feat: add OIN catalog browse and app-install tools#75
Open
mjdavidson wants to merge 1 commit into
Open
Conversation
Outbound SCIM provisioning only works on a provisioning-capable app, which must be an instance of an OIN catalog app — provisioning capability is fixed by the catalog definition at install time and cannot be added to a plain custom SAML/OIDC app. create_application could not install one because the typed SDK serialization strips the catalog 'name' key from the request body. Add list_catalog_apps / get_catalog_app to browse the OIN catalog (find an app's 'name' and provisioning features) and install_oin_app to install an instance via a direct POST that preserves 'name'. With an installed provisioning-capable app, the existing provisioning tools (set_app_provisioning_connection, update_app_feature, etc.) then work against it. Catalog reads gate on okta.apps.read, install on okta.apps.manage.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Outbound SCIM provisioning only works on an instance of an OIN catalog app — provisioning capability is fixed by the catalog definition at install time and cannot be added to a plain custom app.
create_applicationcannot install one because the typed SDK serialization strips the catalognamekey. Addslist_catalog_apps/get_catalog_appto browse the OIN catalog andinstall_oin_appto install an instance via a direct POST that preservesname. Catalog reads gate onokta.apps.read, install onokta.apps.manage.Tests:
tests/test_oin_catalog.py.