2369d2b82ba81afd142a949d3affa3743c081c5d
Integration.md
... | ... | @@ -20,4 +20,26 @@ To get JWK public keys : |
20 | 20 | * [[http://test.smartcentral.net/jwks.json]] |
21 | 21 | |
22 | 22 | Create your own test account : |
23 | -* [[http://test.smartcentral.net/user/new/]] |
|
... | ... | \ No newline at end of file |
0 | +* [[http://test.smartcentral.net/user/new/]] |
|
1 | + |
|
2 | + |
|
3 | +### Implicit flow |
|
4 | + |
|
5 | +* 3rd party sends authorisation request |
|
6 | + |
|
7 | +http://test.smartcentral.net/authorizations/new/?client_id=fancy_app&response_type=id_token%20token&scope=openid%20email&nonce=1234&redirect_uri=http://localhost:3001/auth |
|
8 | + |
|
9 | +* SmartCentral redirects end user to login page if not logged in, after end user's authorisation, send the following fields (http form fields encoded) to redirect_uri provided by 3rd party. |
|
10 | + |
|
11 | + * access_token |
|
12 | + * id_token |
|
13 | + * token_type |
|
14 | + |
|
15 | +* After 3rd party received id_token (JWT format), the id token should be verified using the public key provided by SmartCentral http://test.smartcentral.net/jwks.json |
|
16 | + |
|
17 | +* To get readble information of the user, 3rd party sends GET request with access token returned by SmartCentral to http://test.smartcentral.net/user_info?access_token=abcd |
|
18 | + |
|
19 | +* User info returns the following fields: |
|
20 | + * subject (SmartCentral user unique id) |
|
21 | + * name |
|
22 | + * email |
|
... | ... | \ No newline at end of file |