...
2.5.1 Identity Provider Discovery (Andrew Lindsay-Stewart - alindsay-stewart@fugensolutions.com)
[What should be CONFIRMED through testing from this section?]To confirm:
- SP is able to determine appropriate IdP using a discovery service with user interaction
- User experience when no IdP selected e.g. discovery service down.
2.5.2.1 Authentication Requests Binding and Security Requirements (Jonathan Scudder - Jonathan.Scudder@forgerock.com)
...
2.5.4.1 Artifact Resolution Requests (Andrew Lindsay-Stewart - alindsay-stewart@fugensolutions.com)
...
To confirm:
- Requestor (SP) able to dereference artifact to be able to determine issuer
- Able to check artifact has not used been before
- Acceptance of signed SOAP request message
2.5.4.2 Artifact Resolution Responses(Andrew Lindsay-Stewart - alindsay-stewart@fugensolutions.com)
[What should be CONFIRMED through testing from this section?]To confirm:
- Responder (IdP) able to confirm validity of artifact
- Able to check artifact has not been used before
- Acceptance of signed SOAP response message with and without corresponding SAML assertion
2.7 SAML 2.0 Proxying (Bob Sunday - Robert.Sunday@tbs-sct.gc.ca)
...