Currently, when configuring user provisioning, there is no way to programmatically—via API or JIT SAML Assertion—assign a user to a custom security role.
Business Case: To grant Workato access to thousands of internal users, but for so many to share a single environment, we need to programmatically restrict them to specific folders. This requires a custom security role, which can only be assigned to a user manually via the UI.
Our first choice would be to pass this in the SAML assertion because we use JIT, but we would also be open to an API call that supported making this change to a user.
Derrick Casantusan
Enhancement request: SAML Assertion Supports Custom Workato Roles
Currently, when configuring user provisioning, there is no way to programmatically—via API or JIT SAML Assertion—assign a user to a custom security role.
Business Case: To grant Workato access to thousands of internal users, but for so many to share a single environment, we need to programmatically restrict them to specific folders. This requires a custom security role, which can only be assigned to a user manually via the UI.
Our first choice would be to pass this in the SAML assertion because we use JIT, but we would also be open to an API call that supported making this change to a user.
1 person likes this idea