From f4a23cda939ed3b08702560bfa3eaa1b1f6c9459 Mon Sep 17 00:00:00 2001 From: github-actions Date: Mon, 3 Jun 2024 13:01:41 +0000 Subject: [PATCH] Generate images from changed PlantUML and draw.io files --- images/SM-B_Auth_with_DPoP.png | Bin 91615 -> 93779 bytes images/SM-B_Auth_with_DPoP.svg | 2 +- 2 files changed, 1 insertion(+), 1 deletion(-) diff --git a/images/SM-B_Auth_with_DPoP.png b/images/SM-B_Auth_with_DPoP.png index af328430f566f895d4bf0579cd65850f26486776..c3bfa13907f89fab34a18344fa1d0ebe4395b4ba 100644 GIT binary patch delta 18157 zcmbV!cRbbq`@SSaLs4dta*~Xb5tS81bV4b~JlT8ial8oG>xff`$_m+g9h>Z(y+iiq zILG+Cj8gA+eZKF<@A2^HkMtVP`*}aF`?|0DdNojcq_y{mKLzpYWB7P@ctWC#nE~{- z06(3l&&`eXRSeB74D|61fxod1^Lf@|IxKn`(IIP|0qwu$lB#C(^}(%7LVF%B;vox& zNzIM-gq7}8x?K2bsBOpq5(;Y+!#6Rxh8sK=(i+;w0yCfUmkht|Z48pjvY_^p4Bn;7Y78@r6ZM7w7KTiaGt4#;yw| zZp@{V#=KRLm;Rz&gQa9`KKb^VZ@i1o;}a|2S!^ZAP6`v7hegDAo@6}1RU_MUEn3zk z`n-LO%PY~k$J()s@Zv(=BFmxHQL!snmGT?6?`+o$DlifFWQ;p`dU zbYx)j*T>A?)K3LiHPXlq^jOW*4zRi^ZAZeciKQHId3et&4{4@yDAdM#=|lb5u%mvZ z8?QZ!IO?MvPq)|kPkR>->vxJxF%djKv-G}8dH;6k`}T=DcI*mFZI;PHDe}%&az)7j zU5*>40+g=+^;@vEdb*Nr!FSk`EPy90Lex>%QNq3v4ZI_3@;BgDz7pZ3+ByjPiDfYWV zB4s2JZLQYT-9MQi#4wMhkA1jN#kFcH;0zpRatt{B{qY{+jLxW8s_O z3Hg(PD;h3GzVJl^zr;Q(CWC!yV(qMa(vCU5Qk-3Od%-{pL-kcbmEUR?()V%jw3pmML`X^{e%SaOUV3MC7|BjUe3)H=dTQty8{Kx&7A^ zzRKzevDM$o!xl)H>w>PPj#M;$r7@q) z&X};*EnMJmYH57y`ISt-bGt#zmRF_Zx{PV%WtZq~7Owl060SkDcAwPGKGsm>MhqMQ z(8S!ru%gADrghPC4+dWNl9jh1*AjWv#8uh0oF`Rg=0DjMP{iQN>mPE1zqcHwJCCb^ z521VT(l@%g@=wfO9C%PpmS_#lEFA1jp>mdd&}t@ZR=_V}(ptc(T%7yH1mapKYv_>i z%n^ED`Q6lpq#GS8r6w4fP^^Nk}Tz>HOIf|Ip*+#gM#9*cN)0Fuv5QHJhuYDLK}l=s-8t(EAM&0TnQ#aPv>c8yKY9k_T|4 zvumf@iczPZZ7f6H^Ug!Mv?pPBF6Frl#uKokDDSDxtcol-iZ?VBYYW624dEs)p*lWa z(P!(6Q8%5S^q-4Sj&_5vG$*Lj#UVw~oQ3F<9VCXR5X|xhXHm>G%#b_V_8dCl3rg3J z>Z<^2mjH~wg!4pml|*CZVf*UKg8(dS=h=g>Vt(+^#i%>}#%x5r80k7Iv&9cgB=yuG z18k66AG#bHX3CSV$!Vt6^%ThIqo&)^61=w4rh4Gyo^jh<9}RCMh8K)XTWw6=v?5F9 zHfV7nyzJ2W6~g}ERrePss11R=2N{O6l-Qmq=O~(i219y`v;pGe3>62&MRK-2E_}<1 zi;_Vsw$w1Lab`z!-`ZTbb=ik^y31ttit^@E8E5!g;PDiB{Y<*seiN_)Fb1d3s4N96BxZ?!?pN9)eZ+;O<@Ke&>h?P}9qa9Rj!Pw;dDgI8yhidvR~uLQc_G`4v-MBkT=G4887&U2d&FqvI5R%?)J3ZXi@m4lFhFp-#9t4g;LNHgb?lTfv1;YZ8cjJ*u=2cJ+H%H>fl z0ZYmqt&6^2$udS&k&)vNXYpwY#j>+yQ^BpCw*BmAD^p?4k#_A@0HzGZhmS5NvL{jz zk%7z*%2-{%1Jd?(Z=TuDy|`$QhJbV&S*!OIRDp_jYKkuz}j z(c!(5agZ3`!O*#_KX{`7BBbsENz)@C-6(_W!9Ba3WXe$1J2>(wKB{kUJkOCzMu8Rp zkEp}wnKN7$xaX;Vyvb3b|Ckx~zCOQ{zk0DmaAOEYdk8*E0EX;iJkruRVhUgLseug! zsgDV|f3L~Bvsf<-_VNogOud7a0pljPgGak?1U!2x(_;9@qT|p-uXt7xIPzrCqWiIp z<7lCaCTv8P^jHFv?EH7o^S7h;8+d9rJ$ERwsLARPeb;I4vk4J6nREg3>aV+Uld|@M zClQYi>+CasoEfm1>t%fN^99U_pRe=}gq*Hi#3erA?l&JA?04;wle^HPWyc7M9fCCz z{Oyvu%1e@0&zXOrYD&Mz!x(ynFDSZoK3W_9AQ>F6$oTwIcydpH-5_zTK(>wyT=WNX zV>#YLI8Julcif`B_Ol;JnmIK(>eSXyawc@hfkfyen9vnc@I^DFV(;B>`NW{3CQ_U_ zz$;6AFHzzgOV%9!J8(2507X~n1PzTJTRsaOx}MI)I@=uQOfrsgy!PuR?e5Y1&u8v# z(LMma2pd{Aty-?=IK_7D%efk^p^e!