Recent logs Source: [Page] [Test] [DotNetOpenAuth]

OSIS I5 OpenID Interop testing

Warning: all operations on this page are logged for public viewing. Do not share personally identifiable information.

RP verifies assertions against discovery results


  1. Log into an OpenID 2.0 RP to be tested using this identifier:
  2. Upon being redirected to this page for authentication, select a kind of tampering technique to apply.
  3. Record whether the RP rejects the authentication.
  4. Restart from step 1, until all tampering techniques have been tested. Do not simply click the Back button to select another tampering technique. You must reinitiate the authentication from the RP to guarantee the RP fails for assertion verification reasons rather than request_nonce invalidation.

Passing criteria

The RP passes if every way to tamper with the assertion generates the expected failed or successful authentication at the RP.