Domains / Security and Compliance/ API Contract

Authentication API

Logical API contract for user authentication, token issuance, SSO federation, and SCIM-based user provisioning.

API Contract Application active

Defines the logical contract for all authentication-related operations. Covers OIDC token flows (authorization code, client credentials, refresh), SAML assertion processing, MFA challenge-response, and SCIM 2.0 user and group provisioning.

Relationships

Realizes outgoing 3
Target Element Element Type
Identity and Access Management Component
Auth Token Issue API Endpoint
SCIM Users Provision API Endpoint
Served by incoming 1
Source Element Element Type
Identity and Access Management Component

Architecture Context

Diagrams

Not yet referenced in any diagram

Properties

Type API Contract
Layer Application
Domain Security and Compliance
Status active
Owner Security Team

Additional Metadata

Archimate Type application-service
Ddd Type Domain Service
Togaf Type Information System Service
Emm Type Conceptual IS Service

Meta Model

Business
Organization
Application current
Technology

Actions