`SA4(?JILk7GUE9qjTVPE`~9@oyYqiJ zpZFN*>;Kw0p?0OCjw}aTHxC8&sxAoG!Aeh%lyo#?WNLsotH9?=y8o(~za3QY3Jz&9 zzX7YDLZw^ea4cBtzt&MU-Qc~EYoj>lYe2hR?JCM+CY(iCkh|!4YJ!!8nV3NyC(U(u z4_WZx__H7u^AMuJO$2MNGxUZ*OL_nIBjoLJHw?gXw2WeA!>QuhWSOg^uFg=VDdcn= zS=%&j%DhWFGgA`C?s^v3#b0F{ay{y#_;I3#Ke&O^>Es5Q0p47j-U)2$BRa#djpYrm zPYYc~)C4+>Eqa29DuqM93Z&OF9GB0QR<}~qQk$1;)E6VNBoc^~cZr2rPBv@MqoXw^ z#(Evv-@laL34V%p6dE?DAY2 zw?I;ybv4?aE>I}xEU?R$I?(3bQN$JN6A7^-H**cH@gv3DQCaO^Wkhu@m_n$Zf@u_V33F0ks?6YH^csnWWR z9UB^ZGEIT8uu$`(b^G&)!6Yh@UaoIayfOSXRo}xe$UlJrUM`w6MwBeitZvuAb>#wV zoET)8V^?C2c%E7v#o--b9!O$$%Ibbq1*z;0)CPZX_k|b(a=0-}_5(_CCX7w_9k6b* zZKBio(mOcn^s-oMdga;2xV*QAm%6juz4*;$Az2e|lULu4a|DY6HR@-=8|31Kdwq+o z+gs}UOB^3ErOSL=h)-?#HfF*;e(6=lW);Ow*lsXw&3Ygt-PU0h1@qIM<@*t{u14>Le$llZfi z5^X5|C4r;~Wc8-D?LvD6SK$!0gzFu$b6RlR=h6aZqBr1UkqukwLuBCO+rzAfKkX3+ z=@`M8H>(LUvXsf(Hzl3HG!WEzgx+iyS{VoGUR}Pa$S!GL)Ubup%#@5TG~@CytM^VH zFR44u!nDz_9&KD}(!(#XbElpX@C9P8zuhMx?H98m*!u2=XXa zdUk^ATSMAjGojp7HoQ={8sJ0i zQ>(2sy~-B72gIBT$g<^nsmLPXj4FE`QJ{9Z{Kj44j{5W3z)IhwxEeNtF@Q7p;*}O@ z(wZbTfeVw+KAWi&@3woY>#wEN$km*x;;;B~c$jI^qXsVi$_W2R2!TCDXgmT_^D?VY z8sqN2elx)Wsm-Uz?t8wnw_Zad`An`(buw#FZ$GW;JPCk7-rsMKekC@)^O|BGC{;oF zSWRhNFxSGUuMWSdf*`O~QL+m8SFHl_{|$M2h-W+pqcaHUsXk$BOWeCw=u}5ZKdq3kFDEr+N3yeto5}WHTP_-SyrA2% zfusNzM3Dz)nzfC=UkJSCKx)ds2Dk9&JX;@HVOcH7nxBV(<~M9ie{Sw)$)HsDjd0)< zb{hi)J`14ZtAK6-yY9-Wcbk3mwXN{v@S7P|Il=1j17G*yRZVl{0*jQ74CRN| z13tfNY+wZ_`U<`-O*PJx0=^iGatFdGer-NBf&1P?s*zj>gkf-x=4*) zJN{lumOkGBE8yJ8>H_jLFy9gpL~C}(bis~>8KiLsOcx|^Kf0N2)UaykmQEFySuLC{ zd;#pi^3@~GoJeyIYQ@rkZ+6tG-g+>GetEf?S9EQ^Kl_Q@xHf6-eZW-Z zOXeGmD^Z=4Gh7{w6z~TLDT+nv^xr6_`)+nX7ycW90AQ=w%{|qF8)5wgFjvo&8h_Ts zzlFRxq7GmUSE9hm9H>#zHolyjoEja?@LEYpAJ8?%b<$Q7X^nlHxD2ZbO!60M9!Ut& zLOU{c`?1kPv|h2PXxpOiP-UsW>>P4$mnLK(M%8C4=(b5I0{@T8CF&7z|6-P^g} zq8a~oZY<~&G$_y2`KeZf(@%}%cjVH8l>DDlazbc*)9|DHsDv`;eT=R$SRaraGF_KdRkf?<7*bK9N8W%kF&q*>#te~a3GfK zH5GIaG=l?B?I2t&yz|(fQTTiRz0dEP2Vv*zm^Il#s1{w2t~<+S`R$c|A$7k_H-HO+w4?4#m`T4!yssSnv*j9u-TD9Mq5hRbhyDZA{AVBZx8C@lO%U*ZM(Lor z`+NTiszH?VB-^6HF!q(yY`42vMemH!_q+^Jjtm(F5L%tpBP0DyY&qa0z>e6mAJCBn zh#D5VIAwNww4BGUaRzBO)vZvGAS&Fj$PY@JtHr44-*5MRGU@Oga!|b4zaNIe-uce3 zB55(|<)Q6)BNud=+9SVPq2r&e4J*Fg3VhNk&6@lwY}5`9KJ1b&Lf!lLvjiaa2WgAw z81)Az6-#esih-oUg08ApdDQEu{=2p){%2#?kKa({SVDdau9mZrGs~_!#~PVLbuQwx zRI3%A@qM?X3&WvRR^Pv>w0(M9(OG zN<4TlIZ(9CJ6CX7lLuOpc4v~)c(53Q!4SI9YwEW|i90xKZEfOambi1S);?mDs!tU_ zNjUR*W)czoL(c)Tvq>93#BF#i_Oj*j$n>daJe^LY6wt9AN53npzeLU0C!kYd#(bs! zc7P@YYe&DuOgHLl3s>eNoTpY}L3f^o9(9Wg5gE6B=N+=Cj^v_^#oD4o&p^p4VfA&aqi2rz*TY^IeVp@XkTnQ|1Wj@ zkUh9{vC#VdoB0x&p>fA!4IZNA8PR|YjEMiEKJXx4{%1mD1QxXZ?kP6G*z zN$x&A(exK?nKJP3pr&1E{b>2I^|#c-A3i)Aey4^(9vK*@)*w=+=OVwgk_>q0*k#|R zwNW1|c1o1byvEFotISZB*O8V+zEP@!