So I did a post couple of days ago that now we are allowed to upload some rule types via API
Here is a quick guide on how to do so. In this example, I will take a very basic BuildMap rule.
|
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 |
<?xml version='1.0' encoding='UTF-8'?> <!DOCTYPE Rule PUBLIC "sailpoint.dtd" "sailpoint.dtd"> <Rule name="Example Rule" type="BuildMap"> <Description>This basic rule performs the combines 2 values into a single attribute.</Description> <Source><![CDATA[ import sailpoint.connector.DelimitedFileConnector; Map map = DelimitedFileConnector.defaultBuildMap( cols, record ); String access = (String) map.get( "access" ); String permission = (String) map.get( "permission" ); if ( access != null && permission != null ) { map.remove("access"); map.remove("permission"); map.put("access", access + " - " + permission); } return map; ]]></Source> </Rule> |
Previously we would submit the rule like above to ES team to upload. Now you just need to take the code and upload yourself.
Now the real trick – You need to escape the actual java code else you will not be able to upload it and postman will show errors.
So head down to https://www.freeformatter.com/java-dotnet-escape.html and paste the code part of above. There are other such websites or can be some easier local method in your editor.
You will get some output like
|
1 |
import sailpoint.connector.DelimitedFileConnector;\r\n\r\nMap map = DelimitedFileConnector.defaultBuildMap(cols, record);\r\nString access = (String) map.get(\"access\");\r\nString permission = (String) map.get(\"permission\");\r\n\r\nif (access != null && permission != null) {\r\n map.remove(\"access\");\r\n map.remove(\"permission\");\r\n map.put(\"access\", access + \" - \" + permission);\r\n}\r\nreturn map; |
Rest is then easy as per the API links
|
1 2 3 4 5 6 7 8 9 10 11 12 13 14 |
POST {{api-url}}/beta/connector-rules BODY { "name": "Example Rule", "type": "BuildMap", "sourceCode": { "version": "1.0", "script": "import sailpoint.connector.DelimitedFileConnector;\r\n\r\nMap map = DelimitedFileConnector.defaultBuildMap(cols, record);\r\nString access = (String) map.get(\"access\");\r\nString permission = (String) map.get(\"permission\");\r\n\r\nif (access != null && permission != null) {\r\n map.remove(\"access\");\r\n map.remove(\"permission\");\r\n map.put(\"access\", access + \" - \" + permission);\r\n}\r\nreturn map;" }, "description": "This basic rule performs the combines 2 values into a single attribute.", "attributes": {} } |
You should get a 201 Created and see a similar output
|
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 |
{ "description": "This basic rule performs the combines 2 values into a single attribute.", "type": "BuildMap", "signature": { "input": [], "output": null }, "sourceCode": { "version": "1.0", "script": "import sailpoint.connector.DelimitedFileConnector;\r\n\r\nMap map = DelimitedFileConnector.defaultBuildMap(cols, record);\r\nString access = (String) map.get(\"access\");\r\nString permission = (String) map.get(\"permission\");\r\n\r\nif (access != null && permission != null) {\r\n map.remove(\"access\");\r\n map.remove(\"permission\");\r\n map.put(\"access\", access + \" - \" + permission);\r\n}\r\nreturn map;" }, "attributes": { "sourceVersion": "1.0" }, "id": "f43f3678ba1c49cc9bcb640254d9a720", "name": "Example Rule", "created": "2021-08-27T06:51:26.144Z", "modified": null } |
That is it. You should be able to see and use this rule now on your source.
Please remember to follow the IDN Rule Guide on what is allowed and what is not.
And if you want you can reverse the process by getting existing rules via API, unescape it via the URL above and get the neat looking java code.
