OC4:RP Features

From OSIS Open Source Identity Systems

Jump to: navigation, search


Feature-Web Page Application

   list help  copy  as XML  edit
RP Web Page Application - Maturity: Established (OC3 )
Web Page Application Use OP from Web Page Application Works Fails

Tests

OC4:FeatureTest-Web Page Application


Feature-Native Client Application

   list help  copy  as XML  edit
RP Native Client Application - Maturity: Established (OC3 )
Native Client Application Use OP from Native Client Application Works Fails

Tests

OC4:FeatureTest-Native Client Application


Feature-Accept Valid Asymmetric ID Token Signature

   list help  copy  as XML  edit
RP Accept Valid Asymmetric ID Token Signature - Maturity: Established (OC3 )
Accept Valid Asymmetric ID Token Signature Validate ID Token Correctly Signed with RS256 Works Fails

Tests

OC4:FeatureTest-Accept Valid Asymmetric ID Token Signature


Feature-Reject Invalid Asymmetric ID Token Signature

   list help  copy  as XML  edit
RP Reject Invalid Asymmetric ID Token Signature - Maturity: Established (OC3 )
Reject Invalid Asymmetric ID Token Signature Reject ID Token with Incorrect RS256 Signature Works Fails

Tests

OC4:FeatureTest-Reject Invalid Asymmetric ID Token Signature


Feature-Accept Valid Symmetric ID Token Signature

   list help  copy  as XML  edit
RP Accept Valid Symmetric ID Token Signature - Maturity: Established (OC3 )
Accept Valid Symmetric ID Token Signature Validate ID Token Correctly Signed with HS256 Works Fails

Tests

OC4:FeatureTest-Accept Valid Symmetric ID Token Signature


Feature-Reject Invalid Symmetric ID Token Signature

   list help  copy  as XML  edit
RP Reject Invalid Symmetric ID Token Signature - Maturity: Established (OC3 )
Reject Invalid Symmetric ID Token Signature Reject ID Token with Incorrect HS256 Signature Works Fails

Tests

OC4:FeatureTest-Reject Invalid Symmetric ID Token Signature


Feature-Requesting UserInfo Claims with scope Values

   list help  copy  as XML  edit
RP Requesting UserInfo Claims with scope Values - Maturity: Established (OC3 )
Requesting UserInfo Claims with scope Values Request Claims using scope Value Displays claims returned that were requested with a scope value Fails

Tests

OC4:FeatureTest-Requesting UserInfo Claims with scope Values


Feature-Requesting UserInfo Claims with OpenID Request Object

   list help  copy  as XML  edit
RP Requesting UserInfo Claims with OpenID Request Object - Maturity: Established (OC3 )
Requesting UserInfo Claims with OpenID Request Object Request Claims using OpenID Request Object Displays claims returned that were requested with an OpenID Request Object Fails

Tests

OC4:FeatureTest-Requesting UserInfo Claims with OpenID Request Object


Feature-Uses Discovery

   list help  copy  as XML  edit
RP Uses Discovery - Maturity: Established (OC3 )
Uses Discovery Discover and Use OP Information Works Fails

Tests

OC4:FeatureTest-Uses Discovery


Feature-Can Discover Identifiers using E-Mail Syntax

   list help  copy  as XML  edit
RP Can Discover Identifiers using E-Mail Syntax - Maturity: Established (OC3 )
Can Discover Identifiers using E-Mail Syntax Discover and Use OP for Identifier using E-Mail Syntax Works Fails

Tests

OC4:FeatureTest-Can Discover Identifiers using E-Mail Syntax


Feature-Can Discover Identifiers using URL Syntax

   list help  copy  as XML  edit
RP Can Discover Identifiers using URL Syntax - Maturity: Established (OC3 )
Can Discover Identifiers using URL Syntax Discover and Use OP for Identifier using URL Syntax Works Fails

Tests

OC4:FeatureTest-Can Discover Identifiers using URL Syntax


Feature-Uses Dynamic Registration

   list help  copy  as XML  edit
RP Uses Dynamic Registration - Maturity: Established (OC3 )
Uses Dynamic Registration Dynamically Register Client with OP and Use OP Works Fails

