From 751f22343990f212f7d9ef2a118a275a455741a9 Mon Sep 17 00:00:00 2001 From: Floris Fokkinga Date: Thu, 5 Dec 2024 14:23:22 +0100 Subject: [PATCH] Reverted change in log and test --- ...edirectToFeedbackPageExceptionListener.php | 2 +- .../Features/AcsTinkering.feature | 4 +-- .../Features/AttributeAggregation.feature | 2 +- .../Features/AttributeManipulation.feature | 8 +++--- .../AttributeManipulationException.feature | 4 +-- ...nWithAllManipulationsBeforeConsent.feature | 4 +-- .../Features/AttributeReleasePolicy.feature | 26 +++++++++---------- ...yWithAllManipulationsBeforeConsent.feature | 12 ++++----- .../Features/AuthenticationLoop.feature | 2 +- .../Features/Bindings.feature | 2 +- .../Features/ClearErrorMessages.feature | 6 ++--- .../Features/Consent.feature | 4 +-- .../DisplayUnconnectedIdpsWayf.feature | 2 +- .../Features/EduPersonTargetedId.feature | 10 +++---- .../Features/Encryption.feature | 2 +- .../Features/FeedbackFooters.feature | 2 +- .../Features/InternalCollabPersonId.feature | 4 +-- .../Features/IsPassive.feature | 2 +- .../Features/LocaleSelection.feature | 2 +- .../Features/Logout.feature | 2 +- .../Features/Metadata.feature | 4 +-- .../Features/MfaAuthnContextClassRef.feature | 4 +-- .../Features/MultipleSingleSignOn.feature | 4 +-- .../Features/NameIdFormat.feature | 2 +- .../Features/PolicyEnforcement.feature | 6 ++--- .../SignatureBypassVulnerability.feature | 2 +- .../Features/SingleSignOn.feature | 4 +-- .../Features/SingleSignOnWithScoping.feature | 4 +-- .../Features/SpProxy.feature | 10 +++---- .../Features/StatusCodes.feature | 2 +- .../Features/Stepup.feature | 6 ++--- .../Features/StepupKeyRollover.feature | 6 ++--- .../Features/UnsolicitedSingleSignOn.feature | 2 +- .../UnsolicitedSingleSignOnDisabled.feature | 2 +- 34 files changed, 80 insertions(+), 80 deletions(-) diff --git a/src/OpenConext/EngineBlockBundle/EventListener/RedirectToFeedbackPageExceptionListener.php b/src/OpenConext/EngineBlockBundle/EventListener/RedirectToFeedbackPageExceptionListener.php index 6575cbb234..aa17af6f18 100644 --- a/src/OpenConext/EngineBlockBundle/EventListener/RedirectToFeedbackPageExceptionListener.php +++ b/src/OpenConext/EngineBlockBundle/EventListener/RedirectToFeedbackPageExceptionListener.php @@ -156,7 +156,7 @@ public function onKernelException(GetResponseForExceptionEvent $event) $message = 'Unable to verify message'; $redirectToRoute = 'authentication_feedback_verification_failed'; } elseif ($exception instanceof EngineBlock_Exception_UnknownServiceProvider) { - $message = 'Unknown application Provider'; + $message = 'Unknown Service Provider'; $redirectToRoute = 'authentication_feedback_unknown_service_provider'; $redirectParams = [ diff --git a/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/AcsTinkering.feature b/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/AcsTinkering.feature index 70094c3bf0..3e12d9df4a 100644 --- a/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/AcsTinkering.feature +++ b/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/AcsTinkering.feature @@ -8,8 +8,8 @@ Feature: And no registered SPs And no registered Idps And an Identity Provider named "AlwaysAuth" - And an application named "Malicious SP" - And an application named "Malconfigured SP" + And a Service Provider named "Malicious SP" + And a Service Provider named "Malconfigured SP" And SP "Malicious SP" is set with acs location "javascript:alert('Hello world')" And SP "Malconfigured SP" is set with acs location "sp.example.com" diff --git a/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/AttributeAggregation.feature b/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/AttributeAggregation.feature index d37f12939b..6fc76d6b27 100644 --- a/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/AttributeAggregation.feature +++ b/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/AttributeAggregation.feature @@ -8,7 +8,7 @@ Feature: And no registered SPs And no registered Idps And an Identity Provider named "IDP-AA" - And an application named "SP-AA" + And a Service Provider named "SP-AA" And SP "SP-AA" requires attribute aggregation And feature "eb.run_all_manipulations_prior_to_consent" is disabled diff --git a/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/AttributeManipulation.feature b/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/AttributeManipulation.feature index 551faf5616..8cf7b473fd 100644 --- a/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/AttributeManipulation.feature +++ b/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/AttributeManipulation.feature @@ -9,10 +9,10 @@ Feature: And no registered Idps And an Identity Provider named "Dummy-IdP" And an Identity Provider named "IdP-with-Attribute-Manipulations" - And an application named "Dummy-SP" - And an application named "SP-with-Attribute-Manipulations" - And an application named "Stepup Gateway" - And an application named "Stepup SelfService" + And a Service Provider named "Dummy-SP" + And a Service Provider named "SP-with-Attribute-Manipulations" + And a Service Provider named "Stepup Gateway" + And a Service Provider named "Stepup SelfService" And feature "eb.run_all_manipulations_prior_to_consent" is disabled Scenario: The application can have an attribute added diff --git a/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/AttributeManipulationException.feature b/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/AttributeManipulationException.feature index da89612a7a..e994c9fe08 100644 --- a/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/AttributeManipulationException.feature +++ b/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/AttributeManipulationException.feature @@ -9,8 +9,8 @@ Feature: And no registered Idps And an Identity Provider named "Dummy-IdP" And an Identity Provider named "IdP-with-Attribute-Manipulations" - And an application named "Dummy-SP" - And an application named "SP-with-Attribute-Manipulations" + And a Service Provider named "Dummy-SP" + And a Service Provider named "SP-with-Attribute-Manipulations" Scenario: The application can have an attribute added Given SP "SP-with-Attribute-Manipulations" has the following Attribute Manipulation: diff --git a/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/AttributeManipulationWithAllManipulationsBeforeConsent.feature b/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/AttributeManipulationWithAllManipulationsBeforeConsent.feature index 8d421e8daa..fab9c457fb 100644 --- a/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/AttributeManipulationWithAllManipulationsBeforeConsent.feature +++ b/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/AttributeManipulationWithAllManipulationsBeforeConsent.feature @@ -9,8 +9,8 @@ Feature: And no registered Idps And an Identity Provider named "Dummy-IdP" And an Identity Provider named "IdP-with-Attribute-Manipulations" - And an application named "Dummy-SP" - And an application named "SP-with-Attribute-Manipulations" + And a Service Provider named "Dummy-SP" + And a Service Provider named "SP-with-Attribute-Manipulations" And feature "eb.run_all_manipulations_prior_to_consent" is enabled Scenario: The application can have an attribute added diff --git a/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/AttributeReleasePolicy.feature b/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/AttributeReleasePolicy.feature index 1bc7573201..7b6c709745 100644 --- a/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/AttributeReleasePolicy.feature +++ b/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/AttributeReleasePolicy.feature @@ -8,19 +8,19 @@ Feature: And no registered SPs And no registered Idps And an Identity Provider named "TestIdp" - And an application named "No ARP" - And an application named "Empty ARP" - And an application named "Wildcard ARP" - And an application named "Wrong Value ARP" - And an application named "Right Value ARP" - And an application named "Specific Value ARP" - And an application named "Two value ARP" - And an application named "Trusted Proxy" - And an application named "Stepup Gateway" - And an application named "Stepup SelfService" - And an application named "Release As" - And an application named "Use as NameID" - And an application named "Use as NameID and Release As" + And a Service Provider named "No ARP" + And a Service Provider named "Empty ARP" + And a Service Provider named "Wildcard ARP" + And a Service Provider named "Wrong Value ARP" + And a Service Provider named "Right Value ARP" + And a Service Provider named "Specific Value ARP" + And a Service Provider named "Two value ARP" + And a Service Provider named "Trusted Proxy" + And a Service Provider named "Stepup Gateway" + And a Service Provider named "Stepup SelfService" + And a Service Provider named "Release As" + And a Service Provider named "Use as NameID" + And a Service Provider named "Use as NameID and Release As" And SP "Empty ARP" allows no attributes And SP "Wildcard ARP" allows an attribute named "urn:mace:dir:attribute-def:uid" And SP "Wrong Value ARP" allows an attribute named "urn:mace:terena.org:attribute-def:schacHomeOrganization" with value "example.edu" diff --git a/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/AttributeReleasePolicyWithAllManipulationsBeforeConsent.feature b/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/AttributeReleasePolicyWithAllManipulationsBeforeConsent.feature index d69964660a..76ec668e97 100644 --- a/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/AttributeReleasePolicyWithAllManipulationsBeforeConsent.feature +++ b/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/AttributeReleasePolicyWithAllManipulationsBeforeConsent.feature @@ -8,12 +8,12 @@ Feature: And no registered SPs And no registered Idps And an Identity Provider named "TestIdp" - And an application named "No ARP" - And an application named "Empty ARP" - And an application named "Wildcard ARP" - And an application named "Wrong Value ARP" - And an application named "Right Value ARP" - And an application named "Two value ARP" + And a Service Provider named "No ARP" + And a Service Provider named "Empty ARP" + And a Service Provider named "Wildcard ARP" + And a Service Provider named "Wrong Value ARP" + And a Service Provider named "Right Value ARP" + And a Service Provider named "Two value ARP" And SP "Empty ARP" allows no attributes And SP "Wildcard ARP" allows an attribute named "urn:mace:dir:attribute-def:uid" And SP "Wrong Value ARP" allows an attribute named "urn:mace:terena.org:attribute-def:schacHomeOrganization" with value "example.edu" diff --git a/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/AuthenticationLoop.feature b/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/AuthenticationLoop.feature index fa3e858267..a69e8d71b5 100644 --- a/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/AuthenticationLoop.feature +++ b/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/AuthenticationLoop.feature @@ -9,7 +9,7 @@ Feature: And no registered SPs And no registered Idps And an Identity Provider named "Dummy Idp" - And an application named "Dummy SP" + And a Service Provider named "Dummy SP" Scenario: an authentication loop is detected When I log in at "Dummy SP" diff --git a/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/Bindings.feature b/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/Bindings.feature index c056dce478..95578fed12 100644 --- a/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/Bindings.feature +++ b/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/Bindings.feature @@ -8,7 +8,7 @@ Feature: And no registered SPs And no registered Idps And an Identity Provider named "Dummy Idp" - And an application named "Dummy SP" + And a Service Provider named "Dummy SP" Scenario: EngineBlock accepts AuthnRequests using HTTP-POST binding Given the SP uses the HTTP POST Binding diff --git a/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/ClearErrorMessages.feature b/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/ClearErrorMessages.feature index f39185d661..bcfec84d71 100644 --- a/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/ClearErrorMessages.feature +++ b/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/ClearErrorMessages.feature @@ -8,9 +8,9 @@ Feature: And no registered SPs And no registered Idps And an Identity Provider named "Dummy Idp" - And an application named "Dummy SP" - And an application named "Unconnected SP" - And an application named "Trusted SP" + And a Service Provider named "Dummy SP" + And a Service Provider named "Unconnected SP" + And a Service Provider named "Trusted SP" And an unregistered application named "Unregistered SP" And SP "Unconnected SP" is not connected to IdP "Dummy Idp" diff --git a/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/Consent.feature b/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/Consent.feature index d61d67e9d2..c57cf198ac 100644 --- a/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/Consent.feature +++ b/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/Consent.feature @@ -7,8 +7,8 @@ Feature: Background: Given an EngineBlock instance on "vm.openconext.org" And an Identity Provider named "Dummy-IdP" - And an application named "Dummy-SP" - And an application named "Trusted Proxy" + And a Service Provider named "Dummy-SP" + And a Service Provider named "Trusted Proxy" And SP "Dummy-SP" allows the following attributes: | Name | Value | Source | Motivation | diff --git