search

RUB-NDS / PrOfESSOS

PrOfESSOS is our open source implementation for fully automated Evaluation-as-a-Service for SSO. PrOfESSOS introduces a generic approach to improve the security of OpenID Connect implementations by systematically detecting vulnerabilities.
28 stars 14 forks source link

Testing RP only supporting a single OP #5

Open bellgrim opened 7 years ago

bellgrim commented 7 years ago

I am testing a RP that can only be configured with a single OP. So there is no support for webfinger or similar and it will redirect to the OP directly.

It is still useful to test with PrOfESSOS as you can run the following test cases:

Perhaps you could add an option in the controller if you are testing a RP that supports single or multiple OP?

I now had to disable the following code to make it work:

mladevbb commented 7 years ago

Thanks. This is a very valuable input. We did not consider this issue till now.