CD2H gitForager

zmartzone/oidf-oidc-certification

Name: oidf-oidc-certification

Owner: ZmartZone IAM

Description: null

Created: 2017-02-13 15:01:51.0

Updated: 2018-05-19 08:05:15.0

Pushed: 2018-05-19 08:05:14.0

Homepage: null

Size: 67

Language: Shell

GitHub Committers

User	Most Recent Commit	# Commits

Other Committers

User	Email	Most Recent Commit	# Commits

README

oidf-oidc-certification

Scripts and configuration files to run OpenID Foundation's OP and RP certification suites.

Hans' Useful Commands

Linking mod_auth_openidc client configuration files in metadata directory for a new RP server instance:

f in `ls rp-*.conf` ; do ln -s $f localhost%3A8080%2Fmod_auth_openidc%2F$f ; done

p_test%3A8080%2Fmod_auth_openidc* rp.certification.openid.net%3A8080%2Fmod_auth_openidc*
f in `ls rp-*.conf` ; do ln -s $f rp_test%3A8080%2Fmod_auth_openidc-##########%2F$f &&  ln -s $f rp.certification.openid.net%3A8080%2Fmod_auth_openidc-#########%2F$f ; done

Setting the path to the MacPorts Python 3 install:

rt PATH=/opt/local/Library/Frameworks/Python.framework/Versions/3.6/bin:$PATH

Running:

/projects/oidctest/ && sudo python3 setup.py install && cd /Users/hzandbelt/projects && oidc_setup.py /Users/hzandbelt/projects/oidctest oidf && cd ~/projects/pyoidc/ && sudo python3 setup.py install && cd /Users/hzandbelt/projects/oidf/oidc_cp_rplib && python3 server.py -f flows -p 8080 -k -t conf

Client Registration:

 -k -s   -X POST   -H "Content-Type: application/json"   -d '{ "redirect_uris":["https://rp.example.org/redirect_uri"], "client_name":"My Example Client", "contacts":["hans.zandbelt@oidf.org"], "initiate_login_uri": "https://rp.example.org/login_uri" }' https://rp_test:8080/mod_auth_openidc/rp-3rd_party-init-login/registration

Update and install new OIDC packages:

AGES="openid-certification/otest OpenIDC/fedoidc openid-certification/oidctest"

PKG in $PACKAGES ; do cd `basename $PKG` && git pull && cd - ; done
PKG in $PACKAGES ; do cd `basename $PKG` && sudo python3 setup.py install && cd - ; done
Users/hzandbelt/projects && oidc_setup.py /Users/hzandbelt/projects/oidctest oidf

Update production RP

zandbelt@zandbelt.net
hzandbelt@rp.certification.openid.net
usr/local/src/oidctest
 git pull
 python3 setup.py install
usr/local
 oidc_setup.py /usr/local/src/oidctest oidf
usr/local/oidf/oidc_cp_rplib/
 ./run.sh

Update production OP

zandbelt@zandbelt.net
hzandbelt@new-op.certification.openid.net
usr/local/src/oidctest
 git pull
 python3 setup.py install
ests
 python3 -m pytest -x
usr/local
 oidc_setup.py /usr/local/src/oidctest oidf
usr/local/oidf/oidc_op
 ./run.sh
 ./restart.sh

Merge upstream development into local development & stable:

test
fetch upstream

checkout master
rebase upstream/master
push

checkout stable-master
rebase upstream/master
push stable HEAD:master

./fedoidc
fetch upstream
rebase upstream/master
push

./oidc-provider-conformance-tests
checkout master
fetch upstream
merge upstream/master
push

checkout stable-master
rebase upstream/master
push stable HEAD:master

./oidctest
fetch upstream

checkout master
rebase upstream/master
push

checkout stable-master
merge upstream/master
push stable HEAD:master

 WITH MERGE TOOL - DON'T COMMIT YET - AND UPDATE VERSION NUMBER
 checkout stable-release-1.0.x
 merge stable-master
 push

Start the OP test server instance locally:

Users/hzandbelt/projects/oidf/oidc_op && ./run.sh

Start the RP test server instance locally:

Users/hzandbelt/projects/oidf/oidc_cp_rplib && python3 server.py -f flows -p 8080 -k -t conf


/projects/oidctest
er-compose -f docker/docker-compose.yml up

lications/Google\ Chrome.app/Contents/MacOS/Google\ Chrome \
--headless \
--no-sandbox \
--no-first-run \
--disable-extensions \
--remote-debugging-port=9222 \
--ignore-certificate-errors \
about:blank

lications/Google\ Chrome.app/Contents/MacOS/Google\ Chrome --remote-debugging-port=9222 --ignore-certificate-errors about:blank

rt TAG=default
rt ISSUER=https://op:4433
rt TEST_PROTOCOL=https
rt TEST_PORT=60003
rt TEST_HOSTNAME=op_test
rt NODE_TLS_REJECT_UNAUTHORIZED=0

/projects/oidc-provider-conformance-tests && npm run code

Remove previously registered clients, when in mod_auth_openidc's test directory:

f ../metadata/localhost%3A8080%2Fmod_auth_openidc%2Frp-*.client ../metadata/localhost%3A8080%2Fmod_auth_openidc%2Frp-*.provider

This work is supported by the National Institutes of Health's National Center for Advancing Translational Sciences, Grant Number U24TR002306. This work is solely the responsibility of the creators and does not necessarily represent the official views of the National Institutes of Health.