I’m building a workflow that triggers everytime an access request is submitted. I have to satisfy a requirement that says that if the request of the access items is coming from the Source X, than I have to do some operations.
The principal problem is how I can discover the source from wich an access item is coming from for:
entitlements
access profile
entitlements or access profile inside a requested role?
is there any kind of workflow block or API that let me to discover that information?
@s_tartaglione when you use the trigger you must be able to see the requestedItem
Under requestedItem check the type of access items type it can be ACCESS_PROFILE, ENTITLEMENT OR ROLE.
Based on the type make an HTTP request to call API to get the access item details
Get Entitlement(/v3/entitlements/${$.id}) → Check Entitlement Source
Get Access Profile(/v3/access-profiles/${$.id}) → Check Access Profile Source
there you will find the source details, once you get the source details then you can decide to continue with which actions.
ACCESS_PROFILES AND ENTITLEMENTS are directly associated with a source. But ROLES are not so there you have to again use HTTP Operation to get the type and then get the access item source details via call the API, then you can decide to continue with which actions.
Get Role(/v3/roles/${$.id}) → Iterate Role Entitlements-> Get Entitlement(/v3/entitlements/${$.id}) → Check Entitlement Source
Get Role(/v3/roles/${$.id}) → Iterate Role Access Profiles → Get Access Profile(/v3/access-profiles/${$.id}) → Check Access Profile Source