a/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/DisplayUnconnectedIdpsWayf.feature b/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/DisplayUnconnectedIdpsWayf.feature index 3effad6e25..ed04d7d171 100644 --- a/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/DisplayUnconnectedIdpsWayf.feature +++ b/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/DisplayUnconnectedIdpsWayf.feature @@ -7,7 +7,7 @@ Feature: Given an EngineBlock instance on "vm.openconext.org" And no registered SPs And no registered Idps - And an application named "SP" + And a Service Provider named "SP" And an Identity Provider named "Connected IdP1" And an Identity Provider named "Connected IdP2" And an Identity Provider named "Unconnected IdP1" diff --git a/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/EduPersonTargetedId.feature b/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/EduPersonTargetedId.feature index 70768fc72d..4f9b6761b3 100644 --- a/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/EduPersonTargetedId.feature +++ b/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/EduPersonTargetedId.feature @@ -8,11 +8,11 @@ Feature: And no registered SPs And no registered Idps And an Identity Provider named "TestIdp" - And an application named "No ARP" - And an application named "Empty ARP" - And an application named "ARP without ePTI" - And an application named "ARP with ePTI" - And an application named "Step Up" + And a Service Provider named "No ARP" + And a Service Provider named "Empty ARP" + And a Service Provider named "ARP without ePTI" + And a Service Provider named "ARP with ePTI" + And a Service Provider named "Step Up" And SP "ARP with ePTI" uses the Unspecified NameID format And SP "Empty ARP" allows no attributes And SP "ARP without ePTI" allows an attribute named "urn:mace:dir:attribute-def:uid" diff --git a/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/Encryption.feature b/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/Encryption.feature index a9ad01354a..0654bcb7d3 100644 --- a/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/Encryption.feature +++ b/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/Encryption.feature @@ -8,7 +8,7 @@ Feature: And no registered SPs And no registered Idps And an Identity Provider named "Dummy Idp" - And an application named "Dummy SP" + And a Service Provider named "Dummy SP" Scenario: EngineBlock accepts RSA Encrypted Responses Given the SP uses the HTTP POST Binding diff --git a/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/FeedbackFooters.feature b/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/FeedbackFooters.feature index d2ac69e870..0b7ec82dae 100644 --- a/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/FeedbackFooters.feature +++ b/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/FeedbackFooters.feature @@ -8,7 +8,7 @@ Feature: And no registered SPs And no registered Idps And an Identity Provider named "Dummy Idp" - And an application named "Dummy SP" + And a Service Provider named "Dummy SP" Scenario: When a wiki link is configured in a translation the wiki link should be visible Given I have configured the following translations: diff --git a/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/InternalCollabPersonId.feature b/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/InternalCollabPersonId.feature index 1c690b88e3..d4e7a9a96b 100644 --- a/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/InternalCollabPersonId.feature +++ b/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/InternalCollabPersonId.feature @@ -8,8 +8,8 @@ Feature: And no registered SPs And no registered Idps And an Identity Provider named "AlwaysAuth" - And an application named "Step Up TP" - And an application named "SelfService" + And a Service Provider named "Step Up TP" + And a Service Provider named "SelfService" Scenario: User logs in to SP, in that case the internalCollabPersonId should NOT be present Given SP "SelfService" signs its requests diff --git a/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/IsPassive.feature b/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/IsPassive.feature index ad939bdc4b..dfa8978862 100644 --- a/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/IsPassive.feature +++ b/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/IsPassive.feature @@ -8,7 +8,7 @@ Feature: And no registered SPs And no registered Idps And an Identity Provider named "Dummy IdP" - And an application named "Dummy SP" + And a Service Provider named "Dummy