{"id":24752036,"url":"https://github.com/inferno-framework/smart-udap-harmonization-test-kit","last_synced_at":"2025-10-10T22:32:29.859Z","repository":{"id":262499599,"uuid":"848960440","full_name":"inferno-framework/smart-udap-harmonization-test-kit","owner":"inferno-framework","description":"Tests to assesses the integration of both SMART App Launch and UDAP authentication standards","archived":false,"fork":false,"pushed_at":"2025-01-03T00:50:48.000Z","size":73,"stargazers_count":0,"open_issues_count":1,"forks_count":0,"subscribers_count":1,"default_branch":"main","last_synced_at":"2025-01-03T01:33:50.250Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":"","language":"Ruby","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"apache-2.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/inferno-framework.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2024-08-28T18:09:15.000Z","updated_at":"2024-11-12T14:43:49.000Z","dependencies_parsed_at":"2025-01-03T01:30:18.835Z","dependency_job_id":"c6e98c37-bd83-458b-b6ca-a4fcb257466b","html_url":"https://github.com/inferno-framework/smart-udap-harmonization-test-kit","commit_stats":null,"previous_names":["inferno-framework/smart-udap-harmonization-test-kit"],"tags_count":1,"template":false,"template_full_name":"inferno-framework/inferno-template","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/inferno-framework%2Fsmart-udap-harmonization-test-kit","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/inferno-framework%2Fsmart-udap-harmonization-test-kit/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/inferno-framework%2Fsmart-udap-harmonization-test-kit/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/inferno-framework%2Fsmart-udap-harmonization-test-kit/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/inferno-framework","download_url":"https://codeload.github.com/inferno-framework/smart-udap-harmonization-test-kit/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":236003630,"owners_count":19079666,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":[],"created_at":"2025-01-28T10:34:33.663Z","updated_at":"2025-10-10T22:32:24.482Z","avatar_url":"https://github.com/inferno-framework.png","language":"Ruby","funding_links":[],"categories":[],"sub_categories":[],"readme":"# Inferno SMART-UDAP Harmonization Test Kit \n\nThe [Security for Scalable Registration, Authentication, and Authorization\nIG](https://hl7.org/fhir/us/udap-security/index.html) states that\n\n\u003e This guide is also intended to be compatible and harmonious with client and\n\u003e server use of versions 1 or 2 of the HL7 SMART App Launch IG.\n\nThis test kit is an effort to demonstrate how a client could interact with a\nserver supporting both UDAP and SMART App Launch.\n\n## Overview\nThe basic assumption underlying these tests is that a client could perform\ndynamic registration and launch with client authorization from the UDAP workflow\nwhile using SMART App Launch scopes, and the server could include additional\nlaunch context parameters defined by SMART App Launch in the token response.\n\nThe tests begin with normal parts of the UDAP workflow: discovery, dynamic\nregistration, and authorization.\n\nThen there are tests for SMART App Launch context parameters which could be\nincluded as part of the token response, including an OpenIDConnect id token.\nFinally, there are tests for token refresh.\n\n## Known Limitations\nThe UDAP dynamic registration workflow does not define a way to register a\nlaunch URI, so the tests only perform a standalone launch.\n\n## Instructions\n\n- Clone this repo.\n- Run `setup.sh` in this repo\n- Run `run.sh` in this repo.\n- Navigate to `http://localhost`. The SMART-UDAP Harmonization test suite will\n  be available.\n- Prior to running Dynamic Client Registration tests or Authorization tests, the\n  authorization server under test MUST be configured to trust the signing\n  certificate that issues and signs the client certificates. See the following\n  section for more details. \n\n### Certificate Setup for Running Tests\n\nRunning UDAP Dynamic Client Registration and Authorization tests requires the\nuse of X.509 certificates that are trusted by the authorization server under\ntest.  There are two categories of certificates for this test kit:\n- Client certificates: represent the logical instance of a UDAP client interfacing\n  with the authorization server.  This test\n  kit supports multiple logical clients, and a new logical client is needed for each instance of\n  testing Dynamic Client Registration. \n- Signing certificate: the certificate used to issue and sign the client\n  certificates.\n\nTesters must provide their own client certificate(s) via the\ntest inputs.  Currently, the certificates available in `lib/udap_security_test_kit/certs`\nare for unit testing only.\n\nIn order for tests to pass, register your own signing certificate as a trust anchor with\nthe authorization server under tests. \n\n\n## License\n\nLicensed under the Apache License, Version 2.0 (the \"License\"); you may not use\nthis file except in compliance with the License. You may obtain a copy of the\nLicense at\n```\nhttp://www.apache.org/licenses/LICENSE-2.0\n```\nUnless required by applicable law or agreed to in writing, software distributed\nunder the License is distributed on an \"AS IS\" BASIS, WITHOUT WARRANTIES OR\nCONDITIONS OF ANY KIND, either express or implied. See the License for the\nspecific language governing permissions and limitations under the License.\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Finferno-framework%2Fsmart-udap-harmonization-test-kit","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Finferno-framework%2Fsmart-udap-harmonization-test-kit","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Finferno-framework%2Fsmart-udap-harmonization-test-kit/lists"}