...
| Flow | Specification | ||
|---|---|---|---|
| Use case ID | ATH-UC-05-BF | |
Use case name | Authentication using an eID card | ||
Actors |
| ||
Short Description | Create an account for the citizenThis use case denotes the authentication of a user via an eID card. To do so, the citizen tries to authenticate user authenticates himself/herself via the mobile application interface. The IDentity Provider ( IDP ) detects that it consists on a first authentication and redirects the user to the CSAM portal. Hence, the citizen creates a new account by giving his/her eID card for the first time. identity and To connect his/her eID card, the citizen should have a wireless card reader. | ||
Priority | 1 (High) Must have: The system must implement this goal/ assumption to be accepted. | ||
Pre-Conditions |
| ||
Post-Conditions |
| ||
Steps (basic flow) | 0 | The citizen access to the application interface (i.e. WebSSO) to create an account (first authentication) | |
1 | The citizen connects for the first time to the application | ||
2 | The application sends a request message to the Service Provider (SP) | ||
3 | The SP sends a request message (i.e. ask authentication get SSO token) to the IDP | ||
4 | The IDP checks the identity of the citizen and it does not find it in the authentic data source via the AA | ||
5 | The IDP contacts the CSAM to ask it to create the certificate to the citizen (first authentication) | ||
6 | The CSAM opens a new web browser page to invite the citizen to enter his/her credentials using the eID card | ||
7 | The citizen sends his/her credentials | ||
8 | The CSAM returns the credentials/certificate to the IDP | ||
9 | The IDP sends a response message to the SP to inform it that the citizen is now authenticated and identified | ||
10 | The SP returns a response message to the application to enable a first connection | ||
Exceptions (exception flows) |
| ||
Frequency |
| ||
...