OpenID Connect – Interop Testing Details

From IIW

Session Topic: Open ID Connect Interop Testing Details

Tuesday 3A

Convener: Mike Jones & Roland Hedberg

Notes-taker(s): Mike Jones

Discussion notes, key understandings, outstanding questions, observations, and, if appropriate to this discussion: action items, next steps:

Add tests for third-party initiated login

Form post response mode

Registration specifying keys using "jwks_uri"

Registration specifying keys using "jwks"

WebFinger tests

Verify that issuer in discovery doc matches "iss" in ID Token

Key rotation tests

Do OP, RP support standard MTI algorithms

Support for request and request_uri parameters

Test for require_request_uri_registration

Test for default_max_age

Test for require_auth_time

Test for request_uris

Tests using ui_locales and claims_locales

Review acr tests

Test that server certificate validates

Update names in the existing tests:
              logo_uri instead of logo_url
              policy_uri instead of policy_url
              *_url -> *_uri
              user_id -> sub