IETF SCIM 117 WG Notes
26 July 2023
Location: San Francisco Hilton, Continental 8-9
Scribes: Pam D, Paul L
Presentation:
Nancy:
Danny Z: question on usage of devices namespace, everything is
aligned to IoT devices. Other folks may want to use that namespace
in the future
Draft:
https://github.com/pamelatech/scim-use-case-revamp/blob/main/draft-correia-scimusecases-00.txt
Presentation:
Base concept review (Pam)
Orchestrator roles: new concept in this draft. Includes
Resource Creator (RC), Resource Updater (RU), Resource
Manager (RM), Resource Subscriber (RS)
Resources
Triggers - causes a SCIM action to be performed
SCIM Actions: Push or Pull to: Create, Update or Delete a
SCIM Identity Resource
SCIM Use Cases review (Paulo)
Multiple IdM doing CRUD ops on SaaS application, and Objects
coming from external SCIM and non-SCIM sources including the
IdM itself, where some object attributes come from SaaS
application, and are updated in the SCIM object creator
Next steps (Nancy)
Discussion regarding /me endpoint:
Presentation:
Discussion:
Anyone not happy with a last call?
Discussion about doing WGLC and an early SECDIR review for this
Presentation:
Discussion:
Next Steps:
Presentation:
Problem statement and solution requirements:
Approach 1: Timestamp filter
Today you can make this request but deleted users are not
included
Pros: already implemented, but including deleted users would
require new functionality
Approach 2: Change detection via watermark
Open items for discussion/input
Discussion:
Presentation:
Async SCIM request (example)
New ServiceProviderConfig attributes
Demo and discussion
i2scim.io - open source Java-based SCIM Server
Stream recovery - heard that this was important - to be able
to reset to date/time or JTI
plan to publish soon
Discussion:
Next steps