View Issue Details
| ID | Project | Category | View Status | Date Submitted | Last Update |
|---|---|---|---|---|---|
| 0005631 | Compliance Test Tool (CTT) Unified Architecture | 4 - Test Case Definition | public | 2020-05-08 06:39 | 2020-05-28 15:40 |
| Reporter | Lauri Saurus | Assigned To | Alexander Allmendinger | ||
| Priority | normal | Severity | minor | Reproducibility | always |
| Status | closed | Resolution | fixed | ||
| Product Version | 1.04.09.394 | ||||
| Target Version | 1.04.09.396 | Fixed in Version | 1.03.341.396 | ||
| Summary | 0005631: Security User X509 007.js: Status code Bad_CertificateUseNotAllowed not accepted | ||||
| Description | In test Security -> Security User X509 -> 007.js the only accepted results are Bad_IdentityTokenInvalid and Bad_IdentityTokenRejected. Our server currently returns Bad_CertificateUseNotAllowed. The specification states for Bad_CertificateUseNotAllowed: "The Certificate may not be used for the requested operation." Wouldn't this be valid status code when application instance certificate is used for user authentication (X509 user identity)? | ||||
| Steps To Reproduce | Run test Security -> Security User X509 -> 007.js. | ||||
| Tags | Security | ||||
| Files Affected | |||||
|
|
This should be added to the accepted codes in the test (it is not in the specification , but this is a specific user identity token error - it would not apply to any other token - so ok it is not in the list) [note it might be a good idea to clarify in the specification when to use what errors] |
|
|
Added the StatusCode Bad_CertificateUseNotAllowed to the ExpectedResults. |
|
|
reviewed in CMP call |
| Date Modified | Username | Field | Change |
|---|---|---|---|
| 2020-05-08 06:39 | Lauri Saurus | New Issue | |
| 2020-05-08 06:39 | Lauri Saurus | Tag Attached: Security | |
| 2020-05-08 16:15 | Paul Hunkar | Description Updated | |
| 2020-05-08 16:18 | Paul Hunkar | Assigned To | => Alexander Allmendinger |
| 2020-05-08 16:18 | Paul Hunkar | Status | new => assigned |
| 2020-05-08 16:27 | Paul Hunkar | Note Added: 0012042 | |
| 2020-05-26 13:57 | Alexander Allmendinger | Status | assigned => resolved |
| 2020-05-26 13:57 | Alexander Allmendinger | Resolution | open => fixed |
| 2020-05-26 13:57 | Alexander Allmendinger | Fixed in Version | => 1.03.341.396 |
| 2020-05-26 13:57 | Alexander Allmendinger | Note Added: 0012109 | |
| 2020-05-28 15:40 | Paul Hunkar | Target Version | => 1.04.09.396 |
| 2020-05-28 15:40 | Paul Hunkar | Status | resolved => closed |
| 2020-05-28 15:40 | Paul Hunkar | Note Added: 0012139 |
