Oracle Identity Governance (OIG) 12c: Through Generic REST Connector, We Are Not Able To Pick Complex Attribute (Doc ID 2886602.1)

Last updated on JUNE 23, 2023

Applies to:

Goal

Ability to run Trusted Reconciliation of users from Oracle Identity Cloud Service (IDCS) as currently, IDCS does not have any Trusted/Authoritative capabilities.
Installed the Generic REST Connector in Oracle Identity Governance (OIG) to perform Trusted Reconciliation from IDCS application into OIG.

We need to bring following attributes from IDCS.  They are:

First Name
Last Name
Status
User Login
Primary User Email

Out of above 5 attributes, we are able to bring 4 attributes. However, the attribute "Primary User Email" attribute cannot be reconciled into OIG as IDCS user emails are stored in a Javascript Object Notation (JSON) Array in IDCS.

What is required is to bring only work email value for a user from IDCS to OIM as single attribute, not Multi-Valued attribute. For a Multi-Value attribute, it would require a transformation groovy script.

We need to retrieve the "primary" eq "true" email from the JSON array of emails listed into payload:

Solution

My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.