From 5649772eedcb67d79ebb95e2074455bef6d3ba56 Mon Sep 17 00:00:00 2001
From: Alexander Marsalek <amarsalek@iaik.tugraz.at>
Date: Thu, 3 Dec 2020 10:13:44 +0100
Subject: general workflow steps 1-8

---
 .../v2/dao/CountrySpecificDetailSearchResult.java  |  14 ++
 .../auth/eidas/v2/dao/InitialSearchResult.java     |  12 +
 .../v2/exception/ManualFixNecessaryException.java  |  40 ++++
 .../ICountrySpecificDetailSearchProcessor.java     |  58 +++++
 .../auth/eidas/v2/tasks/InitialSearchTask.java     | 258 +++++++++++++++++++++
 .../resources/eIDAS.Authentication.process.xml     |   4 +
 .../src/main/resources/eidas_v2_auth.beans.xml     |   4 +
 .../test/EidasRequestPreProcessingSecondTest.java  |   2 +-
 8 files changed, 391 insertions(+), 1 deletion(-)
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/CountrySpecificDetailSearchResult.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/InitialSearchResult.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/exception/ManualFixNecessaryException.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ICountrySpecificDetailSearchProcessor.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/CountrySpecificDetailSearchResult.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/CountrySpecificDetailSearchResult.java
new file mode 100644
index 00000000..710e286c
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/CountrySpecificDetailSearchResult.java
@@ -0,0 +1,14 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.dao;
+
+public class CountrySpecificDetailSearchResult {
+
+  //TODO is the result the same as the one form the initial search?
+  int resultsZmr;
+  int resultsErnb;
+
+  public int getResultCount() {
+    return resultsZmr + resultsErnb;
+  }
+
+
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/InitialSearchResult.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/InitialSearchResult.java
new file mode 100644
index 00000000..8fe69414
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/InitialSearchResult.java
@@ -0,0 +1,12 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.dao;
+
+public class InitialSearchResult {
+
+  int resultsZmr;
+  int resultsErnb;
+
+  public int getResultCount() {
+    return resultsErnb + resultsZmr;
+  }
+
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/exception/ManualFixNecessaryException.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/exception/ManualFixNecessaryException.java
new file mode 100644
index 00000000..f3916ed6
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/exception/ManualFixNecessaryException.java
@@ -0,0 +1,40 @@
+/*
+ * Copyright 2018 A-SIT Plus GmbH
+ * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
+ * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
+ *
+ * Licensed under the EUPL, Version 1.2 or - as soon they will be approved by
+ * the European Commission - subsequent versions of the EUPL (the "License");
+ * You may not use this work except in compliance with the License.
+ * You may obtain a copy of the License at:
+ * https://joinup.ec.europa.eu/news/understanding-eupl-v12
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" basis,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ *
+ * This product combines work with different licenses. See the "NOTICE" text
+ * file for details on the various modules and licenses.
+ * The "NOTICE" text file is part of the distribution. Any derivative works
+ * that you distribute must include a readable copy of the "NOTICE" text file.
+*/
+
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.exception;
+
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.ErnbEidData;
+
+public class ManualFixNecessaryException extends EidasSAuthenticationException {
+  private static final long serialVersionUID = 1L;
+
+  public ManualFixNecessaryException(String personIdentifier) {
+    super("eidas.00", new Object[] { personIdentifier });//TODO "eidas.00"
+
+  }
+
+  public ManualFixNecessaryException(ErnbEidData eidData) {
+
+    super("eidas.00", new Object[] { eidData.getPseudonym() });//TODO "eidas.00"   => what info to pass???
+  }
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ICountrySpecificDetailSearchProcessor.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ICountrySpecificDetailSearchProcessor.java
new file mode 100644
index 00000000..c35f6e16
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ICountrySpecificDetailSearchProcessor.java
@@ -0,0 +1,58 @@
+/*
+ * Copyright 2018 A-SIT Plus GmbH
+ * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
+ * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
+ *
+ * Licensed under the EUPL, Version 1.2 or - as soon they will be approved by
+ * the European Commission - subsequent versions of the EUPL (the "License");
+ * You may not use this work except in compliance with the License.
+ * You may obtain a copy of the License at:
+ * https://joinup.ec.europa.eu/news/understanding-eupl-v12
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" basis,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ *
+ * This product combines work with different licenses. See the "NOTICE" text
+ * file for details on the various modules and licenses.
+ * The "NOTICE" text file is part of the distribution. Any derivative works
+ * that you distribute must include a readable copy of the "NOTICE" text file.
+ */
+
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.handler;
+
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.CountrySpecificDetailSearchResult;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.ErnbEidData;
+
+public interface ICountrySpecificDetailSearchProcessor {
+
+  /**
+   * Get a friendlyName of this post-processor implementation.
+   *
+   * @return
+   */
+  String getName();
+
+  /**
+   * Get the priority of this eID Post-Processor <br>
+   * If more than one Post-Processor implementations can handle the eID data, the
+   * post-processor with the highest priority are selected. The Default-Processor
+   * has priority '0'
+   *
+   * @return Priority of this handler
+   */
+  int getPriority();
+
+  /**
+   * Check if this postProcessor is sensitive for a specific country.
+   *
+   * @param countryCode of the eID data that should be processed
+   * @param eidData eID data
+   * @return true if this implementation can handle the country, otherwise false
+   */
+  boolean canHandle(String countryCode, ErnbEidData eidData);
+
+  CountrySpecificDetailSearchResult search(ErnbEidData eidData);
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
new file mode 100644
index 00000000..d9f70a81
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
@@ -0,0 +1,258 @@
+/*
+ * Copyright 2018 A-SIT Plus GmbH
+ * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
+ * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
+ *
+ * Licensed under the EUPL, Version 1.2 or - as soon they will be approved by
+ * the European Commission - subsequent versions of the EUPL (the "License");
+ * You may not use this work except in compliance with the License.
+ * You may obtain a copy of the License at:
+ * https://joinup.ec.europa.eu/news/understanding-eupl-v12
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" basis,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ *
+ * This product combines work with different licenses. See the "NOTICE" text
+ * file for details on the various modules and licenses.
+ * The "NOTICE" text file is part of the distribution. Any derivative works
+ * that you distribute must include a readable copy of the "NOTICE" text file.
+ */
+
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks;
+
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.CountrySpecificDetailSearchResult;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.ErnbEidData;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.InitialSearchResult;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.ManualFixNecessaryException;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.ICountrySpecificDetailSearchProcessor;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.ICcSpecificEidProcessingService;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.EidasResponseUtils;
+import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
+import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
+import at.gv.egiz.eaaf.core.impl.idp.auth.data.AuthProcessDataWrapper;
+import at.gv.egiz.eaaf.core.impl.idp.auth.modules.AbstractAuthServletTask;
+import com.google.common.collect.ImmutableMap;
+import com.google.common.collect.ImmutableSet;
+import eu.eidas.auth.commons.attribute.AttributeDefinition;
+import eu.eidas.auth.commons.attribute.AttributeValue;
+import eu.eidas.auth.commons.light.ILightResponse;
+import eu.eidas.auth.commons.protocol.eidas.impl.PostalAddress;
+import lombok.extern.slf4j.Slf4j;
+import org.apache.commons.lang3.StringUtils;
+import org.joda.time.DateTime;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.context.ApplicationContext;
+import org.springframework.stereotype.Component;
+
+import javax.annotation.PostConstruct;
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+import java.util.ArrayList;
+import java.util.Collections;
+import java.util.HashMap;
+import java.util.Iterator;
+import java.util.List;
+import java.util.Map;
+
+/**
+ * Task that creates the IdentityLink for an eIDAS authenticated person.
+ *
+ * @author tlenz
+ */
+@Slf4j
+@Component("InitialSearchTask")
+public class InitialSearchTask extends AbstractAuthServletTask {
+
+  private final List<ICountrySpecificDetailSearchProcessor> handlers = new ArrayList<>();
+
+  //  @Autowired
+  //  private AuthBlockSigningService authBlockSigner;
+  //  @Autowired
+  //  private IConfiguration basicConfig;
+  //  @Autowired
+  //  private SzrClient szrClient;
+  @Autowired
+  private ICcSpecificEidProcessingService eidPostProcessor;
+
+  //  private static final String EID_STATUS = "urn:eidgvat:eid.status.eidas";
+  @Autowired
+  private ApplicationContext context;
+
+  @PostConstruct
+  private void initialize() {
+    log.debug("Initialize country specific detail search services ... ");
+    final Map<String, ICountrySpecificDetailSearchProcessor> postProcessors = context.getBeansOfType(
+        ICountrySpecificDetailSearchProcessor.class);
+    final Iterator<Map.Entry<String, ICountrySpecificDetailSearchProcessor>> iterator =
+        postProcessors.entrySet().iterator();
+    while (iterator.hasNext()) {
+      final Map.Entry<String, ICountrySpecificDetailSearchProcessor> el = iterator.next();
+      log.debug("Find country specific detail search services with name: " + el.getKey());
+      handlers.add(el.getValue());
+
+    }
+
+    log.trace("Sorting country specific detail search services on priority ... ");
+    Collections.sort(handlers, (thisAuthModule, otherAuthModule) -> {
+      final int thisOrder = thisAuthModule.getPriority();
+      final int otherOrder = otherAuthModule.getPriority();
+      return thisOrder < otherOrder ? 1 : thisOrder == otherOrder ? 0 : -1;
+    });
+
+    log.info("# " + handlers.size() + " country specific detail search services are registrated");
+
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see at.gv.egovernment.moa.id.process.springweb.MoaIdTask#execute(at.gv.
+   * egovernment.moa.id.process.api.ExecutionContext,
+   * javax.servlet.http.HttpServletRequest,
+   * javax.servlet.http.HttpServletResponse)
+   */
+  @Override
+  public void execute(ExecutionContext executionContext, HttpServletRequest request, HttpServletResponse response)
+      throws TaskExecutionException {
+    try {
+      final AuthProcessDataWrapper authProcessData = pendingReq.getSessionData(AuthProcessDataWrapper.class);
+      final ILightResponse eidasResponse = authProcessData
+          .getGenericDataFromSession(Constants.DATA_FULL_EIDAS_RESPONSE, ILightResponse.class);
+
+      final Map<String, Object> simpleAttrMap = convertEidasAttrToSimpleMap(
+          eidasResponse.getAttributes().getAttributeMap());
+
+      // post-process eIDAS attributes
+      final ErnbEidData eidData = eidPostProcessor.postProcess(simpleAttrMap);
+
+      String personIdentifier = eidData.getPseudonym();
+
+      //search in register(step 2)
+      InitialSearchResult result = searchInZmrAndErnp(personIdentifier);
+      switch (result.getResultCount()) {
+        case 0:
+          step5(result, eidData);
+          break;
+        case 1:
+          step3(result, eidData);
+          break;
+        default://should not happen
+          throw new TaskExecutionException(pendingReq, "Initial search - Kitt Process necessary.",
+              new ManualFixNecessaryException(personIdentifier));
+      }
+    } catch (final Exception e) {
+      log.error("Initial search FAILED.", e);
+      throw new TaskExecutionException(pendingReq, "Initial search FAILED.", e);
+    }
+  }
+
+  private void step3(InitialSearchResult result, ErnbEidData eidData) {
+    //check if data from eidas authentication matches with data from register
+    //TODO
+
+  }
+
+  private void step5(InitialSearchResult result, ErnbEidData eidData) throws TaskExecutionException {
+    String citizenCountry = eidData.getCitizenCountryCode();
+    ICountrySpecificDetailSearchProcessor foundHandler = null;
+    for (final ICountrySpecificDetailSearchProcessor el : handlers) {
+      //5 check if country specific search is possible
+      if (el.canHandle(citizenCountry, eidData)) {
+        log.debug("Found suitable country specific search handler for " + citizenCountry
+            + " by using: " + el.getName());
+        foundHandler = el;
+        break;
+      }
+    }
+    if (foundHandler == null) {
+      //MDS search
+      step8(result, eidData);
+    } else {
+      //country specific search
+      step6(foundHandler, result, eidData);
+    }
+  }
+
+  private void step6(ICountrySpecificDetailSearchProcessor countrySpecificDetailSearchProcessor,
+                     InitialSearchResult initialSearchResult, ErnbEidData eidData) throws TaskExecutionException {
+    //6 country specific search
+    CountrySpecificDetailSearchResult countrySpecificDetailSearchResult =
+        countrySpecificDetailSearchProcessor.search(eidData);
+
+    switch (countrySpecificDetailSearchResult.getResultCount()) {
+      case 0:
+        step8(initialSearchResult, eidData);
+        break;
+      case 1:
+        step7a(initialSearchResult, countrySpecificDetailSearchResult, eidData);
+        break;
+      default://should not happen
+        throw new TaskExecutionException(pendingReq, "Detail search - Kitt Process necessary.",
+            new ManualFixNecessaryException(eidData));
+    }
+  }
+
+  private void step7a(InitialSearchResult initialSearchResult,
+                      CountrySpecificDetailSearchResult countrySpecificDetailSearchResult, ErnbEidData eidData) {
+    //TODO automerge
+
+  }
+
+  private void step8(InitialSearchResult initialSearchResult, ErnbEidData eidData) {
+    //TODO MDS Suche
+  }
+
+  private InitialSearchResult searchInZmrAndErnp(String personIdentifier) {
+    //search TODO
+    return new InitialSearchResult();//TODO
+  }
+
+  private Map<String, Object> convertEidasAttrToSimpleMap(
+      ImmutableMap<AttributeDefinition<?>, ImmutableSet<? extends AttributeValue<?>>> attributeMap) {
+    final Map<String, Object> result = new HashMap<>();
+
+    for (final AttributeDefinition<?> el : attributeMap.keySet()) {
+
+      final Class<?> parameterizedType = el.getParameterizedType();
+      if (DateTime.class.equals(parameterizedType)) {
+        final DateTime attribute = EidasResponseUtils.translateDateAttribute(el, attributeMap.get(el).asList());
+        if (attribute != null) {
+          result.put(el.getFriendlyName(), attribute);
+          log.trace("Find attr '" + el.getFriendlyName() + "' with value: " + attribute.toString());
+
+        } else {
+          log.info("Ignore empty 'DateTime' attribute");
+        }
+
+      } else if (PostalAddress.class.equals(parameterizedType)) {
+        final PostalAddress addressAttribute = EidasResponseUtils
+            .translateAddressAttribute(el, attributeMap.get(el).asList());
+        if (addressAttribute != null) {
+          result.put(el.getFriendlyName(), addressAttribute);
+          log.trace("Find attr '" + el.getFriendlyName() + "' with value: " + addressAttribute.toString());
+
+        } else {
+          log.info("Ignore empty 'PostalAddress' attribute");
+        }
+
+      } else {
+        final List<String> natPersonIdObj = EidasResponseUtils
+            .translateStringListAttribute(el, attributeMap.get(el).asList());
+        final String stringAttr = natPersonIdObj.get(0);
+        if (StringUtils.isNotEmpty(stringAttr)) {
+          result.put(el.getFriendlyName(), stringAttr);
+          log.trace("Find attr '" + el.getFriendlyName() + "' with value: " + stringAttr);
+
+        } else {
+          log.info("Ignore empty 'String' attribute");
+        }
+      }
+    }
+    log.debug("Receive #" + result.size() + " attributes with names: " + result.keySet().toString());
+    return result;
+  }
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eIDAS.Authentication.process.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eIDAS.Authentication.process.xml
index 55bb1ace..e199d379 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eIDAS.Authentication.process.xml
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eIDAS.Authentication.process.xml
@@ -10,6 +10,8 @@
     class="FinalizeAuthenticationTask" />
   <pd:Task id="generateIdentityLink"
     class="CreateIdentityLinkTask" />
+  <pd:Task id="initialRegisterSearch"
+           class="InitialSearchTask" />
 
   <pd:StartEvent id="start" />
   
@@ -18,6 +20,8 @@
   <pd:Transition  from="createAuthnRequest"
                   to="receiveAuthnResponse" />
   <pd:Transition  from="receiveAuthnResponse"
+                  to="initialRegisterSearch" />
+  <pd:Transition  from="initialRegisterSearch"
                   to="generateIdentityLink" />
   <pd:Transition  from="generateIdentityLink"
                   to="finalizeAuthentication" />
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml
index 6cc704ab..9c28bf07 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml
@@ -87,4 +87,8 @@
     class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.CreateIdentityLinkTask"
     scope="prototype" />
 
+  <bean id="InitialSearchTask"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.InitialSearchTask"
+        scope="prototype" />
+
 </beans>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/EidasRequestPreProcessingSecondTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/EidasRequestPreProcessingSecondTest.java
index da7e3d85..e7bacded 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/EidasRequestPreProcessingSecondTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/EidasRequestPreProcessingSecondTest.java
@@ -107,7 +107,7 @@ public class EidasRequestPreProcessingSecondTest {
 
     final LightRequest lightReq = authnRequestBuilder.build();
 
-    Assert.assertEquals("ProviderName is not Static", "myNode", lightReq.getProviderName());
+    Assert.assertEquals("ProviderName is not Static", "myNode", lightReq.getProviderName());//Fixme "myNode"
     Assert.assertEquals("no PublicSP", "public", lightReq.getSpType());
     Assert.assertEquals("Requested attribute size not match", 8, lightReq.getRequestedAttributes().size());
 
-- 
cgit v1.2.3


From 078fb6a05a4bff2bb7595458b4154f76fe1caea7 Mon Sep 17 00:00:00 2001
From: Alexander Marsalek <amarsalek@iaik.tugraz.at>
Date: Fri, 4 Dec 2020 12:59:42 +0100
Subject: added dummy ZMR & ERnB client

---
 .../auth/eidas/v2/dao/InitialSearchResult.java     |  12 --
 .../eidas/v2/dao/MergedRegisterSearchResult.java   |  16 ++
 .../modules/auth/eidas/v2/dao/RegisterResult.java  |  59 ++++++++
 .../modules/auth/eidas/v2/dao/SimpleEidasData.java |  52 +++++++
 .../auth/eidas/v2/ernb/DummyErnbClient.java        |  49 ++++++
 .../modules/auth/eidas/v2/ernb/IErnbClient.java    |  12 ++
 .../v2/exception/ManualFixNecessaryException.java  |   6 +-
 .../eidas/v2/handler/AbstractEidProcessor.java     | 136 ++++-------------
 .../ICountrySpecificDetailSearchProcessor.java     |   6 +-
 .../auth/eidas/v2/tasks/InitialSearchTask.java     | 147 +++++++++++++-----
 .../auth/eidas/v2/utils/EidasResponseUtils.java    | 168 +++++++++++++++++++++
 .../modules/auth/eidas/v2/zmr/DummyZmrClient.java  |  49 ++++++
 .../modules/auth/eidas/v2/zmr/IZmrClient.java      |  12 ++
 .../src/main/resources/eidas_v2_auth.beans.xml     |   6 +
 14 files changed, 569 insertions(+), 161 deletions(-)
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/InitialSearchResult.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/MergedRegisterSearchResult.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/RegisterResult.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleEidasData.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernb/DummyErnbClient.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernb/IErnbClient.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/DummyZmrClient.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/IZmrClient.java

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/InitialSearchResult.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/InitialSearchResult.java
deleted file mode 100644
index 8fe69414..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/InitialSearchResult.java
+++ /dev/null
@@ -1,12 +0,0 @@
-package at.asitplus.eidas.specific.modules.auth.eidas.v2.dao;
-
-public class InitialSearchResult {
-
-  int resultsZmr;
-  int resultsErnb;
-
-  public int getResultCount() {
-    return resultsErnb + resultsZmr;
-  }
-
-}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/MergedRegisterSearchResult.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/MergedRegisterSearchResult.java
new file mode 100644
index 00000000..bc5b358d
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/MergedRegisterSearchResult.java
@@ -0,0 +1,16 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.dao;
+
+import lombok.Data;
+
+import java.util.ArrayList;
+
+@Data public class MergedRegisterSearchResult {
+
+  ArrayList<RegisterResult> resultsZmr = new ArrayList<>();
+  ArrayList<RegisterResult> resultsErnb = new ArrayList<>();
+
+  public int getResultCount() {
+    return resultsZmr.size() + resultsErnb.size();
+  }
+
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/RegisterResult.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/RegisterResult.java
new file mode 100644
index 00000000..9509e7de
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/RegisterResult.java
@@ -0,0 +1,59 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.dao;
+
+import at.gv.e_government.reference.namespace.persondata._20020228.PostalAddressType;
+import lombok.Data;
+
+@Data public class RegisterResult {
+
+  // MDS
+  private String pseudonym = null;
+  private String givenName = null;
+  private String familyName = null;
+  private String dateOfBirth = null;
+
+  // additional attributes
+  private String placeOfBirth = null;
+  private String birthName = null;
+  private String taxNumber = null;
+  private PostalAddressType address = null;
+
+  /**
+   * Register search result.
+   * @param pseudonym The pseudonym
+   * @param givenName The givenName
+   * @param familyName The familyName
+   * @param dateOfBirth The dateOfBirth
+   * @param placeOfBirth The placeOfBirth
+   */
+  public RegisterResult(String pseudonym, String givenName, String familyName, String dateOfBirth,
+                        String placeOfBirth) {
+    this.pseudonym = pseudonym;
+    this.givenName = givenName;
+    this.familyName = familyName;
+    this.dateOfBirth = dateOfBirth;
+    this.placeOfBirth = placeOfBirth;
+  }
+
+  /**
+   * Register search result.
+   * @param pseudonym The pseudonym
+   * @param givenName The givenName
+   * @param familyName The familyName
+   * @param dateOfBirth The dateOfBirth
+   * @param placeOfBirth The placeOfBirth
+   * @param birthName The birthName
+   * @param taxNumber The taxNumber
+   * @param address The address
+   */
+  public RegisterResult(String pseudonym, String givenName, String familyName, String dateOfBirth,
+                        String placeOfBirth, String birthName, String taxNumber, PostalAddressType address) {
+    this.pseudonym = pseudonym;
+    this.givenName = givenName;
+    this.familyName = familyName;
+    this.dateOfBirth = dateOfBirth;
+    this.placeOfBirth = placeOfBirth;
+    this.birthName = birthName;
+    this.taxNumber = taxNumber;
+    this.address = address;
+  }
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleEidasData.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleEidasData.java
new file mode 100644
index 00000000..0b116bfb
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleEidasData.java
@@ -0,0 +1,52 @@
+/*
+ * Copyright 2018 A-SIT Plus GmbH
+ * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
+ * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
+ *
+ * Licensed under the EUPL, Version 1.2 or - as soon they will be approved by
+ * the European Commission - subsequent versions of the EUPL (the "License");
+ * You may not use this work except in compliance with the License.
+ * You may obtain a copy of the License at:
+ * https://joinup.ec.europa.eu/news/understanding-eupl-v12
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" basis,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ *
+ * This product combines work with different licenses. See the "NOTICE" text
+ * file for details on the various modules and licenses.
+ * The "NOTICE" text file is part of the distribution. Any derivative works
+ * that you distribute must include a readable copy of the "NOTICE" text file.
+ */
+
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.dao;
+
+import at.gv.e_government.reference.namespace.persondata._20020228.PostalAddressType;
+import lombok.Data;
+import org.joda.time.DateTime;
+
+import java.text.SimpleDateFormat;
+
+@Data public class SimpleEidasData {
+
+  private String citizenCountryCode = null;
+
+  // MDS
+  private String pseudonym = null;
+  private String givenName = null;
+  private String familyName = null;
+  private DateTime dateOfBirth = null;
+
+  // additional attributes
+  private String placeOfBirth = null;
+  private String birthName = null;
+  private PostalAddressType address = null;
+  private String taxNumber;
+
+  public String getFormatedDateOfBirth() {
+    return new SimpleDateFormat("yyyy-MM-dd").format(dateOfBirth.toDate());
+  }
+
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernb/DummyErnbClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernb/DummyErnbClient.java
new file mode 100644
index 00000000..8b2379bf
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernb/DummyErnbClient.java
@@ -0,0 +1,49 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.ernb;
+
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
+import org.springframework.stereotype.Service;
+
+import java.util.ArrayList;
+
+@Service("ErnbClientForeIDAS")
+public class DummyErnbClient implements IErnbClient {
+
+  @Override
+  public ArrayList<RegisterResult> searchWithPersonIdentifer(String personIdentifer) {
+    switch (personIdentifer) {
+      case "a12345":
+      case "a12345-":
+        return result1();
+      case "a123456":
+        return result2();
+      default:
+        return resultEmpty();
+    }
+  }
+
+  @Override
+  public ArrayList<RegisterResult> searchWithMds(String givenName, String familyName, String dateOfBirth) {
+    return resultEmpty();//TODO will I only receive matches where all three values match perfectly?
+  }
+
+  private ArrayList<RegisterResult> resultEmpty() {
+    return new ArrayList<RegisterResult>();//Nobody found
+  }
+
+  private ArrayList<RegisterResult> result1() {
+    ArrayList<RegisterResult> results = new ArrayList<>();
+    RegisterResult result1 = new RegisterResult("a12345", "Tom", "Mustermann", "1950-01-01", "Wien");
+    results.add(result1);
+    RegisterResult result2 = new RegisterResult("a12345-", "Tom", "Mustermann", "1950-01-01", "Wien");
+    results.add(result2);
+    return results;
+  }
+
+  private ArrayList<RegisterResult> result2() {
+    ArrayList<RegisterResult> results = new ArrayList<>();
+    RegisterResult result = new RegisterResult("a123456", "Max", "Mustermann", "2000-01-01", "Wien");
+    results.add(result);
+    return results;
+  }
+
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernb/IErnbClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernb/IErnbClient.java
new file mode 100644
index 00000000..4873b939
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernb/IErnbClient.java
@@ -0,0 +1,12 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.ernb;
+
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
+
+import java.util.ArrayList;
+
+public interface IErnbClient {
+
+  ArrayList<RegisterResult> searchWithPersonIdentifer(String personIdentifer);
+
+  ArrayList<RegisterResult> searchWithMds(String givenName, String familyName, String dateOfBirth);
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/exception/ManualFixNecessaryException.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/exception/ManualFixNecessaryException.java
index f3916ed6..c22e8135 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/exception/ManualFixNecessaryException.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/exception/ManualFixNecessaryException.java
@@ -23,18 +23,16 @@
 
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.exception;
 
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.ErnbEidData;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
 
 public class ManualFixNecessaryException extends EidasSAuthenticationException {
   private static final long serialVersionUID = 1L;
 
   public ManualFixNecessaryException(String personIdentifier) {
     super("eidas.00", new Object[] { personIdentifier });//TODO "eidas.00"
-
   }
 
-  public ManualFixNecessaryException(ErnbEidData eidData) {
-
+  public ManualFixNecessaryException(SimpleEidasData eidData) {
     super("eidas.00", new Object[] { eidData.getPseudonym() });//TODO "eidas.00"   => what info to pass???
   }
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/AbstractEidProcessor.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/AbstractEidProcessor.java
index fe839c37..e3c1e00f 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/AbstractEidProcessor.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/AbstractEidProcessor.java
@@ -23,18 +23,6 @@
 
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.handler;
 
-import java.util.Map;
-import java.util.regex.Matcher;
-import java.util.regex.Pattern;
-
-import org.apache.commons.lang3.StringUtils;
-import org.joda.time.DateTime;
-import org.slf4j.Logger;
-import org.slf4j.LoggerFactory;
-import org.springframework.beans.factory.annotation.Autowired;
-
-import com.google.common.collect.ImmutableSortedSet;
-
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.ErnbEidData;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidPostProcessingException;
@@ -46,12 +34,21 @@ import at.gv.egiz.eaaf.core.api.IRequest;
 import at.gv.egiz.eaaf.core.api.idp.IConfigurationWithSP;
 import at.gv.egiz.eaaf.core.api.idp.ISpConfiguration;
 import at.gv.egiz.eaaf.core.impl.data.Triple;
+import com.google.common.collect.ImmutableSortedSet;
 import edu.umd.cs.findbugs.annotations.NonNull;
 import eu.eidas.auth.commons.attribute.AttributeDefinition;
 import eu.eidas.auth.commons.attribute.ImmutableAttributeMap;
 import eu.eidas.auth.commons.light.impl.LightRequest.Builder;
 import eu.eidas.auth.commons.protocol.eidas.SpType;
-import eu.eidas.auth.commons.protocol.eidas.impl.PostalAddress;
+import org.apache.commons.lang3.StringUtils;
+import org.joda.time.DateTime;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+import org.springframework.beans.factory.annotation.Autowired;
+
+import java.util.Map;
+import java.util.regex.Matcher;
+import java.util.regex.Pattern;
 
 public abstract class AbstractEidProcessor implements INationalEidProcessor {
   private static final Logger log = LoggerFactory.getLogger(AbstractEidProcessor.class);
@@ -66,7 +63,6 @@ public abstract class AbstractEidProcessor implements INationalEidProcessor {
 
     buildProviderNameAttribute(pendingReq, authnRequestBuilder);
     buildRequestedAttributes(authnRequestBuilder);
-
   }
 
   @Override
@@ -91,13 +87,12 @@ public abstract class AbstractEidProcessor implements INationalEidProcessor {
     result.setAddress(processAddress(eidasAttrMap.get(Constants.eIDAS_ATTR_CURRENTADDRESS)));
 
     return result;
-
   }
 
-  
+
   /**
    * Get a Map of country-specific requested attributes.
-   * 
+   *
    * @return
    */
   @NonNull
@@ -105,7 +100,7 @@ public abstract class AbstractEidProcessor implements INationalEidProcessor {
 
   /**
    * Post-Process the eIDAS CurrentAddress attribute.
-   * 
+   *
    * @param currentAddressObj eIDAS current address information
    * @return current address or null if no attribute is available
    * @throws EidPostProcessingException if post-processing fails
@@ -113,34 +108,12 @@ public abstract class AbstractEidProcessor implements INationalEidProcessor {
    */
   protected PostalAddressType processAddress(Object currentAddressObj) throws EidPostProcessingException,
       EidasAttributeException {
-
-    if (currentAddressObj != null) {
-      if (currentAddressObj instanceof PostalAddress) {
-        final PostalAddressType result = new PostalAddressType();
-        result.setPostalCode(((PostalAddress) currentAddressObj).getPostCode());
-        result.setMunicipality(((PostalAddress) currentAddressObj).getPostName());
-
-        // TODO: add more mappings
-        
-        return result;
-
-      } else {
-        log.warn("eIDAS attr: " + Constants.eIDAS_ATTR_CURRENTADDRESS + " is of WRONG type");
-        throw new EidasAttributeException(Constants.eIDAS_ATTR_CURRENTADDRESS);
-
-      }
-
-    } else {
-      log.debug("NO '" + Constants.eIDAS_ATTR_CURRENTADDRESS + "' attribute. Post-Processing skipped ... ");
-    }
-
-    return null;
-
+    return EidasResponseUtils.processAddress(currentAddressObj);
   }
 
   /**
    * Post-Process the eIDAS BirthName attribute.
-   * 
+   *
    * @param birthNameObj eIDAS birthname information
    * @return birthName or null if no attribute is available
    * @throws EidPostProcessingException if post-processing fails
@@ -148,27 +121,12 @@ public abstract class AbstractEidProcessor implements INationalEidProcessor {
    */
   protected String processBirthName(Object birthNameObj) throws EidPostProcessingException,
       EidasAttributeException {
-    if (birthNameObj != null) {
-      if (birthNameObj instanceof String) {
-        return (String) birthNameObj;
-
-      } else {
-        log.warn("eIDAS attr: " + Constants.eIDAS_ATTR_BIRTHNAME + " is of WRONG type");
-        throw new EidasAttributeException(Constants.eIDAS_ATTR_BIRTHNAME);
-
-      }
-
-    } else {
-      log.debug("NO '" + Constants.eIDAS_ATTR_BIRTHNAME + "' attribute. Post-Processing skipped ... ");
-    }
-
-    return null;
-
+    return EidasResponseUtils.processBirthName(birthNameObj);
   }
 
   /**
    * Post-Process the eIDAS PlaceOfBirth attribute.
-   * 
+   *
    * @param placeOfBirthObj eIDAS Place-of-Birth information
    * @return place of Birth or null if no attribute is available
    * @throws EidPostProcessingException if post-processing fails
@@ -176,27 +134,12 @@ public abstract class AbstractEidProcessor implements INationalEidProcessor {
    */
   protected String processPlaceOfBirth(Object placeOfBirthObj) throws EidPostProcessingException,
       EidasAttributeException {
-    if (placeOfBirthObj != null) {
-      if (placeOfBirthObj instanceof String) {
-        return (String) placeOfBirthObj;
-
-      } else {
-        log.warn("eIDAS attr: " + Constants.eIDAS_ATTR_PLACEOFBIRTH + " is of WRONG type");
-        throw new EidasAttributeException(Constants.eIDAS_ATTR_PLACEOFBIRTH);
-
-      }
-
-    } else {
-      log.debug("NO '" + Constants.eIDAS_ATTR_PLACEOFBIRTH + "' attribute. Post-Processing skipped ... ");
-    }
-
-    return null;
-
+    return EidasResponseUtils.processPlaceOfBirth(placeOfBirthObj);
   }
 
   /**
    * Post-Process the eIDAS DateOfBirth attribute.
-   * 
+   *
    * @param dateOfBirthObj eIDAS date-of-birth attribute information
    * @return formated user's date-of-birth
    * @throws EidasAttributeException    if NO attribute is available
@@ -204,17 +147,12 @@ public abstract class AbstractEidProcessor implements INationalEidProcessor {
    */
   protected DateTime processDateOfBirth(Object dateOfBirthObj) throws EidPostProcessingException,
       EidasAttributeException {
-    if (dateOfBirthObj == null || !(dateOfBirthObj instanceof DateTime)) {
-      throw new EidasAttributeException(Constants.eIDAS_ATTR_DATEOFBIRTH);
-    }
-
-    return (DateTime) dateOfBirthObj;
-
+    return EidasResponseUtils.processDateOfBirth(dateOfBirthObj);
   }
 
   /**
    * Post-Process the eIDAS GivenName attribute.
-   * 
+   *
    * @param givenNameObj eIDAS givenName attribute information
    * @return formated user's givenname
    * @throws EidasAttributeException    if NO attribute is available
@@ -222,17 +160,12 @@ public abstract class AbstractEidProcessor implements INationalEidProcessor {
    */
   protected String processGivenName(Object givenNameObj) throws EidPostProcessingException,
       EidasAttributeException {
-    if (givenNameObj == null || !(givenNameObj instanceof String)) {
-      throw new EidasAttributeException(Constants.eIDAS_ATTR_CURRENTGIVENNAME);
-    }
-
-    return (String) givenNameObj;
-
+    return EidasResponseUtils.processGivenName(givenNameObj);
   }
 
   /**
    * Post-Process the eIDAS FamilyName attribute.
-   * 
+   *
    * @param familyNameObj eIDAS familyName attribute information
    * @return formated user's familyname
    * @throws EidasAttributeException    if NO attribute is available
@@ -240,17 +173,12 @@ public abstract class AbstractEidProcessor implements INationalEidProcessor {
    */
   protected String processFamilyName(Object familyNameObj) throws EidPostProcessingException,
       EidasAttributeException {
-    if (familyNameObj == null || !(familyNameObj instanceof String)) {
-      throw new EidasAttributeException(Constants.eIDAS_ATTR_CURRENTFAMILYNAME);
-    }
-
-    return (String) familyNameObj;
-
+    return EidasResponseUtils.processFamilyName(familyNameObj);
   }
 
   /**
    * Post-Process the eIDAS pseudonym to ERnB unique identifier.
-   * 
+   *
    * @param personalIdObj eIDAS PersonalIdentifierAttribute
    * @return Unique personal identifier without country-code information
    * @throws EidasAttributeException    if NO attribute is available
@@ -258,15 +186,7 @@ public abstract class AbstractEidProcessor implements INationalEidProcessor {
    */
   protected String processPseudonym(Object personalIdObj) throws EidPostProcessingException,
       EidasAttributeException {
-    if (personalIdObj == null || !(personalIdObj instanceof String)) {
-      throw new EidasAttributeException(Constants.eIDAS_ATTR_PERSONALIDENTIFIER);
-    }
-
-    final Triple<String, String, String> eIdentifier =
-        EidasResponseUtils.parseEidasPersonalIdentifier((String) personalIdObj);
-
-    return eIdentifier.getThird();
-
+    return EidasResponseUtils.processPseudonym(personalIdObj);
   }
 
   private void buildRequestedAttributes(Builder authnRequestBuilder) {
@@ -332,8 +252,8 @@ public abstract class AbstractEidProcessor implements INationalEidProcessor {
         final String providerName = pendingReq.getRawData(Constants.DATA_PROVIDERNAME, String.class);
         if (StringUtils.isNotEmpty(providerName)
             && basicConfig.getBasicConfigurationBoolean(
-                Constants.CONIG_PROPS_EIDAS_NODE_WORKAROUND_ADD_ALWAYS_PROVIDERNAME,
-                false)) {
+            Constants.CONIG_PROPS_EIDAS_NODE_WORKAROUND_ADD_ALWAYS_PROVIDERNAME,
+            false)) {
           authnRequestBuilder.providerName(providerName);
 
         }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ICountrySpecificDetailSearchProcessor.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ICountrySpecificDetailSearchProcessor.java
index c35f6e16..13d9117d 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ICountrySpecificDetailSearchProcessor.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ICountrySpecificDetailSearchProcessor.java
@@ -24,7 +24,7 @@
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.handler;
 
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.CountrySpecificDetailSearchResult;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.ErnbEidData;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
 
 public interface ICountrySpecificDetailSearchProcessor {
 
@@ -52,7 +52,7 @@ public interface ICountrySpecificDetailSearchProcessor {
    * @param eidData eID data
    * @return true if this implementation can handle the country, otherwise false
    */
-  boolean canHandle(String countryCode, ErnbEidData eidData);
+  boolean canHandle(String countryCode, SimpleEidasData eidData);
 
