Versions Compared

Old Version 3

changes.mady.by.user Former user

Saved on

compared with

New Version Current

changes.mady.by.user Former user

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Comment: Migrated to Confluence 4.0

This document describes a mockup of the "with browser add-on" use case within the NIH Scenario .

Flow

  1. Alice clicks on a "sign in" button on the NIH site
    1. The addon reads some data that tells it stuff like:
    2. That the site is an RP for OpenID, IMI and SAML protocols (unusually it does not support username/password!)
    3. The list of attributes that the site wishes to receive and for each attribute the list of authorities that the RP trusts. In our case the site is going to request only a non-correlateable identifier (aka an IMI "PPID", OpenID "directed" identity, SAML "persistent" NameID) and that it trusts only Yahoo, AOL, Google, as well as Facebook, Equifax, Citigroup, Silicon Wave, Acxiom, and InCommon IdPs to issue this attribute
  2. The add-on displays a login window.
    1. It prominently shows the following accounts that could be used immediately (because Alice has these accounts and the NIH site accepts these accounts):
      1. Google
      2. Ohio State
      3. Yahoo
      4. Equifax
      5. AOL
    2. Its also shows accounts that Alice could use if she first registered with these IdPs
      1. Acxiom
      2. Wave Systems
      3. Citigroup
  3. Alice clicks on Google
  4. Alice authenticates to Google
  5. Alice agrees to share Google attributes with NIH

Mockups

...

Version 4 Revised Mockups

Home page

Image Added

Click Sign In

Image Added

Click What is this

Image Added

Mouse over Google

Image Added

Close button

Image Added

Nth time

Image Added

More options

Image Added

Nth time with Equifax

Image Added

Nth time other options

Image Added

...

Version 3

This document is a static mockup of Flow #1 within Use Case: Unmodified Browser, First Visit of the NIH Scenario. Version 3

Step #1: Alice clicks a Sign-in button (not shown)

Step #2: The add-on displays this "account selector" window:

  • Shows these two kinds of buttons:
    • (a) Representations of Alice's list of configured OpenIDs that are ON the RP's white list (shown WITH a blue outline)
    • (b) Representations of the rest of the RP's white list (shown WITHOUT a blue outlne) less those shown in (a)
  • The << and >> imply that there are yet other (b)-type IdPs
  • Alice's Facebook and Janrain OpenIDs and her PayPal infocards are all not shown in the account selector because the RP site doesn't include Facebook in its white list

Step #3: Alice clicks on Google.

The add-on now displays (hmm...since the add-on knows that Alice already has a Google account, it probably shouldn't show the "Don't have a Google Account?" text):

Step #4: Alice authenticates to Google

Alice types in here username & password and clicks "Sign in" (not shown)

Step #5: Alice agrees to share Google attributes with NIH