Java Agent Process FlowJava ContainerClientClientAgent Filter/Agent ApplicationAgent Filter/Agent ApplicationWeb ResourceWeb ResourceAccess ManagementAccess Management1Request to http://www.example.comintercepted by agent filter2Check not-enforced listsalt[Resource or client IP matches not-enforced lists]3Pass through4Response from http://www.example.com5Redirect to AM login pagefor authentication6Client authenticates7Verify credentialsand create validOIDC JWT8Send self-submitting formwith OIDC JWT9Post form to the agent's endpoint,which consumes the response10Set cookie domain toFQDN of resource11Redirect to http://www.example.comintercepted by agent filter12Request OIDC JWTvalidation13OIDC JWT is OK14Request policy decision15Policy decision is"ALLOW"16Log policy decision17Pass through18Response fromhttp://www.example.com