Page History

Use case ID

ATH-UC-09-AF-01

Use case name

Local Global logout of a user by closing exiting the mobile application

Actors

• Citizen

• Healthcare giver
• Representative of an institution

Short Description

This use case denotes the basic alternative flow of the local global logout use case. Indeed, it consists on the disconnection from the authorization server (called also the IAM connect). To logout eHealth I.AM Connect via OpenID, the logout request should sent via the following URL_local_logout: https://api.ehealth.fgov.be/auth/realms/{REGISTERED_REALM}/protocol/openid-connect/logout?redirect_uri={REGISTERED_APP_REDIRECT_URI}automatic global logout when the user exits the mobile application without logging out properly. It may an expected or unexpected exit.

1 (High)

Must have: The system must implement this goal/ assumption to be accepted.

Pre-Conditions

• The user is authenticated in the mobile application
• The URL_local_logout
• The URL_global_logout

Post-Conditions

• The user is locally logged out

Steps (basic flow)

0

1

The user presses the logout button to disconnect him/herself from the SP 

2

SP detects that the client is disconnected and asks:

1. the AS to end the active session via the URL_local_logout
2. the IDP to do a logout via the URL_global_logout

2

1. The AS ends the active session and notifies the SP

2. The

1. IDP logs out and sends a notification to the

1. SP

Exceptions (exception flows)

Frequency