Quick view

Introduction

aduneoclientfedid is used to test OpenID Connect, OAuth 2 and SAML configurations. It acts as a federation client mimicking an application.

After an initial configuration, various flows are tested. The application may obtain tokens and assertions that can be validated, then used for user info, introspection and exchange.

It is useful for:

• testing a newly installed identity provider

• learning how identity federation works

• understanding a specific feature

• debugging a faulty client configuration by replicating it

• learning how to code OpenID Connect, OAuth 2 or SAML 2

Contents

• Quick View
• Supported Protocols
  • OpenID Connect
  • OAuth 2
  • SAML
• Installation
• Running aduneoclientfedid
• Running from sources
• Testing OpenID Connect
  • How it works
  • Configuration
    • OpenID Provider configuration
    • aduneoclientfedid configuration
    • Default parameters
    • Options
  • OpenID Connect Logout
• Testing OAuth 2
  • How it works
  • Configuration
    • Authorization Server configuration
    • aduneoclientfedid configuration
    • Default parameters
    • Options
  • Access Token Introspection
  • Refreshing Access Tokens
  • Token Exchange
• Testing SAML 2
  • How it works
  • Configuration
  • SAML Logout
• General configuration
  • meta/key: encryption key file name
  • server/host
  • server/port
  • server/ssl
  • server/ssl_key_file and server/ssl_cert_file
  • preferences/logging/handler
  • preferences/open_webconsole
  • preferences/clipboard/encrypt_clipboard
  • preferences/clipboard/remember_secrets