CXP-545 Add field mask to ListUsers #110
Conversation
…ge directories
Projection("full") without a field mask returns every user attribute
(aliases, phones, addresses, ssh keys, etc.). For tenants with many
custom-schema fields this inflates each page to megabytes, causing
Lambda OOM or 300s timeout and an Unhandled crash (CXP-545).
Add a listUsersFields constant that restricts the response to the 19
fields the connector actually reads. This eliminates the unused bulk
while preserving customSchemas, organizations, relations, posixAccounts
and externalIds. MaxResults stays at 200 since the mask reduces
per-page payload size by ~80-90% for attribute-heavy directories.
Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
Connector PR Review: CXP-545 Add field mask to ListUsersBlocking Issues: 0 | Suggestions: 0 | Threads Resolved: 0 Review SummaryThis PR adds a Security IssuesNone found. Correctness IssuesNone found. SuggestionsNone. |
![github-actions[bot]](https://avatars.githubusercontent.com/in/15368?s=60&v=4){kind=small}
3 participants
Adds a field mask to the Users query to to prevent Lambda OOM/timeout on large directories
Projection("full") without a field mask returns every user attribute (aliases, phones, addresses, ssh keys, etc.). For tenants with many custom-schema fields this inflates each page to megabytes, causing Lambda OOM or 300s timeout and an Unhandled crash (CXP-545).
Add a listUsersFields constant that restricts the response to the 19 fields the connector actually reads. This eliminates the unused bulk while preserving customSchemas, organizations, relations, posixAccounts and externalIds. MaxResults stays at 200 since the mask reduces per-page payload size by ~80-90% for attribute-heavy directories.