Skip to content

Implementation Details

Jump to bottom Edit New page
YuriyZ edited this page Aug 12, 2019 · 3 revisions

Implementation Details

When we call oxd /uma-rs-check-access what is happening between oxd and GS? which GS endpoint is called? where it is documented in UMA specs?

  1. match resource for given path and HTTP method (see https://docs.kantarainitiative.org/uma/wg/rec-oauth-uma-federated-authz-2.0.html#reg-api)
  2. introspects RPT (https://docs.kantarainitiative.org/uma/wg/rec-oauth-uma-federated-authz-2.0.html#introspection-endpoint)
  3. if we have right permission -> grant access
  4. if we don’t have permission in RPT -> register permission and return back ticket (https://docs.kantarainitiative.org/uma/wg/rec-oauth-uma-federated-authz-2.0.html#rfc.section.4.1)
Add a custom footer
Add a custom sidebar
Clone this wiki locally