Announcing the Saviynt Knowledge Exchange unifying the Saviynt forums, documentation, training,
and more in a single search tool across platforms. Read the announcement here.
This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

[REST API] Unable to map the entitlements to accounts for the application Oracle Fusion(24A)

Go to solution
ganimkt
New Contributor II
New Contributor II

‎02/29/2024 02:25 AM

We have onboarded Oracle Fusion application successfully using REST API without any issues. We have imported accounts and entitlemets (Roles) successfully into Saviynt Dev environment. However, we are observed that mapping of entitlement to account is not working as expected.

For example an account name john.doe@domain.com, we see that there are no Entitlement Hierarchy and Associated Entitlement. However we do see all the entitlements in "Entitlements" section under endpoint. 

Attached are the 3 versions of json we have attempted for your reference.

Labels:
Preview file
3 KB
Preview file
3 KB
Preview file
4 KB
0 Kudos
5 REPLIES 5

Go to solution
Manu269
All-Star
All-Star

‎02/29/2024 02:32 AM

@ganimkt try this please :

{
    "accountParams": {
        "connection": "acctAuth",
        "processingType": "SequentialAndIterative",
        "call": {
            "call1": {
                "callOrder": 0,
                "stageNumber": 0,
                "http": {
                    "httpContentType": "application/json",
                    "httpMethod": "GET",
                    "httpHeaders": {
                        "Authorization": "${access_token}"
                    }
                },
                "listField": "Resources",
                "keyField": "accountID",
                "statusConfig": {
                    "active": "true",
                    "inactive": "false"
                },
                "colsToPropsMap": {
"accountID": "id~#~char",
                    "name": "userName~#~char",
                    "displayname": "displayName~#~char",
                    "customproperty1": "name.givenName~#~char",
                    "customproperty2": "name.familyName~#~char",
                    "customproperty3": "emails.value~#~char",
"customproperty4": "emails.type~#~char",
"customproperty5": "emails.primary~#~bool",
"customproperty6": "preferredLanguage~#~char",
"customproperty7": "externalId~#~char",
"customproperty11": "active~#~bool",
                    "customproperty31": "STORE#ACC#ENT#MAPPINGINFO~#~char",
                    "status": "active~#~char"
                },
                 "pagination": {
                    "nextUrl": {
                        "nextUrlPath": "${response?.objectList?.size()>0?'https://xxx/hcmCoreSetupApi/scim/Users?startIndex='+Math.addExact(response.completeResponseMap.items...}"
                    }
 
 
                }
            }
        },
        "acctEntMappings": {
            "Roles": {
                "listPath": "roles",
                "idPath": "id",
                "keyField": "entitlementID"
               
            }
        }
    },
    "entitlementParams": {
        "processingType": "SequentialAndIterative",
        "entTypes": {
            "Roles": {
                "entTypeOrder": 0,
                "call": {
                    "call1": {
                        "connection": "acctAuth",
                        "callOrder": 0,
                        "stageNumber": 0,
                        "http": {
                            "httpHeaders": {
                                "Authorization": "${access_token}"
                            },
                            "url": "https://xxxxx/hcmCoreSetupApi/scim/Roles?startIndex=1&count=500",
                            "httpContentType": "application/json",
                            "httpMethod": "GET"
                        },
                        "listField": "Resources",
                        "keyField": "entitlementID",
                        "colsToPropsMap": {
                            "entitlementID": "id~#~char",
                            "entitlement_value": "name~#~char",
"description": "description~#~char",
                            "displayName": "displayName~#~char",
                            "customproperty1": "id~#~char",
"customproperty2": "category~#~char"
                        },
                       "pagination": {
                            "nextUrl": {
                                "nextUrlPath": "${response?.objectList?.size()>0?'https://xxxxx/hcmCoreSetupApi/scim/Roles?startIndex=%27+Math.addExact(response.completeResponseMap.i...}"
                            }
                        },
                        "disableDeletedEntitlements": true
                    }
                }
            }
        }
    },
    "acctEntParams": {
        "processingType": "acctToEntMapping"
    }
}

 

Regards
Manish Kumar
If the response answered your query, please Accept As Solution and Kudos
.
0 Kudos

Go to solution
ganimkt
New Contributor II
New Contributor II

‎03/11/2024 04:12 PM - edited ‎03/11/2024 04:12 PM

@Manu269  Thank you for the support, any suggestions on how to map the security context values.

0 Kudos

Go to solution
ganimkt
New Contributor II
New Contributor II

‎03/27/2024 12:18 AM

@Dhruv_S  thank you for the reply.

I was getting 403 error, when I tried to access the below API's but the client is telling he has already assigned the IT Security Manager Role to the service account. any suggestion which role needs to be assigned to access these API's.

/fscmRestApi/resources/11.13.18.05/advancedAccessUsers/{userGUID}

/fscmRestApi/resources/11.13.18.05/advancedAccessRequests/action/getSecurityContextLOV

/fscmRestApi/resources/11.13.18.05/advancedAccessRequests/action/getSecurityValue 

0 Kudos

Go to solution
Dhruv_S
Saviynt Employee
Saviynt Employee
In response to ganimkt

‎03/27/2024 02:13 AM

Hi @ganimkt 

Are you able to access the api from the postman? 

For 403 error, could you please check with Oracle what are the required permissions to access these APIs?

Regards,

Dhruv Sharma

0 Kudos
Copyright © 2024 Khoros, LLC