Create SoD certification

active

•last updated:-•last event:-

steps.

get_idn_token

Make an HTTP or webhook request and return the response as a step export.

auth

(auths.http)

params

URL

1

https://{{process.env.idn_org}}.api.identitynow.com/oauth/token

string ·params.url

Method

structured mode:

on

string ·params.method

Query

structured mode:

on

Add query parameters as key-value pairs

1

grant_type

1

client_credentials

1

client_id

1

{{process.env.idn_client_id}}

1

client_secret

1

{{process.env.idn_client_secret}}

object ·params.query

Headers

structured mode:

on

Add headers as key-value pairs

1

Content-Type

1

application/json

object ·params.headers

Optional

code

async (params, auths) => {

1

2

3

4

5

6

7

8

9

10

11

}

12

const config = {
  method: params.method,
  url: params.url,
  params: params.query,
  headers: params.headers,
  responseType: params.responseType,
  data: params.data,
}
if (params.auth) config.auth = params.auth
return await require("@pipedreamhq/platform").axios(this, config)

steps.

get_entitlements

auth

to use OAuth tokens and API keys in code via theauths object

code

Write any Node.jscodeand use anynpm package. You can alsoexport datafor use in later steps via return or this.key = 'value', pass input data to your code viaparams, and maintain state across executions with$checkpoint.

async (event, steps) => {

1

2

3

4

5

}

6

const query = steps.trigger.event.body.query
const regex = /(?<=id:)[^ \)]+/g

return query.match(regex)

steps.

get_access_profiles

auth

to use OAuth tokens and API keys in code via theauths object

(auths.http)

params

URL

1

https://{{process.env.idn_org}}.api.identitynow.com/v3/search

string ·params.url

Method

structured mode:

on

string ·params.method

Headers

structured mode:

on

Add headers as key-value pairs

1

Content-Type

1

application/json

1

Authorization

1

Bearer {{steps.get_idn_token.$return_value.access_token}}

object ·params.headers

Data

structured mode:

on

Data to be sent as the request body

1

query

1

{{{query : steps.get_entitlements.$return_value.map(x => `@entitlements(id:${x})`).join(" OR ")}}}

1

indices

1

{{[ "accessprofiles" ]}}

1

queryResultFilter

1

{{{ includes: ["id","name"] }}}

1

queryType

1

SAILPOINT

object ·params.data

Optional

code

Write any Node.jscodeand use anynpm package. You can alsoexport datafor use in later steps via return or this.key = 'value', pass input data to your code viaparams, and maintain state across executions with$checkpoint.

async (event, steps, params, auths) => {

1

2

3

4

5

6

7

8

9

10

11

12

13

14

15

16

}

17

const config = {
  method: params.method,
  url: params.url,
  headers: params.headers,
  responseType: params.responseType,
  data: params.data,
}

let response = []
if (config.data.query) {
  response = await require("@pipedreamhq/platform").axios(this, config)
}

console.log("Found these access profiles: " + response.map(x=> x.name).join(", "))
return response.map(x=> x.id)

steps.

get_roles

auth

to use OAuth tokens and API keys in code via theauths object

params

URL

1

https://{{process.env.idn_org}}.api.identitynow.com/v3/search

string ·params.url

Method

structured mode:

on

string ·params.method

Headers

structured mode:

on

Add headers as key-value pairs

1

Content-Type

1

application/json

1

Authorization

1

Bearer {{steps.get_idn_token.$return_value.access_token}}

object ·params.headers

Data

structured mode:

on

Data to be sent as the request body

1

query

1

{{steps.get_access_profiles.$return_value.map(x => `accessProfiles.id:${x}`).join(" OR ")}}

1

indices

1

{{["roles"]}}

1

queryResultFilter

1

{{{includes: ["id","name"]}}}

1

queryType

1

SAILPOINT

object ·params.data

Optional

code

Write any Node.jscodeand use anynpm package. You can alsoexport datafor use in later steps via return or this.key = 'value', pass input data to your code viaparams, and maintain state across executions with$checkpoint.

async (event, steps, params) => {

1

2

3

4

5

6

7

8

9

10

11

12

13

14

15

16

17

}

18

const config = {
  method: params.method,
  url: params.url,
  params: params.query,
  headers: params.headers,
  responseType: params.responseType,
  data: params.data,
}

let response = []
if (config.data.query) {
  response = await require("@pipedreamhq/platform").axios(this, config)
}

console.log("Found these roles: " + response.map(x=> x.name).join(", "))
return response.map(x=> x.id)

steps.

set_accessConstraints

auth

to use OAuth tokens and API keys in code via theauths object

code

Write any Node.jscodeand use anynpm package. You can alsoexport datafor use in later steps via return or this.key = 'value', pass input data to your code viaparams, and maintain state across executions with$checkpoint.

