Important Update Effective February 1, 2024!
Due to recent changes in Jira and Confluence, we've made the tough decision to discontinue the OpenID Connect (OIDC)/OAuth app and no longer provide new versions for the newest Jira/Confluence releases as of January 31, 2024.
This is due to some necessary components no longer shipping with Jira/Confluence, which would require some extensive rewrites of the OIDC App.
Important Update! This app will be discontinued soon!
Due to recent changes in Jira, which no longer ships with some components required for our Read Receipts app to run, we've made the tough decision to discontinue the app, as of Februar 5, 2025.
Important Update! This app will be discontinued soon!
We've made the tough business decision to discontinue the app, as of January 11, 2025.
How to run a full sync for only the existing users in the User Sync directory
Goal
Running a full sync via the User Sync connector, which only updates the users who already exist (i.e. synced previously) in the User Sync directory. New/different users on the IdP should not be synced via the full sync operation.
Manual Single User Update or logging in via SAML SSO (using the User Sync connector for provisioning) should not be impacted and should still work.
Implementation
In this tutorial, we are using the Azure AD connector and its data, but the implementation should be similar with other types of connectors as well.
- In the connector settings, under the Provisioning Settings tab, scroll down to the Attribute Mapping section, and click on Edit beside the
Usernameattribute:
- Change the template to Custom, and choose Groovy Code for the Source Type:
Use the following Groovy code
In this example, we are using the default username attribute mapping for Azure AD (i.e.
userPrincipalName). If you have a different mapping for the username attribute in Azure AD, or are using a different IdP, please make sure to changeuserPrincipalNamein the following code to the corresponding attribute mapping.if(saml?.isEmpty()) { if(existing == null || existing.isEmpty()) { return DROP_ALL } else { return con.userPrincipalName } } else { return con.userPrincipalName }GROOVY- Click on Apply:
- Finally, save the connector settings by clicking on the Save and Return button.
After completing the above steps, when you run a full sync, only the existing users in the User Sync directory would be synced/updated. You could still execute a Single User Update via the connector, and if you're using our SAML SSO with User Sync as a provisioning method, new users could still log in and get synced via the connector when they log on via SAML.