Skip to content

Commit

Permalink
Clarify PlantUML sequence for client authorization flow and update HT…
Browse files Browse the repository at this point in the history 
…TP request details
  • Loading branch information
@gem-cp
gem-cp committed Nov 14, 2024
1 parent 11e3efa commit 1872373
Showing 1 changed file with 4 additions and 4 deletions.
8 changes: 4 additions & 4 deletions src/plantuml/sm-b-auth.puml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -25,13 +25,13 @@ box "Betreiber" #TECHNOLOGY
end box

activate Client
alt Client has no Authorization Server FQDN
Client -> HP: GET /resource
alt Client has no Authorization Server FQDN (AS-FQDN) but Resource Server FQDN (RS-FQDN)
Client -> HP: GET /.well-known/oauth-protected-resource Host: RS-FQDN
activate HP
HP --> Client: 401 Unauthorized; json body with Well-Known json Document (RFC8414)
HP --> Client: Client: 200 OK; json body with Well-Known json Document (RFC8414)
deactivate HP
else Client has Authorization Server FQDN
Client -> HP: GET /.well-known/oauth-authorization-server 
Client -> HP: GET /.well-known/oauth-authorization-server Host: AS-FQDN
activate HP
HP --> Client: 200 OK; json body with Well-Known json Document (RFC8414)
deactivate HP
Expand Down

0 comments on commit 1872373

Please sign in to comment.