add certificate generator

certificate-generator/IPSmallJava/TestObjectBuilder/TestCards/TestObject_Template/Module_A2/EID_CLIENT_A2_01/config.properties

+ecard.testcase.description=Positive test describing the Connection Establishment between the eID-Client and the eID-Server.\nUse the GlobalTester test case TS_eID_1.2.1.xml.
+
+# Define profile
+testcase.profiles=OA
+
+# Override the eService certificate to be used.
+eservice.certificate=../Common/CERT_TLS_ESERVICE_1_NEW.der
+eservice.privatekey=../Common/CERT_TLS_ESERVICE_1_NEW_KEY.der
+
+# Override the eID-Server certificate to be used.
+eidservice.certificate=../Common/CERT_TLS_EIDSERVER_1_NEW.der
+eidservice.privatekey=../Common/CERT_TLS_EIDSERVER_1_NEW_KEY.der
+
+# Reference Terminal certificate
+eidservice.cv.terminal=../Common/CERT_CV_TERM_1_A_NEW.cvcert
+eidservice.cv.terminal.key=../Common/CERT_CV_TERM_1_A_NEW_Key.pkcs8
+eidservice.cert.description=../Common/CERT_CV_TERM_1_A_NEW_Desc.bin
+
+eidservice.cv.terminal.0=../Common/terminal_cert_0.cvcert
+eidservice.cv.terminal.1=../Common/terminal_cert_1.cvcert
+eidservice.cv.terminal.2=../Common/terminal_cert_2.cvcert
+eidservice.cv.terminal.3=../Common/terminal_cert_3.cvcert
+eidservice.cv.terminal.4=../Common/terminal_cert_4.cvcert
+eidservice.cv.terminal.5=../Common/terminal_cert_5.cvcert
+
+# We are only interested in the test steps before StartPAOS. Anything after that does not matter.
+expect.finalDefaultFlowStep=START_PAOS

certificate-generator/IPSmallJava/TestObjectBuilder/TestCards/TestObject_Template/Module_A2/EID_CLIENT_A2_05/TCToken.xml

+<TCTokenType>
+  <ServerAddress></ServerAddress>
+  <SessionIdentifier></SessionIdentifier>
+  <RefreshAddress></RefreshAddress>
+  <CommunicationErrorAddress>https://{commerroraddressserver.hostname}:{commerroraddressserver.port}/{commerroraddressserver.communicationerror.urlpath}</CommunicationErrorAddress>
+  <Binding></Binding>
+  <PathSecurity-Protocol></PathSecurity-Protocol>
+  <PathSecurity-Parameters>
+    <PSK></PSK>
+  </PathSecurity-Parameters>
+</TCTokenType>

certificate-generator/IPSmallJava/TestObjectBuilder/TestCards/TestObject_Template/Module_A2/EID_CLIENT_A2_05/config.properties

+ecard.testcase.description=This test case checks the behavior of the eID-Client in case the eService encounters an error during the generation of the TC Token.\nUse the GlobalTester test case TS_eID_1.2.1.xml.
+
+testcase.profiles=OA
+
+# Override the eService certificate to be used.
+eservice.certificate=../Common/CERT_TLS_ESERVICE_1_NEW.der
+eservice.privatekey=../Common/CERT_TLS_ESERVICE_1_NEW_KEY.der
+
+# Override the eID-Server certificate to be used.
+eidservice.certificate=../Common/CERT_TLS_EIDSERVER_1_NEW.der
+eidservice.privatekey=../Common/CERT_TLS_EIDSERVER_1_NEW_KEY.der
+
+# Reference Terminal certificate
+eidservice.cv.terminal=../Common/CERT_CV_TERM_1_A_NEW.cvcert
+eidservice.cv.terminal.key=../Common/CERT_CV_TERM_1_A_NEW_Key.pkcs8
+eidservice.cert.description=../Common/CERT_CV_TERM_1_A_NEW_Desc.bin
+
+eidservice.cv.terminal.0=../Common/terminal_cert_0.cvcert
+eidservice.cv.terminal.1=../Common/terminal_cert_1.cvcert
+eidservice.cv.terminal.2=../Common/terminal_cert_2.cvcert
+eidservice.cv.terminal.3=../Common/terminal_cert_3.cvcert
+eidservice.cv.terminal.4=../Common/terminal_cert_4.cvcert
+eidservice.cv.terminal.5=../Common/terminal_cert_5.cvcert
+
+# the 'empty' token which contains only the error address
+eservice.tctoken.template=TCToken.xml
+
+# We expect the TC Token to be retrieved.
+expect.finalDefaultFlowStep=TC_TOKEN
+
+# Client should get token, detect its emptiness and then redirect to the given error address
+expect.additionalStep.1=REFRESH_ADDRESS
+expect.additionalStep.1=REDIRECT_BROWSER
+expect.additionalStep.urlPath.1={eservice.communicationerror.urlpath}
+expect.additionalStep.urlParams.1=ResultMajor=error&ResultMinor=communicationError
+expect.additionalStep.statusCodes.1=303

