[Openid-specs-ab] FW: OC4 interop feature testing instructions now ready for you to use

Mike Jones Michael.Jones at microsoft.com
Thu Sep 27 09:38:25 UTC 2012


FYI

From: Mike Jones
Sent: Thursday, September 27, 2012 2:37 AM
To: openid-connect-interop at googlegroups.com
Subject: OC4 interop feature testing instructions now ready for you to use

If you haven’t already been doing so, please begin testing the features of you implementation and recording the results on the wiki.

Thanks to Roland Hedberg, there are now descriptions for how to test 18 specific RP features.  Those features are listed at the end of this message.  So for instance, you can test your RP’s support for aggregated claims by following the instructions at http://osis.idcommons.net/wiki/OC4:FeatureTest-Uses_Aggregated_Claims.  Links to all these instructions are on the page for your solution.  For instance, IBM’s solution and all the test instruction links for it can be found at http://osis.idcommons.net/wiki/OC4:IBM_Prototype.  Follow the link to your solution from http://osis.idcommons.net/wiki/Category:OC4_Solution.

Also, I added instructions to all the OP features testable with Roland’s and Andreas’ OP test suite so you’ll know how to record results for these tests on the wiki.  For instance, to record the results from testing that your OP returns different results for public and pairwise user_id values, you’d follow the instructions at http://osis.idcommons.net/wiki/OC4:FeatureTest-Public_and_pairwise_user_id_Values_Differ.

I highly encourage implementers to run the feature tests and record results in the next few weeks before the Internet Identity Workshop, which is the week of October 22nd.  If you encounter problems, feel free to either contact the implementers or simply send a question to this list.

Finally, also please remember that cross-solution testing is valuable and that results should be recorded at http://osis.idcommons.net/wiki/OC4:Cross_Solution_RP_x_OP_Results.

The RP Features now containing specific test instructions are:

·        Can Discover Identifiers using E-Mail Syntax ‎

·        Can Discover Identifiers using URL Syntax ‎

·        Uses Discovery ‎

·        Uses Dynamic Registration ‎

·        Can Make Access Token Request with client_secret_basic Authentication ‎

·        Can Make Access Token Request with client_secret_post Authentication ‎

·        Can Make Access Token Request with client_secret_jwt Authentication ‎

·        Can Make Access Token Request with private_key_jwt Authentication ‎

·        Can Make Access Token Request with client_secret_basic Authentication ‎

·        Can Make Access Token Request with client_secret_post Authentication ‎

·        Can Make Access Token Request with client_secret_jwt Authentication ‎

·        Verifies Correct c_hash when Code Flow Used ‎

·        Verifies Correct at_hash when Implicit Flow Used ‎

·        Requesting UserInfo Claims with scope Values ‎

·        Requesting UserInfo Claims with OpenID Request Object ‎

·        Uses Aggregated Claims ‎

·        Uses Distributed Claims ‎

·        Can Request and Use Signed UserInfo Response ‎

                                                            Happy testing!
                                                            -- Mike

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-specs-ab/attachments/20120927/e55c23dd/attachment-0001.html>


More information about the Openid-specs-ab mailing list