Scriptable Conditions in a Mapping
By default, Identity Cloud synchronizes all attributes in a mapping. For more complex relationships between source and target objects, you can define conditions under which Identity Cloud maps certain attributes. You can define two types of mapping conditions:
Scriptable conditions, in which an attribute is mapped only if the defined script evaluates to
Condition filters, a declarative filter that sets the conditions under which the attribute is mapped. Condition filters can include a link qualifier , that identifies the type of relationship between the source object and multiple target objects. For more information, see Map a Single Source Object to Multiple Target Objects.
The following list shows examples of condition filters:
"condition": "/object/country eq 'France'"- only map the attribute if the object’s
"condition": "/object/password pr"- only map the attribute if the object’s
passwordattribute is present.
"condition": "/linkQualifier eq 'admin'"- only map the attribute if the link between this source and target object is of type
Select Configure > Mappings and click the mapping for which you want to configure conditions.
On the Properties tab, click on the attribute that you want to map, then select the Conditional Updates tab.
Configure a filtered condition on the
Condition Filtertab, or a scriptable condition on the
Scriptable conditions create mapping logic, based on the result of the condition script. If the script does not return
true, Identity Cloud does not manipulate the target attribute during a synchronization operation.
In the following excerpt, the value of the target
You can add comments to JSON files. This example includes a property named