Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

docs(jans-auth) : Case study - Stepped up authentication #4881

Closed
maduvena opened this issue May 9, 2023 · 0 comments
Closed

docs(jans-auth) : Case study - Stepped up authentication #4881

maduvena opened this issue May 9, 2023 · 0 comments
Assignees
@maduvena @moabu
Labels
area-documentation Documentation needs to change as part of issue or PR
Milestone
1.0.14

Comments

@maduvena
Copy link
Contributor

maduvena commented May 9, 2023

When a user is challenged to produce an additional authentication when a certain API is accessed by the client does not have the needed scope.

sequenceDiagram

title Stepped-up Authentication

actor Person
participant Browser
participant Website
participant Auth Server
participant API

autonumber

Website->>API: request some endpoint
API->>API:  Enforce<br> presence of <br> 'otp' scope<br> in  access_token
API->>Website: 3. 401 Unauthorized<br>WWW-Authenticate: Bearer error="insufficient_user_authentication" 
Website->>Browser: Enforce additional challenge on the user<br> (Enter OTP) 
Person->>Browser:Enter OTP
Browser->>Auth Server: /authorize endpoint
Auth Server->>Auth Server:Validate OTP (Person authentication script)
Auth Server->>Auth Server: Modify scope of AT to include OTP (Update token script)
Auth Server->> Website: Return Access Token with scope containing OTP
@mo-auto mo-auto added the area-documentation Documentation needs to change as part of issue or PR label May 9, 2023
@moabu moabu modified the milestones: 1.0.13, 1.0.14 May 10, 2023
maduvena added a commit that referenced this issue May 18, 2023
@maduvena
fix(docs): #4881 improvised
c312b38
mo-auto pushed a commit that referenced this issue May 18, 2023
@maduvena
fix(docs): #4881 improvised (#5035)
065edad
maduvena added a commit that referenced this issue May 18, 2023
@maduvena
fix(docs): #4881
a12fdc5 
Included Stepped-up Authentication in navigation
@maduvena maduvena mentioned this issue May 18, 2023
Merged
moabu pushed a commit that referenced this issue May 18, 2023
@maduvena
fix(docs): #4881 (#5036)
ccf7107
maduvena added a commit that referenced this issue May 23, 2023
@maduvena
fix(docs): minor addition #4881
6a98192 
#4881
@maduvena maduvena mentioned this issue May 23, 2023
Merged
mo-auto pushed a commit that referenced this issue May 23, 2023
@maduvena
fix(docs): minor addition #4881 (#5083)
948b9aa 
#4881
@mo-auto mo-auto mentioned this issue Jun 12, 2023
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@maduvena maduvena

@moabu moabu

Labels
area-documentation Documentation needs to change as part of issue or PR
Projects
None yet
Milestone
1.0.14
Development

No branches or pull requests
3 participants
@maduvena @moabu @mo-auto