certificate-generator/IPSmallJava/TestObjectBuilder/TestCards/TestObject_Template/Module_A2/EID_CLIENT_A2_06/config.properties

+ecard.testcase.description=Positive test describing the Connection Establishment between the eID-Client and the eID-Server. The TC Token is retrieved via the redirect "302 Found".\nUse the GlobalTester test case TS_eID_1.2.1.xml.
+
+# Define Profile
+testcase.profiles=OA
+
+# Override the default index.html page for redirection
+eservice.index.template=eservice_index.html
+
+eservice.redirector.tctoken={redirector.tctoken.0}
+
+# Override the eService certificate to be used.
+eservice.certificate=../Common/CERT_TLS_ESERVICE_1_NEW.der
+eservice.privatekey=../Common/CERT_TLS_ESERVICE_1_NEW_KEY.der
+
+# Override the eID-Server certificate to be used.
+eidservice.certificate=../Common/CERT_TLS_EIDSERVER_1_NEW.der
+eidservice.privatekey=../Common/CERT_TLS_EIDSERVER_1_NEW_KEY.der
+
+# Reference Terminal certificate
+eidservice.cv.terminal=../Common/CERT_CV_TERM_1_A_NEW.cvcert
+eidservice.cv.terminal.key=../Common/CERT_CV_TERM_1_A_NEW_Key.pkcs8
+eidservice.cert.description=../Common/CERT_CV_TERM_1_A_NEW_Desc.bin
+
+eidservice.cv.terminal.0=../Common/terminal_cert_0.cvcert
+eidservice.cv.terminal.1=../Common/terminal_cert_1.cvcert
+eidservice.cv.terminal.2=../Common/terminal_cert_2.cvcert
+eidservice.cv.terminal.3=../Common/terminal_cert_3.cvcert
+eidservice.cv.terminal.4=../Common/terminal_cert_4.cvcert
+eidservice.cv.terminal.5=../Common/terminal_cert_5.cvcert
+
+# Does not redirect but returns TCToken
+redirector.tctoken.0={redirector.tctoken.hostname.0}:{redirector.tctoken.port.0}/{redirector.tctoken.urlpath.0},dummy_target,{redirector.tctoken.certificate.0},{redirector.tctoken.privatekey.0},{redirector.tctoken.status.0}
+
+# Define the expected result. Any further steps do not matter.
+expect.finalDefaultFlowStep=START_PAOS

certificate-generator/IPSmallJava/TestObjectBuilder/TestCards/TestObject_Template/Module_A2/EID_CLIENT_A2_06/eservice_index.html

+<html>
+<head>
+	<title>Index Page - Test Case {ecard.testcase.number}</title>
+</head>
+<body>
+	<h1>Index Page</h1>
+	<h2>Test Case {ecard.testcase.number}</h2>
+	<div>{ecard.testcase.description}</div>
+	<br/>
+	<div><a href="{client.url}/eID-Client?tcTokenURL=https%3A%2F%2F{eservice.hostname}%3A{eservice.port}%2F{eservice.redirect.urlpath}">Start Test by TC Token</a></div>
+	
+</body>
+</html>

certificate-generator/IPSmallJava/TestObjectBuilder/TestCards/TestObject_Template/Module_A2/EID_CLIENT_A2_07/config.properties