async (event, steps) => {

1

2

3

4

5

6

7

8

9

10

11

12

13

14

15

16

17

18

19

20

21

22

23

24

25

26

27

28

}

29

let constraints = []

if (steps.get_entitlements.$return_value.length > 0) {
  constraints.push({
    type: "ENTITLEMENT",
    ids: steps.get_entitlements.$return_value,
    operator: "SELECTED"
  })
}

if (steps.get_access_profiles.$return_value.length > 0) {
  constraints.push({
    type: "ACCESS_PROFILE",
    ids: steps.get_access_profiles.$return_value,
    operator: "SELECTED"
  })
}

if (steps.get_roles.$return_value.length > 0) {
  constraints.push({
    type: "ROLE",
    ids: steps.get_roles.$return_value,
    operator: "SELECTED"
  })
}

return constraints

steps.

get_campaign_deadline

auth

to use OAuth tokens and API keys in code via theauths object

params

Days

1

integer ·params.days

code

Write any Node.jscodeand use anynpm package. You can alsoexport datafor use in later steps via return or this.key = 'value', pass input data to your code viaparams, and maintain state across executions with$checkpoint.

async (event, steps, params) => {

1

2

3

4

5

6

}

7

const { days } = params
const deadline = new Date();
deadline.setDate(new Date().getDate() + params.days);
return deadline.toISOString();
$end("Stop")

steps.

wait_1

Pauses your code for the specified number of milliseconds

params

Number of milliseconds to wait

1

string ·params.ms

code

async params => {

1

2

}

3

await new Promise(resolve => setTimeout(resolve, params.ms || 0))

steps.

create_certification_campaign

auth

to use OAuth tokens and API keys in code via theauths object

params

URL

1

https://{{process.env.idn_org}}.api.identitynow.com/beta/campaigns

string ·params.url

Method

structured mode:

on

string ·params.method

Headers

structured mode:

on

Add headers as key-value pairs

1

Content-Type

1

application/json

1

Authorization

1

Bearer {{steps.get_idn_token.$return_value.access_token}}

object ·params.headers

Data

structured mode:

on

Data to be sent as the request body

1

name

1

{{steps.trigger.event.body.searchName}}

1

description

1

Separation of duties violation detected.

1

type

1

SEARCH

1

deadline

1

{{steps.get_campaign_deadline.$return_value}}

1

searchCampaignInfo

1

{{{type: "IDENTITY", query: steps.trigger.event.body.query, accessConstraints: steps.set_accessConstraints.$return_value}}}

object ·params.data

Optional

code

Write any Node.jscodeand use anynpm package. You can alsoexport datafor use in later steps via return or this.key = 'value', pass input data to your code viaparams, and maintain state across executions with$checkpoint.

async (event, steps, params) => {

1

2

3

4

5

6

7

8

9

10

11

}

12

const config = {
  method: params.method,
  url: params.url,
  params: params.query,
  headers: params.headers,
  responseType: params.responseType,
  data: params.data,
}

return await require("@pipedreamhq/platform").axios(this, config)

steps.

wait_2

Pauses your code for the specified number of milliseconds

params

Number of milliseconds to wait

1

string ·params.ms

code

async params => {

1

2

}

3

await new Promise(resolve => setTimeout(resolve, params.ms || 0))

steps.

start_certification

auth

to use OAuth tokens and API keys in code via theauths object

(auths.http)

params

Retries

1

string ·params.retries

Pause in milliseconds

1

integer ·params.pause

URL

1

https://{{process.env.idn_org}}.api.identitynow.com/beta/campaigns/{{steps.create_certification_campaign.$return_value.id}}/activate

string ·params.url

Method

structured mode:

on

string ·params.method

Headers

structured mode:

on

Add headers as key-value pairs

1

Content-Type

1

application/json

1

Authorization

1

Bearer {{steps.get_idn_token.$return_value.access_token}}

object ·params.headers

Optional

code

Write any Node.jscodeand use anynpm package. You can alsoexport datafor use in later steps via return or this.key = 'value', pass input data to your code viaparams, and maintain state across executions with$checkpoint.

async (event, steps, params, auths) => {

1

2

3

4

5

6

7

8

9

10

11

12

13

14

15

16

17

18

19

20

21

22

23

24

25

26

}

27

const { retries } = params
const { pause } = params
const config = {
  method: params.method,
  url: params.url,
  params: params.query,
  headers: params.headers,
  responseType: params.responseType,
  data: params.data,
}

let countdown = params.retries
while (true) {
  try {
    return await require("@pipedreamhq/platform").axios(this, config)
  } catch (e) {
    if (countdown > 0) {
      countdown--
      console.log("Failed to activate campaign. Retrying...")
      await new Promise(resolve => setTimeout(resolve, params.pause || 0))
    } else {
      throw e
    }
  }
}