PRODA Provider Digital Access B 2 G Process
PRODA Provider Digital Access
B 2 G Process Or Device Page 2
B 2 G Process Page 3
Reference Source OAuth 2. 0 Hardt, D. , “The OAuth 2. 0 Authorization Framework, ” Jones, M. and D. Hardt, “The OAuth 2. 0 Authorization Framework: Bearer Token Usage, ” JWK Jones, M, “JSON Web Key (JWK)”, JWT Jones, M. , Bradley, J. , Sakimura, N “JSON Web Token (JWT)”, JWS Jones, M. , Bradley, J. , and N. Sakimura, “JSON Web Signature (JWS), ” RFC 7515, May 2015 JWA Jones, M “JSON Web Algorithms (JWA)”, RFC 7518, May 2015 RFC 7159 https: //tools. ietf. org/html/rfc 7519 Description the content of an access token. JWT Profile Client Authentication Page 4 Jones, M, Campbell, B, Mortimore, C “JSON Web Token (JWT Profile for OAuth 2. 0 Client Authentication and Authorization Grants”, RFC 7523, May 2015
B 2 G Process: Activation Linking is accomplished by activating the Software. Activating is linking the OTSC or Activate Code and the Public Key to the SI. Page 5
SAMPLE - ACTIVATE DEVICE REQUEST PUT https: //vnd. proda. humanservices. gov. au/piaweb/api/b 2 b/v 1/devices/test-device/jwk HTTP/1. 1 Content-Type: application/json dhs-audit. Id. Type: http: //ns. humanservices. gov. au/audit/type/Provider dhs-subject. Id: 9646844092 dhs-product. Id: test-device dhs-audit. Id: test. App. Id dhs-message. Id: urn: uuid: 958 e 7 c 71 -4 a 40 -4 f 61 -aa 5 d-65648 bd 0 f 444 dhs-correlation. Id: uuid: 92 f 6 d 9 d 9 -9 e 3 b-4 e 2 a-98 d 8 -a 52556476 cd 5 dhs-subject. Id. Type: http: //ns. humanservices. gov. au/audit/type/proda { "org. Id": "9646844092", "otac": "9 GY 1 uu. BUVx", "key": {"alg": "RS 256", "e": "AQAB", "n": "k. U 6 fe. QCLm 0 r_jzn_Jr. SVl. Fy. Mm 6 ISQot 8 s 654 KZDKv 4 Y 2 A 4 Py. Nh. B 6 n 2 Kl. NWp. F -PCf. BFPQo. Bz. Qvx. U 62 Kkj_Cw 4 Gj 5 u. DTMCGf. Xh. Lvk 5 tplhc. F 17 hvr. Vku 6 z. KFe. JHwafs. ZPK 1 RUQhiw 37 BFhdi. H 0 Kpm 3 Yu 3 Vgqq. Niy_f. DUv. JLFe h. PXTSOum. Czl. CHk. HYn. Ga 5 Sg 9 ec_naps_q. Kc. Iov. Jr. Qf 19 Dxd 7 J 7 VZNVc. Yf. LOqk 4 Sz 3 r. Fd. Jx. NRp. N 5 z 2 LU 802 Jgeyd. Fai. AH 2 Zomte 9 Ichm. RGA_h. R 66 Gxv 9 NJur. QIf. Pi. Fig 4 k 6 m. Jglk. Rl 4 KAFwuraw. SC 7 Gy. Jcn. Cpv. Fk. Za. QHWew 7 Js. Fr. FQ", "kty": "RSA", "use": "sig", "ki d": " test-device "} } Page 6
B 2 G Process: Authentication Page 7
