Test plan [DRAFT]

Under construction

• Ramesh NarayanansasiPSRAMKUMAR Review and complete
• Jaume DUBOIS Define priorities aligned with GovStack needs and IDBB roadmap
• Jaume DUBOIS Detail test case : Input/Expected Output
• Jaume DUBOIS move into GitHub once format is clarified with Taylor Downs

This page will draft the elements to be tested as part of IDBB test plan.

Required OpenAPIs

• Identity Verification

  • External API : VerifyIdentity( IdentityIdentifier[, IDP])

    • If no ‘IDP’ is specified

      • If several IDP are available for IdentityIdentifier, then propose to select an IDP

      • If only fID ISP is available then use directly fID and trigger fID authentication process/UI

    • If an 'IDP' is specified, delegate directly authentication process to IDP

  • Internal API : fID.Authenticate( IdentityIdentifier[, IDP])

    • If no IDP specified, assume the identifier is a Unique ID Number or a Token number

      • Perform OIDC Authentication of IdentityIdentifier

      • Send back Authentication token

    • If IDP is mentionned, assume the identifier is an Alias from Functional System (considered as an IDP)

      • Retrieve the originated UniqueID from the alias

      • Perform OIDC Authentication of the UniqueID

      • Send back Authentication token

• Identification Services (or KYC)

  • External API : GetIdentityProfile( IdentityIdentifier [, IDP], ProfileID, consentToken)

• TB REMOVED ??

  • Perform OIDC Authentication

  • Profile sharing (pre-defined profiles)

  • Profile sharing as VC (pre-defined profiles)

  • Authentication based on all capabilities listed in specification (OPTIONAL)

  • Multi-factor authentication

  • Offline authentication

• Attribute sharing / KYC

  • Sharing of a set of attributes

  • KYC (missing in IDBB, ie isOlderThan18() service)

Priority 2

• ID Mapping

  • Mapping/Unmapping identifiers

  • Retrieving identifier from other identifier

Priority 3

• Enrollment

  • Enrolling an individual ID in one step

  • Enrolling an individual ID in multiple steps

• Credential issuance

  • Issuing a credential

  • Following lifecycle of a credential issuance

  • Canceling a credential

  • Declaring a credential as lost or stolen

  • Renewing a credential

• ID Management

  • Update identity attributes

  • Declare identity stolen

  • Autorise acces to identity

  • Give consent (is it part of consent only ?)

  • Generate sectorial token

• Notification

  • Notify identity change (Publish)

  • Subscribe to identity change