Update exipred certs used for FAPI OIDC conformance test suite #20592

mpmadhavig · 2024-06-26T13:18:20Z

$subject

Get the 2 cert sets.
Extract the <cert-set-id> assigned for the key set from the folder name.
ex: oQ4KoaavpOuoE7rvQsZEOV_Expire-29_06_2025 -> key = oQ4KoaavpOuoE7rvQsZEOV
Generate the jwks endpoint URL.
ex: https://keystore.openbankingtest.org.uk/0015800001HQQrZAAX/<cert-set-id>.jwks
Update serverjwks.py and serverjwks2.py using the cert values obtained from the above URL.
Update all enc, sig, tls certs.
Update client_configs.py jwks keys using the private keys in cert sets folders.
i. For sig keys, use the signing.key file and get the jwks using a pem to jwks tool. ex: https://tribestream.io/tools/pem2jwk/
ii. For enc keys get the .key file under the encryption related folder or file (this can vary from key set to key set) and covert to jwks.
Update client_configs.py mtls cert-key values using the transport.key and transport.pem files.

mpmadhavig · 2024-06-26T13:25:38Z

mpmadhavig added 2 commits June 26, 2024 17:46

Update server certs.

11a018f

Update client certs.

3a14098

Thumimku approved these changes Jun 26, 2024

View reviewed changes

mpmadhavig merged commit 7188e0e into wso2:master Jun 26, 2024
1 check passed

Provide feedback