An OpenActive Conformance Certificate offers a mechanism by which implementing systems can prove their conformance to the OpenActive specifications.
An example conformance certificate can be found here: https://certificates.reference-implementation.openactive.io/examples/all-features/random/
Note that this example is frequently generated for the OpenActive .NET Reference Implementation as part of the CI of the OpenActive Test Suite itself.
The OpenActive Test Suite can be configured to output a Conformance Certificate upon all tests passing.
This is best achieved as part of a continuous integration script that runs these tests of your UAT environment (or test environment, if you do not have a UAT environment).
A Conformance Certificate is issued to cover a subset of the features of the specifications that are implemented - which are configured in the test suite, and hence only guarantees a complete implementation of that subset.
Certificates are designed to be published frequently, to demonstrate continued conformance, especially as the test suite is improved to test for additional edge cases within the features selected.
To obtain a certificate, simply update your config/dev.json with the following:
"integrationTests": {
"generateConformanceCertificate": true,
"conformanceCertificateId": "https://acmebooker.example.com/openactive/certificate",
// ...The certificate ID is the URL where the certificate will be hosted (see below section), which must match in order for the certificate to be valid.
This certificate must be hosted somewhere publicly accessible, ideally under the same or subdomain as your dataset site.
Static file hosting such as GitHub pages or an Amazon S3 bucket are both recommended.
Your UAT continuous integration script should upload a fresh certificate upon each successful run of the OpenActive Test Suite.
Upload scripts can be created for e.g. Amazon S3 and GitHub pages.
Note that the certificate is named index.html by default to allow it to be referenced at a path such as https://acmebooker.example.com/openactive/certificate
The certificate should be linked from your dataset site, to make it easily accessible to integrators in both human and machine-readable forms.
When the certificate is opened in a browser, it sends its contents to https://conformance-certificate-validator.openactive.io/, which runs checks to ensure its integrity and that its test coverage matches that of the latest test suite for the features selected.
A valid certificate will look as follows:
An invalid certificate will display an error message as follows:
External validation is available for integrating services interested in establishing the validity of a certificate.
Simply send a request as follows:
https://conformance-certificate-validator.openactive.io/validate?url={url}&holder={holder}
The parameters accepted are:
url- The URL of the conformance certificateholder- The certified booking services name, which should be taken from bookingService.name (or otherwise publisher.name) within the dataset site - which ensures the certificate is only referenced from relevant system.
The certificate is composed of three key elements:
- A human readable HTML page
- An embedded machine-readable JSON-LD snippet
- An embedded zip file of evidence of the test suite results that were used to obtain this certificate, as is common practice.
All three of these components must be coherent and match in order for the certificate to be valid.
The test suite results included as evidence are redacted to remove all domain names from URLs, to ensure the security of your UAT infrastructure.
The evidence zip file can be extracted from the HTML page using the "Download Evidence" button when opening the page in a browser.
Read this section if you're developing the conformance certificate functionality.
Use the environment variable DEBUG_SAVE_INVALID_CONFORMANCE_CERTIFICATE=true in order to have integration tests save the conformance certificate even if it's considered invalid. Use this like (in unix):
DEBUG_SAVE_INVALID_CONFORMANCE_CERTIFICATE=true NODE_APP_INSTANCE=dev npm run start-testsAfter running the above, the conformance certificate will be saved locally. Check the logs to see where it has been saved.
With a conformance certificate saved locally, you can run the certification-validator-microservice locally and validate your certificate. Here's an example session which does this:
# Initial Set-up. http-server allows you to run an HTTP server from a directory on your machine
npm install --global http-server
# Host your conformance certificate. This is the path at which it is stored by default, but it can be configured.
(cd packages/openactive-integration-tests/conformance && http-server)
# (In a new terminal) Run microservice
(cd packages/openactive-integration-tests && npm run certificate-validator)
# (In a new terminal) Query the microservice with your hosted conformance certificate
# 3000 & 8080 are certification-validator-microservice & http-server's default respective ports
curl 'http://localhost:3000/validate?url=http://localhost:8080'