...
Basic flow
Flow | Specification | ||||||
---|---|---|---|---|---|---|---|
Use case ID | ATH-UC-10-BF | ||||||
Use case name | Consult and choose the profile of a user | ||||||
Actors |
| ||||||
Short Description | In order to consult and choose a profile, the user should find the list of the profiles in the IDP in a web browser. This list is updated every time the user is authenticated and identified in the IDP from the authentic data sources. | ||||||
Priority | 1 (High) Must have: The system must implement this goal/ assumption to be accepted. | ||||||
Pre-Conditions |
| ||||||
Post-Conditions |
| ||||||
Steps (basic flow) | 0 | 1 | 2 | 3 | 4 | 1 | The user connects via the mobile application |
2 | The mobile application sends an openID connect authorization request to the IAM connect | ||||||
3 | The IAM connects redirects the message to the eHealth IDP in a browser | ||||||
4 | The IDP detects that there is not an open session with the NISS and the name of the user | ||||||
5 | The IDP redirects the request to the CSAM in order to open a session | ||||||
6 | The user selects the authentication way (i.e. itsme, eID, TOTP) | ||||||
7 | The user is authenticated and CSAM returns a SAML assertion to the IDP regarding the user | ||||||
8 | The user selects a profile and the IDP returns the selected profile to the IAM connect | ||||||
9 | The IAM connect creates an access token JWT with the selected profile and returns it to the clent | ||||||
10 | The user is authenticated and accesses to the permitted services in the mobile application with respect to his/her profile | 5 | 6|||||
Exceptions (exception flows) | |||||||
Frequency |
|