| Warning |
|---|
HUOM HUOM!! Tämä sivu on piilotettu toistaseksi julkisista, muuta julkiseksi kun valmis |
...
A person or company (the “Principal”) has created an authorisation at Suomi.fi, granting the User (the “Delegate”) ability to do something.
The User has signed in to your Service using OIDC. You have their access token.
At this time the knowledge of the authorisations Authorisation data is located only at the suomi.fi service. It needs to be retrieved from thereThe User must transfer it to the ID service.
Create
...
clickable buttons to retrieve the Authorisations
TODO
...
On behalf of another person
Create a form which makes a POST request to the URL https://id.example.com/api/suomi.fi/valtuudet/hpa with form parameters:
Form parameter | Value |
|---|---|
| User’s access token |
| URI where user will be directed after successfully retrieving the Authorisations |
| URI where user will be directed if they cancel the operation or it fails for other reasons. |
On behalf of a company
Use the URL https://id.example.com/api/suomi.fi/valtuudet/ypa, otherwise works the same as above.
Have the User activate the
...
buttons in their web browser
Show the link buttons to the user as a clickable link or button, User and instruct the User to activate iton of them.
User experience after clicking the
...
button
The User’s web browser will go through the ID service, then be redirected to suomi.fi pages where they will likely have to identify themselves using bank credentials or other means.
...
They will be redirected to the ID service where they will see another confirmation dialog. [WHY????]
Finally they will be redirected to the success URL.
...