SAMPLE - AUTHORISATION SERVICE REQUEST POST https: //vnd. proda. humanservices. gov. au/mga/sps/oauth 20/token HTTP/1. 1 Accept-Encoding: gzip, deflate Content-Type: application/x-www-form-urlencoded Content-Length: 666 Host: vnd. proda. humanservices. gov. au Connection: Keep-Alive User-Agent: Apache-Http. Client/4. 1. 1 (java 1. 5) grant_type=urn%3 Aietf%3 Aparams%3 Aoauth%3 Agrant-type%3 Ajwtbearer&assertion=ey. Jhb. Gci. Oi. JSUz. I 1 Ni. Is. Imtp. ZCI 6 In. Zhcm 9 u. LXQt. ZGlzcn. Vwd. G 9 y. In 0. ey. Jle. HAi. Oj. E 1 Mz. M y. Nzg 1 MTgs. In. N 1 Yi. I 6 In. Zhcm 9 u. LXQt. ZGlzcn. Vwd. G 9 y. Iiwi. YXVk. Ijoia. HR 0 c. HM 6 XC 9 c. L 3 Byb 2 Rh. Lmh 1 b. WFuc 2 Vydmlj. ZXMu. Z 292 Lm. F 1 Iiwia. XNz. Ijoi. OTY 0 Njg 0 NDA 5 Mi. Is. Imlhd. CI 6 MTUz. Mz. I 3 ODQ 1 OH 0. U 8 kr. EOV 3 v 5 q. D Dxq. Ki. JPYp 69 NLOjdcd. BS 0 DLVVk. EF 6 Hq. LRTf. Lpji. R 7 WMT 7 Hojfc 1 Ohx. Mj 8 SKdfc 4 HZKndjw. PVal. HZGk 8 Rcaa. Qpfu mi 9 Iz. QW 6 Mrj. EL 1 LGg. RPAi. VI 4 w. Q 6 Lr. VBb. Nk. Lgg. NXCSm. E 081 gjfej. Ul. Fbqq 0 r. LQsg 9 HFPNHjc 9 ghc 6 kf. VYklx. R oep. KX 5 h. Ve 9 c. Jq 9 c. Iphi 20 s 7 m 23 kjj. FFOXa. H_w. HFH 5 hz. Bt. PZrp. Cs 2 TO 1 vi 6 Um 1 Ht. V 80_g. B_t. Hc. CMrj. DV 57 Jq. Wz. Esgg 95 j. N_gc. WVd. Fd 4 g. Fw 3 Cq. KAXBwb. GGZGXunam. W 6 I 7 dj. NZZv. MZp. Jj. Gs. U 99 CDT 6 O 5 Cvg. Qyxlg&client_id=Vendor. Client 03 Page 8
SAMPLE - AUTHORISATION SERVICE REQUEST (cont…) Encoded: ey. Jhb. Gci. Oi. JSUz. I 1 Ni. Is. Imtp. ZCI 6 In. Zhcm 9 u. LXQt. ZGlzcn. Vwd. G 9 y. In 0. ey. Jle. HAi. Oj. E 1 Mz. My Nzg 1 MTgs. In. N 1 Yi. I 6 In. Zhcm 9 u. LXQt. ZGlzcn. Vwd. G 9 y. Iiwi. YXVk. Ijoia. HR 0 c. HM 6 XC 9 c. L 3 Byb 2 Rh. Lmh 1 b. WFuc 2 Vydmlj. ZXMu. Z 292 Lm. F 1 Iiwia. XNz. Ijoi. OTY 0 Njg 0 NDA 5 Mi. Is. Imlhd. CI 6 MTUz. Mz. I 3 ODQ 1 OH 0. U 8 kr. EOV 3 v 5 q. DDxq. Ki. JPYp 69 NLOjdcd. BS 0 DLVVk. EF 6 Hq. LRTf. Lpji. R 7 WMT 7 Hojfc 1 Ohx. Mj 8 SKdfc 4 HZKndjw. PV al. HZGk 8 Rcaa. Qpfumi 9 Iz. QW 6 Mrj. EL 1 LGg. RPAi. VI 4 w. Q 6 Lr. VBb. Nk. Lgg. NXCSm. E 081 gjfej. Ul Fbqq 0 r. LQsg 9 HFPNHjc 9 ghc 6 kf. VYklx. Roep. KX 5 h. Ve 9 c. Jq 9 c. Iphi 20 s 7 m 23 kjj. FFOXa. H_w. H FH 5 hz. Bt. PZrp. Cs 2 TO 1 vi 6 Um 1 Ht. V 80_g. B_t. Hc. CMrj. DV 57 Jq. Wz. Esgg 95 j. N_gc. WVd. Fd 4 g. Fw 3 Cq. KAX Bwb. GGZGXunam. W 6 I 7 dj. NZZv. MZp. Jj. Gs. U 99 CDT 6 O 5 Cvg. Qyxlg Page 9 Decoded: { "alg": "RS 256", "kid": "test-device " } { "sub": "test-device ", "aud": "https: //proda. humanservices. gov. au", "iss": "9646844092", "iat": 1533278458 "exp": 1533278518, }
