Last active
February 16, 2016 21:31
-
-
Save aaronbuchanan/aeef9b96a3413130d71f to your computer and use it in GitHub Desktop.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| TheDevOpsFactory.com | |
| =================== | |
| ### Site Architecture & Request Flow | |
| TheDevOpsFactory.com is composed of a statically compiled Single Page Application (SPA) front-end responding to / routes, and a .NET back-end that responds to /api and /login routes. The .NET application is a proxy to DVLUP apis which requires users to authenticate with MSA's Live.com login. | |
| ```sequence | |
| Users->SPA: GET / | |
| SPA-->Users: Render HTML Response | |
| SPA->.NET App: <any /api request requiring auth> | |
| .NET App->SPA: 401 response | |
| Note right of SPA: User is prompted to log in... | |
| SPA->.NET App: Client-side redirect to /login | |
| .NET App->MSA Login: Server-side redirect to MSA | |
| Note left of MSA Login: User logs in... | |
| MSA Login->.NET App: User Ticket | |
| Note right of .NET App: Extract PUID via RPS & create JWT | |
| .NET App->SPA: Redirect to SPA w/JWT as URL param | |
| SPA->.NET App: GET, POST, or PUT to /api/... | |
| .NET App->DVLUP API: Proxy request to DVLUP API w/auth headers | |
| DVLUP API-->.NET App: JSON Response | |
| .NET App-->SPA: Sanitized JSON Response | |
| ``` | |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment