I have one user directory in Octa and one SCIM application. The application that I wish to provision users to contains multiple resources and multiple roles for each resource. One user can have one role per resource but access to multiple resources. How should I utilize the SCIM api so that I can manage resources and roles on users through Okta?
My initial thought was that this could be done with Groups but afaik there is no possibility to add attributes to Groups? I would at least want to have a slug attribute on a Group so that it can be mapped to a resource in my end application. I was also playing a bit with utilizing a parameter on a user with type string array. In that case I would have values like
resource-2:user and so on, which is not that great either.