B 2 G Process: Refresh Page 10
PUT https: //test. 5. rsp. humanservices. gov. au/piaweb/api/b 2 b/v 1/orgs/9646844092/devices/vaadwaur-pulsewave/jwk HTTP/1. 1 Accept-Encoding: gzip, deflate Content-Type: application/json Authorization: Bearer ey. Jra. WQi. Oi. JWcms 3 Mkhj. Wjd. MYm. FUd. WFkd. Tl 3 Nn. ZPYlk 5 b. El. UTF 80 TEJ 0 Yj. VPe. Wdq. V 3 BFIiwi. YWxn. Ijoi. Ul. My. NTYif. Q. ey. Jzd. WIi. Oi. I 5 Nj. Q 2 ODQ 0 MDky. Iiwi. YXVk. Ijoi. UFJPREEu. VU 5 BVFRFTk. RFRC 5 CMk. Ii. LCJpc 3 Mi. Oi. Jod. HRwczov. L 3 Byb 2 Rh. Lmh 1 b. WFuc 2 Vydmlj. ZXM u. Z 292 Lm. F 1 Iiwi. ZXhw. Ijox. NTE 5 Nzgx. OTU 4 LCJp. YXQi. Oj. E 1 MTk 3 Nzgz. NTh 9. a. M 6 gf 8 l. TLf. ZVV 08 Xrfc_7 orjn. Ms 6 NQ 9 dk. OHq. P_v. CKd 60 rw 7 Q_ps 0 z_ph. A 4 q. JNi. Mk. Z-lxn. B 96 GLe. Kl. SRy. Uo. G 5 c. OAfqk. MM 3 Mr. OAH 0 Ygtyd 4 JKSCtm. Hlf 0 x. Ac. XOVR 63 Bj. WFXEy. MHEf. F 3 y. Iv. FB 33 Ve 6 i. A 1 O 86 dqx. Bvi 9 DIm. Jbedklz. XHz. Gx 1 XXJr. CLb 8 -x. Im. Hz. E 8 zx 4_SDj. Uus. XBeo 3 m. R 2 SASTIp. IGsf. Cl 8 m 03 o. Cv. ORIWa. CNtsdxj. Zj 5 xi. Fo. AUPBm. F 9 M 4 W 4 b. N 2 Jm 0 CSAz. JEMG 3 o. VUqnmgy. VMUwg. GWC 9 y 44121 w. Mvd. Amp. Xv. Y-j 2 h. G 32 Yk. CR-I-V 9 KQlbq 0 SKv 3 y. Mtw dhs-audit. Id. Type: http: //ns. humanservices. gov. au/audit/type/provider dhs-subject. Id: test-device dhs-product. Id: test. App. Id dhs-audit-auth. Person. Id: user 001 dhs-audit. Id: 9646844092 dhs-message. Id: 644 e 70 a 4 -62 f 5 -4 dae-9834 -a 5 afd 0 e 49426 dhs-correlation. Id: d 3620 ecb-5231 -4764 -b 45 a-5229387174 fc dhs-subject. Id. Type: http: //ns. humanservices. gov. au/audit/type/provider {"kty": "RSA", "e": "AQAB", "use": "sig", "kid": "testdevice", "alg": "RS 256", "n": "h. MCx 7 cdp 90980 Nf 6 wz 5 Ukgn 8 HVNwh 1 KHCx. Ffg. W 68 NBBY 802 k. EKqo. H 1 Yo 2 PWj. Afo. Xf. Y__Ro. Mb. Mk 4 x 5 mw. TQ 7 r. YZ 4 GWZi. T_xsn 1 t. WBIpypw. RYzvwt 4 Svecn. Pwh 55 Qxn 7 HO 1 FTJd. GG 1 HOo. Agp. Hf. Flsx. Puqq. MWy. SOyh 8 uw. Hwfs. Ab. GHx 0 nxa. CI 1 g. F 5111 x 8 Jt. AXB 18 Tbt. Pey. Yz. GULMqt. Ov 7 Wfo 0 Huf. We. CDHlcu. T 0 o. UAZ 0 Up 9 HA_BHQSqts 6 nid. Br 5 Jsa 8 t. Fkk. O 2 ECd. IZLRZ 9 r. Vq. J 70 mb. Pw 6 KW 6 CDq. OXPo. TS 2 ug. Inp. W 9 JCn. DB 4 x. Bktl. I 6 us. K 5 Bzr. XUxs. Fe. Yop 0 YAAtkz. HT 8 w"} Page 11
Page 12
Question Time Page 13
- Slides: 13