Setup miniOrange as a SCIM Client using the User Provisioning module in Drupal

Overview

User Provisioning provides you with the ability to manage all the users at a central user management identity. miniOrange Provisioning service supports SCIM 2.0 protocol for automatic provisioning/de-provisioning. User Provisioning and Sync module implement the SCIM endpoints to allow provisioning/de-provisioning of users into the Drupal site as and when any CRUD operation is performed in the central identity i.e. miniOrange.

Installation Steps

• Using Composer
• Using Drush
• Manual Installation

• Download the module:

  composer require 'drupal/user_provisioning'

• Navigate to Extend menu on your Drupal admin console and search for miniOrange User Provisioning using the search box.
• Enable the module by checking the checkbox and click on the Install button.
• You can configure the module at:

  {BaseURL}/admin/config/people/user_provisioning/overview

• Install the module:

  drush en drupal/user_provisioning

• Clear the cache:

   drush cr

• You can configure the module at:

  {BaseURL}/admin/config/people/user_provisioning/overview

• Navigate to Extend menu on your Drupal admin console and click on Install new module.
• Install the Drupal User Provisioning and Sync module either by downloading the zip or from the URL of the package (tar/zip).
• Click on Enable newly added modules.
• Enable this module by checking the checkbox and click on install button.
• You can configure the module at:

  {BaseURL}/admin/config/people/user_provisioning/overview

Configuration Steps

Configure Drupal as SCIM Server

• Head towards the Drupal site and navigate to the User Provisioning tab of the module (/admin/config/people/user_provisioning/provisioning).
• In the Changes from Provider to Drupal (SCIM Server) section, click on the Configure button, as indicated in the screenshot below.

• From Configure Drupal as a SCIM server copy the SCIM Base URL and SCIM Bearer Token and keep it handy.

Configure Automatic Provisioning with miniOrange

Case 1: Only Provisioning (Just want to enable provisioning through miniOrange)

• Login into your miniOrange Admin console and Navigate to the Apps section in the left side.

• Click on + Add Application button.

• Then select PROVISIONING.

• Enter your Custom Application Name, SCIM Base URL and Bearer token copied from the SCIM Configuration tab of the Durpal SCIM user provisioning module.

• You can also send your desired attributes from your IDP to Drupal by simply adding the Target Attributes and selecting the value of those attributes in miniOrange Attributes.

• Click on Save.

Case 2: If you want user provisioning (SCIM) using SAML SSO

• Navigate to the Apps -> + Add Application -> SAML/WS-FED.

• Search for Drupal, and then select Drupal (SAML). Refer to the below screenshot.

• Enter Custom Application Name as per your choice.

• Go to the Provisioning tab and Enter SCIM Base URL, Bearer token copied from the SCIM Configuration tab of the Drupal SCIM User Provisioning module.

• You can also send your desired attributes from your IDP to Drupal by simply adding the Target Attributes and selecting the value of those attributes in miniOrange Attributes.

• Click on Save.

Enable Provisioning Features

• This feature allows you to enable automatic provisioning / de-provisioning of users in the app when a user gets created, updated, or deleted in miniOrange.
• Click on the toggle switch of the features you want to provide with automatic provisioning or de-provisioning and save the options.