SCIM support #2884
Description
The new feature allows silo groups and users to be imported into Oxide from the linked external IDP via the SCIM user and group CRUD API. As opposed to JIT, the updates can be pushed by the IDP (not polled by Oxide) any time without the user logging in. The API calls are authenticated via a bearer token that gets generated when a silo backed by SCIM is created. Silo admin can subsequently view/rotate the token via a set of CRUD API.