Mapping roles between SSO and Talend Cloud - Cloud

User identity management and synchronization across a third-party system and Talend Cloud

Version
Cloud
Language
English
Product
Talend Cloud
Module
Talend Management Console
Content
Administration and Monitoring > Managing users
Issue a POST request at the /security/role-mappings endpoint to create this kind of role mapping.

Before you begin

About this task

In this example, the customer roles to be mapped are Developer and Administrator. Note that these roles are for demonstration purposes only.

Procedure

Issue the following API call to define the role mapping:

Example

method: POST
endpoint: https://api.<env>.cloud.talend.com/security/role-mappings
headers: {
          "Content-Type": "application/json",
          "Authorization": "Bearer <your_personal_access_token_or_service_account_token>"
          }
payload: {
          [
            {
               "name":"Developer",
               "roles":[
                  "API Tester",
                  "API Designer"
                       ]
            },
            {
               "name":"Administrator",
               "roles":[
                  "Operator"
                       ]
            }
           ]
          }

Regarding the Talend Cloud roles, you can access the predefined list of roles, add new roles, manage role permissions, and assign roles to users in Users & Security > Roles in Talend Cloud Management Console. For further information, see Managing Roles.

Results

Once done, the role you assign to users in your SSO system will be synchronized with role assignment on Talend Cloud. In this example, a user with the SSO Developer role automatically obtains the API Tester and API Designer role of Talend Cloud.

Note that for any given user, the roles assigned via this role mapping override those assigned via Just-in-time user provisioning, a classic user identity provisioning option provided in Talend Cloud Management Console.