Click HERE to see how Saviynt Intelligence is transforming the industry. |
05/09/2022 11:06 AM
Trying to add access to an AzureAD Group with the Out of the Box connector but getting the following error. I am not calling any string function explicitly so not sure where this is coming from. This works just fine in Postman so it is Saviynt related somewhere.
This is in v2020
Error: Error in processGroupInTargetgroovy.lang.GroovyRuntimeException: Ambiguous method overloading for method java.lang.String#<init>.
Cannot resolve which method to invoke for [null] due to overlapping prototypes between:
[class [B]
[class [C]
[class java.lang.String]
AddAccessJSON:
{
"call": [
{
"name": "AADGroup",
"connection": "graphAuth",
"url": "https://graph.microsoft.com/v1.0/groups/${entitlementValue.entitlementID}/members/\\$ref",
"httpMethod": "POST",
"httpParams": "{\"@odata.id\":\"https://graph.microsoft.com/v1.0/directoryObjects/${account.accountID}\"}",
"httpHeaders": {
"Authorization": "${access_token}"
},
"httpContentType": "application/json",
"successResponses": {
"statusCode": [
200,
201,
204,
205
]
}
}
]
}
Solved! Go to Solution.
05/10/2022 08:13 AM
Hi
Can you try giving "unsuccessResponses" with values like below.. I am sorry , I dont have V2020 to check and assist,but in one of environment , we have AddAccess included with the below responses,
You can also wait for other responses who can assist to fix that error.
"Authorization_RequestDenied",
"Authentication_Unauthorized"
Thanks
Shyam
05/10/2022 08:48 AM
Thank you for the suggestion @sundas7! I have added that parameter but unfortunately still get the same error.
05/10/2022 11:34 AM
This has been resolved. The Azure AD Connector Guide is incorrect. I would recommend updating the documentation for the Azure AD Connector. The following line should NOT be in the ConnectionJSON. Removing it solved the issue.
"accessToken": "Bearer abcd"
05/10/2022 11:24 PM
Hi
Thank you for posting your feedback on AZure AD Connector Guide,
This line in our guide ("accessToken": "Bearer abcd") is just a dummy access token.
So, actual token looks something like this:
05/11/2022 04:29 AM
Yes, I understand that is a dummy line but that dummy line is required for the REST connector. During authentication in the REST connector, 'abcd' is replaced with the actual token. The documentation for the AzureAD connector implies the same behavior, however, it does not work the same way. In the AzureAD connector, the abcd replaces the real token, whereas, in the REST connector, it is the other way around.
This inconsistency is not reflected in the documentation, and therefore I'd recommend either building consistency in the platform, or updating the documentation.