-  CountrySpecificDetailSearchResult search(ErnbEidData eidData);
+  CountrySpecificDetailSearchResult search(SimpleEidasData eidData);
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
index d9f70a81..6f4cfefc 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
@@ -25,14 +25,19 @@ package at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks;
 
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.CountrySpecificDetailSearchResult;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.ErnbEidData;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.InitialSearchResult;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.MergedRegisterSearchResult;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernb.IErnbClient;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidPostProcessingException;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidasAttributeException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.ManualFixNecessaryException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.ICountrySpecificDetailSearchProcessor;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.ICcSpecificEidProcessingService;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.EidasResponseUtils;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.IZmrClient;
 import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
 import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
+import at.gv.egiz.eaaf.core.impl.data.Triple;
 import at.gv.egiz.eaaf.core.impl.idp.auth.data.AuthProcessDataWrapper;
 import at.gv.egiz.eaaf.core.impl.idp.auth.modules.AbstractAuthServletTask;
 import com.google.common.collect.ImmutableMap;
@@ -75,13 +80,19 @@ public class InitialSearchTask extends AbstractAuthServletTask {
   //  private IConfiguration basicConfig;
   //  @Autowired
   //  private SzrClient szrClient;
-  @Autowired
-  private ICcSpecificEidProcessingService eidPostProcessor;
+  //  @Autowired
+  //  private ICcSpecificEidProcessingService eidPostProcessor;
 
   //  private static final String EID_STATUS = "urn:eidgvat:eid.status.eidas";
   @Autowired
   private ApplicationContext context;
 
+  @Autowired
+  private IErnbClient ernbClient;
+
+  @Autowired
+  private IZmrClient zmrClient;
+
   @PostConstruct
   private void initialize() {
     log.debug("Initialize country specific detail search services ... ");
@@ -127,36 +138,82 @@ public class InitialSearchTask extends AbstractAuthServletTask {
           eidasResponse.getAttributes().getAttributeMap());
 
       // post-process eIDAS attributes
-      final ErnbEidData eidData = eidPostProcessor.postProcess(simpleAttrMap);
-
-      String personIdentifier = eidData.getPseudonym();
-
-      //search in register(step 2)
-      InitialSearchResult result = searchInZmrAndErnp(personIdentifier);
-      switch (result.getResultCount()) {
-        case 0:
-          step5(result, eidData);
-          break;
-        case 1:
-          step3(result, eidData);
-          break;
-        default://should not happen
-          throw new TaskExecutionException(pendingReq, "Initial search - Kitt Process necessary.",
-              new ManualFixNecessaryException(personIdentifier));
-      }
+      final SimpleEidasData eidData = convertSimpleMapToSimpleData(simpleAttrMap);
+      step2(eidData);
     } catch (final Exception e) {
       log.error("Initial search FAILED.", e);
       throw new TaskExecutionException(pendingReq, "Initial search FAILED.", e);
     }
   }
 
-  private void step3(InitialSearchResult result, ErnbEidData eidData) {
+  private void step2(SimpleEidasData eidData) throws TaskExecutionException {
+    String personIdentifier = eidData.getPseudonym();
+    //search in register(step 2)
+    MergedRegisterSearchResult result = searchInZmrAndErnp(personIdentifier);
+    switch (result.getResultCount()) {
+      case 0:
+        step5(result, eidData);
+        break;
+      case 1:
+        step3(result, eidData);
+        break;
+      default://should not happen
+        throw new TaskExecutionException(pendingReq, "Initial search - Kitt Process necessary.",
+            new ManualFixNecessaryException(personIdentifier));
+    }
+  }
+
+  private SimpleEidasData convertSimpleMapToSimpleData(Map<String, Object> eidasAttrMap)
+      throws EidasAttributeException, EidPostProcessingException {
+    SimpleEidasData simpleEidasData = new SimpleEidasData();
+
+    final Object eIdentifierObj = eidasAttrMap.get(Constants.eIDAS_ATTR_PERSONALIDENTIFIER);
+    final Triple<String, String, String> eIdentifier =
+        EidasResponseUtils.parseEidasPersonalIdentifier((String) eIdentifierObj);
+    simpleEidasData.setCitizenCountryCode(eIdentifier.getFirst());
+
+    // MDS attributes
+    simpleEidasData.setPseudonym(EidasResponseUtils.processPseudonym(
+        eidasAttrMap.get(Constants.eIDAS_ATTR_PERSONALIDENTIFIER)));
+    simpleEidasData.setFamilyName(EidasResponseUtils.processFamilyName(
+        eidasAttrMap.get(Constants.eIDAS_ATTR_CURRENTFAMILYNAME)));
+    simpleEidasData.setGivenName(EidasResponseUtils.processGivenName(
+        eidasAttrMap.get(Constants.eIDAS_ATTR_CURRENTGIVENNAME)));
+    simpleEidasData.setDateOfBirth(EidasResponseUtils.processDateOfBirth(
+        eidasAttrMap.get(Constants.eIDAS_ATTR_DATEOFBIRTH)));
+
+    // additional attributes
+    simpleEidasData.setPlaceOfBirth(EidasResponseUtils.processPlaceOfBirth(
+        eidasAttrMap.get(Constants.eIDAS_ATTR_PLACEOFBIRTH)));
+    simpleEidasData.setBirthName(EidasResponseUtils.processBirthName(
+        eidasAttrMap.get(Constants.eIDAS_ATTR_BIRTHNAME)));
+    simpleEidasData.setAddress(EidasResponseUtils.processAddress(
+        eidasAttrMap.get(Constants.eIDAS_ATTR_CURRENTADDRESS)));
+
+    //TODO other additional attributes
+    return simpleEidasData;
+  }
+
+  private void step3(MergedRegisterSearchResult result, SimpleEidasData eidData) {
     //check if data from eidas authentication matches with data from register
-    //TODO
 
+    log.debug("Compare " + result + " with " + eidData);
+    //TODO check if data matches
+    boolean match = true;
+    if (match) {
+      return;
+    } else {
+      step4(result, eidData);
+    }
   }
 
-  private void step5(InitialSearchResult result, ErnbEidData eidData) throws TaskExecutionException {
+  private void step4(MergedRegisterSearchResult result, SimpleEidasData eidData) {
+    log.debug("Update " + result + " with " + eidData);
+    //TODO
+  }
+
+  private void step5(MergedRegisterSearchResult result, SimpleEidasData eidData)
+      throws TaskExecutionException {
     String citizenCountry = eidData.getCitizenCountryCode();
     ICountrySpecificDetailSearchProcessor foundHandler = null;
     for (final ICountrySpecificDetailSearchProcessor el : handlers) {
@@ -178,7 +235,8 @@ public class InitialSearchTask extends AbstractAuthServletTask {
   }
 
   private void step6(ICountrySpecificDetailSearchProcessor countrySpecificDetailSearchProcessor,
-                     InitialSearchResult initialSearchResult, ErnbEidData eidData) throws TaskExecutionException {
+                     MergedRegisterSearchResult initialSearchResult, SimpleEidasData eidData)
+      throws TaskExecutionException {
     //6 country specific search
     CountrySpecificDetailSearchResult countrySpecificDetailSearchResult =
         countrySpecificDetailSearchProcessor.search(eidData);
@@ -196,19 +254,40 @@ public class InitialSearchTask extends AbstractAuthServletTask {
     }
   }
 
-  private void step7a(InitialSearchResult initialSearchResult,
-                      CountrySpecificDetailSearchResult countrySpecificDetailSearchResult, ErnbEidData eidData) {
+  private void step7a(MergedRegisterSearchResult initialSearchResult,
+                      CountrySpecificDetailSearchResult countrySpecificDetailSearchResult, SimpleEidasData eidData) {
     //TODO automerge
-
+    log.debug("Automerge " + initialSearchResult + " with " + eidData + " " + countrySpecificDetailSearchResult);
   }
 
-  private void step8(InitialSearchResult initialSearchResult, ErnbEidData eidData) {
-    //TODO MDS Suche
+  private void step8(MergedRegisterSearchResult initialSearchResult, SimpleEidasData eidData) {
+    MergedRegisterSearchResult mdsSearchResult = new MergedRegisterSearchResult();
+
+    ArrayList<RegisterResult> resultsZmr =
+        zmrClient.searchWithMds(eidData.getGivenName(), eidData.getFamilyName(), eidData.getFormatedDateOfBirth());
+    mdsSearchResult.setResultsZmr(resultsZmr);
+
+    ArrayList<RegisterResult> resultsErnb =
+        ernbClient.searchWithMds(eidData.getGivenName(), eidData.getFamilyName(), eidData.getFormatedDateOfBirth());
+    mdsSearchResult.setResultsErnb(resultsErnb);
+
+    log.debug("Automerge " + initialSearchResult + " with " + eidData + " " + mdsSearchResult);
+    //TODO
+
   }
 
-  private InitialSearchResult searchInZmrAndErnp(String personIdentifier) {
-    //search TODO
-    return new InitialSearchResult();//TODO
+  private MergedRegisterSearchResult searchInZmrAndErnp(String personIdentifier) {
+    MergedRegisterSearchResult initialSearchResult = new MergedRegisterSearchResult();
+
+    ArrayList<RegisterResult> resultsZmr =
+        zmrClient.searchWithPersonIdentifer(personIdentifier);
+    initialSearchResult.setResultsZmr(resultsZmr);
+
+    ArrayList<RegisterResult> resultsErnb =
+        ernbClient.searchWithPersonIdentifer(personIdentifier);
+    initialSearchResult.setResultsErnb(resultsErnb);
+
+    return initialSearchResult;
   }
 
   private Map<String, Object> convertEidasAttrToSimpleMap(
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/EidasResponseUtils.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/EidasResponseUtils.java
index ebd2ae78..c68a602b 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/EidasResponseUtils.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/EidasResponseUtils.java
@@ -30,6 +30,9 @@ import java.util.regex.Pattern;
 
 import javax.annotation.Nullable;
 
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidPostProcessingException;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidasAttributeException;
+import at.gv.e_government.reference.namespace.persondata._20020228.PostalAddressType;
 import org.apache.commons.lang3.StringUtils;
 import org.joda.time.DateTime;
 import org.slf4j.Logger;
@@ -169,4 +172,169 @@ public class EidasResponseUtils {
 
   }
 
+  /**
+   * Post-Process the eIDAS CurrentAddress attribute.
+   *
+   * @param currentAddressObj eIDAS current address information
+   * @return current address or null if no attribute is available
+   * @throws EidPostProcessingException if post-processing fails
+   * @throws EidasAttributeException    if eIDAS attribute is of a wrong type
+   */
+  public static PostalAddressType processAddress(Object currentAddressObj) throws EidPostProcessingException,
+      EidasAttributeException {
+
+    if (currentAddressObj != null) {
+      if (currentAddressObj instanceof PostalAddress) {
+        final PostalAddressType result = new PostalAddressType();
+        result.setPostalCode(((PostalAddress) currentAddressObj).getPostCode());
+        result.setMunicipality(((PostalAddress) currentAddressObj).getPostName());
+
+        // TODO: add more mappings
+
+        return result;
+
+      } else {
+        log.warn("eIDAS attr: " + Constants.eIDAS_ATTR_CURRENTADDRESS + " is of WRONG type");
+        throw new EidasAttributeException(Constants.eIDAS_ATTR_CURRENTADDRESS);
+
+      }
+
+    } else {
+      log.debug("NO '" + Constants.eIDAS_ATTR_CURRENTADDRESS + "' attribute. Post-Processing skipped ... ");
+    }
+
+    return null;
+
+  }
+
+  /**
+   * Post-Process the eIDAS BirthName attribute.
+   *
+   * @param birthNameObj eIDAS birthname information
+   * @return birthName or null if no attribute is available
+   * @throws EidPostProcessingException if post-processing fails
+   * @throws EidasAttributeException    if eIDAS attribute is of a wrong type
+   */
+  public static String processBirthName(Object birthNameObj) throws EidPostProcessingException,
+      EidasAttributeException {
+    if (birthNameObj != null) {
+      if (birthNameObj instanceof String) {
+        return (String) birthNameObj;
+
+      } else {
+        log.warn("eIDAS attr: " + Constants.eIDAS_ATTR_BIRTHNAME + " is of WRONG type");
+        throw new EidasAttributeException(Constants.eIDAS_ATTR_BIRTHNAME);
+
+      }
+
+    } else {
+      log.debug("NO '" + Constants.eIDAS_ATTR_BIRTHNAME + "' attribute. Post-Processing skipped ... ");
+    }
+
+    return null;
+
+  }
+
+  /**
+   * Post-Process the eIDAS PlaceOfBirth attribute.
+   *
+   * @param placeOfBirthObj eIDAS Place-of-Birth information
+   * @return place of Birth or null if no attribute is available
+   * @throws EidPostProcessingException if post-processing fails
+   * @throws EidasAttributeException    if eIDAS attribute is of a wrong type
+   */
+  public static String processPlaceOfBirth(Object placeOfBirthObj) throws EidPostProcessingException,
+      EidasAttributeException {
+    if (placeOfBirthObj != null) {
+      if (placeOfBirthObj instanceof String) {
+        return (String) placeOfBirthObj;
+
+      } else {
+        log.warn("eIDAS attr: " + Constants.eIDAS_ATTR_PLACEOFBIRTH + " is of WRONG type");
+        throw new EidasAttributeException(Constants.eIDAS_ATTR_PLACEOFBIRTH);
+
+      }
+
+    } else {
+      log.debug("NO '" + Constants.eIDAS_ATTR_PLACEOFBIRTH + "' attribute. Post-Processing skipped ... ");
+    }
+
+    return null;
+
+  }
+
+  /**
+   * Post-Process the eIDAS DateOfBirth attribute.
+   *
+   * @param dateOfBirthObj eIDAS date-of-birth attribute information
+   * @return formated user's date-of-birth
+   * @throws EidasAttributeException    if NO attribute is available
+   * @throws EidPostProcessingException if post-processing fails
+   */
+  public static DateTime processDateOfBirth(Object dateOfBirthObj) throws EidPostProcessingException,
+      EidasAttributeException {
+    if (dateOfBirthObj == null || !(dateOfBirthObj instanceof DateTime)) {
+      throw new EidasAttributeException(Constants.eIDAS_ATTR_DATEOFBIRTH);
+    }
+
+    return (DateTime) dateOfBirthObj;
+
+  }
+
+  /**
+   * Post-Process the eIDAS GivenName attribute.
+   *
+   * @param givenNameObj eIDAS givenName attribute information
+   * @return formated user's givenname
+   * @throws EidasAttributeException    if NO attribute is available
+   * @throws EidPostProcessingException if post-processing fails
+   */
+  public static String processGivenName(Object givenNameObj) throws EidPostProcessingException,
+      EidasAttributeException {
+    if (givenNameObj == null || !(givenNameObj instanceof String)) {
+      throw new EidasAttributeException(Constants.eIDAS_ATTR_CURRENTGIVENNAME);
+    }
+
+    return (String) givenNameObj;
+
+  }
+
+  /**
+   * Post-Process the eIDAS FamilyName attribute.
+   *
+   * @param familyNameObj eIDAS familyName attribute information
+   * @return formated user's familyname
+   * @throws EidasAttributeException    if NO attribute is available
+   * @throws EidPostProcessingException if post-processing fails
+   */
+  public static String processFamilyName(Object familyNameObj) throws EidPostProcessingException,
+      EidasAttributeException {
+    if (familyNameObj == null || !(familyNameObj instanceof String)) {
+      throw new EidasAttributeException(Constants.eIDAS_ATTR_CURRENTFAMILYNAME);
+    }
+
+    return (String) familyNameObj;
+
+  }
+
+  /**
+   * Post-Process the eIDAS pseudonym to ERnB unique identifier.
+   *
+   * @param personalIdObj eIDAS PersonalIdentifierAttribute
+   * @return Unique personal identifier without country-code information
+   * @throws EidasAttributeException    if NO attribute is available
+   * @throws EidPostProcessingException if post-processing fails
+   */
+  public static String processPseudonym(Object personalIdObj) throws EidPostProcessingException,
+      EidasAttributeException {
+    if (personalIdObj == null || !(personalIdObj instanceof String)) {
+      throw new EidasAttributeException(Constants.eIDAS_ATTR_PERSONALIDENTIFIER);
+    }
+
+    final Triple<String, String, String> eIdentifier =
+        EidasResponseUtils.parseEidasPersonalIdentifier((String) personalIdObj);
+
+    return eIdentifier.getThird();
+
+  }
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/DummyZmrClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/DummyZmrClient.java
new file mode 100644
index 00000000..9a7cc9b3
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/DummyZmrClient.java
@@ -0,0 +1,49 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr;
+
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
+import org.springframework.stereotype.Service;
+
+import java.util.ArrayList;
+
+@Service("ZmrClientForeIDAS")
+public class DummyZmrClient implements IZmrClient {
+
+  @Override
+  public ArrayList<RegisterResult> searchWithPersonIdentifer(String personIdentifer) {
+    switch (personIdentifer) {
+      case "a12345":
+      case "a12345-":
+        return result1();
+      case "a123456":
+        return result2();
+      default:
+        return resultEmpty();
+    }
+  }
+
+  @Override
+  public ArrayList<RegisterResult> searchWithMds(String givenName, String familyName, String dateOfBirth) {
+    return resultEmpty();//TODO will I only receive matches where all three values match perfectly?
+  }
+
+  private ArrayList<RegisterResult> resultEmpty() {
+    return new ArrayList<RegisterResult>();//Nobody found
+  }
+
+  private ArrayList<RegisterResult> result1() {
+    ArrayList<RegisterResult> results = new ArrayList<>();
+    RegisterResult result1 = new RegisterResult("12345", "Tom", "Mustermann", "1950-01-01", "Wien");
+    results.add(result1);
+    RegisterResult result2 = new RegisterResult("12345-", "Tom", "Mustermann", "1950-01-01", "Wien");
+    results.add(result2);
+    return results;
+  }
+
+  private ArrayList<RegisterResult> result2() {
+    ArrayList<RegisterResult> results = new ArrayList<>();
+    RegisterResult result = new RegisterResult("123456", "Max", "Mustermann", "2000-01-01", "Wien");
+    results.add(result);
+    return results;
+  }
+
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/IZmrClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/IZmrClient.java
new file mode 100644
index 00000000..1f7e4949
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/IZmrClient.java
@@ -0,0 +1,12 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr;
+
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
+
+import java.util.ArrayList;
+
+public interface IZmrClient {
+
+  ArrayList<RegisterResult> searchWithPersonIdentifer(String personIdentifer);
+
+  ArrayList<RegisterResult> searchWithMds(String givenName, String familyName, String dateOfBirth);
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml
index 9c28bf07..0f6277c0 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml
@@ -17,6 +17,12 @@
   <bean id="SZRClientForeIDAS"
     class="at.asitplus.eidas.specific.modules.auth.eidas.v2.szr.SzrClient" />
 
+  <bean id="ErnbClientForeIDAS"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.ernb.DummyErnbClient" />
+
+  <bean id="ZmrClientForeIDAS"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.DummyZmrClient" />
+
   <bean id="specificConnectorAttributesFile"
     class="java.lang.String">
     <constructor-arg value="eidas-attributes.xml" />
-- 
cgit v1.2.3


From d1c4bc0619b95564f6f7db5798479449e88e4793 Mon Sep 17 00:00:00 2001
From: Alexander Marsalek <amarsalek@iaik.tugraz.at>
Date: Wed, 9 Dec 2020 08:53:28 +0100
Subject: added (non working) test

---
 .../auth/eidas/v2/tasks/InitialSearchTask.java     |  19 ++-
 .../v2/test/tasks/InitialSearchTaskFirstTest.java  | 160 +++++++++++++++++++++
 .../resources/SpringTest-context_tasks_test.xml    |  10 ++
 3 files changed, 178 insertions(+), 11 deletions(-)
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
index 6f4cfefc..907ed443 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
@@ -64,7 +64,7 @@ import java.util.List;
 import java.util.Map;
 
 /**
- * Task that creates the IdentityLink for an eIDAS authenticated person.
+ * Task that searches ErnB and ZMR before adding person to SZR.
  *
  * @author tlenz
  */
@@ -150,16 +150,13 @@ public class InitialSearchTask extends AbstractAuthServletTask {
     String personIdentifier = eidData.getPseudonym();
     //search in register(step 2)
     MergedRegisterSearchResult result = searchInZmrAndErnp(personIdentifier);
-    switch (result.getResultCount()) {
-      case 0:
-        step5(result, eidData);
-        break;
-      case 1:
-        step3(result, eidData);
-        break;
-      default://should not happen
-        throw new TaskExecutionException(pendingReq, "Initial search - Kitt Process necessary.",
-            new ManualFixNecessaryException(personIdentifier));
+    if (result.getResultCount() == 0) {
+      step5(result, eidData);
+    } else if (result.getResultCount() == 1) {
+      step3(result, eidData);
+    } else if (result.getResultCount() > 1) {
+      throw new TaskExecutionException(pendingReq, "Initial search - Kitt Process necessary.",
+          new ManualFixNecessaryException(personIdentifier));
     }
   }
 
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
new file mode 100644
index 00000000..30f88ec8
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
@@ -0,0 +1,160 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.test.tasks;
+
+import at.asitplus.eidas.specific.connector.MsEidasNodeConstants;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.InitialSearchTask;
+import at.gv.egiz.eaaf.core.api.idp.IConfiguration;
+import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
+import at.gv.egiz.eaaf.core.exceptions.EaafStorageException;
+import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
+import at.gv.egiz.eaaf.core.impl.idp.auth.data.AuthProcessDataWrapper;
+import at.gv.egiz.eaaf.core.impl.idp.module.test.DummySpConfiguration;
+import at.gv.egiz.eaaf.core.impl.idp.module.test.TestRequestImpl;
+import at.gv.egiz.eaaf.core.impl.idp.process.ExecutionContextImpl;
+import eu.eidas.auth.commons.attribute.AttributeDefinition;
+import eu.eidas.auth.commons.attribute.ImmutableAttributeMap;
+import eu.eidas.auth.commons.attribute.PersonType;
+import eu.eidas.auth.commons.protocol.impl.AuthenticationResponse;
+import lombok.val;
+import org.apache.commons.lang3.RandomStringUtils;
+import org.jetbrains.annotations.NotNull;
+import org.junit.Before;
+import org.junit.BeforeClass;
+import org.junit.Test;
+import org.junit.runner.RunWith;
+import org.mockito.ArgumentMatchers;
+import org.mockito.Mock;
+import org.powermock.api.mockito.PowerMockito;
+import org.powermock.core.classloader.annotations.PrepareForTest;
+import org.powermock.modules.junit4.PowerMockRunner;
+import org.powermock.modules.junit4.PowerMockRunnerDelegate;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.mock.web.MockHttpServletRequest;
+import org.springframework.mock.web.MockHttpServletResponse;
+import org.springframework.test.annotation.DirtiesContext;
+import org.springframework.test.annotation.DirtiesContext.ClassMode;
+import org.springframework.test.context.ContextConfiguration;
+import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
+import org.springframework.web.context.request.RequestContextHolder;
+import org.springframework.web.context.request.ServletRequestAttributes;
+
+import javax.xml.namespace.QName;
+import java.io.IOException;
+import java.net.URI;
+import java.net.URISyntaxException;
+
+import static org.mockito.Mockito.times;
+import static org.powermock.api.mockito.PowerMockito.verifyPrivate;
+
+@RunWith(SpringJUnit4ClassRunner.class)
+//@RunWith(PowerMockRunner.class)
+//@PowerMockRunnerDelegate(SpringJUnit4ClassRunner.class)
+@ContextConfiguration("/SpringTest-context_tasks_test.xml")
+@DirtiesContext(classMode = ClassMode.BEFORE_CLASS)
+//@RunWith(PowerMockRunner.class)
+//@PrepareForTest(InitialSearchTaskFirstTest.class)
+public class InitialSearchTaskFirstTest {
+
+  @Autowired(required = true)
+  @Mock
+  private InitialSearchTask task;
+
+  @Autowired(required = true)
+  private IConfiguration basicConfig;
+
+  final ExecutionContext executionContext = new ExecutionContextImpl();
+  private MockHttpServletRequest httpReq;
+  private MockHttpServletResponse httpResp;
+  private TestRequestImpl pendingReq;
+  private DummySpConfiguration oaParam;
+
+  /**
+   * jUnit class initializer.
+   *  
+   * @throws IOException In case of an error
+   */
+  @BeforeClass
+  public static void classInitializer() throws IOException {
+    final String current = new java.io.File(".").toURI().toString();
+    System.setProperty("eidas.ms.configuration", current
+        + "src/test/resources/config/junit_config_1.properties");
+
+  }
+
+  /**
+   * jUnit test set-up.
+   * 
+   */
+  @Before
+  public void setUp() throws URISyntaxException, EaafStorageException {
+
+    task = PowerMockito.spy(task);
+
+    httpReq = new MockHttpServletRequest("POST", "https://localhost/authhandler");
+    httpResp = new MockHttpServletResponse();
+    RequestContextHolder.resetRequestAttributes();
+    RequestContextHolder.setRequestAttributes(new ServletRequestAttributes(httpReq, httpResp));
+
+    final AuthenticationResponse response = buildDummyAuthResponse();
+    pendingReq = new TestRequestImpl();
+    pendingReq.getSessionData(AuthProcessDataWrapper.class)
+        .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
+
+  }
+  
+  @Test
+  @DirtiesContext
+  public void testInitialSearch() throws Exception {
+
+    try {
+      task.execute(pendingReq, executionContext);
+
+    } catch (final TaskExecutionException e) {
+      // forward URL is not set in example config
+      //      org.springframework.util.Assert.isInstanceOf(EaafConfigurationException.class, e.getOriginalException(),
+      //          "Wrong exception");
+      //      Assert.assertEquals("wrong errorCode", "config.08", ((EaafException) e.getOriginalException())
+      //          .getErrorId());
+      //      Assert.assertEquals("wrong parameter size", 1, ((EaafException) e.getOriginalException())
+      //          .getParams().length);
+      //      Assert.assertEquals("wrong errorMsg", Constants.CONIG_PROPS_EIDAS_NODE_FORWARD_URL, ((EaafException) e
+      //          .getOriginalException()).getParams()[0]);
+
+    }
+//    verifyPrivate(task, times(1)).invoke("step2", ArgumentMatchers.any(SimpleEidasData.class));
+//    verifyPrivate(task, times(0)).invoke("step3", ArgumentMatchers.any());
+//    verifyPrivate(task, times(0)).invoke("step4", ArgumentMatchers.any());
+
+  }
+
+
+  @NotNull
+  private AuthenticationResponse buildDummyAuthResponse() throws URISyntaxException {
+    final AttributeDefinition attributeDef = AttributeDefinition.builder()
+        .friendlyName(Constants.eIDAS_ATTR_PERSONALIDENTIFIER).nameUri(new URI("ad", "sd", "ff"))
+        .personType(PersonType.LEGAL_PERSON).xmlType(new QName("http://saf", "as", "af"))
+        .attributeValueMarshaller("eu.eidas.auth.commons.attribute.impl.LiteralStringAttributeValueMarshaller").build();
+    final AttributeDefinition attributeDef2 = AttributeDefinition.builder()
+        .friendlyName(Constants.eIDAS_ATTR_CURRENTFAMILYNAME).nameUri(new URI("ad", "sd", "fff"))
+        .personType(PersonType.LEGAL_PERSON).xmlType(new QName("http://saf", "as", "aff"))
+        .attributeValueMarshaller("eu.eidas.auth.commons.attribute.impl.LiteralStringAttributeValueMarshaller").build();
+    final AttributeDefinition attributeDef3 = AttributeDefinition.builder()
+        .friendlyName(Constants.eIDAS_ATTR_CURRENTGIVENNAME).nameUri(new URI("ad", "sd", "ffff"))
+        .personType(PersonType.LEGAL_PERSON).xmlType(new QName("http://saf", "as", "afff"))
+        .attributeValueMarshaller("eu.eidas.auth.commons.attribute.impl.LiteralStringAttributeValueMarshaller").build();
+    final AttributeDefinition attributeDef4 = AttributeDefinition.builder()
+        .friendlyName(Constants.eIDAS_ATTR_DATEOFBIRTH).nameUri(new URI("ad", "sd", "fffff"))
+        .personType(PersonType.LEGAL_PERSON).xmlType(new QName("http://saf", "as", "affff"))
+        .attributeValueMarshaller("eu.eidas.auth.commons.attribute.impl.DateTimeAttributeValueMarshaller").build();
+
+    final ImmutableAttributeMap attributeMap = ImmutableAttributeMap.builder()
+        .put(attributeDef, "de/st/" + RandomStringUtils.randomNumeric(64))
+        .put(attributeDef2, RandomStringUtils.randomAlphabetic(10))
+        .put(attributeDef3, RandomStringUtils.randomAlphabetic(10)).put(attributeDef4, "2001-01-01").build();
+
+    val b = new AuthenticationResponse.Builder();
+    return b.id("aasdf").issuer("asd").subject("asf").statusCode("200").inResponseTo("asdf").subjectNameIdFormat("afaf")
+        .attributes(attributeMap).build();
+  }
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_tasks_test.xml b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_tasks_test.xml
index 7d5a4c53..6610fe04 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_tasks_test.xml
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_tasks_test.xml
@@ -61,4 +61,14 @@
     class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.CreateIdentityLinkTask"
     scope="prototype" />
 
+  <bean id="InitialSearchTask"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.InitialSearchTask"
+        scope="prototype" />
+
+  <bean id="ErnbClientForeIDAS"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.ernb.DummyErnbClient" />
+
+  <bean id="ZmrClientForeIDAS"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.DummyZmrClient" />
+
 </beans>
\ No newline at end of file
-- 
cgit v1.2.3


From f31d767bf6b8a92f7b05e030c26e43ad71cc0f20 Mon Sep 17 00:00:00 2001
From: Alexander Marsalek <amarsalek@iaik.tugraz.at>
Date: Fri, 11 Dec 2020 17:16:50 +0100
Subject: added two tests

---
 .../specific/modules/auth/eidas/v2/Constants.java  |   1 +
 .../modules/auth/eidas/v2/dao/RegisterResult.java  |  14 +++
 .../auth/eidas/v2/tasks/InitialSearchTask.java     |  10 ++
 .../v2/test/tasks/InitialSearchTaskFirstTest.java  | 135 +++++++++++++++------
 4 files changed, 121 insertions(+), 39 deletions(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java
index 83a2afa6..7e07b5a3 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java
@@ -32,6 +32,7 @@ public class Constants {
   public static final String DATA_REQUESTED_LOA_LIST = "req_requestedLoA";
   public static final String DATA_REQUESTED_LOA_COMPERISON = "req_requestedLoAComperision";
   public static final String DATA_FULL_EIDAS_RESPONSE = "resp_fulleIDASResponse";
+  public static final String DATA_RESULT_MATCHING_BPK = "matching-result-bpk";//TODO?
 
   // templates for post-binding forwarding
   public static final String TEMPLATE_POST_FORWARD_NAME = "eidas_node_forward.html";
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/RegisterResult.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/RegisterResult.java
index 9509e7de..f557ca69 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/RegisterResult.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/RegisterResult.java
@@ -17,6 +17,20 @@ import lombok.Data;
   private String taxNumber = null;
   private PostalAddressType address = null;
 
+  /**
+   * Register search result.
+   * @param pseudonym The pseudonym
+   * @param givenName The givenName
+   * @param familyName The familyName
+   * @param dateOfBirth The dateOfBirth
+   */
+  public RegisterResult(String pseudonym, String givenName, String familyName, String dateOfBirth) {
+    this.pseudonym = pseudonym;
+    this.givenName = givenName;
+    this.familyName = familyName;
+    this.dateOfBirth = dateOfBirth;
+  }
+
   /**
    * Register search result.
    * @param pseudonym The pseudonym
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
index 907ed443..dd430cf6 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
@@ -331,4 +331,14 @@ public class InitialSearchTask extends AbstractAuthServletTask {
     log.debug("Receive #" + result.size() + " attributes with names: " + result.keySet().toString());
     return result;
   }
+
+  //just for testing
+  //TODO is there a nicer solution?
+  public void setErnbClient(IErnbClient ernbClient) {
+    this.ernbClient = ernbClient;
+  }
+
+  public void setZmrClient(IZmrClient zmrClient) {
+    this.zmrClient = zmrClient;
+  }
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
index 30f88ec8..1b1bdeae 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
@@ -1,10 +1,13 @@
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.test.tasks;
 
-import at.asitplus.eidas.specific.connector.MsEidasNodeConstants;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernb.DummyErnbClient;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernb.IErnbClient;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.ManualFixNecessaryException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.InitialSearchTask;
-import at.gv.egiz.eaaf.core.api.idp.IConfiguration;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.DummyZmrClient;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.IZmrClient;
 import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
 import at.gv.egiz.eaaf.core.exceptions.EaafStorageException;
 import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
@@ -23,12 +26,10 @@ import org.junit.Before;
 import org.junit.BeforeClass;
 import org.junit.Test;
 import org.junit.runner.RunWith;
-import org.mockito.ArgumentMatchers;
+import org.mockito.InjectMocks;
 import org.mockito.Mock;
+import org.mockito.Mockito;
 import org.powermock.api.mockito.PowerMockito;
-import org.powermock.core.classloader.annotations.PrepareForTest;
-import org.powermock.modules.junit4.PowerMockRunner;
-import org.powermock.modules.junit4.PowerMockRunnerDelegate;
 import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.mock.web.MockHttpServletRequest;
 import org.springframework.mock.web.MockHttpServletResponse;
@@ -38,30 +39,29 @@ import org.springframework.test.context.ContextConfiguration;
 import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
 import org.springframework.web.context.request.RequestContextHolder;
 import org.springframework.web.context.request.ServletRequestAttributes;
-
+import org.junit.Assert;
 import javax.xml.namespace.QName;
 import java.io.IOException;
 import java.net.URI;
 import java.net.URISyntaxException;
-
-import static org.mockito.Mockito.times;
-import static org.powermock.api.mockito.PowerMockito.verifyPrivate;
+import java.util.ArrayList;
 
 @RunWith(SpringJUnit4ClassRunner.class)
-//@RunWith(PowerMockRunner.class)
-//@PowerMockRunnerDelegate(SpringJUnit4ClassRunner.class)
+
 @ContextConfiguration("/SpringTest-context_tasks_test.xml")
 @DirtiesContext(classMode = ClassMode.BEFORE_CLASS)
-//@RunWith(PowerMockRunner.class)
-//@PrepareForTest(InitialSearchTaskFirstTest.class)
 public class InitialSearchTaskFirstTest {
 
   @Autowired(required = true)
   @Mock
+  @InjectMocks
   private InitialSearchTask task;
 
-  @Autowired(required = true)
-  private IConfiguration basicConfig;
+  @Mock
+  private IZmrClient zmrClient;
+
+  @Mock
+  private IErnbClient ernbClient;
 
   final ExecutionContext executionContext = new ExecutionContextImpl();
   private MockHttpServletRequest httpReq;
@@ -71,7 +71,7 @@ public class InitialSearchTaskFirstTest {
 
   /**
    * jUnit class initializer.
-   *  
+   *
    * @throws IOException In case of an error
    */
   @BeforeClass
@@ -84,7 +84,6 @@ public class InitialSearchTaskFirstTest {
 
   /**
    * jUnit test set-up.
-   * 
    */
   @Before
   public void setUp() throws URISyntaxException, EaafStorageException {
@@ -96,41 +95,97 @@ public class InitialSearchTaskFirstTest {
     RequestContextHolder.resetRequestAttributes();
     RequestContextHolder.setRequestAttributes(new ServletRequestAttributes(httpReq, httpResp));
 
-    final AuthenticationResponse response = buildDummyAuthResponse();
+    final AuthenticationResponse response = buildDummyAuthResponseMaxMustermann();
     pendingReq = new TestRequestImpl();
     pendingReq.getSessionData(AuthProcessDataWrapper.class)
         .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
 
   }
-  
+
   @Test
   @DirtiesContext
-  public void testInitialSearch() throws Exception {
+  /**
+   * Two matches found in ZMR
+   */
+  public void testNode101a() throws Exception {
+
+    //Mock ZMR
+    ArrayList<RegisterResult> zmrResult = new ArrayList<>();
+    zmrResult.add(new RegisterResult("de/st/max123", "Max", "Mustermann", "1111-01-01"));
+    zmrResult.add(new RegisterResult("de/st/max123", "Maximilian", "Mustermann", "1111-01-01"));
+    zmrClient = Mockito.mock(DummyZmrClient.class);
+    Mockito.when(zmrClient.searchWithPersonIdentifer("max123")).thenReturn(zmrResult);//"de/st/max123"???
+    task.setZmrClient(zmrClient);
+
+    //Mock ernb
+    ArrayList<RegisterResult> ernbResult = new ArrayList<>();
+    ernbClient = Mockito.mock(DummyErnbClient.class);
+    Mockito.when(ernbClient.searchWithPersonIdentifer("max123")).thenReturn(ernbResult);//"de/st/max123"???
+    task.setErnbClient(ernbClient);
 
     try {
       task.execute(pendingReq, executionContext);
+      Assert.assertTrue("Wrong workflow, should not reach this point/ get a bpk", false);
+      String bPk = (String)
+          pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
 
