scimgateway 4.1.8 → 4.1.9

package/README.md

@@ -1143,6 +1143,13 @@ MIT © [Jarle Elshaug](https://www.elshaug.xyz)
 
 ## Change log  
 
+### v4.1.9  
+
+[Fixed]  
+  
+- plugin-azure-ad.json configuration file introduced in v.4.1.7 was missing passwordProfile attribute mappings
+- Symantec/Broadcom/CA ConnectorXpress configuration file `config\resources\Azure - ScimGateway.xml` now using standard text on manager attribute instead of selection dialogbox.
+
 ### v4.1.8  
 
 [Fixed]  

package/config/plugin-azure-ad.json

@@ -210,6 +210,14 @@
           "mapTo": "passwordPolicies",
           "type": "string"
         },
+        "passwordProfile.forceChangePasswordNextSignIn": {
+          "mapTo": "passwordProfile.forceChangePasswordNextSignIn",
+          "type": "string"
+        },
+        "passwordProfile.password": {
+          "mapTo": "passwordProfile.password",
+          "type": "string"
+        },
         "servicePlan": {
           "mapTo": "servicePlan.value",
           "type": "array"

package/config/resources/Azure - ScimGateway.xml

@@ -3326,16 +3326,16 @@ function init(FieldContext)
             <property name="eTDYN-str-multi-11">
                 <doc></doc>
                 <value default="false">
-                    <flexiStrValue type="DN"></flexiStrValue>
+                    <strValue></strValue>
                 </value>
                 <metadata name="displayName">
                     <value>
-                        <strValue>Manager Id</strValue>
+                        <strValue>Manager UPN</strValue>
                     </value>
                 </metadata>
                 <metadata name="beanPropertyName">
                     <value>
-                        <strValue>managermanagerId</strValue>
+                        <strValue>managerId</strValue>
                     </value>
                 </metadata>
                 <metadata name="isRequired">
@@ -3348,26 +3348,6 @@ function init(FieldContext)
                         <strValue>manager.managerId</strValue>
                     </value>
                 </metadata>
-                <metadata name="DNTestExists">
-                    <value>
-                        <boolValue>true</boolValue>
-                    </value>
-                </metadata>
-                <metadata name="assocRefObjectClass">
-                    <value>
-                        <strValue>eTDYNAccount</strValue>
-                    </value>
-                </metadata>
-                <metadata name="assocRefKeyAttr">
-                    <value>
-                        <strValue>id</strValue>
-                    </value>
-                </metadata>
-                <metadata name="DNLdapObjectClass">
-                    <value>
-                        <strValue>eTDYNAccount</strValue>
-                    </value>
-                </metadata>
             </property>
             <property name="eTDYN-str-multi-29">
                 <doc>Proxy Addresses</doc>
@@ -4906,16 +4886,16 @@ function init(FieldContext)
             </property>
             <property name="eTDYN-str-multi-11">
                 <value>
-                    <flexiStrValue type="DN"></flexiStrValue>
+                    <strValue></strValue>
                 </value>
                 <metadata name="displayName">
                     <value>
-                        <strValue>Manager Id</strValue>
+                        <strValue>Manager UPN</strValue>
                     </value>
                 </metadata>
                 <metadata name="beanPropertyName">
                     <value>
-                        <strValue>managermanagerId</strValue>
+                        <strValue>managerId</strValue>
                     </value>
                 </metadata>
                 <metadata name="isRequired">
@@ -4923,21 +4903,6 @@ function init(FieldContext)
                         <boolValue>false</boolValue>
                     </value>
                 </metadata>
-                <metadata name="assocRefObjectClass">
-                    <value>
-                        <strValue>eTDYNAccount</strValue>
-                    </value>
-                </metadata>
-                <metadata name="assocRefKeyAttr">
-                    <value>
-                        <strValue>id</strValue>
-                    </value>
-                </metadata>
-                <metadata name="DNLdapObjectClass">
-                    <value>
-                        <strValue>eTDYNAccount</strValue>
-                    </value>
-                </metadata>
             </property>
             <property name="eTDYN-str-multi-29">
                 <value>
@@ -4962,11 +4927,6 @@ function init(FieldContext)
                         <boolValue>false</boolValue>
                     </value>
                 </metadata>
-                <metadata name="isReadOnly">
-                    <value>
-                        <boolValue>true</boolValue>
-                    </value>
-                </metadata>
                 <metadata name="writableBy">
                     <value>
                         <strValue></strValue>

package/lib/plugin-azure-ad.js

@@ -1199,7 +1199,7 @@ const getUser = async (baseEntity, uid, attributes) => { // uid = id, userName (
       (async () => {
         // const [attrs] = scimgateway.endpointMapper('outbound', attributes, config.map.user) // SCIM/CustomSCIM => endpoint attribute standard
         const method = 'GET'
-        const path = `/users/${querystring.escape(uid)}?$expand=manager($select=id)` // /beta returns all attributes or use: ?$select=${attrs.join()}
+        const path = `/users/${querystring.escape(uid)}?$expand=manager($select=userPrincipalName)` // beta returns all attributes or use: ?$select=${attrs.join()}
         const body = null
         try {
           const response = await doRequest(baseEntity, method, path, body)
@@ -1210,7 +1210,7 @@ const getUser = async (baseEntity, uid, attributes) => { // uid = id, userName (
           }
 
           let managerId
-          if (userObj.manager && userObj.manager.id) managerId = userObj.manager.id
+          if (userObj.manager && userObj.manager.userPrincipalName) managerId = userObj.manager.userPrincipalName
           delete userObj.manager
           if (managerId) userObj.manager = managerId
 

package/lib/utils.js

@@ -388,3 +388,22 @@ module.exports.fsExistsSync = function (f) {
     return false
   }
 }
+
+// createRandomPassword creates a random password, syntax:
+// utils.createRandomPassword(12) => 12 characters, lower, upper and special
+// utils.createRandomPassword(12, utils.createRandomPassword.alphaLower)
+// https://gist.github.com/6174/6062387
+module.exports.createRandomPassword = (function () {
+  const gen = (min, max) => max++ && [...Array(max - min)].map((s, i) => String.fromCharCode(min + i))
+  const sets = {
+    num: gen(48, 57),
+    alphaLower: gen(97, 122),
+    alphaUpper: gen(65, 90),
+    special: [...'~!@#$%^&*()_+-=[]{}|;:\'",./<>?']
+  }
+  function * iter (len, set) {
+    if (set.length < 1) { set = Object.values(sets).flat() }
+    for (let i = 0; i < len; i++) { yield set[Math.random() * set.length | 0] }
+  }
+  return Object.assign((len, ...set) => [...iter(len, set.flat())].join(''), sets)
+}())

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "scimgateway",
-  "version": "4.1.8",
+  "version": "4.1.9",
   "description": "Using SCIM protocol as a gateway for user provisioning to other endpoints",
   "author": "Jarle Elshaug <jarle.elshaug@gmail.com> (https://elshaug.xyz)",
   "homepage": "https://elshaug.xyz",