From 14b02d8dee87f9283e1e42c87d86542edde76e9b Mon Sep 17 00:00:00 2001
From: gem-uhe <85994882+gem-uhe@users.noreply.github.com>
Date: Tue, 28 Nov 2023 16:04:00 +0100
Subject: [PATCH] =?UTF-8?q?REFRESH=5FTOKEN=20erg=C3=A4nzt?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 ...ceDiagram.FHIR-Directory.psearch_auth.puml | 23 ++++++++++++++-----
 1 file changed, 17 insertions(+), 6 deletions(-)

diff --git a/src/plantuml/SequenceDiagram.FHIR-Directory.psearch_auth.puml b/src/plantuml/SequenceDiagram.FHIR-Directory.psearch_auth.puml
index 6715a682..fc01ab93 100644
--- a/src/plantuml/SequenceDiagram.FHIR-Directory.psearch_auth.puml
+++ b/src/plantuml/SequenceDiagram.FHIR-Directory.psearch_auth.puml
@@ -68,28 +68,39 @@ deactivate VClient
 VzdAuth->sekIDP++: AUTH_CODE
 sekIDP-->VzdAuth: ID_TOKEN, (ACCESS_TOKEN)
 deactivate sekIDP
-VzdAuth->VzdAuth: Erzeuge search-accesstoken
+VzdAuth->VzdAuth: Erzeuge search-ACCESS_TOKEN & REFRESH_TOKEN
 
 end
 
-VzdAuth-->VClient: Response AUTHORIZATION REQUEST (search-accesstoken)
+VzdAuth-->VClient: Response AUTHORIZATION REQUEST (search-ACCESS_TOKEN & REFRESH_TOKEN)
 deactivate VzdAuth
 deactivate VzdAuth
 
 == ...fachlicher flow... ==
 
-VClient -> fp: GET /psearch?... (Auth Header mit\nsearch-accesstoken)
+VClient -> fp: GET /psearch?... (Auth Header mit\nsearch-ACCESS_TOKEN)
 activate fp
-fp -> fp: prüfe search-accesstoken
+fp -> fp: prüfe search-ACCESS_TOKEN
 
-alt search-accesstoken is valid
+alt search-ACCESS_TOKEN is valid
 fp -> fd: GET /?...
 activate fd
 fd --> fp: HTTP 200 OK\n(Result Body json)
 deactivate fd
 fp --> VClient: HTTP 200 OK (Result Body json)
-else search-accesstoken is invalid
+else search-ACCESS_TOKEN is invalid
 fp --> VClient: HTTP 401
 deactivate fp
 end
+
+== ...search-ACCESS_TOKEN abgelaufen... ==
+
+VClient->VzdAuth++: REFRESH_TOKEN
+VzdAuth->VzdAuth: Prüfe REFRESH_TOKEN
+VzdAuth->VzdAuth: Erzeuge search-ACCESS_TOKEN & REFRESH_TOKEN
+
+VzdAuth-->VClient: Response (search-ACCESS_TOKEN & REFRESH_TOKEN)
+deactivate VzdAuth
+deactivate VzdAuth
+
 @enduml