     } catch (final TaskExecutionException e) {
-      // forward URL is not set in example config
-      //      org.springframework.util.Assert.isInstanceOf(EaafConfigurationException.class, e.getOriginalException(),
-      //          "Wrong exception");
-      //      Assert.assertEquals("wrong errorCode", "config.08", ((EaafException) e.getOriginalException())
-      //          .getErrorId());
-      //      Assert.assertEquals("wrong parameter size", 1, ((EaafException) e.getOriginalException())
-      //          .getParams().length);
-      //      Assert.assertEquals("wrong errorMsg", Constants.CONIG_PROPS_EIDAS_NODE_FORWARD_URL, ((EaafException) e
-      //          .getOriginalException()).getParams()[0]);
-
+      Throwable origE = e.getOriginalException();
+      Assert.assertTrue("Wrong exception", (origE.getCause() instanceof ManualFixNecessaryException));
     }
-//    verifyPrivate(task, times(1)).invoke("step2", ArgumentMatchers.any(SimpleEidasData.class));
-//    verifyPrivate(task, times(0)).invoke("step3", ArgumentMatchers.any());
-//    verifyPrivate(task, times(0)).invoke("step4", ArgumentMatchers.any());
+  }
+
+
+  @Test
+  @DirtiesContext
+  /**
+   * Two matches found in ErnB
+   */
+  public void testNode101b() throws Exception {
+
+    //Mock ZMR
+    ArrayList<RegisterResult> zmrResult = new ArrayList<>();
+    zmrClient = Mockito.mock(DummyZmrClient.class);
+    Mockito.when(zmrClient.searchWithPersonIdentifer("max123")).thenReturn(zmrResult);//"de/st/max123"???
+    task.setZmrClient(zmrClient);
+
+    //Mock ernb
+    ArrayList<RegisterResult> ernbResult = new ArrayList<>();
+    ernbResult.add(new RegisterResult("de/st/max123", "Max", "Mustermann", "1111-01-01"));
+    ernbResult.add(new RegisterResult("de/st/max123", "Maximilian", "Mustermann", "1111-01-01"));
+
+    ernbClient = Mockito.mock(DummyErnbClient.class);
+    Mockito.when(ernbClient.searchWithPersonIdentifer("max123")).thenReturn(ernbResult);//"de/st/max123"???
+    task.setErnbClient(ernbClient);
+
+    try {
+      task.execute(pendingReq, executionContext);
+      Assert.assertTrue("Wrong workflow, should not reach this point/ get a bpk", false);
+      String bPk = (String)
+          pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
 
+    } catch (final TaskExecutionException e) {
+      Throwable origE = e.getOriginalException();
+      Assert.assertTrue("Wrong exception", (origE.getCause() instanceof ManualFixNecessaryException));
+    }
   }
 
 
   @NotNull
   private AuthenticationResponse buildDummyAuthResponse() throws URISyntaxException {
+    return buildDummyAuthResponse(RandomStringUtils.randomAlphabetic(10), RandomStringUtils.randomAlphabetic(10),
+        "de/st/" + RandomStringUtils.randomNumeric(64), "2001-01-01");
+  }
+
+  @NotNull
+  private AuthenticationResponse buildDummyAuthResponseMaxMustermann() throws URISyntaxException {
+    return buildDummyAuthResponse("Max", "Mustermann",
+        "de/st/max123", "1111-01-01");
+  }
+
+  @NotNull
+  private AuthenticationResponse buildDummyAuthResponse(String givenName, String familyName, String identifier,
+                                                        String dateOfBirth) throws URISyntaxException {
     final AttributeDefinition attributeDef = AttributeDefinition.builder()
         .friendlyName(Constants.eIDAS_ATTR_PERSONALIDENTIFIER).nameUri(new URI("ad", "sd", "ff"))
         .personType(PersonType.LEGAL_PERSON).xmlType(new QName("http://saf", "as", "af"))
@@ -149,12 +204,14 @@ public class InitialSearchTaskFirstTest {
         .attributeValueMarshaller("eu.eidas.auth.commons.attribute.impl.DateTimeAttributeValueMarshaller").build();
 
     final ImmutableAttributeMap attributeMap = ImmutableAttributeMap.builder()
-        .put(attributeDef, "de/st/" + RandomStringUtils.randomNumeric(64))
-        .put(attributeDef2, RandomStringUtils.randomAlphabetic(10))
-        .put(attributeDef3, RandomStringUtils.randomAlphabetic(10)).put(attributeDef4, "2001-01-01").build();
+        .put(attributeDef, identifier)
+        .put(attributeDef2, familyName)
+        .put(attributeDef3, givenName)
+        .put(attributeDef4, dateOfBirth).build();
 
     val b = new AuthenticationResponse.Builder();
-    return b.id("aasdf").issuer("asd").subject("asf").statusCode("200").inResponseTo("asdf").subjectNameIdFormat("afaf")
+    return b.id("aasdf").issuer("asd").subject("asf").statusCode("200").inResponseTo("asdf").subjectNameIdFormat(
+        "afaf")
         .attributes(attributeMap).build();
   }
 }
-- 
cgit v1.2.3


From f9a4e026800fcf8d80a6892797eedc5426188196 Mon Sep 17 00:00:00 2001
From: Alexander Marsalek <amarsalek@iaik.tugraz.at>
Date: Tue, 15 Dec 2020 10:01:11 +0100
Subject: return bPk

---
 .../auth/eidas/v2/tasks/InitialSearchTask.java     | 53 +++++++++++++---------
 1 file changed, 31 insertions(+), 22 deletions(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
index dd430cf6..fd86ab43 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
@@ -139,25 +139,28 @@ public class InitialSearchTask extends AbstractAuthServletTask {
 
       // post-process eIDAS attributes
       final SimpleEidasData eidData = convertSimpleMapToSimpleData(simpleAttrMap);
-      step2(eidData);
+      
+      String bpK = step2(eidData);
+      authProcessData.setGenericDataToSession(Constants.DATA_RESULT_MATCHING_BPK,bpK);
     } catch (final Exception e) {
       log.error("Initial search FAILED.", e);
       throw new TaskExecutionException(pendingReq, "Initial search FAILED.", e);
     }
   }
 
-  private void step2(SimpleEidasData eidData) throws TaskExecutionException {
+  private String step2(SimpleEidasData eidData) throws TaskExecutionException {
     String personIdentifier = eidData.getPseudonym();
     //search in register(step 2)
     MergedRegisterSearchResult result = searchInZmrAndErnp(personIdentifier);
     if (result.getResultCount() == 0) {
-      step5(result, eidData);
+      return step5(result, eidData);
     } else if (result.getResultCount() == 1) {
-      step3(result, eidData);
-    } else if (result.getResultCount() > 1) {
-      throw new TaskExecutionException(pendingReq, "Initial search - Kitt Process necessary.",
+      return step3(result, eidData);
+    } //else if (result.getResultCount() > 1) {
+    throw new TaskExecutionException(pendingReq, "Initial search - Kitt Process necessary.",
           new ManualFixNecessaryException(personIdentifier));
-    }
+    //    }
+    //    return null;
   }
 
   private SimpleEidasData convertSimpleMapToSimpleData(Map<String, Object> eidasAttrMap)
@@ -191,25 +194,30 @@ public class InitialSearchTask extends AbstractAuthServletTask {
     return simpleEidasData;
   }
 
-  private void step3(MergedRegisterSearchResult result, SimpleEidasData eidData) {
+  private String step3(MergedRegisterSearchResult result, SimpleEidasData eidData) {
     //check if data from eidas authentication matches with data from register
 
     log.debug("Compare " + result + " with " + eidData);
     //TODO check if data matches
     boolean match = true;
     if (match) {
-      return;
+      String bpK = "102";
+      return bpK;
     } else {
-      step4(result, eidData);
+      return step4(result, eidData);
     }
   }
 
-  private void step4(MergedRegisterSearchResult result, SimpleEidasData eidData) {
+  private String step4(MergedRegisterSearchResult result,
+                  SimpleEidasData eidData) {
     log.debug("Update " + result + " with " + eidData);
     //TODO
+    
+    String bpK = "100";
+    return bpK;
   }
 
-  private void step5(MergedRegisterSearchResult result, SimpleEidasData eidData)
+  private String step5(MergedRegisterSearchResult result, SimpleEidasData eidData)
       throws TaskExecutionException {
     String citizenCountry = eidData.getCitizenCountryCode();
     ICountrySpecificDetailSearchProcessor foundHandler = null;
@@ -224,14 +232,14 @@ public class InitialSearchTask extends AbstractAuthServletTask {
     }
     if (foundHandler == null) {
       //MDS search
-      step8(result, eidData);
+      return step8(result, eidData);
     } else {
       //country specific search
-      step6(foundHandler, result, eidData);
+      return step6(foundHandler, result, eidData);
     }
   }
 
-  private void step6(ICountrySpecificDetailSearchProcessor countrySpecificDetailSearchProcessor,
+  private String step6(ICountrySpecificDetailSearchProcessor countrySpecificDetailSearchProcessor,
                      MergedRegisterSearchResult initialSearchResult, SimpleEidasData eidData)
       throws TaskExecutionException {
     //6 country specific search
@@ -240,24 +248,25 @@ public class InitialSearchTask extends AbstractAuthServletTask {
 
     switch (countrySpecificDetailSearchResult.getResultCount()) {
       case 0:
-        step8(initialSearchResult, eidData);
-        break;
+        return step8(initialSearchResult, eidData);
       case 1:
-        step7a(initialSearchResult, countrySpecificDetailSearchResult, eidData);
-        break;
+        return step7a(initialSearchResult, countrySpecificDetailSearchResult, eidData);
       default://should not happen
         throw new TaskExecutionException(pendingReq, "Detail search - Kitt Process necessary.",
             new ManualFixNecessaryException(eidData));
     }
   }
 
-  private void step7a(MergedRegisterSearchResult initialSearchResult,
+  private String step7a(MergedRegisterSearchResult initialSearchResult,
                       CountrySpecificDetailSearchResult countrySpecificDetailSearchResult, SimpleEidasData eidData) {
     //TODO automerge
     log.debug("Automerge " + initialSearchResult + " with " + eidData + " " + countrySpecificDetailSearchResult);
+    String bpK = "103";
+    return bpK;
   }
 
-  private void step8(MergedRegisterSearchResult initialSearchResult, SimpleEidasData eidData) {
+  private String step8(MergedRegisterSearchResult initialSearchResult,
+                  SimpleEidasData eidData) {
     MergedRegisterSearchResult mdsSearchResult = new MergedRegisterSearchResult();
 
     ArrayList<RegisterResult> resultsZmr =
@@ -270,7 +279,7 @@ public class InitialSearchTask extends AbstractAuthServletTask {
 
     log.debug("Automerge " + initialSearchResult + " with " + eidData + " " + mdsSearchResult);
     //TODO
-
+    return "105";
   }
 
   private MergedRegisterSearchResult searchInZmrAndErnp(String personIdentifier) {
-- 
cgit v1.2.3


From 75c403b2067dac3ccafae3b751f8714ebff342fa Mon Sep 17 00:00:00 2001
From: Alexander Marsalek <amarsalek@iaik.tugraz.at>
Date: Tue, 15 Dec 2020 23:07:53 +0100
Subject: added machting (3-4) + tests

---
 .../eidas/v2/dao/MergedRegisterSearchResult.java   |  16 +++
 .../modules/auth/eidas/v2/dao/RegisterResult.java  |  48 ++++---
 .../modules/auth/eidas/v2/dao/SimpleEidasData.java |  46 ++++++-
 .../auth/eidas/v2/exception/WorkflowException.java |  33 +++++
 .../auth/eidas/v2/tasks/InitialSearchTask.java     |  27 ++--
 .../v2/test/tasks/InitialSearchTaskFirstTest.java  | 140 ++++++++++++++++++++-
 6 files changed, 276 insertions(+), 34 deletions(-)
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/exception/WorkflowException.java

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/MergedRegisterSearchResult.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/MergedRegisterSearchResult.java
index bc5b358d..056b0450 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/MergedRegisterSearchResult.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/MergedRegisterSearchResult.java
@@ -1,5 +1,6 @@
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.dao;
 
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.WorkflowException;
 import lombok.Data;
 
 import java.util.ArrayList;
@@ -13,4 +14,19 @@ import java.util.ArrayList;
     return resultsZmr.size() + resultsErnb.size();
   }
 
+  /**
+   * Verfies that there is only one match and retunrs the bpk.
+   * @return bpk bpk of the match
+   * @throws WorkflowException if multiple results have been found
+   */
+  public String getBpk() throws WorkflowException {
+    if (getResultCount() != 1) {
+      throw new WorkflowException("getResultCount() != 1");
+    }
+    if (resultsZmr.size() == 1) {
+      return resultsZmr.get(0).getBpk();
+    } else {
+      return resultsErnb.get(0).getBpk();
+    }
+  }
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/RegisterResult.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/RegisterResult.java
index f557ca69..c92808a1 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/RegisterResult.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/RegisterResult.java
@@ -3,7 +3,8 @@ package at.asitplus.eidas.specific.modules.auth.eidas.v2.dao;
 import at.gv.e_government.reference.namespace.persondata._20020228.PostalAddressType;
 import lombok.Data;
 
-@Data public class RegisterResult {
+@Data
+public class RegisterResult {
 
   // MDS
   private String pseudonym = null;
@@ -17,14 +18,19 @@ import lombok.Data;
   private String taxNumber = null;
   private PostalAddressType address = null;
 
+  private String bpk = null;
+
   /**
    * Register search result.
-   * @param pseudonym The pseudonym
-   * @param givenName The givenName
-   * @param familyName The familyName
+   *
+   * @param bpk         The bpk
+   * @param pseudonym   The pseudonym
+   * @param givenName   The givenName
+   * @param familyName  The familyName
    * @param dateOfBirth The dateOfBirth
    */
-  public RegisterResult(String pseudonym, String givenName, String familyName, String dateOfBirth) {
+  public RegisterResult(String bpk, String pseudonym, String givenName, String familyName, String dateOfBirth) {
+    this.bpk = bpk;
     this.pseudonym = pseudonym;
     this.givenName = givenName;
     this.familyName = familyName;
@@ -33,14 +39,17 @@ import lombok.Data;
 
   /**
    * Register search result.
-   * @param pseudonym The pseudonym
-   * @param givenName The givenName
-   * @param familyName The familyName
-   * @param dateOfBirth The dateOfBirth
+   *
+   * @param bpk          The bpk
+   * @param pseudonym    The pseudonym
+   * @param givenName    The givenName
+   * @param familyName   The familyName
+   * @param dateOfBirth  The dateOfBirth
    * @param placeOfBirth The placeOfBirth
    */
-  public RegisterResult(String pseudonym, String givenName, String familyName, String dateOfBirth,
+  public RegisterResult(String bpk, String pseudonym, String givenName, String familyName, String dateOfBirth,
                         String placeOfBirth) {
+    this.bpk = bpk;
     this.pseudonym = pseudonym;
     this.givenName = givenName;
     this.familyName = familyName;
@@ -50,17 +59,20 @@ import lombok.Data;
 
   /**
    * Register search result.
-   * @param pseudonym The pseudonym
-   * @param givenName The givenName
-   * @param familyName The familyName
-   * @param dateOfBirth The dateOfBirth
+   *
+   * @param bpk          The bpk
+   * @param pseudonym    The pseudonym
+   * @param givenName    The givenName
+   * @param familyName   The familyName
+   * @param dateOfBirth  The dateOfBirth
    * @param placeOfBirth The placeOfBirth
-   * @param birthName The birthName
-   * @param taxNumber The taxNumber
-   * @param address The address
+   * @param birthName    The birthName
+   * @param taxNumber    The taxNumber
+   * @param address      The address
    */
-  public RegisterResult(String pseudonym, String givenName, String familyName, String dateOfBirth,
+  public RegisterResult(String bpk, String pseudonym, String givenName, String familyName, String dateOfBirth,
                         String placeOfBirth, String birthName, String taxNumber, PostalAddressType address) {
+    this.bpk = bpk;
     this.pseudonym = pseudonym;
     this.givenName = givenName;
     this.familyName = familyName;
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleEidasData.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleEidasData.java
index 0b116bfb..c41dd39e 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleEidasData.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleEidasData.java
@@ -23,13 +23,15 @@
 
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.dao;
 
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.WorkflowException;
 import at.gv.e_government.reference.namespace.persondata._20020228.PostalAddressType;
 import lombok.Data;
 import org.joda.time.DateTime;
 
 import java.text.SimpleDateFormat;
 
-@Data public class SimpleEidasData {
+@Data
+public class SimpleEidasData {
 
   private String citizenCountryCode = null;
 
@@ -49,4 +51,46 @@ import java.text.SimpleDateFormat;
     return new SimpleDateFormat("yyyy-MM-dd").format(dateOfBirth.toDate());
   }
 
+  /**
+   * Compares the register result with the eidas data.
+   * @param result The register data to use for comparison
+   * @return true or false depending of the data matches
+   * @throws WorkflowException if multiple results have been found
+   */
+  public boolean equalsRegisterData(MergedRegisterSearchResult result) throws WorkflowException {
+    if (result.getResultCount() != 1) {
+      throw new WorkflowException("result.getResultCount() != 1");
+    }
+    if (result.getResultsErnb().size() == 1) {
+      return equalsRegisterData(result.getResultsErnb().get(0));
+    } else {
+      return equalsRegisterData(result.getResultsZmr().get(0));
+    }
+  }
+
+  private boolean equalsRegisterData(RegisterResult result) {
+    if (!result.getPseudonym().equals(pseudonym)) {
+      return false;
+    }
+    if (!result.getGivenName().equals(givenName)) {
+      return false;
+    }
+    if (!result.getFamilyName().equals(familyName)) {
+      return false;
+    }
+    if (!result.getDateOfBirth().equals(dateOfBirth)) {
+      return false;
+    }
+    if (!result.getPlaceOfBirth().equals(placeOfBirth)) {
+      return false;
+    }
+    if (!result.getBirthName().equals(birthName)) {
+      return false;
+    }
+    if (!result.getTaxNumber().equals(taxNumber)) {
+      return false;
+    }
+
+    return true;
+  }
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/exception/WorkflowException.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/exception/WorkflowException.java
new file mode 100644
index 00000000..aa879bcc
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/exception/WorkflowException.java
@@ -0,0 +1,33 @@
+/*
+ * Copyright 2018 A-SIT Plus GmbH
+ * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
+ * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
+ *
+ * Licensed under the EUPL, Version 1.2 or - as soon they will be approved by
+ * the European Commission - subsequent versions of the EUPL (the "License");
+ * You may not use this work except in compliance with the License.
+ * You may obtain a copy of the License at:
+ * https://joinup.ec.europa.eu/news/understanding-eupl-v12
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" basis,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ *
+ * This product combines work with different licenses. See the "NOTICE" text
+ * file for details on the various modules and licenses.
+ * The "NOTICE" text file is part of the distribution. Any derivative works
+ * that you distribute must include a readable copy of the "NOTICE" text file.
+*/
+
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.exception;
+
+public class WorkflowException extends EidasSAuthenticationException {
+  private static final long serialVersionUID = 1L;
+
+  public WorkflowException(String data) {
+    super("eidas.00", new Object[] { data });
+  }
+
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
index fd86ab43..fdf80669 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
@@ -32,6 +32,7 @@ import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernb.IErnbClient;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidPostProcessingException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidasAttributeException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.ManualFixNecessaryException;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.WorkflowException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.ICountrySpecificDetailSearchProcessor;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.EidasResponseUtils;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.IZmrClient;
@@ -139,7 +140,7 @@ public class InitialSearchTask extends AbstractAuthServletTask {
 
       // post-process eIDAS attributes
       final SimpleEidasData eidData = convertSimpleMapToSimpleData(simpleAttrMap);
-      
+
       String bpK = step2(eidData);
       authProcessData.setGenericDataToSession(Constants.DATA_RESULT_MATCHING_BPK,bpK);
     } catch (final Exception e) {
@@ -194,27 +195,30 @@ public class InitialSearchTask extends AbstractAuthServletTask {
     return simpleEidasData;
   }
 
-  private String step3(MergedRegisterSearchResult result, SimpleEidasData eidData) {
+  private String step3(MergedRegisterSearchResult result, SimpleEidasData eidData) throws TaskExecutionException {
     //check if data from eidas authentication matches with data from register
 
     log.debug("Compare " + result + " with " + eidData);
     //TODO check if data matches
-    boolean match = true;
-    if (match) {
-      String bpK = "102";
-      return bpK;
-    } else {
-      return step4(result, eidData);
+    try {
+      if (eidData.equalsRegisterData(result)) {
+        //TODO
+        return result.getBpk();
+      } else {
+        return step4(result, eidData);
+      }
+    } catch (WorkflowException e) {
+      throw new TaskExecutionException(pendingReq, "Initial search - Kitt Process necessary.", e);
     }
   }
 
   private String step4(MergedRegisterSearchResult result,
-                  SimpleEidasData eidData) {
+                  SimpleEidasData eidData) throws WorkflowException {
     log.debug("Update " + result + " with " + eidData);
     //TODO
     
-    String bpK = "100";
-    return bpK;
+
+    return result.getBpk();
   }
 
   private String step5(MergedRegisterSearchResult result, SimpleEidasData eidData)
@@ -261,6 +265,7 @@ public class InitialSearchTask extends AbstractAuthServletTask {
                       CountrySpecificDetailSearchResult countrySpecificDetailSearchResult, SimpleEidasData eidData) {
     //TODO automerge
     log.debug("Automerge " + initialSearchResult + " with " + eidData + " " + countrySpecificDetailSearchResult);
+    //TODO
     String bpK = "103";
     return bpK;
   }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
index 1b1bdeae..2614f9ba 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
@@ -111,8 +111,8 @@ public class InitialSearchTaskFirstTest {
 
     //Mock ZMR
     ArrayList<RegisterResult> zmrResult = new ArrayList<>();
-    zmrResult.add(new RegisterResult("de/st/max123", "Max", "Mustermann", "1111-01-01"));
-    zmrResult.add(new RegisterResult("de/st/max123", "Maximilian", "Mustermann", "1111-01-01"));
+    zmrResult.add(new RegisterResult("bpkMax","de/st/max123", "Max", "Mustermann", "1111-01-01"));
+    zmrResult.add(new RegisterResult("bpkMax","de/st/max123", "Maximilian", "Mustermann", "1111-01-01"));
     zmrClient = Mockito.mock(DummyZmrClient.class);
     Mockito.when(zmrClient.searchWithPersonIdentifer("max123")).thenReturn(zmrResult);//"de/st/max123"???
     task.setZmrClient(zmrClient);
@@ -151,8 +151,8 @@ public class InitialSearchTaskFirstTest {
 
     //Mock ernb
     ArrayList<RegisterResult> ernbResult = new ArrayList<>();
-    ernbResult.add(new RegisterResult("de/st/max123", "Max", "Mustermann", "1111-01-01"));
-    ernbResult.add(new RegisterResult("de/st/max123", "Maximilian", "Mustermann", "1111-01-01"));
+    ernbResult.add(new RegisterResult("bpkMax","de/st/max123", "Max", "Mustermann", "1111-01-01"));
+    ernbResult.add(new RegisterResult("bpkMax","de/st/max123", "Maximilian", "Mustermann", "1111-01-01"));
 
     ernbClient = Mockito.mock(DummyErnbClient.class);
     Mockito.when(ernbClient.searchWithPersonIdentifer("max123")).thenReturn(ernbResult);//"de/st/max123"???
@@ -170,6 +170,138 @@ public class InitialSearchTaskFirstTest {
     }
   }
 
+  @Test
+  @DirtiesContext
+  /**
+   * One match, but register update needed
+   */
+  public void testNode100a() throws Exception {
+
+    //Mock ZMR
+    ArrayList<RegisterResult> zmrResult = new ArrayList<>();
+    String randomBpk = RandomStringUtils.randomNumeric(6);
+    zmrResult.add(new RegisterResult(randomBpk,"de/st/max123", "Max_new", "Mustermann", "1111-01-01"));
+
+    zmrClient = Mockito.mock(DummyZmrClient.class);
+    Mockito.when(zmrClient.searchWithPersonIdentifer("max123")).thenReturn(zmrResult);//"de/st/max123"???
+    task.setZmrClient(zmrClient);
+
+    //Mock ernb
+    ArrayList<RegisterResult> ernbResult = new ArrayList<>();
+
+    ernbClient = Mockito.mock(DummyErnbClient.class);
+    Mockito.when(ernbClient.searchWithPersonIdentifer("max123")).thenReturn(ernbResult);//"de/st/max123"???
+    task.setErnbClient(ernbClient);
+
+    try {
+      task.execute(pendingReq, executionContext);
+      String bPk = (String)
+          pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
+      Assert.assertTrue("Wrong bpk", bPk.equals(randomBpk));
+
+    } catch (final TaskExecutionException e) {
+      Assert.assertTrue("Wrong workflow, should not reach this point", false);
+    }
+  }
+
+  @Test
+  @DirtiesContext
+  /**
+   * One match, but register update needed
+   */
+  public void testNode100b() throws Exception {
+
+    //Mock ZMR
+    ArrayList<RegisterResult> zmrResult = new ArrayList<>();
+
+    zmrClient = Mockito.mock(DummyZmrClient.class);
+    Mockito.when(zmrClient.searchWithPersonIdentifer("max123")).thenReturn(zmrResult);//"de/st/max123"???
+    task.setZmrClient(zmrClient);
+
+    //Mock ernb
+    ArrayList<RegisterResult> ernbResult = new ArrayList<>();
+    String randomBpk = RandomStringUtils.randomNumeric(6);
+    ernbResult.add(new RegisterResult(randomBpk,"de/st/max123", "Max_new", "Mustermann", "1111-01-01"));
+
+    ernbClient = Mockito.mock(DummyErnbClient.class);
+    Mockito.when(ernbClient.searchWithPersonIdentifer("max123")).thenReturn(ernbResult);//"de/st/max123"???
+    task.setErnbClient(ernbClient);
+
+    try {
+      task.execute(pendingReq, executionContext);
+      String bPk = (String)
+          pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
+      Assert.assertTrue("Wrong bpk", bPk.equals(randomBpk));
+
+    } catch (final TaskExecutionException e) {
+      Assert.assertTrue("Wrong workflow, should not reach this point", false);
+    }
+  }
+
+  @Test
+  @DirtiesContext
+  /**
+   * One match, no register update needed
+   */
+  public void testNode102a() throws Exception {
+
+    //Mock ZMR
+    ArrayList<RegisterResult> zmrResult = new ArrayList<>();
+    zmrClient = Mockito.mock(DummyZmrClient.class);
+    Mockito.when(zmrClient.searchWithPersonIdentifer("max123")).thenReturn(zmrResult);//"de/st/max123"???
+    task.setZmrClient(zmrClient);
+
+    //Mock ernb
+    ArrayList<RegisterResult> ernbResult = new ArrayList<>();
+    ernbResult.add(new RegisterResult("bpkMax","de/st/max123", "Max", "Mustermann", "1111-01-01"));
+
+    ernbClient = Mockito.mock(DummyErnbClient.class);
+    Mockito.when(ernbClient.searchWithPersonIdentifer("max123")).thenReturn(ernbResult);//"de/st/max123"???
+    task.setErnbClient(ernbClient);
+
+    try {
+      task.execute(pendingReq, executionContext);
+      String bPk = (String)
+          pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
+      Assert.assertTrue("Wrong bpk", bPk.equals("bpkMax"));
+
+    } catch (final TaskExecutionException e) {
+      Assert.assertTrue("Wrong workflow, should not reach this point", false);
+    }
+  }
+
+  @Test
+  @DirtiesContext
+  /**
+   * One match, no register update needed
+   */
+  public void testNode102b() throws Exception {
+
+    //Mock ZMR
+    ArrayList<RegisterResult> zmrResult = new ArrayList<>();
+    zmrResult.add(new RegisterResult("bpkMax","de/st/max123", "Max", "Mustermann", "1111-01-01"));
+
+    zmrClient = Mockito.mock(DummyZmrClient.class);
+    Mockito.when(zmrClient.searchWithPersonIdentifer("max123")).thenReturn(zmrResult);//"de/st/max123"???
+    task.setZmrClient(zmrClient);
+
+    //Mock ernb
+    ArrayList<RegisterResult> ernbResult = new ArrayList<>();
+
+    ernbClient = Mockito.mock(DummyErnbClient.class);
+    Mockito.when(ernbClient.searchWithPersonIdentifer("max123")).thenReturn(ernbResult);//"de/st/max123"???
+    task.setErnbClient(ernbClient);
+
+    try {
+      task.execute(pendingReq, executionContext);
+      String bPk = (String)
+          pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
+      Assert.assertTrue("Wrong bpk", bPk.equals("bpkMax"));
+
+    } catch (final TaskExecutionException e) {
+      Assert.assertTrue("Wrong workflow, should not reach this point", false);
+    }
+  }
 
   @NotNull
   private AuthenticationResponse buildDummyAuthResponse() throws URISyntaxException {
-- 
cgit v1.2.3


From 6782b19cc51833b4499984bb92d59fd00f8c0efd Mon Sep 17 00:00:00 2001
From: Alexander Marsalek <amarsalek@iaik.tugraz.at>
Date: Tue, 15 Dec 2020 23:46:02 +0100
Subject: implemented CountrySpecificDetailSearchResult, changed datetime to
 string

---
 .../v2/dao/CountrySpecificDetailSearchResult.java  | 26 ++++++++++++++++++----
 .../modules/auth/eidas/v2/dao/SimpleEidasData.java |  9 +-------
 .../auth/eidas/v2/tasks/InitialSearchTask.java     | 17 +++++++++-----
 .../auth/eidas/v2/utils/EidasResponseUtils.java    | 17 ++++++++++++++
 4 files changed, 51 insertions(+), 18 deletions(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/CountrySpecificDetailSearchResult.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/CountrySpecificDetailSearchResult.java
index 710e286c..b74172f9 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/CountrySpecificDetailSearchResult.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/CountrySpecificDetailSearchResult.java
@@ -1,14 +1,32 @@
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.dao;
 
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.WorkflowException;
+
+import java.util.ArrayList;
+
 public class CountrySpecificDetailSearchResult {
 
   //TODO is the result the same as the one form the initial search?
-  int resultsZmr;
-  int resultsErnb;
+  ArrayList<RegisterResult> resultsZmr = new ArrayList<>();
+  ArrayList<RegisterResult> resultsErnb = new ArrayList<>();
 
   public int getResultCount() {
-    return resultsZmr + resultsErnb;
+    return resultsZmr.size() + resultsErnb.size();
   }
 
-
+  /**
+   * Verfies that there is only one match and retunrs the bpk.
+   * @return bpk bpk of the match
+   * @throws WorkflowException if multiple results have been found
+   */
+  public String getBpk() throws WorkflowException {
+    if (getResultCount() != 1) {
+      throw new WorkflowException("getResultCount() != 1");
+    }
+    if (resultsZmr.size() == 1) {
+      return resultsZmr.get(0).getBpk();
+    } else {
+      return resultsErnb.get(0).getBpk();
+    }
+  }
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleEidasData.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleEidasData.java
index c41dd39e..43d85772 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleEidasData.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleEidasData.java
@@ -26,9 +26,6 @@ package at.asitplus.eidas.specific.modules.auth.eidas.v2.dao;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.WorkflowException;
 import at.gv.e_government.reference.namespace.persondata._20020228.PostalAddressType;
 import lombok.Data;
-import org.joda.time.DateTime;
-
-import java.text.SimpleDateFormat;
 
 @Data
 public class SimpleEidasData {
@@ -39,7 +36,7 @@ public class SimpleEidasData {
   private String pseudonym = null;
   private String givenName = null;
   private String familyName = null;
-  private DateTime dateOfBirth = null;
+  private String dateOfBirth = null;
 
   // additional attributes
   private String placeOfBirth = null;
@@ -47,10 +44,6 @@ public class SimpleEidasData {
   private PostalAddressType address = null;
   private String taxNumber;
 
-  public String getFormatedDateOfBirth() {
-    return new SimpleDateFormat("yyyy-MM-dd").format(dateOfBirth.toDate());
-  }
-
   /**
    * Compares the register result with the eidas data.
    * @param result The register data to use for comparison
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
index fdf80669..ec56a6dd 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
@@ -180,7 +180,7 @@ public class InitialSearchTask extends AbstractAuthServletTask {
         eidasAttrMap.get(Constants.eIDAS_ATTR_CURRENTFAMILYNAME)));
     simpleEidasData.setGivenName(EidasResponseUtils.processGivenName(
         eidasAttrMap.get(Constants.eIDAS_ATTR_CURRENTGIVENNAME)));
-    simpleEidasData.setDateOfBirth(EidasResponseUtils.processDateOfBirth(
+    simpleEidasData.setDateOfBirth(EidasResponseUtils.processDateOfBirthToString(
         eidasAttrMap.get(Constants.eIDAS_ATTR_DATEOFBIRTH)));
 
     // additional attributes
@@ -262,12 +262,17 @@ public class InitialSearchTask extends AbstractAuthServletTask {
   }
 
   private String step7a(MergedRegisterSearchResult initialSearchResult,
-                      CountrySpecificDetailSearchResult countrySpecificDetailSearchResult, SimpleEidasData eidData) {
+                        CountrySpecificDetailSearchResult countrySpecificDetailSearchResult,
+                        SimpleEidasData eidData) throws TaskExecutionException {
     //TODO automerge
     log.debug("Automerge " + initialSearchResult + " with " + eidData + " " + countrySpecificDetailSearchResult);
     //TODO
-    String bpK = "103";
-    return bpK;
+    try {
+      String bpK = countrySpecificDetailSearchResult.getBpk();
+      return bpK;
+    } catch (WorkflowException e) {
+      throw new TaskExecutionException(pendingReq, "Step7a failed.", e);
+    }
   }
 
   private String step8(MergedRegisterSearchResult initialSearchResult,
@@ -275,11 +280,11 @@ public class InitialSearchTask extends AbstractAuthServletTask {
     MergedRegisterSearchResult mdsSearchResult = new MergedRegisterSearchResult();
 
     ArrayList<RegisterResult> resultsZmr =
-        zmrClient.searchWithMds(eidData.getGivenName(), eidData.getFamilyName(), eidData.getFormatedDateOfBirth());
+        zmrClient.searchWithMds(eidData.getGivenName(), eidData.getFamilyName(), eidData.getDateOfBirth());
     mdsSearchResult.setResultsZmr(resultsZmr);
 
     ArrayList<RegisterResult> resultsErnb =
-        ernbClient.searchWithMds(eidData.getGivenName(), eidData.getFamilyName(), eidData.getFormatedDateOfBirth());
+        ernbClient.searchWithMds(eidData.getGivenName(), eidData.getFamilyName(), eidData.getDateOfBirth());
     mdsSearchResult.setResultsErnb(resultsErnb);
 
     log.debug("Automerge " + initialSearchResult + " with " + eidData + " " + mdsSearchResult);
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/EidasResponseUtils.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/EidasResponseUtils.java
index c68a602b..5a1db0e0 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/EidasResponseUtils.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/EidasResponseUtils.java
@@ -23,6 +23,7 @@
 
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.utils;
 
+import java.text.SimpleDateFormat;
 import java.util.ArrayList;
 import java.util.List;
 import java.util.regex.Matcher;
@@ -281,6 +282,22 @@ public class EidasResponseUtils {
 
   }
 
+  /**
+   * Post-Process the eIDAS DateOfBirth attribute to a string.
+   *
+   * @param dateOfBirthObj eIDAS date-of-birth attribute information
+   * @return formated user's date-of-birth as string
+   * @throws EidasAttributeException    if NO attribute is available
+   * @throws EidPostProcessingException if post-processing fails
+   */
+  public static String processDateOfBirthToString(Object dateOfBirthObj) throws EidPostProcessingException,
+      EidasAttributeException {
+    if (dateOfBirthObj == null || !(dateOfBirthObj instanceof DateTime)) {
+      throw new EidasAttributeException(Constants.eIDAS_ATTR_DATEOFBIRTH);
+    }
+    return new SimpleDateFormat("yyyy-MM-dd").format(((DateTime) dateOfBirthObj).toDate());
+  }
+
   /**
    * Post-Process the eIDAS GivenName attribute.
    *
-- 
cgit v1.2.3


From 3b34f664d0838ff9fb1764fb58813dd6ea83b1df Mon Sep 17 00:00:00 2001
From: Alexander Marsalek <amarsalek@iaik.tugraz.at>
Date: Tue, 15 Dec 2020 23:57:14 +0100
Subject: Testcase no match found added

---
 .../v2/test/tasks/InitialSearchTaskFirstTest.java  | 32 ++++++++++++++++++++++
 1 file changed, 32 insertions(+)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
index 2614f9ba..924a180d 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
@@ -303,6 +303,38 @@ public class InitialSearchTaskFirstTest {
     }
   }
 
+
+  @Test
+  @DirtiesContext
+  /**
+   * NO match found in ZMR and ErnB with Initial search
+   */
+  public void testNode105() throws Exception {
+
+    //Mock ZMR
+    ArrayList<RegisterResult> zmrResult = new ArrayList<>();
+    zmrClient = Mockito.mock(DummyZmrClient.class);
+    Mockito.when(zmrClient.searchWithPersonIdentifer("max123")).thenReturn(zmrResult);//"de/st/max123"???
+    task.setZmrClient(zmrClient);
+
+    //Mock ernb
+    ArrayList<RegisterResult> ernbResult = new ArrayList<>();
+    ernbClient = Mockito.mock(DummyErnbClient.class);
+    Mockito.when(ernbClient.searchWithPersonIdentifer("max123")).thenReturn(ernbResult);//"de/st/max123"???
+    task.setErnbClient(ernbClient);
+
+    try {
+      task.execute(pendingReq, executionContext);
+
+      String bPk = (String)
+          pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
+      Assert.assertTrue("Wrong bpk", bPk.equals("105"));
+    } catch (final TaskExecutionException e) {
+      Assert.assertTrue("Wrong workflow, should not reach this point", false);
+    }
+  }
+
+
   @NotNull
   private AuthenticationResponse buildDummyAuthResponse() throws URISyntaxException {
     return buildDummyAuthResponse(RandomStringUtils.randomAlphabetic(10), RandomStringUtils.randomAlphabetic(10),
-- 
cgit v1.2.3


From cbbd53e6b88682045e5b8789c46a94035be30827 Mon Sep 17 00:00:00 2001
From: Alexander Marsalek <amarsalek@iaik.tugraz.at>
Date: Wed, 16 Dec 2020 10:47:09 +0100
Subject: added country specific search classes

---
 .../v2/dao/CountrySpecificDetailSearchResult.java  |  2 +-
 .../handler/DeSpecificDetailSearchProcessor.java   | 32 ++++++++++++++++++++++
 .../ICountrySpecificDetailSearchProcessor.java     | 11 +-------
 .../handler/ItSpecificDetailSearchProcessor.java   | 29 ++++++++++++++++++++
 .../auth/eidas/v2/tasks/InitialSearchTask.java     | 13 ++++-----
 .../src/main/resources/eidas_v2_auth.beans.xml     |  8 ++++++
 6 files changed, 77 insertions(+), 18 deletions(-)
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/DeSpecificDetailSearchProcessor.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ItSpecificDetailSearchProcessor.java