SP" Scenario: A passive AuthnRequest is handled without issue Given SP "Dummy SP" is configured to generate a passive AuthnRequest diff --git a/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/LocaleSelection.feature b/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/LocaleSelection.feature index b2b8b3b4d3..b7ba806443 100644 --- a/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/LocaleSelection.feature +++ b/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/LocaleSelection.feature @@ -8,7 +8,7 @@ Feature: Given an EngineBlock instance on "vm.openconext.org" And an Identity Provider named "First IdP" And an Identity Provider named "Second IdP" - And an application named "Test SP" + And a Service Provider named "Test SP" And my browser is configured to accept language "nl-NL" Scenario: a user makes their first visit and doesn't have a locale cookie diff --git a/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/Logout.feature b/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/Logout.feature index 2ba0abab3c..e05e1caba5 100644 --- a/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/Logout.feature +++ b/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/Logout.feature @@ -8,7 +8,7 @@ Feature: And no registered SPs And no registered Idps And an Identity Provider named "Dummy IdP" - And an application named "Dummy SP" + And a Service Provider named "Dummy SP" Scenario: A user can log out When I log in at "Dummy SP" diff --git a/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/Metadata.feature b/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/Metadata.feature index a0b3f6d4c3..58698f5f98 100644 --- a/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/Metadata.feature +++ b/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/Metadata.feature @@ -103,7 +103,7 @@ Feature: Given an Identity Provider named "Connected-IdP" And an Identity Provider named "Second-Connected-IdP" And an Identity Provider named "Not-Connected-IdP" - And an application named "Test-SP" + And a Service Provider named "Test-SP" And SP "Test-SP" is not connected to IdP "Not-Connected-IdP" When I go to Engineblock URL "/authentication/proxy/idps-metadata?sp-entity-id=https://engine.vm.openconext.org/functional-testing/Test-SP/metadata" # Verify the two connected IdPs are present in the list @@ -185,7 +185,7 @@ Feature: Given an Identity Provider named "Connected-IdP" And an Identity Provider named "Second-Connected-IdP" And an Identity Provider named "Not-Connected-IdP" - And an application named "Test-SP" + And a Service Provider named "Test-SP" And SP "Test-SP" is not connected to IdP "Not-Connected-IdP" When I go to Engineblock URL "/authentication/proxy/idps-metadata/key:default?sp-entity-id=https://engine.vm.openconext.org/functional-testing/Test-SP/metadata" # Verify the two connected IdPs are present in the list diff --git a/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/MfaAuthnContextClassRef.feature b/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/MfaAuthnContextClassRef.feature index d2cadfbf8c..c2d3122730 100644 --- a/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/MfaAuthnContextClassRef.feature +++ b/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/MfaAuthnContextClassRef.feature @@ -8,8 +8,8 @@ Feature: And no registered SPs And no registered Idps And an Identity Provider named "SSO-IdP" - And an application named "SSO-SP" - And an application named "Trusted SP" + And a Service Provider named "SSO-SP" + And a Service Provider named "Trusted SP" Scenario: The configured authn method should be set as AuthnContextClassRef if configured with the IdP configuration mapping Given the IdP "SSO-IdP" is configured for MFA authn method "http://schemas.microsoft.com/claims/multipleauthn" for SP "SSO-SP" diff --git a/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/MultipleSingleSignOn.feature b/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/MultipleSingleSignOn.feature index 9f7da7ec70..3d34871bb8 100644 --- a/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/MultipleSingleSignOn.feature +++ b/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/MultipleSingleSignOn.feature @@ -9,8 +9,8 @@ Feature: And no registered SPs And no registered Idps And an Identity Provider named "SSO-IdP" - And an application named "SSO-SP" - And an application named "SSO-Two" + And a Service Provider named "SSO-SP" + And a Service Provider named "SSO-Two" And I open 2 browser tabs identified by "Browser tab 1, Browser tab 