Stuck on an issue?
Lightrun Answers was designed to reduce the constant googling that comes with debugging 3rd party libraries. It collects links to all the places you might be looking at while hunting down a tough bug.
And, if you’re still stuck at the end, we’re happy to hop on a call to see how we can help out.
[SCIM] PUT operation on immutable group fails
See original GitHub issueSetup: all the member attributes of a group are defined as immutable as defined here.
Reproduces by the following actions:
- POST - create a user
- POST - create a group with the user in it
- PUT - on the group with the same members payload as in
2
The response is:
{
"schemas": [
"urn:ietf:params:scim:api:messages:2.0:Error"
],
"status": "400",
"scimType": "mutability",
"detail": "attribute d6c036b6-51f7-4c92-a45f-d8c747fe2304 is immutable"
}
In RFC-7644 section 3.5.1 -
immutable If one or more values are already set for the attribute,
the input value(s) MUST match, or HTTP status code 400 SHOULD be
returned with a "scimType" error code of "mutability". If the
service provider has no existing values, the new value(s) SHALL be
applied.
Then, it seems to me that if the members in the PUT payload is the same, we should not get a 400 status code.
This same exception occurs on the following, which also seems to not follow this RFC section.
- POST - create a user
- POST - create an empty group
- PUT - on the group with the user in it (to add the user)
Issue Analytics
- State:
- Created a year ago
- Comments:16 (9 by maintainers)
Top Results From Across the Web
Azure AD SCIM Validator is in General Availability (GA) ...
I mark some attributes as immutable but SCIM validator still send PATCH request with Patch Operation to `replace` those fields. How can I...
Read more >Managing Users & Groups with SCIM
This operation fails if immutable attributes are requested to change. Otherwise, it will replace the read-write or write-only attributes based on the request....
Read more >SCIM API Error Handling | ActivID Appliance
SCIM Error Types ; invalidValue. GET , POST, PUT, PATCH. A required value was missing, or the value specified was not compatible with...
Read more >RFC 7644 - System for Cross-domain Identity Management
SCIM's intent is to reduce the cost and complexity of user management operations by providing a common user schema, an extension model, and...
Read more >Step. 2 Implement RESTful SCIM APIs for Your App
A key piece to implementing SCIM is building a RESTful API that OneLogin SCIM provisioning can call to provision users to your app....
Read more >
Top Related Medium Post
No results found
Top Related StackOverflow Question
No results found
Troubleshoot Live Code
Lightrun enables developers to add logs, metrics and snapshots to live code - no restarts or redeploys required.
Start Free
Top Related Reddit Thread
No results found
Top Related Hackernoon Post
No results found
Top Related Tweet
No results found
Top Related Dev.to Post
No results found
Top Related Hashnode Post
No results found
Hello,
The release is scheduled tomorrow (10-02).
My tests seem to work now. Thanks for your effort on this !
Can you please release these new fixes as a nuget on the official channel?