Step 2: Create an optional attribute mapping
POST {{apiPath}}/environments/{{envID}}/identityProviders/{{facebookIdpID}}/attributesThe POST {{apiPath}}/environments/{{envID}}/identityProviders/{{providerID}}/attribute endpoint creates the identity provider attribute mappings. The attributes link returned in the Step 1 response provides the URL for the request.
It is recommended that you map the PingOne email attribute to the Facebook email attribute. If you do not map a value for the PingOne email address, the user will have to verify their email address when they sign on using Facebook.
The following sample shows the mapping between the PingOne email attribute and the Facebook email attribute.
In the request, the name property is required and must identify a valid PingOne user attribute. The value property is required and must specify a supported Facebook attribute.
The update attribute is required and specifies whether to update the user attribute in the PingOne directory with the non-empty mapped value from Facebook. Optional values for this attribute are EMPTY_ONLY (only update the user attribute if it has an empty value), and ALWAYS (always update the user attribute value).
Example Request
-
cURL
-
C#
-
Go
-
HTTP
-
Java
-
jQuery
-
NodeJS
-
Python
-
PHP
-
Ruby
-
Swift
curl --location --globoff '{{apiPath}}/environments/{{envID}}/identityProviders/{{facebookIdpID}}/attributes' \
--header 'Content-Type: application/json' \
--header 'Authorization: Bearer {{accessToken}}' \
--data '{
"name": "email",
"update": "EMPTY_ONLY",
"value": "${providerAttributes.email}"
}'var options = new RestClientOptions("{{apiPath}}/environments/{{envID}}/identityProviders/{{facebookIdpID}}/attributes")
{
MaxTimeout = -1,
};
var client = new RestClient(options);
var request = new RestRequest("", Method.Post);
request.AddHeader("Content-Type", "application/json");
request.AddHeader("Authorization", "Bearer {{accessToken}}");
var body = @"{" + "\n" +
@" ""name"": ""email""," + "\n" +
@" ""update"": ""EMPTY_ONLY""," + "\n" +
@" ""value"": ""${providerAttributes.email}""" + "\n" +
@"}";
request.AddStringBody(body, DataFormat.Json);
RestResponse response = await client.ExecuteAsync(request);
Console.WriteLine(response.Content);package main
import (
"fmt"
"strings"
"net/http"
"io"
)
func main() {
url := "{{apiPath}}/environments/{{envID}}/identityProviders/{{facebookIdpID}}/attributes"
method := "POST"
payload := strings.NewReader(`{
"name": "email",
"update": "EMPTY_ONLY",
"value": "${providerAttributes.email}"
}`)
client := &http.Client {
}
req, err := http.NewRequest(method, url, payload)
if err != nil {
fmt.Println(err)
return
}
req.Header.Add("Content-Type", "application/json")
req.Header.Add("Authorization", "Bearer {{accessToken}}")
res, err := client.Do(req)
if err != nil {
fmt.Println(err)
return
}
defer res.Body.Close()
body, err := io.ReadAll(res.Body)
if err != nil {
fmt.Println(err)
return
}
fmt.Println(string(body))
}POST /environments/{{envID}}/identityProviders/{{facebookIdpID}}/attributes HTTP/1.1
Host: {{apiPath}}
Content-Type: application/json
Authorization: Bearer {{accessToken}}
{
"name": "email",
"update": "EMPTY_ONLY",
"value": "${providerAttributes.email}"
}OkHttpClient client = new OkHttpClient().newBuilder()
.build();
MediaType mediaType = MediaType.parse("application/json");
RequestBody body = RequestBody.create(mediaType, "{\n \"name\": \"email\",\n \"update\": \"EMPTY_ONLY\",\n \"value\": \"${providerAttributes.email}\"\n}");
Request request = new Request.Builder()
.url("{{apiPath}}/environments/{{envID}}/identityProviders/{{facebookIdpID}}/attributes")
.method("POST", body)
.addHeader("Content-Type", "application/json")
.addHeader("Authorization", "Bearer {{accessToken}}")
.build();
Response response = client.newCall(request).execute();var settings = {
"url": "{{apiPath}}/environments/{{envID}}/identityProviders/{{facebookIdpID}}/attributes",
"method": "POST",
"timeout": 0,
