Versions Compared

Old Version 42

changes.mady.by.user Eve Maler

Saved on

compared with

New Version 43

changes.mady.by.user Eve Maler

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

For the purposes of automating testing, we have agreed one option is to use a query parameter with the name _umaauthn to convey a token string that enables login of an RO or RqP. Any RqP credentials provided in the form of "token strings" below can be used in this fashion.

It is assumed that the C is claims-unaware and will be using the redirect claim profile to redirect the RqP to the AS for login as the sole claims-gathering process.

The "Alice" user can be used as both an RO and an RqP, and the "Bob" user can be used as an RqP. The different RqPs can be used with the same client to test policies that discriminate between RqPs using the same client. Clients "A" and "B" can be easily used to test policies that discriminate between the same RqP using different clients.

Solution:roleConfig data URLToken stringsStatic client RqP method and credentialsC credentialsSupports dynamic client registration?Other details
OX:AShttps://seed.gluu.org/.well-known/uma-configuration

Alice:

Bob:

RSOAuth Client A:
    "umaPatClientId":"- id: @!1111!0008!FF81!2D39",
    "umaPatClientSecret":"
- secret: 6213e9b9-c46d-4008-8af1-03f918a8ade4"

RPOAuth Client B:
    "umaAatClientId":"- id: @!1111!0008!0068.3E20",
    "umaAatClientSecret":"
- secret: 32c2fb17-409d-48a2-b793-a639c8ac6cb2"

RS: yes

C: yes

http://www.gluu.org/docs/admin-guide/uma/

CI:AShttps://demo.nuveam.com/.well-known/uma-configuration

Alice:

Bob:

Client A:

Client B:

RS: yes

C: yes

Product Website, Online Demo

RH:AS 

Alice:

Bob:

Client A:

Client B:

RS: yes

C: yes

 
ZX:AShttps://zxidp.org/.well-known/uma-configuration(Need new info) test:test or HTTPS client cert or SAML IdP https://zxidp.org/idp with test:test

Client A:

Client B:

RS: yes

C: yes

https://zxidp.org/umainfo.html

...

Solution:roleAPI infoSDK avail?Login URL and RO credsProtected resource URL(s) infoClient SDK/library infoExpects dynamic client registration at AS?Other details
OX:RSJavahttps://seed.gluu.org/oxuma-rs/

https://seed.gluu.org/oxuma-rs/ws/phone

CRUD:
1. GET (view phones) : protected by "view" or "all" scope
2. DELETE (remove phone) : protected by "remove" or "all" scope
3. PUT (create/update phone) : protected by "add" or "all" scope

Scopes:
http://seed.gluu.org/oxuma-rs/ws/scope/add
http://seed.gluu.org/oxuma-rs/ws/scope/view
http://seed.gluu.org/oxuma-rs/ws/scope/all
http://seed.gluu.org/oxuma-rs/ws/scope/remove

   
CI:RShttps://nuvepds.appspot.com/about/apiPython and Javahttps://nuvepds.appspot.com (sign in with your social profile)https://nuvepds.appspot.com/about/api Optional 
RH:RSUses "pbryan" (http-json-resource) https://xenosmilus.umdc.umu.se:8777/login.html (user:alice, password:krall)Base URL for alice's resources: https://xenosmilus.umdc.umu.se:8777/json/aliceAvailable in Python and Java (sample at https://nuvepdsclient.appspot.com/) – where? Supports webfinger. Supports acct and http identifier urls.
ZX:RShttps://zxidp.org/umainfo.htmllibzxid (C/C++, PHP, Perl, Java, Apache httpd module)https://zxidp.org/idpuma?o=umalogin (test:test)https://zxidp.org/idpuma?o=umaprotected?? 

Solution information: C role

...