Tests

OC4:FeatureTest-Uses Dynamic Registration


Feature-Uses Aggregated Claims

   list help  copy  as XML  edit
RP Uses Aggregated Claims - Maturity: Established (OC3 )
Uses Aggregated Claims Display Aggregated Claims Received from OP Works Fails

Tests

OC4:FeatureTest-Uses Aggregated Claims


Feature-Uses Distributed Claims

   list help  copy  as XML  edit
RP Uses Distributed Claims - Maturity: Established (OC3 )
Uses Distributed Claims Display Distributed Claims Received from OP Works Fails

Tests

OC4:FeatureTest-Uses Distributed Claims


Feature-Verifies Correct at_hash when Implicit Flow Used

   list help  copy  as XML  edit
RP Verifies Correct at_hash when Implicit Flow Used - Maturity: New (OC4 )
Verifies Correct at_hash when Implicit Flow Used Receive response to request using response_type token id_token with correct at_hash value Correct at_hash value verified Response rejected

Tests

OC4:FeatureTest-Verifies Correct at_hash when Implicit Flow Used


Feature-Rejects Incorrect at_hash when Implicit Flow Used

   list help  copy  as XML  edit
RP Rejects Incorrect at_hash when Implicit Flow Used - Maturity: New (OC4 )
Rejects Incorrect at_hash when Implicit Flow Used Receive response to request using response_type token id_token with incorrect at_hash value Incorrect at_hash value rejected Response accepted

Tests

OC4:FeatureTest-Rejects Incorrect at_hash when Implicit Flow Used


Feature-Verifies Correct c_hash when Code Flow Used

   list help  copy  as XML  edit
RP Verifies Correct c_hash when Code Flow Used - Maturity: New (OC4 )
Verifies Correct c_hash when Code Flow Used Receive response to request using response_type code with correct c_hash value Correct c_hash value verified Response rejected

Tests

OC4:FeatureTest-Verifies Correct c_hash when Code Flow Used


Feature-Rejects Incorrect c_hash when Code Flow Used

   list help  copy  as XML  edit
RP Rejects Incorrect c_hash when Code Flow Used - Maturity: New (OC4 )
Rejects Incorrect c_hash when Code Flow Used Receive response to request using response_type code with incorrect c_hash value Incorrect c_hash value rejected Response accepted

Tests

OC4:FeatureTest-Rejects Incorrect c_hash when Code Flow Used


Feature-Can Request and Use Claims in id_token

   list help  copy  as XML  edit
RP Can Request and Use Claims in id_token - Maturity: New (OC4 )
Can Request and Use Claims in id_token Request name and email claims be returned in the id_token Claims returned in id_token and accepted Fails

Tests

OC4:FeatureTest-Can Request and Use Claims in id_token


Feature-Can Use Self-Issued OP

   list help  copy  as XML  edit
RP Can Use Self-Issued OP - Maturity: New (OC4 )
Can Use Self-Issued OP Request name and email claims claims from self-issued OP Claims returned in id_token and accepted Fails

Tests

OC4:FeatureTest-Can Use Self-Issued OP


Feature-Can Make Access Token Request with client_secret_basic Authentication

   list help  copy  as XML  edit
RP Can Make Access Token Request with client_secret_basic Authentication - Maturity: New (OC4 )
Can Make Access Token Request with client_secret_basic Authentication Send Access Token Request with client_secret_basic Authentication Works Fails

Tests

OC4:FeatureTest-Can Make Access Token Request with client_secret_basic Authentication


Feature-Can Make Access Token Request with client_secret_post Authentication

   list help  copy  as XML  edit
RP Can Make Access Token Request with client_secret_post Authentication - Maturity: New (OC4 )
Can Make Access Token Request with client_secret_post Authentication Send Access Token Request with client_secret_post Authentication Works Fails

Tests

OC4:FeatureTest-Can Make Access Token Request with client_secret_post Authentication


