Skip to main content
Unlisted page
This page is unlisted. Search engines will not index it, and only users having a direct link can access it.

Descope

Authentication & Authorization

Credentials

  • Descope uses uses token-based authentication using combination of the Project ID and Management Key.
  • Project ID and Management Key can be obtained via Descope account (see Descope Connection Instructions).
  • Publicly exposing your API credentials can allow unauthorized access to the Descope API endpoints, and your Descope data by a third party. DataGrail stores your API credentials encrypted and protected.

Permissions

Management Key can be used per certain project (see Descope Connection Instructions).

Endpoints Utilized

DataGrail uses the following endpoints to validate that credentials are good based on a successful response:

  • POST https​://api.descope.com/v1/mgmt/user/search

Version

DataGrail Descope integration currently supports REST Management API version v1.

Limits

Descope API endpoints are rate-limited to maintain stable performance and provide a good experience for all users.

Descope may limit requests if it detects an unusual spike in requests or abnormal activity in a specific project or across projects. If a request breaches the rate limit - 429 error will be returned, together with Retry-After header, which will specify when to retry the request.

DataGrail processes API responses with HTTP 429 status to interrupt requests, waiting and retrying (using an exponential backoff strategy).

Access

For an access request, DataGrail will take the following actions:

  • Search user by the email and/or phone number using Subject Identifiers.
  • For all objects found, DataGrail will return all available fields. You can edit which objects and fields you want to provide to the Data Subject via our Portal Requests.

Endpoints Utilized

  • POST https​://api.descope.com/v1/mgmt/user/search
note

DataGrail also supports the Direct Contact Access workflow for Descope.

Deletion

For a deletion request, DataGrail will take the following actions:

Endpoints Utilized

  • POST https​://api.descope.com/v1/mgmt/user/search
  • POST https​://api.descope.com/v1/mgmt/user/delete
note

DataGrail supports only the Direct Contact Deletion workflow for Descope.

 

Need help?
If you have any questions, please reach out to your dedicated CSM or contact us at support@datagrail.io.

Disclaimer: The information contained in this message does not constitute as legal advice. We would advise seeking professional counsel before acting on or interpreting any material.