journal/2021-04-16--12-27-13Z--iroh_auth_presentation.org
This commit is contained in:
parent
3395d0edd5
commit
93045bd675
1 changed files with 9 additions and 1 deletions
|
@ -256,6 +256,9 @@ We consider the IdP will manage the org (give an org-id, provide an user
|
||||||
With CSA Migraiton should be deprecated.
|
With CSA Migraiton should be deprecated.
|
||||||
|
|
||||||
* IROH-Auth Login Dance: For SXSO
|
* IROH-Auth Login Dance: For SXSO
|
||||||
|
:PROPERTIES:
|
||||||
|
:ID: dc5070c0-9040-4175-9a67-c85a21f65f35
|
||||||
|
:END:
|
||||||
|
|
||||||
We generate the =idp-mapping= out of the =id_token=.
|
We generate the =idp-mapping= out of the =id_token=.
|
||||||
The =idp-mapping= contain:
|
The =idp-mapping= contain:
|
||||||
|
@ -269,7 +272,12 @@ the idp-mapping to all thoses users.
|
||||||
|
|
||||||
Then we search the DB for matches of the idp-mappings:
|
Then we search the DB for matches of the idp-mappings:
|
||||||
|
|
||||||
1. 0 occurence, this is a new unknown user
|
1. 0 occurence, this is a new unknown user => Present Org's creation page
|
||||||
|
=> create the org and the user.
|
||||||
|
2. 1 occurence, directly login the user to it's single known account
|
||||||
|
3. >1 occurence, display the account selection page
|
||||||
|
|
||||||
|
[[attachment:_20210416_150439Screenshot%202021-04-16%20at%2015.04.30.png]]
|
||||||
|
|
||||||
* 3 - OAuth2 / OpendID Connect Provider
|
* 3 - OAuth2 / OpendID Connect Provider
|
||||||
* 4 - Specifc Cisco Usage
|
* 4 - Specifc Cisco Usage
|
||||||
|
|
Loading…
Reference in a new issue