Please use a compatible browser :Google Chrome or Mozilla Firefox
Page expired. Any change will be lost. Try to refresh the page.
Gazelle update scheduled, unsaved changes will be lost :
Your session will timeout :
Redeployed...
Logged out...
The server is restarting. Any change will be lost.
 

Test : XUA_X-SERVICE-PROV_ITI-40

Test Summary

Id
13336
Keyword
XUA_X-SERVICE-PROV_ITI-40
Name
XUA_X-SERVICE-PROV_ITI-40
Version
1.2
Test Author
wbars
Last modifier
vhofman
Status
ready
Type
master type
Is external tool ?
Is Orchestrable
is Validated ?
Peer Type
No Peer
Test validated by
NicolasBailliet
Short Description
This test is used to synthesis the testing of the XUA X-Service-Provider actor.
Last changed
1/26/24 7:29:34 AM

Test Description in English

Special Instructions

Testing of the XUA X-Service-Provider actor implemented in your system is going to be performed in parallel to the testing of the other transactions protected by XUA. That means that for some of the tests, you will be asked to demonstrate that your system makes use of the SAML assertion provided in the SOAP Header of the received message. The presence of a SAML token in the received request shall be reflected in the audit message produced by your system. 

Description

In order to conduct the tests correctly, your system is expected to use the Syslog collector as an ATNA Audit Record Repository. In other words, before the testing starts, configure your systems acting as XUA X-Service-Provider actor to send its audit messages to the simulator.

When executing a test which requires your system to support the XUA X-Service Provider actor and to generate an audit message, you need to demonstrate that the information from SAML token has been incorporated in the audit message. 

The audit messages produced by SUT should have been recorded by the Syslog collector and be available in Gazelle Security Suite. For one of the step which requires a SAML token:

  1. Access the audit messages in Gazelle Security Suite from the "Audit Trail" > "Syslog collector" menu;
  2. Find out the message of interest, you can use the filters to ease your search (we also recommand to do it before you move to the next step);
  3. Download the audit message
  4. Upload the audit message file into the "Audit message" section of your ATNA questionnaire.
  5. Copy/Paste the link to the test instance into the test step below which relates to the IHE actor you are testing.

Evaluation

The monitor is expected to review each test instance referenced in the test steps section below to verify that an audit message has been recorded in the ATNA questionnaire and the audit message complies with the requirements from IHE technical framework:

the ATNA Audit message UserName element records the X-User Assertion using the following encoding: alias<user@issuer> where:

  • alias is the optional string within the SAML Assertion's Subject element SPProvidedID attribute
  • user is the required content of the SAML Assertion's Subject element 
  • issuer is the X-Assertion Provider entity ID contained with the content of SAML Assertion's Issuer element
  • The “<” and “>” represent XML control characters

Example: JD<John.Doe@example.com>

If the requirement is met, mark the step "verified" (green check), otherwise, mark it as "failed" (red cross).

At the end of the test session, the test shall be marked as verified only if all the steps related to actors supported by the system under test are marked as "verified". Otherwise, this test is failed.

Test Roles

Keyword
# to realize
Card Min
Card Max
Optionality
URL
URL Doc
X_SERVICE_PROVIDER-XUA
Integration profileActorOptionIs tested ?
Keyword
Keyword
Keyword
Keyword
IntegrationProfile XUA-Cross Enterprise User AssertionActor X-SERV-PROV-X-Service ProviderNONEtrue
IntegrationProfile ATNA-Audit Trail and Node Authentication Actor SN-Secure NodeNONEfalse
IntegrationProfile ATNA-Audit Trail and Node Authentication Actor SA-Secure ApplicationNONEfalse
111Required