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/CountrySpecificDetailSearchResult.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/CountrySpecificDetailSearchResult.java
index b74172f9..6e1f8653 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/CountrySpecificDetailSearchResult.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/CountrySpecificDetailSearchResult.java
@@ -6,7 +6,7 @@ import java.util.ArrayList;
 
 public class CountrySpecificDetailSearchResult {
 
-  //TODO is the result the same as the one form the initial search?
+  //TODO is the result the same as the one from the initial search?
   ArrayList<RegisterResult> resultsZmr = new ArrayList<>();
   ArrayList<RegisterResult> resultsErnb = new ArrayList<>();
 
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/DeSpecificDetailSearchProcessor.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/DeSpecificDetailSearchProcessor.java
new file mode 100644
index 00000000..727aa718
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/DeSpecificDetailSearchProcessor.java
@@ -0,0 +1,32 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.handler;
+
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.CountrySpecificDetailSearchResult;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
+
+public class DeSpecificDetailSearchProcessor implements ICountrySpecificDetailSearchProcessor {
+
+  @Override
+  public String getName() {
+    return this.getClass().getName();
+  }
+
+  @Override
+  public boolean canHandle(String countryCode, SimpleEidasData eidData) {
+    if (!countryCode.equalsIgnoreCase("de")) {
+      return false;
+    }
+    if (eidData.getBirthName() == null || eidData.getBirthName().isEmpty()) {
+      return false;
+    }
+    if (eidData.getPlaceOfBirth() == null || eidData.getPlaceOfBirth().isEmpty()) {
+      return false;
+    }
+    return true;
+  }
+
+  @Override
+  public CountrySpecificDetailSearchResult search(SimpleEidasData eidData) {
+    //TODO
+    return new CountrySpecificDetailSearchResult();
+  }
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ICountrySpecificDetailSearchProcessor.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ICountrySpecificDetailSearchProcessor.java
index 13d9117d..8ddd79bb 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ICountrySpecificDetailSearchProcessor.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ICountrySpecificDetailSearchProcessor.java
@@ -35,16 +35,6 @@ public interface ICountrySpecificDetailSearchProcessor {
    */
   String getName();
 
-  /**
-   * Get the priority of this eID Post-Processor <br>
-   * If more than one Post-Processor implementations can handle the eID data, the
-   * post-processor with the highest priority are selected. The Default-Processor
-   * has priority '0'
-   *
-   * @return Priority of this handler
-   */
-  int getPriority();
-
   /**
    * Check if this postProcessor is sensitive for a specific country.
    *
@@ -55,4 +45,5 @@ public interface ICountrySpecificDetailSearchProcessor {
   boolean canHandle(String countryCode, SimpleEidasData eidData);
 
   CountrySpecificDetailSearchResult search(SimpleEidasData eidData);
+
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ItSpecificDetailSearchProcessor.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ItSpecificDetailSearchProcessor.java
new file mode 100644
index 00000000..bb0a5262
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ItSpecificDetailSearchProcessor.java
@@ -0,0 +1,29 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.handler;
+
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.CountrySpecificDetailSearchResult;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
+
+public class ItSpecificDetailSearchProcessor implements ICountrySpecificDetailSearchProcessor {
+
+  @Override
+  public String getName() {
+    return this.getClass().getName();
+  }
+
+  @Override
+  public boolean canHandle(String countryCode, SimpleEidasData eidData) {
+    if (!countryCode.equalsIgnoreCase("it")) {
+      return false;
+    }
+    if (eidData.getTaxNumber() == null || eidData.getTaxNumber().isEmpty()) {
+      return false;
+    }
+    return true;
+  }
+
+  @Override
+  public CountrySpecificDetailSearchResult search(SimpleEidasData eidData) {
+    //TODO
+    return new CountrySpecificDetailSearchResult();
+  }
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
index ec56a6dd..91edbaef 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
@@ -58,7 +58,6 @@ import javax.annotation.PostConstruct;
 import javax.servlet.http.HttpServletRequest;
 import javax.servlet.http.HttpServletResponse;
 import java.util.ArrayList;
-import java.util.Collections;
 import java.util.HashMap;
 import java.util.Iterator;
 import java.util.List;
@@ -108,12 +107,12 @@ public class InitialSearchTask extends AbstractAuthServletTask {
 
     }
 
-    log.trace("Sorting country specific detail search services on priority ... ");
-    Collections.sort(handlers, (thisAuthModule, otherAuthModule) -> {
-      final int thisOrder = thisAuthModule.getPriority();
-      final int otherOrder = otherAuthModule.getPriority();
-      return thisOrder < otherOrder ? 1 : thisOrder == otherOrder ? 0 : -1;
-    });
+    //    log.trace("Sorting country specific detail search services on priority ... ");
+    //    Collections.sort(handlers, (thisAuthModule, otherAuthModule) -> {
+    //      final int thisOrder = thisAuthModule.getPriority();
+    //      final int otherOrder = otherAuthModule.getPriority();
+    //      return thisOrder < otherOrder ? 1 : thisOrder == otherOrder ? 0 : -1;
+    //    });
 
     log.info("# " + handlers.size() + " country specific detail search services are registrated");
 
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml
index 0f6277c0..ca6eba20 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml
@@ -80,6 +80,14 @@
     <property name="priority" value="0" />
   </bean>
 
+  <bean id="DE-Specific-Search"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.DeSpecificDetailSearchProcessor">
+  </bean>
+
+  <bean id="IT-Specific-Search"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.ItSpecificDetailSearchProcessor">
+  </bean>
+
   <!-- Authentication Process Tasks -->
   <bean id="ConnecteIDASNodeTask"
     class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.GenerateAuthnRequestTask"
-- 
cgit v1.2.3


From 8283887c4f8f1e690b4b214f6779821b9f21ef0a Mon Sep 17 00:00:00 2001
From: Alexander Marsalek <amarsalek@iaik.tugraz.at>
Date: Wed, 16 Dec 2020 11:22:00 +0100
Subject: removed CountrySpecificDetailSearchResult, implemented
 countryspecific search classes

---
 .../v2/dao/CountrySpecificDetailSearchResult.java  | 32 ----------------------
 .../auth/eidas/v2/ernb/DummyErnbClient.java        | 11 ++++++++
 .../modules/auth/eidas/v2/ernb/IErnbClient.java    |  6 ++++
 .../handler/DeSpecificDetailSearchProcessor.java   | 30 +++++++++++++++++---
 .../ICountrySpecificDetailSearchProcessor.java     |  4 +--
 .../handler/ItSpecificDetailSearchProcessor.java   | 28 ++++++++++++++++---
 .../auth/eidas/v2/tasks/InitialSearchTask.java     |  5 ++--
 .../modules/auth/eidas/v2/zmr/DummyZmrClient.java  | 11 ++++++++
 .../modules/auth/eidas/v2/zmr/IZmrClient.java      |  6 ++++
 9 files changed, 88 insertions(+), 45 deletions(-)
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/CountrySpecificDetailSearchResult.java

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/CountrySpecificDetailSearchResult.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/CountrySpecificDetailSearchResult.java
deleted file mode 100644
index 6e1f8653..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/CountrySpecificDetailSearchResult.java
+++ /dev/null
@@ -1,32 +0,0 @@
-package at.asitplus.eidas.specific.modules.auth.eidas.v2.dao;
-
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.WorkflowException;
-
-import java.util.ArrayList;
-
-public class CountrySpecificDetailSearchResult {
-
-  //TODO is the result the same as the one from the initial search?
-  ArrayList<RegisterResult> resultsZmr = new ArrayList<>();
-  ArrayList<RegisterResult> resultsErnb = new ArrayList<>();
-
-  public int getResultCount() {
-    return resultsZmr.size() + resultsErnb.size();
-  }
-
-  /**
-   * Verfies that there is only one match and retunrs the bpk.
-   * @return bpk bpk of the match
-   * @throws WorkflowException if multiple results have been found
-   */
-  public String getBpk() throws WorkflowException {
-    if (getResultCount() != 1) {
-      throw new WorkflowException("getResultCount() != 1");
-    }
-    if (resultsZmr.size() == 1) {
-      return resultsZmr.get(0).getBpk();
-    } else {
-      return resultsErnb.get(0).getBpk();
-    }
-  }
-}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernb/DummyErnbClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernb/DummyErnbClient.java
index 8b2379bf..7e926c8e 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernb/DummyErnbClient.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernb/DummyErnbClient.java
@@ -26,6 +26,17 @@ public class DummyErnbClient implements IErnbClient {
     return resultEmpty();//TODO will I only receive matches where all three values match perfectly?
   }
 
+  @Override
+  public ArrayList<RegisterResult> searchDeSpecific(String givenName, String familyName, String dateOfBirth,
+                                                    String birthPlace, String birthName) {
+    return resultEmpty();//TODO
+  }
+
+  @Override
+  public ArrayList<RegisterResult> searchItSpecific(String txNumber) {
+    return resultEmpty();//TODO
+  }
+
   private ArrayList<RegisterResult> resultEmpty() {
     return new ArrayList<RegisterResult>();//Nobody found
   }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernb/IErnbClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernb/IErnbClient.java
index 4873b939..f8a41cfe 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernb/IErnbClient.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernb/IErnbClient.java
@@ -9,4 +9,10 @@ public interface IErnbClient {
   ArrayList<RegisterResult> searchWithPersonIdentifer(String personIdentifer);
 
   ArrayList<RegisterResult> searchWithMds(String givenName, String familyName, String dateOfBirth);
+
+  ArrayList<RegisterResult> searchDeSpecific(String givenName, String familyName, String dateOfBirth,
+                                             String birthPlace, String birthName);
+
+  ArrayList<RegisterResult> searchItSpecific(String txNumber);
+
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/DeSpecificDetailSearchProcessor.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/DeSpecificDetailSearchProcessor.java
index 727aa718..9fa13fe8 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/DeSpecificDetailSearchProcessor.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/DeSpecificDetailSearchProcessor.java
@@ -1,10 +1,22 @@
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.handler;
 
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.CountrySpecificDetailSearchResult;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.MergedRegisterSearchResult;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernb.IErnbClient;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.IZmrClient;
+import org.springframework.beans.factory.annotation.Autowired;
+
+import java.util.ArrayList;
 
 public class DeSpecificDetailSearchProcessor implements ICountrySpecificDetailSearchProcessor {
 
+  @Autowired
+  private IErnbClient ernbClient;
+
+  @Autowired
+  private IZmrClient zmrClient;
+
   @Override
   public String getName() {
     return this.getClass().getName();
@@ -25,8 +37,18 @@ public class DeSpecificDetailSearchProcessor implements ICountrySpecificDetailSe
   }
 
   @Override
-  public CountrySpecificDetailSearchResult search(SimpleEidasData eidData) {
-    //TODO
-    return new CountrySpecificDetailSearchResult();
+  public MergedRegisterSearchResult search(SimpleEidasData eidData) {
+    MergedRegisterSearchResult searchResult = new MergedRegisterSearchResult();
+
+    ArrayList<RegisterResult> resultsZmr =
+        zmrClient.searchDeSpecific(eidData.getGivenName(), eidData.getFamilyName(), eidData.getDateOfBirth(),
+            eidData.getPlaceOfBirth(), eidData.getBirthName());
+    searchResult.setResultsZmr(resultsZmr);
+
+    ArrayList<RegisterResult> resultsErnb =
+        ernbClient.searchDeSpecific(eidData.getGivenName(), eidData.getFamilyName(), eidData.getDateOfBirth(),
+        eidData.getPlaceOfBirth(), eidData.getBirthName());
+    searchResult.setResultsErnb(resultsErnb);
+    return searchResult;
   }
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ICountrySpecificDetailSearchProcessor.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ICountrySpecificDetailSearchProcessor.java
index 8ddd79bb..887aef4a 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ICountrySpecificDetailSearchProcessor.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ICountrySpecificDetailSearchProcessor.java
@@ -23,7 +23,7 @@
 
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.handler;
 
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.CountrySpecificDetailSearchResult;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.MergedRegisterSearchResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
 
 public interface ICountrySpecificDetailSearchProcessor {
@@ -44,6 +44,6 @@ public interface ICountrySpecificDetailSearchProcessor {
    */
   boolean canHandle(String countryCode, SimpleEidasData eidData);
 
-  CountrySpecificDetailSearchResult search(SimpleEidasData eidData);
+  MergedRegisterSearchResult search(SimpleEidasData eidData);
 
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ItSpecificDetailSearchProcessor.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ItSpecificDetailSearchProcessor.java
index bb0a5262..e3b9e702 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ItSpecificDetailSearchProcessor.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ItSpecificDetailSearchProcessor.java
@@ -1,10 +1,22 @@
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.handler;
 
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.CountrySpecificDetailSearchResult;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.MergedRegisterSearchResult;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernb.IErnbClient;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.IZmrClient;
+import org.springframework.beans.factory.annotation.Autowired;
+
+import java.util.ArrayList;
 
 public class ItSpecificDetailSearchProcessor implements ICountrySpecificDetailSearchProcessor {
 
+  @Autowired
+  private IErnbClient ernbClient;
+
+  @Autowired
+  private IZmrClient zmrClient;
+
   @Override
   public String getName() {
     return this.getClass().getName();
@@ -22,8 +34,16 @@ public class ItSpecificDetailSearchProcessor implements ICountrySpecificDetailSe
   }
 
   @Override
-  public CountrySpecificDetailSearchResult search(SimpleEidasData eidData) {
-    //TODO
-    return new CountrySpecificDetailSearchResult();
+  public MergedRegisterSearchResult search(SimpleEidasData eidData) {
+    MergedRegisterSearchResult searchResult = new MergedRegisterSearchResult();
+
+    ArrayList<RegisterResult> resultsZmr =
+        zmrClient.searchItSpecific(eidData.getTaxNumber());
+    searchResult.setResultsZmr(resultsZmr);
+
+    ArrayList<RegisterResult> resultsErnb =
+        ernbClient.searchItSpecific(eidData.getTaxNumber());
+    searchResult.setResultsErnb(resultsErnb);
+    return searchResult;
   }
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
index 91edbaef..e9422c56 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
@@ -24,7 +24,6 @@
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks;
 
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.CountrySpecificDetailSearchResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.MergedRegisterSearchResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
@@ -246,7 +245,7 @@ public class InitialSearchTask extends AbstractAuthServletTask {
                      MergedRegisterSearchResult initialSearchResult, SimpleEidasData eidData)
       throws TaskExecutionException {
     //6 country specific search
-    CountrySpecificDetailSearchResult countrySpecificDetailSearchResult =
+    MergedRegisterSearchResult countrySpecificDetailSearchResult =
         countrySpecificDetailSearchProcessor.search(eidData);
 
     switch (countrySpecificDetailSearchResult.getResultCount()) {
@@ -261,7 +260,7 @@ public class InitialSearchTask extends AbstractAuthServletTask {
   }
 
   private String step7a(MergedRegisterSearchResult initialSearchResult,
-                        CountrySpecificDetailSearchResult countrySpecificDetailSearchResult,
+                        MergedRegisterSearchResult countrySpecificDetailSearchResult,
                         SimpleEidasData eidData) throws TaskExecutionException {
     //TODO automerge
     log.debug("Automerge " + initialSearchResult + " with " + eidData + " " + countrySpecificDetailSearchResult);
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/DummyZmrClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/DummyZmrClient.java
index 9a7cc9b3..343651f7 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/DummyZmrClient.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/DummyZmrClient.java
@@ -26,6 +26,17 @@ public class DummyZmrClient implements IZmrClient {
     return resultEmpty();//TODO will I only receive matches where all three values match perfectly?
   }
 
+  @Override
+  public ArrayList<RegisterResult> searchDeSpecific(String givenName, String familyName, String dateOfBirth,
+                                                    String birthPlace, String birthName) {
+    return resultEmpty();//TODO
+  }
+
+  @Override
+  public ArrayList<RegisterResult> searchItSpecific(String txNumber) {
+    return resultEmpty();//TODO
+  }
+
   private ArrayList<RegisterResult> resultEmpty() {
     return new ArrayList<RegisterResult>();//Nobody found
   }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/IZmrClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/IZmrClient.java
index 1f7e4949..018122ea 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/IZmrClient.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/IZmrClient.java
@@ -9,4 +9,10 @@ public interface IZmrClient {
   ArrayList<RegisterResult> searchWithPersonIdentifer(String personIdentifer);
 
   ArrayList<RegisterResult> searchWithMds(String givenName, String familyName, String dateOfBirth);
+
+  ArrayList<RegisterResult> searchDeSpecific(String givenName, String familyName, String dateOfBirth,
+                                             String birthPlace, String birthName);
+
+  ArrayList<RegisterResult> searchItSpecific(String txNumber);
+
 }
-- 
cgit v1.2.3


From f0ec2ed628eeb8e020919f3f719ee633ae05806f Mon Sep 17 00:00:00 2001
From: Alexander Marsalek <amarsalek@iaik.tugraz.at>
Date: Wed, 16 Dec 2020 17:32:43 +0100
Subject: 2 more tests (bean mocking still missing)

---
 .../v2/test/tasks/InitialSearchTaskFirstTest.java  | 85 +++++++++++++++++++++-
 1 file changed, 84 insertions(+), 1 deletion(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
index 924a180d..5c75d1e4 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
@@ -22,8 +22,10 @@ import eu.eidas.auth.commons.protocol.impl.AuthenticationResponse;
 import lombok.val;
 import org.apache.commons.lang3.RandomStringUtils;
 import org.jetbrains.annotations.NotNull;
+import org.junit.Assert;
 import org.junit.Before;
 import org.junit.BeforeClass;
+import org.junit.Ignore;
 import org.junit.Test;
 import org.junit.runner.RunWith;
 import org.mockito.InjectMocks;
@@ -39,7 +41,7 @@ import org.springframework.test.context.ContextConfiguration;
 import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
 import org.springframework.web.context.request.RequestContextHolder;
 import org.springframework.web.context.request.ServletRequestAttributes;
-import org.junit.Assert;
+
 import javax.xml.namespace.QName;
 import java.io.IOException;
 import java.net.URI;
@@ -303,6 +305,87 @@ public class InitialSearchTaskFirstTest {
     }
   }
 
+  @Ignore
+  @Test
+  @DirtiesContext
+  /**
+   * One match found in ZMR and ErnB with detail search
+   */
+  public void testNode103() throws Exception {
+
+    //Mock ZMR initial search
+    ArrayList<RegisterResult> zmrResultInitial = new ArrayList<>();
+    zmrClient = Mockito.mock(DummyZmrClient.class);
+    Mockito.when(zmrClient.searchWithPersonIdentifer("max123")).thenReturn(zmrResultInitial);
+    ArrayList<RegisterResult> zmrResultSpecific = new ArrayList<>();
+    //String bpk, String pseudonym, String givenName, String familyName, String dateOfBirth,
+    //                        String placeOfBirth, String birthName, String taxNumber, PostalAddressType address
+    zmrResultSpecific.add(new RegisterResult("bpkMax","de/st/max1234", "Max", "Mustermann", "1111-01-01", null, null,
+        "tax123", null));
+
+    Mockito.when(zmrClient.searchItSpecific("tax123")).thenReturn(zmrResultSpecific);
+    task.setZmrClient(zmrClient);
+
+    //Mock ernb initial search
+    ArrayList<RegisterResult> ernbResultInitial = new ArrayList<>();
+    ernbClient = Mockito.mock(DummyErnbClient.class);
+    Mockito.when(ernbClient.searchWithPersonIdentifer("max123")).thenReturn(ernbResultInitial);//"de/st/max123"???
+
+    task.setErnbClient(ernbClient);
+
+    try {
+      task.execute(pendingReq, executionContext);
+
+      String bPk = (String)
+          pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
+      Assert.assertTrue("Wrong bpk", bPk.equals("bpkMax"));
+    } catch (final TaskExecutionException e) {
+      Assert.assertTrue("Wrong workflow, should not reach this point", false);
+    }
+  }
+
+  @Ignore
+  @Test
+  @DirtiesContext
+  /**
+   * Multiple matches found in ZMR and ErnB with detail search
+   */
+  public void testNode104() throws Exception {
+
+    //Mock ZMR initial search
+    ArrayList<RegisterResult> zmrResultInitial = new ArrayList<>();
+    zmrClient = Mockito.mock(DummyZmrClient.class);
+    Mockito.when(zmrClient.searchWithPersonIdentifer("max123")).thenReturn(zmrResultInitial);
+    ArrayList<RegisterResult> zmrResultSpecific = new ArrayList<>();
+    //String bpk, String pseudonym, String givenName, String familyName, String dateOfBirth,
+    //                        String placeOfBirth, String birthName, String taxNumber, PostalAddressType address
+    zmrResultSpecific.add(new RegisterResult("bpkMax","de/st/max1234", "Max", "Mustermann", "1111-01-01", null, null,
+        "tax123", null));
+    zmrResultSpecific.add(new RegisterResult("bpkMax1","de/st/max1235", "Max", "Mustermann", "1111-01-01", null, null,
+        "tax123", null));
+    Mockito.when(zmrClient.searchItSpecific("tax123")).thenReturn(zmrResultSpecific);
+
+
+    task.setZmrClient(zmrClient);
+
+    //Mock ernb initial search
+    ArrayList<RegisterResult> ernbResultInitial = new ArrayList<>();
+    ernbClient = Mockito.mock(DummyErnbClient.class);
+    Mockito.when(ernbClient.searchWithPersonIdentifer("max123")).thenReturn(ernbResultInitial);//"de/st/max123"???
+
+    task.setErnbClient(ernbClient);
+
+    try {
+      task.execute(pendingReq, executionContext);
+
+      Assert.assertTrue("Wrong workflow, should not reach this point/ get a bpk", false);
+
+    } catch (final TaskExecutionException e) {
+      Throwable origE = e.getOriginalException();
+      Assert.assertTrue("Wrong exception", (origE.getCause() instanceof ManualFixNecessaryException));
+    }
+  }
+
 
   @Test
   @DirtiesContext
-- 
cgit v1.2.3


From a1cffbe51cccef6b0cd7e238c384ac7f51ecb27f Mon Sep 17 00:00:00 2001
From: Alexander Marsalek <amarsalek@iaik.tugraz.at>
Date: Thu, 17 Dec 2020 13:18:37 +0100
Subject: country specific tests

---
 .../specific/modules/auth/eidas/v2/Constants.java  |   1 +
 .../handler/DeSpecificDetailSearchProcessor.java   |  18 +-
 .../ICountrySpecificDetailSearchProcessor.java     |  29 +-
 .../handler/ItSpecificDetailSearchProcessor.java   |  16 +-
 .../auth/eidas/v2/tasks/InitialSearchTask.java     |  71 ++---
 .../auth/eidas/v2/utils/EidasResponseUtils.java    |  17 ++
 .../v2/test/tasks/InitialSearchTaskFirstTest.java  | 305 +++++++++++++++++----
 .../resources/SpringTest-context_tasks_test.xml    |   7 +
 8 files changed, 327 insertions(+), 137 deletions(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java
index 7e07b5a3..ce48a88e 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java
@@ -138,6 +138,7 @@ public class Constants {
   public static final String eIDAS_ATTR_PLACEOFBIRTH = "PlaceOfBirth";
   public static final String eIDAS_ATTR_BIRTHNAME = "BirthName";
   public static final String eIDAS_ATTR_CURRENTADDRESS = "CurrentAddress";
+  public static final String eIDAS_ATTR_TAXREFERENCE = "TaxReference";
 
   public static final String eIDAS_ATTR_LEGALPERSONIDENTIFIER = "LegalPersonIdentifier";
   public static final String eIDAS_ATTR_LEGALNAME = "LegalName";
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/DeSpecificDetailSearchProcessor.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/DeSpecificDetailSearchProcessor.java
index 9fa13fe8..51d6952f 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/DeSpecificDetailSearchProcessor.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/DeSpecificDetailSearchProcessor.java
@@ -3,24 +3,10 @@ package at.asitplus.eidas.specific.modules.auth.eidas.v2.handler;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.MergedRegisterSearchResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernb.IErnbClient;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.IZmrClient;
-import org.springframework.beans.factory.annotation.Autowired;
 
 import java.util.ArrayList;
 
-public class DeSpecificDetailSearchProcessor implements ICountrySpecificDetailSearchProcessor {
-
-  @Autowired
-  private IErnbClient ernbClient;
-
-  @Autowired
-  private IZmrClient zmrClient;
-
-  @Override
-  public String getName() {
-    return this.getClass().getName();
-  }
+public class DeSpecificDetailSearchProcessor extends ICountrySpecificDetailSearchProcessor {
 
   @Override
   public boolean canHandle(String countryCode, SimpleEidasData eidData) {
@@ -47,7 +33,7 @@ public class DeSpecificDetailSearchProcessor implements ICountrySpecificDetailSe
 
     ArrayList<RegisterResult> resultsErnb =
         ernbClient.searchDeSpecific(eidData.getGivenName(), eidData.getFamilyName(), eidData.getDateOfBirth(),
-        eidData.getPlaceOfBirth(), eidData.getBirthName());
+            eidData.getPlaceOfBirth(), eidData.getBirthName());
     searchResult.setResultsErnb(resultsErnb);
     return searchResult;
   }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ICountrySpecificDetailSearchProcessor.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ICountrySpecificDetailSearchProcessor.java
index 887aef4a..3d6b35e9 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ICountrySpecificDetailSearchProcessor.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ICountrySpecificDetailSearchProcessor.java
@@ -25,25 +25,44 @@ package at.asitplus.eidas.specific.modules.auth.eidas.v2.handler;
 
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.MergedRegisterSearchResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernb.IErnbClient;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.IZmrClient;
+import org.springframework.beans.factory.annotation.Autowired;
 
-public interface ICountrySpecificDetailSearchProcessor {
+public abstract class ICountrySpecificDetailSearchProcessor {
+
+
+  protected IErnbClient ernbClient;
+  protected IZmrClient zmrClient;
+
+  @Autowired
+  public void setErnbClient(IErnbClient ernbClient) {
+    this.ernbClient = ernbClient;
+  }
+
+  @Autowired
+  public void setZmrClient(IZmrClient zmrClient) {
+    this.zmrClient = zmrClient;
+  }
 
   /**
    * Get a friendlyName of this post-processor implementation.
    *
    * @return
    */
-  String getName();
+  public String getName() {
+    return this.getClass().getName();
+  }
 
   /**
    * Check if this postProcessor is sensitive for a specific country.
    *
    * @param countryCode of the eID data that should be processed
-   * @param eidData eID data
+   * @param eidData     eID data
    * @return true if this implementation can handle the country, otherwise false
    */
-  boolean canHandle(String countryCode, SimpleEidasData eidData);
+  public abstract boolean canHandle(String countryCode, SimpleEidasData eidData);
 
-  MergedRegisterSearchResult search(SimpleEidasData eidData);
+  public abstract MergedRegisterSearchResult search(SimpleEidasData eidData);
 
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ItSpecificDetailSearchProcessor.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ItSpecificDetailSearchProcessor.java
index e3b9e702..d055345a 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ItSpecificDetailSearchProcessor.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ItSpecificDetailSearchProcessor.java
@@ -3,24 +3,10 @@ package at.asitplus.eidas.specific.modules.auth.eidas.v2.handler;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.MergedRegisterSearchResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernb.IErnbClient;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.IZmrClient;
-import org.springframework.beans.factory.annotation.Autowired;
 
 import java.util.ArrayList;
 
-public class ItSpecificDetailSearchProcessor implements ICountrySpecificDetailSearchProcessor {
-
-  @Autowired
-  private IErnbClient ernbClient;
-
-  @Autowired
-  private IZmrClient zmrClient;
-
-  @Override
-  public String getName() {
-    return this.getClass().getName();
-  }
+public class ItSpecificDetailSearchProcessor extends ICountrySpecificDetailSearchProcessor {
 
   @Override
   public boolean canHandle(String countryCode, SimpleEidasData eidData) {
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
index e9422c56..2ae278dc 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
@@ -53,12 +53,10 @@ import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.context.ApplicationContext;
 import org.springframework.stereotype.Component;
 
-import javax.annotation.PostConstruct;
 import javax.servlet.http.HttpServletRequest;
 import javax.servlet.http.HttpServletResponse;
 import java.util.ArrayList;
 import java.util.HashMap;
-import java.util.Iterator;
 import java.util.List;
 import java.util.Map;
 
@@ -71,52 +69,14 @@ import java.util.Map;
 @Component("InitialSearchTask")
 public class InitialSearchTask extends AbstractAuthServletTask {
 
-  private final List<ICountrySpecificDetailSearchProcessor> handlers = new ArrayList<>();
+  private List<ICountrySpecificDetailSearchProcessor> handlers = new ArrayList<>();
 
-  //  @Autowired
-  //  private AuthBlockSigningService authBlockSigner;
-  //  @Autowired
-  //  private IConfiguration basicConfig;
-  //  @Autowired
-  //  private SzrClient szrClient;
-  //  @Autowired
-  //  private ICcSpecificEidProcessingService eidPostProcessor;
-
-  //  private static final String EID_STATUS = "urn:eidgvat:eid.status.eidas";
   @Autowired
   private ApplicationContext context;
 
-  @Autowired
   private IErnbClient ernbClient;
-
-  @Autowired
   private IZmrClient zmrClient;
 
-  @PostConstruct
-  private void initialize() {
-    log.debug("Initialize country specific detail search services ... ");
-    final Map<String, ICountrySpecificDetailSearchProcessor> postProcessors = context.getBeansOfType(
-        ICountrySpecificDetailSearchProcessor.class);
-    final Iterator<Map.Entry<String, ICountrySpecificDetailSearchProcessor>> iterator =
-        postProcessors.entrySet().iterator();
-    while (iterator.hasNext()) {
-      final Map.Entry<String, ICountrySpecificDetailSearchProcessor> el = iterator.next();
-      log.debug("Find country specific detail search services with name: " + el.getKey());
-      handlers.add(el.getValue());
-
-    }
-
-    //    log.trace("Sorting country specific detail search services on priority ... ");
-    //    Collections.sort(handlers, (thisAuthModule, otherAuthModule) -> {
-    //      final int thisOrder = thisAuthModule.getPriority();
-    //      final int otherOrder = otherAuthModule.getPriority();
-    //      return thisOrder < otherOrder ? 1 : thisOrder == otherOrder ? 0 : -1;
-    //    });
-
-    log.info("# " + handlers.size() + " country specific detail search services are registrated");
-
-  }
-
   /*
    * (non-Javadoc)
    *
@@ -133,6 +93,9 @@ public class InitialSearchTask extends AbstractAuthServletTask {
       final ILightResponse eidasResponse = authProcessData
           .getGenericDataFromSession(Constants.DATA_FULL_EIDAS_RESPONSE, ILightResponse.class);
 
+      ImmutableMap<AttributeDefinition<?>, ImmutableSet<? extends AttributeValue<?>>> aa =
+          eidasResponse.getAttributes().getAttributeMap();
+      
       final Map<String, Object> simpleAttrMap = convertEidasAttrToSimpleMap(
           eidasResponse.getAttributes().getAttributeMap());
 
@@ -140,7 +103,7 @@ public class InitialSearchTask extends AbstractAuthServletTask {
       final SimpleEidasData eidData = convertSimpleMapToSimpleData(simpleAttrMap);
 
       String bpK = step2(eidData);
-      authProcessData.setGenericDataToSession(Constants.DATA_RESULT_MATCHING_BPK,bpK);
+      authProcessData.setGenericDataToSession(Constants.DATA_RESULT_MATCHING_BPK, bpK);
     } catch (final Exception e) {
       log.error("Initial search FAILED.", e);
       throw new TaskExecutionException(pendingReq, "Initial search FAILED.", e);
@@ -157,7 +120,7 @@ public class InitialSearchTask extends AbstractAuthServletTask {
       return step3(result, eidData);
     } //else if (result.getResultCount() > 1) {
     throw new TaskExecutionException(pendingReq, "Initial search - Kitt Process necessary.",
-          new ManualFixNecessaryException(personIdentifier));
+        new ManualFixNecessaryException(personIdentifier));
     //    }
     //    return null;
   }
@@ -189,6 +152,11 @@ public class InitialSearchTask extends AbstractAuthServletTask {
     simpleEidasData.setAddress(EidasResponseUtils.processAddress(
         eidasAttrMap.get(Constants.eIDAS_ATTR_CURRENTADDRESS)));
 
+    if (eidasAttrMap.containsKey(Constants.eIDAS_ATTR_TAXREFERENCE)) {
+      simpleEidasData.setTaxNumber(EidasResponseUtils.processTaxReference(
+          eidasAttrMap.get(Constants.eIDAS_ATTR_TAXREFERENCE)));
+    }
+
     //TODO other additional attributes
     return simpleEidasData;
   }
@@ -211,10 +179,10 @@ public class InitialSearchTask extends AbstractAuthServletTask {
   }
 
   private String step4(MergedRegisterSearchResult result,
-                  SimpleEidasData eidData) throws WorkflowException {
+                       SimpleEidasData eidData) throws WorkflowException {
     log.debug("Update " + result + " with " + eidData);
     //TODO
-    
+
 
     return result.getBpk();
   }
@@ -242,7 +210,7 @@ public class InitialSearchTask extends AbstractAuthServletTask {
   }
 
   private String step6(ICountrySpecificDetailSearchProcessor countrySpecificDetailSearchProcessor,
-                     MergedRegisterSearchResult initialSearchResult, SimpleEidasData eidData)
+                       MergedRegisterSearchResult initialSearchResult, SimpleEidasData eidData)
       throws TaskExecutionException {
     //6 country specific search
     MergedRegisterSearchResult countrySpecificDetailSearchResult =
@@ -274,7 +242,7 @@ public class InitialSearchTask extends AbstractAuthServletTask {
   }
 
   private String step8(MergedRegisterSearchResult initialSearchResult,
-                  SimpleEidasData eidData) {
+                       SimpleEidasData eidData) {
     MergedRegisterSearchResult mdsSearchResult = new MergedRegisterSearchResult();
 
     ArrayList<RegisterResult> resultsZmr =
@@ -351,11 +319,20 @@ public class InitialSearchTask extends AbstractAuthServletTask {
 
   //just for testing
   //TODO is there a nicer solution?
+  @Autowired
   public void setErnbClient(IErnbClient ernbClient) {
     this.ernbClient = ernbClient;
   }
 
+  @Autowired
   public void setZmrClient(IZmrClient zmrClient) {
     this.zmrClient = zmrClient;
   }
+
+  @Autowired
+  public void setHandlers(List<ICountrySpecificDetailSearchProcessor> handlers) {
+    this.handlers = handlers;
+    log.info("# " + handlers.size() + " country specific detail search services are registrated");
+  }
+
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/EidasResponseUtils.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/EidasResponseUtils.java
index 5a1db0e0..55c1c31a 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/EidasResponseUtils.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/EidasResponseUtils.java
@@ -352,6 +352,23 @@ public class EidasResponseUtils {
         EidasResponseUtils.parseEidasPersonalIdentifier((String) personalIdObj);
 
     return eIdentifier.getThird();
+  }
+
+  /**
+   * Post-Process the eIDAS TaxReference attribute.
+   *
+   * @param taxReferenceObj eIDAS TaxReference attribute information
+   * @return formated user's TaxReference
+   * @throws EidasAttributeException    if NO attribute is available
+   * @throws EidPostProcessingException if post-processing fails
+   */
+  public static String processTaxReference(Object taxReferenceObj) throws EidPostProcessingException,
+      EidasAttributeException {
+    if (taxReferenceObj == null || !(taxReferenceObj instanceof String)) {
+      throw new EidasAttributeException(Constants.eIDAS_ATTR_CURRENTGIVENNAME);
+    }
+
+    return (String) taxReferenceObj;
 
   }
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
index 5c75d1e4..64a73bda 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
@@ -5,6 +5,9 @@ import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernb.DummyErnbClient;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernb.IErnbClient;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.ManualFixNecessaryException;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.DeSpecificDetailSearchProcessor;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.ICountrySpecificDetailSearchProcessor;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.ItSpecificDetailSearchProcessor;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.InitialSearchTask;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.DummyZmrClient;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.IZmrClient;
@@ -25,7 +28,6 @@ import org.jetbrains.annotations.NotNull;
 import org.junit.Assert;
 import org.junit.Before;
 import org.junit.BeforeClass;
-import org.junit.Ignore;
 import org.junit.Test;
 import org.junit.runner.RunWith;
 import org.mockito.InjectMocks;
@@ -47,6 +49,7 @@ import java.io.IOException;
 import java.net.URI;
 import java.net.URISyntaxException;
 import java.util.ArrayList;
+import java.util.List;
 
 @RunWith(SpringJUnit4ClassRunner.class)
 
@@ -107,54 +110,55 @@ public class InitialSearchTaskFirstTest {
   @Test
   @DirtiesContext
   /**
-   * Two matches found in ZMR
+   * One match, but register update needed
    */
-  public void testNode101a() throws Exception {
+  public void testNode100a() throws Exception {
 
     //Mock ZMR
     ArrayList<RegisterResult> zmrResult = new ArrayList<>();
-    zmrResult.add(new RegisterResult("bpkMax","de/st/max123", "Max", "Mustermann", "1111-01-01"));
-    zmrResult.add(new RegisterResult("bpkMax","de/st/max123", "Maximilian", "Mustermann", "1111-01-01"));
+    String randomBpk = RandomStringUtils.randomNumeric(6);
+    zmrResult.add(new RegisterResult(randomBpk,"de/st/max123", "Max_new", "Mustermann", "2011-01-01"));
+
     zmrClient = Mockito.mock(DummyZmrClient.class);
     Mockito.when(zmrClient.searchWithPersonIdentifer("max123")).thenReturn(zmrResult);//"de/st/max123"???
     task.setZmrClient(zmrClient);
 
