[Openid-specs-ab] What additional tests do we need for the 4th OpenID Connect Interop?

Mike Jones Michael.Jones at microsoft.com
Fri Jun 22 00:59:15 UTC 2012 

Hi all,

Pam has been doing a good job getting the 4th OpenID Connect Interop (OC4) ready for prime time.  See http://osis.idcommons.net/wiki/OC4:OpenID_Connect_Interop_4 for the current state.

Before we open the interop for testing, we should add additional tests that correspond to the new features added since the Implementer's Drafts.

Roland, I know you've added these RP tests to your test suite since OC3:

*         Access token request with client_secret_basic authentication

*         Request with response_type code and extra query component

*         Request with redirect_uri with query component

*         Registration where a redirect_uri has a query component

*         Registration where a redirect_uri has a fragment

*         Authorization request missing the response_type parameter

*         Sent redirect_uri does not match the registered redirect_uri

*         Access token request with client_secret_jwt authentication

*         Access token request with public_key_jwt authentication

Roland, are there others you've added, either for the RP or OP?  Also, can you send us a URL for where people can access these tests to add to the test descriptions?

Everyone, I know that we need to add these OP tests:

*         Includes at_hash in ID Token when implicit flow used

*         Includes c_hash in ID Token when code flow used

Everyone, I know that we need to add these RP tests:

*         Verifies correct at_hash when implicit flow used

*         Rejects incorrect at_hash when implicit flow used

*         Verifies correct c_hash when code flow used

*         Rejects incorrect c_hash when code flow used

What else am I missing?

I have already deleted the tests that were for the ID Token.   Do we want to also delete the tests for symmetric signing of the ID token or leave them, since the spec does say how to do symmetric signing.  I've left these tests there for now.

                                                                Thanks all,
                                                                -- Mike

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-specs-ab/attachments/20120622/073c786a/attachment.html>

More information about the Openid-specs-ab mailing list