[OpenID] Backwards Compatibility

John Bradley john.bradley at wingaa.com
Wed Mar 18 02:53:09 UTC 2009 

Hi Brett,

I think I have now exceeded my daily post limit to the openID general  
list.

As the one of the OSIS organizers, and the person who has worked on  
the openID tests for the last two years I am happy to answer your only  
slightly leading question.

OSIS has posted openID interop tests for the last two years.  All of  
the past results and participants are listed on the wiki.
http://osis.idcommons.net/wiki/I5_User-Centric_Identity_Interop_through_RSA_2009

The OIDF is contributing some resources to OSIS this year that has  
allowed me to create over 40 new functional tests for OPs and RPs.

The new tests are hosted at http://test-id.net/.

Andrew Arnott who most of you are familiar with has been a huge help  
with re-factoring his library to provide detailed debugging  
information and the ability to perform spoofing and other tests that  
would not normally be included in a regular library.

Full debugging logs are available and the source for all the tests is  
linked to GitHub from each page.

We hope to refractor some of the tests I wrote last year to use the  
new test endpoints and make them easier for people to run.

We hope it will be a useful tool for people.   It is a work in progress.

OSIS is NOT about compliance testing for openID or Information Cards  
(IMI).

It is a IdentityCommons project to encourage user-centric identity  
interoperability.

All of the results are public and everyone is invited to participate  
through the interop Wiki.

I have to confess though I have not finished integrating the new tests  
with the OSIS wiki test matrix.

I hope to have that finished by the end of the week.   However people  
can start testing with the existing tests.

For the future, we hope to keep adding tests and reference examples  
for people to use.

I would like to see us come together to create a unit test API so that  
tests can be more automated.

However tests like checking that the OP is prompting you with a  
reasonable dialog in response to a AX attribute request can never be  
entirely automated.

Hopefully we can agree on an automated way to test the lower levels of  
the protocol.

There probably needs to be a OIDF work group to peruse what the test  
API will look like.

I do understand that there will be some people looking for some sort  
of conformance testing.
I don't think the goal of OSIS is to do that directly.

All of the tests and all of the code is available for people to review  
and hopefully use to improve there implementations.

It is up to the OIDF or some other organization to take on formal  
conformance testing if that is to happen.

So that is the story of OSIS testing to this point.

If people have tests they desperately want to see included, let me  
know an I will add them to the todo list.

Or better yet join OSIS and add therm yourself:)

Regards
John Bradley

> Date: Tue, 17 Mar 2009 19:26:50 -0400
> From: Brett McDowell <brett at projectliberty.org>
> Subject: Re: [OpenID] Backwards Compatibility
> To: Martin Atkins <mart at degeneration.co.uk>
> Cc: "general at openid.net" <general at openid.net>
> Message-ID: <93AA4E7A-7A19-4EB8-A337-0C0D1571A774 at projectliberty.org>
> Content-Type: text/plain; charset=US-ASCII; format=flowed; delsp=yes
>
> Would someone more familiar with OSIS interops step in and explain
> what enhancements you all might have planned for the future of online
> testing, if any?  I know there is some online testing now between the
> major conference demonstrations, but I'm under the impression they are
> far from "automatic" in nature.
>
> If we can collect a bit more input on requirements and goals, we might
> have the beginning of a plan we could collectively deliver to the
> community.
>
>
> Brett McDowell | +1.413.652.1248 | http://info.brettmcdowell.com

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-general/attachments/20090317/32764631/attachment-0001.htm>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 2486 bytes
Desc: not available
URL: <http://lists.openid.net/pipermail/openid-general/attachments/20090317/32764631/attachment-0002.bin>

More information about the general mailing list