journal/2021-04-16--12-27-13Z--iroh_auth_presentation.org
This commit is contained in:
parent
3395d0edd5
commit
93045bd675
1 changed files with 9 additions and 1 deletions
|
@ -256,6 +256,9 @@ We consider the IdP will manage the org (give an org-id, provide an user
|
|||
With CSA Migraiton should be deprecated.
|
||||
|
||||
* IROH-Auth Login Dance: For SXSO
|
||||
:PROPERTIES:
|
||||
:ID: dc5070c0-9040-4175-9a67-c85a21f65f35
|
||||
:END:
|
||||
|
||||
We generate the =idp-mapping= out of the =id_token=.
|
||||
The =idp-mapping= contain:
|
||||
|
@ -269,7 +272,12 @@ the idp-mapping to all thoses users.
|
|||
|
||||
Then we search the DB for matches of the idp-mappings:
|
||||
|
||||
1. 0 occurence, this is a new unknown user
|
||||
1. 0 occurence, this is a new unknown user => Present Org's creation page
|
||||
=> create the org and the user.
|
||||
2. 1 occurence, directly login the user to it's single known account
|
||||
3. >1 occurence, display the account selection page
|
||||
|
||||
[[attachment:_20210416_150439Screenshot%202021-04-16%20at%2015.04.30.png]]
|
||||
|
||||
* 3 - OAuth2 / OpendID Connect Provider
|
||||
* 4 - Specifc Cisco Usage
|
||||
|
|
Loading…
Reference in a new issue