2" Scenario: Two solicited authentication requests sequential diff --git a/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/NameIdFormat.feature b/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/NameIdFormat.feature index e21e28931e..b3ebd32766 100644 --- a/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/NameIdFormat.feature +++ b/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/NameIdFormat.feature @@ -8,7 +8,7 @@ Feature: And no registered SPs And no registered Idps And an Identity Provider named "SSO-IdP" - And an application named "SSO-SP" + And a Service Provider named "SSO-SP" Scenario: EngineBlock should not update the Unspecified NameIdFormat when no ARP filters are applied Given SP "SSO-SP" uses the Unspecified NameID format diff --git a/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/PolicyEnforcement.feature b/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/PolicyEnforcement.feature index f4c6cd374e..622c3d3640 100644 --- a/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/PolicyEnforcement.feature +++ b/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/PolicyEnforcement.feature @@ -8,9 +8,9 @@ Feature: And no registered SPs And no registered Idps And an Identity Provider named "Dummy IdP" with logo "idp-logo.jpg" - And an application named "Dummy SP" - And an application named "Stepup Gateway" - And an application named "Stepup SelfService" + And a Service Provider named "Dummy SP" + And a Service Provider named "Stepup Gateway" + And a Service Provider named "Stepup SelfService" Scenario: Access is denied because of an IdP specific Deny policy a logo is shown Given SP "Dummy SP" requires a policy enforcement decision diff --git a/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/SignatureBypassVulnerability.feature b/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/SignatureBypassVulnerability.feature index e7a2e42dcd..02fdfc8a2e 100644 --- a/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/SignatureBypassVulnerability.feature +++ b/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/SignatureBypassVulnerability.feature @@ -8,7 +8,7 @@ Feature: And no registered SPs And no registered Idps And an Identity Provider named "IdP" - And an application named "SP" + And a Service Provider named "SP" Scenario: Throw an exception if the assertion signature is tampered with When I log in at "SP" diff --git a/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/SingleSignOn.feature b/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/SingleSignOn.feature index 16d5741fdf..7b382970d2 100644 --- a/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/SingleSignOn.feature +++ b/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/SingleSignOn.feature @@ -9,8 +9,8 @@ Feature: And no registered Idps And an Identity Provider named "SSO-IdP" And an Identity Provider named "SSO-Foobar" - And an application named "SSO-SP" - And an application named "SSO-Foobar" + And a Service Provider named "SSO-SP" + And a Service Provider named "SSO-Foobar" Scenario: IdPs are allowed to create NameIDs When I log in at "SSO-SP" diff --git a/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/SingleSignOnWithScoping.feature b/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/SingleSignOnWithScoping.feature index d0da7ce5af..c3035d10df 100644 --- a/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/SingleSignOnWithScoping.feature +++ b/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/SingleSignOnWithScoping.feature @@ -11,8 +11,8 @@ Feature: And an Identity Provider named "IDP2" And an Identity Provider named "IDP3" And an Identity Provider named "IDP4" - And an application named "SP" - And an application named "remoteSP" + And a Service Provider named "SP" + And a Service Provider named "remoteSP" Scenario: The WAYF shows only allowed IDPs Given SP "SP" is not connected to IdP "IDP2" diff --git a/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/SpProxy.feature b/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/SpProxy.feature index 613ec4980b..065312731f 100644 --- a/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/SpProxy.feature +++ b/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/SpProxy.feature @@ -11,11 +11,11 @@ Feature: And an Identity Provider named "StepUpOnlyAuth" And an Identity Provider named "LoaOnlyAuth" And an Identity Provider named "CombinedAuth" - And an application named "Step Up" - And an application named "Loa SP" - And an application named "Far SP" - And an