From e7296a12007ce56111da9161ffdf0285847fee1d Mon Sep 17 00:00:00 2001 From: Elisabeth-Ericsson <121795930+Elisabeth-Ericsson@users.noreply.github.com> Date: Tue, 30 Apr 2024 10:15:45 +0200 Subject: [PATCH] Update CAMARA-ICM-examples.md Fixed purpose value in examples to comply to w3C vocabulary and added examples on http responses and token request --- documentation/CAMARA-ICM-examples.md | 38 +++++++++++++++++++++++++--- 1 file changed, 34 insertions(+), 4 deletions(-) diff --git a/documentation/CAMARA-ICM-examples.md b/documentation/CAMARA-ICM-examples.md index 955a606f..0bffb1ed 100644 --- a/documentation/CAMARA-ICM-examples.md +++ b/documentation/CAMARA-ICM-examples.md @@ -35,6 +35,35 @@ GET /authorize? &redirect_uri=https%3A%2F%2Fclient.example.org%2Fcb HTTP/1.1 Host: server.example.com ``` +#### Successful response redirecting the user agent +(with line wraps within values for display purposes only) + +HTTP/1.1 302 Found +Location: https://client.example.com/cb? +code=SplxlOBeZQQYbYS6WxSbIA& +state=af0ifjsldkj + +#### Access token request + +POST /token HTTP/1.1 +Host: server.example.com +Content-Type: application/x-www-form-urlencoded +grant_type=authorization_code&code=SplxlOBeZQQYbYS6WxSbIA + &redirect_uri=https%3A%2F%2Fclient%2Eexample%2Ecom%2Fcb + &client_assertion_type=urn%3Aietf%3Aparams%3Aoauth%3Aclient-assertion-type%3Ajwt-bearer + &client_assertion=eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCJ9.eyJpc3Mi...... + +#### Successful response +HTTP/1.1 200 OK +Content-Type: application/json +{ + "access_token": "SlAV32hkKG", + "token_type": "Bearer", + "refresh_token": "8xLOxBtZp8", + "expires_in": 3600, + "id_token": "eyJhbGciOiJSUz....", + "scope": "openid dpv:FraudPreventionAndDetection#check-sim-swap dpv:FraudPreventionAndDetection#retrieve-sim-swap-date" +} #### RFC9101 request object @@ -46,6 +75,7 @@ Host: server.example.com "client_id": "s6BhdRkqt3", "redirect_uri": "https://client.example.org/cb", "scope": "openid dpv:FraudPreventionAndDetection#check-sim-swap dpv:FraudPreventionAndDetection#retrieve-sim-swap-date", + "sub" : "Z5O3upPC88QrAjx00dis", "state": "af0ifjsldkj", "nonce": "n-0S6_WzA2Mj", "max_age": 86400 @@ -81,7 +111,7 @@ Host: server.example.com "username": "jdoe", "scopes": { "check-sim-swap": ["dpv:FraudPreventionAndDetection"], - "retrieve-sim-swap-date": ["dpv:LegitimateInterest"] + "retrieve-sim-swap-date": ["dpv:FraudPreventionAndDetection"] }, "sub": "Z5O3upPC88QrAjx00dis", "aud": "https://protected.example.net/resource", @@ -114,7 +144,7 @@ Host: server.example.com "response_type": "code", "client_id": "s6BhdRkqt3", "redirect_uri": "https://client.example.org/cb", - "scope": "openid dpv:FraudPreventionAndDetection#check-sim-swap dpv:LegitimateInterest#retrieve-sim-swap-date", + "scope": "openid dpv:FraudPreventionAndDetection#check-sim-swap dpv:IdentityAuthentication#retrieve-sim-swap-date", "state": "af0ifjsldkj", "nonce": "n-0S6_WzA2Mj", "max_age": 86400 @@ -130,7 +160,7 @@ Host: server.example.com "active": true, "client_id": "s6BhdRkqt3", "username": "jdoe", - "scope": "dpv:FraudPreventionAndDetection#check-sim-swap dpv:LegitimateInterest#retrieve-sim-swap-date", + "scope": "dpv:FraudPreventionAndDetection#check-sim-swap dpv:IdentityAuthentication#retrieve-sim-swap-date", "sub": "Z5O3upPC88QrAjx00dis", "aud": "https://protected.example.net/resource", "iss": "https://server.example.com/", @@ -150,7 +180,7 @@ Host: server.example.com "username": "jdoe", "scopes": { "check-sim-swap": ["dpv:FraudPreventionAndDetection"], - "retrieve-sim-swap-date": ["dpv:LegitimateInterest"] + "retrieve-sim-swap-date": ["dpv:IdentityAuthentication"] }, "sub": "Z5O3upPC88QrAjx00dis", "aud": "https://protected.example.net/resource",