#b1u8KOVKkMaaG>@oAK%tH8$0!NEaMF>C>; z(N9RBK@~q52P*k4=Y9w(z)wYmOBkMK+tALG_{31zBt2ScwDH<~CC>QwvQ7x{CDSBq zwG4wupkai17@R{nn%q_<3_&`My6SwCgqB^ke0@9u8eSR3Ta=+uOHLXp5z6fmOn>)P zTU*;3M49{di=;_CddY=X&~V0JmIlS3;9zN(rR6FbfdjOaXt?!HdvQQhfbFfZK;fZa zDV?sgQL{$=`_!v-oQ>{~=VKPRSJghzM|kc}Y<|JTUz*)L1mY2f-?pn6Q4AJLSA598 zz2EP4i?OE1}ZmZVEkCMlyYw; zfE}T%`aqNm!6Nr(3HuofikDm4mtk2 z+V2Pjc4V>tG@MrF(<0oj&hxAgEr7!Us_hyr4^K;UorG`lorDBLF>g z2<$WFA+G-(tnJG7QN;U~{yr|-Ep5_A?8Q}fR`?4&0olnsZ7jj>5$^TC}*G= z`9rD?3yP$W0h^csmncAm6g0zzc|01ZszS_N4mz^hJ!!FWp8>b3!YqQUr0@Np} zm;rtGd*S^Rfb!~ZtaL|wJ+uTFagj#RD%l3DUXu7IN~azND&<_ig3M2hA*e%LqFH)0 zbT9w~4kn-+L$LSZj_WOH-5L~|gC9@XTsYxY&HQC)nVV$jul%;yzWVzuz4gz^(S;o8 z4OgESRw-@=5$z3}Kn@~(FwX!5`tto@(|)~wgb;rL2=uj~@7f9ea?Kw#{r&jNzzEZW z8z(t)q?A>{jcN$~uSv^(?)a3W2xO#W>cPH2)yQ=dGWt^|0S+cW2c+Z|P7=8Y5!`PH z{**qyX3szLm%p9My>slgKOZIs$nEEp<)0eEKj|RYIs80=z|OF5{|vsI8~;J=1pQtAqu@T!gYurJ z8u#XdCQE?&GN>zViJ%_s2mz_nAxKaGl?dfxw|%t?!4)uaOVBoR=8Fh(+D1+Ivl7B* z!nS}wn4M3xemQrXspWTd_#Xk`yo(f`cIm_J)Bx03};%Q0oRYnTX zml*g7>`J%PncSEw18%y8RjBmGQJCk=AZdY4+nGev@*7K`aqtDauB-rspkoC$m3)cq zd$>(w6ne~p-)fDLy7KsOXjU?h^?wxH9Oqz!bDwk5uBSsJ%o`pcmIXy~-c|@ejg4G=Cc`$)J~;V}R;!jG0!xF%x6;sz!7@&b^Lj#WGyNAm0iYD2MedK=GPh z;RI<&g+s1d$eS3Ca?Epfi7DNHrq5%+Dq{_npL)KAx_Jh^aL(8CSKZX9%3z$M>`T9^ zr~3h-U!XEimmQ(x0Hy?}QAiqwKKPaN-Ade!XgJvjpzSk%3oqp?1j8luissx@j8)p4NKkM?h%(DWX<=`i)$Alv75>N>Sqq}+*yFn0FQZ+D*v z^lvyf7n+H2=4r+Xm^HZ8fg!>*$5fZusY4jKBCGr+=U!8-*xO;%M&%-PxI@OFzs(ho!f!uiSE>2Z-$!f;80K?}W_?G^ z%pEyHcjxutgKGp4z+V_e{_fI)I!?}X<*GeKa-amNj~Gi*=;#l7AZi0{b)PU+2GflBpSAo0_F@PCa?rc_=N4;y+4! z?`4-v8+A!v5?rw~`itfv`efmUai9*n1RH$<;4g|s9h%{~BoDiW zhQ`>)mbDLIB7!MozdZgfTcqHSB~B1BhwB9th8s;{KkFIje7php!A}Gbb@^k==2t*zjM1P~;w*B(=W+o=4U7+{g7}(w%D6m;dOH2En{GQ16TDOly zA#OJR-EE8RG>zKqB`);e7>Ka;tEbc(7$BWH*ImwmEq^+#0}gCXB^No&mmEz`PnRe} z-?Cl)Ug~$jWZXWwk#oojjmmbLh}xQUMBfhsyc-#p7LkM()V z#ap-D#t32torlWYTFrNbn}Dr)9vF&ELQ0B4tNQzdf>EK2ynM*(*KI`rAdh+j^c7sK z#gA(&b~-#VGExBphsflDh`&JDUheIieQxT!3gyBqXc?HE$=|SF?b7ZJg(|WPw7B)@J+0 zD$iUNEm)|escbbytH14V;I8ghjY>(m-n$+R-&#abQBnB`V83S<8hkL^#yn}Z4& zShOoErE4$y@o|8%*Rw?VprD}UCrI`o$*70o;^L~7>`)>k=xoG~+Xj=2HKvFt(|%yD zVFdnU#roM??wBh{OJ zI5pi9g1(!K)xD)x@Mcji=*)5OSgteOY{{QP_kgkrZmwv6&+FD0{Yfg0sF;{a{hODP zfx^`gjDwQ6cy%zV!lyFq$`lL+D~hAYMc`Hg?iqBZl*~iaDnacov=Qp6fF}8m{RYto zDruehk;d-jKKqq+*?gbEQFOhWC2B+Ge&JU?J@J+-Q7lj*0B-Ts*NCSIz8a> z{VeU~m$W+AP^{6EoV@qO-1Zh!{45p4<~g(RhRgxFxkx{OYgey6N89J-HoNDJmV1z? zRrwlprA1SESO+1)!_oR(9Jbi8P$MJ<)MF#QUQ@m0*+!oeT@II zF}fig@pqeX(B@aVN&Ax8Flb<~Dk6HcRZ4KP8Sryx1GS{jpFh8RiJ#9xZwvOP_<4un zNU$>{xFa?VaRQaOi%nqOQi0WPYrSQ*FaPMN^Ut@>rPryHy;_;>B1=2#_zTW7zbJVT zafAzO&UY+-(R<#2r>R$a@ z0NXzBlbLb6I3%5;CHw@ z{_OjTC~+Va!x%B|#p~)S1h+}+|Kk1+ck4g0f{QREf`D|ZCq9#7*Er~-3KynU_|;z5jt^LV{Lp9ClC?ab!FFGB_u-@88 z%csC+v+B#lWYM9Y3N$Mx9CGT%(e%U5VNyw4Y-80CI_>ERhWUD{@2sF9Mf1uRbJR*o z<;;vi^HtdF#brLDpUUM<7OqWBPD-vfM*7VnHWsQ_M}$7|X~HkbdA2o_0a|Obg?@aC zIZB)_OTzi3zP9lhZYLCu@f5`=wF(-dsIv5tP5BmQnbSAog%- z(a@&GaF4(Xo1OPq?X$viO3pmbTt`pUCb>bGJlavSg;sA7UbwQ@h^^@O_!)v0FxYCKIcTz zge&GZU+%1KbZ}f?cf^T|-}|IO9uM9EYLCf6{1<#*OdDAPw=lUR#XIR2b#3=_A<2tT zTqo_T^&UyNU8daGsZ$QKhj%d`4*XO??DweKT8EBRZUNxRoFn%AcJZYv z(Qn>Rjs$>i)ckwBsHZb_7V{9JU3qfvg6txujV~*Q3X0B`&Ky?We>X8qOS}w?m!