Passing Additional headers in SCIM 2.0 Token based authentication

Arshad · June 5, 2023, 7:12am

Hi All,

I am integrating an application using SCIM 2.0 connector with a Basic Authentication method.

For this authentication, from the application side we have a few mandatory additional headers which need to pass.

The connector documentation mentions that additional headers can be added to the XML only if the authentication mechanism is OAuth 2.0 in the UI config. But in my case, I am using Basic Authentication in the UI and when tried to add the below statement to the Application XML from debug, the test connection still fails:

<entry key="BasicLogin">
<value>
<Map>
<entry key="api_key" value="testapikeyvalue"/>
</Map>
</value>
</entry>

Has someone come across this requirement and kindly help with any suggestions?

Thanks in advance,
Arshad.

brian_weigel · June 5, 2023, 1:16pm

You will probably need to configure it as No Authentication and use the noAuthHeaders app config key to define the needed authentication: No Authentication - Send Custom Headers in the Request Body

Arshad · June 7, 2023, 5:42am

Hi @brian_weigel

Thank you for the feedback. I tried the No Authentication way with noAuthHeaders in the app config.

The test connection doesn’t work still.

brian_weigel · June 7, 2023, 1:16pm

By “still doesn’t work”, I assume you are referring to the same HTTP 403 error in your screenshot?

Arshad · June 8, 2023, 10:19am

Hi @brian_weigel

Thanks for the turn around. I’ve figured the solution for this one.

To achieve SCIM 2.0 connectivity with additional headers using basic authentication, what we need to do is select No Authentication as the “Authentication Type” in the app config UI.

Below is the block that I’ve added to the application XML:

<entry key="noAuthHeaders">
    <value>
        <Map>
            <entry key="Authorization" value="Basic [encrypted id and password value which you can obtain from Postman collection by exporting the API call to a curl command]"/>
            <entry key="[Additional_Header_Name]" value="[Header_Value]"/>
        </Map>
    </value>
</entry>

Now, the connectivity will be established without any issues.

@brian_weigel , the mistake I did previously was to just add the id and password as separate entries in the above XML instead of adding the Authorization key and encrypted User ID/Password value from postman collection.

Regards,
Arshad.

system · August 7, 2023, 10:20am

This topic was automatically closed 60 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Pass Custom header to IDN SCIM 2.0 Connector ISC Discussion and Questions scim-connector	1	454	July 19, 2023
SCIM 2 Connector - Reading extension enterprise schema IIQ Discussion and Questions scim-connector , identityiq	1	708	July 19, 2023
SCIM API Authentication Problem With Postman IIQ Discussion and Questions	3	2116	July 19, 2023
OAuth2.0 error when trying to connect “Cannot supply multiple client credentials. Use one of the following: credentials in the Authorization header, credentials in the post body, or a client_assertion in the post body” IIQ Discussion and Questions webservice-connector , identityiq , connectors	2	322	March 8, 2024
Scim 2.0 connector Http Request Headers Content-type ISC Discussion and Questions apis	2	503	July 19, 2023

Passing Additional headers in SCIM 2.0 Token based authentication

Related Topics