     //Mock ernb
     ArrayList<RegisterResult> ernbResult = new ArrayList<>();
+
     ernbClient = Mockito.mock(DummyErnbClient.class);
     Mockito.when(ernbClient.searchWithPersonIdentifer("max123")).thenReturn(ernbResult);//"de/st/max123"???
     task.setErnbClient(ernbClient);
 
     try {
       task.execute(pendingReq, executionContext);
-      Assert.assertTrue("Wrong workflow, should not reach this point/ get a bpk", false);
       String bPk = (String)
           pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
+      Assert.assertTrue("Wrong bpk", bPk.equals(randomBpk));
 
     } catch (final TaskExecutionException e) {
-      Throwable origE = e.getOriginalException();
-      Assert.assertTrue("Wrong exception", (origE.getCause() instanceof ManualFixNecessaryException));
+      Assert.assertTrue("Wrong workflow, should not reach this point", false);
     }
   }
 
-
   @Test
   @DirtiesContext
   /**
-   * Two matches found in ErnB
+   * One match, but register update needed
    */
-  public void testNode101b() throws Exception {
+  public void testNode100b() throws Exception {
 
     //Mock ZMR
     ArrayList<RegisterResult> zmrResult = new ArrayList<>();
+
     zmrClient = Mockito.mock(DummyZmrClient.class);
     Mockito.when(zmrClient.searchWithPersonIdentifer("max123")).thenReturn(zmrResult);//"de/st/max123"???
     task.setZmrClient(zmrClient);
 
     //Mock ernb
     ArrayList<RegisterResult> ernbResult = new ArrayList<>();
-    ernbResult.add(new RegisterResult("bpkMax","de/st/max123", "Max", "Mustermann", "1111-01-01"));
-    ernbResult.add(new RegisterResult("bpkMax","de/st/max123", "Maximilian", "Mustermann", "1111-01-01"));
+    String randomBpk = RandomStringUtils.randomNumeric(6);
+    ernbResult.add(new RegisterResult(randomBpk,"de/st/max123", "Max_new", "Mustermann", "2011-01-01"));
 
     ernbClient = Mockito.mock(DummyErnbClient.class);
     Mockito.when(ernbClient.searchWithPersonIdentifer("max123")).thenReturn(ernbResult);//"de/st/max123"???
@@ -162,68 +166,67 @@ public class InitialSearchTaskFirstTest {
 
     try {
       task.execute(pendingReq, executionContext);
-      Assert.assertTrue("Wrong workflow, should not reach this point/ get a bpk", false);
       String bPk = (String)
           pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
+      Assert.assertTrue("Wrong bpk", bPk.equals(randomBpk));
 
     } catch (final TaskExecutionException e) {
-      Throwable origE = e.getOriginalException();
-      Assert.assertTrue("Wrong exception", (origE.getCause() instanceof ManualFixNecessaryException));
+      Assert.assertTrue("Wrong workflow, should not reach this point", false);
     }
   }
 
+
   @Test
   @DirtiesContext
   /**
-   * One match, but register update needed
+   * Two matches found in ZMR
    */
-  public void testNode100a() throws Exception {
+  public void testNode101a() throws Exception {
 
     //Mock ZMR
     ArrayList<RegisterResult> zmrResult = new ArrayList<>();
-    String randomBpk = RandomStringUtils.randomNumeric(6);
-    zmrResult.add(new RegisterResult(randomBpk,"de/st/max123", "Max_new", "Mustermann", "1111-01-01"));
-
+    zmrResult.add(new RegisterResult("bpkMax","de/st/max123", "Max", "Mustermann", "2011-01-01"));
+    zmrResult.add(new RegisterResult("bpkMax","de/st/max123", "Maximilian", "Mustermann", "2011-01-01"));
     zmrClient = Mockito.mock(DummyZmrClient.class);
     Mockito.when(zmrClient.searchWithPersonIdentifer("max123")).thenReturn(zmrResult);//"de/st/max123"???
     task.setZmrClient(zmrClient);
 
     //Mock ernb
     ArrayList<RegisterResult> ernbResult = new ArrayList<>();
-
     ernbClient = Mockito.mock(DummyErnbClient.class);
     Mockito.when(ernbClient.searchWithPersonIdentifer("max123")).thenReturn(ernbResult);//"de/st/max123"???
     task.setErnbClient(ernbClient);
 
     try {
       task.execute(pendingReq, executionContext);
+      Assert.assertTrue("Wrong workflow, should not reach this point/ get a bpk", false);
       String bPk = (String)
           pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
-      Assert.assertTrue("Wrong bpk", bPk.equals(randomBpk));
 
     } catch (final TaskExecutionException e) {
-      Assert.assertTrue("Wrong workflow, should not reach this point", false);
+      Throwable origE = e.getOriginalException();
+      Assert.assertTrue("Wrong exception", (origE.getCause() instanceof ManualFixNecessaryException));
     }
   }
 
+
   @Test
   @DirtiesContext
   /**
-   * One match, but register update needed
+   * Two matches found in ErnB
    */
-  public void testNode100b() throws Exception {
+  public void testNode101b() throws Exception {
 
     //Mock ZMR
     ArrayList<RegisterResult> zmrResult = new ArrayList<>();
-
     zmrClient = Mockito.mock(DummyZmrClient.class);
     Mockito.when(zmrClient.searchWithPersonIdentifer("max123")).thenReturn(zmrResult);//"de/st/max123"???
     task.setZmrClient(zmrClient);
 
     //Mock ernb
     ArrayList<RegisterResult> ernbResult = new ArrayList<>();
-    String randomBpk = RandomStringUtils.randomNumeric(6);
-    ernbResult.add(new RegisterResult(randomBpk,"de/st/max123", "Max_new", "Mustermann", "1111-01-01"));
+    ernbResult.add(new RegisterResult("bpkMax","de/st/max123", "Max", "Mustermann", "2011-01-01"));
+    ernbResult.add(new RegisterResult("bpkMax","de/st/max123", "Maximilian", "Mustermann", "2011-01-01"));
 
     ernbClient = Mockito.mock(DummyErnbClient.class);
     Mockito.when(ernbClient.searchWithPersonIdentifer("max123")).thenReturn(ernbResult);//"de/st/max123"???
@@ -231,12 +234,13 @@ public class InitialSearchTaskFirstTest {
 
     try {
       task.execute(pendingReq, executionContext);
+      Assert.assertTrue("Wrong workflow, should not reach this point/ get a bpk", false);
       String bPk = (String)
           pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
-      Assert.assertTrue("Wrong bpk", bPk.equals(randomBpk));
 
     } catch (final TaskExecutionException e) {
-      Assert.assertTrue("Wrong workflow, should not reach this point", false);
+      Throwable origE = e.getOriginalException();
+      Assert.assertTrue("Wrong exception", (origE.getCause() instanceof ManualFixNecessaryException));
     }
   }
 
@@ -255,7 +259,7 @@ public class InitialSearchTaskFirstTest {
 
     //Mock ernb
     ArrayList<RegisterResult> ernbResult = new ArrayList<>();
-    ernbResult.add(new RegisterResult("bpkMax","de/st/max123", "Max", "Mustermann", "1111-01-01"));
+    ernbResult.add(new RegisterResult("bpkMax","de/st/max123", "Max", "Mustermann", "2011-01-01"));
 
     ernbClient = Mockito.mock(DummyErnbClient.class);
     Mockito.when(ernbClient.searchWithPersonIdentifer("max123")).thenReturn(ernbResult);//"de/st/max123"???
@@ -281,7 +285,7 @@ public class InitialSearchTaskFirstTest {
 
     //Mock ZMR
     ArrayList<RegisterResult> zmrResult = new ArrayList<>();
-    zmrResult.add(new RegisterResult("bpkMax","de/st/max123", "Max", "Mustermann", "1111-01-01"));
+    zmrResult.add(new RegisterResult("bpkMax","de/st/max123", "Max", "Mustermann", "2011-01-01"));
 
     zmrClient = Mockito.mock(DummyZmrClient.class);
     Mockito.when(zmrClient.searchWithPersonIdentifer("max123")).thenReturn(zmrResult);//"de/st/max123"???
@@ -305,13 +309,18 @@ public class InitialSearchTaskFirstTest {
     }
   }
 
-  @Ignore
   @Test
   @DirtiesContext
   /**
    * One match found in ZMR and ErnB with detail search
    */
-  public void testNode103() throws Exception {
+  public void testNode103IT() throws Exception {
+    String bpkRegister = "bpkMax";
+ String taxNumber = "tax123";
+    final AuthenticationResponse response = buildDummyAuthResponseMaxMustermannIT_Tax(taxNumber);
+    TestRequestImpl pendingReq1 = new TestRequestImpl();
+    pendingReq1.getSessionData(AuthProcessDataWrapper.class)
+        .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
 
     //Mock ZMR initial search
     ArrayList<RegisterResult> zmrResultInitial = new ArrayList<>();
@@ -320,10 +329,10 @@ public class InitialSearchTaskFirstTest {
     ArrayList<RegisterResult> zmrResultSpecific = new ArrayList<>();
     //String bpk, String pseudonym, String givenName, String familyName, String dateOfBirth,
     //                        String placeOfBirth, String birthName, String taxNumber, PostalAddressType address
-    zmrResultSpecific.add(new RegisterResult("bpkMax","de/st/max1234", "Max", "Mustermann", "1111-01-01", null, null,
-        "tax123", null));
+    zmrResultSpecific.add(new RegisterResult(bpkRegister,"it/st/max1234", "Max", "Mustermann", "2011-01-01", null,
+        null, taxNumber, null));
 
-    Mockito.when(zmrClient.searchItSpecific("tax123")).thenReturn(zmrResultSpecific);
+    Mockito.when(zmrClient.searchItSpecific(taxNumber)).thenReturn(zmrResultSpecific);
     task.setZmrClient(zmrClient);
 
     //Mock ernb initial search
@@ -333,24 +342,160 @@ public class InitialSearchTaskFirstTest {
 
     task.setErnbClient(ernbClient);
 
+    //Mock country specific search
+    List<ICountrySpecificDetailSearchProcessor> handlers = new ArrayList<>();
+    ItSpecificDetailSearchProcessor it = new ItSpecificDetailSearchProcessor();
+    it.setErnbClient(ernbClient);
+    it.setZmrClient(zmrClient);
+    handlers.add(it);
+    task.setHandlers(handlers);
+
     try {
-      task.execute(pendingReq, executionContext);
+      task.execute(pendingReq1, executionContext);
 
       String bPk = (String)
-          pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
-      Assert.assertTrue("Wrong bpk", bPk.equals("bpkMax"));
+          pendingReq1.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
+      Assert.assertTrue("Wrong bpk", bPk.equals(bpkRegister));
+    } catch (final TaskExecutionException e) {
+      Assert.assertTrue("Wrong workflow, should not reach this point", false);
+    }
+  }
+
+  @Test
+  @DirtiesContext
+  /**
+   * Multiple matches found in ZMR and ErnB with detail search
+   */
+  public void testNode103DE() throws Exception {
+    String givenName = "Max";
+    String familyName = "Mustermann";
+    String pseudonym = "de/st/max1234";
+    String bpk = "bpkMax";
+    String dateOfBirth = "2011-01-01";
+    String placeOfBirth = "München";
+    String birthName = "BabyMax";
+    final AuthenticationResponse response = buildDummyAuthResponseDE(givenName, familyName, pseudonym,
+        dateOfBirth, placeOfBirth, birthName);
+    TestRequestImpl pendingReq1 = new TestRequestImpl();
+    pendingReq1.getSessionData(AuthProcessDataWrapper.class)
+        .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
+
+    //Mock ZMR initial search
+    ArrayList<RegisterResult> zmrResultInitial = new ArrayList<>();
+    zmrClient = Mockito.mock(DummyZmrClient.class);
+    Mockito.when(zmrClient.searchWithPersonIdentifer("max123")).thenReturn(zmrResultInitial);
+    ArrayList<RegisterResult> zmrResultSpecific = new ArrayList<>();
+
+    zmrResultSpecific.add(new RegisterResult(bpk, pseudonym, givenName, familyName, dateOfBirth, placeOfBirth, birthName,
+        null, null));
+
+    //.searchDeSpecific(eidData.getGivenName(), eidData.getFamilyName(), eidData.getDateOfBirth(),
+    //            eidData.getPlaceOfBirth(), eidData.getBirthName()
+    Mockito.when(zmrClient.searchDeSpecific(givenName, familyName, dateOfBirth, placeOfBirth, birthName)).thenReturn(zmrResultSpecific);
+
+    task.setZmrClient(zmrClient);
+
+    //Mock ernb initial search
+    ArrayList<RegisterResult> ernbResultInitial = new ArrayList<>();
+    ernbClient = Mockito.mock(DummyErnbClient.class);
+    Mockito.when(ernbClient.searchWithPersonIdentifer("max123")).thenReturn(ernbResultInitial);//"de/st/max123"???
+
+    task.setErnbClient(ernbClient);
+
+    //Mock country specific search
+    List<ICountrySpecificDetailSearchProcessor> handlers = new ArrayList<>();
+    DeSpecificDetailSearchProcessor de = new DeSpecificDetailSearchProcessor();
+    de.setErnbClient(ernbClient);
+    de.setZmrClient(zmrClient);
+    handlers.add(de);
+    task.setHandlers(handlers);
+
+    try {
+      task.execute(pendingReq1, executionContext);
+
+      String bPk = (String)
+          pendingReq1.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
+      Assert.assertTrue("Wrong bpk", bPk.equals(bpk));
     } catch (final TaskExecutionException e) {
       Assert.assertTrue("Wrong workflow, should not reach this point", false);
     }
   }
 
-  @Ignore
   @Test
   @DirtiesContext
   /**
    * Multiple matches found in ZMR and ErnB with detail search
    */
-  public void testNode104() throws Exception {
+  public void testNode104DE() throws Exception {
+    String givenName = "Max";
+    String familyName = "Mustermann";
+    String pseudonym1 = "de/st/max1234";
+    String pseudonym2 = "de/st/max12345";
+    String bpk1 = "bpkMax";
+    String bpk2 = "bpkMax1";
+    String dateOfBirth = "2011-01-01";
+    String placeOfBirth = "München";
+    String birthName = "BabyMax";
+    final AuthenticationResponse response = buildDummyAuthResponseDE(givenName, familyName, pseudonym1,
+        dateOfBirth, placeOfBirth, birthName);
+    TestRequestImpl pendingReq1 = new TestRequestImpl();
+    pendingReq1.getSessionData(AuthProcessDataWrapper.class)
+        .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
+
+    //Mock ZMR initial search
+    ArrayList<RegisterResult> zmrResultInitial = new ArrayList<>();
+    zmrClient = Mockito.mock(DummyZmrClient.class);
+    Mockito.when(zmrClient.searchWithPersonIdentifer("max123")).thenReturn(zmrResultInitial);
+    ArrayList<RegisterResult> zmrResultSpecific = new ArrayList<>();
+
+    zmrResultSpecific.add(new RegisterResult(bpk1, pseudonym1, givenName, familyName, dateOfBirth, placeOfBirth, birthName,
+        null, null));
+    zmrResultSpecific.add(new RegisterResult(bpk2, pseudonym2, givenName, familyName, dateOfBirth, placeOfBirth, birthName,
+        null, null));
+    //.searchDeSpecific(eidData.getGivenName(), eidData.getFamilyName(), eidData.getDateOfBirth(),
+    //            eidData.getPlaceOfBirth(), eidData.getBirthName()
+    Mockito.when(zmrClient.searchDeSpecific(givenName, familyName, dateOfBirth, placeOfBirth, birthName)).thenReturn(zmrResultSpecific);
+
+    task.setZmrClient(zmrClient);
+
+    //Mock ernb initial search
+    ArrayList<RegisterResult> ernbResultInitial = new ArrayList<>();
+    ernbClient = Mockito.mock(DummyErnbClient.class);
+    Mockito.when(ernbClient.searchWithPersonIdentifer("max123")).thenReturn(ernbResultInitial);//"de/st/max123"???
+
+    task.setErnbClient(ernbClient);
+
+    //Mock country specific search
+    List<ICountrySpecificDetailSearchProcessor> handlers = new ArrayList<>();
+    DeSpecificDetailSearchProcessor de = new DeSpecificDetailSearchProcessor();
+    de.setErnbClient(ernbClient);
+    de.setZmrClient(zmrClient);
+    handlers.add(de);
+    task.setHandlers(handlers);
+
+    try {
+      task.execute(pendingReq1, executionContext);
+
+      Assert.assertTrue("Wrong workflow, should not reach this point/ get a bpk", false);
+
+    } catch (final TaskExecutionException e) {
+      Throwable origE = e.getOriginalException();
+      Assert.assertTrue("Wrong exception", (origE.getCause() instanceof ManualFixNecessaryException));
+    }
+  }
+
+  @Test
+  @DirtiesContext
+  /**
+   * Multiple matches found in ZMR and ErnB with detail search
+   */
+  public void testNode104IT() throws Exception {
+
+    String fakeTaxNumber = "tax123";
+    final AuthenticationResponse response = buildDummyAuthResponseMaxMustermannIT_Tax(fakeTaxNumber);
+    TestRequestImpl pendingReq1 = new TestRequestImpl();
+    pendingReq1.getSessionData(AuthProcessDataWrapper.class)
+        .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
 
     //Mock ZMR initial search
     ArrayList<RegisterResult> zmrResultInitial = new ArrayList<>();
@@ -359,11 +504,11 @@ public class InitialSearchTaskFirstTest {
     ArrayList<RegisterResult> zmrResultSpecific = new ArrayList<>();
     //String bpk, String pseudonym, String givenName, String familyName, String dateOfBirth,
     //                        String placeOfBirth, String birthName, String taxNumber, PostalAddressType address
-    zmrResultSpecific.add(new RegisterResult("bpkMax","de/st/max1234", "Max", "Mustermann", "1111-01-01", null, null,
-        "tax123", null));
-    zmrResultSpecific.add(new RegisterResult("bpkMax1","de/st/max1235", "Max", "Mustermann", "1111-01-01", null, null,
-        "tax123", null));
-    Mockito.when(zmrClient.searchItSpecific("tax123")).thenReturn(zmrResultSpecific);
+    zmrResultSpecific.add(new RegisterResult("bpkMax","it/st/max1234", "Max", "Mustermann", "2011-01-01", null, null,
+        fakeTaxNumber, null));
+    zmrResultSpecific.add(new RegisterResult("bpkMax1","it/st/max1235", "Max", "Mustermann", "2011-01-01", null, null,
+        fakeTaxNumber, null));
+    Mockito.when(zmrClient.searchItSpecific(fakeTaxNumber)).thenReturn(zmrResultSpecific);
 
 
     task.setZmrClient(zmrClient);
@@ -375,8 +520,16 @@ public class InitialSearchTaskFirstTest {
 
     task.setErnbClient(ernbClient);
 
+    //Mock country specific search
+    List<ICountrySpecificDetailSearchProcessor> handlers = new ArrayList<>();
+    ItSpecificDetailSearchProcessor it = new ItSpecificDetailSearchProcessor();
+    it.setErnbClient(ernbClient);
+    it.setZmrClient(zmrClient);
+    handlers.add(it);
+    task.setHandlers(handlers);
+
     try {
-      task.execute(pendingReq, executionContext);
+      task.execute(pendingReq1, executionContext);
 
       Assert.assertTrue("Wrong workflow, should not reach this point/ get a bpk", false);
 
@@ -386,7 +539,6 @@ public class InitialSearchTaskFirstTest {
     }
   }
 
-
   @Test
   @DirtiesContext
   /**
@@ -427,12 +579,35 @@ public class InitialSearchTaskFirstTest {
   @NotNull
   private AuthenticationResponse buildDummyAuthResponseMaxMustermann() throws URISyntaxException {
     return buildDummyAuthResponse("Max", "Mustermann",
-        "de/st/max123", "1111-01-01");
+        "de/st/max123", "2011-01-01");
+  }
+
+  private AuthenticationResponse buildDummyAuthResponseMaxMustermannIT() throws URISyntaxException {
+    return buildDummyAuthResponse("Max", "Mustermann",
+        "it/st/max123", "2011-01-01");
+  }
+
+  private AuthenticationResponse buildDummyAuthResponseMaxMustermannIT_Tax(String taxNumber) throws URISyntaxException {
+    return buildDummyAuthResponse("Max", "Mustermann",
+        "it/st/max123", "2011-01-01", taxNumber, null, null);
   }
 
   @NotNull
   private AuthenticationResponse buildDummyAuthResponse(String givenName, String familyName, String identifier,
                                                         String dateOfBirth) throws URISyntaxException {
+    return buildDummyAuthResponse(givenName, familyName, identifier, dateOfBirth, null, null, null);
+  }
+
+  @NotNull
+  private AuthenticationResponse buildDummyAuthResponseDE(String givenName, String familyName, String identifier,
+                                                        String dateOfBirth, String placeOfBirth,
+                                                          String birthName) throws URISyntaxException {
+    return buildDummyAuthResponse(givenName, familyName, identifier, dateOfBirth, null, placeOfBirth, birthName);
+  }
+  @NotNull
+  private AuthenticationResponse buildDummyAuthResponse(String givenName, String familyName, String identifier,
+                                                        String dateOfBirth, String taxNumber, String placeOfBirth,
+                                                        String birthName) throws URISyntaxException {
     final AttributeDefinition attributeDef = AttributeDefinition.builder()
         .friendlyName(Constants.eIDAS_ATTR_PERSONALIDENTIFIER).nameUri(new URI("ad", "sd", "ff"))
         .personType(PersonType.LEGAL_PERSON).xmlType(new QName("http://saf", "as", "af"))
@@ -449,12 +624,34 @@ public class InitialSearchTaskFirstTest {
         .friendlyName(Constants.eIDAS_ATTR_DATEOFBIRTH).nameUri(new URI("ad", "sd", "fffff"))
         .personType(PersonType.LEGAL_PERSON).xmlType(new QName("http://saf", "as", "affff"))
         .attributeValueMarshaller("eu.eidas.auth.commons.attribute.impl.DateTimeAttributeValueMarshaller").build();
-
-    final ImmutableAttributeMap attributeMap = ImmutableAttributeMap.builder()
+    final AttributeDefinition attributeDef5 = AttributeDefinition.builder()
+        .friendlyName(Constants.eIDAS_ATTR_TAXREFERENCE).nameUri(new URI("ad", "sd", "ffffff"))
+        .personType(PersonType.LEGAL_PERSON).xmlType(new QName("http://saf", "as", "afffff"))
+        .attributeValueMarshaller("eu.eidas.auth.commons.attribute.impl.LiteralStringAttributeValueMarshaller").build();
+    final AttributeDefinition attributeDef6 = AttributeDefinition.builder()
+        .friendlyName(Constants.eIDAS_ATTR_PLACEOFBIRTH).nameUri(new URI("ad", "sd", "fffffff"))
+        .personType(PersonType.LEGAL_PERSON).xmlType(new QName("http://saf", "as", "affffff"))
+        .attributeValueMarshaller("eu.eidas.auth.commons.attribute.impl.LiteralStringAttributeValueMarshaller").build();
+    final AttributeDefinition attributeDef7 = AttributeDefinition.builder()
+        .friendlyName(Constants.eIDAS_ATTR_BIRTHNAME).nameUri(new URI("ad", "sd", "ffffffff"))
+        .personType(PersonType.LEGAL_PERSON).xmlType(new QName("http://saf", "as", "afffffff"))
+        .attributeValueMarshaller("eu.eidas.auth.commons.attribute.impl.LiteralStringAttributeValueMarshaller").build();
+    ImmutableAttributeMap.Builder builder = ImmutableAttributeMap.builder()
         .put(attributeDef, identifier)
         .put(attributeDef2, familyName)
         .put(attributeDef3, givenName)
-        .put(attributeDef4, dateOfBirth).build();
+        .put(attributeDef4, dateOfBirth);
+
+    if(taxNumber != null) {
+      builder.put(attributeDef5, taxNumber);
+    }
+    if(birthName != null) {
+      builder.put(attributeDef7, birthName);
+    }
+    if(placeOfBirth != null) {
+      builder.put(attributeDef6, placeOfBirth);
+    }
+    final ImmutableAttributeMap attributeMap = builder.build();
 
     val b = new AuthenticationResponse.Builder();
     return b.id("aasdf").issuer("asd").subject("asf").statusCode("200").inResponseTo("asdf").subjectNameIdFormat(
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_tasks_test.xml b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_tasks_test.xml
index 6610fe04..10d480e0 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_tasks_test.xml
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_tasks_test.xml
@@ -71,4 +71,11 @@
   <bean id="ZmrClientForeIDAS"
         class="at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.DummyZmrClient" />
 
+  <bean id="DE-Specific-Search"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.DeSpecificDetailSearchProcessor">
+  </bean>
+
+  <bean id="IT-Specific-Search"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.ItSpecificDetailSearchProcessor">
+  </bean>
 </beans>
\ No newline at end of file
-- 
cgit v1.2.3


From 0ed301fe3628f5d646f1fc44e5717ed0e42d90fe Mon Sep 17 00:00:00 2001
From: Alexander Marsalek <amarsalek@iaik.tugraz.at>
Date: Thu, 17 Dec 2020 14:58:11 +0100
Subject: added register update method

---
 .../modules/auth/eidas/v2/ernb/DummyErnbClient.java    |  6 ++++++
 .../modules/auth/eidas/v2/ernb/IErnbClient.java        |  2 ++
 .../modules/auth/eidas/v2/tasks/InitialSearchTask.java | 18 ++++++++++++++++--
 .../modules/auth/eidas/v2/zmr/DummyZmrClient.java      |  6 ++++++
 .../specific/modules/auth/eidas/v2/zmr/IZmrClient.java |  2 ++
 5 files changed, 32 insertions(+), 2 deletions(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernb/DummyErnbClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernb/DummyErnbClient.java
index 7e926c8e..0c8a2f59 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernb/DummyErnbClient.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernb/DummyErnbClient.java
@@ -1,6 +1,7 @@
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.ernb;
 
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
 import org.springframework.stereotype.Service;
 
 import java.util.ArrayList;
@@ -37,6 +38,11 @@ public class DummyErnbClient implements IErnbClient {
     return resultEmpty();//TODO
   }
 
+  @Override
+  public void update(RegisterResult registerResult, SimpleEidasData eidData) {
+    //TODO
+  }
+
   private ArrayList<RegisterResult> resultEmpty() {
     return new ArrayList<RegisterResult>();//Nobody found
   }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernb/IErnbClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernb/IErnbClient.java
index f8a41cfe..cda4c426 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernb/IErnbClient.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernb/IErnbClient.java
@@ -1,6 +1,7 @@
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.ernb;
 
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
 
 import java.util.ArrayList;
 
@@ -15,4 +16,5 @@ public interface IErnbClient {
 
   ArrayList<RegisterResult> searchItSpecific(String txNumber);
 
+  void update(RegisterResult registerResult, SimpleEidasData eidData);
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
index 2ae278dc..5b168c3b 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
@@ -95,7 +95,7 @@ public class InitialSearchTask extends AbstractAuthServletTask {
 
       ImmutableMap<AttributeDefinition<?>, ImmutableSet<? extends AttributeValue<?>>> aa =
           eidasResponse.getAttributes().getAttributeMap();
-      
+
       final Map<String, Object> simpleAttrMap = convertEidasAttrToSimpleMap(
           eidasResponse.getAttributes().getAttributeMap());
 
@@ -232,8 +232,22 @@ public class InitialSearchTask extends AbstractAuthServletTask {
                         SimpleEidasData eidData) throws TaskExecutionException {
     //TODO automerge
     log.debug("Automerge " + initialSearchResult + " with " + eidData + " " + countrySpecificDetailSearchResult);
-    //TODO
     try {
+      if (initialSearchResult.getResultCount() != 0) {
+        throw new WorkflowException("initialSearchResult.getResultCount() != 0");
+      }
+      if (countrySpecificDetailSearchResult.getResultCount() != 1) {
+        throw new WorkflowException("countrySpecificDetailSearchResult.getResultCount() != 1");
+      }
+      if (countrySpecificDetailSearchResult.getResultsZmr().size() == 1) {
+        //update ZMR
+        zmrClient.update(countrySpecificDetailSearchResult.getResultsZmr().get(0), eidData);
+      }
+      if (countrySpecificDetailSearchResult.getResultsErnb().size() == 1) {
+        //update ErnB
+        ernbClient.update(countrySpecificDetailSearchResult.getResultsErnb().get(0), eidData);
+      }
+
       String bpK = countrySpecificDetailSearchResult.getBpk();
       return bpK;
     } catch (WorkflowException e) {
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/DummyZmrClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/DummyZmrClient.java
index 343651f7..0f3436d8 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/DummyZmrClient.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/DummyZmrClient.java
@@ -1,6 +1,7 @@
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr;
 
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
 import org.springframework.stereotype.Service;
 
 import java.util.ArrayList;
@@ -37,6 +38,11 @@ public class DummyZmrClient implements IZmrClient {
     return resultEmpty();//TODO
   }
 
+  @Override
+  public void update(RegisterResult registerResult, SimpleEidasData eidData) {
+    //TODO
+  }
+
   private ArrayList<RegisterResult> resultEmpty() {
     return new ArrayList<RegisterResult>();//Nobody found
   }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/IZmrClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/IZmrClient.java
index 018122ea..4af7bfe9 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/IZmrClient.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/IZmrClient.java
@@ -1,6 +1,7 @@
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr;
 
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
 
 import java.util.ArrayList;
 
@@ -15,4 +16,5 @@ public interface IZmrClient {
 
   ArrayList<RegisterResult> searchItSpecific(String txNumber);
 
+  void update(RegisterResult registerResult, SimpleEidasData eidData);
 }
-- 
cgit v1.2.3


From 0e6e6b5da3382d8f733f8f0ed9caee725078badf Mon Sep 17 00:00:00 2001
From: Christian Kollmann <christian.kollmann@a-sit.at>
Date: Thu, 17 Dec 2020 09:05:09 +0100
Subject: Update .gitignore

---
 .../specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java   | 8 ++------
 1 file changed, 2 insertions(+), 6 deletions(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
index 5b168c3b..1580603c 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
@@ -50,7 +50,6 @@ import lombok.extern.slf4j.Slf4j;
 import org.apache.commons.lang3.StringUtils;
 import org.joda.time.DateTime;
 import org.springframework.beans.factory.annotation.Autowired;
-import org.springframework.context.ApplicationContext;
 import org.springframework.stereotype.Component;
 
 import javax.servlet.http.HttpServletRequest;
@@ -71,8 +70,8 @@ public class InitialSearchTask extends AbstractAuthServletTask {
 
   private List<ICountrySpecificDetailSearchProcessor> handlers = new ArrayList<>();
 
-  @Autowired
-  private ApplicationContext context;
+  //  @Autowired
+  //  private ApplicationContext context;
 
   private IErnbClient ernbClient;
   private IZmrClient zmrClient;
@@ -93,9 +92,6 @@ public class InitialSearchTask extends AbstractAuthServletTask {
       final ILightResponse eidasResponse = authProcessData
           .getGenericDataFromSession(Constants.DATA_FULL_EIDAS_RESPONSE, ILightResponse.class);
 
-      ImmutableMap<AttributeDefinition<?>, ImmutableSet<? extends AttributeValue<?>>> aa =
-          eidasResponse.getAttributes().getAttributeMap();
-
       final Map<String, Object> simpleAttrMap = convertEidasAttrToSimpleMap(
           eidasResponse.getAttributes().getAttributeMap());
 
-- 
cgit v1.2.3


From 06d395c2102cf6a8bb961ac6bb2113c12eda9651 Mon Sep 17 00:00:00 2001
From: Christian Kollmann <christian.kollmann@a-sit.at>
Date: Fri, 18 Dec 2020 10:22:59 +0100
Subject: Review code

---
 .../modules/auth/eidas/v2/ernb/DummyErnbClient.java         |  1 +
 .../eidas/v2/handler/DeSpecificDetailSearchProcessor.java   |  1 +
 .../v2/handler/ICountrySpecificDetailSearchProcessor.java   |  1 +
 .../modules/auth/eidas/v2/tasks/InitialSearchTask.java      | 11 ++++++++++-
 .../specific/modules/auth/eidas/v2/zmr/DummyZmrClient.java  |  1 +
 .../eidas/v2/test/tasks/InitialSearchTaskFirstTest.java     | 13 ++++++++++++-
 6 files changed, 26 insertions(+), 2 deletions(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernb/DummyErnbClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernb/DummyErnbClient.java
index 0c8a2f59..978be4d0 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernb/DummyErnbClient.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernb/DummyErnbClient.java
@@ -11,6 +11,7 @@ public class DummyErnbClient implements IErnbClient {
 
   @Override
   public ArrayList<RegisterResult> searchWithPersonIdentifer(String personIdentifer) {
+    // NOTE: Are we using Mockito or these fixed strings for testing, why are those defined here?
     switch (personIdentifer) {
       case "a12345":
       case "a12345-":
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/DeSpecificDetailSearchProcessor.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/DeSpecificDetailSearchProcessor.java
index 51d6952f..b5e8551b 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/DeSpecificDetailSearchProcessor.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/DeSpecificDetailSearchProcessor.java
@@ -10,6 +10,7 @@ public class DeSpecificDetailSearchProcessor extends ICountrySpecificDetailSearc
 
   @Override
   public boolean canHandle(String countryCode, SimpleEidasData eidData) {
+    // NOTE: Please extract constant for "de"
     if (!countryCode.equalsIgnoreCase("de")) {
       return false;
     }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ICountrySpecificDetailSearchProcessor.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ICountrySpecificDetailSearchProcessor.java
index 3d6b35e9..b9ab2ceb 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ICountrySpecificDetailSearchProcessor.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ICountrySpecificDetailSearchProcessor.java
@@ -31,6 +31,7 @@ import org.springframework.beans.factory.annotation.Autowired;
 
 public abstract class ICountrySpecificDetailSearchProcessor {
 
+  // NOTE: Please use constructor injection
 
   protected IErnbClient ernbClient;
   protected IZmrClient zmrClient;
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
index 1580603c..20ee9325 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
@@ -66,6 +66,8 @@ import java.util.Map;
  */
 @Slf4j
 @Component("InitialSearchTask")
+// NOTE: General: Please rebase git commit and squash them where useful, i.e. "remove unused import" should
+//       not be a separate commit.
 public class InitialSearchTask extends AbstractAuthServletTask {
 
   private List<ICountrySpecificDetailSearchProcessor> handlers = new ArrayList<>();
@@ -92,6 +94,7 @@ public class InitialSearchTask extends AbstractAuthServletTask {
       final ILightResponse eidasResponse = authProcessData
           .getGenericDataFromSession(Constants.DATA_FULL_EIDAS_RESPONSE, ILightResponse.class);
 
+      // NOTE: Why is eidas first converted to a map, and then to a SimpleEidasData?
       final Map<String, Object> simpleAttrMap = convertEidasAttrToSimpleMap(
           eidasResponse.getAttributes().getAttributeMap());
 
@@ -106,14 +109,17 @@ public class InitialSearchTask extends AbstractAuthServletTask {
     }
   }
 
+  // NOTE: Please rename methods ... "step2" doesn't tell the reader anything
   private String step2(SimpleEidasData eidData) throws TaskExecutionException {
     String personIdentifier = eidData.getPseudonym();
+    // NOTE: Is that comment really necessary?
     //search in register(step 2)
     MergedRegisterSearchResult result = searchInZmrAndErnp(personIdentifier);
     if (result.getResultCount() == 0) {
       return step5(result, eidData);
     } else if (result.getResultCount() == 1) {
       return step3(result, eidData);
+      // NOTE: Why is that code commented-out?
     } //else if (result.getResultCount() > 1) {
     throw new TaskExecutionException(pendingReq, "Initial search - Kitt Process necessary.",
         new ManualFixNecessaryException(personIdentifier));
@@ -179,7 +185,7 @@ public class InitialSearchTask extends AbstractAuthServletTask {
     log.debug("Update " + result + " with " + eidData);
     //TODO
 
-
+    // NOTE: Sometimes the bpk is returned, sometimes "105"?
     return result.getBpk();
   }
 
@@ -265,6 +271,7 @@ public class InitialSearchTask extends AbstractAuthServletTask {
 
     log.debug("Automerge " + initialSearchResult + " with " + eidData + " " + mdsSearchResult);
     //TODO
+    // NOTE: Sometimes the bpk is returned, sometimes "105"?
     return "105";
   }
 
@@ -329,6 +336,7 @@ public class InitialSearchTask extends AbstractAuthServletTask {
 
   //just for testing
   //TODO is there a nicer solution?
+  // There is: Constructor Injection see https://reflectoring.io/constructor-injection/ or https://www.baeldung.com/constructor-injection-in-spring
   @Autowired
   public void setErnbClient(IErnbClient ernbClient) {
     this.ernbClient = ernbClient;
@@ -342,6 +350,7 @@ public class InitialSearchTask extends AbstractAuthServletTask {
   @Autowired
   public void setHandlers(List<ICountrySpecificDetailSearchProcessor> handlers) {
     this.handlers = handlers;
+    // NOTE: There's a typo in "registrated"
     log.info("# " + handlers.size() + " country specific detail search services are registrated");
   }
 
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/DummyZmrClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/DummyZmrClient.java
index 0f3436d8..3af2e39e 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/DummyZmrClient.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/DummyZmrClient.java
@@ -11,6 +11,7 @@ public class DummyZmrClient implements IZmrClient {
 
   @Override
   public ArrayList<RegisterResult> searchWithPersonIdentifer(String personIdentifer) {
+    // NOTE: Are we using Mockito or these fixed strings for testing, why are those defined here?
     switch (personIdentifer) {
       case "a12345":
       case "a12345-":
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
index 64a73bda..d366fefc 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
@@ -62,9 +62,11 @@ public class InitialSearchTaskFirstTest {
   @InjectMocks
   private InitialSearchTask task;
 
+  // NOTE: Is defined as @Mock, but also manually mocked in "testNode100a" etc -- why?
   @Mock
   private IZmrClient zmrClient;
 