~ZQ z1Y$8GpJB6fs`)Ced7_sN9i`NZK`z8>cL1AK%F03-qw;nUb3Ph=ru`*hI$`JxEugWL z-!2^G@848t*O;ha`!;iPlmz$d-o zUH(k(`V+IrGj8FJ@h2yYU3vz*vu~(-ZMOSkvS5Q?=u${J2Lzfa=>`f?Qfl8>^)D?{ z0jA&etB%7to+&-=T>s!kn`t!0}1VkCrBLuw`+fwB>TL#x7ptlI-~%-s;UtJo8Qy#nsd&v z(klqhsx4zW)uf_hv(u+v(94?CvYKgI;x0~6CqU1gHU9{7>gs{qc1uh2vcadRqRk&PP~3XtP~|k}z{PJxS*u%>r8=l971$Xg!C28WmJk8!c?-9# zF$=1_P&X&3IXIv6R&t}otFao>>?qi>l_D$P)MMJ&`WEu8tE;kn#4X7-%*_>-{U-JS~ zXSgKcw(Fzt`Zo)gvEv^!YM+kqe>^ENlhOR?^hAH*c&b_vkAMXn7e(ln|e9V&qHR0TTtOPW8)JOGu-;tU$mo0 zo-8cfi+G?u@-Y-)l$znvTlL*JCuWSujK@tT?B+srbBXZCGQ=6BY@2D&bAp|f`!eFT zRD^>wW-&2U#b?Hd3;Be9q1@~O?^q8??kF4>hSVTDS}FI>9c$%ks=foj+B!_usmR}x z4~DN%3m0ppw7GWdla#@X!@}}lNr&qzCA%4K5VumHDW~S3ByNb}+-3)dI3d2p=sc{F z_E;T_)trMgS9gN@$`l<78ym#!Ex(rE`UeF`@FKONfbnb09iH2^d~*e=k)bx^cCar9{f?wU9UTKY>%pPCx!D&D2`Q~N z5jxXA=K>UMy_{XNX+KhFP{~tJ@v1xDicW%W{o8R-uOrP@?TI>|HfJ!%jvv63s=w8C zL#j1lndo8kIG9K?dPtV!MB>`Kt`uw)bwrhO@?XK~c2pR=&#}|UQacERPfH*HLYgB=K z^z)c?zsc6vi1iKWoY4-~^^ULo18Ei56`JeT^G7n4@~4dsf%VT2;qg4z^lr9cUj^!l zkDba}t9O_0JMgQPi?GT^mA6%C^Q?jGutH#9U|C`QPR#mI?y|~&O~PF_z6JI?@X%qO zegqUJ7F;Qm*{wKZW>|+-QxQ1jD^$$P2^@3#5%b^!&-eYMF(Rcr^PW`j`^3pIpoacWDlX z;MD4WP7&kzK0_x^v@Gd(=A1!yhLU26)m&jvB}*kz+zFI~hllS)BGw7%w=*->vg=lw z?)pjBW*PY9?gfk#{q68P00yEGW&Xhgiv;V(PJtyR{1jVOGB6NUdlO<0mMq4HZy4CL zh>1Wdv4JS&SH_TnwJYxUzsSVkoRKn)lvR+Oy*bDF1_Q`V=GS)odjFf80RNMn{6`!0_v_)C=;5_K1k#9`(?--zzcQj<9-6Zp4FaK}X|+a~n_pUy`sqz{TauEd#mXj~{roz} z7ajnpX+!t@UfH*3XbcIAAG2F2T+#N?=7RkOAP1bfRi%F0D2a zfoa2oHvje|Ip1Q+VYnQnluur`v6y@>vck9S4C`8N`ooQnUt%PB;zq#?y){=bTwY!- zfWQVMxeH|Xa@^l=jATdI(0_~;54@6_djSNXmc@AM6S>c8<4+P3-v&jsoGiBv#HE?G+s(Ci@#K;4VZZlxcgxpW`(O3zVh?8Z z>TD<*54gW7uy8N2kLzVgl9C@-_zwuaX(F)8x_dD#^*jS?4tK(6jq)bAo3*d{up8(w zfko6eRj;Gp+q*6g8<7FuubKBvX_{m6uv=0B>**T(8ns^^hFTUbyuQr`;<~G=(saVH z?43o6t!ma`&aBJS2FF!4(yh%2YR`1D(m7b0jyFV*pIbQ%yH04?42Y=d=x_b6cX1U+*&*y_Pol;!{;R&b=vS0;2WKXq6XgG4?@ zOti&4k&#IVW{JDTtT0C7MIjrElBE@}@8qClz=G{YAY)vxe5Q43GOr);H55x6pYdP{ z*zEl5znZGPERO1-F~iVGN^tz9(}Z%s^)!MEh|G))q>AL@3MVY+rB1h!zh&PL%3x$* z@Gom3$dyo4{irQyG7K||$ioig&V5bH|1LiKI<)8UMm$1a|1;v;5V@XQ=DQzt@ZIaz z3|m}F^4?DEUuPQ|8a}wTs)0=RB(R!&7*1TJ#p{q`-XP&cQ3uVp``}Plq_;5BQS_9( zdCTh1+Rt8ZB|X6i?Ddq6&%NF4^_FHu(#QI_jmr4cm`hM^Qn92j#URB4Du-*p@26sf z;PUC3OYUbVsHEIT=tNk#0s;bZ^*WSIgBBNq*vH#OS33N>0K<F0rnGa|XRRtgMNN+AORW zax7=amw1+0%vPp&Ud#_3fAD}XZwKWF?qtwU!HOZj8-1ylA*9H6ynrqr1aLYdpQh7l zY2wpVxb}=#C1s3^tv?kp$gQ*A?kEXaWuBKt!Dd}m{@x{EUXyatA-qfbV%jgC`M*I-<$@?;)d!cJ9V3 zvlnOM*?hr;hsSlTQsTU9R$krP+F1B0^}RtHs3`9K5M98KzPxyB_ebnI7>T{V2Q^3G lqiC1?UmPR7y-im;Rnhk8U7IZ_J$jjGM`E-KT$xhJ?5X7;W1#cQp5C zNd4F~0oV=t%}Ot>?mVrvfTaXeGOWu*pPo!|;yIq}NSgVq>FhIp|C(xi-Hz6mqar*S z+A3Fd?xS!