google
diff --git a/‎github/github-accessors.go‎
Lines changed: 24 additions & 0 deletions b/‎github/github-accessors.go‎
Lines changed: 24 additions & 0 deletions
diff --git a/‎github/github-accessors_test.go‎
Lines changed: 33 additions & 0 deletions b/‎github/github-accessors_test.go‎
Lines changed: 33 additions & 0 deletions
diff --git a/‎github/scim.go‎
Lines changed: 15 additions & 1 deletion b/‎github/scim.go‎
Lines changed: 15 additions & 1 deletion
diff --git a/‎github/scim_test.go‎
Lines changed: 18 additions & 0 deletions b/‎github/scim_test.go‎
Lines changed: 18 additions & 0 deletions
@@ -39,7 +39,8 @@ type SCIMDisplayReference struct {
 
 // SCIMUserAttributes represents supported SCIM User attributes.
 //
-// GitHub API docs: https://docs.github.com/rest/scim#supported-scim-user-attributes
+// GitHub Enterprise Cloud API docs: https://docs.github.com/rest/scim#supported-scim-user-attributes
+// GitHub Enterprise Server API docs: https://docs.github.com/en/enterprise-server@latest/rest/enterprise-admin/scim?apiVersion=2022-11-28#supported-scim-user-attributes
 type SCIMUserAttributes struct {
 	UserName    string           `json:"userName"`              // Configured by the admin. Could be an email, login, or username. (Required.)
 	Name        SCIMUserName     `json:"name"`                  // (Required.)
@@ -48,6 +49,7 @@ type SCIMUserAttributes struct {
 	Schemas     []string         `json:"schemas,omitempty"`     // (Optional.)
 	ExternalID  *string          `json:"externalId,omitempty"`  // (Optional.)
 	Groups      []string         `json:"groups,omitempty"`      // (Optional.)
+	Roles       []*SCIMUserRole  `json:"roles,omitempty"`       // (Optional, GHES only.)
 	Active      *bool            `json:"active,omitempty"`      // (Optional.)
 	// Only populated as a result of calling ListSCIMProvisionedIdentitiesOptions or GetSCIMProvisioningInfoForUser:
 	ID   *string   `json:"id,omitempty"`
@@ -68,6 +70,18 @@ type SCIMUserEmail struct {
 	Type    *string `json:"type,omitempty"`    // (Optional.)
 }
 
+// SCIMUserRole is an enterprise-wide role granted to the user. This is only
+// supported in GitHub Enterprise Server, and not GitHub Enterprise Cloud.
+// See the docs for allowed role names.
+//
+// https://docs.github.com/en/enterprise-server@latest/rest/enterprise-admin/scim?apiVersion=2022-11-28#provision-a-scim-enterprise-user
+type SCIMUserRole struct {
+	Value   string  `json:"value"`             // (Required.)
+	Display *string `json:"display,omitempty"` // (Optional.)
+	Type    *string `json:"type,omitempty"`    // (Optional.)
+	Primary *bool   `json:"primary,omitempty"` // (Optional.)
+}
+
 // SCIMMeta represents metadata about the SCIM resource.
 type SCIMMeta struct {
 	ResourceType *string    `json:"resourceType,omitempty"`
 
@@ -621,6 +621,24 @@ func TestSCIMMeta_Marshal(t *testing.T) {
 	testJSONMarshal(t, u, want)
 }
 
+func TestSCIMUserRole_Marshal(t *testing.T) {
+	t.Parallel()
+
+	testJSONMarshal(t, &SCIMUserRole{
+		Value:   "enterprise_owner",
+		Primary: Bool(true),
+	}, `{
+		"value": "enterprise_owner",
+		"primary": true
+	}`)
+
+	r := &SCIMUserRole{
+		Value: "billing_manager",
+	}
+	want := `{"value": "billing_manager"}`
+	testJSONMarshal(t, r, want)
+}
+
 func TestSCIMProvisionedIdentities_Marshal(t *testing.T) {
 	t.Parallel()
 	testJSONMarshal(t, &SCIMProvisionedIdentities{}, `{}`)