I4:FeatureTest-OpenID Provider redirects http URLs to https URLs for discovery

From OSIS Open Source Identity Systems
Jump to: navigation, search

{{#vardefine:page|{{#if:{{#var:page}}|{{#var:page}}|FeatureTest-OpenID Provider redirects http URLs to https URLs for discovery}}}}{{#vardefine:nr|{{#if:{{#var:nr}}|{{#expr:{{#var:nr}}+1}}|1}}}}{{#vardefine:url|{{#replace:{{#var:page}}| |_}}}}{{#if:OpenID Provider redirects http URLs to https URLs for discovery|{{#if:{{#var:DtArticleSortKey}}||}}}}{{#ifeq:{{#var:header}}|no||

{{#ifeq:no|no||
{{#if:{{#var:refs}}|[[{{#var:page}}|no_ref's]]|[[Special:Call/DT Article show Refs,page={{#var:page}},refs=yes|ref's]]}}}} {{#if:{{#var:DtArticleSortKey}}|({{#var:DtArticleSortKey}})}}    list help  [[Special:Call/DT Article copy,cat=FeatureTest,from={{#var:page}},namespace=I4|copy]]  [[Special:Call/DT Articles list XML,type=FeatureTest,title={{#var:page}},namespace=I4|as XML]]  edit
}}
{{#if:|Feature Test |Feature Test }}   OpenID Provider redirects http URLs to https URLs for discovery
Test Type   bgcolor={{{color}}}}}|OpenID Security
Identifier   bgcolor={{{color}}}}}|FTR-op-sec-1  
Description   bgcolor={{{color}}}}}|Tests OpenID Provider's support for consistant URI normalisation of the scheme and path.  
Role tested   bgcolor={{{color}}}}}|OpenID Identity Provider  
Known Successful Reference Solution(s)   bgcolor={{{color}}}}}|{{ #if: Yahoo OpenID Provider |
I4:Yahoo OpenID Provider}}{{ #if: mixi.jp |
I4:mixi.jp}} {{ #if: |
}} {{ #if: |
}}  
Success Criteria   bgcolor={{{color}}}}}|http redirect to https: version of openID and the X-XRDS-Location, X-YADIS-Location headers contain https URI  
Failure Criteria   bgcolor={{{color}}}}}|No redirect to https or headers contain http: URI  

Features Proven

{{#dpl:debug=1

 |resultsheader=\n
 |noresultsheader= {|\n|bgcolor=#eeeeee|No matching Feature found.\n|}\n
 |category=Feature
 |namespace=I4
 |linksto=I4:FeatureTest-OpenID Provider redirects http URLs to https URLs for discovery
 |nottitlematch = Feature.edit
 |include={Feature}.viewfromtest
 |includematch=/FeatureTest-OpenID Provider redirects http URLs to https URLs for discovery/s
 |table=class=sortable,-,Feature,feature_type,solution_role

}}

Instructions

  1. Open the result page for your solution and for this test.
  2. Enter the http: version of the test openID in the browser
  3. You should be directed to a openID identity page.
  4. Check to see if the URI in the browser bar has changed to https:
  5. Look at the page source.
  6. Verify that the Meta-Data contined in the page has the XRDS documents retreved via https: URI look for X-XRDS-Location and X-YADIS-Location
  7. Set outcome:
    1. If the success criteria was met, set the outcome to "Works".
    2. If the test failed, set the outcome to "Failed" and enter information about the failure in the Notes section.
    3. If other issues occurred set the result to "Issues" and describe them in the Notes section.
  8. Add either four tilde ~~~~ signs or a text name into the "Tested by" parameter.
  9. Update the Date Tested, Browser, and Operating System lines of the results page.