2369d2b82ba81afd142a949d3affa3743c081c5d
Integration.md
| ... | ... | @@ -20,4 +20,26 @@ To get JWK public keys : |
| 20 | 20 | * [[http://test.smartcentral.net/jwks.json]] |
| 21 | 21 | |
| 22 | 22 | Create your own test account : |
| 23 | -* [[http://test.smartcentral.net/user/new/]] |
|
| ... | ... | \ No newline at end of file |
| 0 | +* [[http://test.smartcentral.net/user/new/]] |
|
| 1 | + |
|
| 2 | + |
|
| 3 | +### Implicit flow |
|
| 4 | + |
|
| 5 | +* 3rd party sends authorisation request |
|
| 6 | + |
|
| 7 | +http://test.smartcentral.net/authorizations/new/?client_id=fancy_app&response_type=id_token%20token&scope=openid%20email&nonce=1234&redirect_uri=http://localhost:3001/auth |
|
| 8 | + |
|
| 9 | +* SmartCentral redirects end user to login page if not logged in, after end user's authorisation, send the following fields (http form fields encoded) to redirect_uri provided by 3rd party. |
|
| 10 | + |
|
| 11 | + * access_token |
|
| 12 | + * id_token |
|
| 13 | + * token_type |
|
| 14 | + |
|
| 15 | +* After 3rd party received id_token (JWT format), the id token should be verified using the public key provided by SmartCentral http://test.smartcentral.net/jwks.json |
|
| 16 | + |
|
| 17 | +* To get readble information of the user, 3rd party sends GET request with access token returned by SmartCentral to http://test.smartcentral.net/user_info?access_token=abcd |
|
| 18 | + |
|
| 19 | +* User info returns the following fields: |
|
| 20 | + * subject (SmartCentral user unique id) |
|
| 21 | + * name |
|
| 22 | + * email |
|
| ... | ... | \ No newline at end of file |