At the moment, Maze doesn’t formally support SCIM.
However, we do support auto-provisioning on SSO-enforced teams by default.
This means that, once you set SSO authentication as an enforced requirement, users can log in with their SSO credentials and join the team linked to that domain automatically without an invitation to the Maze team.
By default, new users join the account with an editor role.
Unfortunately, de-provisioning is not currently supported. Therefore, the admin of your Maze account would need to manually remove users from the team after they’ve been removed from the identity provider.
That said, once a user's access is revoked on the identity provider, they won’t be able to log in to Maze, even if they are not removed from the Maze team.