"headers": {
"Content-Type": "application/json",
"Authorization": "Bearer {{accessToken}}"
},
"data": JSON.stringify({
"name": "email",
"update": "EMPTY_ONLY",
"value": "${providerAttributes.email}"
}),
};
$.ajax(settings).done(function (response) {
console.log(response);
});var request = require('request');
var options = {
'method': 'POST',
'url': '{{apiPath}}/environments/{{envID}}/identityProviders/{{facebookIdpID}}/attributes',
'headers': {
'Content-Type': 'application/json',
'Authorization': 'Bearer {{accessToken}}'
},
body: JSON.stringify({
"name": "email",
"update": "EMPTY_ONLY",
"value": "${providerAttributes.email}"
})
};
request(options, function (error, response) {
if (error) throw new Error(error);
console.log(response.body);
});import requests
import json
url = "{{apiPath}}/environments/{{envID}}/identityProviders/{{facebookIdpID}}/attributes"
payload = json.dumps({
"name": "email",
"update": "EMPTY_ONLY",
"value": "${providerAttributes.email}"
})
headers = {
'Content-Type': 'application/json',
'Authorization': 'Bearer {{accessToken}}'
}
response = requests.request("POST", url, headers=headers, data=payload)
print(response.text)<?php
require_once 'HTTP/Request2.php';
$request = new HTTP_Request2();
$request->setUrl('{{apiPath}}/environments/{{envID}}/identityProviders/{{facebookIdpID}}/attributes');
$request->setMethod(HTTP_Request2::METHOD_POST);
$request->setConfig(array(
'follow_redirects' => TRUE
));
$request->setHeader(array(
'Content-Type' => 'application/json',
'Authorization' => 'Bearer {{accessToken}}'
));
$request->setBody('{\n "name": "email",\n "update": "EMPTY_ONLY",\n "value": "${providerAttributes.email}"\n}');
try {
$response = $request->send();
if ($response->getStatus() == 200) {
echo $response->getBody();
}
else {
echo 'Unexpected HTTP status: ' . $response->getStatus() . ' ' .
$response->getReasonPhrase();
}
}
catch(HTTP_Request2_Exception $e) {
echo 'Error: ' . $e->getMessage();
}require "uri"
require "json"
require "net/http"
url = URI("{{apiPath}}/environments/{{envID}}/identityProviders/{{facebookIdpID}}/attributes")
http = Net::HTTP.new(url.host, url.port);
request = Net::HTTP::Post.new(url)
request["Content-Type"] = "application/json"
request["Authorization"] = "Bearer {{accessToken}}"
request.body = JSON.dump({
"name": "email",
"update": "EMPTY_ONLY",
"value": "\${providerAttributes.email}"
})
response = http.request(request)
puts response.read_bodylet parameters = "{\n \"name\": \"email\",\n \"update\": \"EMPTY_ONLY\",\n \"value\": \"${providerAttributes.email}\"\n}"
let postData = parameters.data(using: .utf8)
var request = URLRequest(url: URL(string: "{{apiPath}}/environments/{{envID}}/identityProviders/{{facebookIdpID}}/attributes")!,timeoutInterval: Double.infinity)
request.addValue("application/json", forHTTPHeaderField: "Content-Type")
request.addValue("Bearer {{accessToken}}", forHTTPHeaderField: "Authorization")
request.httpMethod = "POST"
request.httpBody = postData
let task = URLSession.shared.dataTask(with: request) { data, response, error in
guard let data = data else {
print(String(describing: error))
return
}
print(String(data: data, encoding: .utf8)!)
}
task.resume()Example Response
201 Created
{
"_links": {
"self": {
"href": "https://api.pingone.com/v1/environments/abfba8f6-49eb-49f5-a5d9-80ad5c98f9f6/identityProviders/1c38aaf9-e7e9-4000-b1ff-ef44ed8f0af5/attributes/6e14769f-e34e-4278-b36f-f84acddf366d"
},
"identityProvider": {
"href": "https://api.pingone.com/v1/environments/abfba8f6-49eb-49f5-a5d9-80ad5c98f9f6/identityProviders/1c38aaf9-e7e9-4000-b1ff-ef44ed8f0af5"
}
},
"name": "email",
"value": "${providerAttributes.email}",
"update": "EMPTY_ONLY",
"id": "6e14769f-e34e-4278-b36f-f84acddf366d",
"mappingType": "CUSTOM",
"environment": {
"id": "abfba8f6-49eb-49f5-a5d9-80ad5c98f9f6"
},
"identityProvider": {
"id": "1c38aaf9-e7e9-4000-b1ff-ef44ed8f0af5"
},
"createdAt": "2021-06-18T19:58:29.866Z",
"updatedAt": "2021-06-18T19:58:29.866Z"
}