Custom SCIM app
¶ Overview
If you use a public Identity Provider (vs having your own custom IDP implementation), You are recommended to reach out to your U4B account manager and ask Uber to build a SCIM app for your IDP. If you still want to configure a custom SCIM app for your IDP yourself, please read on.
¶ Scopes
SCIM APIs require access to the below scopes
scim.users,scim.groupsscope for read-write accessscim.users.readonly,scim.groups.readonlyif you only need readonly access
¶ Authentication
All SCIM APIs require authentication using OAuth 2.0 access. The given developer account that is chosen to be used for your company will be granted access to provision/de-provision your company’s users. Visit the Authentication section for more information.
¶ Steps
Uber’s SCIM APIs are documented at here. Read the documentation and then follow below steps.
¶ Step 1: Create a developer app on developer.uber.com
This is to get authorization to SCIM scopes so that API calls originated from your IDP are authorized. To do this, create an app on developer.uber.com and reach out to your U4B account manager to get SCIM scopes assigned to your app’s client ID. Once you get the scopes assigned, continue with next steps
¶ Step 2: Create your SCIM app
Start creating a new SCIM provisioning app on your IDP portal and use below parameters
SCIM Base URL: https://api.uber.com/v1/scim/organizations/{org_id}/v2. Refer to SCIM Overview for org_id
Client Id/Secret: From the app created on developer.uber.com
OAuth Token URI: https://auth.uber.com/oauth/v2/token
Auth URL: https://auth.uber.com/oauth/v2/authorize
Scope: scim.users for user read-write access, scim.groups for group read-write access
¶ Step 3: Authorize and obtain auth token
Follow auth steps mentioned in SCIM Overview to authenticate to use SCIM APIs
Now finish the integration with testing step as mentioned in SCIM Overview