Moa Trial is a free test environment open for both members of Skolfederation and non-members. In Moa Trial user organizations and service providers can test their solutions' federation compatibility and test functionality with other participating entities in Moa Trial. Technical personnel can also get acquainted with metadata management in Federationsadmin. 

Do not use production information

Due to Trial being a completely open test environment, no control of organizations or entities is performed other than syntactical check of metadata for interoperability in the Trial federation. Do not use production data (i.e. users) and be careful to which entities you allow access and release of user attributes, personal information, and other sensitive data.

Access to Moa Trial

All members of Skolfederation gain automatic access to Moa Trial. On finalization of membership, all Technical Contacts have received an email with credentials for accessing Moa Trial in Federationsadmin. Technical Contacts also have the ability to create Technical Agents to delegate access to the members metadata management. More on creating and managing Technical Agents is found in the user guide

If you are a member of Skolfederation but forgot your password to Moa Trial you can reset your password by clicking "Forgot Password?" at the logon screen for Federationsadmin.

If you are not a member of Skolfederation but want access to Moa Trial, use the form below.

https://service.federationer.internetstiftelsen.se/servicedesk/customer/portal/1/create/30

Uploading metadata to Moa Trial

Uploading metadata in Federationsadmin

To upload metadata to Moa Trial, log on to Federationsadmin with your Trial credentials.

Log on to Moa Trial in Federationsadmin

Instructions

Trial metadata is managed the same way as production metadata. For instructions, please read the user guides for metadata management found here.

Sending metadata manually to federation operator

An alternative to managing the metadata in Federationsadmin is to use the form linked below to send metadata to the federation operator for validation and verification. If there are errors, the federation operator will request corrections.

Link to metadata form

Technical information

Metadata

Metadata for Skolfederation is found below. 

https://fed.skolfederation.se/trial/md/kontosynk.jws

Current JSON schema: https://www.fedtls.se/schema/fedtls-metadata-schema.json 

Public key (JWKS) for verifying signature of federation metadata is found below.

moa-trial-1_0.jwks
{
    "keys": [
        {
            "kid": "07ad9359-4a14-4c3a-a647-7d1adb6fe770",
            "kty": "EC",
            "crv": "P-256",
            "alg": "ES256",
            "x": "FQzU7l6gNAD-GkKahGKzZtrNNtzFv4zvurVyZn__mbk",
            "y": "vPkRAq31j122r8nhazx-IFUaNxUjAgKE4ly9zdO_67Y"
        }
    ]
}
SHA-256 fingerprint:
B3:FE:60:DC:56:1B:9B:41:3B:45:E4:84:4B:6D:9F:7E:49:99:84:04:2F:61:BF:66:ED:3E:08:38:CB:78:97:FD


Verify metadata with certificate

We recommend verifying the fingerprint of the signing certificate with the federation operator before adding the certificate to your client or server trust. After trusting the certificate, always verify federation metadata signature with signing certificate to guarantee metadata integrity.

  • No labels
Write a comment…