Presentation is loading. Please wait.

Presentation is loading. Please wait.

HIP – FAS flows addendum to the OIDC integration guide for eBox HIPs.

Published byLanny Rachman Modified over 5 years ago

Similar presentations

Presentation on theme: "HIP – FAS flows addendum to the OIDC integration guide for eBox HIPs."— Presentation transcript:

1 HIP – FAS flows addendum to the OIDC integration guide for eBox HIPs

2 Content : Documentation of specific OIDC flows
This document is an addendum to the OIDC integration guide for eBox HIPs, it describes 3 flows: Authorization Code Flow - FAS Consent This flow must be used by the HIP RP to force the consent page via the FAS user interface during login. The HIP itself does not need to implement the consent page. Authorization Code Flow - HIP Consent (=implicit consent) This flow can be used by the HIP RP to handle the consent page by itself. This flow is not recommended. (note: in all cases the consent itself is stored in FAS) Refresh Token Flow This flow can be used by the HIP RP to keep a long lasting token for every user. Implementation of this flow is only recommended when the HIP does not use FAS to authenticate each time. (for instance when the HIP manages its own authentication methods outside the FAS, but FAS is only used when a consent is requested)

3 Details of the OpenID Connect calls / responses from and towards the FAS can be found in the FAS OIDC Integration Guide.

4 Details of the OpenID Connect calls / responses from and towards the FAS can be found in the FAS OIDC Integration Guide.

5 Details of the OpenID Connect calls / responses from and towards the FAS can be found in the FAS OIDC Integration Guide.

Download ppt "HIP – FAS flows addendum to the OIDC integration guide for eBox HIPs."

Similar presentations

The How of OAuth OAuth Hackathon – Six Apart

The How of OAuth OAuth Hackathon – Six Apart
Smartphone-based authorization system Advisor: Dr. Wenjun Zeng - Professor Presenter: Yilihamujiang, Ailiyasijiang Zhou, Guanlong Al-Sinani, H. S. (2011).

Smartphone-based authorization system Advisor: Dr. Wenjun Zeng - Professor Presenter: Yilihamujiang, Ailiyasijiang Zhou, Guanlong Al-Sinani, H. S. (2011).
Coursework.  5 groups of 4-5 students  2 project options  Full project specifications on 3 rd March  Final deadline 10 th May 2011  Code storage.

Coursework.  5 groups of 4-5 students  2 project options  Full project specifications on 3 rd March  Final deadline 10 th May 2011  Code storage.
The Devil is in the (Implementation) Details: An Empirical Analysis of OAuth SSO Systems San-Tsai Sun and Konstantin Beznosov University of British Columbia.

The Devil is in the (Implementation) Details: An Empirical Analysis of OAuth SSO Systems San-Tsai Sun and Konstantin Beznosov University of British Columbia.
1 Trillion Azure AD authentications since the release of the service 50 M Office 365 users active every month >1 Billion authentications every.

1 Trillion Azure AD authentications since the release of the service 50 M Office 365 users active every month >1 Billion authentications every.
1 Trillion Azure AD authentications since the release of the service 50 M Office 365 users active every month >1 Billion authentications every.

1 Trillion Azure AD authentications since the release of the service 50 M Office 365 users active every month >1 Billion authentications every.
Google App Engine Google APIs OAuth Facebook Graph API

Google App Engine Google APIs OAuth Facebook Graph API
SPC204 Security Problems in SharePoint 2010 Authentication and Authorization.

SPC204 Security Problems in SharePoint 2010 Authentication and Authorization.
Get Started With Marketing!. Marketing on Your Mind?  This presentation will include: Info for New and Experienced Users Ideas for marketing to Students.

Get Started With Marketing!. Marketing on Your Mind?  This presentation will include: Info for New and Experienced Users Ideas for marketing to Students.
Project Title: Find New Buddy (FNB) web service Group Number:3 Group Members: Ankur Aggarwal (20009480) Saurebh Raut (27481720) Siddharth Kodwani (32445633)

Project Title: Find New Buddy (FNB) web service Group Number:3 Group Members: Ankur Aggarwal ( ) Saurebh Raut ( ) Siddharth Kodwani ( )
In The Name Of God. Jhaleh Narimisaei By Guide: Dr. Shadgar Implementation of Web Ontology and Semantic Application for Electronic Journal Citation System.

In The Name Of God. Jhaleh Narimisaei By Guide: Dr. Shadgar Implementation of Web Ontology and Semantic Application for Electronic Journal Citation System.
Internet Information Services 7.0 Infrastructure Planning and Design Series.

Internet Information Services 7.0 Infrastructure Planning and Design Series.
Office 365 Platform Flexible Tools Each Office 365 Workload API required different Authentication.

Office 365 Platform Flexible Tools Each Office 365 Workload API required different Authentication.
Secure Credential Manager Claes Nilsson - Sony Ericsson 2009-12-15.

Secure Credential Manager Claes Nilsson - Sony Ericsson
The Social Web: An Implementer's Guide Google I/O 2009 27 May 2009 Google Moderator:

The Social Web: An Implementer's Guide Google I/O May 2009 Google Moderator:
Water Web Services. Connecting a Catalog with Users and Servers Server User Catalog Data Services HydroServerHydroDesktop HIS Central Data Services WISKI.

Water Web Services. Connecting a Catalog with Users and Servers Server User Catalog Data Services HydroServerHydroDesktop HIS Central Data Services WISKI.
Observations from the OAuth Feature Survey Mike Jones March 14, 2013 IETF 86.

Observations from the OAuth Feature Survey Mike Jones March 14, 2013 IETF 86.
How to Deploy and Get the Most Out of Tokens Paul Caskey PKI Deployment Forum 2008.

How to Deploy and Get the Most Out of Tokens Paul Caskey PKI Deployment Forum 2008.
THE DEVIL IS IN THE (IMPLEMENTATION) DETAILS: AN EMPIRICAL ANALYSIS OF OAUTH SSO SYSTEMS SAN-TSAI SUN & KONSTANTIN BEZNOSOV PRESENTED BY: NAZISH KHAN COMPSCI.

THE DEVIL IS IN THE (IMPLEMENTATION) DETAILS: AN EMPIRICAL ANALYSIS OF OAUTH SSO SYSTEMS SAN-TSAI SUN & KONSTANTIN BEZNOSOV PRESENTED BY: NAZISH KHAN COMPSCI.
 Registry itself is easy and straightforward in implementation  The objects of registry are actually complicated to store and manage  Objects of Registry.

 Registry itself is easy and straightforward in implementation  The objects of registry are actually complicated to store and manage  Objects of Registry.

Similar presentations

Ads by Google