OIDCtest is a set of tools for testing OIDC implementations.
The OpenID Foundation (OIDF) provides an OpenID Connect self-certification service on top of this suite, see: http://openid.net/certification/
Whilst official self-certification happens at the service provided by the OIDF you can locally spin up the same services to test your OpenID Connect implementation using Docker as described below.
git checkout stable-release-1.2.x
docker-compose -f docker/docker-compose.yml up
that will run the OP and RP test suite and an actual OP in a docker-compose setting.
Then add the following entries to your /etc/hosts file:
127.0.0.1 op-test op rp-test
You can then access https://op-test:60000 for OP testing in the same way as you'd go to https://op.certification.openid.net:60000
Alternatively you can use https://rp-test:8080 for RP testing in the same way as you'd use https://rp.certification.openid.net:8080
i.e. by pointing your RP Client to the issuer https://rp-test:8080/<rp_id> using Dynamic Client Registration.
For integration into continuous integration builds of your OpenID Connect RP or OP software you can apply the same
Docker scripts and e.g. use something like the following in your Travis CI .travis.yml:
sudo: required
services:
- docker
addons:
hosts:
- op-test
- rp-test
- op
before_install:
- git clone https://github.com/openid-certification/oidctest.git
- cd oidctest
- git checkout stable-release-1.2.x
- docker-compose -f docker/docker-compose.yml up -d
- cd -
script:
- <test commands that point your software to https://op-test:60000 or https://rp-test:8080/<rp_id>>