+  // NOTE: Is defined as @Mock, but also manually mocked in "testNode100a" etc -- why?
   @Mock
   private IErnbClient ernbClient;
 
@@ -92,7 +94,7 @@ public class InitialSearchTaskFirstTest {
    */
   @Before
   public void setUp() throws URISyntaxException, EaafStorageException {
-
+    // NOTE: PowerMockito should not be needed, as we don't want to test static and private methods
     task = PowerMockito.spy(task);
 
     httpReq = new MockHttpServletRequest("POST", "https://localhost/authhandler");
@@ -112,6 +114,7 @@ public class InitialSearchTaskFirstTest {
   /**
    * One match, but register update needed
    */
+  // NOTE: Why is the method named "testNode100a"?
   public void testNode100a() throws Exception {
 
     //Mock ZMR
@@ -119,6 +122,9 @@ public class InitialSearchTaskFirstTest {
     String randomBpk = RandomStringUtils.randomNumeric(6);
     zmrResult.add(new RegisterResult(randomBpk,"de/st/max123", "Max_new", "Mustermann", "2011-01-01"));
 
+    // NOTE: Are we using Mockito or these fixed strings in DummyZmrClient?
+    // NOTE: Please mock an interface, not a concrete class
+    // NOTE: But DummyZmrClient is also defined as a bean "ZmrClientForeIDAS" in "eidas_v2_auth.beans.xml"?
     zmrClient = Mockito.mock(DummyZmrClient.class);
     Mockito.when(zmrClient.searchWithPersonIdentifer("max123")).thenReturn(zmrResult);//"de/st/max123"???
     task.setZmrClient(zmrClient);
@@ -137,11 +143,13 @@ public class InitialSearchTaskFirstTest {
       Assert.assertTrue("Wrong bpk", bPk.equals(randomBpk));
 
     } catch (final TaskExecutionException e) {
+      // NOTE: assertTrue is probably the wrong method to use ... why catch the exception anyway?
       Assert.assertTrue("Wrong workflow, should not reach this point", false);
     }
   }
 
   @Test
+  // NOTE: Why is @DirtiesContext after each test necessary? What is changed in the context and why?
   @DirtiesContext
   /**
    * One match, but register update needed
@@ -563,6 +571,7 @@ public class InitialSearchTaskFirstTest {
 
       String bPk = (String)
           pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
+      // NOTE: Why "105"? Extract in a constant
       Assert.assertTrue("Wrong bpk", bPk.equals("105"));
     } catch (final TaskExecutionException e) {
       Assert.assertTrue("Wrong workflow, should not reach this point", false);
@@ -578,6 +587,8 @@ public class InitialSearchTaskFirstTest {
 
   @NotNull
   private AuthenticationResponse buildDummyAuthResponseMaxMustermann() throws URISyntaxException {
+    // NOTE: Those strings "de/st/max123" seem to be somehow relevant, but where do we need to use that exact string again?
+    // NOTE: If not, why not using random strings?
     return buildDummyAuthResponse("Max", "Mustermann",
         "de/st/max123", "2011-01-01");
   }
-- 
cgit v1.2.3


From 2bf0a3cb7413846b8349cf53904588994ed117af Mon Sep 17 00:00:00 2001
From: Alexander Marsalek <amarsalek@iaik.tugraz.at>
Date: Fri, 18 Dec 2020 17:24:55 +0100
Subject: constructor based injection, randomized values for testing, added
 constants

---
 .../specific/modules/auth/eidas/v2/Constants.java  |   2 +
 .../modules/auth/eidas/v2/dao/SimpleEidasData.java |   1 -
 .../auth/eidas/v2/ernb/DummyErnbClient.java        |  26 +-
 .../handler/DeSpecificDetailSearchProcessor.java   |  10 +-
 .../ICountrySpecificDetailSearchProcessor.java     |  10 +-
 .../handler/ItSpecificDetailSearchProcessor.java   |   9 +-
 .../auth/eidas/v2/tasks/InitialSearchTask.java     |  99 +++----
 .../modules/auth/eidas/v2/zmr/DummyZmrClient.java  |  27 +-
 .../v2/test/tasks/InitialSearchTaskFirstTest.java  | 289 ++++++++-------------
 9 files changed, 174 insertions(+), 299 deletions(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java
index ce48a88e..9104c55f 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java
@@ -171,4 +171,6 @@ public class Constants {
       "AJZyj/+sdCMDRq9RkvbFcgSTVn/OfS8EUE81ddwP8MNuJ1kd1SWBUJPaQX2JLJHrL54mkOhrkhH2M/zcuOTu8nW9TOEg"
       + "XGjrRB/0HpiYKpV+VDJViyyc/GacNLxN4Anw4pima6gHYaJIw9hQkL/nuO2hyh8PGJd7rxeFXJmbLy+X";
 
+  public static final String COUNTRY_CODE_DE = "DE";
+  public static final String COUNTRY_CODE_IT = "IT";
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleEidasData.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleEidasData.java
index 43d85772..674f5b48 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleEidasData.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleEidasData.java
@@ -83,7 +83,6 @@ public class SimpleEidasData {
     if (!result.getTaxNumber().equals(taxNumber)) {
       return false;
     }
-
     return true;
   }
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernb/DummyErnbClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernb/DummyErnbClient.java
index 978be4d0..2d2fa76d 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernb/DummyErnbClient.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernb/DummyErnbClient.java
@@ -11,16 +11,7 @@ public class DummyErnbClient implements IErnbClient {
 
   @Override
   public ArrayList<RegisterResult> searchWithPersonIdentifer(String personIdentifer) {
-    // NOTE: Are we using Mockito or these fixed strings for testing, why are those defined here?
-    switch (personIdentifer) {
-      case "a12345":
-      case "a12345-":
-        return result1();
-      case "a123456":
-        return result2();
-      default:
-        return resultEmpty();
-    }
+    return resultEmpty();
   }
 
   @Override
@@ -48,20 +39,5 @@ public class DummyErnbClient implements IErnbClient {
     return new ArrayList<RegisterResult>();//Nobody found
   }
 
-  private ArrayList<RegisterResult> result1() {
-    ArrayList<RegisterResult> results = new ArrayList<>();
-    RegisterResult result1 = new RegisterResult("a12345", "Tom", "Mustermann", "1950-01-01", "Wien");
-    results.add(result1);
-    RegisterResult result2 = new RegisterResult("a12345-", "Tom", "Mustermann", "1950-01-01", "Wien");
-    results.add(result2);
-    return results;
-  }
-
-  private ArrayList<RegisterResult> result2() {
-    ArrayList<RegisterResult> results = new ArrayList<>();
-    RegisterResult result = new RegisterResult("a123456", "Max", "Mustermann", "2000-01-01", "Wien");
-    results.add(result);
-    return results;
-  }
 
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/DeSpecificDetailSearchProcessor.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/DeSpecificDetailSearchProcessor.java
index b5e8551b..e8cb7a1a 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/DeSpecificDetailSearchProcessor.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/DeSpecificDetailSearchProcessor.java
@@ -1,17 +1,23 @@
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.handler;
 
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.MergedRegisterSearchResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernb.IErnbClient;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.IZmrClient;
 
 import java.util.ArrayList;
 
 public class DeSpecificDetailSearchProcessor extends ICountrySpecificDetailSearchProcessor {
 
+  public DeSpecificDetailSearchProcessor(IErnbClient ernbClient, IZmrClient zmrClient) {
+    super(ernbClient, zmrClient);
+  }
+
   @Override
   public boolean canHandle(String countryCode, SimpleEidasData eidData) {
-    // NOTE: Please extract constant for "de"
-    if (!countryCode.equalsIgnoreCase("de")) {
+    if (!countryCode.equalsIgnoreCase(Constants.COUNTRY_CODE_DE)) {
       return false;
     }
     if (eidData.getBirthName() == null || eidData.getBirthName().isEmpty()) {
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ICountrySpecificDetailSearchProcessor.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ICountrySpecificDetailSearchProcessor.java
index b9ab2ceb..6a2b2c0a 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ICountrySpecificDetailSearchProcessor.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ICountrySpecificDetailSearchProcessor.java
@@ -27,22 +27,14 @@ import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.MergedRegisterSearch
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernb.IErnbClient;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.IZmrClient;
-import org.springframework.beans.factory.annotation.Autowired;
 
 public abstract class ICountrySpecificDetailSearchProcessor {
 
-  // NOTE: Please use constructor injection
-
   protected IErnbClient ernbClient;
   protected IZmrClient zmrClient;
 
-  @Autowired
-  public void setErnbClient(IErnbClient ernbClient) {
+  public ICountrySpecificDetailSearchProcessor(IErnbClient ernbClient, IZmrClient zmrClient) {
     this.ernbClient = ernbClient;
-  }
-
-  @Autowired
-  public void setZmrClient(IZmrClient zmrClient) {
     this.zmrClient = zmrClient;
   }
 
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ItSpecificDetailSearchProcessor.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ItSpecificDetailSearchProcessor.java
index d055345a..a94a67b3 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ItSpecificDetailSearchProcessor.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ItSpecificDetailSearchProcessor.java
@@ -1,16 +1,23 @@
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.handler;
 
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.MergedRegisterSearchResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernb.IErnbClient;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.IZmrClient;
 
 import java.util.ArrayList;
 
 public class ItSpecificDetailSearchProcessor extends ICountrySpecificDetailSearchProcessor {
 
+  public ItSpecificDetailSearchProcessor(IErnbClient ernbClient, IZmrClient zmrClient) {
+    super(ernbClient, zmrClient);
+  }
+
   @Override
   public boolean canHandle(String countryCode, SimpleEidasData eidData) {
-    if (!countryCode.equalsIgnoreCase("it")) {
+    if (!countryCode.equalsIgnoreCase(Constants.COUNTRY_CODE_IT)) {
       return false;
     }
     if (eidData.getTaxNumber() == null || eidData.getTaxNumber().isEmpty()) {
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
index 20ee9325..a87be6c5 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
@@ -49,7 +49,6 @@ import eu.eidas.auth.commons.protocol.eidas.impl.PostalAddress;
 import lombok.extern.slf4j.Slf4j;
 import org.apache.commons.lang3.StringUtils;
 import org.joda.time.DateTime;
-import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.stereotype.Component;
 
 import javax.servlet.http.HttpServletRequest;
@@ -72,9 +71,6 @@ public class InitialSearchTask extends AbstractAuthServletTask {
 
   private List<ICountrySpecificDetailSearchProcessor> handlers = new ArrayList<>();
 
-  //  @Autowired
-  //  private ApplicationContext context;
-
   private IErnbClient ernbClient;
   private IZmrClient zmrClient;
 
@@ -94,14 +90,11 @@ public class InitialSearchTask extends AbstractAuthServletTask {
       final ILightResponse eidasResponse = authProcessData
           .getGenericDataFromSession(Constants.DATA_FULL_EIDAS_RESPONSE, ILightResponse.class);
 
-      // NOTE: Why is eidas first converted to a map, and then to a SimpleEidasData?
-      final Map<String, Object> simpleAttrMap = convertEidasAttrToSimpleMap(
-          eidasResponse.getAttributes().getAttributeMap());
-
       // post-process eIDAS attributes
-      final SimpleEidasData eidData = convertSimpleMapToSimpleData(simpleAttrMap);
+      final SimpleEidasData eidData = convertSimpleMapToSimpleData(convertEidasAttrToSimpleMap(
+          eidasResponse.getAttributes().getAttributeMap()));
 
-      String bpK = step2(eidData);
+      String bpK = step2RegisterSearchWithPersonidentifier(eidData);
       authProcessData.setGenericDataToSession(Constants.DATA_RESULT_MATCHING_BPK, bpK);
     } catch (final Exception e) {
       log.error("Initial search FAILED.", e);
@@ -109,22 +102,16 @@ public class InitialSearchTask extends AbstractAuthServletTask {
     }
   }
 
-  // NOTE: Please rename methods ... "step2" doesn't tell the reader anything
-  private String step2(SimpleEidasData eidData) throws TaskExecutionException {
+  private String step2RegisterSearchWithPersonidentifier(SimpleEidasData eidData) throws TaskExecutionException {
     String personIdentifier = eidData.getPseudonym();
-    // NOTE: Is that comment really necessary?
-    //search in register(step 2)
     MergedRegisterSearchResult result = searchInZmrAndErnp(personIdentifier);
     if (result.getResultCount() == 0) {
-      return step5(result, eidData);
+      return step5CheckCountrySpecificSearchPossible(result, eidData);
     } else if (result.getResultCount() == 1) {
-      return step3(result, eidData);
-      // NOTE: Why is that code commented-out?
-    } //else if (result.getResultCount() > 1) {
+      return step3CheckRegisterUpdateNecessary(result, eidData);
+    }
     throw new TaskExecutionException(pendingReq, "Initial search - Kitt Process necessary.",
         new ManualFixNecessaryException(personIdentifier));
-    //    }
-    //    return null;
   }
 
   private SimpleEidasData convertSimpleMapToSimpleData(Map<String, Object> eidasAttrMap)
@@ -163,33 +150,31 @@ public class InitialSearchTask extends AbstractAuthServletTask {
     return simpleEidasData;
   }
 
-  private String step3(MergedRegisterSearchResult result, SimpleEidasData eidData) throws TaskExecutionException {
+  private String step3CheckRegisterUpdateNecessary(MergedRegisterSearchResult result, SimpleEidasData eidData)
+      throws TaskExecutionException {
     //check if data from eidas authentication matches with data from register
-
     log.debug("Compare " + result + " with " + eidData);
-    //TODO check if data matches
     try {
       if (eidData.equalsRegisterData(result)) {
-        //TODO
+        //No update necessary, just return bpk
         return result.getBpk();
       } else {
-        return step4(result, eidData);
+        return step4UpdateRegisterData(result, eidData);
       }
     } catch (WorkflowException e) {
       throw new TaskExecutionException(pendingReq, "Initial search - Kitt Process necessary.", e);
     }
   }
 
-  private String step4(MergedRegisterSearchResult result,
-                       SimpleEidasData eidData) throws WorkflowException {
+  private String step4UpdateRegisterData(MergedRegisterSearchResult result,
+                                         SimpleEidasData eidData) throws WorkflowException {
     log.debug("Update " + result + " with " + eidData);
-    //TODO
+    //TODO wann rechtlich möglich?
 
-    // NOTE: Sometimes the bpk is returned, sometimes "105"?
     return result.getBpk();
   }
 
-  private String step5(MergedRegisterSearchResult result, SimpleEidasData eidData)
+  private String step5CheckCountrySpecificSearchPossible(MergedRegisterSearchResult result, SimpleEidasData eidData)
       throws TaskExecutionException {
     String citizenCountry = eidData.getCitizenCountryCode();
     ICountrySpecificDetailSearchProcessor foundHandler = null;
@@ -204,15 +189,15 @@ public class InitialSearchTask extends AbstractAuthServletTask {
     }
     if (foundHandler == null) {
       //MDS search
-      return step8(result, eidData);
+      return step8RegisterSearchWithMds(result, eidData);
     } else {
       //country specific search
-      return step6(foundHandler, result, eidData);
+      return step6CountrySpecificSearch(foundHandler, result, eidData);
     }
   }
 
-  private String step6(ICountrySpecificDetailSearchProcessor countrySpecificDetailSearchProcessor,
-                       MergedRegisterSearchResult initialSearchResult, SimpleEidasData eidData)
+  private String step6CountrySpecificSearch(ICountrySpecificDetailSearchProcessor countrySpecificDetailSearchProcessor,
+                                            MergedRegisterSearchResult initialSearchResult, SimpleEidasData eidData)
       throws TaskExecutionException {
     //6 country specific search
     MergedRegisterSearchResult countrySpecificDetailSearchResult =
@@ -220,19 +205,19 @@ public class InitialSearchTask extends AbstractAuthServletTask {
 
     switch (countrySpecificDetailSearchResult.getResultCount()) {
       case 0:
-        return step8(initialSearchResult, eidData);
+        return step8RegisterSearchWithMds(initialSearchResult, eidData);
       case 1:
-        return step7a(initialSearchResult, countrySpecificDetailSearchResult, eidData);
+        return step7aKittProcess(initialSearchResult, countrySpecificDetailSearchResult, eidData);
       default://should not happen
         throw new TaskExecutionException(pendingReq, "Detail search - Kitt Process necessary.",
             new ManualFixNecessaryException(eidData));
     }
   }
 
-  private String step7a(MergedRegisterSearchResult initialSearchResult,
-                        MergedRegisterSearchResult countrySpecificDetailSearchResult,
-                        SimpleEidasData eidData) throws TaskExecutionException {
-    //TODO automerge
+  private String step7aKittProcess(MergedRegisterSearchResult initialSearchResult,
+                                   MergedRegisterSearchResult countrySpecificDetailSearchResult,
+                                   SimpleEidasData eidData) throws TaskExecutionException {
+    //Automerge data
     log.debug("Automerge " + initialSearchResult + " with " + eidData + " " + countrySpecificDetailSearchResult);
     try {
       if (initialSearchResult.getResultCount() != 0) {
@@ -257,8 +242,8 @@ public class InitialSearchTask extends AbstractAuthServletTask {
     }
   }
 
-  private String step8(MergedRegisterSearchResult initialSearchResult,
-                       SimpleEidasData eidData) {
+  private String step8RegisterSearchWithMds(MergedRegisterSearchResult initialSearchResult,
+                                            SimpleEidasData eidData) {
     MergedRegisterSearchResult mdsSearchResult = new MergedRegisterSearchResult();
 
     ArrayList<RegisterResult> resultsZmr =
@@ -270,9 +255,8 @@ public class InitialSearchTask extends AbstractAuthServletTask {
     mdsSearchResult.setResultsErnb(resultsErnb);
 
     log.debug("Automerge " + initialSearchResult + " with " + eidData + " " + mdsSearchResult);
-    //TODO
-    // NOTE: Sometimes the bpk is returned, sometimes "105"?
-    return "105";
+    //TODO implement next phase and return correct value
+    return "TODO-Temporary-Endnode-105";
   }
 
   private MergedRegisterSearchResult searchInZmrAndErnp(String personIdentifier) {
@@ -334,24 +318,17 @@ public class InitialSearchTask extends AbstractAuthServletTask {
     return result;
   }
 
-  //just for testing
-  //TODO is there a nicer solution?
-  // There is: Constructor Injection see https://reflectoring.io/constructor-injection/ or https://www.baeldung.com/constructor-injection-in-spring
-  @Autowired
-  public void setErnbClient(IErnbClient ernbClient) {
+  /**
+   * Constructor.
+   * @param handlers List of countrySpecificSearchProcessors
+   * @param ernbClient Ernb client
+   * @param zmrClient ZMR client
+   */
+  public InitialSearchTask(List<ICountrySpecificDetailSearchProcessor> handlers, IErnbClient ernbClient,
+                           IZmrClient zmrClient) {
     this.ernbClient = ernbClient;
-  }
-
-  @Autowired
-  public void setZmrClient(IZmrClient zmrClient) {
     this.zmrClient = zmrClient;
-  }
-
-  @Autowired
-  public void setHandlers(List<ICountrySpecificDetailSearchProcessor> handlers) {
     this.handlers = handlers;
-    // NOTE: There's a typo in "registrated"
-    log.info("# " + handlers.size() + " country specific detail search services are registrated");
+    log.info("# " + handlers.size() + " country specific detail search services are registered");
   }
-
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/DummyZmrClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/DummyZmrClient.java
index 3af2e39e..f4d77b03 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/DummyZmrClient.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/DummyZmrClient.java
@@ -11,16 +11,7 @@ public class DummyZmrClient implements IZmrClient {
 
   @Override
   public ArrayList<RegisterResult> searchWithPersonIdentifer(String personIdentifer) {
-    // NOTE: Are we using Mockito or these fixed strings for testing, why are those defined here?
-    switch (personIdentifer) {
-      case "a12345":
-      case "a12345-":
-        return result1();
-      case "a123456":
-        return result2();
-      default:
-        return resultEmpty();
-    }
+    return resultEmpty();
   }
 
   @Override
@@ -48,20 +39,4 @@ public class DummyZmrClient implements IZmrClient {
     return new ArrayList<RegisterResult>();//Nobody found
   }
 
-  private ArrayList<RegisterResult> result1() {
-    ArrayList<RegisterResult> results = new ArrayList<>();
-    RegisterResult result1 = new RegisterResult("12345", "Tom", "Mustermann", "1950-01-01", "Wien");
-    results.add(result1);
-    RegisterResult result2 = new RegisterResult("12345-", "Tom", "Mustermann", "1950-01-01", "Wien");
-    results.add(result2);
-    return results;
-  }
-
-  private ArrayList<RegisterResult> result2() {
-    ArrayList<RegisterResult> results = new ArrayList<>();
-    RegisterResult result = new RegisterResult("123456", "Max", "Mustermann", "2000-01-01", "Wien");
-    results.add(result);
-    return results;
-  }
-
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
index d366fefc..f7fc6b06 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
@@ -2,20 +2,17 @@ package at.asitplus.eidas.specific.modules.auth.eidas.v2.test.tasks;
 
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernb.DummyErnbClient;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernb.IErnbClient;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.ManualFixNecessaryException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.DeSpecificDetailSearchProcessor;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.ICountrySpecificDetailSearchProcessor;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.ItSpecificDetailSearchProcessor;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.InitialSearchTask;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.DummyZmrClient;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.IZmrClient;
 import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
 import at.gv.egiz.eaaf.core.exceptions.EaafStorageException;
 import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
 import at.gv.egiz.eaaf.core.impl.idp.auth.data.AuthProcessDataWrapper;
-import at.gv.egiz.eaaf.core.impl.idp.module.test.DummySpConfiguration;
 import at.gv.egiz.eaaf.core.impl.idp.module.test.TestRequestImpl;
 import at.gv.egiz.eaaf.core.impl.idp.process.ExecutionContextImpl;
 import eu.eidas.auth.commons.attribute.AttributeDefinition;
@@ -33,7 +30,6 @@ import org.junit.runner.RunWith;
 import org.mockito.InjectMocks;
 import org.mockito.Mock;
 import org.mockito.Mockito;
-import org.powermock.api.mockito.PowerMockito;
 import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.mock.web.MockHttpServletRequest;
 import org.springframework.mock.web.MockHttpServletResponse;
@@ -62,20 +58,16 @@ public class InitialSearchTaskFirstTest {
   @InjectMocks
   private InitialSearchTask task;
 
-  // NOTE: Is defined as @Mock, but also manually mocked in "testNode100a" etc -- why?
-  @Mock
   private IZmrClient zmrClient;
-
-  // NOTE: Is defined as @Mock, but also manually mocked in "testNode100a" etc -- why?
-  @Mock
   private IErnbClient ernbClient;
 
   final ExecutionContext executionContext = new ExecutionContextImpl();
   private MockHttpServletRequest httpReq;
   private MockHttpServletResponse httpResp;
   private TestRequestImpl pendingReq;
-  private DummySpConfiguration oaParam;
-
+  private String randomIdentifier = RandomStringUtils.randomNumeric(10);
+  private String randomFamilyName = RandomStringUtils.randomNumeric(11);
+  private String randomGivenName = RandomStringUtils.randomNumeric(12);
   /**
    * jUnit class initializer.
    *
@@ -86,7 +78,6 @@ public class InitialSearchTaskFirstTest {
     final String current = new java.io.File(".").toURI().toString();
     System.setProperty("eidas.ms.configuration", current
         + "src/test/resources/config/junit_config_1.properties");
-
   }
 
   /**
@@ -94,19 +85,15 @@ public class InitialSearchTaskFirstTest {
    */
   @Before
   public void setUp() throws URISyntaxException, EaafStorageException {
-    // NOTE: PowerMockito should not be needed, as we don't want to test static and private methods
-    task = PowerMockito.spy(task);
-
     httpReq = new MockHttpServletRequest("POST", "https://localhost/authhandler");
     httpResp = new MockHttpServletResponse();
     RequestContextHolder.resetRequestAttributes();
     RequestContextHolder.setRequestAttributes(new ServletRequestAttributes(httpReq, httpResp));
 
-    final AuthenticationResponse response = buildDummyAuthResponseMaxMustermann();
+    final AuthenticationResponse response = buildDummyAuthResponseRandomPerson();
     pendingReq = new TestRequestImpl();
     pendingReq.getSessionData(AuthProcessDataWrapper.class)
         .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
-
   }
 
   @Test
@@ -120,22 +107,18 @@ public class InitialSearchTaskFirstTest {
     //Mock ZMR
     ArrayList<RegisterResult> zmrResult = new ArrayList<>();
     String randomBpk = RandomStringUtils.randomNumeric(6);
-    zmrResult.add(new RegisterResult(randomBpk,"de/st/max123", "Max_new", "Mustermann", "2011-01-01"));
+    zmrResult.add(new RegisterResult(randomBpk, "de/st/"+randomIdentifier, "Max_new", randomFamilyName, "2011-01-01"));
 
-    // NOTE: Are we using Mockito or these fixed strings in DummyZmrClient?
-    // NOTE: Please mock an interface, not a concrete class
-    // NOTE: But DummyZmrClient is also defined as a bean "ZmrClientForeIDAS" in "eidas_v2_auth.beans.xml"?
-    zmrClient = Mockito.mock(DummyZmrClient.class);
-    Mockito.when(zmrClient.searchWithPersonIdentifer("max123")).thenReturn(zmrResult);//"de/st/max123"???
-    task.setZmrClient(zmrClient);
+    zmrClient = Mockito.mock(IZmrClient.class);
+    Mockito.when(zmrClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(zmrResult);
 
     //Mock ernb
     ArrayList<RegisterResult> ernbResult = new ArrayList<>();
 
-    ernbClient = Mockito.mock(DummyErnbClient.class);
-    Mockito.when(ernbClient.searchWithPersonIdentifer("max123")).thenReturn(ernbResult);//"de/st/max123"???
-    task.setErnbClient(ernbClient);
+    ernbClient = Mockito.mock(IErnbClient.class);
+    Mockito.when(ernbClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(ernbResult);
 
+    task = new InitialSearchTask(emptyHandlers(), ernbClient, zmrClient);
     try {
       task.execute(pendingReq, executionContext);
       String bPk = (String)
@@ -159,19 +142,18 @@ public class InitialSearchTaskFirstTest {
     //Mock ZMR
     ArrayList<RegisterResult> zmrResult = new ArrayList<>();
 
-    zmrClient = Mockito.mock(DummyZmrClient.class);
-    Mockito.when(zmrClient.searchWithPersonIdentifer("max123")).thenReturn(zmrResult);//"de/st/max123"???
-    task.setZmrClient(zmrClient);
+    zmrClient = Mockito.mock(IZmrClient.class);
+    Mockito.when(zmrClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(zmrResult);//"de/st/max123"???
 
     //Mock ernb
     ArrayList<RegisterResult> ernbResult = new ArrayList<>();
     String randomBpk = RandomStringUtils.randomNumeric(6);
-    ernbResult.add(new RegisterResult(randomBpk,"de/st/max123", "Max_new", "Mustermann", "2011-01-01"));
+    ernbResult.add(new RegisterResult(randomBpk, "de/st/"+randomIdentifier, "Max_new", randomFamilyName, "2011-01-01"));
 
-    ernbClient = Mockito.mock(DummyErnbClient.class);
-    Mockito.when(ernbClient.searchWithPersonIdentifer("max123")).thenReturn(ernbResult);//"de/st/max123"???
-    task.setErnbClient(ernbClient);
+    ernbClient = Mockito.mock(IErnbClient.class);
+    Mockito.when(ernbClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(ernbResult);
 
+    task = new InitialSearchTask(emptyHandlers(), ernbClient, zmrClient);
     try {
       task.execute(pendingReq, executionContext);
       String bPk = (String)
@@ -193,24 +175,20 @@ public class InitialSearchTaskFirstTest {
 
     //Mock ZMR
     ArrayList<RegisterResult> zmrResult = new ArrayList<>();
-    zmrResult.add(new RegisterResult("bpkMax","de/st/max123", "Max", "Mustermann", "2011-01-01"));
-    zmrResult.add(new RegisterResult("bpkMax","de/st/max123", "Maximilian", "Mustermann", "2011-01-01"));
-    zmrClient = Mockito.mock(DummyZmrClient.class);
-    Mockito.when(zmrClient.searchWithPersonIdentifer("max123")).thenReturn(zmrResult);//"de/st/max123"???
-    task.setZmrClient(zmrClient);
+    zmrResult.add(new RegisterResult("bpkMax", "de/st/"+randomIdentifier, randomGivenName, randomFamilyName, "2011-01-01"));
+    zmrResult.add(new RegisterResult("bpkMax", "de/st/"+randomIdentifier, "Maximilian", randomFamilyName, "2011-01-01"));
+    zmrClient = Mockito.mock(IZmrClient.class);
+    Mockito.when(zmrClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(zmrResult);
 
     //Mock ernb
     ArrayList<RegisterResult> ernbResult = new ArrayList<>();
-    ernbClient = Mockito.mock(DummyErnbClient.class);
-    Mockito.when(ernbClient.searchWithPersonIdentifer("max123")).thenReturn(ernbResult);//"de/st/max123"???
-    task.setErnbClient(ernbClient);
+    ernbClient = Mockito.mock(IErnbClient.class);
+    Mockito.when(ernbClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(ernbResult);
 
+    task = new InitialSearchTask(emptyHandlers(), ernbClient, zmrClient);
     try {
       task.execute(pendingReq, executionContext);
       Assert.assertTrue("Wrong workflow, should not reach this point/ get a bpk", false);
-      String bPk = (String)
-          pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
-
     } catch (final TaskExecutionException e) {
       Throwable origE = e.getOriginalException();
       Assert.assertTrue("Wrong exception", (origE.getCause() instanceof ManualFixNecessaryException));
@@ -227,25 +205,21 @@ public class InitialSearchTaskFirstTest {
 
     //Mock ZMR
     ArrayList<RegisterResult> zmrResult = new ArrayList<>();
-    zmrClient = Mockito.mock(DummyZmrClient.class);
-    Mockito.when(zmrClient.searchWithPersonIdentifer("max123")).thenReturn(zmrResult);//"de/st/max123"???
-    task.setZmrClient(zmrClient);
+    zmrClient = Mockito.mock(IZmrClient.class);
+    Mockito.when(zmrClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(zmrResult);
 
     //Mock ernb
     ArrayList<RegisterResult> ernbResult = new ArrayList<>();
-    ernbResult.add(new RegisterResult("bpkMax","de/st/max123", "Max", "Mustermann", "2011-01-01"));
-    ernbResult.add(new RegisterResult("bpkMax","de/st/max123", "Maximilian", "Mustermann", "2011-01-01"));
+    ernbResult.add(new RegisterResult("bpkMax", "de/st/"+randomIdentifier, randomGivenName, randomFamilyName, "2011-01-01"));
+    ernbResult.add(new RegisterResult("bpkMax", "de/st/"+randomIdentifier, "Maximilian", randomFamilyName, "2011-01-01"));
 
-    ernbClient = Mockito.mock(DummyErnbClient.class);
-    Mockito.when(ernbClient.searchWithPersonIdentifer("max123")).thenReturn(ernbResult);//"de/st/max123"???
-    task.setErnbClient(ernbClient);
+    ernbClient = Mockito.mock(IErnbClient.class);
+    Mockito.when(ernbClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(ernbResult);
 
+    task = new InitialSearchTask(emptyHandlers(), ernbClient, zmrClient);
     try {
       task.execute(pendingReq, executionContext);
       Assert.assertTrue("Wrong workflow, should not reach this point/ get a bpk", false);
-      String bPk = (String)
-          pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
-
     } catch (final TaskExecutionException e) {
       Throwable origE = e.getOriginalException();
       Assert.assertTrue("Wrong exception", (origE.getCause() instanceof ManualFixNecessaryException));
@@ -259,26 +233,25 @@ public class InitialSearchTaskFirstTest {
    */
   public void testNode102a() throws Exception {
 
+    String randomBpk = RandomStringUtils.randomNumeric(12);;
     //Mock ZMR
     ArrayList<RegisterResult> zmrResult = new ArrayList<>();
-    zmrClient = Mockito.mock(DummyZmrClient.class);
-    Mockito.when(zmrClient.searchWithPersonIdentifer("max123")).thenReturn(zmrResult);//"de/st/max123"???
-    task.setZmrClient(zmrClient);
+    zmrClient = Mockito.mock(IZmrClient.class);
+    Mockito.when(zmrClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(zmrResult);
 
     //Mock ernb
     ArrayList<RegisterResult> ernbResult = new ArrayList<>();
-    ernbResult.add(new RegisterResult("bpkMax","de/st/max123", "Max", "Mustermann", "2011-01-01"));
+    ernbResult.add(new RegisterResult(randomBpk, "de/st/"+randomIdentifier, randomGivenName, randomFamilyName, "2011-01-01"));
 
-    ernbClient = Mockito.mock(DummyErnbClient.class);
-    Mockito.when(ernbClient.searchWithPersonIdentifer("max123")).thenReturn(ernbResult);//"de/st/max123"???
-    task.setErnbClient(ernbClient);
+    ernbClient = Mockito.mock(IErnbClient.class);
+    Mockito.when(ernbClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(ernbResult);
 
+    task = new InitialSearchTask(emptyHandlers(), ernbClient, zmrClient);
     try {
       task.execute(pendingReq, executionContext);
       String bPk = (String)
           pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
-      Assert.assertTrue("Wrong bpk", bPk.equals("bpkMax"));
-
+      Assert.assertTrue("Wrong bpk", bPk.equals(randomBpk));
     } catch (final TaskExecutionException e) {
       Assert.assertTrue("Wrong workflow, should not reach this point", false);
     }
@@ -290,27 +263,26 @@ public class InitialSearchTaskFirstTest {
    * One match, no register update needed
    */
   public void testNode102b() throws Exception {
-
+    String randomBpk = RandomStringUtils.randomNumeric(14);
     //Mock ZMR
     ArrayList<RegisterResult> zmrResult = new ArrayList<>();
-    zmrResult.add(new RegisterResult("bpkMax","de/st/max123", "Max", "Mustermann", "2011-01-01"));
+    zmrResult.add(new RegisterResult(randomBpk, "de/st/"+randomIdentifier, randomGivenName, randomFamilyName, "2011-01-01"));
 
-    zmrClient = Mockito.mock(DummyZmrClient.class);
-    Mockito.when(zmrClient.searchWithPersonIdentifer("max123")).thenReturn(zmrResult);//"de/st/max123"???
-    task.setZmrClient(zmrClient);
+    zmrClient = Mockito.mock(IZmrClient.class);
+    Mockito.when(zmrClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(zmrResult);
 
     //Mock ernb
     ArrayList<RegisterResult> ernbResult = new ArrayList<>();
 
-    ernbClient = Mockito.mock(DummyErnbClient.class);
-    Mockito.when(ernbClient.searchWithPersonIdentifer("max123")).thenReturn(ernbResult);//"de/st/max123"???
-    task.setErnbClient(ernbClient);
+    ernbClient = Mockito.mock(IErnbClient.class);
+    Mockito.when(ernbClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(ernbResult);
 
+    task = new InitialSearchTask(emptyHandlers(), ernbClient, zmrClient);
     try {
       task.execute(pendingReq, executionContext);
       String bPk = (String)
           pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
-      Assert.assertTrue("Wrong bpk", bPk.equals("bpkMax"));
+      Assert.assertTrue("Wrong bpk", bPk.equals(randomBpk));
 
     } catch (final TaskExecutionException e) {
       Assert.assertTrue("Wrong workflow, should not reach this point", false);
@@ -323,40 +295,36 @@ public class InitialSearchTaskFirstTest {
    * One match found in ZMR and ErnB with detail search
    */
   public void testNode103IT() throws Exception {
-    String bpkRegister = "bpkMax";
- String taxNumber = "tax123";
-    final AuthenticationResponse response = buildDummyAuthResponseMaxMustermannIT_Tax(taxNumber);
+    String bpkRegister = RandomStringUtils.randomNumeric(14);
+    String taxNumber = RandomStringUtils.randomNumeric(14);
+    final AuthenticationResponse response = buildDummyAuthResponseRandomPersonIT_Tax(taxNumber);
     TestRequestImpl pendingReq1 = new TestRequestImpl();
     pendingReq1.getSessionData(AuthProcessDataWrapper.class)
         .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
 
     //Mock ZMR initial search
     ArrayList<RegisterResult> zmrResultInitial = new ArrayList<>();
-    zmrClient = Mockito.mock(DummyZmrClient.class);
-    Mockito.when(zmrClient.searchWithPersonIdentifer("max123")).thenReturn(zmrResultInitial);
+    zmrClient = Mockito.mock(IZmrClient.class);
+    Mockito.when(zmrClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(zmrResultInitial);
     ArrayList<RegisterResult> zmrResultSpecific = new ArrayList<>();
     //String bpk, String pseudonym, String givenName, String familyName, String dateOfBirth,
     //                        String placeOfBirth, String birthName, String taxNumber, PostalAddressType address
-    zmrResultSpecific.add(new RegisterResult(bpkRegister,"it/st/max1234", "Max", "Mustermann", "2011-01-01", null,
-        null, taxNumber, null));
+    zmrResultSpecific.add(new RegisterResult(bpkRegister, "it/st/"+randomIdentifier+"4", randomGivenName, randomFamilyName,
+        "2011-01-01", null, null, taxNumber, null));
 
     Mockito.when(zmrClient.searchItSpecific(taxNumber)).thenReturn(zmrResultSpecific);
-    task.setZmrClient(zmrClient);
 
     //Mock ernb initial search
     ArrayList<RegisterResult> ernbResultInitial = new ArrayList<>();
-    ernbClient = Mockito.mock(DummyErnbClient.class);
-    Mockito.when(ernbClient.searchWithPersonIdentifer("max123")).thenReturn(ernbResultInitial);//"de/st/max123"???
+    ernbClient = Mockito.mock(IErnbClient.class);
+    Mockito.when(ernbClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(ernbResultInitial);
 
-    task.setErnbClient(ernbClient);
 
