Hi hemal.
I send your support a couple of days ago the SCIM bridge logs but haven't received a response so far.
Anyways I did some more digging and I think I found what the issue is:
The SCIM bridge only appears to get notified of changes in group members when a GSuite Admin makes them via admin.google.com but not when group members get changed via groups.google.com (irrespective of whether a Gsuite Admin or another member performs the action).
So when one adds or removes members via groups.google.com 1password simply ignores the change.
Could you please look into fixing this?
There's a few other limitations I noticed:
1. once a 1password group is out of sync with the google group (due to the previously mentioned bug) it's pretty hard to get it back in sync. The only way is basically to add/remove a random group in the SCIM bridge to force-trigger a complete resync. Imo the SCIM bridge or 1password integration UI should have a button to force trigger a resync (as mentioned also by https://1password.community/discussion/comment/658945/#Comment_658945 ). Furthermore the bridge should run a full sync every 10 minutes or so to reconcile inconsistencies when it missed notifications from GSuite
2. The SCIM bridge only syncs direct google group members but no indirect google group members (i.e. members which are part of a group of a group).
I think given all the current limitation/bugs the Google Workspace SCIM bridge is not usable for us, so we will deactivate it for now.
Looking forward for the improvements!
Thanks!
