From 187237359a7812a65a36f9301c8ce16b4f0d4e7c Mon Sep 17 00:00:00 2001
From: gem-cp <christian.plagens@gematik.de>
Date: Thu, 14 Nov 2024 11:38:40 +0100
Subject: [PATCH] Clarify PlantUML sequence for client authorization flow and
 update HTTP request details

---
 src/plantuml/sm-b-auth.puml | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/src/plantuml/sm-b-auth.puml b/src/plantuml/sm-b-auth.puml
index 1b50709..e8e8f9d 100644
--- a/src/plantuml/sm-b-auth.puml
+++ b/src/plantuml/sm-b-auth.puml
@@ -25,13 +25,13 @@ box "Betreiber" #TECHNOLOGY
 end box
 
 activate Client
-alt Client has no Authorization Server FQDN
-  Client -> HP: GET /resource
+alt Client has no Authorization Server FQDN (AS-FQDN) but Resource Server FQDN (RS-FQDN)
+  Client -> HP: GET /.well-known/oauth-protected-resource Host: RS-FQDN
   activate HP
-  HP --> Client: 401 Unauthorized; json body with Well-Known json Document (RFC8414)
+  HP --> Client: Client: 200 OK; json body with Well-Known json Document (RFC8414)
   deactivate HP
 else Client has Authorization Server FQDN
-  Client -> HP: GET /.well-known/oauth-authorization-server 
+  Client -> HP: GET /.well-known/oauth-authorization-server Host: AS-FQDN
   activate HP
   HP --> Client: 200 OK; json body with Well-Known json Document (RFC8414)
   deactivate HP