...
- a trust anchor → https://trust-anchor.testbed.oidcfed.incubator.geant.org/
- embedded OP (SPID) → https://trust-anchor.testbed.oidcfed.incubator.geant.org/oidc/op/
metadata: https://trust-anchor.testbed.oidcfed.incubator.geant.org/oidc/op/.well-known/openid-federation?format=json - embedded RP → https://trust-anchor.testbed.oidcfed.incubator.geant.org/oidc/rp/
metadata: https://trust-anchor.testbed.oidcfed.incubator.geant.org/oidc/rp/.well-known/openid-federation?format=json
- embedded OP (SPID) → https://trust-anchor.testbed.oidcfed.incubator.geant.org/oidc/op/
- an RP → https://relying-party.testbed.oidcfed.incubator.geant.org/
metadata: https://relying-party.testbed.oidcfed.incubator.geant.org/.well-known/openid-federation?format=json - an OP (CIE) → https://cie-provider.testbed.oidcfed.incubator.geant.org/
metadata: - a PHP RP → https://relying-party-php.testbed.oidcfed.incubator.geant.org/
metadata: https://relying-party-php.testbed.oidcfed.incubator.geant.org/.well-known/openid-federation?format=json - a GO RP → https://gorp.testbed.oidcfed.incubator.geant.org
The RP implemented in PHP is based on the implementation from https://github.com/italia/spid-cie-oidc-php.
Fedservice example
...
In the existing testbeds, the trust anchor in the Italian federation was added as a trust anchor for the OP in Roland's example federation, making it possible that all RPs in the Italian federation could authenticate users from OP.
