[Dev] [DEV] [IS] [user-mgt] Secondary user store domain name case sensitive for scim PATCH operation

Fri, 23 Oct 2015 05:06:08 -0700 

Hi team,

When I try curl PATCH operation for scim[1] with case sensitive domain name
(exactly same as created domain) to add new member to group in secondary
user store, I got the error[2]. But if I give the domain name as all
uppercase, given role has updated successfully[3].

In this scenario, I have used R/W LDAP as secondary user store with domain
name 'Secondary.com' (see attached configuration Secondary_com.xml)
and username as email.
Claims has mapped properly (followed:
https://docs.wso2.com/display/IS510/Provisioning+Users+to+Secondary+User+Stores+Using+SCIM
)

So what should be the case for secondary user store domains for scim
scenario?


[1]
curl -v -k --user '[email protected]':admin -X PATCH -d "{"displayName":
'Secondary.com/batmanrole',"members":
[{"value":"d56cef7a-28d5-4b2f-9034-679d23a2d590","display": 'Secondary.com/
[email protected]'}]}" --header "Content-Type:application/json"
https://localhost:9443/wso2/scim/Groups/8eb774c5-c8af-4f5c-92ce-6cb6af848509


[2]
{"Errors":[{"description":"Given SCIM user Id and name not
matching..","code":"500"}]}


[3]
curl -v -k --user [email protected]:admin -X PATCH -d "{"displayName":
'Secondary.com/batmanrole',"members":
[{"value":"d56cef7a-28d5-4b2f-9034-679d23a2d590","display": '
SECONDARY.COM/[email protected]'}]}" --header
"Content-Type:application/json"
https://localhost:9443/wso2/scim/Groups/8eb774c5-c8af-4f5c-92ce-6cb6af848509

Response is -
{"id":"8eb774c5-c8af-4f5c-92ce-6cb6af848509","schemas":["urn:scim:schemas:core:1.0"],"displayName":"Secondary.com/batmanrole","members":[{"value":"d56cef7a-28d5-4b2f-9034-679d23a2d590","display":"
SECONDARY.COM/[email protected]
"}],"meta":{"lastModified":"2015-10-23T15:31:14","created":"2015-10-23T14:10:49","location":"
https://localhost:9443/wso2/scim/Groups/8eb774c5-c8af-4f5c-92ce-6cb6af848509
"}}



Thanks & Kind regards,

-- 
Kavitha.S
*Software Engineer -QA*
Mobile : +94 (0) 771538811 <%2B94%20%280%29%20773%20451194>
[email protected] <[email protected]>

<?xml version="1.0" encoding="UTF-8"?><UserStoreManager class="org.wso2.carbon.user.core.ldap.ReadWriteLDAPUserStoreManager">
      <Property name="ConnectionName">cn=admin,dc=ITIndustry,dc=sl</Property>
      <Property name="ConnectionURL">ldap://192.168.18.76:389</Property>
      <Property encrypted="true" name="ConnectionPassword">dhbmDZ2nsIqy0SDpF9UJgbXHqlteUIp0HSCWoqILNsl9FhSQ6UpQY5smoYdljhdZ0wl8U0pY5tvaLCOuafc6uBMALtq+nDsBhATtC2S6prgK+izi1bXnZGSUmYeCiGrc5GRM5+WKUPfAsh48oIyrXCae6UFwmYaQx9wTFu5FTBo=</Property>
      <Property name="UserSearchBase">ou=People,ou=WSO2,o=Opensource,dc=ITIndustry,dc=sl</Property>
      <Property name="UserNameListFilter">(&amp;(objectClass=person)(mail=*))</Property>
      <Property name="UserNameAttribute">mail</Property>
      <Property name="UserNameSearchFilter">(&amp;(objectClass=person)(mail=?))</Property>
      <Property name="UserEntryObjectClass">inetOrgPerson</Property>
      <Property name="GroupEntryObjectClass">groupOfNames</Property>
      <Property name="ReadGroups">true</Property>
      <Property name="GroupSearchBase">ou=Groups,ou=WSO2,o=Opensource,dc=ITIndustry,dc=sl</Property>
      <Property name="GroupNameAttribute">cn</Property>
      <Property name="GroupNameListFilter">(objectClass=groupOfNames)</Property>
      <Property name="MembershipAttribute">member</Property>
      <Property name="GroupNameSearchFilter">(&amp;(objectClass=groupOfNames)(cn=?))</Property>
      <Property name="MaxUserNameListLength">100</Property>
      <Property name="MaxRoleNameListLength">100</Property>
      <Property name="UserRolesCacheEnabled">true</Property>
      <Property name="SCIMEnabled">true</Property>
      <Property name="DisplayNameAttribute">uid</Property>
      <Property name="Disabled">false</Property>
      <Property name="MultiAttributeSeparator">,</Property>
      <Property name="PasswordHashMethod">SHA</Property>
      <Property name="UserDNPattern"/>
      <Property name="PasswordJavaScriptRegEx">^[\S]{5,30}$</Property>
      <Property name="UsernameJavaScriptRegEx">^[\S]{3,30}$</Property>
      <Property name="UsernameJavaRegEx">[a-zA-Z0-9@._-|//]{3,30}$</Property>
      <Property name="RoleNameJavaScriptRegEx">^[\S]{3,30}$</Property>
      <Property name="RoleNameJavaRegEx">[a-zA-Z0-9._-|//]{3,30}$</Property>
      <Property name="WriteGroups">true</Property>
      <Property name="EmptyRolesAllowed">true</Property>
      <Property name="MemberOfAttribute">memberOf</Property>
      <Property name="ConnectionPoolingEnabled">false</Property>
      <Property name="ReadTimeout">5000</Property>
      <Property name="IsBulkImportSupported">false</Property>
      <Property name="DomainName">Secondary.com</Property>
      <Property name="Description"/>
</UserStoreManager>

_______________________________________________
Dev mailing list
[email protected]
http://wso2.org/cgi-bin/mailman/listinfo/dev

Reply via email to