Hi!
I’ve got a few questions regarding the Web Service Connector. I’ve read quite a few posts describing the same issue but it is still unclear to me how this connector works OOTB without any rule modifications. There seems to be some implicit assumptions of how the source should behave in order to be able to use the connector without modifying it with rules.
It is namely this issue when successfully creating an account (Native Identity showing ??? and Account ID attribute not populated):
Schema is as follows:
{
"nativeObjectType": "user",
**"identityAttribute": "sourceId",**
"displayAttribute": "displayname",
"hierarchyAttribute": null,
"includePermissions": false,
"features": [],
"configuration": {},
"attributes": [
{
**"name": "sourceId",**
"type": "STRING",
"schema": null,
"description": "",
"isMulti": false,
"isEntitlement": false,
"isGroup": false
},
{
"name": "displayname",
"type": "STRING",
"schema": null,
"description": "",
"isMulti": false,
"isEntitlement": false,
"isGroup": false
}
],
"id": "removed",
"name": "account",
"created": "2024-10-16T07:57:48.804Z",
"modified": "2024-10-31T07:53:07.644Z"
}
Create Account Provisioning Policy
{
"name": "sourceId",
"transform": {
"type": "identityAttribute",
"attributes": {
"name": "iscGeneratedID"
}
},
"attributes": {},
"isRequired": false,
"type": "string",
"isMultiValued": false
}
Create Account POST Body
{
"sourceId": "$plan.getNativeIdentity$",
"address": "dummy",
"zip": "dummy"
}
In our case sourceId is marked as Account ID in the schema, ISC owns this attribute, generates it and sets it on the Identity itself, and we want to set it as Native Identity on our source accounts upon account creation.
Question: Does the connector OOTB expect a value to be returned from the source and that that value is mapped to the Account ID? We already have this value in ISC, why can’t we set that instead in response mapping?
Question 2: I understand the connector does a Get Object operation after and that you have to define this operation for it to work. How do I pass some other value than $getobject.nativeIdentity$ to search with? We would like to use something like $getobject.sourceInternalID$ mentioned above, this differs from the Account ID.
Any links as to how it works “under the hood”, what are some assumptions/expectations for it to work OOTB?
Thanks!