Lightweight SCIM2 server prototype

Navigation

Verified details

These details have been verified by PyPI
Project links
GitHub Statistics
Maintainers
Avatar for azmeuk from gravatar.com azmeuk Avatar for ccoors from gravatar.com ccoors Avatar for emillumine from gravatar.com emillumine Avatar for LoanR from gravatar.com LoanR Avatar for sblondon from gravatar.com sblondon

Unverified details

These details have not been verified by PyPI
Project links
Meta
  • License: Apache Software License (Apache License)
  • Author: Yaal Coop
  • Tags provisioning , rfc7643 , rfc7644 , scim , scim2
  • Requires: Python >=3.10
Classifiers
Report project as malware

Project description

scim2-server

This is an example WSGI-SCIM server using scim2-models. It utilizes werkzeug and scim2-filter-parser and keeps all resources in-memory, they are lost once the process exits.

Features

  • Discovery endpoints (/v2/ServiceProviderConfig, /v2/ResourceTypes, /v2/Schemas)
  • Create/Read/Update/Delete resources (POST, GET, PUT, DELETE)
  • Searching & Filtering
  • Support for ETags
  • Unique Constraints
  • HTTP PATCH (Add/Remove/Replace)
  • Sorting

The only optional feature currently missing is support for Bulk operations (RFC 7644, Section 3.7).

Usage

$ scim2-server [-h] [--schema SCHEMA] [--resource-type RESOURCE_TYPE] [--bearer-token BEARER_TOKEN] [--hostname HOSTNAME] [--port PORT] [--reverse-proxy] [--dump-resources DUMP_RESOURCES]
  • -h/--help: Show help message
  • --reverse-proxy: Allow using the provider behind a Reverse Proxy (required for URL rewriting).
  • --schema: Register schemas from specified JSON file. If not provided, loads the default schemas from RFC 7643.
  • --resource-type: Register resource types from specified JSON file. If not provided, loads the default resource types from RFC 7643.
  • --bearer-token: Registers a bearer token that can be used for accessing the service. If no tokens are provided, anonymous access without authentication is allowed.
  • --hostname: The hostname to listen on. Defaults to 127.0.0.1.
  • --port: The port to listen on. Defaults to 8080.
  • --dump-resources: Dump a JSON document containing all resources when the provider exits normally.

Notes

This provider can be used as a starting point if you want to implement a SCIM provider. You should probably change the following things, if you want to use it in production:

  • Use a proper production WSGI server instead of the one provided by Werkzeug
  • Implement your own Backend as a subclass of scim2_server.backend.Backend
  • Implement proper authorization with OAuth instead of public access or static bearer tokens
  • Support the /Me endpoint, if it applies in your use case
  • Add support for using either a static URL prefix or improve the support for usage behind a reverse proxy

The provider in its current state has been tested successfully against a live Microsoft Entra system as well as a live Okta system.

Origins

Parts of this software were initially developed at CONTACT Software (GitHub) and subsequently made available under the Apache License Version 2.0.

Project details

Verified details

These details have been verified by PyPI
Project links
GitHub Statistics
Maintainers
Avatar for azmeuk from gravatar.com azmeuk Avatar for ccoors from gravatar.com ccoors Avatar for emillumine from gravatar.com emillumine Avatar for LoanR from gravatar.com LoanR Avatar for sblondon from gravatar.com sblondon

Unverified details

These details have not been verified by PyPI
Project links
Meta
  • License: Apache Software License (Apache License)
  • Author: Yaal Coop
  • Tags provisioning , rfc7643 , rfc7644 , scim , scim2
  • Requires: Python >=3.10
Classifiers

Release history Release notifications | RSS feed

This version

0.1.5

0.1.4

0.1.3

0.1.2

0.1.1

0.1.0

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

scim2_server-0.1.5.tar.gz (85.3 kB view details)

Uploaded Source

Built Distribution

scim2_server-0.1.5-py3-none-any.whl (33.1 kB view details)

Uploaded Python 3

File details

Details for the file scim2_server-0.1.5.tar.gz.

File metadata

  • Download URL: scim2_server-0.1.5.tar.gz
  • Upload date:
  • Size: 85.3 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? Yes
  • Uploaded via: twine/6.1.0 CPython/3.12.9

File hashes

Hashes for scim2_server-0.1.5.tar.gz
Algorithm Hash digest
SHA256 5422552e7620dfe2b3eff0d75a7657905a9756ccec776866ddc2d8db6278351c
MD5 93f26b4e321426738dfc2031f47bc60e
BLAKE2b-256 ba46493a8f34f09c298252157c6e5fa710e36d2f5e70e7efa3c02c7929cc287e

See more details on using hashes here.

Provenance

The following attestation bundles were made for scim2_server-0.1.5.tar.gz:

Publisher: release.yml on python-scim/scim2-server

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

File details

Details for the file scim2_server-0.1.5-py3-none-any.whl.

File metadata

  • Download URL: scim2_server-0.1.5-py3-none-any.whl
  • Upload date:
  • Size: 33.1 kB
  • Tags: Python 3
  • Uploaded using Trusted Publishing? Yes
  • Uploaded via: twine/6.1.0 CPython/3.12.9

File hashes

Hashes for scim2_server-0.1.5-py3-none-any.whl
Algorithm Hash digest
SHA256 0b14d19d9ae80244ababfb41b565d3ebe9c60f191fe7af10cbfe4df67ac14fe0
MD5 7ecba05141cef95395ef8e73d64b4718
BLAKE2b-256 71f9936f26382e5205f7b05d2a1d409f232c378d56c6d4cef7e3adb1e6816222

See more details on using hashes here.

Provenance

The following attestation bundles were made for scim2_server-0.1.5-py3-none-any.whl:

Publisher: release.yml on python-scim/scim2-server

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

Supported by

AWS Cloud computing and Security Sponsor Datadog Monitoring Fastly CDN Google Download Analytics Pingdom Monitoring Sentry Error logging StatusPage Status page