towk/opaal
1
0
Fork 0
mirror of https://github.com/davidallendj/opaal.git synced 2025-12-20 03:27:02 -07:00
Code Issues Projects Releases Packages Wiki Activity Actions

Updated README.md

Browse source
This commit is contained in:
David Allen 2024-03-05 21:20:30 -07:00
parent 56e3f2244d
commit d72fa3bda5
No known key found for this signature in database
GPG key ID: 1D2A29322FBB6FCB
1 changed files with 4 additions and 4 deletions
Download patch file Download diff file Expand all files Collapse all files

8
README.md
View file

@ -30,10 +30,10 @@ These commands will create a default config, then start the login process. Maybe
3. Authorize application registered with IdP 3. Authorize application registered with IdP
4. IdP redirects to specified redirect URI 4. IdP redirects to specified redirect URI
5. Opaal completes the rest of the authorization flow by... 5. Opaal completes the rest of the authorization flow by...
- ...making a request to the IdP with the authorization code to receive bearer/ID token - ...verifying the authenticity of the ID token from identity provider with its JWKS
- ...making a request to a user identity and management server to create a new identity (optional) - ...adds itself as a trusted issuer to the authorization server with it's own JWK
- ...making a request to the authorization server to trust the identity provider (optional) - ...creates a new signed JWT to send to the authorization server with the `urn:ietf:params:oauth:grant-type:jwt-bearer` grant type
- ...making a request to the authorization server to receive an access token (optional) - ... returns an access token that can be used by services protected by the authorization server
*After receiving the ID token, the rest of the flow requires the appropriate URLs to be set to continue. *After receiving the ID token, the rest of the flow requires the appropriate URLs to be set to continue.