Differences

This shows you the differences between two versions of the page.

--- authentication [2025/03/24 12:31] – more detail winter
+++ authentication [2025/03/24 14:13] (current) – [In diagram form] winter
@@ Line 26: / Line 26: @@
+===== In diagram form =====
+<uml>
+@startuml
+skinparam responseMessageBelowArrow true
+participant "Server A" as A
+participant "Server B" as B
+== Server A wants to prove its identity with Server B ==
+A -> B: ""GET"" Server B auth \n\
+ ""?phase=dialback""\n\
+ ""&target=<Server A dialback>""
+A <-- B: 202 Accepted / 204 No Content
+...Potentially some delay...
+B -> A: ""POST"" Server A dialback\n\
+ ""origin=Server B domain""\n\
+ ""secret=<generated secret>""
+B <-- A: 202 Accepted / 204 No Content
+A -> B: ""GET"" Server B auth\n\
+ ""?phase=token""\n\
+ ""&secret=<generated secret from B>""
+A <-- B: 200 OK / 201 Created\n\
+ {{json\n{\n\
+ "token": "<token>",\n\
+ "expires": "<date>"\n\
+ }\n}}
+== Authenticated request ==
+A -> B: ""GET"" Server B whatever\n\
+ <&header> ""Authentication: Bearer <token>""
+A <-- B: <whatever the response is>
+== Server A wants to refresh the token ==
+...A bit before the expires date...
+A -> B: ""GET"" Server B auth\n\
+ ""?phase=refresh""\n\
+ <&header> ""Authentication: Bearer <token>""
+A <-- B: 200 OK / 201 Created\n\
+ {{json\n{\n\
+ "token": "<token>",\n\
+ "expires": "<date>"\n\
+ }\n}}
+@enduml
+</uml>
+<WRAP center round todo 80%>
+are we sure that this can use different HTTP response codes? e.g. "200 OK / 201 Created" ? or would it be better to just pick one that should be used in all cases?
+</WRAP>
-{{page>include:stub}}