REFRESH_TOKEN ergänzt

src/plantuml/SequenceDiagram.FHIR-Directory.psearch_auth.puml

@@ -68,28 +68,39 @@ deactivate VClient
 VzdAuth->sekIDP++: AUTH_CODE
 sekIDP-->VzdAuth: ID_TOKEN, (ACCESS_TOKEN)
 deactivate sekIDP
-VzdAuth->VzdAuth: Erzeuge search-accesstoken
+VzdAuth->VzdAuth: Erzeuge search-ACCESS_TOKEN & REFRESH_TOKEN
 
 end
 
-VzdAuth-->VClient: Response AUTHORIZATION REQUEST (search-accesstoken)
+VzdAuth-->VClient: Response AUTHORIZATION REQUEST (search-ACCESS_TOKEN & REFRESH_TOKEN)
 deactivate VzdAuth
 deactivate VzdAuth
 
 == ...fachlicher flow... ==
 
-VClient -> fp: GET /psearch?... (Auth Header mit\nsearch-accesstoken)
+VClient -> fp: GET /psearch?... (Auth Header mit\nsearch-ACCESS_TOKEN)
 activate fp
-fp -> fp: prüfe search-accesstoken
+fp -> fp: prüfe search-ACCESS_TOKEN
 
-alt search-accesstoken is valid
+alt search-ACCESS_TOKEN is valid
 fp -> fd: GET /?...
 activate fd
 fd --> fp: HTTP 200 OK\n(Result Body json)
 deactivate fd
 fp --> VClient: HTTP 200 OK (Result Body json)
-else search-accesstoken is invalid
+else search-ACCESS_TOKEN is invalid
 fp --> VClient: HTTP 401
 deactivate fp
 end
+
+== ...search-ACCESS_TOKEN abgelaufen... ==
+
+VClient->VzdAuth++: REFRESH_TOKEN
+VzdAuth->VzdAuth: Prüfe REFRESH_TOKEN
+VzdAuth->VzdAuth: Erzeuge search-ACCESS_TOKEN & REFRESH_TOKEN
+
+VzdAuth-->VClient: Response (search-ACCESS_TOKEN & REFRESH_TOKEN)
+deactivate VzdAuth
+deactivate VzdAuth
+
 @enduml