3rd and last interop event this year.

31 views
Skip to first unread message

Roland Hedberg

unread,
Nov 16, 2020, 11:05:13 AM11/16/20
to 'Mike Jones' via openid-federation-interop
Hi !

Choose your preferred day here:

https://doodle.com/poll/yfy4h58hrkz9bt57?utm_source=poll&utm_medium=link


-- Roland
"Education is the path from cocky ignorance to miserable uncertainty.” - Mark Twain



Roland Hedberg

unread,
Nov 25, 2020, 8:12:42 AM11/25/20
to 'Mike Jones' via openid-federation-interop
Guys, please fill in the Doodle !

--
You received this message because you are subscribed to the Google Groups "openid-federation-interop" group.
To unsubscribe from this group and stop receiving emails from it, send an email to openid-federation-...@googlegroups.com.
To view this discussion on the web, visit https://groups.google.com/d/msgid/openid-federation-interop/E0C92133-6F85-41A0-A975-5211445E641D%40catalogix.se.

— Roland

The higher up you go, the more mistakes you are allowed. Right at the top, if you make enough of them, it's considered to be your style. 
-Fred Astaire, dancer, actor, singer, musician, and choreographer (10 May 1899-1987)

Vladimir Dzhuvinov

unread,
Nov 25, 2020, 8:29:47 AM11/25/20
to openid-feder...@googlegroups.com

Thank you Roland for the reminder, just put my dates in!

Roland Hedberg

unread,
Nov 27, 2020, 4:28:46 AM11/27/20
to Vladimir Dzhuvinov, openid-feder...@googlegroups.com
So, it seems like December 10th will be the day.

@Masood Could you possibly make that day ?

— Roland

Zaran, Masood

unread,
Nov 30, 2020, 9:49:45 AM11/30/20
to Roland Hedberg, Vladimir Dzhuvinov, openid-feder...@googlegroups.com

Yes, December 10th will work. Thanks.

--
You received this message because you are subscribed to the Google Groups "openid-federation-interop" group.
To unsubscribe from this group and stop receiving emails from it, send an email to openid-federation-...@googlegroups.com.

Roland Hedberg

unread,
Nov 30, 2020, 10:01:42 AM11/30/20
to Zaran, Masood, Vladimir Dzhuvinov, openid-feder...@googlegroups.com
Excellent !

Will soon (probably tomorrow) publish what I want us to test on the 10th.

Vladimir Dzhuvinov

unread,
Dec 2, 2020, 9:55:23 AM12/2/20
to Roland Hedberg, Zaran, Masood, openid-feder...@googlegroups.com

Thanks Roland, the 10th is now circled in my calendar :)

-- 
Vladimir Dzhuvinov

Roland Hedberg

unread,
Dec 4, 2020, 3:10:02 AM12/4/20
to Roland Hedberg, Zaran, Masood, Vladimir Dzhuvinov, openid-feder...@googlegroups.com
Hi!

Sorry for the delay.

What I want us to test on the 10th is:

- more RPs 
I do hope someone can set up one more RP. Just having mine isn’t good enough.

- metadata policy
- more the one federation
I though we could combine these two by setting up a federation beside the one we have right now
and have the trust anchor in that federation set up a policy that states that ES* cryptos are the only
        ones allowed. The parameters concerned are for RP metadata:
           - id_token_signed_response_alg
- userinfo_signed_response_alg
- request_object_signing_alg

- token_endpoint_auth_signing_lag
We’re probably not going to test all of these, most likely just id_token_signed_response_alg and
possibly token_endpoint_auth_signing_lag.

If we do explicit client registration on the second federation then the OP should apply the RP metadata 
policies to the registration response.

Does this seem feasible ?

Roland Hedberg

unread,
Dec 9, 2020, 3:58:05 AM12/9/20
to Roland Hedberg, Zaran, Masood, Vladimir Dzhuvinov, openid-feder...@googlegroups.com
Hi!

