mace-opensaml-users - RE: [OpenSAML] [OpenSAML2] Testing SAML relying party browser post profile
Subject: OpenSAML user discussion
List archive
- From: "Pantvaidya, Vishwajit" <>
- To: "" <>
- Subject: RE: [OpenSAML] [OpenSAML2] Testing SAML relying party browser post profile
- Date: Mon, 1 Dec 2008 16:02:35 -0800
- Accept-language: en-US
- Acceptlanguage: en-US
For using the test IdP service at testshib.org, I need to register my service
provider with it - and when I try that I get "Entry could not be stored due
to a servlet error ".
I gave the following input:
1. name of the SP machine - for this I provided the external ip address of
the machine (instead of the machine name) on which my SP server runs. Is that
okay?
2. the SP's certificate
- since my SP installtion does not user Shibboleth, it did not
generate any certificate. So I left this empty. Is this the problem?
- what is this certificate used for?
> -----Original Message-----
> From: Pantvaidya, Vishwajit
> [mailto:]
> Sent: Friday, November 07, 2008 3:25 PM
> To:
>
> Subject: RE: [OpenSAML] [OpenSAML2] Testing SAML relying party browser
> post profile
>
> Thanks.
> The test IdP seems just right. Does it let me provide my own public-
> private or secret keys that I generated to test my SP?
>
>
>
> -----Original Message-----
> From: Brent Putman
> [mailto:]
> Sent: Friday, November 07, 2008 2:53 PM
> To:
>
> Subject: Re: [OpenSAML] [OpenSAML2] Testing SAML relying party browser
> post profile
>
> I don't know off-hand of any tools per se, especially that would
> facilitate automated QA testing. Wouldn't be hard to write a little
> script or tool as you suggested.
>
> If you wanted to go to the trouble to test against a full SAML IdP, you
> could install a Shibboleth 2.0 IdP, Internet2's open source SAML IdP
> implementation, based on OpenSAML. http://shibboleth.internet2.edu/
>
> Or you could use the public test IdP that the Shibboleth team runs
> called TestShib. http://www.testshib.org/. That's primarily intended
> for people testing either SP or IdP Shibboleth installations, so the
> instructions there are a little Shibboleth-centric. But generally
> speaking Shib IdP's interop with non-Shib SP's and vice-versa. If you
> just register as an SP, and provide the right metadata when you
> register, you should be able to interop with the TestShib IdP.
>
> --Brent
>
>
> Pantvaidya, Vishwajit wrote:
> > I was wondering if there are any tools available for testing a browser
> post profile implementation at the relying party (service provider). I was
> planning to just take some saml xml data dumps that I have and write java
> code to deserialize it, sign it and send it to the service provider.
> Before I do that, just wanted to know if there are tools that can do it
> especially from the point of view of automating qa for this functionality.
> >
> >
> > - Vish.
> >
> >
- RE: [OpenSAML] [OpenSAML2] Testing SAML relying party browser post profile, Pantvaidya, Vishwajit, 12/01/2008
- RE: [OpenSAML] [OpenSAML2] Testing SAML relying party browser post profile, Scott Cantor, 12/02/2008
- RE: [OpenSAML] Testing SAML relying party browser post profile, Pantvaidya, Vishwajit, 12/02/2008
- RE: [OpenSAML] Testing SAML relying party browser post profile, Scott Cantor, 12/02/2008
- RE: [OpenSAML] Testing SAML relying party browser post profile, Pantvaidya, Vishwajit, 12/02/2008
- RE: [OpenSAML] [OpenSAML2] Testing SAML relying party browser post profile, Scott Cantor, 12/02/2008
Archive powered by MHonArc 2.6.16.