Conformance Testing

If you have a client system under development, there are many things you need to consider. The Security Profile requires many details, which can be complex to implement. Therefore, we have developed a support tool for automatic conformance testing of the client’s calls to HelseID. The support tool ensures correct implementation of calls to HelseID while providing clear error messages when the implementation has faults.

Before going into production with your client system, you must get your application approved in a code review. The support tool will be used to ensure that the client conforms with the security profile. A prerequisite for the code review being set up is that all tests pass.

Using the conformance testing tool (Samsvarstesting)

To use the conformance testing tool, you must have created a client in HelseID Self-Service TEST. Once you have received a client ID, you can use this ID to start a session. You do this on this website after logging in with HelseID.

Once you have initiated a new session, you need to set the authority in your configuration. This will be a link that looks something like this: https://samsvarstesting-sts-test.helseid.sky.nhn.no/0982fa85-8bff-41bc-b464-e3fe4014a1c8. In other words, this will replace https://helseid-sts.test.nhn.no in your configuration. This new authority is referred to as the STSTS.

After calling the STSTS, you will be able to press the “End the Session” button. Then you can view the results from the conformance testing. If you want to make changes to your code, you can press the “Reset Session” button, call the STSTS again, and then press the “End the Session” button once more.