+ecard.testcase.description=Positive test describing the Connection Establishment between the eID-Client and the eID-Server. The TC Token is retrieved via the redirect "303 See Other".\nUse the GlobalTester test case TS_eID_1.2.1.xml.
+
+testcase.profiles=OA
+
+# Override the default index.html page for redirection
+eservice.index.template=eservice_index.html
+
+eservice.redirector.tctoken={redirector.tctoken.1}
+
+# Override the eService certificate to be used.
+eservice.certificate=../Common/CERT_TLS_ESERVICE_1_NEW.der
+eservice.privatekey=../Common/CERT_TLS_ESERVICE_1_NEW_KEY.der
+
+# Override the eID-Server certificate to be used.
+eidservice.certificate=../Common/CERT_TLS_EIDSERVER_1_NEW.der
+eidservice.privatekey=../Common/CERT_TLS_EIDSERVER_1_NEW_KEY.der
+
+# Reference Terminal certificate
+eidservice.cv.terminal=../Common/CERT_CV_TERM_1_A_NEW.cvcert
+eidservice.cv.terminal.key=../Common/CERT_CV_TERM_1_A_NEW_Key.pkcs8
+eidservice.cert.description=../Common/CERT_CV_TERM_1_A_NEW_Desc.bin
+
+eidservice.cv.terminal.0=../Common/terminal_cert_0.cvcert
+eidservice.cv.terminal.1=../Common/terminal_cert_1.cvcert
+eidservice.cv.terminal.2=../Common/terminal_cert_2.cvcert
+eidservice.cv.terminal.3=../Common/terminal_cert_3.cvcert
+eidservice.cv.terminal.4=../Common/terminal_cert_4.cvcert
+eidservice.cv.terminal.5=../Common/terminal_cert_5.cvcert
+
+# Does not redirect but returns TCToken
+redirector.tctoken.1={redirector.tctoken.hostname.0}:{redirector.tctoken.port.0}/{redirector.tctoken.urlpath.0},dummy_target,{redirector.tctoken.certificate.0},{redirector.tctoken.privatekey.0},{redirector.tctoken.status.1}
+
+# Define the expected result. Any further steps do not matter.
+expect.finalDefaultFlowStep=START_PAOS

certificate-generator/IPSmallJava/TestObjectBuilder/TestCards/TestObject_Template/Module_A2/EID_CLIENT_A2_07/eservice_index.html

+<html>
+<head>
+	<title>Index Page - Test Case {ecard.testcase.number}</title>
+</head>
+<body>
+	<h1>Index Page</h1>
+	<h2>Test Case {ecard.testcase.number}</h2>
+	<div>{ecard.testcase.description}</div>
+	<br/>
+	<div><a href="{client.url}/eID-Client?tcTokenURL=https%3A%2F%2F{eservice.hostname}%3A{eservice.port}%2F{eservice.redirect.urlpath}">Start Test by TC Token</a></div>
+	
+</body>
+</html>

certificate-generator/IPSmallJava/TestObjectBuilder/TestCards/TestObject_Template/Module_A2/EID_CLIENT_A2_08/config.properties

