How do I control the different authorization and roles programmatically from my authorization provider?

❓ This question came from a member of the Persona community - a team manager who was trying to configure use of Persona for their employees. This question is useful for those who want to understand how to programmatically manage Persona roles via authorization or SSO providers like Okta.

Question: How do I control the different authorization and roles programmatically from my IDP?

Answer

Thank you for your question, we can definitely help with this one.

Persona supports SCIM integration via Okta. You can refer to Setting up Okta SCIM for directions on how to set this up. This would allow you to programmatically manage Persona roles via Okta.

For some additional color, SCIM is a protocol that standardizes how identity standardizes how identity information is exchanged between one entity and another. It is an industry standard and is use widely to simplify granting people or groups access to applications. The goal of SCIM is to securely automate the exchange of user identity data between your company's cloud apps and service providers.

As a company grows, requests to add/remove/change users, passwords, permissions, or groups can take up time and the SCIM features within authorization providers allow you to manage this at scale.

Related articles