     //Mock country specific search
     List<ICountrySpecificDetailSearchProcessor> handlers = new ArrayList<>();
-    ItSpecificDetailSearchProcessor it = new ItSpecificDetailSearchProcessor();
-    it.setErnbClient(ernbClient);
-    it.setZmrClient(zmrClient);
+    ItSpecificDetailSearchProcessor it = new ItSpecificDetailSearchProcessor(ernbClient, zmrClient);
     handlers.add(it);
-    task.setHandlers(handlers);
+    task = new InitialSearchTask(handlers, ernbClient, zmrClient);
 
     try {
       task.execute(pendingReq1, executionContext);
@@ -375,8 +343,8 @@ public class InitialSearchTaskFirstTest {
    * Multiple matches found in ZMR and ErnB with detail search
    */
   public void testNode103DE() throws Exception {
-    String givenName = "Max";
-    String familyName = "Mustermann";
+    String givenName = randomGivenName;
+    String familyName = randomFamilyName;
     String pseudonym = "de/st/max1234";
     String bpk = "bpkMax";
     String dateOfBirth = "2011-01-01";
@@ -390,33 +358,26 @@ public class InitialSearchTaskFirstTest {
 
     //Mock ZMR initial search
     ArrayList<RegisterResult> zmrResultInitial = new ArrayList<>();
-    zmrClient = Mockito.mock(DummyZmrClient.class);
-    Mockito.when(zmrClient.searchWithPersonIdentifer("max123")).thenReturn(zmrResultInitial);
+    zmrClient = Mockito.mock(IZmrClient.class);
+    Mockito.when(zmrClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(zmrResultInitial);
     ArrayList<RegisterResult> zmrResultSpecific = new ArrayList<>();
 
-    zmrResultSpecific.add(new RegisterResult(bpk, pseudonym, givenName, familyName, dateOfBirth, placeOfBirth, birthName,
+    zmrResultSpecific.add(new RegisterResult(bpk, pseudonym, givenName, familyName, dateOfBirth, placeOfBirth,
+        birthName,
         null, null));
 
-    //.searchDeSpecific(eidData.getGivenName(), eidData.getFamilyName(), eidData.getDateOfBirth(),
-    //            eidData.getPlaceOfBirth(), eidData.getBirthName()
     Mockito.when(zmrClient.searchDeSpecific(givenName, familyName, dateOfBirth, placeOfBirth, birthName)).thenReturn(zmrResultSpecific);
 
-    task.setZmrClient(zmrClient);
-
     //Mock ernb initial search
     ArrayList<RegisterResult> ernbResultInitial = new ArrayList<>();
-    ernbClient = Mockito.mock(DummyErnbClient.class);
-    Mockito.when(ernbClient.searchWithPersonIdentifer("max123")).thenReturn(ernbResultInitial);//"de/st/max123"???
-
-    task.setErnbClient(ernbClient);
+    ernbClient = Mockito.mock(IErnbClient.class);
+    Mockito.when(ernbClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(ernbResultInitial);
 
     //Mock country specific search
     List<ICountrySpecificDetailSearchProcessor> handlers = new ArrayList<>();
-    DeSpecificDetailSearchProcessor de = new DeSpecificDetailSearchProcessor();
-    de.setErnbClient(ernbClient);
-    de.setZmrClient(zmrClient);
+    DeSpecificDetailSearchProcessor de = new DeSpecificDetailSearchProcessor(ernbClient, zmrClient);
     handlers.add(de);
-    task.setHandlers(handlers);
+    task = new InitialSearchTask(handlers, ernbClient, zmrClient);
 
     try {
       task.execute(pendingReq1, executionContext);
@@ -435,8 +396,8 @@ public class InitialSearchTaskFirstTest {
    * Multiple matches found in ZMR and ErnB with detail search
    */
   public void testNode104DE() throws Exception {
-    String givenName = "Max";
-    String familyName = "Mustermann";
+    String givenName = randomGivenName;
+    String familyName = randomFamilyName;
     String pseudonym1 = "de/st/max1234";
     String pseudonym2 = "de/st/max12345";
     String bpk1 = "bpkMax";
@@ -452,34 +413,29 @@ public class InitialSearchTaskFirstTest {
 
     //Mock ZMR initial search
     ArrayList<RegisterResult> zmrResultInitial = new ArrayList<>();
-    zmrClient = Mockito.mock(DummyZmrClient.class);
-    Mockito.when(zmrClient.searchWithPersonIdentifer("max123")).thenReturn(zmrResultInitial);
+    zmrClient = Mockito.mock(IZmrClient.class);
+    Mockito.when(zmrClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(zmrResultInitial);
     ArrayList<RegisterResult> zmrResultSpecific = new ArrayList<>();
 
-    zmrResultSpecific.add(new RegisterResult(bpk1, pseudonym1, givenName, familyName, dateOfBirth, placeOfBirth, birthName,
+    zmrResultSpecific.add(new RegisterResult(bpk1, pseudonym1, givenName, familyName, dateOfBirth, placeOfBirth,
+        birthName,
         null, null));
-    zmrResultSpecific.add(new RegisterResult(bpk2, pseudonym2, givenName, familyName, dateOfBirth, placeOfBirth, birthName,
+    zmrResultSpecific.add(new RegisterResult(bpk2, pseudonym2, givenName, familyName, dateOfBirth, placeOfBirth,
+        birthName,
         null, null));
-    //.searchDeSpecific(eidData.getGivenName(), eidData.getFamilyName(), eidData.getDateOfBirth(),
-    //            eidData.getPlaceOfBirth(), eidData.getBirthName()
     Mockito.when(zmrClient.searchDeSpecific(givenName, familyName, dateOfBirth, placeOfBirth, birthName)).thenReturn(zmrResultSpecific);
 
-    task.setZmrClient(zmrClient);
 
     //Mock ernb initial search
     ArrayList<RegisterResult> ernbResultInitial = new ArrayList<>();
-    ernbClient = Mockito.mock(DummyErnbClient.class);
-    Mockito.when(ernbClient.searchWithPersonIdentifer("max123")).thenReturn(ernbResultInitial);//"de/st/max123"???
-
-    task.setErnbClient(ernbClient);
+    ernbClient = Mockito.mock(IErnbClient.class);
+    Mockito.when(ernbClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(ernbResultInitial);
 
     //Mock country specific search
     List<ICountrySpecificDetailSearchProcessor> handlers = new ArrayList<>();
-    DeSpecificDetailSearchProcessor de = new DeSpecificDetailSearchProcessor();
-    de.setErnbClient(ernbClient);
-    de.setZmrClient(zmrClient);
+    DeSpecificDetailSearchProcessor de = new DeSpecificDetailSearchProcessor(ernbClient, zmrClient);
     handlers.add(de);
-    task.setHandlers(handlers);
+    task = new InitialSearchTask(handlers, ernbClient, zmrClient);
 
     try {
       task.execute(pendingReq1, executionContext);
@@ -498,43 +454,34 @@ public class InitialSearchTaskFirstTest {
    * Multiple matches found in ZMR and ErnB with detail search
    */
   public void testNode104IT() throws Exception {
-
-    String fakeTaxNumber = "tax123";
-    final AuthenticationResponse response = buildDummyAuthResponseMaxMustermannIT_Tax(fakeTaxNumber);
+    String fakeTaxNumber = RandomStringUtils.randomNumeric(14);;
+    final AuthenticationResponse response = buildDummyAuthResponseRandomPersonIT_Tax(fakeTaxNumber);
     TestRequestImpl pendingReq1 = new TestRequestImpl();
     pendingReq1.getSessionData(AuthProcessDataWrapper.class)
         .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
 
     //Mock ZMR initial search
     ArrayList<RegisterResult> zmrResultInitial = new ArrayList<>();
-    zmrClient = Mockito.mock(DummyZmrClient.class);
-    Mockito.when(zmrClient.searchWithPersonIdentifer("max123")).thenReturn(zmrResultInitial);
+    zmrClient = Mockito.mock(IZmrClient.class);
+    Mockito.when(zmrClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(zmrResultInitial);
     ArrayList<RegisterResult> zmrResultSpecific = new ArrayList<>();
-    //String bpk, String pseudonym, String givenName, String familyName, String dateOfBirth,
-    //                        String placeOfBirth, String birthName, String taxNumber, PostalAddressType address
-    zmrResultSpecific.add(new RegisterResult("bpkMax","it/st/max1234", "Max", "Mustermann", "2011-01-01", null, null,
+
+    zmrResultSpecific.add(new RegisterResult("bpkMax", "it/st/"+randomIdentifier+"4", randomGivenName, randomFamilyName, "2011-01-01", null, null,
         fakeTaxNumber, null));
-    zmrResultSpecific.add(new RegisterResult("bpkMax1","it/st/max1235", "Max", "Mustermann", "2011-01-01", null, null,
+    zmrResultSpecific.add(new RegisterResult("bpkMax1", "it/st/"+randomIdentifier+"5", randomGivenName, randomFamilyName, "2011-01-01", null, null,
         fakeTaxNumber, null));
     Mockito.when(zmrClient.searchItSpecific(fakeTaxNumber)).thenReturn(zmrResultSpecific);
 
-
-    task.setZmrClient(zmrClient);
-
     //Mock ernb initial search
     ArrayList<RegisterResult> ernbResultInitial = new ArrayList<>();
-    ernbClient = Mockito.mock(DummyErnbClient.class);
-    Mockito.when(ernbClient.searchWithPersonIdentifer("max123")).thenReturn(ernbResultInitial);//"de/st/max123"???
-
-    task.setErnbClient(ernbClient);
+    ernbClient = Mockito.mock(IErnbClient.class);
+    Mockito.when(ernbClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(ernbResultInitial);
 
     //Mock country specific search
     List<ICountrySpecificDetailSearchProcessor> handlers = new ArrayList<>();
-    ItSpecificDetailSearchProcessor it = new ItSpecificDetailSearchProcessor();
-    it.setErnbClient(ernbClient);
-    it.setZmrClient(zmrClient);
+    ItSpecificDetailSearchProcessor it = new ItSpecificDetailSearchProcessor(ernbClient, zmrClient);
     handlers.add(it);
-    task.setHandlers(handlers);
+    task = new InitialSearchTask(handlers, ernbClient, zmrClient);
 
     try {
       task.execute(pendingReq1, executionContext);
@@ -552,27 +499,25 @@ public class InitialSearchTaskFirstTest {
   /**
    * NO match found in ZMR and ErnB with Initial search
    */
-  public void testNode105() throws Exception {
+  public void testNode105() {
 
     //Mock ZMR
     ArrayList<RegisterResult> zmrResult = new ArrayList<>();
-    zmrClient = Mockito.mock(DummyZmrClient.class);
-    Mockito.when(zmrClient.searchWithPersonIdentifer("max123")).thenReturn(zmrResult);//"de/st/max123"???
-    task.setZmrClient(zmrClient);
+    zmrClient = Mockito.mock(IZmrClient.class);
+    Mockito.when(zmrClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(zmrResult);
 
     //Mock ernb
     ArrayList<RegisterResult> ernbResult = new ArrayList<>();
-    ernbClient = Mockito.mock(DummyErnbClient.class);
-    Mockito.when(ernbClient.searchWithPersonIdentifer("max123")).thenReturn(ernbResult);//"de/st/max123"???
-    task.setErnbClient(ernbClient);
+    ernbClient = Mockito.mock(IErnbClient.class);
+    Mockito.when(ernbClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(ernbResult);
 
+    task = new InitialSearchTask(emptyHandlers(), ernbClient, zmrClient);
     try {
       task.execute(pendingReq, executionContext);
 
       String bPk = (String)
           pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
-      // NOTE: Why "105"? Extract in a constant
-      Assert.assertTrue("Wrong bpk", bPk.equals("105"));
+      Assert.assertTrue("Wrong bpk", bPk.equals("TODO-Temporary-Endnode-105"));
     } catch (final TaskExecutionException e) {
       Assert.assertTrue("Wrong workflow, should not reach this point", false);
     }
@@ -580,27 +525,17 @@ public class InitialSearchTaskFirstTest {
 
 
   @NotNull
-  private AuthenticationResponse buildDummyAuthResponse() throws URISyntaxException {
-    return buildDummyAuthResponse(RandomStringUtils.randomAlphabetic(10), RandomStringUtils.randomAlphabetic(10),
-        "de/st/" + RandomStringUtils.randomNumeric(64), "2001-01-01");
-  }
-
-  @NotNull
-  private AuthenticationResponse buildDummyAuthResponseMaxMustermann() throws URISyntaxException {
-    // NOTE: Those strings "de/st/max123" seem to be somehow relevant, but where do we need to use that exact string again?
+  private AuthenticationResponse buildDummyAuthResponseRandomPerson() throws URISyntaxException {
+    // NOTE: Those strings "de/st/max123" seem to be somehow relevant, but where do we need to use that exact string
+    // again?
     // NOTE: If not, why not using random strings?
-    return buildDummyAuthResponse("Max", "Mustermann",
-        "de/st/max123", "2011-01-01");
-  }
-
-  private AuthenticationResponse buildDummyAuthResponseMaxMustermannIT() throws URISyntaxException {
-    return buildDummyAuthResponse("Max", "Mustermann",
-        "it/st/max123", "2011-01-01");
+    return buildDummyAuthResponse(randomGivenName, randomFamilyName,
+        "de/st/"+randomIdentifier, "2011-01-01");
   }
 
-  private AuthenticationResponse buildDummyAuthResponseMaxMustermannIT_Tax(String taxNumber) throws URISyntaxException {
-    return buildDummyAuthResponse("Max", "Mustermann",
-        "it/st/max123", "2011-01-01", taxNumber, null, null);
+  private AuthenticationResponse buildDummyAuthResponseRandomPersonIT_Tax(String taxNumber) throws URISyntaxException {
+    return buildDummyAuthResponse(randomGivenName, randomFamilyName,
+        "it/st/"+randomIdentifier, "2011-01-01", taxNumber, null, null);
   }
 
   @NotNull
@@ -611,10 +546,11 @@ public class InitialSearchTaskFirstTest {
 
   @NotNull
   private AuthenticationResponse buildDummyAuthResponseDE(String givenName, String familyName, String identifier,
-                                                        String dateOfBirth, String placeOfBirth,
+                                                          String dateOfBirth, String placeOfBirth,
                                                           String birthName) throws URISyntaxException {
     return buildDummyAuthResponse(givenName, familyName, identifier, dateOfBirth, null, placeOfBirth, birthName);
   }
+
   @NotNull
   private AuthenticationResponse buildDummyAuthResponse(String givenName, String familyName, String identifier,
                                                         String dateOfBirth, String taxNumber, String placeOfBirth,
@@ -653,13 +589,13 @@ public class InitialSearchTaskFirstTest {
         .put(attributeDef3, givenName)
         .put(attributeDef4, dateOfBirth);
 
-    if(taxNumber != null) {
+    if (taxNumber != null) {
       builder.put(attributeDef5, taxNumber);
     }
-    if(birthName != null) {
+    if (birthName != null) {
       builder.put(attributeDef7, birthName);
     }
-    if(placeOfBirth != null) {
+    if (placeOfBirth != null) {
       builder.put(attributeDef6, placeOfBirth);
     }
     final ImmutableAttributeMap attributeMap = builder.build();
@@ -669,4 +605,9 @@ public class InitialSearchTaskFirstTest {
         "afaf")
         .attributes(attributeMap).build();
   }
+
+  private List<ICountrySpecificDetailSearchProcessor> emptyHandlers() {
+    return new ArrayList<>();
+  }
+
 }
-- 
cgit v1.2.3


From 81187bb7c831cf2982f82a60e58f3a5151efb78e Mon Sep 17 00:00:00 2001
From: Alexander Marsalek <amarsalek@iaik.tugraz.at>
Date: Mon, 4 Jan 2021 18:39:08 +0100
Subject: created empty tasks

---
 .../eidas/v2/tasks/CreateNewErnbEntryTask.java     | 66 ++++++++++++++++++++++
 .../eidas/v2/tasks/GenerateGuiRequestTask.java     | 66 ++++++++++++++++++++++
 .../GenerateMobilePhoneSignatureRequestTask.java   | 66 ++++++++++++++++++++++
 .../eidas/v2/tasks/ReceiveGuiResponseTask.java     | 66 ++++++++++++++++++++++
 .../ReceiveMobilePhoneSignatureResponseTask.java   | 66 ++++++++++++++++++++++
 5 files changed, 330 insertions(+)
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateNewErnbEntryTask.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateGuiRequestTask.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateMobilePhoneSignatureRequestTask.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveGuiResponseTask.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseTask.java

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateNewErnbEntryTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateNewErnbEntryTask.java
new file mode 100644
index 00000000..1e07377f
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateNewErnbEntryTask.java
@@ -0,0 +1,66 @@
+/*
+ * Copyright 2018 A-SIT Plus GmbH
+ * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
+ * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
+ *
+ * Licensed under the EUPL, Version 1.2 or - as soon they will be approved by
+ * the European Commission - subsequent versions of the EUPL (the "License");
+ * You may not use this work except in compliance with the License.
+ * You may obtain a copy of the License at:
+ * https://joinup.ec.europa.eu/news/understanding-eupl-v12
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" basis,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ *
+ * This product combines work with different licenses. See the "NOTICE" text
+ * file for details on the various modules and licenses.
+ * The "NOTICE" text file is part of the distribution. Any derivative works
+ * that you distribute must include a readable copy of the "NOTICE" text file.
+ */
+
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks;
+
+import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
+import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
+import at.gv.egiz.eaaf.core.impl.idp.auth.modules.AbstractAuthServletTask;
+import lombok.extern.slf4j.Slf4j;
+import org.springframework.stereotype.Component;
+
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+
+/**
+ * Task that searches ErnB and ZMR before adding person to SZR.
+ *
+ * @author tlenz
+ */
+@Slf4j
+@Component("InitialSearchTask")
+// NOTE: General: Please rebase git commit and squash them where useful, i.e. "remove unused import" should
+//       not be a separate commit.
+public class CreateNewErnbEntryTask extends AbstractAuthServletTask {
+
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see at.gv.egovernment.moa.id.process.springweb.MoaIdTask#execute(at.gv.
+   * egovernment.moa.id.process.api.ExecutionContext,
+   * javax.servlet.http.HttpServletRequest,
+   * javax.servlet.http.HttpServletResponse)
+   */
+  @Override
+  public void execute(ExecutionContext executionContext, HttpServletRequest request, HttpServletResponse response)
+      throws TaskExecutionException {
+    try {
+      //TODO
+    } catch (final Exception e) {
+      log.error("Initial search FAILED.", e);
+      throw new TaskExecutionException(pendingReq, "Initial search FAILED.", e);
+    }
+  }
+
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateGuiRequestTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateGuiRequestTask.java
new file mode 100644
index 00000000..df4cd812
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateGuiRequestTask.java
@@ -0,0 +1,66 @@
+/*
+ * Copyright 2018 A-SIT Plus GmbH
+ * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
+ * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
+ *
+ * Licensed under the EUPL, Version 1.2 or - as soon they will be approved by
+ * the European Commission - subsequent versions of the EUPL (the "License");
+ * You may not use this work except in compliance with the License.
+ * You may obtain a copy of the License at:
+ * https://joinup.ec.europa.eu/news/understanding-eupl-v12
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" basis,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ *
+ * This product combines work with different licenses. See the "NOTICE" text
+ * file for details on the various modules and licenses.
+ * The "NOTICE" text file is part of the distribution. Any derivative works
+ * that you distribute must include a readable copy of the "NOTICE" text file.
+ */
+
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks;
+
+import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
+import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
+import at.gv.egiz.eaaf.core.impl.idp.auth.modules.AbstractAuthServletTask;
+import lombok.extern.slf4j.Slf4j;
+import org.springframework.stereotype.Component;
+
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+
+/**
+ * Task that searches ErnB and ZMR before adding person to SZR.
+ *
+ * @author tlenz
+ */
+@Slf4j
+@Component("InitialSearchTask")
+// NOTE: General: Please rebase git commit and squash them where useful, i.e. "remove unused import" should
+//       not be a separate commit.
+public class GenerateGuiRequestTask extends AbstractAuthServletTask {
+
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see at.gv.egovernment.moa.id.process.springweb.MoaIdTask#execute(at.gv.
+   * egovernment.moa.id.process.api.ExecutionContext,
+   * javax.servlet.http.HttpServletRequest,
+   * javax.servlet.http.HttpServletResponse)
+   */
+  @Override
+  public void execute(ExecutionContext executionContext, HttpServletRequest request, HttpServletResponse response)
+      throws TaskExecutionException {
+    try {
+      //TODO
+    } catch (final Exception e) {
+      log.error("Initial search FAILED.", e);
+      throw new TaskExecutionException(pendingReq, "Initial search FAILED.", e);
+    }
+  }
+
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateMobilePhoneSignatureRequestTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateMobilePhoneSignatureRequestTask.java
new file mode 100644
index 00000000..4220a822
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateMobilePhoneSignatureRequestTask.java
@@ -0,0 +1,66 @@
+/*
+ * Copyright 2018 A-SIT Plus GmbH
+ * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
+ * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
+ *
+ * Licensed under the EUPL, Version 1.2 or - as soon they will be approved by
+ * the European Commission - subsequent versions of the EUPL (the "License");
+ * You may not use this work except in compliance with the License.
+ * You may obtain a copy of the License at:
+ * https://joinup.ec.europa.eu/news/understanding-eupl-v12
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" basis,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ *
+ * This product combines work with different licenses. See the "NOTICE" text
+ * file for details on the various modules and licenses.
+ * The "NOTICE" text file is part of the distribution. Any derivative works
+ * that you distribute must include a readable copy of the "NOTICE" text file.
+ */
+
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks;
+
+import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
+import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
+import at.gv.egiz.eaaf.core.impl.idp.auth.modules.AbstractAuthServletTask;
+import lombok.extern.slf4j.Slf4j;
+import org.springframework.stereotype.Component;
+
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+
+/**
+ * Task that searches ErnB and ZMR before adding person to SZR.
+ *
+ * @author tlenz
+ */
+@Slf4j
+@Component("InitialSearchTask")
+// NOTE: General: Please rebase git commit and squash them where useful, i.e. "remove unused import" should
+//       not be a separate commit.
+public class GenerateMobilePhoneSignatureRequestTask extends AbstractAuthServletTask {
+
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see at.gv.egovernment.moa.id.process.springweb.MoaIdTask#execute(at.gv.
+   * egovernment.moa.id.process.api.ExecutionContext,
+   * javax.servlet.http.HttpServletRequest,
+   * javax.servlet.http.HttpServletResponse)
+   */
+  @Override
+  public void execute(ExecutionContext executionContext, HttpServletRequest request, HttpServletResponse response)
+      throws TaskExecutionException {
+    try {
+      //TODO
+    } catch (final Exception e) {
+      log.error("Initial search FAILED.", e);
+      throw new TaskExecutionException(pendingReq, "Initial search FAILED.", e);
+    }
+  }
+
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveGuiResponseTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveGuiResponseTask.java
new file mode 100644
index 00000000..692e844a
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveGuiResponseTask.java
@@ -0,0 +1,66 @@
+/*
+ * Copyright 2018 A-SIT Plus GmbH
+ * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
+ * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
+ *
+ * Licensed under the EUPL, Version 1.2 or - as soon they will be approved by
+ * the European Commission - subsequent versions of the EUPL (the "License");
+ * You may not use this work except in compliance with the License.
+ * You may obtain a copy of the License at:
+ * https://joinup.ec.europa.eu/news/understanding-eupl-v12
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" basis,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ *
+ * This product combines work with different licenses. See the "NOTICE" text
+ * file for details on the various modules and licenses.
+ * The "NOTICE" text file is part of the distribution. Any derivative works
+ * that you distribute must include a readable copy of the "NOTICE" text file.
+ */
+
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks;
+
+import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
+import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
+import at.gv.egiz.eaaf.core.impl.idp.auth.modules.AbstractAuthServletTask;
+import lombok.extern.slf4j.Slf4j;
+import org.springframework.stereotype.Component;
+
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+
+/**
+ * Task that searches ErnB and ZMR before adding person to SZR.
+ *
+ * @author tlenz
+ */
+@Slf4j
+@Component("InitialSearchTask")
+// NOTE: General: Please rebase git commit and squash them where useful, i.e. "remove unused import" should
+//       not be a separate commit.
+public class ReceiveGuiResponseTask extends AbstractAuthServletTask {
+
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see at.gv.egovernment.moa.id.process.springweb.MoaIdTask#execute(at.gv.
+   * egovernment.moa.id.process.api.ExecutionContext,
+   * javax.servlet.http.HttpServletRequest,
+   * javax.servlet.http.HttpServletResponse)
+   */
+  @Override
+  public void execute(ExecutionContext executionContext, HttpServletRequest request, HttpServletResponse response)
+      throws TaskExecutionException {
+    try {
+      //TODO
+    } catch (final Exception e) {
+      log.error("Initial search FAILED.", e);
+      throw new TaskExecutionException(pendingReq, "Initial search FAILED.", e);
+    }
+  }
+
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseTask.java
new file mode 100644
index 00000000..a8790b2f
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseTask.java
@@ -0,0 +1,66 @@
+/*
+ * Copyright 2018 A-SIT Plus GmbH
+ * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
+ * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
+ *
+ * Licensed under the EUPL, Version 1.2 or - as soon they will be approved by
+ * the European Commission - subsequent versions of the EUPL (the "License");
+ * You may not use this work except in compliance with the License.
+ * You may obtain a copy of the License at:
+ * https://joinup.ec.europa.eu/news/understanding-eupl-v12
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" basis,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ *
+ * This product combines work with different licenses. See the "NOTICE" text
+ * file for details on the various modules and licenses.
+ * The "NOTICE" text file is part of the distribution. Any derivative works
+ * that you distribute must include a readable copy of the "NOTICE" text file.
+ */
+
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks;
+
+import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
+import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
+import at.gv.egiz.eaaf.core.impl.idp.auth.modules.AbstractAuthServletTask;
+import lombok.extern.slf4j.Slf4j;
+import org.springframework.stereotype.Component;
+
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+
+/**
+ * Task that searches ErnB and ZMR before adding person to SZR.
+ *
+ * @author tlenz
+ */
+@Slf4j
+@Component("InitialSearchTask")
+// NOTE: General: Please rebase git commit and squash them where useful, i.e. "remove unused import" should
+//       not be a separate commit.
+public class ReceiveMobilePhoneSignatureResponseTask extends AbstractAuthServletTask {
+
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see at.gv.egovernment.moa.id.process.springweb.MoaIdTask#execute(at.gv.
+   * egovernment.moa.id.process.api.ExecutionContext,
+   * javax.servlet.http.HttpServletRequest,
+   * javax.servlet.http.HttpServletResponse)
+   */
+  @Override
+  public void execute(ExecutionContext executionContext, HttpServletRequest request, HttpServletResponse response)
+      throws TaskExecutionException {
+    try {
+      //TODO
+    } catch (final Exception e) {
+      log.error("Initial search FAILED.", e);
+      throw new TaskExecutionException(pendingReq, "Initial search FAILED.", e);
+    }
+  }
+
+}
-- 
cgit v1.2.3


From 03830b4462b3f11acd28a63ab05c3105bc19e094 Mon Sep 17 00:00:00 2001
From: Alexander Marsalek <amarsalek@iaik.tugraz.at>
Date: Mon, 4 Jan 2021 20:29:25 +0100
Subject: Gui creation part 1

---
 .../auth/eidas/v2/dao/SelectedLoginMethod.java     |  5 ++
 .../eidas/v2/tasks/CreateNewErnbEntryTask.java     |  2 +-
 .../eidas/v2/tasks/GenerateGuiRequestTask.java     | 66 -----------------
 .../auth/eidas/v2/tasks/GenerateGuiTask.java       | 86 ++++++++++++++++++++++
 .../GenerateMobilePhoneSignatureRequestTask.java   |  2 +-
 .../eidas/v2/tasks/ReceiveGuiResponseTask.java     | 26 ++++++-
 .../ReceiveMobilePhoneSignatureResponseTask.java   |  2 +-
 7 files changed, 116 insertions(+), 73 deletions(-)
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SelectedLoginMethod.java
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateGuiRequestTask.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateGuiTask.java

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SelectedLoginMethod.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SelectedLoginMethod.java
new file mode 100644
index 00000000..f8e2ff2e
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SelectedLoginMethod.java
@@ -0,0 +1,5 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.dao;
+
+public enum SelectedLoginMethod {
+  EIDAS_LOGIN, MOBILE_PHONE_SIGNATURE_LOGIN, NO_OTHER_LOGIN
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateNewErnbEntryTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateNewErnbEntryTask.java
index 1e07377f..77d6ed41 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateNewErnbEntryTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateNewErnbEntryTask.java
@@ -38,7 +38,7 @@ import javax.servlet.http.HttpServletResponse;
  * @author tlenz
  */
 @Slf4j
-@Component("InitialSearchTask")
+@Component("CreateNewErnbEntryTask")
 // NOTE: General: Please rebase git commit and squash them where useful, i.e. "remove unused import" should
 //       not be a separate commit.
 public class CreateNewErnbEntryTask extends AbstractAuthServletTask {
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateGuiRequestTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateGuiRequestTask.java
deleted file mode 100644
index df4cd812..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateGuiRequestTask.java
+++ /dev/null
@@ -1,66 +0,0 @@
-/*
- * Copyright 2018 A-SIT Plus GmbH
- * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
- * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
- *
- * Licensed under the EUPL, Version 1.2 or - as soon they will be approved by
- * the European Commission - subsequent versions of the EUPL (the "License");
- * You may not use this work except in compliance with the License.
- * You may obtain a copy of the License at:
- * https://joinup.ec.europa.eu/news/understanding-eupl-v12
- *
- * Unless required by applicable law or agreed to in writing, software
- * distributed under the License is distributed on an "AS IS" basis,
- * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
- * See the License for the specific language governing permissions and
- * limitations under the License.
- *
- * This product combines work with different licenses. See the "NOTICE" text
- * file for details on the various modules and licenses.
- * The "NOTICE" text file is part of the distribution. Any derivative works
- * that you distribute must include a readable copy of the "NOTICE" text file.
- */
-
-package at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks;
-
-import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
-import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
-import at.gv.egiz.eaaf.core.impl.idp.auth.modules.AbstractAuthServletTask;
-import lombok.extern.slf4j.Slf4j;
-import org.springframework.stereotype.Component;
-
-import javax.servlet.http.HttpServletRequest;
-import javax.servlet.http.HttpServletResponse;
-
-/**
- * Task that searches ErnB and ZMR before adding person to SZR.
- *
- * @author tlenz
- */
-@Slf4j
-@Component("InitialSearchTask")
-// NOTE: General: Please rebase git commit and squash them where useful, i.e. "remove unused import" should
-//       not be a separate commit.
-public class GenerateGuiRequestTask extends AbstractAuthServletTask {
-
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see at.gv.egovernment.moa.id.process.springweb.MoaIdTask#execute(at.gv.
-   * egovernment.moa.id.process.api.ExecutionContext,
-   * javax.servlet.http.HttpServletRequest,
-   * javax.servlet.http.HttpServletResponse)
-   */
-  @Override
-  public void execute(ExecutionContext executionContext, HttpServletRequest request, HttpServletResponse response)
-      throws TaskExecutionException {
-    try {
-      //TODO
-    } catch (final Exception e) {
-      log.error("Initial search FAILED.", e);
-      throw new TaskExecutionException(pendingReq, "Initial search FAILED.", e);
-    }
-  }
-
-}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateGuiTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateGuiTask.java
new file mode 100644
index 00000000..d55d4a7e
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateGuiTask.java
@@ -0,0 +1,86 @@
+/*
+ * Copyright 2018 A-SIT Plus GmbH
+ * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
+ * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
+ *
+ * Licensed under the EUPL, Version 1.2 or - as soon they will be approved by
+ * the European Commission - subsequent versions of the EUPL (the "License");
+ * You may not use this work except in compliance with the License.
+ * You may obtain a copy of the License at:
+ * https://joinup.ec.europa.eu/news/understanding-eupl-v12
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" basis,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ *
+ * This product combines work with different licenses. See the "NOTICE" text
+ * file for details on the various modules and licenses.
+ * The "NOTICE" text file is part of the distribution. Any derivative works
+ * that you distribute must include a readable copy of the "NOTICE" text file.
+ */
+
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks;
+
+import at.asitplus.eidas.specific.connector.MsEidasNodeConstants;
+import at.asitplus.eidas.specific.connector.gui.StaticGuiBuilderConfiguration;
+import at.gv.egiz.eaaf.core.api.gui.IGuiBuilderConfiguration;
+import at.gv.egiz.eaaf.core.api.gui.ISpringMvcGuiFormBuilder;
+import at.gv.egiz.eaaf.core.api.idp.IConfiguration;
+import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
+import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
+import at.gv.egiz.eaaf.core.impl.idp.auth.modules.AbstractAuthServletTask;
+import lombok.extern.slf4j.Slf4j;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.stereotype.Component;
+
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+
+/**
+ * Task that searches ErnB and ZMR before adding person to SZR.
+ *
+ * @author tlenz
+ */
+@Slf4j
+@Component("GenerateGuiTask")
+// NOTE: General: Please rebase git commit and squash them where useful, i.e. "remove unused import" should
+//       not be a separate commit.
+public class GenerateGuiTask extends AbstractAuthServletTask {
+
+  @Autowired
+  ISpringMvcGuiFormBuilder guiBuilder;
+  @Autowired
+  IConfiguration basicConfig;
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see at.gv.egovernment.moa.id.process.springweb.MoaIdTask#execute(at.gv.
+   * egovernment.moa.id.process.api.ExecutionContext,
+   * javax.servlet.http.HttpServletRequest,
+   * javax.servlet.http.HttpServletResponse)
+   */
+  @Override
+  public void execute(ExecutionContext executionContext, HttpServletRequest request, HttpServletResponse response)
+      throws TaskExecutionException {
+    try {
+      final IGuiBuilderConfiguration config = new StaticGuiBuilderConfiguration(
+          basicConfig,
+          pendingReq,
+          basicConfig.getBasicConfiguration(
+              MsEidasNodeConstants.PROP_CONFIG_WEBCONTENT_TEMPLATES_OTHER_LOGIN_METHOD_SELECTION,
+              MsEidasNodeConstants.TEMPLATE_HTML_OTHERLOGINMETHODS),
+          MsEidasNodeConstants.ENDPOINT_OTHERLOGINMETHODSELECTION,
+          resourceLoader);
+
+      guiBuilder.build(request, response, config, "Other login methods selection form");
+
+    } catch (final Exception e) {
+      log.error("Initial search FAILED.", e);
+      throw new TaskExecutionException(pendingReq, "Gui creation FAILED.", e);
+    }
+  }
+
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateMobilePhoneSignatureRequestTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateMobilePhoneSignatureRequestTask.java
index 4220a822..c9974509 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateMobilePhoneSignatureRequestTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateMobilePhoneSignatureRequestTask.java
@@ -38,7 +38,7 @@ import javax.servlet.http.HttpServletResponse;
  * @author tlenz
  */
 @Slf4j
-@Component("InitialSearchTask")
+@Component("GenerateMobilePhoneSignatureRequestTask")
 // NOTE: General: Please rebase git commit and squash them where useful, i.e. "remove unused import" should
 //       not be a separate commit.
 public class GenerateMobilePhoneSignatureRequestTask extends AbstractAuthServletTask {
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveGuiResponseTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveGuiResponseTask.java
index 692e844a..b0cb857e 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveGuiResponseTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveGuiResponseTask.java
@@ -23,14 +23,19 @@
 
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks;
 
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SelectedLoginMethod;
+import at.gv.egiz.eaaf.core.api.data.EaafConstants;
 import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
 import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
 import at.gv.egiz.eaaf.core.impl.idp.auth.modules.AbstractAuthServletTask;
 import lombok.extern.slf4j.Slf4j;
+import org.apache.commons.lang.StringEscapeUtils;
+import org.apache.commons.lang3.StringUtils;
 import org.springframework.stereotype.Component;
 
 import javax.servlet.http.HttpServletRequest;
 import javax.servlet.http.HttpServletResponse;
+import java.util.Enumeration;
 
 /**
  * Task that searches ErnB and ZMR before adding person to SZR.
@@ -38,11 +43,12 @@ import javax.servlet.http.HttpServletResponse;
  * @author tlenz
  */
 @Slf4j
-@Component("InitialSearchTask")
+@Component("ReceiveGuiResponseTask")
 // NOTE: General: Please rebase git commit and squash them where useful, i.e. "remove unused import" should
 //       not be a separate commit.
 public class ReceiveGuiResponseTask extends AbstractAuthServletTask {
 
+  final String LOGIN_METHOD = "loginSelection";
 
   /*
    * (non-Javadoc)
@@ -56,10 +62,22 @@ public class ReceiveGuiResponseTask extends AbstractAuthServletTask {
   public void execute(ExecutionContext executionContext, HttpServletRequest request, HttpServletResponse response)
       throws TaskExecutionException {
     try {
-      //TODO
+      // set parameter execution context
+      final Enumeration<String> reqParamNames = request.getParameterNames();
+      while (reqParamNames.hasMoreElements()) {
+        final String paramName = reqParamNames.nextElement();
+        if (StringUtils.isNotEmpty(paramName)
+            && !EaafConstants.PROCESS_ENGINE_PENDINGREQUESTID.equalsIgnoreCase(paramName)) {
+          if (LOGIN_METHOD.equalsIgnoreCase(paramName)) {
+            String value = StringEscapeUtils.escapeHtml(request.getParameter(paramName));
+            SelectedLoginMethod selection = SelectedLoginMethod.valueOf(value);
+            executionContext.put(LOGIN_METHOD, selection);
+          }
+        }
+      }
     } catch (final Exception e) {
-      log.error("Initial search FAILED.", e);
-      throw new TaskExecutionException(pendingReq, "Initial search FAILED.", e);
+      log.error("Parsing selected login method FAILED.", e);
+      throw new TaskExecutionException(pendingReq, "Parsing selected login method FAILED.", e);
     }
   }
 
