Saviynt Forums

Rajatlm10 · ‎06/11/2024

Hi,

I am using the below JSON for addAccess for REST connector.

{
"call": [
{
"name": "Role",
"connection": "acctAuth",
"url": "https://xyz/profile/v4/Users/${account.customproperty5}",
"httpMethod": "PATCH",
"httpParams": "{\"schemas\":[\"urn:ietf:params:scim:api:messages:2.0:PatchOp\"],\"Operations\":[{\"op\": \"add\",\"path\":\"urn:ietf:params:scim:schemas:extension:spend:2.0:Role:roles\",\"value\": [{\"roleName\":\"${dynamicAttributes.get('Rolename')\",\"rolesGroup\":\"${entitlement_values.customproperty1}\"}]}]}",
"httpHeaders": {
"Authorization": "${access_token}",
"Accept": "application/json"
},
"httpContentType": "application/json",
"successResponses": {
"statusCode": [
200,
201
]
}
}
]
}

is it the right syntax for addAccess JSON ? as i am not getting any error in the logs.

Also, The entitlement value is stored in CP1 but its not getting picked up in logs. i have tried with dynamicAttributes.get and requestAccessAttributes.get and in both cases value is not getting picked up.

Can anyone help me on this ?

rushikeshvartak · ‎06/11/2024

${task?.entitlementValueKey?.customproperty1}

Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.

Rajatlm10 · ‎06/11/2024

@rushikeshvartak

Still, it shows "Austria" but actual value in AT-480 (in CP1), Austria is the user-friendly name which we are using in the access form.

rushikeshvartak · ‎06/11/2024

${arsTasks?.entitlementValueKey?.customproperty1}

Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.

Rajatlm10 · ‎06/11/2024

no its still not working.

rushikeshvartak · ‎06/13/2024

${entitlementValuesObj.customproperty1}

Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.

Rajatlm10 · ‎06/18/2024

@rushikeshvartak its still not working.

otherway around i am trying to work it out via if else. like If ent value is x then abc.

i am using the below query.

just want to validate is the rightway to pick the ent. value ? because in logs i can't see the real value i.e. the country code.

rushikeshvartak · ‎06/18/2024

Refer https://forums.saviynt.com/t5/identity-governance/if-else-rest-connector-json/m-p/100315#M65882

Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.

Rajatlm10 · ‎06/19/2024

@rushikeshvartak

The pending tasks are getting completed but when i check the API call status it says INVALID VALUE.

I have tried with dynamicAttributes.get and requestAccessAttributes.get to get the value of dynamic attribute and used if else to map the values.

Is there any other way i can do this use case ?

rushikeshvartak · ‎06/19/2024

What is name of attribute? Are you storing value in account columns ?

Regards,
Rushikesh Vartak
If this helped you move forward, click 'Kudos'. If it solved your query, select 'Accept As Solution'.

Saviynt Forums

REST Connector - AddAccess JSON