nenkoru · December 17, 2024 20:10
diff --git a/gistfile1.txt b/gistfile1.txt
 @startuml
 title Simplified example of how Alice's edge device dial of service would be processed in OpenZiti fabric
 autonumber
 Alice -> Controller: am I able to dial the service?
 alt alice is able to dial
 Controller -> Alice: controller returns a list of routers for the service
 Alice -> Router: connects to the router with a dial request to the service
 Router -> Service: dials the service
 Service -> Router: returns bytes for the dial
 Router -> Alice: relays response bytes
 end
 @enduml

 @startuml
 left to right direction
 title Simplified example of cost calculation to dial Service

 node Router1
 node Router2
 node Service
 actor User
 Router1 --> Service: ping 40ms to the service
 Router2 --> Service: ping 20ms to the service
 Router1 <.> Router2: interconnection between routers(link)
 User --> Router1: ping 2ms to the router
 User --> Router2: ping 5ms to the router

 note top
 Connection to the Service
 would go through the Router2
 as the total-cost of it would be 25ms
 end note
 @enduml

 @startuml
 title Simplified BrowZer OIDC flow with Edge Router WSS enabled and a controller
 autonumber
 ExternalAliceUA -> BrowZerifiedService: Alice wants to connect to a serviec exposed using BrowZerifiedService
 BrowZerifiedService -> ExternalAliceUA: redirect to OIDC provider to get a JWT token
 ExternalAliceUA -> OIDC: authenticates using credentials
 OIDC -> ExternalAliceUA: redirect to a BrowZerifiedService with a JWT token
 ExternalAliceUA -> BrowZerifiedService: sends obtained JWT token to a serviec
 BrowZerifiedService -> ZitiController: sends obtained JWT from OIDC provider to a ZitiController
 ZitiController -> BrowZerifiedService: controller returns an ephemeral x509 cert
 BrowZerifiedService -> ZitiEdgeRouterWSS: now service goes to an edge router using websockets with that ephemeral x509 cert
 ZitiEdgeRouterWSS -> ActualZitifiedService: and then the router offloads the traffic through itself to the actual service
 @enduml
	@startuml
	title Simplified example of how Alice's edge device dial of service would be processed in OpenZiti fabric
	autonumber
	Alice -> Controller: am I able to dial the service?
	alt alice is able to dial
	Controller -> Alice: controller returns a list of routers for the service
	Alice -> Router: connects to the router with a dial request to the service
	Router -> Service: dials the service
	Service -> Router: returns bytes for the dial
	Router -> Alice: relays response bytes
	end
	@enduml

	@startuml
	left to right direction
	title Simplified example of cost calculation to dial Service

	node Router1
	node Router2
	node Service
	actor User
	Router1 --> Service: ping 40ms to the service
	Router2 --> Service: ping 20ms to the service
	Router1 <.> Router2: interconnection between routers(link)
	User --> Router1: ping 2ms to the router
	User --> Router2: ping 5ms to the router

	note top
	Connection to the Service
	would go through the Router2
	as the total-cost of it would be 25ms
	end note
	@enduml

	@startuml
	title Simplified BrowZer OIDC flow with Edge Router WSS enabled and a controller
	autonumber
	ExternalAliceUA -> BrowZerifiedService: Alice wants to connect to a serviec exposed using BrowZerifiedService
	BrowZerifiedService -> ExternalAliceUA: redirect to OIDC provider to get a JWT token
	ExternalAliceUA -> OIDC: authenticates using credentials
	OIDC -> ExternalAliceUA: redirect to a BrowZerifiedService with a JWT token
	ExternalAliceUA -> BrowZerifiedService: sends obtained JWT token to a serviec
	BrowZerifiedService -> ZitiController: sends obtained JWT from OIDC provider to a ZitiController
	ZitiController -> BrowZerifiedService: controller returns an ephemeral x509 cert
	BrowZerifiedService -> ZitiEdgeRouterWSS: now service goes to an edge router using websockets with that ephemeral x509 cert
	ZitiEdgeRouterWSS -> ActualZitifiedService: and then the router offloads the traffic through itself to the actual service
	@enduml
No results found