Bump server testbed version to 1.0-beta-3

eidsrv-testbed-application/pom.xml

@@ -6,7 +6,7 @@
 	<parent>
 		<groupId>com.secunet</groupId>
 		<artifactId>eidserver-testbed</artifactId>
-		<version>0.5</version>
+		<version>1.0-beta-3</version>
 	</parent>
 
 	<artifactId>eidsrv-testbed-application</artifactId>

eidsrv-testbed-common/pom.xml

@@ -6,7 +6,7 @@
 	<parent>
 		<groupId>com.secunet</groupId>
 		<artifactId>eidserver-testbed</artifactId>
-		<version>0.5</version>
+		<version>1.0-beta-3</version>
 	</parent>
 
 	<artifactId>eidsrv-testbed-common</artifactId>

eidsrv-testbed-common/src/test/resources/ics_poseidas_middleware.xml

@@ -0,0 +1,168 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<Ics xmlns="http://trdoccheck.bsi.bund.de/server/ics" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+	xsi:schemaLocation="http://trdoccheck.bsi.bund.de/server/ics ../../main/resources/ics_schema.xsd ">
+
+	<Metadata>
+		<eCardApiUrl>https://192.168.56.10:8443/POSeIDAS/paosreceiver</eCardApiUrl>
+		<eIdInterfaceiUrl>https://192.168.56.10:8444/POSeIDAS/eID</eIdInterfaceiUrl>
+		<SamlUrl>https://192.168.56.10:8443/POSeIDAS/SAML</SamlUrl>
+		<AttachedTcTokenUrl>https://192.168.56.10:8443/eu-middleware/RequestReceiver</AttachedTcTokenUrl>
+		<Vendor>Governikus</Vendor>
+		<Name>eIDAS-Middleware (POSeIDAS-based)</Name>
+		<VersionMajor>1</VersionMajor>
+		<VersionMinor>0</VersionMinor>
+	</Metadata>
+
+	<API>
+		<ApiVersionMajor>2</ApiVersionMajor>
+		<ApiVersionMinor>0</ApiVersionMinor>
+		<ApiVersionSubminor>0</ApiVersionSubminor>
+	</API>
+
+	<Profiles>
+		<MandatoryProfile>CRYPTO</MandatoryProfile>
+		<MandatoryProfile>EAC</MandatoryProfile>
+		<MandatoryProfile>PAOS</MandatoryProfile>
+		<MandatoryProfile>EID_ACCESS</MandatoryProfile>
+		<MandatoryProfile>REVOKED_CARD</MandatoryProfile>
+		<MandatoryProfile>EXPIRED_CARD</MandatoryProfile>
+		<MandatoryProfile>NONAUTH_CARD</MandatoryProfile>
+		<MandatoryProfile>RI_MIGRATION</MandatoryProfile>
+		<MandatoryProfile>DG_VARIATIONS</MandatoryProfile>
+		<OptionalProfile>EIDAS_MW</OptionalProfile>
+	</Profiles>
+
+	<Cryptography>
+
+		<eCard-Api>
+			<PskChannel>
+				<TLS version="TLSv12">
+					<Ciphersuites>
+						<Ciphersuite>TLS_RSA_PSK_WITH_AES_256_CBC_SHA</Ciphersuite>
+						<Ciphersuite>TLS_RSA_PSK_WITH_AES_128_CBC_SHA256</Ciphersuite>
+						<Ciphersuite>TLS_RSA_PSK_WITH_AES_256_CBC_SHA384</Ciphersuite>
+						<Ciphersuite>TLS_RSA_PSK_WITH_AES_128_GCM_SHA256</Ciphersuite>
+						<Ciphersuite>TLS_RSA_PSK_WITH_AES_256_GCM_SHA384</Ciphersuite>
+					</Ciphersuites>
+				</TLS>
+			</PskChannel>
+			<AttachedServer>
+				<TLS version="TLSv12">
+					<Ciphersuites>
+						<Ciphersuite>TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384</Ciphersuite>
+					</Ciphersuites>
+					<EllipticCurves>
+						<NamedCurve>secp256r1</NamedCurve>
+					</EllipticCurves>
+					<SignatureAlgorithms>
+						<Algorithm>SHA1withRSA</Algorithm>
+					</SignatureAlgorithms>
+				</TLS>
+			</AttachedServer>
+		</eCard-Api>
+
+		<eID-Interface>
+			<TLS version="TLSv12">
+				<Ciphersuites>
+					<Ciphersuite>TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384</Ciphersuite>
+				</Ciphersuites>
+				<EllipticCurves>
+					<NamedCurve>secp256r1</NamedCurve>
+				</EllipticCurves>
+				<SignatureAlgorithms>
+					<Algorithm>SHA256withRSA</Algorithm>
+				</SignatureAlgorithms>
+				<ClientCertificates>
+					<ClientCertificate>
+						<Type>rsa_sign</Type>