*KPIzar{SiZnd4)1L4nf zRihXY67#-H%vDdLKdB>Sz1-cMdQ0McUY(txJhgPVNewC%(_#$2o|vsy;zWNwps8E( z;67-N5`VPyGrbSxyY`Joh`=ES8!1lc{N@6xnZM4Xi(42&?gcZ$I7`;I_aCeF7S+D7 zU7B(FFb8xg6tQk^Qr_OCovu5-ynNLl%ovC^$(OoxN}%*JZRgF|%h_59qsFI-486AJ zDQ$-=j)^cmHa_^a&9fk+S?GYndHN$Kf)n*^UO~6|?BiaEvy<4g9}*3&b`+B%oVrWj z8L-aks#`VcZ@}Kd#LKvEs4hW^r|fGuv5_Qkk+>&ig+sTE)T` z2I~(VySg=a@R<7F?e{ahpA07n{nhyP#wg-R?UmllDYoHKJk4q-`>$DTr%$Ftq9L=S z7!4^5H4TYd+HS03+<5p&QT!3$>ylMc#=JH|3XK7-Mz0 zcnyS59|I=ylN#Cz+>R^M=gab;`J8Tl3cX_JE*u3F-(i3AVWWepa zx^g!yr#hHOPCy6D62OXzETk?JCu zxiin(4T$7cqpr_4IZYu=*iW^oHIM=+t>nJeCh z^a69gUnWLmo^2~k9qAe41rIs!9Jk@oo0%@}kgaXllW%&zKU0?9$c@IlX5> zs-Cz%8;jnA4A_9&_o5T=HxIh}#5`NfeefAycxtX)&wW83o`Qt|q&5LRjQZOod^7OAw=Vh^&%a^o7aV#YwM%pzWNZ zT(wZqjQ$q*$A+p*+fhWd7ug}2lz*}0)2yHmJ9nDY^oLjY%k^bMecucs8aK2kyW1$w zy-#kcQtmVE?KDp<7yAA^ws`ovJot?(!ymd4aViOLn8TO9MT%jk!f`Y4#BDyCxg|$8 zX5p_lCKvVwU#Z#5t7DMwGG#uV8kT@NY+3;|R2A9Am+pU0<*_L~w#CryojGJ8XFlv_ zX8Bo*J3aFF1;10)t%FZq^(O{dV=-554<(X@Wf%Mxr!-!}dq>|SO~MQ&VEZ1Vs!IN4 zJGQ0ui{#XNfO$`lvig~UmwPQd5uW0hatJE-$~e?3sB8g2>A5d8vu#*N1Xk#%DLEBF zrdf5gwk6;^CcGd>Z|I(7x9aV1*}coFGwOc)A~YF$?+uo(7<=zv_Tj;!Z`XG6u|AK)-sh!v6PSdUE>FOM zN|gBLqx}2F3oXZ7Ohpv$FcTWFeY}*D>SZ=8Zr#jW><$)2TGMUOyfSurw&@92Vn5c< zjIC$$di}W3jRKeyYU=HOKB86S4jouFj2<AL~DVO~pV^XAQ5k)NI+`x^@SRAu-M@ik+ocCPHAC;XJl1gx$T@#ugjVm+Ga#Jm=y z(1{4>L@2PMnMy$JZ$f&W*m{A@;e+EM{oU}JYcXDo-6IXobpm!~8wf2MKUj`CgV?;* z>W2ft88>J%ykR#|=0P4;JB?AH-a?&$eY;X)+n)m#`XOSMZ@YSNU=Dq98TRV`J{LR7 zBYAD^p^uQ%wMSt$3Ub)d)ykQ>l8qk({KFr8x+Gr@_9jmxxOGfM?E@S_AKEtoQ&|pM z=#O#R%7w6*i#*VSmBX=boe$sx74n@PZ1*N3joozGR=Zunu1{6$=l>u#!JNpK%l9Gm zRgcrS`Du>@{${L8yS$+nsA^p^urrci-`Iu_bUQ&H4V?(?NRN0q=6;1G4cAHw2$zKB zSYAE8j;t_Sd7#a>4PT3~XT9L3LK%ga*87^85$@>wbJrIb#hbmI6Ux~7()r%bwa5SY z>cz4ta@ICI6H4r3`g|-l$Z_yIPsEYk#n>sPKYXIK>;;56=s0}A)(~$KakzqTIwr$m z1G0jDVl63bNdc+xEH@7==UwP+Qow3tt|unh%O^tqLiFyAqvyhQTpeV@U1eS9jk=EP za%DAVUa5=U4+50M)r39SqRG7eVAYpQob)DN<~rlt=|FSxfqd!jM4 ztCRwJd1rCz{aS7Rk`z<=cR%ipU+R8;c!-jTYtQZ5EZi>+{toV-w&x=x^q)fKAzVT{Cyad({eY?G=lB8PlN~8Z7x%sHJ%T#9wN!4Xbk4#2 zaBU7>IY~;SIqaM5zvjTHT5!-$pmWIeAI{uRc~phn<$-r9$shNV$R*j)K#H=BA{PEy zX)!;iUj%Lgal;>ubOQDXbk*NA)tm5Jo7UUQ6=#Sqd#T%^%bB zkC*zM=wedDmjpq2?7uv0D8H1|iU`6uyLMXmXvS}0D zr8A%<3a^xkjY!XlPDC6yI5kjuE}_j^pQ*!jj3+=#*7vZyYA}4cZ5~Zn*bNzS+?k98 zXk|i7=~VW*lRLhr-aOlF2IO&O+y?V~xqOV>2o}_lyj*wh?G|6*tm=|^+Qa;)1-l5G z&W$4$3$Y8`49)_ALRKeY+y~RQn^ zzDUe`yoq^pezqkvJD}F@(%@!0wh<$hZBv(0ZjB8OwWa%;?GFJ~Lav3<^GE6{vW-yE zMuL!;RmYuecir+A^e11lCLJ-BUU)s%pr(TiIzEVPFtIOVkjp(S=r0r7t(_B*j8iXo zM#E|h=29BqQB64?o9;nF(S~lpIWsA-*#a~17t2qi)#{D(koMsSxmp`GJSwozZj2X)cw+6^a^d{-%ud(sFL;zq_?}EhC+h9fi zHuQ}1*Y)|PbsX`SbEbnCDBn+Wo|~M>Bh-Mp(XZS}oT8GKW=*{aQxRAetx5~LMV>39 z*&TJ3H=2F;eO+}erOk2>e05Ufap@MiA^PQt@t^8r$-Gu^|8zV3whYH<)cZCZz$md| z-!MuMZMVHH4f%A)Ee6lm9q9qR|WFkTaCHJy$l@u3a36Wt(F&15BC^+fYYQWV~3hq z_Xp_*VuON+JfGZ4W|%J7h`kej*-gI!=$DHA#o_-hRsXPQwl=p zZ?Gr7v%sHP^g7%IuC@B98jidAJw5@u=38w_bVyYOXsYr%%lQM9TX}j&W-`{ZdA=p{ zQgerfC{imdHS^9H|1%NW-nA&ya{Sw&5Z`0NdjqHEm^jK(=hmdx;j@_xFhnolW zeL^`n#Na$PNH+~wYc`)(6p57TZ4KBCGc~S^OAU!LD!U*X_tN~iVWe$`Z*`F*r|6-P z)`ID$$F9tdcOdojX7MyK-ogr^kvj-eVJKYU=s=LZ$zWqTvL)NP|6@qB5z8*|qZaiE z0RaJ23VB>pxs8JWUF!Q7G8F6E)>j>2WN7F%({O&&X?CR*wImtLD+_r3| zh=>Sn{=Hlzda8UK{ia+Xy%uS^o_nOEK$Y~d z_CPZ))wEziqd3t7srj7o`-a1L{gK0M1#|H@$KlpMvxG=g+ixi-+x4M%c-zaVyP~_B z&xT8UuCp$_vL%#Vq&)XQolE03=fsV%XZ^xXGzcOh4PQV=UBRd#(zGHox2TSMbC#uk zym~}nQ9^ow^Eh?p=__^)4s(rj6){Gts;ZkGDy9!BWGzld(dsLyHmou;pC-PR8f96C zST>|+7#rzH2?