SCIM user creation works when providing invalid origin

[robl-sap]

What version of UAA are you running?

76.21.0 , issue is also present in older versions

How are you deploying the UAA?

Via bosh release. However, issue is independent of deployment

What did you do?

Create or update a shadow user with invalid origin.

curl -X POST 'https://<uaaurl>/Users' -H "Authorization: bearer <admintoken>" -H "Content-type: application/json" -d '{"userName": "user-does-not-exist",  "origin": "does-not-exist", "emails": [{"value": [[email protected]](mailto:[email protected]), "primary": false}]}'

What did you expect to see? What goal are you trying to achieve with the UAA?

Creation or update is rejected because the origin does not map to a known identity provider.

What did you see instead?

User is created or updated.

[cf-gitbot]

We have created an issue in Pivotal Tracker to manage this:

https://www.pivotaltracker.com/story/show/186341652

The labels on this github issue will be updated when the story is started.

[klaus-sap]

Also mentioned here: #2505 -> Proposal 6.

[klaus-sap]

To avoid incompatible changes, we may add a switch to the IdZ configuration if the origin shall be checked when creating or updating users

[klaus-sap]

PR: #2688