+ecard.testcase.description=Positive test describing the Connection Establishment between the eID-Client and the eID-Server. The TC Token is retrieved via the redirect "307 Temporary Redirect".\nUse the GlobalTester test case TS_eID_1.2.1.xml.
+
+testcase.profiles=OA
+
+# Override the default index.html page for redirection
+eservice.index.template=eservice_index.html
+
+eservice.redirector.tctoken={redirector.tctoken.2}
+
+# Override the eService certificate to be used.
+eservice.certificate=../Common/CERT_TLS_ESERVICE_1_NEW.der
+eservice.privatekey=../Common/CERT_TLS_ESERVICE_1_NEW_KEY.der
+
+# Override the eID-Server certificate to be used.
+eidservice.certificate=../Common/CERT_TLS_EIDSERVER_1_NEW.der
+eidservice.privatekey=../Common/CERT_TLS_EIDSERVER_1_NEW_KEY.der
+
+# Reference Terminal certificate
+eidservice.cv.terminal=../Common/CERT_CV_TERM_1_A_NEW.cvcert
+eidservice.cv.terminal.key=../Common/CERT_CV_TERM_1_A_NEW_Key.pkcs8
+eidservice.cert.description=../Common/CERT_CV_TERM_1_A_NEW_Desc.bin
+
+eidservice.cv.terminal.0=../Common/terminal_cert_0.cvcert
+eidservice.cv.terminal.1=../Common/terminal_cert_1.cvcert
+eidservice.cv.terminal.2=../Common/terminal_cert_2.cvcert
+eidservice.cv.terminal.3=../Common/terminal_cert_3.cvcert
+eidservice.cv.terminal.4=../Common/terminal_cert_4.cvcert
+eidservice.cv.terminal.5=../Common/terminal_cert_5.cvcert
+
+# Does not redirect but returns TCToken
+redirector.tctoken.2={redirector.tctoken.hostname.0}:{redirector.tctoken.port.0}/{redirector.tctoken.urlpath.0},dummy_target,{redirector.tctoken.certificate.0},{redirector.tctoken.privatekey.0},{redirector.tctoken.status.2}
+
+# Define the expected result. Any further steps do not matter.
+expect.finalDefaultFlowStep=START_PAOS

certificate-generator/IPSmallJava/TestObjectBuilder/TestCards/TestObject_Template/Module_A2/EID_CLIENT_A2_08/eservice_index.html

+<html>
+<head>
+	<title>Index Page - Test Case {ecard.testcase.number}</title>
+</head>
+<body>
+	<h1>Index Page</h1>
+	<h2>Test Case {ecard.testcase.number}</h2>
+	<div>{ecard.testcase.description}</div>
+	<br/>
+	<div><a href="{client.url}/eID-Client?tcTokenURL=https%3A%2F%2F{eservice.hostname}%3A{eservice.port}%2F{eservice.redirect.urlpath}">Start Test by TC Token</a></div>
+	
+</body>
+</html>

certificate-generator/IPSmallJava/TestObjectBuilder/TestCards/TestObject_Template/Module_A2/EID_CLIENT_A2_09/config.properties

+ecard.testcase.description=This test case checks the behavior of the eID-Client in case the retrieval of the TC Token fails. Instead of the TC Token the redirector responds with "404 Not Found".\nUse the GlobalTester test case TS_eID_1.2.1.xml.
+testcase.profiles=OA
+
+# Override the default index.html page for redirection
+eservice.index.template=eservice_index.html
+
+# Override the eService certificate to be used.
+eservice.certificate=../Common/CERT_TLS_ESERVICE_1_NEW.der
+eservice.privatekey=../Common/CERT_TLS_ESERVICE_1_NEW_KEY.der
+
+# Override the eID-Server certificate to be used.
+eidservice.certificate=../Common/CERT_TLS_EIDSERVER_1_NEW.der
+eidservice.privatekey=../Common/CERT_TLS_EIDSERVER_1_NEW_KEY.der
+
+# Reference Terminal certificate
+eidservice.cv.terminal=../Common/CERT_CV_TERM_1_A_NEW.cvcert
+eidservice.cv.terminal.key=../Common/CERT_CV_TERM_1_A_NEW_Key.pkcs8
+eidservice.cert.description=../Common/CERT_CV_TERM_1_A_NEW_Desc.bin
+
+eidservice.cv.terminal.0=../Common/terminal_cert_0.cvcert
+eidservice.cv.terminal.1=../Common/terminal_cert_1.cvcert
+eidservice.cv.terminal.2=../Common/terminal_cert_2.cvcert
+eidservice.cv.terminal.3=../Common/terminal_cert_3.cvcert
+eidservice.cv.terminal.4=../Common/terminal_cert_4.cvcert
+eidservice.cv.terminal.5=../Common/terminal_cert_5.cvcert
+
+eservice.redirector.tctoken={redirector.tctoken.0}
+redirector.tctoken.status.0=303
+
+# Does not redirect but returns '404 Not Found'
+redirector.tctoken.0={redirector.tctoken.hostname.0}:{redirector.tctoken.port.0}/respond404,dummy_target,{redirector.tctoken.certificate.0},{redirector.tctoken.privatekey.0},404
+
+# The last working step is the redirect
+expect.finalDefaultFlowStep=TC_TOKEN_REDIRECT
+expect.additionalStep.0=BROWSER_CONTENT
+expect.additionalStep.statusCodes.0=404

