I5:Francis Shanahan RP-IdP

From OSIS Open Source Identity Systems

Jump to: navigation, search

Francis Shanahan RP-IdP

   list help  copy  as XML  edit
Solution   Francis Shanahan RP-IdP
Identifier   FSAsp  
Description   A simple CardSpace Managed Card Generator and Test Harness. It lets you generate a managed card, with whatever claims you'd like and then generate a test harness form for that card.

The card can then be used to obtain claims from a Simple Security Token Service. Lastly, these claims can be consumed and parsed out to complete the end to end process.

This is a publicly available service that demonstrates the end to end flow for Cardspace MANAGED cards and lets you play with the claims, generate your own Cards or build your own Relying Parties against the STS.  

Product Page   http://www.francisshanahan.com/cardspace  
Project or solution logo (if different than Participant logo)  
Latest Version    
Latest Release Date    
Installation/Operation Instructions   Go to the page, fill in some claims and click "Make Card" to download a card with those claims.

To test the card, go to the bottom of the page, click "Try It". To authenticate to the IdP just enter any username and password as long as they are the same (e.g. username = "aaa", password = "aaa").

Optional: Test this RP with other Cards: You can edit the claims, specify a different Issuer etc. and then click "Build the Test Form" to test other IdPs. The page will refresh with a new form containing those values. Go to the bottom of that page, hit "Try It" to test with the new values.

Optional: Test this IdP with other RPs: You can use the card at any other RP that supports SAML 1.0. You can also enter RP specific claims and then "Make Card" to generate a card with those claims. The IdP is setup to fill in test values for any claims you include in the card.  

Operated by   Francis Shanahan
Interop Roles   Information Card Relying Party
http://www.francisshanahan.com/cardspace  
  Information Card Identity Provider
http://www.francisshanahan.com/cardspace  
  OpenID Relying Party
http://foolstr.com  
   

Click here for help populating this chart.

I5 Information Card Relying Party FeatureTest List

   list help  copy  as XML  edit
Feature Tests for   Francis Shanahan RP-IdP
Selector Invocation Tests    
RP Support for HTML Triggers   Works
RP Support for XHTML Triggers   N/A
RP Support for RP-STS   Works
Site Information Tests    
RP Privacy Policy Advertisement   Works
Card Usage Tests    
RP Acceptance of Self-Issued Cards   Works
RP Acceptance of Managed Cards   Works
Token Validation Tests    
RP Rejection of Tokens Outside Reasonable Validity Windows   Not Tested
RP Acceptance of Tokens Within Reasonable Validity Windows   Not Tested
RP Acceptance of Unencrypted Tokens   Not Tested
Condition Handling Tests    
RP Behavior when No Identity Selector or Browser Add-On Installed   Not Tested
RP Behavior when Browser Add-On Installed but Identity Selector Not Installed   Not Tested

I5 Information Card Identity Provider FeatureTest List

   list help  copy  as XML  edit

I5 OpenID Relying Party FeatureTest List

Feature Tests for   Francis Shanahan RP-IdP
Card Management Tests    
IdP Creation of .crd Files   Works
Card Usage Tests  
IdP Support for Managed Cards backed by Username and Password   Works
IdP Support for Managed Cards backed by Self-Issued Card   N/A
IdP Population of Display Token Values   Works
IdP Supports both Equivalent URIs for Cards using SAML 1.0 and 1.1 Tokens   Not Tested
   list help  copy  as XML  edit
Feature Tests for   Francis Shanahan RP-IdP
OpenID Authentication    
OpenID RP Accepts OpenIDs from OpenID 1.1 OPs   Not Tested
OpenID RP Accepts OpenIDs from OpenID 2.0 OPs   Not Tested
OpenID RP Accepts i-name-based OpenIDs   Not Tested
OpenID RP Accepts i-name-based OpenIDs with Unicode characters   Not Tested
OpenID RP Display i-name that was verified rather than resulting i-number   Not Tested
OpenID 2.0 Relying Party openID 1.1 delegations via rel links   Not Tested
OpenID 2.0 Relying Party openID 2.0 delegations via rel links   Not Tested
OpenID Relying Party Accepts Namespaced openID 1.1 delegations in XRDS documents   Not Tested
OpenID 2.0 Relying Party support for OpenID 2.0 delegation via XRDS   Not Tested
OpenID Relying Party uses Claimed ID as its Primary Key   Not Tested
OpenID RP Accepts HTTPS-based OpenIDs   Not Tested
OpenID Relying Party Accepts unsolicited positive assertions   Not Tested
OpenID Relying Party sends Accept request-header when performing discovery   Not Tested
OpenID Relying Party support for Identifier Select   Not Tested
Security Tests    
OpenID Relying Party has HMAC-SHA256 support   Not Tested
OpenID Relying Party Publishes a XRDS document for its realm specifying the return to URL   Not Tested
OpenID Relying Party validates the openid.return_to in the response   Not Tested
OpenID Relying Party validates positive assertions against Discovered Information   Failed
OpenID Relying Party validates an assertion with the same openid.response_nonce has not already been processed   Not Tested
OpenID Relying Party validates the 1.1 signature on the assertion is valid and all fields that are required to be signed are signed   Not Tested
OpenID Relying Party validates the 2.0 signature on the assertion is valid and all fields that are required to be signed are signed   Not Tested
OpenID Relying Party protects against association poisoning   Not Tested
Simple Registration    
OpenID RP support for Simple Registration   Not Tested
OpenID Relying Party support for account creation via Simple Registration   Not Tested
Attribute Exchange    
PAPE    
SSL Certificate Support    
OpenID RP accepts x.509v3 alternate names in certs   Not Tested
OpenID Relying Party Verify X.509 certificate associated with Identity Provider   Not Tested
OpenID RP accepts x.509v3 certs issued by CA Cert   Not Tested
OpenID RP accepts x.509v3 certs issued by Start SSL Class 1   Not Tested
OpenID RP accepts x.509v3 certs issued by Start SSL Class 2   Not Tested
OpenID RP rejects certs that are not valid for the domain   Not Tested
OpenID RP rejects certs that are expired   Not Tested


Retrieved from "http://osis.idcommons.net/wiki/I5:Francis_Shanahan_RP-IdP"
Personal tools