Get started with 1Password SCIM Bridge1Password SCIM Bridge 2.9.7 is now available. 🎉
This release includes several fixes and improvements.
Helpful resources
Updates may take up to a few days to appear in each marketplace. If you don’t see a recent SCIM bridge update on the websites linked above, check back in a few days.
New
- You can now customize group membership cache expiry with the OP_GROUP_MEMBERSHIP_CACHE_PERIOD environment variable, to consistently report accurate memberships when using the CLI to manage groups. 4137
Improved
- Operations such as Add, Remove, and Replace are now case-insensitive. 4179
Fixed
- We fixed a bug from 2.9.0 where Okta imports weren’t working. TotalResults is now accurate. 4051
Improved
- Added support for SCIM-compliant Meta timestamps for users and groups.
- Push notifications from Google Workspace are now more resilient to error.
Fixed
- Groups that fail to be retrieved during the Google Workspace sync will no longer cause accidental user suspensions.
Security
- OP domain validation now relies on an eTLD-capable URL parser.
- Updated security related dependencies.
Fixed
- Fixed a Google Workspace bug that could cause managed groups to become unselected upon server restart. #4038
- The Google Workspace integration will now match groups based on name instead of creating duplicates. 3404
Improved
- Improved performance of the Confirmation Watcher. #4085
Security
- Updated the base image to the most recent version. #4087
Fixed
GET /Users requests now return the correct number of total results when a filter is applied. #3272- The Google Workspace integration will no longer suspend guest users. #2712
- Archiving users in Google Workspace will now suspend them in 1Password. #3946
- Failed user suspensions due to server errors are automatically retried. #4017
New
- Docker images now support arm64 architectures. #3885
Improved
- Logs now include the hostname and a unique instance_id for easier identification in deployments with multiple replicas. #3842
- Return a more detailed and appropriate response when failing to reactivate users. #3878
- URL validators for Google Workspace configurations now provide more actionable error messages. #2872
- Improved clarity and accuracy of Google Workspace group tables member count. #2873
Fixed
- Changing a group name will now succeed on retry when there is missing data in the redis cache. #3817
OP_REDIS_ENABLE_SSL now functions as expected. #3915
Improved
- Return “HTTP 429 Too Many Requests” when the SCIM bridge is being rate limited. #3329
- Non-URL safe characters are now accepted when using
OP_REDIS_PASSWORD. #3905
Provisioning