certificate-generator/IPSmallJava/TestObjectBuilder/TestCards/TestObject_Template/Module_A2/EID_CLIENT_A2_09/eservice_index.html

+<html>
+<head>
+	<title>Index Page - Test Case {ecard.testcase.number}</title>
+</head>
+<body>
+	<h1>Index Page</h1>
+	<h2>Test Case {ecard.testcase.number}</h2>
+	<div>{ecard.testcase.description}</div>
+	<br/>
+	<div><a href="{client.url}/eID-Client?tcTokenURL=https%3A%2F%2F{eservice.hostname}%3A{eservice.port}%2F{eservice.redirect.urlpath}">Start Test by TC Token</a></div>
+	
+</body>
+</html>

certificate-generator/IPSmallJava/TestObjectBuilder/TestCards/TestObject_Template/Module_A2/EID_CLIENT_A2_10/config.properties

+ecard.testcase.description=This test case checks the behavior of the eID-Client in case of a redirect to a http-URL during the retrieval of the TC Token.\nUse the GlobalTester test case TS_eID_1.2.1.xml.
+
+testcase.profiles=OA
+
+# Override the default index.html page for redirection
+eservice.index.template=eservice_index.html
+
+# Override the eService certificate to be used.
+eservice.certificate=../Common/CERT_TLS_ESERVICE_1_NEW.der
+eservice.privatekey=../Common/CERT_TLS_ESERVICE_1_NEW_KEY.der
+
+# Override the eID-Server certificate to be used.
+eidservice.certificate=../Common/CERT_TLS_EIDSERVER_1_NEW.der
+eidservice.privatekey=../Common/CERT_TLS_EIDSERVER_1_NEW_KEY.der
+
+# Reference Terminal certificate
+eidservice.cv.terminal=../Common/CERT_CV_TERM_1_A_NEW.cvcert
+eidservice.cv.terminal.key=../Common/CERT_CV_TERM_1_A_NEW_Key.pkcs8
+eidservice.cert.description=../Common/CERT_CV_TERM_1_A_NEW_Desc.bin
+
+eidservice.cv.terminal.0=../Common/terminal_cert_0.cvcert
+eidservice.cv.terminal.1=../Common/terminal_cert_1.cvcert
+eidservice.cv.terminal.2=../Common/terminal_cert_2.cvcert
+eidservice.cv.terminal.3=../Common/terminal_cert_3.cvcert
+eidservice.cv.terminal.4=../Common/terminal_cert_4.cvcert
+eidservice.cv.terminal.5=../Common/terminal_cert_5.cvcert
+
+# Location for redirect
+eservice.redirect.location=http://{redirector.tctoken.hostname.0}:{redirector.tctoken.port.0}/{eservice.tctoken.urlpath}
+
+eservice.redirector.tctoken={redirector.tctoken.0}
+redirector.tctoken.status.0=303
+
+redirector.tctoken.0={redirector.tctoken.hostname.0}:{redirector.tctoken.port.0}/{redirector.tctoken.urlpath.0},{redirector.tctoken.hostname.1}:{redirector.tctoken.port.1}/{redirector.tctoken.urlpath.1},{redirector.tctoken.certificate.0},{redirector.tctoken.privatekey.0},{redirector.tctoken.status.0}
+
+# The client must receive the redirect 
+expect.finalDefaultFlowStep=TC_TOKEN_REDIRECT
+
+# AFTER the eID-Client detects the http address, it conveys 400 or 400 error.
+expect.additionalStep.0=BROWSER_CONTENT
+expect.additionalStep.statusCodes.0=400,404

certificate-generator/IPSmallJava/TestObjectBuilder/TestCards/TestObject_Template/Module_A2/EID_CLIENT_A2_10/eservice_index.html

