Rule to get a manager for Coupa based on the level by iterating till the manager's level is 10 and should not escalate to level 15 (CEO/VP), it should be stopped to level 14

osmanmohammed · June 10, 2024, 6:23pm

Coupa Manager Rule

Rule to get a manager for Coupa based on the level by iterating till the manager’s level is 10 and should not escalate to level 15 (CEO/VP), it should be stopped to level 14.

what change we can do in here ?

<?xml version='1.0' encoding='UTF-8'?>
<!DOCTYPE Rule PUBLIC "sailpoint.dtd" "sailpoint.dtd">
<Rule name="GetCoupaManagerRuleUpdated" type="IdentityAttribute">
  <Description>Rule to get a manager for Coupa based on the level by iterating till the manager's level is 10 or more</Description>
  <Source><![CDATA[

	import sailpoint.object.*;

	Identity userIdentity = identity; 
	String noManagerSet = ""; 
	String managerLevel = null;
	String managerEmail = null;

	for (int i = 1; i <= 10; ++i) {
		if (userIdentity != null) {
			Identity managerIdentity = userIdentity.getManager(); 
			
			if(managerIdentity != null)
			{
				if (managerIdentity.getAttribute("level") != null)
				{
					managerLevel = (String) managerIdentity.getAttribute("level");
					int managerLevelValue = Integer.parseInt(managerLevel);
				 
					if (managerLevelValue > 9){
						 if (managerIdentity.getAttribute("email") != null)
								managerEmail = (String) managerIdentity.getAttribute("email");
						  break;
					}
					else 
						userIdentity = managerIdentity;
				}
				else
					userIdentity = managerIdentity;
			}
			else
				break;
		}
		else
			break;
	}
	return managerEmail;



  ]]></Source>
</Rule>

@sup3rmark @jesvin90 @sharvari

KRM7 · June 14, 2024, 10:39am

Try this code

import sailpoint.object.*;
	Identity userIdentity = identity;
    Identity managerIdentity = null;
	int managerLevel = 0;
	String managerEmail = null;

	for (int i = 0; managerLevel != 15; i++) {
		if (userIdentity != null) {
			managerIdentity = userIdentity.getManager(); 
			
			if(managerIdentity != null) {
				if (managerIdentity.getAttribute("level") != null) {
					managerLevel = Integer.parseInt(managerIdentity.getAttribute("level"));
				 
					if (managerLevel > 9 && managerLevel < 15){
						 if (managerIdentity.getAttribute("email") != null) {
								managerEmail = (String) managerIdentity.getAttribute("email");
								break;
						  }
					} else 
						userIdentity = managerIdentity;
				}
				else
					userIdentity = managerIdentity;
			}
			else
				break;
		} else
			break;
	}
	return managerEmail;

osmanmohammed · June 14, 2024, 4:25pm

Thank you @KRM7 really appreciate it.
before going ahead had questions

As this is a cloud rule how can i get this reviewed & deployed without ES,
is there a way to at least let me deploy a cloud rule by self using API in lower Env, if yes could you point out which endpoint.
can this also be handled by transforms, can a transform handles this operations send over across to coupa application and manage manager email escalation based on the logic defined ?

KRM7 · June 15, 2024, 8:27am

No, SailPoint only can deploy cloud Rule

I don’t think any OOTB Transform can support your requirement, you can use Static Transform with Apache Velocity script, it is not that simple but doable.

Thanks
Krish

osmanmohammed · June 28, 2024, 8:09pm

tried this and am facing this error

varshini303 · July 2, 2024, 7:36am

Hi @osmanmohammed

Please make sure that when you run the rule validator, -file is something like

sp-rv -f "Rule - RuleType - YourFileName.xml"

I guess in your case it should be

sp-rv -f "Rule - IdentityAttribute - coupa_production_updated_rule.xml"

osmanmohammed · July 2, 2024, 5:52pm

it says file does not exist

step 1) chmod +x sp-rv
step 2) 
![image|690x46](upload://A8s9SVM4EGg0gq03NVAJ2mXX4iC.png)
output


![Screenshot 2024-07-02 at 10.56.56 AM|690x396](upload://4Bmw2kIgM6r2gmiVebyuFc31izp.jpeg)

varshini303 · July 3, 2024, 4:36am

Could you please share those output images? I think they weren’t uploaded in this post.

osmanmohammed · July 3, 2024, 10:59pm

./sp-rv -f “Rule - IdentityAttribute - coupa_production_updated_cloud_rule.xml” -r

varshini303 · July 4, 2024, 5:26am

Seems like the xml file should be saved in the name

Rule - IdentityAttribute - coupa_production_updated_rule.xml

I assume that this is given in the xml file,

<Rule name="coupa_production_updated_cloud_rule" type="IdentityAttribute">

So this takes the rule name not the file name

sp-rv -f "Rule - RuleType - YourRuleName.xml"

sp-rv -f "Rule - IdentityAttribute - coupa_production_updated_rule.xml"

osmanmohammed · July 5, 2024, 7:00pm

nope, rule name →
<Rule name="GetCoupaManagerRuleUpdated" type="IdentityAttribute">
[/quote]

and file name → coupa_production_updated_cloud_rule.xml

osmanmohammed · July 5, 2024, 7:06pm

it should not populate approvers whose manager level 15

system · September 3, 2024, 7:06pm

This topic was automatically closed 60 days after the last reply. New replies are no longer allowed.