Skip to content
Snippets Groups Projects
Normal view Permalink
authentication.md 877 B
Newer Older
  • Learn to ignore specific revisions
    • Hugo NOUTS's avatar
    fix typos  
    Hugo NOUTS committed
    1 
    # Authentication
    Rémi PAILHAREY's avatar
    Feat/doc ecolyo agent
    Rémi PAILHAREY committed
    2 3 4 
    
The protocol used to login is OAuth2 with the Authorization Code grant type ([more info](https://auth0.com/docs/authorization/flows/authorization-code-flow))
    Hugo NOUTS's avatar
    fix typos  
    Hugo NOUTS committed
    5 
    The only routes that can be accessed without authentication are /monthlyReport/year/month and /monthlyReport with GET.
    Bastien DUMONT's avatar
    refactor docs  
    Bastien DUMONT committed
    6 
    They will return all the different sections of a specific or the current newsletter in a single JSON.
    Rémi PAILHAREY's avatar
    feat(backoffice): role documentation  
    Rémi PAILHAREY committed
    7 8 9 10 11 12 13 14 15 
    
## Roles

The Identity Provider used is Sign&Go and the list of person able to log in Ecolyo-Agent are managed in [MIM](https://mim.grandlyon.fr) (only accessible on Mercure network)

This backoffice is meant to be used only by two types of persons :

- the animators of Ecolyo: they edit the newsletters, the fluid prices and the content of warning pop-ups.
- the administrators of Ecolyo: they can do all of the above and also view and search for SGE consents.