This is the setup

troots.json
Interop3 framework.jpg

Vladimir Dzhuvinov

unread,
Dec 9, 2020, 4:01:32 AM12/9/20
to Roland Hedberg, Roland Hedberg, Zaran, Masood, openid-feder...@googlegroups.com

Thanks Roland, I'll set up things on our side, so tomorrow we only need to config the anchors and intermediates.

Been quite busy those days so didn't manage to answer your previous emails.

Vladimir

On 09/12/2020 10:57, Roland Hedberg wrote:
Hi!

This is the setup

--
You received this message because you are subscribed to the Google Groups "openid-federation-interop" group.
To unsubscribe from this group and stop receiving emails from it, send an email to openid-federation-...@googlegroups.com.
To view this discussion on the web, visit https://groups.google.com/d/msgid/openid-federation-interop/825287ED-D6EF-4397-9F84-2089E7D4C9EF%40catalogix.se.


2 federations (FEIDE and SWAMID), 2 organisations (LU and UmU) that belongs to both federations.
FEIDE has a metadata policy that says that only ES* crypto is OK.
SWAMID has (as the last time) no metadata policy.

You can find the public keys of the trusted roots here

--
You received this message because you are subscribed to the Google Groups "openid-federation-interop" group.
To unsubscribe from this group and stop receiving emails from it, send an email to openid-federation-...@googlegroups.com.
To view this discussion on the web, visit https://groups.google.com/d/msgid/openid-federation-interop/825287ED-D6EF-4397-9F84-2089E7D4C9EF%40catalogix.se.



The system is up and running now if you want to do some initial testing before tomorrow.

— Roland

The higher up you go, the more mistakes you are allowed. Right at the top, if you make enough of them, it's considered to be your style. 
-Fred Astaire, dancer, actor, singer, musician, and choreographer (10 May 1899-1987)

--
You received this message because you are subscribed to the Google Groups "openid-federation-interop" group.
To unsubscribe from this group and stop receiving emails from it, send an email to openid-federation-...@googlegroups.com.

Roland Hedberg

unread,
Dec 9, 2020, 4:03:33 AM12/9/20
to Roland Hedberg, Zaran, Masood, Vladimir Dzhuvinov, openid-feder...@googlegroups.com
I don’t know what happened here.

I have 3 email addresses registered on this mailing list and what I received looked a bit different depending on
email address.

Anyway, some extra text seems to have creeped in some of the email I got.
Hope you can read it anyway. If not tell me and I’ll try to resend a clean version.

On 9 Dec 2020, at 09:57, Roland Hedberg <rol...@catalogix.se> wrote:

Hi!

This is the setup


--
You received this message because you are subscribed to the Google Groups "openid-federation-interop" group.
To unsubscribe from this group and stop receiving emails from it, send an email to openid-federation-...@googlegroups.com.

2 federations (FEIDE and SWAMID), 2 organisations (LU and UmU) that belongs to both federations.
FEIDE has a metadata policy that says that only ES* crypto is OK.
SWAMID has (as the last time) no metadata policy.

You can find the public keys of the trusted roots here


--
You received this message because you are subscribed to the Google Groups "openid-federation-interop" group.
To unsubscribe from this group and stop receiving emails from it, send an email to openid-federation-...@googlegroups.com.


The system is up and running now if you want to do some initial testing before tomorrow.

— Roland

The higher up you go, the more mistakes you are allowed. Right at the top, if you make enough of them, it's considered to be your style. 
-Fred Astaire, dancer, actor, singer, musician, and choreographer (10 May 1899-1987)

--
You received this message because you are subscribed to the Google Groups "openid-federation-interop" group.
To unsubscribe from this group and stop receiving emails from it, send an email to openid-federation-...@googlegroups.com.

- Roland

Otium cum dignitate - latin proverb

Reply all
Reply to author
Forward
0 new messages