+						<SignatureAlgorithm>SHA256withRSA</SignatureAlgorithm>
+					</ClientCertificate>
+				</ClientCertificates>
+			</TLS>
+			<XmlSignature>
+				<Signature URI="http://www.w3.org/2000/09/xmldsig#rsa-sha1">
+					<Digest>http://www.w3.org/2000/09/xmldsig#sha1</Digest>
+					<Canonicalization>http://www.w3.org/2001/10/xml-exc-c14n#</Canonicalization>
+					<Parameters>
+						<BitLength>2048</BitLength>
+					</Parameters>
+				</Signature>
+				<Signature URI="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256">
+					<Digest>http://www.w3.org/2000/09/xmldsig#sha1</Digest>
+					<Canonicalization>http://www.w3.org/2001/10/xml-exc-c14n#</Canonicalization>
+					<Parameters />
+				</Signature>
+				<Signature URI="http://www.w3.org/2001/04/xmldsig-more#rsa-sha384">
+					<Digest>http://www.w3.org/2000/09/xmldsig#sha1</Digest>
+					<Canonicalization>http://www.w3.org/2001/10/xml-exc-c14n#</Canonicalization>
+					<Parameters>
+						<BitLength>2048</BitLength>
+					</Parameters>
+				</Signature>
+				<Signature URI="http://www.w3.org/2001/04/xmldsig-more#rsa-sha512">
+					<Digest>http://www.w3.org/2000/09/xmldsig#sha1</Digest>
+					<Canonicalization>http://www.w3.org/2001/10/xml-exc-c14n#</Canonicalization>
+					<Parameters />
+				</Signature>
+			</XmlSignature>
+		</eID-Interface>
+
+		<SAML>
+			<TransportSecurity>
+				<TLS version="TLSv12">
+					<Ciphersuites>
+						<Ciphersuite>TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384</Ciphersuite>
+					</Ciphersuites>
+					<EllipticCurves>
+						<NamedCurve>secp256r1</NamedCurve>
+					</EllipticCurves>
+					<SignatureAlgorithms>
+						<Algorithm>SHA256withRSA</Algorithm>
+					</SignatureAlgorithms>
+				</TLS>
+			</TransportSecurity>
+			<XmlSignature>
+				<Signature URI="http://www.w3.org/2000/09/xmldsig#rsa-sha1">
+					<Digest>http://www.w3.org/2000/09/xmldsig#sha1</Digest>
+					<Canonicalization>http://www.w3.org/2001/10/xml-exc-c14n#</Canonicalization>
+					<Parameters />
+				</Signature>
+				<Signature URI="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256">
+					<Digest>http://www.w3.org/2000/09/xmldsig#sha1</Digest>
+					<Canonicalization>http://www.w3.org/2001/10/xml-exc-c14n#</Canonicalization>
+					<Parameters />
+				</Signature>
+			</XmlSignature>
+			<XmlEncryption>
+				<KeyTransportAlgorithms>
+					<TransportAlgorithm URI="http://www.w3.org/2001/04/xmlenc#rsa-1_5">
+						<Parameter>2048</Parameter>
+					</TransportAlgorithm>
+				</KeyTransportAlgorithms>
+				<KeyAgreementAlgorithms>
+					<AgreementAlgorithm URI="http://www.w3.org/2009/xmlenc11#ECDH-ES">
+						<Parameters>
+							<NamedCurve>secp224k1</NamedCurve>
+							<NamedCurve>sect193r1</NamedCurve>
+							<NamedCurve>secp192r1</NamedCurve>
+							<NamedCurve>secp256r1</NamedCurve>
+						</Parameters>
+						<KeyWrappingUri>http://www.w3.org/2001/04/xmlenc#kw-aes256</KeyWrappingUri>
+					</AgreementAlgorithm>
+				</KeyAgreementAlgorithms>
+				<ContentEncryptionAlgorithms>
+					<URI>http://www.w3.org/2001/04/xmlenc#aes256-cbc</URI>
+				</ContentEncryptionAlgorithms>
+			</XmlEncryption>
+		</SAML>
+
+		<ChipAuthentication>
+			<Algorithm>id-CA-DH-AES-CBC-CMAC-256</Algorithm>
+			<Algorithm>id-CA-ECDH-AES-CBC-CMAC-256</Algorithm>
+			<DomainParameter>modp2048_256</DomainParameter>
+			<DomainParameter>brainpoolp384r1</DomainParameter>
+		</ChipAuthentication>
+
+	</Cryptography>
+
+</Ics>

