...
- Red corresponds to application-specific flows for the OIDC Client
- Blue corresponds to standardized flows over the REST API according to OIDC/OAuth2 standards.
- Black corresponds to specific flows for the OIDC Provider from BankID allowing OIDC Clients to customize GUI experience
- Yellow corresponds to specific flows for the designated IDP.
- Green corresponds to specific flows for the TINFO Service in this particular example.
The message flow for access to other Resources Servers Protected Resource than TINFO, eg. PSD2 PSD2 access, follows a similar pattern as the green flows shown in the figure.
An OIDC Client does by-default only involves standardized flows (blue color) over the REST API with the OIDC Provider. The exception is if the OIDC Client wants to customize GUI handling. Any custom GUI component must integrate with another REST API (black color) specific for the OIDC Provider from BankID. A custom GUI component must take care of proper integration with each of the supported IDP options (yellow color) and also any involved Resource Server.
...