generator-jhipster icon indicating copy to clipboard operation
generator-jhipster copied to clipboard
verified publisher icon jhipster

Investigate using SCIM to sync users with identity provider when using OAuth

Open mraible opened this issue 4 years ago • 6 comments

Overview of the feature request

SCIM (System for Cross-domain Identity Management) is a standard automating user provisioning (aka syncing users). SCIM communicates user identity data between identity providers (such as companies with multiple individual users) and service providers requiring user identity information (such as enterprise SaaS apps).

Here's a presentation from @jpf that explains how it works: https://twitter.com/oktadev/status/1391422797516320771

Motivation for or Use Case

Our current mechanism for syncing users only happens when the user logs in. This means you can't select users in a relationship if they haven't logged in yet. Implementing SCIM would allow us to have the syncing of users happen automatically.

Related issues or PR

There's a Stack Overflow question about SCIM support in Keycloak. It currently doesn't exist, but there is a library that someone created. SCIM should work with Okta.

mraible avatar May 12 '21 19:05 mraible

This issue is stale because it has been open 30 days with no activity. Our core developers tend to be more verbose on denying. If there is no negative comment, possibly this feature will be accepted. We are accepting PRs :smiley:. Comment or this will be closed in 7 days

github-actions[bot] avatar Jun 16 '21 00:06 github-actions[bot]

I don't have any ambition of implementing this in the near future. I can add a bug bounty if something is interested in trying to implement it.

mraible avatar Jun 16 '21 01:06 mraible

This issue is stale because it has been open 30 days with no activity. Our core developers tend to be more verbose on denying. If there is no negative comment, possibly this feature will be accepted. We are accepting PRs :smiley:. Comment or this will be closed in 7 days

github-actions[bot] avatar Jul 18 '21 00:07 github-actions[bot]

This issue is stale because it has been open for too long without any activity. Due to the moving nature of jhipster generated application, bugs can become invalid. If this issue still applies please comment otherwise it will be closed in 7 days

github-actions[bot] avatar Oct 25 '23 00:10 github-actions[bot]

I figured out how to do it with Okta and documented it in https://github.com/mraible/okta-scim-spring-boot-example. Auth0 will be adding SCIM support in the next few months.

mraible avatar Oct 25 '23 05:10 mraible

This issue is stale because it has been open for too long without any activity. Due to the moving nature of jhipster generated application, bugs can become invalid. If this issue still applies please comment otherwise it will be closed in 7 days

github-actions[bot] avatar Apr 24 '24 00:04 github-actions[bot]