IdentityNow Extensions for Visual Studio Code

Hello everyone!

As a daily-user of VSCode, I wanted to have a helpful extension to ease things with IdentityNow and its APIs.

Note: This extension is not developed, maintained or supported by SailPoint. It is a community effort to help manage IdentityNow from Visual Studio Code.

The extension has evolved and support the following operation, while benefiting from a fully-feature IDE like VSCode:

• Connect to several tenants
• Import and export config of a tenant
• View, edit, aggregate, test, peek, ping, clone, or reset sources
• View, create, edit, delete, and test transforms
• View, create, edit, delete provisioning policies of a source
• View, create, edit, delete schemas of a source
• View, edit, enable, disable, export, import workflows and view execution history
• View, create, edit, delete connector rules and export/import the script of a rule
• View, edit, delete service desk integrations
• View, edit, delete identity profiles and lifecycle states, and refreshes all the identities under a profile
• Import/Export Accounts (import for delimited files only), uncorrelated accounts, entitlement details
• View, edit, create, delete, export, import access profiles
• View, edit, create, delete, export, import roles
• View, edit, create, delete, export, import forms
• View, edit, create, delete search attribute config
• View, edit, create, delete identity attribute
• View, trigger attribute sync or process, delete identities
• View, edit, create, delete applications

Once you have installed the extension, you will be have a new “IDN” menu where you add tenants and view objects:

image1112×723 54.8 KB

For more information, you can get to SailPoint Identity Security Cloud - Visual Studio Marketplace

Installation

Installation is straightforward as the extension is published in VSCode marketplace.

Go to the extension menu or press Ctrl+Shift+X and look for the extension “IdentityNow”. Click on the button Install.

Here is version 1.0.0
It brings the support of entitlements for importing/exporting roles.
Most importantly, the extension has reached a milestone for which I considered the direct usage of API or Postman is unnecessary.
The extension will continue to evolve (the next step is probably the depreciation of the CC API for instance). But I think it deserves its version 1.0.

As usual, if you have any issue or any idea, do not hesitate to open a new issue in GitHub!

Here is version 1.3.0

As of now, all new tenant added will be marked as “read-only” by default. You can unlock the tenant by clicking the lock that appears when you pass the mouse over the tenant name

Lots of fixes, refactoring, updates and new features:

• Update for source aggregation and reset to leverage beta endpoints instead of CC endpoints
• Add searching and viewing identities by @henrique_quintino (cf. #74)
• Add attribute sync, process and delete command on identities by @henrique_quintino (cf. #74)
• Fixed normalizeNames (cf. #73)
• Lock tenant as read-only to prevent any change (cf. #75 and #81)
• Fixed with generate digit token to use the username and not the account name
• Automatically update workflow if its status is changed
• Fixed case where a single entitlement or single access profiles is returned during role creation

@angelo_mekenkamp the issue with workflow cache you’ve shown me should be solved

Here is version 1.3.3

Lots of fixes, refactoring, updates and new features:

• Add User Agent
• Add transform evaluation support for decomposeDiacriticalMarks (cf. #90) by @Semperverus
• Add new command to enable logging
• Fixed dependency (axios, micromatch)
• Refactored code due to #36
• Removed Workflow Tester view due to webview-ui-toolkit deprecation (cf. Sunsetting the Webview UI Toolkit · Issue #561 · microsoft/vscode-webview-ui-toolkit · GitHub)
• Add support for Applications
• Error with session management (cf. #93)

To enable logging on a source, just-right click on the source.
I have compiled several articles to list logging classes.
The result is in vscode-sailpoint-identitynow/src/models/Logging.ts at 4cce514c805ecea007d519ebf5254666699b8eb9 · yannick-beot-sp/vscode-sailpoint-identitynow · GitHub.
Obviously, I could not test them all. If something is missing or if there is an error, let me know by opening an issue, or propose me a Pull Request to modify the list.

Hi Yannick, is it intended behavior that VS Code prompts for a token every time I change orgs? I get prompted every time I switch between tenants to sign in and I get this drop down:

No
VSCode has broken somehow the “authentication provider” feature.
I’m not sure I will be able to fix it today.

Hi @yannick_beot,

We are also facing the same authentication issue wherein Visual Studio is continuously prompting us to select the account w.r.t PAT. Please let us know if you find some solution.

Thanks,
Kartheek

Maybe I found the culprit: Visual Studio Code September 2024

Here are versions 1.3.4, 1.3.5 and 1.3.6

Quick fixes:

• Restore command to add new Search Attribute Configuration
• Changed axios interceptor for better error management (cf. #92)
• Fix authentication provider multi account support (as part of VSCode September’s release) (cf. #94)