Homepage
Documents
Communities
Projects
Resources
Description: This workflow describes how the IL will provide a mechanism to allow single-sign-on (SSO) to be enables for the user of the management application for the HIE registries (Note: This does not include user from the PoS applications, these application will be responsible for managing their users locally).
Sponsor: Ryan Crichton, with the IL community
Status: proposed
Last Modified: 19/02/2014
Referenced Standards and APIs:
Ref | Interaction | Endpoint | Data | Transaction Specification |
---|---|---|---|---|
1 | Determines that the user should have access to manage a registry | policy | ||
2 | Registers the user with the IL via the web UI | The users details (email, name, department, job title) | Via the Web UI | |
3 | Send an email allowing them to complete registration and set a password | A registration link | ||
4 | User visits the management application to login | OpenID authentication request | ||
5 | The application redirects the user to the IL to login | OpenID authentication request | ||
6 | The user logs into using the IL | OpenID authentication response | ||
7 | The IL redirects the user back to the management application with a claimed identity | OpenID authentication response | ||
8 | The uses accesses the managment application using the claimed identity | OpenID verifing assertions |