_}{Bo8|V4GoyiZPJBAHWe+J$BjxE6uCK?nwmx{`GsSp*G_ARpiMwO z>P`S6$AQR>)rMQQ=P!u(q)pC*&@vaU2=UgXLSnSTW25L%GE!U1p`3^npTmah>-xCq zc3^7fusTW)cS*R-48YM}w~$&qugqZ^QVgQsULz#w=J(FjX{0A6+LG^XYdghnl!HZj z7|=W-+B0zWA`Z~NIf9mn3C_AjG%KA$KyN@TPfXnE%h5Tt=T=9)*;2ndr>5?GAi0 zP`ryALM?jm5Fci8P*5;J3>8V5CFmn{D|B>pVsK+EIT~43?S*;r*1eH??cIcaO`J>*p(%FaagDTQ>_j&YPr_pvtfFr5;sW(@?5CF$N z;Ko&2YJ)VK81VE-%S*^mHucV6*)8Shs~!x*%H&@ZB?yS7|NQE@A%s{;?xhbQ@)ebp zy3wTOSR?Ei(?l+0#**T?)E&LPt0K#4(D8#CtO_D~ z1_3DqlGnPcKr#Zs{scOXtgvpCf43q*{&a!^H{quQL1b<87kYXWbGk#D>@?hzYUFQY zc;&F99-0<8PR`kW=y!AzKo+e&gnEs6a(sm2q(MZ!!%$PYnSrapV#V!WH0W!{*^~s(%|lj&uz5%F2V7wDBizcTCJ&;s9ixdHmn>R68V>SVG+vUCu>w%G;n0E`x^r z^I1ni#m|=40?Avzwjy`)dFAg)_lnT{D;k7W;NS;L`By&}r}Oxy(}FVxEf-2@J9b~= zAc$iYZw4IjtDj2eL^>!%u~;nhsHaASVQ?0C-IiX>qA0_2+{97D^n2DZJ;MuMuAiB! zMG6*v%2X>FX@52(JQCw{$4~ted?6?5A3E-83_;&?+|?kuC5R-A>tZ7eo1B0LlH7a1 zkK06U?5gPj)hGut@a#6z-s#3RBeIry3yclu((2f6g9 z7^$C?5ZCNMpd+1v={u`&t-z_Z=lS>ed)bAksglJb3a$;OQC?89QyeFQ2d@N%B&3tX zW)_ph{eV|x02ja?77xD5f8w0rFn;>oCH^c+g9|Q|it!03-~d@TYgOo6aG7BV$W()! zace3%MWAU6^GlMaP>|eDf;h9x6f#8(>neYj+`G-A+pN?KE5NhkXl4)5P&cV9FTJ`fW`r?JAFF9&?(Z z1_ZoH6^l&evnc0?m%#O;K;kjv{xP^|i|n6R7UM*0gf6FvjLo@mn~2ECwt^d$_i4}f|lnJmuTn%Q|8pdv1h*##JFw)jtM&;v=LG&2dL zQ)?%vZIzW3`3^_sDr+BKIna%&xoZyH<6WbDKa2CNxYwCOCCOzVu=2VBO^gL9D)XHO zpK3zEdxE|Tw!km=!CnBS&Nm@rNVos4R>u>`xs;I@!-@*YJ&1DPG<-9WmW+nj?=_K$ z7`rNapG((sN;`+F4C31w5IkS>8ww9CdzL!V-^BSM(oh#dNG22cehMPjzCA{-A)6>X zhh@7Bq_74GjMY`@r3G4L`~S4$o|V3;fm5uzIS^^m_7`h}3`5FThW(Di7#Di|*BqtQ z77qPJ`{|qy@UkyZiOsOzSP{thBX9p-2FwIGK&iuqRKZEQwn#=iLIL$dfn3WhU^5}s z$F$bYes;LS;E=?k$LMXx4sQD!#9k^;YyV`Ic}ilKhM2zlOh5T$Ks5Rty-M_;nLq+S+0ycoZy!u;(nIA&1dOEi@)1|%WB>f zD_Z_AFuqo9ziM1Qwor;dLG5vW+g8>%mTY4B>8`WC z6eFOjges7=WW9jIK=769pcbm_?Fx?CB9wb^yuFAQP+q`fktQZ%L&U+cwgOZUQLo4s z-h22bRJA7B+}9BvLX)9s(K~097F@}rIqow9Uu`7D3#X|Q-f{!IzR3w?A;M>cC;-y;%VDP3W;`$}qL?%J+iEMBrooU@L(6hgA(rWmDBr)s&QMKXNz`*);70J-M%-l)A-aKyC!9r6FvqD8IgGt#5 z31VJG_%yLyj^N8p@UPb)ax@s**G} zd>3rNwJI*crG=?pa4@=py}i9a0n%p6y8Lc4kij^-nYsIL_&{rNqDDCMzqlfpaw*(> zUIfR7SlgVMejqu7iCVkOwK=!>*$CR&G!LNXzj`Ox)+cBh<=9Z>Ht$6bb{2bem-$(K zesQP$p@(kl>(>tLg|0&_`bdoKA#F{~$E18zhb$q(b-E8?$uh`yNX&eYS=@+(j1Or8 zk-{N*>74$X@cCG8))7Z>4SQ$`&g==l##mi^4Tyaic*tRIbLjH1Ki%aZlg@HZLaPGm zN=`-wmwL0pjj~f98Wjj8fDCvT>?{A%aK|F-meh|-`E5VKeRd>orWPUPIHY4@(jKks z@9P|Vrt6P{Ny`i>?nG{6^IkJr4%i{>Yz{ht^pdwG&5rsUi9PVsj6=P_(Ruw_Zf9O# z4n-AX`CfG*iU*ssl5_6=eVTD^&-5g=`W)*@DOMOlIQD_V+Oqw~KwZ3sqT(G7`CTWj zp9ATdhYx%RWcd$Sb80g-LsZ1bVTNr-hPA} z5U>wb*WcZ0)3x9-c;7D8wXrT7==q(00J{en**77(D zv^38G=)4xtMURzAtH7q}Lcut|il^H15$nLhD_dw@7w6o8X(X>#IrDo(b@h`Embn;_05@ZY{6wzUk6{0a5Vh zGO|)d&hcJcUY^=(_>#X2&Vu@noB1Tq+Tm(OD0JQ8?