Authentication Flow (AppID, backend, frontend)¶
The following diagram display a simplified authentication flow in the serverless environment. The numbering visualizes the simplified invocation sequence.
- The web application URL is invoked by an user in the browser and the browser loads the web application from the Nginx server.
- The web application redirects the user to the App ID login page and he inserts his ID and password.
- App ID validates the user and the application invocation.
- App ID provides an
id token
andaccess token
in a JWT format. - The web application uses the
access token
to invoke the secured backend endpoint. - The backend verifies if the token is valid.
- The backend access securely the Postgres database with a user, password and certificate information.