eidsrv-testbed-core/pom.xml

@@ -4,7 +4,7 @@
 	<parent>
 		<groupId>com.secunet</groupId>
 		<artifactId>eidserver-testbed</artifactId>
-		<version>0.5</version>
+		<version>1.0-beta-3</version>
 	</parent>
 	<artifactId>eidsrv-testbed-core</artifactId>
 	<name>eID-Server Testbed Core</name>

eidsrv-testbed-database/pom.xml

@@ -6,7 +6,7 @@
 	<parent>
 		<groupId>com.secunet</groupId>
 		<artifactId>eidserver-testbed</artifactId>
-		<version>0.5</version>
+		<version>1.0-beta-3</version>
 	</parent>
 
 	<artifactId>eidsrv-testbed-database</artifactId>

eidsrv-testbed-eidas-ext/pom.xml

@@ -0,0 +1,131 @@
+<project xmlns="http://maven.apache.org/POM/4.0.0" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+	xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd">
+	<modelVersion>4.0.0</modelVersion>
+	<groupId>com.secunet</groupId>
+	<artifactId>workaround</artifactId>
+	<version>0.0.1-SNAPSHOT</version>
+	<name>Workaround</name>
+	<build>
+		<sourceDirectory>src</sourceDirectory>
+		<plugins>
+			<plugin>
+				<artifactId>maven-compiler-plugin</artifactId>
+				<version>3.6.1</version>
+				<configuration>
+					<source>1.8</source>
+					<target>1.8</target>
+				</configuration>
+			</plugin>
+		</plugins>
+	</build>
+
+	<repositories>
+		<repository>
+			<id>libs</id>
+			<url>file://${basedir}/src/lib</url>
+		</repository>
+	</repositories>
+
+	<dependencies>
+		<dependency>
+			<groupId>com.sparkjava</groupId>
+			<artifactId>spark-core</artifactId>
+			<version>2.6.0</version>
+		</dependency>
+		<!-- https://mvnrepository.com/artifact/org.apache.santuario/xmlsec -->
+		<dependency>
+			<groupId>org.apache.santuario</groupId>
+			<artifactId>xmlsec</artifactId>
+			<version>2.0.8</version>
+		</dependency>
+		<!-- https://mvnrepository.com/artifact/com.sun.xml.security/xml-security-impl -->
+		<dependency>
+			<groupId>com.sun.xml.security</groupId>
+			<artifactId>xml-security-impl</artifactId>
+			<version>1.0</version>
+		</dependency>
+		<!-- https://mvnrepository.com/artifact/org.bouncycastle/bcpkix-jdk15on -->
+		<dependency>
+			<groupId>org.bouncycastle</groupId>
+			<artifactId>bcpkix-jdk15on</artifactId>
+			<version>1.57</version>
+		</dependency>
+
+
+		<dependency>
+			<groupId>com.google.code.gson</groupId>
+			<artifactId>gson</artifactId>
+			<version>2.8.0</version>
+		</dependency>
+		<!-- 3rd party libraries -->
+		<!-- https://mvnrepository.com/artifact/org.opensaml/opensaml-core -->