+<html>
+<head>
+	<title>Index Page - Test Case {ecard.testcase.number}</title>
+</head>
+<body>
+	<h1>Index Page</h1>
+	<h2>Test Case {ecard.testcase.number}</h2>
+	<div>{ecard.testcase.description}</div>
+	<br/>
+	<div><a href="{client.url}/eID-Client?tcTokenURL=https%3A%2F%2F{eservice.hostname}%3A{eservice.port}%2F{eservice.redirect.urlpath}">Start Test by TC Token</a></div>
+	
+</body>
+</html>

certificate-generator/IPSmallJava/TestObjectBuilder/TestCards/TestObject_Template/Module_A2/EID_CLIENT_A2_11/config.properties

+ecard.testcase.description=This test case checks the behavior of the eID-Client in case the retrieval of the TC Token fails. Instead of the TC Token the eID-Client receives "404 Not Found".\nUse the GlobalTester test case TS_eID_1.2.1.xml.
+
+testcase.profiles=OA
+
+# Define the hostname and certificates to be used.
+# Override the eService certificate to be used.
+eservice.certificate=../Common/CERT_TLS_ESERVICE_1_NEW.der
+eservice.privatekey=../Common/CERT_TLS_ESERVICE_1_NEW_KEY.der
+
+# Override the eID-Server certificate to be used.
+eidservice.certificate=../Common/CERT_TLS_EIDSERVER_1_NEW.der
+eidservice.privatekey=../Common/CERT_TLS_EIDSERVER_1_NEW_KEY.der
+
+# Reference Terminal certificate
+eidservice.cv.terminal=../Common/CERT_CV_TERM_1_A_NEW.cvcert
+eidservice.cv.terminal.key=../Common/CERT_CV_TERM_1_A_NEW_Key.pkcs8
+eidservice.cert.description=../Common/CERT_CV_TERM_1_A_NEW_Desc.bin
+
+eidservice.cv.terminal.0=../Common/terminal_cert_0.cvcert
+eidservice.cv.terminal.1=../Common/terminal_cert_1.cvcert
+eidservice.cv.terminal.2=../Common/terminal_cert_2.cvcert
+eidservice.cv.terminal.3=../Common/terminal_cert_3.cvcert
+eidservice.cv.terminal.4=../Common/terminal_cert_4.cvcert
+eidservice.cv.terminal.5=../Common/terminal_cert_5.cvcert
+
+# undefine TCToken
+eservice.tctoken.template=
+
+expect.finalDefaultFlowStep=TC_TOKEN
+expect.additionalStep.0=BROWSER_CONTENT
+expect.additionalStep.statusCodes.0=404

certificate-generator/IPSmallJava/TestObjectBuilder/TestCards/TestObject_Template/Module_A2/EID_CLIENT_A2_12/EmptyTCToken.xml

+ 
\ No newline at end of file

certificate-generator/IPSmallJava/TestObjectBuilder/TestCards/TestObject_Template/Module_A2/EID_CLIENT_A2_12/config.properties

