This article is a work in progress.
Introduction
Skolfederation is member of Skolverket's interfederation FIDUS, enabling school organizers access to services provided within FIDUS from other member federations, such as Skolverket's digitized national tests (DNP). In this article, the technical relationship and integration between Skolfederation and FIDUS is explained.
We often receive questions regarding why schools cannot login to a FIDUS service such as the DNP verification tests, or why the school IdP does not show up in the FIDUS discovery service (DS). A common error is that there are several systems that have to publish and synchronize the latest federation metadata to establish the interfederational trust which is required for a successful login attempt.
Resources
- More on FIDUS on Skolverket.se and the FIDUS GitHub
Upstream IdP metadata flow
The following diagram describes the flow of metadata for IdP's uploaded to Skolfederation.
| Step | Variation | Comment | Approximate maximum update time | Metadata URL |
|---|---|---|---|---|
| A | Skolfederation member uploads their IdP metadata to either production or trial environment and IdP metadata added to each environments upstream feed. | 15 minutes | ||
| B | 1 | FIDUS downloads IdP upstream feed and updates FIDUS IdP feed | 60 minutes | |
| 2 | FIDUS Discovery Service downloads IdP upstream feed and updates | 15 minutes | ||
| C | 1 | FIDUS member federation downloads FIDUS IdP feed and publishes in member federation metadata | Up to each federations metadata update settings | |
| 2 | In some cases, such as Skolverket's DNP and other entities from Skolmyndighetsfederationen, the SP downloads IdP's directly from FIDUS IdP feed and updates | Up to each service's metadata update settings | ||
| D | FIDUS member federation service provider (SP 1) downloads its federation metadata and updates | Up to each service's metadata update settings | ||
| E | Other update procedures and variations in the application which adds additional update time | Varies by service, if applicable |