCH - modifying custom or e… Karaimin, Aleyidin