Feature-Can Make Access Token Request with private_key_jwt Authentication

   list help  copy  as XML  edit
RP Can Make Access Token Request with private_key_jwt Authentication - Maturity: New (OC4 )
Can Make Access Token Request with private_key_jwt Authentication Send Access Token Request with private_key_jwt Authentication Works Fails

Tests

OC4:FeatureTest-Can Make Access Token Request with private_key_jwt Authentication


Feature-Can Make Access Token Request with client_secret_jwt Authentication

   list help  copy  as XML  edit
RP Can Make Access Token Request with client_secret_jwt Authentication - Maturity: New (OC4 )
Can Make Access Token Request with client_secret_jwt Authentication Send Access Token Request with client_secret_jwt Authentication Works Fails

Tests

OC4:FeatureTest-Can Make Access Token Request with client_secret_jwt Authentication


Feature-Logout Initiated by RP

   list help  copy  as XML  edit
RP Logout Initiated by RP - Maturity: New (OC4 )
Logout Initiated by RP Send logout request to OP Logout request sent to OP No logout request sent

Tests

OC4:FeatureTest-Logout Initiated by RP


Feature-Logout Received by RP

   list help  copy  as XML  edit
RP Logout Received by RP - Maturity: New (OC4 )
Logout Received by RP Detect and act upon OP initiated logout RP detects logout request and logs out RP not logged out

Tests

OC4:FeatureTest-Logout Received by RP


Feature-State Change Other than Logout Received by RP

   list help  copy  as XML  edit
RP State Change Other than Logout Received by RP - Maturity: New (OC4 )
State Change Other than Logout Received by RP Change logged in user at the OP and notify RP Change detected by RP Change not detected

Tests

OC4:FeatureTest-State Change Other than Logout Received by RP


Feature-Can Request and Use Signed UserInfo Response

   list help  copy  as XML  edit
RP Can Request and Use Signed UserInfo Response - Maturity: New (OC4 )
Can Request and Use Signed UserInfo Response Register for, request, and use signed UserInfo responses Can request and use signed UserInfo responses Cannot request or use signed UserInfo Responses

Tests

OC4:FeatureTest-Can Request and Use Signed UserInfo Response


Feature-Can Request and Use Encrypted UserInfo Response

   list help  copy  as XML  edit
RP Can Request and Use Encrypted UserInfo Response - Maturity: New (OC4 )
Can Request and Use Encrypted UserInfo Response Register for, request, and use encrypted UserInfo responses Can request and use encrypted UserInfo responses Cannot request or use encrypted UserInfo Responses

Tests

OC4:FeatureTest-Can Request and Use Encrypted UserInfo Response


Feature-Can Request and Use Signed and Encrypted UserInfo Response

   list help  copy  as XML  edit
RP Can Request and Use Signed and Encrypted UserInfo Response - Maturity: New (OC4 )
Can Request and Use Signed and Encrypted UserInfo Response Register for, request, and use signed and encrypted UserInfo responses Can request and use signed and encrypted UserInfo responses Cannot request or use signed and encrypted UserInfo Responses

Tests

OC4:FeatureTest-Can Request and Use Signed and Encrypted UserInfo Response


Feature-Can Request and Use Encrypted ID Token Response

   list help  copy  as XML  edit
RP Can Request and Use Encrypted ID Token Response - Maturity: New (OC4 )
Can Request and Use Encrypted ID Token Response Register for, request, and use encrypted ID Token responses Can request and use encrypted ID Token responses Cannot request or use encrypted ID Token Responses

Tests

OC4:FeatureTest-Can Request and Use Encrypted ID Token Response


Feature-Can Request and Use Signed and Encrypted ID Token Response

   list help  copy  as XML  edit
RP Can Request and Use Signed and Encrypted ID Token Response - Maturity: New (OC4 )
Can Request and Use Signed and Encrypted ID Token Response Register for, request, and use signed and encrypted ID Token responses Can request and use signed and encrypted ID Token responses Cannot request or use signed and encrypted ID Token Responses

Tests

OC4:FeatureTest-Can Request and Use Signed and Encrypted ID Token Response

Retrieved from "http://osis.idcommons.net/wiki/OC4:RP_Features"
Personal tools