+ecard.testcase.description=This test case checks the behavior of the eID-Client in case the retrieval of the TC Token fails. Instead of the TC Token the eID-Client receives a blank character.\nUse the GlobalTester test case TS_eID_1.2.1.xml.
+
+testcase.profiles=OA
+
+# Override the eService certificate to be used.
+eservice.certificate=../Common/CERT_TLS_ESERVICE_1_NEW.der
+eservice.privatekey=../Common/CERT_TLS_ESERVICE_1_NEW_KEY.der
+
+# Override the eID-Server certificate to be used.
+eidservice.certificate=../Common/CERT_TLS_EIDSERVER_1_NEW.der
+eidservice.privatekey=../Common/CERT_TLS_EIDSERVER_1_NEW_KEY.der
+
+# Reference Terminal certificate
+eidservice.cv.terminal=../Common/CERT_CV_TERM_1_A_NEW.cvcert
+eidservice.cv.terminal.key=../Common/CERT_CV_TERM_1_A_NEW_Key.pkcs8
+eidservice.cert.description=../Common/CERT_CV_TERM_1_A_NEW_Desc.bin
+
+eidservice.cv.terminal.0=../Common/terminal_cert_0.cvcert
+eidservice.cv.terminal.1=../Common/terminal_cert_1.cvcert
+eidservice.cv.terminal.2=../Common/terminal_cert_2.cvcert
+eidservice.cv.terminal.3=../Common/terminal_cert_3.cvcert
+eidservice.cv.terminal.4=../Common/terminal_cert_4.cvcert
+eidservice.cv.terminal.5=../Common/terminal_cert_5.cvcert
+
+# Use an empty TCToken
+eservice.tctoken.template=EmptyTCToken.xml
+
+expect.finalDefaultFlowStep=TC_TOKEN
+expect.additionalStep.0=BROWSER_CONTENT
+expect.additionalStep.statusCodes.0=404

certificate-generator/IPSmallJava/TestObjectBuilder/TestCards/TestObject_Template/Module_A2/EID_CLIENT_A2_13/TCToken.xml

+<TCTokenType>
+  <ServerAddress></ServerAddress>
+  <SessionIdentifier>{ecard.sessionid}</SessionIdentifier>
+  <RefreshAddress>https://{eservice.hostname}:{eservice.port}/{eservice.refresh.urlpath}</RefreshAddress>
+  <CommunicationErrorAddress>https://{commerroraddressserver.hostname}:{commerroraddressserver.port}/{commerroraddressserver.communicationerror.urlpath}</CommunicationErrorAddress>
+  <Binding>urn:liberty:paos:2006-08</Binding>
+  <PathSecurity-Protocol>urn:ietf:rfc:4279</PathSecurity-Protocol>
+  <PathSecurity-Parameters>
+    <PSK>{ecard.sessionpsk}</PSK>
+  </PathSecurity-Parameters>
+</TCTokenType>

certificate-generator/IPSmallJava/TestObjectBuilder/TestCards/TestObject_Template/Module_A2/EID_CLIENT_A2_13/config.properties

+ecard.testcase.description=This test case checks the behavior of the eID-Client in case the parameter "ServerAddress" contained in the retrieved TC Token is empty.\nUse the GlobalTester test case TS_eID_1.2.1.xml.
+
+testcase.profiles=OA
+
+# Override eService certificate
+# Override the eService certificate to be used.
+eservice.certificate=../Common/CERT_TLS_ESERVICE_1_NEW.der
+eservice.privatekey=../Common/CERT_TLS_ESERVICE_1_NEW_KEY.der
+
+# Override the eID-Server certificate to be used.
+eidservice.certificate=../Common/CERT_TLS_EIDSERVER_1_NEW.der
+eidservice.privatekey=../Common/CERT_TLS_EIDSERVER_1_NEW_KEY.der
+
+# Reference Terminal certificate
+eidservice.cv.terminal=../Common/CERT_CV_TERM_1_A_NEW.cvcert
+eidservice.cv.terminal.key=../Common/CERT_CV_TERM_1_A_NEW_Key.pkcs8
+eidservice.cert.description=../Common/CERT_CV_TERM_1_A_NEW_Desc.bin
+
+eidservice.cv.terminal.0=../Common/terminal_cert_0.cvcert
+eidservice.cv.terminal.1=../Common/terminal_cert_1.cvcert
+eidservice.cv.terminal.2=../Common/terminal_cert_2.cvcert
+eidservice.cv.terminal.3=../Common/terminal_cert_3.cvcert
+eidservice.cv.terminal.4=../Common/terminal_cert_4.cvcert
+eidservice.cv.terminal.5=../Common/terminal_cert_5.cvcert
+
+# provide own TCToken.xml to return an empty <ServerAddress>
+eservice.tctoken.template=TCToken.xml
+
+# TC_TOKEN will contain errors, so this is the last step of the default flow expected to work correctly
+expect.finalDefaultFlowStep=TC_TOKEN
+# AFTER this default flow, we additionally expect to be redirected to the RefreshAddress.
+
+expect.additionalStep.0=REFRESH_ADDRESS
+
+expect.additionalStep.1=REDIRECT_BROWSER
+expect.additionalStep.urlPath.1={eservice.refresh.urlpath}
+expect.additionalStep.urlParams.1=ResultMajor=error&ResultMinor=trustedChannelEstablishmentFailed
+expect.additionalStep.statusCodes.1=303
+

