SCIM Overview
SCIM 2.0 (System for Cross-domain Identity Management) automates user and group provisioning between your identity provider and SecureCodingHub. Add, update, and remove users without manual intervention.
What is SCIM?
SCIM automatically syncs user lifecycle events from your identity provider to SecureCodingHub: create a user on hire, update attributes on change, and deactivate on offboarding. It eliminates manual user management entirely.
Supported Operations
SecureCodingHub's SCIM 2.0 endpoint supports the following resources and operations:
| Resource | Operations |
|---|---|
| Users | Create, Read, Update, Delete, List, Filter |
| Groups | Create, Read, Update, Delete, List |
| Service Provider Config | Read (discovery) |
| Schemas | Read (discovery) |
| Resource Types | Read (discovery) |
Authentication
The SCIM API uses Bearer token authentication. Generate a token from the SecureCodingHub admin panel and configure it in your identity provider.
| Setting | Value |
|---|---|
| Base URL | https://api.securecodinghub.com/api/sch/scim/v2 |
| Auth Header | Authorization: Bearer {your-scim-token} |
How It Works
Setting up SCIM provisioning is a straightforward four-step process:
Admin generates a SCIM token in SecureCodingHub
Token is configured in the identity provider (Okta, Azure AD)
IdP pushes user/group changes to SecureCodingHub SCIM endpoint
Users and teams are created, updated, and removed automatically