Public
Authored by Andreas Åkre Solberg

Verification of AuthEngine UI

Verifying Dataporten Authengine UI

Open all flows in incognito.

Root

https://auth.dataporten.no

Nothing special, links to docs.

OpenID Configuration

https://auth.dataporten.no/.well-known/openid-configuration

Normal login

Account chooser expected.

https://auth.dataporten.no/oauth/authorization?response_type=token&redirect_uri=https%3A%2F%2Fplay.oauth.no%2Fcallback&client_id=6233aedf-f08a-4112-9a1b-f33c3cd9b396&state=741e4a15-5c14-4e3d-ada8-f65c4c76ecb2

Redirect_uri missing, should be ok. account chooser expected.

https://auth.dataporten.no/oauth/authorization?response_type=token&client_id=6233aedf-f08a-4112-9a1b-f33c3cd9b396&state=741e4a15-5c14-4e3d-ada8-f65c4c76ecb2

OpenID without redirect_uri, should throw error

https://auth.dataporten.no/oauth/authorization?scope=openid&response_type=code&client_id=6233aedf-f08a-4112-9a1b-f33c3cd9b396&state=741e4a15-5c14-4e3d-ada8-f65c4c76ecb2

Invalid redirect_uri

Show error

https://auth.dataporten.no/oauth/authorization?response_type=token&redirect_uri=_https%3A%2F%2Fplay.oauth.no%2Fcallback&client_id=6233aedf-f08a-4112-9a1b-f33c3cd9b396&state=741e4a15-5c14-4e3d-ada8-f65c4c76ecb2

OpenID Normal request

Account chooser expected.

https://auth.dataporten.no/oauth/authorization?scope=openid&response_type=code&redirect_uri=https%3A%2F%2Fplay.oauth.no%2Fcallback&client_id=6233aedf-f08a-4112-9a1b-f33c3cd9b396&state=741e4a15-5c14-4e3d-ada8-f65c4c76ecb2

OpenID Implicit flow

This is useful for debugging openid implicit flow.

https://auth.dataporten.no/oauth/authorization?scope=openid&response_type=id_token%20token&redirect_uri=https%3A%2F%2Fplay.oauth.no%2Fcallback&client_id=6233aedf-f08a-4112-9a1b-f33c3cd9b396&state=741e4a15-5c14-4e3d-ada8-f65c4c76ecb2

Variations on allowed providers.

  • Enable eduGAIN
  • Allow only social network: dropdown should not show up.
  • Disable all social network, check that Andre påloggingsvalg do not show up.
  • Remove all options: should probably end up in a kind of error. Now just show a useless UI where you cannot select anything. Low priority to fix this.

OpenID Preselect org

Require user interaction

Dashboard: enable require user interaction

Account chooser expected.

https://auth.dataporten.no/oauth/authorization?scope=openid&response_type=code&redirect_uri=https%3A%2F%2Fplay.oauth.no%2Fcallback&client_id=6233aedf-f08a-4112-9a1b-f33c3cd9b396&state=741e4a15-5c14-4e3d-ada8-f65c4c76ecb2&login_hint=feide|realm|uninett.no

Require user interaction disabled

Dashboard: disable require user interaction

Feide login page: UNINETT selected

https://auth.dataporten.no/oauth/authorization?scope=openid&response_type=code&redirect_uri=https%3A%2F%2Fplay.oauth.no%2Fcallback&client_id=6233aedf-f08a-4112-9a1b-f33c3cd9b396&state=741e4a15-5c14-4e3d-ada8-f65c4c76ecb2&login_hint=feide|realm|uninett.no

Preselect org 2

Feide login page SELECT ORG page

https://auth.dataporten.no/oauth/authorization?scope=openid&response_type=code&redirect_uri=https%3A%2F%2Fplay.oauth.no%2Fcallback&client_id=6233aedf-f08a-4112-9a1b-f33c3cd9b396&state=741e4a15-5c14-4e3d-ada8-f65c4c76ecb2&login_hint=feide|all

ID-porten

ID-porten login page

https://auth.dataporten.no/oauth/authorization?scope=openid&response_type=code&redirect_uri=https%3A%2F%2Fplay.oauth.no%2Fcallback&client_id=6233aedf-f08a-4112-9a1b-f33c3cd9b396&state=741e4a15-5c14-4e3d-ada8-f65c4c76ecb2&login_hint=idporten

Special flow: preselect org, login with an unexpected account.

Use this link (expects feide|realm|uninett.no|andreas@uninett.no), but change to Tjenesteleverandører and login with asbjorn_elevg:

https://auth.dataporten.no/oauth/authorization?scope=openid&response_type=code&redirect_uri=https%3A%2F%2Fplay.oauth.no%2Fcallback&client_id=6233aedf-f08a-4112-9a1b-f33c3cd9b396&state=741e4a15-5c14-4e3d-ada8-f65c4c76ecb2&login_hint=feide|realm|uninett.no|andreas@uninett.no

Issues

  • When authproviders only allow social network, dropdown is still present.
  • When authproviders only allow institutions, other options header is still present.
  • eduGAIN providers are not listed.
  • Dropdown institutions, pointer is not a hand.
  • Unclear what remember me means
  • Geolocation disabled?
  • No text under Do you need help?
  • Missing tooltip under Velg først din tilhørighet: Fill in tooltip information here
Edited
5 Bytes
    • When authproviders only allow social network, dropdown is still present.

    Fixed in #61.

    • When authproviders only allow institutions, other options header is still present.

    Fixed in #62.

    • eduGAIN providers are not listed.

    It was decided to ignore eduGAIN providers for now.

    • Dropdown institutions, pointer is not a hand.

    Fixed in #64.

    • Unclear what remember me means

    It had a tooltip next to it, but during the last redesign of the checkbox, the tooltip went away. Should probably be back.

    • Geolocation disabled?

    This was also decided to go away for now.

    • No text under Do you need help?

    Pending in #52.

    • Missing tooltip under Veg først din tilhørighet: Fill in tooltip information here

    Pending in #65.

    Not sure about the rest, Andreas (everything outside the issues section). Did you test all of that already?

Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment