System for Cross-domain Identity Management 2 (SCIM)

System for Cross-domain Identity Management 2 (SCIM) is a standard for identify management. It describes the various resources (user, group++) and a REST interface to on these. CUE User Manager requires the IAM system to support version 2 of SCIM.

CUE User Manager needs the following extensions must be present in the SCIM user schema:

  • userGroups (multi value string)

  • homePublication (string)

Granted that the IAM system supports SCIM and that a valid OIDC access token passed in the request grants access to the REST API, CUE User Manager should be able to use it by entering the SCIM2 REST endpoint URI in /etc/escenic/user-manager/user-manager.yaml:

provider:
  scimEndpoint: https://iam.mycompany.com/scim/v2/