nuts-foundation
diff --git a/‎docs/ARCHITECTURE.md‎
Lines changed: 13 additions & 1 deletion b/‎docs/ARCHITECTURE.md‎
Lines changed: 13 additions & 1 deletion
diff --git a/‎docs/auth-sd.puml‎ renamed to ‎docs/authentication-sd.puml‎ b/‎docs/auth-sd.puml‎ renamed to ‎docs/authentication-sd.puml‎
diff --git a/‎docs/dataexchange-authorization-sd.puml‎
Lines changed: 80 additions & 0 deletions b/‎docs/dataexchange-authorization-sd.puml‎
Lines changed: 80 additions & 0 deletions
diff --git a/‎docs/images/auth-sd.svg‎ renamed to ‎docs/images/authentication-sd.svg‎ b/‎docs/images/auth-sd.svg‎ renamed to ‎docs/images/authentication-sd.svg‎
diff --git a/‎docs/images/dataexchange-authorization-sd.svg‎
Lines changed: 1 addition & 0 deletions b/‎docs/images/dataexchange-authorization-sd.svg‎
Lines changed: 1 addition & 0 deletions
diff --git a/‎docs/images/structurizr-DataExchange_ComponentDiagram.svg‎
Lines changed: 1 addition & 1 deletion b/‎docs/images/structurizr-DataExchange_ComponentDiagram.svg‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎docs/images/structurizr-DataExchange_ContainerDiagram.svg‎
Lines changed: 1 addition & 1 deletion b/‎docs/images/structurizr-DataExchange_ContainerDiagram.svg‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎docs/images/structurizr-GF_Addressing_ComponentDiagram.svg‎
Lines changed: 1 addition & 1 deletion b/‎docs/images/structurizr-GF_Addressing_ComponentDiagram.svg‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎docs/images/structurizr-GF_Addressing_ContainerDiagram.svg‎
Lines changed: 1 addition & 1 deletion b/‎docs/images/structurizr-GF_Addressing_ContainerDiagram.svg‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎docs/images/structurizr-GF_Localization_ComponentDiagram.svg‎
Lines changed: 1 addition & 1 deletion b/‎docs/images/structurizr-GF_Localization_ComponentDiagram.svg‎
Lines changed: 1 addition & 1 deletion
@@ -11,6 +11,12 @@ This document details the inner design of the Knooppunt.
 
 ![structurizr-GF_Localization_ComponentDiagram.svg](images/structurizr-GF_Localization_ComponentDiagram.svg)
 
+## Authentication
+
+The following diagram shows how authentication is handled in the Knooppunt.
+
+![dataexchange-authorization-sd.svg](images/dataexchange-authorization-sd.svg)
+
 ## Handling inbound data requests
 
 External data requests are authenticated and authorized by the Knooppunt.
@@ -25,4 +31,10 @@ The Knooppunt acts as Authorization Server ("AS") and Policy Decision Point ("PX
 
 ### Implementation
 
-![structurizr-DataExchange_ComponentDiagram.svg](images/structurizr-DataExchange_ComponentDiagram.svg)
+![structurizr-DataExchange_ComponentDiagram.svg](images/structurizr-DataExchange_ComponentDiagram.svg)
+
+### Sequence diagram
+
+The following diagram shows how inbound data requests are handled:
+
+![dataexchange-authorization-sd.svg](images/dataexchange-authorization-sd.svg)
@@ -0,0 +1,80 @@
+@startuml
+title Data Exchange Authorization Sequence Diagrams
+
+box Local XIS - Data Holder (Bronhouder)
+    participant ehr as "EHR\n [ FHIR Server ]"
+    participant pip as "Policy Information Point\n [ TBD ]"
+    participant pdp as "Policy Decision Point\n[ Knooppunt ]"
+    participant pep as "Policy Enforcement Point\n[ NGINX ]"
+end box
+box Remote XIS - Data Requester (Afnemer)
+    participant remoteXIS as "FHIR Client/Server"
+end box
+
+== Referral (Verwijzing), e.g. eOverdracht ==
+activate ehr
+ehr -> pip : Record resource-level consent\nPOST /Consent\n  custodian, actor, provision
+activate pip
+    pip --> ehr : 201 Created
+deactivate pip
+ehr -> pip : Record patient-level consent\nPOST /Consent\n  custodian, actor, patient
+activate pip
+    pip --> ehr : 201 Created
+deactivate pip
+ehr -> remoteXIS : Notify\nPOST Task/123
+activate remoteXIS
+remoteXIS --> ehr : 200 OK
+deactivate ehr
+
+group Read Task
+    remoteXIS -> pep : GET Task/123\nscope=eOverdracht-server
+    activate pep
+    pep -> pdp: Evaluate access request\nPOST v1/data/main
+    note right: 'main' policy includes all use case-policies
+    activate pdp
+    loop Evaluate scope-mapped-policy
+        group CapabilityStatement Policy
+        pdp -> pdp : Evaluate
+            activate pdp
+                pdp -> pip : GET /CapabilityStatement\n ?url=canonical-url
+                activate pip
+                    pip --> pdp : CapabilityStatement
+                deactivate pip
+                pdp -> pdp : Check FHIR operation v.s.\nCapabilityStatement
+                pdp --> pdp : Permit/Deny
+            deactivate
+        end group
+        pdp --> pep : If <i>Deny</i>,\nend evaluation
+        group Resource-Level Policy
+        pdp -> pdp : Evaluate
+            activate pdp
+                pdp -> pip : GET /Consent\n  ?data=Task/123\n  &custodian=URA|9876\n  &actor=URA|4321
+                activate pip
+                    pip --> pdp : 200 OK\n(Consents)
+                deactivate pip
+                pdp -> pdp : Verify consent\n(period, t.b.d.)
+                pdp --> pdp : Permit/Deny
+            deactivate
+        end group
+        pdp --> pep : If <i>Permit</i>,\nend evaluation
+        group Patient-Level Policy\n(if 'patient' input parameter exists)
+                pdp -> pdp : Evaluate
+                    activate pdp
+                        pdp -> pip : GET /Consent\n  ?data=Task/123\n  &custodian=URA|9876\n  &actor=URA|4321
+                        activate pip
+                            pip --> pdp : 200 OK\n(Consents)
+                        deactivate pip
+                        pdp -> pdp : Verify consent\n(period, t.b.d.)
+                        pdp --> pdp : Permit/Deny
+                    deactivate
+                end group
+        pdp --> pep : Permit/Deny
+    end group
+    deactivate pdp
+    pep --> remoteXIS : 200 OK\n(Task)
+    deactivate
+end group
+
+deactivate remoteXIS
+
+@enduml