certificate-generator/IPSmallJava/TestObjectBuilder/TestCards/TestObject_Template/Module_A2/EID_CLIENT_A2_14/TCToken.xml

+<TCTokenType>
+  <ServerAddress>http://{eidservice.hostname}:{eidservice.port}</ServerAddress>
+  <SessionIdentifier>{ecard.sessionid}</SessionIdentifier>
+  <RefreshAddress>https://{eservice.hostname}:{eservice.port}/{eservice.refresh.urlpath}</RefreshAddress>
+  <CommunicationErrorAddress>https://{commerroraddressserver.hostname}:{commerroraddressserver.port}/{commerroraddressserver.communicationerror.urlpath}</CommunicationErrorAddress>
+  <Binding>urn:liberty:paos:2006-08</Binding>
+  <PathSecurity-Protocol>urn:ietf:rfc:4279</PathSecurity-Protocol>
+  <PathSecurity-Parameters>
+    <PSK>{ecard.sessionpsk}</PSK>
+  </PathSecurity-Parameters>
+</TCTokenType>

certificate-generator/IPSmallJava/TestObjectBuilder/TestCards/TestObject_Template/Module_A2/EID_CLIENT_A2_14/config.properties

+ecard.testcase.description=This test case checks the behavior of the eID-Client in case the parameter "ServerAddress" contained in the retrieved TC Token is not a https-URL.\nUse the GlobalTester test case TS_eID_1.2.1.xml.
+
+testcase.profiles=OA
+
+# Override eService certificate
+# Override the eService certificate to be used.
+eservice.certificate=../Common/CERT_TLS_ESERVICE_1_NEW.der
+eservice.privatekey=../Common/CERT_TLS_ESERVICE_1_NEW_KEY.der
+
+# Override the eID-Server certificate to be used.
+eidservice.certificate=../Common/CERT_TLS_EIDSERVER_1_NEW.der
+eidservice.privatekey=../Common/CERT_TLS_EIDSERVER_1_NEW_KEY.der
+
+# Reference Terminal certificate
+eidservice.cv.terminal=../Common/CERT_CV_TERM_1_A_NEW.cvcert
+eidservice.cv.terminal.key=../Common/CERT_CV_TERM_1_A_NEW_Key.pkcs8
+eidservice.cert.description=../Common/CERT_CV_TERM_1_A_NEW_Desc.bin
+
+eidservice.cv.terminal.0=../Common/terminal_cert_0.cvcert
+eidservice.cv.terminal.1=../Common/terminal_cert_1.cvcert
+eidservice.cv.terminal.2=../Common/terminal_cert_2.cvcert
+eidservice.cv.terminal.3=../Common/terminal_cert_3.cvcert
+eidservice.cv.terminal.4=../Common/terminal_cert_4.cvcert
+eidservice.cv.terminal.5=../Common/terminal_cert_5.cvcert
+
+# provide own TCToken.xml to return a non-https <ServerAddress>
+eservice.tctoken.template=TCToken.xml
+
+# TC_TOKEN will contain errors, so this is the last step of the default flow expected to work correct
+expect.finalDefaultFlowStep=TC_TOKEN
+# AFTER this default flow, we additionally expect to be redirected to the RefreshAddress.
+
+expect.additionalStep.0=REFRESH_ADDRESS
+
+expect.additionalStep.1=REDIRECT_BROWSER
+expect.additionalStep.urlPath.1={eservice.refresh.urlpath}
+expect.additionalStep.urlParams.1=ResultMajor=error&ResultMinor=trustedChannelEstablishmentFailed
+expect.additionalStep.statusCodes.1=303
+
+