X-Git-Url: https://gerrit.o-ran-sc.org/r/gitweb?a=blobdiff_plain;f=invoker%2Fdocs%2Fsecurityobtaintoken.plantuml;fp=invoker%2Fdocs%2Fsecurityobtaintoken.plantuml;h=0e25370526fc16c1e70c9e4438b7553e95ea9cd9;hb=0c2f0bcf1141d3aa806a66be061772298a347254;hp=0000000000000000000000000000000000000000;hpb=3b4872ef30e14d64e7d73ff8f6c598e6c8fb1723;p=nonrtric%2Fplt%2Fsme.git

diff --git a/invoker/docs/securityobtaintoken.plantuml b/invoker/docs/securityobtaintoken.plantuml
new file mode 100644
index 0000000..0e25370
--- /dev/null
+++ b/invoker/docs/securityobtaintoken.plantuml
@@ -0,0 +1,30 @@
+@startuml Obtain Access Token
+actor InvokerClient
+
+box "CAPIF Internal"
+participant capifcore
+participant securityservice
+participant invokerservice
+participant publishservice
+participant providermanager
+end box
+participant keycloak
+
+alt#LightBlue #LightBlue Security Service
+        InvokerClient->securityservice: Request token\n for service with\n AccessTokenReq
+        securityservice->invokerservice: Is invoker registered?
+        invokerservice->securityservice: Ok
+        securityservice->keycloak: Is secret valid?
+        keycloak->securityservice: Ok
+        alt#Salmon #Salmon Check scope
+            securityservice->providermanager: Is function providing\n service registered?
+            providermanager->securityservice: Ok
+            securityservice->publishservice: Is service published?
+            publishservice->securityservice: Ok
+        end
+        securityservice->keycloak: get token
+        keycloak->securityservice: JWT token
+        securityservice->InvokerClient: AccessTokenRsp\n with token
+    end
+
+@enduml
\ No newline at end of file