+		<dependency>
+			<groupId>org.opensaml</groupId>
+			<artifactId>opensaml-core</artifactId>
+			<version>3.3.0</version>
+		</dependency>
+		<!-- https://mvnrepository.com/artifact/org.opensaml/opensaml-saml-api -->
+		<dependency>
+			<groupId>org.opensaml</groupId>
+			<artifactId>opensaml-saml-api</artifactId>
+			<version>3.3.0</version>
+		</dependency>
+		<!-- https://mvnrepository.com/artifact/org.opensaml/opensaml-saml-impl -->
+		<dependency>
+			<groupId>org.opensaml</groupId>
+			<artifactId>opensaml-saml-impl</artifactId>
+			<version>3.3.0</version>
+		</dependency>
+		<!-- https://mvnrepository.com/artifact/org.opensaml/opensaml-security-api -->
+		<dependency>
+			<groupId>org.opensaml</groupId>
+			<artifactId>opensaml-security-api</artifactId>
+			<version>3.3.0</version>
+		</dependency>
+		<!-- https://mvnrepository.com/artifact/org.opensaml/opensaml-security-impl -->
+		<dependency>
+			<groupId>org.opensaml</groupId>
+			<artifactId>opensaml-security-impl</artifactId>
+			<version>3.3.0</version>
+		</dependency>
+		<!-- https://mvnrepository.com/artifact/org.opensaml/opensaml-soap-api -->
+		<dependency>
+			<groupId>org.opensaml</groupId>
+			<artifactId>opensaml-soap-api</artifactId>
+			<version>3.3.0</version>
+		</dependency>
+		<!-- https://mvnrepository.com/artifact/org.opensaml/opensaml-soap-impl -->
+		<dependency>
+			<groupId>org.opensaml</groupId>
+			<artifactId>opensaml-soap-impl</artifactId>
+			<version>3.3.0</version>
+		</dependency>
+		<!-- https://mvnrepository.com/artifact/org.opensaml/opensaml-xmlsec-api -->
+		<dependency>
+			<groupId>org.opensaml</groupId>
+			<artifactId>opensaml-xmlsec-api</artifactId>
+			<version>3.3.0</version>
+		</dependency>
+		<!-- https://mvnrepository.com/artifact/org.opensaml/opensaml-xmlsec-impl -->
+		<dependency>
+			<groupId>org.opensaml</groupId>
+			<artifactId>opensaml-xmlsec-impl</artifactId>
+			<version>3.3.0</version>
+		</dependency>
+
+		<!-- https://mvnrepository.com/artifact/org.apache.santuario/xmlsec -->
+		<dependency>
+			<groupId>org.apache.santuario</groupId>
+			<artifactId>xmlsec</artifactId>
+			<version>2.0.8</version>
+		</dependency>
+
+		<!-- Governikus eIDAS Middleware Starterkit -->
+		<!-- THIS IS A PATCHED VERSION BY SECUNET -->
+		<dependency>
+			<groupId>com.governikus</groupId>
+			<artifactId>starterkit</artifactId>
+			<version>1.0.1</version>
+		</dependency>
+	</dependencies>
+</project>