We are a SaaS provider. Some of our customers who use Okta (as IdP) would like to connect to our service using SSO. As a solution, I created an Okta SAML application that I aim to publish on your catalog.
This application works great but before submitting the app for review I would like to support deprovisioning. After reading many pages on your docs, it seems that we need to run/implement an SCIM 2 server. However, there are many aspects that are not really discussed/covered:
Do we need to have a working endpoint for listing users even if the aim is to support deprovisionning only. What are the bare minimum operations to implement if we want to support deprovisionning only?
Can we select what operations to allow when publishing the SCIM app to your catalog? again, the purpose would be to allow deprovisionning only through SCIM.
Is there any basic server implementation example available for Java and SpringBoot?