hide footbox
autonumber
participant "Client" as cli
participant "SSO" as sso
participant "LDAP" as idp
participant "Knox" as gw
participant "Hadoop" as svc
activate cli
cli -> sso: authenticate.POST(username,password)
activate sso
sso -> idp: authenticate(credentialsusername,password)
sso -> idp: lookupGroups():groups
cli <-- sso: JWT bearer token jwt-bearer-token[username,groups]
deactivate sso
cli -> gw: cluster.service.GET(jwt-bearer-token)
activate gw
gw -> svc: service.GET(username)
gw <-- svc: results
cli <-- gw: results
deactivate ssogw
deactivate cli
|