Making a SCIM API Request

To use the Snowflake SCIM API, the identity provider’s SCIM client must be verified during each API request. Snowflake assigns the identity provider SCIM client a role with sufficient privileges to make the API requests. Currently, Snowflake supports and wraps those privileges into a Bearer Token, which must be passed in the authorization header of each API request.

Headers Parameters

Each SCIM API request must include the following parameters in the request header.

Parameter

Type

Value

Content-Type

String

application/scim+json; charset=utf-8

Authorization (required)

String

<bearer_access_token>

Accept-Charset

String

UTF-8

Accept

String

application/scim+json

Sending a SCIM API Request to Snowflake

Users can access representative examples of the Snowflake SCIM API here.

You can integrate the Postman collection into the local Postman application on your machine by clicking Run in Postman and then make an API request.

Using Postman as a representative example, follow these steps to send a SCIM API request to Snowflake.

  1. Define the method and enter the request URL. The URL takes the following form.

    https://<account-identifier>.snowflakecomputing.com/scim/v2/
    

Note

Any supported URL format specified on the Account Identifiers page, with /scim/v2/ appended to the end of the URL, can be used to make SCIM API requests.

To identify the URL exactly, execute the SYSTEM$WHITELIST function, or the SYSTEM$WHITELIST_PRIVATELINK function if using private connectivity to connect to Snowflake.

  1. Enter and verify the parameters in the Params tab to ensure the authorization header contains the correct key-value pairs.

  2. Ensure the Body tab contains any necessary JSON string.

  3. Click Send.