*-b&yN(@q3CWE>t>tfj{;1GDKA`>O*RN7z z2}wzYJ2nbmYwbe4E}81JlwF+I24SKO$j*0myN?-+(wa(dpp`wwS{1{@P`3W-kjMSv zrxNl8Gg{K~(A7lksqn#$$N|(xcv_fCjU!T`@atwMbrZy*S(C%q&(z<@_Wl^dM|I0M zVaHv#nWCg|XqtpVN>TE|r~Srz-W^Q~bsEjFq0R=x2X`W}yNI#7r6N-k7d}6ihx|f{ z+&jXLb;tS3QNIZD1oYdIYiCFELZt2LXToGD2Ta*Ls?IP#Q*zLKP!SY@)f^=>Z^yusS7xEM}@yUBUQn(4ZzvOXGjaYShxJ%zn+Sw3N zZ3)A6xg8YoZSO1L6RZQD^uU%0{jMyw4UGbS~@YnFFzhs$UdJ?I!jU+*5*R$O3d z`Tl-_K5L3eQ3Hx=@Z!Rh$Yf=}=_>D}q>a_k>etVPq148RK~aVIWPO0{1Mp{W?@xS+ z3P{>fd4fx(Ic(gSzA?E{vu1>&cTmAhC#&Io6tDc+>poJf}cW2A^ zY?zYdQ(?2`w0=MEC3lvWh_1%6d0=|^r)msif*d}ACEXV9ze$F`nzX{Z&+g)c`Y)r) zRi`SkE*BKK0)&tm(>h+#3MxL}CJal$;vtKK_{_%-7s?ib{_fxP2D`5W^X!}97zjwx zZ7|)zH8f}ya|LJX0edUKuo%@BcgNU1KTx)V&~bg`9T!=F&2XbY8T#syVT`1+3i z+{up#olM)$Qf6YS!gz-pQ5Wmt)X1}=IZmSo+7ej0Lq$Z?ql{3g6)qRISlE{^@dJ!T zXzKu0vx+P^K$h&sB{KFodhRZ>oRgR&(?AIS@}og$dv(jQ?X={b_pMcLc)&J%Tt^$M z^Sg6LE#G@)FDm@_&c|R?mPq(fIiNMx?-F_rNFXOf2 za2*P_@P4{Lr=|&MfkzOoX4+bQScVO^~WD%+?avxv0t*Nxw6lLLt+hZB{hh zC~Vfg6D&gk7vr2Nooe0UL}fYlWD*IrBot$cV=HUliqp}aj-DNrUjPG~tIJN^ zLzWvJ8;GonYpcz73^OSrNdujzMu}x1PT|%trHM8sW7{Q0R2v~A^M;=oR3!#G)~XcM zhxuE$_Cpb+#`!w3c!;-S})OwYrQDsP}-_U^Jej zWNKiskk>!EX~ucHavd@w=p`;D?jd=Dl(@DsgxM`>b^EYShX+|kM1(veVUSZ3Vvm)q z;uf>{+<4!;d7&7~hJA#qPcg_05@^ihX823oadt$JJV!f)(H&RK4}-E@43Ag8GOZlb zMOC$A%cSF(+Z7#&MWm?na>P2UiObh4fwcK-QvY*BpWtc8SLdceUd?l)AWgO^EkhM9J+>>PBw`WR8^g7);i0;4xVEIf-ob;a_O8JIUn zWQ)eMB9jJh%_1p{$VEX)Wlr@i$A|d3gz%xq%8>)Lv9fd-trn7|O7|Rr_Kt1bKOj z039?Xtxcd?+b?Gp-<1AS6s5m{n{rV(ib_sKOrO? zD`QW@EX7u5LL5~vYja!?{Q{rxR^28p)T zkKoYL4k#L7KZkQBwOYNOw>I#1oAIo6Dgp(F$@7?*tS!t$kG4 zSKOF(H{fz@jKFx2bLof2X7f35UqMw9W{~z93QRn$86jKKj~(KZL`v$AE3NpWT4`c< z*Zy;HhfhyWN695au~l+&%{k-G4n#J82$ygkw9bbTwAFWxEK@)4j77`g@o@?0vKK>? zs9g^yp@+4pgC2KP;1Wi~w$WI?ZEh?XGOu;r9_&6e(o7uw99?7Hkm7pEI^4;*CK(j$ zm>9m6rgtDYCvY(?lkYHqloC+UO9|K>R4mi#b@=3M};^ z>YMi6&L5riY_n6?&#ckXl@y#yA-X~x#i`aF0L&YFJh_O!q$Sq3nk4qTC|0$>h%BT^Mix}OHWU?w_<)*kBs zg}W=9ewo8%FH?+Ig`05L2~b}Kp~bLSIh?NDdT`~D>YQCA-{2FlMmf;;A>fU|fX(`x zX%HbI;(t)iR`z80)|@vAe8MGFHtmb&@gDSm?lD+C6@W0 zuPBcV1h=4~;-elFSP4AVX~x4lS<9yZ(tjvrC+ga>NNPl-niN6bAi4V-ZjhE3tyBfTZopBTLzPJ5u-v_P zoC$_F=MWuzqB1AuBm|Y0`7~S0u8HtN z+Q?9k>5ndDA>xruluD*L{!WA*AV+3VZF#m=KGjL=@5*XqX?3Xk_yae3xLZoh>O*nQ zvc?Iy2Ik-1MqD7Kj|fy+EU*K+$<~U4K~(H^f&|3e=Yo8bKtaW#WO2!QC=W zYPie5GsF8TW?~2d*TADcl0}|SXvdg{LOLB8?sg^x9TRdNO|JICI>vLIl1A&>d{Na5Ps zq;>kK`Hi$p<@ezd)4Xm2%45fXQ=V9d4L)KZ<2EBvodfboQ_$i$IC=n$G}DfoRU2=7 zUvD}NkY|{UEu3}7jiJQ_LKhq4(C4S>vnQWLS<+VX(pN3qKkyui1XsB{vvh;js zpH%^4rh&I@cUiKZ0MucWXJ_1!J?hZ?>3Jzu$he!zEK_5++7v)5;#n$ihi>w!b4!hf znehj5==;k8>P%zZsPy(I!=hP5J(gX+DsO0N7{_9BKs_qAClNLl4Q%#+Vk{$56uaF1 zbt&M*nmBc&*6EB(rT!79pf}eA4VEgb@2B0)(8tD-8wB0PpuoTZQ~YbImf6DQKsFwt zBYBonc-FQfU$a9!%n32wC#Wv{syT{9C-iko7enpf-x2_0=lVHv1^$euD+9^ z2xieAp}xCS-!$z*789_WX!^C63)ZGhKpR-svns9q_>R#7@SfkE4nSeouloPr-XYWi zl!