Differences
This shows you the differences between two versions of the page.
Both sides previous revision Previous revision | Next revision Both sides next revision | ||
devel:documentation:security:dev:security [2023/12/01 16:15] chalupat [Single logout flow from IDM] |
devel:documentation:security:dev:security [2023/12/01 16:18] chalupat [The authentication flow from front] |
||
---|---|---|---|
Line 250: | Line 250: | ||
1) User isn't authenticated so frotend redirects user to api endpoint for OIDC login. | 1) User isn't authenticated so frotend redirects user to api endpoint for OIDC login. | ||
- | 2) IDM redirects user to OIDC providers login page | + | 2) IDM redirects user to OIDC providers login page (adress from .well-known endpoint on OIDC providers or can be overwritten in config) |
3) User login on OIDC providers page | 3) User login on OIDC providers page | ||
Line 256: | Line 256: | ||
4) User gets redirected back to IDM with " | 4) User gets redirected back to IDM with " | ||
- | 5) IDM uses " | + | 5) IDM uses " |
6) After validation IDM creates CIDMST token (with externalID set to SID) | 6) After validation IDM creates CIDMST token (with externalID set to SID) |