application named "Test SP" - And an application named "Second SP" + And a Service Provider named "Step Up" + And a Service Provider named "Loa SP" + And a Service Provider named "Far SP" + And a Service Provider named "Test SP" + And a Service Provider named "Second SP" And an unregistered application named "Unregistered SP" And SP "Far SP" is not connected to IdP "CombinedAuth" And SP "Far SP" is not connected to IdP "LoaOnlyAuth" diff --git a/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/StatusCodes.feature b/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/StatusCodes.feature index b0c97d02ce..def9ffb69d 100644 --- a/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/StatusCodes.feature +++ b/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/StatusCodes.feature @@ -8,7 +8,7 @@ Feature: And no registered SPs And no registered Idps And an Identity Provider named "Dummy Idp" - And an application named "Dummy SP" + And a Service Provider named "Dummy SP" Scenario: Proxying exceeds the allowed ProxyCount in the AuthnRequest Given SP "Dummy SP" is configured to generate a AuthnRequest with a ProxyCount of 0 diff --git a/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/Stepup.feature b/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/Stepup.feature index 0d2271fd49..91959b798e 100644 --- a/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/Stepup.feature +++ b/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/Stepup.feature @@ -8,10 +8,10 @@ Feature: And no registered SPs And no registered Idps And an Identity Provider named "SSO-IdP" - And an application named "SSO-SP" + And a Service Provider named "SSO-SP" And an Identity Provider named "Dummy-IdP" - And an application named "Dummy-SP" - And an application named "Proxy-SP" + And a Service Provider named "Dummy-SP" + And a Service Provider named "Proxy-SP" Scenario: Stepup authentication should be supported if set through SP configuration Given the SP "SSO-SP" requires Stepup LoA "http://vm.openconext.org/assurance/loa2" diff --git a/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/StepupKeyRollover.feature b/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/StepupKeyRollover.feature index e25a7fd437..aeac7057ad 100644 --- a/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/StepupKeyRollover.feature +++ b/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/StepupKeyRollover.feature @@ -10,10 +10,10 @@ Feature: And no registered SPs And no registered Idps And an Identity Provider named "SSO-IdP" - And an application named "SSO-SP" + And a Service Provider named "SSO-SP" And an Identity Provider named "Dummy-IdP" - And an application named "Dummy-SP" - And an application named "Proxy-SP" + And a Service Provider named "Dummy-SP" + And a Service Provider named "Proxy-SP" Scenario: When stepup.sfo.override_engine_entityid is not configured, stepup/metadata should show default EntityId Given feature "eb.stepup.sfo.override_engine_entityid" is disabled diff --git a/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/UnsolicitedSingleSignOn.feature b/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/UnsolicitedSingleSignOn.feature index 89bc4bd450..3dcaf28b6d 100644 --- a/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/UnsolicitedSingleSignOn.feature +++ b/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/UnsolicitedSingleSignOn.feature @@ -8,7 +8,7 @@ Feature: And no registered SPs And no registered Idps And an Identity Provider named "Dummy IdP" - And an application named "Dummy SP" + And a Service Provider named "Dummy SP" Scenario: An IdP can initiated a login When An IdP initiated Single Sign on for SP "Dummy SP" is triggered by IdP "Dummy IdP" diff --git a/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/UnsolicitedSingleSignOnDisabled.feature b/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/UnsolicitedSingleSignOnDisabled.feature index 2e7b3f70af..0f86bb2b32 100644 --- a/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/UnsolicitedSingleSignOnDisabled.feature +++ b/src/OpenConext/EngineBlockFunctionalTestingBundle/Features/UnsolicitedSingleSignOnDisabled.feature @@ -9,7 +9,7 @@ Feature: And no registered SPs And no registered Idps And an Identity Provider named "Dummy IdP" - And an application named "Dummy SP" + And a Service Provider named "Dummy SP" # The feature flag: eb.feature_enable_idp_initiated_flow can disable unsolicited login # EB Shows a 404 page in that case as the entire HTTP route is blocked in that case