Hello everyone,
We’ve a requirement to update the account, if there is a change in email, first name, last name and if there is request for new access (in the form of access profile), then it should remove the old access profile entitlements and add the new access profile entitlements. We have 2 types of entitlement security role and dataSecurityGroupName(multivalued attribute)
Eg Access profile 1 – SR1, DS1, DS2
Access profile 2 – SR2, DS3
Access profile 3 – SR1, DS1
If we request new access profile, it should have the entitlements, which is the new access profile, not the old access profile entitlements.
I’ve written a before operation rule to update account http operation, which is working fine for the direct identity attributes update firstname, lastname and email, but when we try to do new access profile request it is ending up with the below error. I’m having the rule attached to only update account and the Add entitlement – security role, Add entitlement – datasecuritygroup http operation is created, but not sure are these operations neccessary
Exception while updating account.Url: https://cloud2-sbox-irapi.highradius.com/api/iam/v1/users, Message: 400 : Bad Request : {“message”:[“Cannot deserialize value of type java.lang.String
from Array value (token JsonToken.START_ARRAY
)”],“statusCode”:“BAD_REQUEST”,“data”:null,“status”:“Failed”}, HTTP Error Code: 400,
Exception while updating account.Url: https://cloud2-sbox-irapi.highradius.com/api/iam/v1/users, Message: 500 : Something went wrong. Please contact Support Team, HTTP Error Code: 500
Below is the update account code. The same API is used for updating the account, entitlement. There are couple of attributes are mandatory for update API, so I’m fetching the value from get user API and comparing about the provisioning plan, if any change then take the value from provisioning plan, if not use the get user API value. To verify the issue, I’m not seeing any ccg logs. Can someone guide, is there any issue with the code or the configuration
Below is the JSON body
{
“user”: [
{
“firstName”: “Aaron”,
“lastName”: “Teel”,
“defaultMenu”: “Deductions”,
“loginType”: “SSO”,
“functionalRole”: “Account Admin”,
“languageId”: “en”,
“active”: true,
“dataSecurityGroupName”: “BHC-0353-SEC-GROUP,BCS-1994-SEC-GROUP”,
“userName”: “EIJRM”,
“securityRole”: “DMS Approver”,
“email”: “[email protected]”
}
]
}
update account backup (11.7 KB)