|WQAM(#aIJ`}?1v%z*uY<}2-j@*jbs*EPAT-Lon@A%fy$dHnV?8DWTvy*@~i&zHRs)$0JZeW z-?y!T(Ixz5KfddUKQ8+Bx)$^w?z>&k@GmfrUw$G-eQ_V%$)d|6idW2zL~i}4pH4db z)N^^F1E`<3|2}=DuM+|OS^7CZVxDd3SK#NXEI5Vb|7P49GEG}&+xD69*4xu=;I()< O6$V9hg|yQbJ^v4K%cwU1 diff --git a/images/SM-B_Auth_with_DPoP.svg b/images/SM-B_Auth_with_DPoP.svg index f0d0f9b..d1e5c7f 100644 --- a/images/SM-B_Auth_with_DPoP.svg +++ b/images/SM-B_Auth_with_DPoP.svg @@ -1 +1 @@ -LEIBetreiberZT ClusterTI 2.0 DienstClientKonnektorSM-BPEPAuthorization Serverhttp ProxyPDPResource ServerClientKonnektorSM-BPEPAuthorization Serverhttp ProxyPDPResource Serveralt[01]GET /resource[02]401 Unauthorized; json body with Well-Known json Document[03]GET /.well-known/oauth-authorization-server [04]200 OK; json body with Well-Known json Document[05]generate DPoP keypair[06]GET /nonce[07]return 200 OK new-nonce: nonce[08]create JWT withnonceClient and OS InformationDPoP Thumbprint[09]externalAuthenticate JWT-hash[10]sign JWT-hash[11]JWT-Signature[12]JWT-signature[13]create SM-B signed JWT[14]create DPoP Proof[15]POST /token{SM-B signed JWT}  DPoP: eyJh...  grant_type=authorization_code  code=...  client_assertion_type=urn:ietf:params:oauth:client-assertion-type:jwt-bearer  client_assertion=eyJh....RFC7523 (JWT Client Assertion), RFC9449 (DPoP)[16]verify Client Assertion, DPoP[17]POST /v1/data/authz, json body { "input": {...}}[18]200 OK, json body {"result": {"allow": true, ...}}[19]issue tokens[20]200 OK, access token, refresh token, bound to DPoP[21]Create DPoP Proof for RS[22]GET /resource (access token, DPoP)[23]verify access token andDPoP Binding[24]forward[25]provide resource access[26]resource[27]resource \ No newline at end of file +LEIBetreiberZT ClusterTI 2.0 DienstClientKonnektorSM-BPEPAuthorization Serverhttp ProxyPDPResource ServerClientKonnektorSM-BPEPAuthorization Serverhttp ProxyPDPResource Serveralt[01]GET /resource[02]401 Unauthorized; json body with Well-Known json Document[03]GET /.well-known/oauth-authorization-server [04]200 OK; json body with Well-Known json Document[05]generate DPoP keypair[06]GET /nonce[07]return 200 OK new-nonce: nonce[08]create JWT withnonceClient and OS InformationDPoP Thumbprint[09]externalAuthenticate JWT-hash[10]sign JWT-hash[11]JWT-Signature[12]JWT-signature[13]create SM-B signed JWT[14]create DPoP Proof[15]POST /token{SM-B signed JWT}  DPoP: eyJh...  grant_type=authorization_code  code=...  client_assertion_type=urn:ietf:params:oauth:client-assertion-type:jwt-bearer  client_assertion=eyJh....RFC7523 (JWT Client Assertion), RFC9449 (DPoP)[16]verify Client Assertion, DPoP[17]POST /v1/data/authz, json body { "input": {...}}[18]200 OK, json body {"result": {"allow": true, ...}}[19]issue tokens[20]200 OK, access token, refresh token, bound to DPoP[21]Create DPoP Proof for RS[22]GET /resource (access token, DPoP)[23]verify access token andDPoP Binding[24]forward GET /resource(access token, DPoP)[25]provide resource access[26]200 OK, resource[27]200 OK, resource \ No newline at end of file