Test Steps


Step Index
Initiator Role
Responder Role
Transaction
Secured
Message Type
Option
Description
Assertions
1X_SERVICE_PROVIDER-XUAX_SERVICE_PROVIDER-XUA-Required[INSTRUCTION] Mark as "skip" the test steps which relate to actors your system does not support.
15X_SERVICE_PROVIDER-XUAX_SERVICE_PROVIDER-XUA-Optional[EVIDENCE] Copy/Paste the permanent link to the test instance where your system acts as a CH:XDS-I Imaging Document Source for the RAD-69 transaction.
20X_SERVICE_PROVIDER-XUAX_SERVICE_PROVIDER-XUA-Optional[EVIDENCE] Copy/Paste the permanent link to the test instance for one of the test cases where your system acts as a PPQ Policy Repository for the PPQ-1 transaction.
25X_SERVICE_PROVIDER-XUAX_SERVICE_PROVIDER-XUA-Optional[EVIDENCE] Copy/Paste the permanent link to the test instance for one of the test cases where your system acts as a PPQ Policy Repository for the PPQ-2 transaction.
30X_SERVICE_PROVIDER-XUAX_SERVICE_PROVIDER-XUA-Optional[EVIDENCE] Copy/Paste the permanent link to the test instance for one of the test cases where your system acts as a ADR Authorization Decision Provider.
35X_SERVICE_PROVIDER-XUAX_SERVICE_PROVIDER-XUA-Optional[EVIDENCE] Copy/Paste the permanent link to the test instance for the test case where your system acts as an ATC Patient Audit Record Repository for the ITI-81 transaction
40X_SERVICE_PROVIDER-XUAX_SERVICE_PROVIDER-XUA-Optional[EVIDENCE] Copy/Paste the permanent link to the test instance where your system acts as a XDS.b : Document Registry for the ITI-18 transaction.
43X_SERVICE_PROVIDER-XUAX_SERVICE_PROVIDER-XUA-Optional[EVIDENCE] Copy/Paste the permanent link to the test instance where your system acts as a XDS.b : Document Registry for the ITI-42 transaction.
47X_SERVICE_PROVIDER-XUAX_SERVICE_PROVIDER-XUA-Optional[EVIDENCE] Copy/Paste the permanent link to the test instance where your system acts as a XDS.b : Document Registry for the ITI-57 transaction.
48X_SERVICE_PROVIDER-XUAX_SERVICE_PROVIDER-XUA-Optional[EVIDENCE] Copy/Paste the permanent link to the test instance where your system acts as a XDS.b : Document Repository for the ITI-41 transaction.
49X_SERVICE_PROVIDER-XUAX_SERVICE_PROVIDER-XUA-Optional[EVIDENCE] Copy/Paste the permanent link to the test instance where your system acts as a XDS.b : Document Repository for the ITI-43 transaction.
50X_SERVICE_PROVIDER-XUAX_SERVICE_PROVIDER-XUA-Optional[EVIDENCE] Copy/Paste the permanent link to the test instance where your system acts as a RMU Update Responder.
60X_SERVICE_PROVIDER-XUAX_SERVICE_PROVIDER-XUA-Optional[EVIDENCE] Copy/Paste the permanent link to the test instance where your system acts as a XCA Initiating Gateway for ITI-38 transaction.
65X_SERVICE_PROVIDER-XUAX_SERVICE_PROVIDER-XUA-Optional[EVIDENCE] Copy/Paste the permanent link to the test instance where your system acts as a XCA Initiating Gateway for ITI-39 transaction.
70X_SERVICE_PROVIDER-XUAX_SERVICE_PROVIDER-XUA-Optional[EVIDENCE] Copy/Paste the permanent link to the test instance where your system acts as a XCA Responding Gateway for ITI-38 transaction (nominal case).
75X_SERVICE_PROVIDER-XUAX_SERVICE_PROVIDER-XUA-Optional[EVIDENCE] Copy/Paste the permanent link to the test instance where your system acts as a XCA Responding Gateway for ITI-39 transaction (nominal case).
85X_SERVICE_PROVIDER-XUAX_SERVICE_PROVIDER-XUA-Optional[EVIDENCE] Copy/Paste the permanent link to the test instance where your system acts as a XCA-I Initiating Imaging Gateway for RAD-75 transaction.
95X_SERVICE_PROVIDER-XUAX_SERVICE_PROVIDER-XUA-Optional[EVIDENCE] Copy/Paste the permanent link to the test instance where your system acts as a XCA-I Responding Imaging Gateway for RAD-75 transaction.

Tool index

  • Simulators

    Copyright IHE 2024
  • Gazelle 7.1.7
Back to top