Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Test simplesamlphp upgrades #14725

Closed
2 of 8 tasks
Tracked by #14823
, #15029
...
edmund-dunn opened this issue Aug 9, 2023 · 8 comments
Closed
2 of 8 tasks
Tracked by #14823
, #15029
...

Test simplesamlphp upgrades #14725

edmund-dunn opened this issue Aug 9, 2023 · 8 comments
Assignees
@teeshe @edmund-dunn
Labels
CMS Team CMS Product team that manages both editor exp and devops DevOps CMS team practice area Drupal engineering CMS team practice area

Comments

@edmund-dunn
Copy link
Contributor

edmund-dunn commented Aug 9, 2023
edited
Loading

Description

Per this thread https://www.drupal.org/project/simplesamlphp_auth/issues/3349278#comment-15186138 we can test simplesamlphp. We will set it up on test.staging for testing.

Acceptance Criteria

  • Set up simplesamlphp_auth upgrade on test.staging
  • Coordinate for test with IAM Team
  • Test functionality.

Team

Please check the team(s) that will do this work.

  • CMS Team
  • Public Websites
  • Facilities
  • User support
  • Accelerated Publishing
@edmund-dunn edmund-dunn added CMS Team CMS Product team that manages both editor exp and devops DevOps CMS team practice area Drupal engineering CMS team practice area labels Aug 9, 2023
@edmund-dunn edmund-dunn self-assigned this Aug 9, 2023
@edmund-dunn
Copy link
Contributor Author

@teeshe here is xml for test.staging.

<?xml version="1.0" encoding="utf-8"?>
<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" entityID="https://test.staging.cms.va.gov/simplesaml/module.php/saml/sp/metadata.php/default-sp">
  <md:SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol" AuthnRequestsSigned="true">
    <md:KeyDescriptor use="signing">
      <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
        <ds:X509Data>
          <ds:X509Certificate>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</ds:X509Certificate>
        </ds:X509Data>
      </ds:KeyInfo>
    </md:KeyDescriptor>
    <md:KeyDescriptor use="encryption">
      <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
        <ds:X509Data>
          <ds:X509Certificate>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</ds:X509Certificate>
        </ds:X509Data>
      </ds:KeyInfo>
    </md:KeyDescriptor>
    <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://test.staging.cms.va.gov/simplesaml/module.php/saml/sp/saml2-logout.php/default-sp"/>
    <md:SingleLogoutService Binding="urn:oasis:names:tc:SAML:2.0:bindings:SOAP" Location="https://test.staging.cms.va.gov/simplesaml/module.php/saml/sp/saml2-logout.php/default-sp"/>
    <md:NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified</md:NameIDFormat>
    <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://test.staging.cms.va.gov/simplesaml/module.php/saml/sp/saml2-acs.php/default-sp" index="0"/>
    <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://test.staging.cms.va.gov/simplesaml/module.php/saml/sp/saml2-acs.php/default-sp" index="1"/>
  </md:SPSSODescriptor>
  <md:ContactPerson contactType="technical">
    <md:GivenName>VA.gov Administrator</md:GivenName>
    <md:EmailAddress>mailto:[email protected]</md:EmailAddress>
  </md:ContactPerson>
</md:EntityDescriptor>

@teeshe
Copy link
Contributor

teeshe commented Aug 11, 2023

Metadata has been shared with IAM team.

@productmike productmike mentioned this issue Aug 16, 2023
Closed
16 tasks
@BerniXiongA6
Copy link

Hi @teeshe @edmund-dunn will this work get completed this sprint? I'm updating our sprint planning capacity to see if anything carries over for next sprint. Thank you!

@productmike
Copy link

Reducing to 2 points due to previous sprint work completed.

@productmike productmike mentioned this issue Aug 30, 2023
Closed
32 tasks
@productmike productmike mentioned this issue Sep 8, 2023
Closed
24 tasks
@edmund-dunn
Copy link
Contributor Author

Successfully tested this and was able to log in to test.staging.cms.va.gov my PIV as was @ndouglas. Notified IAM team via email. Received reply from Keisha that they will begin their testing ASAP.

@BerniXiongA6
Copy link

Carry over to Sprint 95

This was referenced Oct 11, 2023
Closed
Closed
@BerniXiongA6
Copy link

@edmund-dunn would you mind adding your comments onto this ticket so we can keep track in GitHub how you all are progressing with this great work you're doing? Thank you sir!

@BerniXiongA6 BerniXiongA6 mentioned this issue Oct 24, 2023
Closed
43 tasks
@edmund-dunn
Copy link
Contributor Author

Testing was successful on test.prod.cms.va.gov. Closing this ticket.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@teeshe teeshe

@edmund-dunn edmund-dunn

Labels
CMS Team CMS Product team that manages both editor exp and devops DevOps CMS team practice area Drupal engineering CMS team practice area
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
4 participants
@teeshe @BerniXiongA6 @edmund-dunn @productmike