From 25bb040c39b5e57aeec27db78633976fe6fac394 Mon Sep 17 00:00:00 2001
From: Ezequiel Valencia <casualcucumber59@gmail.com>
Date: Fri, 15 Nov 2024 11:12:42 -0500
Subject: [PATCH] Sequence Diagram of Token Retrieval Procedure

---
 diagrams/Java Client OIDC Flow.puml | 60 +++++++++++++++++++++++++++++
 1 file changed, 60 insertions(+)
 create mode 100644 diagrams/Java Client OIDC Flow.puml

diff --git a/diagrams/Java Client OIDC Flow.puml b/diagrams/Java Client OIDC Flow.puml
new file mode 100644
index 0000000000..427d03877b
--- /dev/null
+++ b/diagrams/Java Client OIDC Flow.puml	
@@ -0,0 +1,60 @@
+@startuml Login
+'https://plantuml.com/sequence-diagram
+
+title VCell App OIDC Authentication
+
+autonumber
+box Local Machine #LightBlue
+control "Local Host"
+actor VCell
+participant Browser
+end box
+
+entity Auth0
+
+== Gather Information and Prepare ==
+note over Auth0: For this to work, the callback URL "localhost" must\nbe placed as and accepted callback URL in Auth0
+note over "Local Host": Only used to be a listening \nendpoint for Auth0's redirection
+
+VCell -> Auth0: Request OIDC Metadata
+Auth0 --> VCell: Return OIDC Metadata
+
+activate VCell
+VCell -> VCell: Find an open port
+VCell -> VCell: Create code verifier
+VCell -> VCell: Create the authorization request URI with challenge code,\nscopes, clientID, redirect URI
+VCell -> "Local Host": Create local host server listening\nfor Auth0 callback.
+deactivate VCell
+
+== Make Requests ==
+
+VCell -> Browser: Open the authorization request URI in the users browser
+
+
+group Not Logged In vs. Logged In
+else Not Logged In
+Browser -> Auth0: Request login/authorization
+Auth0 --> Browser: Display Auth0 Login Screen
+Browser -> Auth0: Authenticate
+Auth0 --> Browser: Redirect to local host\nwith exchange code
+else Logged In
+Browser -> Auth0: Send cookies
+Auth0 --> Browser: Redirect to local host\nwith exchange code
+end
+
+
+Browser --> "Local Host": Receive exchange code
+"Local Host" -> VCell: Process exchange code
+VCell -> Auth0: Give exchange code with previously created challenge code
+activate Auth0
+Auth0 -> Auth0: Verify the challenge code
+Auth0 --> VCell: Receive ID, access, and refresh token
+deactivate Auth0
+
+VCell -> VCell: Create an HTTP client with tokens, that automatically \nrefreshes access token
+
+
+
+
+
+@enduml
\ No newline at end of file