-
Notifications
You must be signed in to change notification settings - Fork 263
/
Copy pathTS29562_Nhss_gbaUEAU.yaml
196 lines (178 loc) · 5.62 KB
/
TS29562_Nhss_gbaUEAU.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
openapi: 3.0.0
info:
version: '1.1.0-alpha.1'
title: 'Nhss_gbaUEAU'
description: |
Nhss UE Authentication Service for GBA.
© 2022, 3GPP Organizational Partners (ARIB, ATIS, CCSA, ETSI, TSDSI, TTA, TTC).
All rights reserved.
externalDocs:
description: 3GPP TS 29.562 Home Subscriber Server (HSS) Services, version 18.0.0
url: 'https://www.3gpp.org/ftp/Specs/archive/29_series/29.562/'
servers:
- url: '{apiRoot}/nhss-gba-ueau/v1'
variables:
apiRoot:
default: https://example.com
description: apiRoot as defined in clause 4.4 of 3GPP TS 29.501.
security:
- oAuth2ClientCredentials:
- nhss-gba-ueau
- {}
paths:
/{ueId}/security-information/generate-auth-data:
post:
summary: Generate GBA authentication data for the UE
operationId: GenerateAuthData
tags:
- Generate Auth Data (Custom Operation)
security:
- {}
- oAuth2ClientCredentials:
- nhss-gba-ueau
- oAuth2ClientCredentials:
- nhss-gba-ueau
- nhss-gba-ueau:generate-auth-data:invoke
parameters:
- name: ueId
in: path
description: UE identity of the user
required: true
schema:
$ref: '#/components/schemas/UeId'
requestBody:
content:
application/json:
schema:
$ref: '#/components/schemas/AuthenticationInfoRequest'
required: true
responses:
'200':
description: Expected response to a valid request
content:
application/json:
schema:
$ref: '#/components/schemas/AuthenticationInfoResult'
'307':
$ref: 'TS29571_CommonData.yaml#/components/responses/307'
'308':
$ref: 'TS29571_CommonData.yaml#/components/responses/308'
'400':
$ref: 'TS29571_CommonData.yaml#/components/responses/400'
'401':
$ref: 'TS29571_CommonData.yaml#/components/responses/401'
'403':
$ref: 'TS29571_CommonData.yaml#/components/responses/403'
'404':
$ref: 'TS29571_CommonData.yaml#/components/responses/404'
'411':
$ref: 'TS29571_CommonData.yaml#/components/responses/411'
'413':
$ref: 'TS29571_CommonData.yaml#/components/responses/413'
'415':
$ref: 'TS29571_CommonData.yaml#/components/responses/415'
'429':
$ref: 'TS29571_CommonData.yaml#/components/responses/429'
'500':
$ref: 'TS29571_CommonData.yaml#/components/responses/500'
'501':
$ref: 'TS29571_CommonData.yaml#/components/responses/501'
'502':
$ref: 'TS29571_CommonData.yaml#/components/responses/502'
'503':
$ref: 'TS29571_CommonData.yaml#/components/responses/503'
default:
description: Unexpected error
components:
securitySchemes:
oAuth2ClientCredentials:
type: oauth2
flows:
clientCredentials:
tokenUrl: '{nrfApiRoot}/oauth2/token'
scopes:
nhss-gba-ueau: Access to the nhss-gba-ueau API
nhss-gba-ueau:generate-auth-data:invoke: >
Access to invoke the Generate Auth Data custom operation
schemas:
#
# COMPLEX TYPES:
#
AuthenticationInfoRequest:
description: >
Contains input data to the authentication request message (e.g. authentication
scheme, resynchronization information)
type: object
properties:
authenticationScheme:
$ref: '#/components/schemas/AuthenticationScheme'
resynchronizationInfo:
$ref: 'TS29562_Nhss_imsUEAU.yaml#/components/schemas/ResynchronizationInfo'
supportedFeatures:
$ref: 'TS29571_CommonData.yaml#/components/schemas/SupportedFeatures'
AuthenticationInfoResult:
description: >
Contains authentication information returned in the authentication response message
(e.g. authentication vector, digest authentication parameters)
type: object
properties:
impi:
$ref: '#/components/schemas/Impi'
3gAkaAv:
$ref: 'TS29562_Nhss_imsUEAU.yaml#/components/schemas/3GAkaAv'
digestAuth:
$ref: '#/components/schemas/DigestAuthentication'
supportedFeatures:
$ref: 'TS29571_CommonData.yaml#/components/schemas/SupportedFeatures'
DigestAuthentication:
description: Parameters used for the Digest authentication scheme
type: object
required:
- digestRealm
- digestAlgorithm
- digestQop
- ha1
properties:
digestRealm:
type: string
digestAlgorithm:
$ref: '#/components/schemas/DigestAlgorithm'
digestQop:
$ref: '#/components/schemas/DigestQop'
ha1:
type: string
#
# SIMPLE TYPES:
#
UeId:
$ref: 'TS29562_Nhss_gbaSDM.yaml#/components/schemas/UeId'
Impi:
description: IMS Private Identity of the UE
type: string
#
# ENUMS:
#
AuthenticationScheme:
description: Authentication scheme to be used in the authentication request message
anyOf:
- type: string
enum:
- DIGEST_AKAV1_MD5
- DIGEST_HTTP
- type: string
DigestAlgorithm:
description: Algorithm used for the Digest authentication scheme
anyOf:
- type: string
enum:
- MD5
- MD5_SESS
- type: string
DigestQop:
description: Quality of Protection for the Digest authentication scheme
anyOf:
- type: string
enum:
- AUTH
- AUTH_INT
- type: string