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseTask.java
index a8790b2f..28c351f2 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseTask.java
@@ -38,7 +38,7 @@ import javax.servlet.http.HttpServletResponse;
  * @author tlenz
  */
 @Slf4j
-@Component("InitialSearchTask")
+@Component("ReceiveMobilePhoneSignatureResponseTask")
 // NOTE: General: Please rebase git commit and squash them where useful, i.e. "remove unused import" should
 //       not be a separate commit.
 public class ReceiveMobilePhoneSignatureResponseTask extends AbstractAuthServletTask {
-- 
cgit v1.2.3


From 55d809e4b4df5c7ca9ba2bdf371f7f9376302ea8 Mon Sep 17 00:00:00 2001
From: Alexander Marsalek <amarsalek@iaik.tugraz.at>
Date: Thu, 7 Jan 2021 18:16:45 +0100
Subject: Resolve merge comments

---
 .../specific/modules/auth/eidas/v2/Constants.java  |   2 +-
 .../modules/auth/eidas/v2/dao/ErnbEidData.java     |   2 +-
 .../eidas/v2/dao/MergedRegisterSearchResult.java   |  57 ++-
 .../modules/auth/eidas/v2/dao/RegisterResult.java  |  61 +--
 .../modules/auth/eidas/v2/dao/SimpleEidasData.java |  27 +-
 .../auth/eidas/v2/ernb/DummyErnbClient.java        |  43 --
 .../modules/auth/eidas/v2/ernb/IErnbClient.java    |  20 -
 .../auth/eidas/v2/ernp/DummyErnpClient.java        |  66 ++++
 .../modules/auth/eidas/v2/ernp/IErnpClient.java    |  43 ++
 .../v2/exception/ManualFixNecessaryException.java  |   6 +-
 .../auth/eidas/v2/exception/WorkflowException.java |   6 +-
 .../CountrySpecificDetailSearchProcessor.java      |  61 +++
 .../handler/DeSpecificDetailSearchProcessor.java   |  35 +-
 .../ICountrySpecificDetailSearchProcessor.java     |  61 ---
 .../handler/ItSpecificDetailSearchProcessor.java   |  34 +-
 .../auth/eidas/v2/tasks/InitialSearchTask.java     | 188 ++++-----
 .../eidas/v2/tasks/ReceiveAuthnResponseTask.java   |   2 +-
 .../auth/eidas/v2/utils/EidasResponseUtils.java    | 107 ++---
 .../modules/auth/eidas/v2/zmr/DummyZmrClient.java  |  27 +-
 .../modules/auth/eidas/v2/zmr/IZmrClient.java      |  27 +-
 .../src/main/resources/eidas_v2_auth.beans.xml     |   2 +-
 .../v2/test/tasks/InitialSearchTaskFirstTest.java  | 438 +++++++++------------
 .../resources/SpringTest-context_tasks_test.xml    |   2 +-
 23 files changed, 691 insertions(+), 626 deletions(-)
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernb/DummyErnbClient.java
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernb/IErnbClient.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernp/DummyErnpClient.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernp/IErnpClient.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/CountrySpecificDetailSearchProcessor.java
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ICountrySpecificDetailSearchProcessor.java

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java
index 9104c55f..54f7f8fa 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java
@@ -32,7 +32,7 @@ public class Constants {
   public static final String DATA_REQUESTED_LOA_LIST = "req_requestedLoA";
   public static final String DATA_REQUESTED_LOA_COMPERISON = "req_requestedLoAComperision";
   public static final String DATA_FULL_EIDAS_RESPONSE = "resp_fulleIDASResponse";
-  public static final String DATA_RESULT_MATCHING_BPK = "matching-result-bpk";//TODO?
+  public static final String DATA_RESULT_MATCHING_BPK = "matching-result-bpk";
 
   // templates for post-binding forwarding
   public static final String TEMPLATE_POST_FORWARD_NAME = "eidas_node_forward.html";
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/ErnbEidData.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/ErnbEidData.java
index 6c7eeb6b..b780d3e8 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/ErnbEidData.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/ErnbEidData.java
@@ -1,5 +1,5 @@
 /*
- * Copyright 2018 A-SIT Plus GmbH
+ * Copyright 2020 A-SIT Plus GmbH
  * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
  * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
  *
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/MergedRegisterSearchResult.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/MergedRegisterSearchResult.java
index 056b0450..7703af2a 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/MergedRegisterSearchResult.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/MergedRegisterSearchResult.java
@@ -1,3 +1,26 @@
+/*
+ * Copyright 2020 A-SIT Plus GmbH
+ * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
+ * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
+ *
+ * Licensed under the EUPL, Version 1.2 or - as soon they will be approved by
+ * the European Commission - subsequent versions of the EUPL (the "License");
+ * You may not use this work except in compliance with the License.
+ * You may obtain a copy of the License at:
+ * https://joinup.ec.europa.eu/news/understanding-eupl-v12
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" basis,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ *
+ * This product combines work with different licenses. See the "NOTICE" text
+ * file for details on the various modules and licenses.
+ * The "NOTICE" text file is part of the distribution. Any derivative works
+ * that you distribute must include a readable copy of the "NOTICE" text file.
+ */
+
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.dao;
 
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.WorkflowException;
@@ -5,28 +28,48 @@ import lombok.Data;
 
 import java.util.ArrayList;
 
-@Data public class MergedRegisterSearchResult {
+@Data
+public class MergedRegisterSearchResult {
+
+  final ArrayList<RegisterResult> resultsZmr;
+  final ArrayList<RegisterResult> resultsErnp;
 
-  ArrayList<RegisterResult> resultsZmr = new ArrayList<>();
-  ArrayList<RegisterResult> resultsErnb = new ArrayList<>();
+  public MergedRegisterSearchResult(ArrayList<RegisterResult> resultsZmr, ArrayList<RegisterResult> resultsErnp) {
+    this.resultsZmr = resultsZmr;
+    this.resultsErnp = resultsErnp;
+  }
 
   public int getResultCount() {
-    return resultsZmr.size() + resultsErnb.size();
+    return resultsZmr.size() + resultsErnp.size();
   }
 
   /**
-   * Verfies that there is only one match and retunrs the bpk.
+   * Verifies that there is only one match and returns the bpk.
+   *
    * @return bpk bpk of the match
    * @throws WorkflowException if multiple results have been found
    */
   public String getBpk() throws WorkflowException {
+    if (getResultCount() != 1) {
+      throw new WorkflowException("getResultCount() != 1");
+    }
+    return getResult().getBpk();
+  }
+
+  /**
+   * Returns the results, if there is exactly one, throws exception otherwise.
+   *
+   * @return The result
+   * @throws WorkflowException Results does not contain exactly one result
+   */
+  public RegisterResult getResult() throws WorkflowException {
     if (getResultCount() != 1) {
       throw new WorkflowException("getResultCount() != 1");
     }
     if (resultsZmr.size() == 1) {
-      return resultsZmr.get(0).getBpk();
+      return resultsZmr.get(0);
     } else {
-      return resultsErnb.get(0).getBpk();
+      return resultsErnp.get(0);
     }
   }
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/RegisterResult.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/RegisterResult.java
index c92808a1..1cc36fe9 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/RegisterResult.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/RegisterResult.java
@@ -1,3 +1,26 @@
+/*
+ * Copyright 2020 A-SIT Plus GmbH
+ * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
+ * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
+ *
+ * Licensed under the EUPL, Version 1.2 or - as soon they will be approved by
+ * the European Commission - subsequent versions of the EUPL (the "License");
+ * You may not use this work except in compliance with the License.
+ * You may obtain a copy of the License at:
+ * https://joinup.ec.europa.eu/news/understanding-eupl-v12
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" basis,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ *
+ * This product combines work with different licenses. See the "NOTICE" text
+ * file for details on the various modules and licenses.
+ * The "NOTICE" text file is part of the distribution. Any derivative works
+ * that you distribute must include a readable copy of the "NOTICE" text file.
+ */
+
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.dao;
 
 import at.gv.e_government.reference.namespace.persondata._20020228.PostalAddressType;
@@ -7,18 +30,18 @@ import lombok.Data;
 public class RegisterResult {
 
   // MDS
-  private String pseudonym = null;
-  private String givenName = null;
-  private String familyName = null;
-  private String dateOfBirth = null;
+  private String pseudonym;
+  private String givenName;
+  private String familyName;
+  private String dateOfBirth;
 
   // additional attributes
-  private String placeOfBirth = null;
-  private String birthName = null;
-  private String taxNumber = null;
-  private PostalAddressType address = null;
+  private String placeOfBirth;
+  private String birthName;
+  private String taxNumber;
+  private PostalAddressType address;
 
-  private String bpk = null;
+  private String bpk;
 
   /**
    * Register search result.
@@ -37,26 +60,6 @@ public class RegisterResult {
     this.dateOfBirth = dateOfBirth;
   }
 
-  /**
-   * Register search result.
-   *
-   * @param bpk          The bpk
-   * @param pseudonym    The pseudonym
-   * @param givenName    The givenName
-   * @param familyName   The familyName
-   * @param dateOfBirth  The dateOfBirth
-   * @param placeOfBirth The placeOfBirth
-   */
-  public RegisterResult(String bpk, String pseudonym, String givenName, String familyName, String dateOfBirth,
-                        String placeOfBirth) {
-    this.bpk = bpk;
-    this.pseudonym = pseudonym;
-    this.givenName = givenName;
-    this.familyName = familyName;
-    this.dateOfBirth = dateOfBirth;
-    this.placeOfBirth = placeOfBirth;
-  }
-
   /**
    * Register search result.
    *
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleEidasData.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleEidasData.java
index 674f5b48..57597122 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleEidasData.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleEidasData.java
@@ -1,5 +1,5 @@
 /*
- * Copyright 2018 A-SIT Plus GmbH
+ * Copyright 2020 A-SIT Plus GmbH
  * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
  * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
  *
@@ -30,18 +30,18 @@ import lombok.Data;
 @Data
 public class SimpleEidasData {
 
-  private String citizenCountryCode = null;
+  private String citizenCountryCode;
 
   // MDS
-  private String pseudonym = null;
-  private String givenName = null;
-  private String familyName = null;
-  private String dateOfBirth = null;
+  private String pseudonym;
+  private String givenName;
+  private String familyName;
+  private String dateOfBirth;
 
   // additional attributes
-  private String placeOfBirth = null;
-  private String birthName = null;
-  private PostalAddressType address = null;
+  private String placeOfBirth;
+  private String birthName;
+  private PostalAddressType address;
   private String taxNumber;
 
   /**
@@ -51,14 +51,7 @@ public class SimpleEidasData {
    * @throws WorkflowException if multiple results have been found
    */
   public boolean equalsRegisterData(MergedRegisterSearchResult result) throws WorkflowException {
-    if (result.getResultCount() != 1) {
-      throw new WorkflowException("result.getResultCount() != 1");
-    }
-    if (result.getResultsErnb().size() == 1) {
-      return equalsRegisterData(result.getResultsErnb().get(0));
-    } else {
-      return equalsRegisterData(result.getResultsZmr().get(0));
-    }
+    return equalsRegisterData(result.getResult());
   }
 
   private boolean equalsRegisterData(RegisterResult result) {
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernb/DummyErnbClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernb/DummyErnbClient.java
deleted file mode 100644
index 2d2fa76d..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernb/DummyErnbClient.java
+++ /dev/null
@@ -1,43 +0,0 @@
-package at.asitplus.eidas.specific.modules.auth.eidas.v2.ernb;
-
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
-import org.springframework.stereotype.Service;
-
-import java.util.ArrayList;
-
-@Service("ErnbClientForeIDAS")
-public class DummyErnbClient implements IErnbClient {
-
-  @Override
-  public ArrayList<RegisterResult> searchWithPersonIdentifer(String personIdentifer) {
-    return resultEmpty();
-  }
-
-  @Override
-  public ArrayList<RegisterResult> searchWithMds(String givenName, String familyName, String dateOfBirth) {
-    return resultEmpty();//TODO will I only receive matches where all three values match perfectly?
-  }
-
-  @Override
-  public ArrayList<RegisterResult> searchDeSpecific(String givenName, String familyName, String dateOfBirth,
-                                                    String birthPlace, String birthName) {
-    return resultEmpty();//TODO
-  }
-
-  @Override
-  public ArrayList<RegisterResult> searchItSpecific(String txNumber) {
-    return resultEmpty();//TODO
-  }
-
-  @Override
-  public void update(RegisterResult registerResult, SimpleEidasData eidData) {
-    //TODO
-  }
-
-  private ArrayList<RegisterResult> resultEmpty() {
-    return new ArrayList<RegisterResult>();//Nobody found
-  }
-
-
-}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernb/IErnbClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernb/IErnbClient.java
deleted file mode 100644
index cda4c426..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernb/IErnbClient.java
+++ /dev/null
@@ -1,20 +0,0 @@
-package at.asitplus.eidas.specific.modules.auth.eidas.v2.ernb;
-
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
-
-import java.util.ArrayList;
-
-public interface IErnbClient {
-
-  ArrayList<RegisterResult> searchWithPersonIdentifer(String personIdentifer);
-
-  ArrayList<RegisterResult> searchWithMds(String givenName, String familyName, String dateOfBirth);
-
-  ArrayList<RegisterResult> searchDeSpecific(String givenName, String familyName, String dateOfBirth,
-                                             String birthPlace, String birthName);
-
-  ArrayList<RegisterResult> searchItSpecific(String txNumber);
-
-  void update(RegisterResult registerResult, SimpleEidasData eidData);
-}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernp/DummyErnpClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernp/DummyErnpClient.java
new file mode 100644
index 00000000..3b49ab95
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernp/DummyErnpClient.java
@@ -0,0 +1,66 @@
+/*
+ * Copyright 2020 A-SIT Plus GmbH
+ * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
+ * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
+ *
+ * Licensed under the EUPL, Version 1.2 or - as soon they will be approved by
+ * the European Commission - subsequent versions of the EUPL (the "License");
+ * You may not use this work except in compliance with the License.
+ * You may obtain a copy of the License at:
+ * https://joinup.ec.europa.eu/news/understanding-eupl-v12
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" basis,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ *
+ * This product combines work with different licenses. See the "NOTICE" text
+ * file for details on the various modules and licenses.
+ * The "NOTICE" text file is part of the distribution. Any derivative works
+ * that you distribute must include a readable copy of the "NOTICE" text file.
+ */
+
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.ernp;
+
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
+import org.springframework.stereotype.Service;
+
+import java.util.ArrayList;
+
+@Service("ErnbClientForeIDAS")
+public class DummyErnpClient implements IErnpClient {
+
+  @Override
+  public ArrayList<RegisterResult> searchWithPersonIdentifier(String personIdentifier) {
+    return resultEmpty();
+  }
+
+  @Override
+  public ArrayList<RegisterResult> searchWithMds(String givenName, String familyName, String dateOfBirth) {
+    return resultEmpty();//TODO will I only receive matches where all three values match perfectly?
+  }
+
+  @Override
+  public ArrayList<RegisterResult> searchDeSpecific(String givenName, String familyName, String dateOfBirth,
+                                                    String birthPlace, String birthName) {
+    return resultEmpty();//TODO
+  }
+
+  @Override
+  public ArrayList<RegisterResult> searchItSpecific(String taxNumber) {
+    return resultEmpty();//TODO
+  }
+
+  @Override
+  public void update(RegisterResult registerResult, SimpleEidasData eidData) {
+    //TODO
+  }
+
+  private ArrayList<RegisterResult> resultEmpty() {
+    return new ArrayList<RegisterResult>();//Nobody found
+  }
+
+
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernp/IErnpClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernp/IErnpClient.java
new file mode 100644
index 00000000..01ac88fb
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernp/IErnpClient.java
@@ -0,0 +1,43 @@
+/*
+ * Copyright 2020 A-SIT Plus GmbH
+ * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
+ * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
+ *
+ * Licensed under the EUPL, Version 1.2 or - as soon they will be approved by
+ * the European Commission - subsequent versions of the EUPL (the "License");
+ * You may not use this work except in compliance with the License.
+ * You may obtain a copy of the License at:
+ * https://joinup.ec.europa.eu/news/understanding-eupl-v12
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" basis,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ *
+ * This product combines work with different licenses. See the "NOTICE" text
+ * file for details on the various modules and licenses.
+ * The "NOTICE" text file is part of the distribution. Any derivative works
+ * that you distribute must include a readable copy of the "NOTICE" text file.
+ */
+
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.ernp;
+
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
+
+import java.util.ArrayList;
+
+public interface IErnpClient {
+
+  ArrayList<RegisterResult> searchWithPersonIdentifier(String personIdentifier);
+
+  ArrayList<RegisterResult> searchWithMds(String givenName, String familyName, String dateOfBirth);
+
+  ArrayList<RegisterResult> searchDeSpecific(String givenName, String familyName, String dateOfBirth,
+                                             String birthPlace, String birthName);
+
+  ArrayList<RegisterResult> searchItSpecific(String taxNumber);
+
+  void update(RegisterResult registerResult, SimpleEidasData eidData);
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/exception/ManualFixNecessaryException.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/exception/ManualFixNecessaryException.java
index c22e8135..2fecaa6b 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/exception/ManualFixNecessaryException.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/exception/ManualFixNecessaryException.java
@@ -1,5 +1,5 @@
 /*
- * Copyright 2018 A-SIT Plus GmbH
+ * Copyright 2020 A-SIT Plus GmbH
  * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
  * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
  *
@@ -29,10 +29,10 @@ public class ManualFixNecessaryException extends EidasSAuthenticationException {
   private static final long serialVersionUID = 1L;
 
   public ManualFixNecessaryException(String personIdentifier) {
-    super("eidas.00", new Object[] { personIdentifier });//TODO "eidas.00"
+    super("eidas.09", new Object[] { personIdentifier });
   }
 
   public ManualFixNecessaryException(SimpleEidasData eidData) {
-    super("eidas.00", new Object[] { eidData.getPseudonym() });//TODO "eidas.00"   => what info to pass???
+    super("eidas.09", new Object[] { eidData.getPseudonym() });//TODO what info to pass???
   }
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/exception/WorkflowException.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/exception/WorkflowException.java
index aa879bcc..b6f3309b 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/exception/WorkflowException.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/exception/WorkflowException.java
@@ -1,5 +1,5 @@
 /*
- * Copyright 2018 A-SIT Plus GmbH
+ * Copyright 2020 A-SIT Plus GmbH
  * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
  * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
  *
@@ -19,7 +19,7 @@
  * file for details on the various modules and licenses.
  * The "NOTICE" text file is part of the distribution. Any derivative works
  * that you distribute must include a readable copy of the "NOTICE" text file.
-*/
+ */
 
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.exception;
 
@@ -27,7 +27,7 @@ public class WorkflowException extends EidasSAuthenticationException {
   private static final long serialVersionUID = 1L;
 
   public WorkflowException(String data) {
-    super("eidas.00", new Object[] { data });
+    super("eidas.08", new Object[]{data});
   }
 
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/CountrySpecificDetailSearchProcessor.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/CountrySpecificDetailSearchProcessor.java
new file mode 100644
index 00000000..c5b3b231
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/CountrySpecificDetailSearchProcessor.java
@@ -0,0 +1,61 @@
+/*
+ * Copyright 2020 A-SIT Plus GmbH
+ * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
+ * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
+ *
+ * Licensed under the EUPL, Version 1.2 or - as soon they will be approved by
+ * the European Commission - subsequent versions of the EUPL (the "License");
+ * You may not use this work except in compliance with the License.
+ * You may obtain a copy of the License at:
+ * https://joinup.ec.europa.eu/news/understanding-eupl-v12
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" basis,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ *
+ * This product combines work with different licenses. See the "NOTICE" text
+ * file for details on the various modules and licenses.
+ * The "NOTICE" text file is part of the distribution. Any derivative works
+ * that you distribute must include a readable copy of the "NOTICE" text file.
+ */
+
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.handler;
+
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.MergedRegisterSearchResult;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernp.IErnpClient;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.IZmrClient;
+
+public abstract class CountrySpecificDetailSearchProcessor {
+
+  protected IErnpClient ernbClient;
+  protected IZmrClient zmrClient;
+
+  public CountrySpecificDetailSearchProcessor(IErnpClient ernbClient, IZmrClient zmrClient) {
+    this.ernbClient = ernbClient;
+    this.zmrClient = zmrClient;
+  }
+
+  /**
+   * Get a friendlyName of this post-processor implementation.
+   *
+   * @return
+   */
+  public String getName() {
+    return this.getClass().getName();
+  }
+
+  /**
+   * Check if this postProcessor is sensitive for a specific country.
+   *
+   * @param countryCode of the eID data that should be processed
+   * @param eidData     eID data
+   * @return true if this implementation can handle the country, otherwise false
+   */
+  public abstract boolean canHandle(String countryCode, SimpleEidasData eidData);
+
+  public abstract MergedRegisterSearchResult search(SimpleEidasData eidData);
+
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/DeSpecificDetailSearchProcessor.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/DeSpecificDetailSearchProcessor.java
index e8cb7a1a..a29725c8 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/DeSpecificDetailSearchProcessor.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/DeSpecificDetailSearchProcessor.java
@@ -1,17 +1,40 @@
+/*
+ * Copyright 2020 A-SIT Plus GmbH
+ * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
+ * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
+ *
+ * Licensed under the EUPL, Version 1.2 or - as soon they will be approved by
+ * the European Commission - subsequent versions of the EUPL (the "License");
+ * You may not use this work except in compliance with the License.
+ * You may obtain a copy of the License at:
+ * https://joinup.ec.europa.eu/news/understanding-eupl-v12
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" basis,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ *
+ * This product combines work with different licenses. See the "NOTICE" text
+ * file for details on the various modules and licenses.
+ * The "NOTICE" text file is part of the distribution. Any derivative works
+ * that you distribute must include a readable copy of the "NOTICE" text file.
+ */
+
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.handler;
 
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.MergedRegisterSearchResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernb.IErnbClient;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernp.IErnpClient;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.IZmrClient;
 
 import java.util.ArrayList;
 
-public class DeSpecificDetailSearchProcessor extends ICountrySpecificDetailSearchProcessor {
+public class DeSpecificDetailSearchProcessor extends CountrySpecificDetailSearchProcessor {
 
-  public DeSpecificDetailSearchProcessor(IErnbClient ernbClient, IZmrClient zmrClient) {
+  public DeSpecificDetailSearchProcessor(IErnpClient ernbClient, IZmrClient zmrClient) {
     super(ernbClient, zmrClient);
   }
 
@@ -31,17 +54,17 @@ public class DeSpecificDetailSearchProcessor extends ICountrySpecificDetailSearc
 
   @Override
   public MergedRegisterSearchResult search(SimpleEidasData eidData) {
-    MergedRegisterSearchResult searchResult = new MergedRegisterSearchResult();
+
 
     ArrayList<RegisterResult> resultsZmr =
         zmrClient.searchDeSpecific(eidData.getGivenName(), eidData.getFamilyName(), eidData.getDateOfBirth(),
             eidData.getPlaceOfBirth(), eidData.getBirthName());
-    searchResult.setResultsZmr(resultsZmr);
 
     ArrayList<RegisterResult> resultsErnb =
         ernbClient.searchDeSpecific(eidData.getGivenName(), eidData.getFamilyName(), eidData.getDateOfBirth(),
             eidData.getPlaceOfBirth(), eidData.getBirthName());
-    searchResult.setResultsErnb(resultsErnb);
+
+    MergedRegisterSearchResult searchResult = new MergedRegisterSearchResult(resultsZmr, resultsErnb);
     return searchResult;
   }
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ICountrySpecificDetailSearchProcessor.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ICountrySpecificDetailSearchProcessor.java
deleted file mode 100644
index 6a2b2c0a..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ICountrySpecificDetailSearchProcessor.java
+++ /dev/null
@@ -1,61 +0,0 @@
-/*
- * Copyright 2018 A-SIT Plus GmbH
- * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
- * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
- *
- * Licensed under the EUPL, Version 1.2 or - as soon they will be approved by
- * the European Commission - subsequent versions of the EUPL (the "License");
- * You may not use this work except in compliance with the License.
- * You may obtain a copy of the License at:
- * https://joinup.ec.europa.eu/news/understanding-eupl-v12
- *
- * Unless required by applicable law or agreed to in writing, software
- * distributed under the License is distributed on an "AS IS" basis,
- * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
- * See the License for the specific language governing permissions and
- * limitations under the License.
- *
- * This product combines work with different licenses. See the "NOTICE" text
- * file for details on the various modules and licenses.
- * The "NOTICE" text file is part of the distribution. Any derivative works
- * that you distribute must include a readable copy of the "NOTICE" text file.
- */
-
-package at.asitplus.eidas.specific.modules.auth.eidas.v2.handler;
-
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.MergedRegisterSearchResult;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernb.IErnbClient;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.IZmrClient;
-
-public abstract class ICountrySpecificDetailSearchProcessor {
-
-  protected IErnbClient ernbClient;
-  protected IZmrClient zmrClient;
-
-  public ICountrySpecificDetailSearchProcessor(IErnbClient ernbClient, IZmrClient zmrClient) {
-    this.ernbClient = ernbClient;
-    this.zmrClient = zmrClient;
-  }
-
-  /**
-   * Get a friendlyName of this post-processor implementation.
-   *
-   * @return
-   */
-  public String getName() {
-    return this.getClass().getName();
-  }
-
-  /**
-   * Check if this postProcessor is sensitive for a specific country.
-   *
-   * @param countryCode of the eID data that should be processed
-   * @param eidData     eID data
-   * @return true if this implementation can handle the country, otherwise false
-   */
-  public abstract boolean canHandle(String countryCode, SimpleEidasData eidData);
-
-  public abstract MergedRegisterSearchResult search(SimpleEidasData eidData);
-
-}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ItSpecificDetailSearchProcessor.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ItSpecificDetailSearchProcessor.java
index a94a67b3..e730066d 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ItSpecificDetailSearchProcessor.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ItSpecificDetailSearchProcessor.java
@@ -1,17 +1,40 @@
+/*
+ * Copyright 2020 A-SIT Plus GmbH
+ * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
+ * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
+ *
+ * Licensed under the EUPL, Version 1.2 or - as soon they will be approved by
+ * the European Commission - subsequent versions of the EUPL (the "License");
+ * You may not use this work except in compliance with the License.
+ * You may obtain a copy of the License at:
+ * https://joinup.ec.europa.eu/news/understanding-eupl-v12
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" basis,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ *
+ * This product combines work with different licenses. See the "NOTICE" text
+ * file for details on the various modules and licenses.
+ * The "NOTICE" text file is part of the distribution. Any derivative works
+ * that you distribute must include a readable copy of the "NOTICE" text file.
+ */
+
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.handler;
 
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.MergedRegisterSearchResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernb.IErnbClient;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernp.IErnpClient;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.IZmrClient;
 
 import java.util.ArrayList;
 
-public class ItSpecificDetailSearchProcessor extends ICountrySpecificDetailSearchProcessor {
+public class ItSpecificDetailSearchProcessor extends CountrySpecificDetailSearchProcessor {
 
-  public ItSpecificDetailSearchProcessor(IErnbClient ernbClient, IZmrClient zmrClient) {
+  public ItSpecificDetailSearchProcessor(IErnpClient ernbClient, IZmrClient zmrClient) {
     super(ernbClient, zmrClient);
   }
 
@@ -28,15 +51,14 @@ public class ItSpecificDetailSearchProcessor extends ICountrySpecificDetailSearc
 
   @Override
   public MergedRegisterSearchResult search(SimpleEidasData eidData) {
-    MergedRegisterSearchResult searchResult = new MergedRegisterSearchResult();
 
     ArrayList<RegisterResult> resultsZmr =
         zmrClient.searchItSpecific(eidData.getTaxNumber());
-    searchResult.setResultsZmr(resultsZmr);
 
     ArrayList<RegisterResult> resultsErnb =
         ernbClient.searchItSpecific(eidData.getTaxNumber());
-    searchResult.setResultsErnb(resultsErnb);
+
+    MergedRegisterSearchResult searchResult = new MergedRegisterSearchResult(resultsZmr, resultsErnb);
     return searchResult;
   }
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
index a87be6c5..ba05ef0d 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
@@ -1,5 +1,5 @@
 /*
- * Copyright 2018 A-SIT Plus GmbH
+ * Copyright 2020 A-SIT Plus GmbH
  * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
  * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
  *
@@ -27,12 +27,11 @@ import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.MergedRegisterSearchResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernb.IErnbClient;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidPostProcessingException;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernp.IErnpClient;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidasAttributeException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.ManualFixNecessaryException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.WorkflowException;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.ICountrySpecificDetailSearchProcessor;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.CountrySpecificDetailSearchProcessor;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.EidasResponseUtils;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.IZmrClient;
 import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
@@ -59,29 +58,32 @@ import java.util.List;
 import java.util.Map;
 
 /**
- * Task that searches ErnB and ZMR before adding person to SZR.
+ * Task that searches ErnP and ZMR before adding person to SZR.
  *
- * @author tlenz
+ * @author amarsalek
  */
 @Slf4j
 @Component("InitialSearchTask")
-// NOTE: General: Please rebase git commit and squash them where useful, i.e. "remove unused import" should
-//       not be a separate commit.
 public class InitialSearchTask extends AbstractAuthServletTask {
 
-  private List<ICountrySpecificDetailSearchProcessor> handlers = new ArrayList<>();
+  private final List<CountrySpecificDetailSearchProcessor> handlers;
+  private final IErnpClient ernpClient;
+  private final IZmrClient zmrClient;
 
-  private IErnbClient ernbClient;
-  private IZmrClient zmrClient;
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see at.gv.egovernment.moa.id.process.springweb.MoaIdTask#execute(at.gv.
-   * egovernment.moa.id.process.api.ExecutionContext,
-   * javax.servlet.http.HttpServletRequest,
-   * javax.servlet.http.HttpServletResponse)
+  /**
+   * Constructor.
+   * @param handlers List of countrySpecificSearchProcessors
+   * @param ernpClient Ernp client
+   * @param zmrClient ZMR client
    */
+  public InitialSearchTask(List<CountrySpecificDetailSearchProcessor> handlers, IErnpClient ernpClient,
+                           IZmrClient zmrClient) {
+    this.ernpClient = ernpClient;
+    this.zmrClient = zmrClient;
+    this.handlers = handlers;
+    log.info("# " + handlers.size() + " country specific detail search services are registered");
+  }
+
   @Override
   public void execute(ExecutionContext executionContext, HttpServletRequest request, HttpServletResponse response)
       throws TaskExecutionException {
@@ -90,7 +92,6 @@ public class InitialSearchTask extends AbstractAuthServletTask {
       final ILightResponse eidasResponse = authProcessData
           .getGenericDataFromSession(Constants.DATA_FULL_EIDAS_RESPONSE, ILightResponse.class);
 
-      // post-process eIDAS attributes
       final SimpleEidasData eidData = convertSimpleMapToSimpleData(convertEidasAttrToSimpleMap(
           eidasResponse.getAttributes().getAttributeMap()));
 
@@ -103,10 +104,11 @@ public class InitialSearchTask extends AbstractAuthServletTask {
   }
 
   private String step2RegisterSearchWithPersonidentifier(SimpleEidasData eidData) throws TaskExecutionException {
+    log.trace("Starting step2RegisterSearchWithPersonidentifier");
     String personIdentifier = eidData.getPseudonym();
     MergedRegisterSearchResult result = searchInZmrAndErnp(personIdentifier);
     if (result.getResultCount() == 0) {
-      return step5CheckCountrySpecificSearchPossible(result, eidData);
+      return step5CheckAndPerformCountrySpecificSearchIfPossible(result, eidData);
     } else if (result.getResultCount() == 1) {
       return step3CheckRegisterUpdateNecessary(result, eidData);
     }
@@ -114,46 +116,9 @@ public class InitialSearchTask extends AbstractAuthServletTask {
         new ManualFixNecessaryException(personIdentifier));
   }
 
-  private SimpleEidasData convertSimpleMapToSimpleData(Map<String, Object> eidasAttrMap)
-      throws EidasAttributeException, EidPostProcessingException {
-    SimpleEidasData simpleEidasData = new SimpleEidasData();
-
-    final Object eIdentifierObj = eidasAttrMap.get(Constants.eIDAS_ATTR_PERSONALIDENTIFIER);
-    final Triple<String, String, String> eIdentifier =
-        EidasResponseUtils.parseEidasPersonalIdentifier((String) eIdentifierObj);
-    simpleEidasData.setCitizenCountryCode(eIdentifier.getFirst());
-
-    // MDS attributes
-    simpleEidasData.setPseudonym(EidasResponseUtils.processPseudonym(
-        eidasAttrMap.get(Constants.eIDAS_ATTR_PERSONALIDENTIFIER)));
-    simpleEidasData.setFamilyName(EidasResponseUtils.processFamilyName(
-        eidasAttrMap.get(Constants.eIDAS_ATTR_CURRENTFAMILYNAME)));
-    simpleEidasData.setGivenName(EidasResponseUtils.processGivenName(
-        eidasAttrMap.get(Constants.eIDAS_ATTR_CURRENTGIVENNAME)));
-    simpleEidasData.setDateOfBirth(EidasResponseUtils.processDateOfBirthToString(
-        eidasAttrMap.get(Constants.eIDAS_ATTR_DATEOFBIRTH)));
-
-    // additional attributes
-    simpleEidasData.setPlaceOfBirth(EidasResponseUtils.processPlaceOfBirth(
-        eidasAttrMap.get(Constants.eIDAS_ATTR_PLACEOFBIRTH)));
-    simpleEidasData.setBirthName(EidasResponseUtils.processBirthName(
-        eidasAttrMap.get(Constants.eIDAS_ATTR_BIRTHNAME)));
-    simpleEidasData.setAddress(EidasResponseUtils.processAddress(
-        eidasAttrMap.get(Constants.eIDAS_ATTR_CURRENTADDRESS)));
-
-    if (eidasAttrMap.containsKey(Constants.eIDAS_ATTR_TAXREFERENCE)) {
-      simpleEidasData.setTaxNumber(EidasResponseUtils.processTaxReference(
-          eidasAttrMap.get(Constants.eIDAS_ATTR_TAXREFERENCE)));
-    }
-
-    //TODO other additional attributes
-    return simpleEidasData;
-  }
-
   private String step3CheckRegisterUpdateNecessary(MergedRegisterSearchResult result, SimpleEidasData eidData)
       throws TaskExecutionException {
-    //check if data from eidas authentication matches with data from register
-    log.debug("Compare " + result + " with " + eidData);
+    log.trace("Starting step3CheckRegisterUpdateNecessary");
     try {
       if (eidData.equalsRegisterData(result)) {
         //No update necessary, just return bpk
@@ -168,18 +133,19 @@ public class InitialSearchTask extends AbstractAuthServletTask {
 
   private String step4UpdateRegisterData(MergedRegisterSearchResult result,
                                          SimpleEidasData eidData) throws WorkflowException {
+    log.trace("Starting step4UpdateRegisterData");
     log.debug("Update " + result + " with " + eidData);
     //TODO wann rechtlich möglich?
 
     return result.getBpk();
   }
 
-  private String step5CheckCountrySpecificSearchPossible(MergedRegisterSearchResult result, SimpleEidasData eidData)
-      throws TaskExecutionException {
+  private String step5CheckAndPerformCountrySpecificSearchIfPossible(
+      MergedRegisterSearchResult result, SimpleEidasData eidData) throws TaskExecutionException {
+    log.trace("Starting step5CheckAndPerformCountrySpecificSearchIfPossible");
     String citizenCountry = eidData.getCitizenCountryCode();
-    ICountrySpecificDetailSearchProcessor foundHandler = null;
-    for (final ICountrySpecificDetailSearchProcessor el : handlers) {
-      //5 check if country specific search is possible
+    CountrySpecificDetailSearchProcessor foundHandler = null;
+    for (final CountrySpecificDetailSearchProcessor el : handlers) {
       if (el.canHandle(citizenCountry, eidData)) {
         log.debug("Found suitable country specific search handler for " + citizenCountry
             + " by using: " + el.getName());
@@ -188,18 +154,16 @@ public class InitialSearchTask extends AbstractAuthServletTask {
       }
     }
     if (foundHandler == null) {
-      //MDS search
       return step8RegisterSearchWithMds(result, eidData);
     } else {
-      //country specific search
       return step6CountrySpecificSearch(foundHandler, result, eidData);
     }
   }
 
-  private String step6CountrySpecificSearch(ICountrySpecificDetailSearchProcessor countrySpecificDetailSearchProcessor,
+  private String step6CountrySpecificSearch(CountrySpecificDetailSearchProcessor countrySpecificDetailSearchProcessor,
                                             MergedRegisterSearchResult initialSearchResult, SimpleEidasData eidData)
       throws TaskExecutionException {
-    //6 country specific search
+    log.trace("Starting step6CountrySpecificSearch");
     MergedRegisterSearchResult countrySpecificDetailSearchResult =
         countrySpecificDetailSearchProcessor.search(eidData);
 
@@ -208,7 +172,7 @@ public class InitialSearchTask extends AbstractAuthServletTask {
         return step8RegisterSearchWithMds(initialSearchResult, eidData);
       case 1:
         return step7aKittProcess(initialSearchResult, countrySpecificDetailSearchResult, eidData);
-      default://should not happen
+      default:
         throw new TaskExecutionException(pendingReq, "Detail search - Kitt Process necessary.",
             new ManualFixNecessaryException(eidData));
     }
@@ -217,8 +181,7 @@ public class InitialSearchTask extends AbstractAuthServletTask {
   private String step7aKittProcess(MergedRegisterSearchResult initialSearchResult,
                                    MergedRegisterSearchResult countrySpecificDetailSearchResult,
                                    SimpleEidasData eidData) throws TaskExecutionException {
-    //Automerge data
-    log.debug("Automerge " + initialSearchResult + " with " + eidData + " " + countrySpecificDetailSearchResult);
+    log.trace("Starting step7aKittProcess");
     try {
       if (initialSearchResult.getResultCount() != 0) {
         throw new WorkflowException("initialSearchResult.getResultCount() != 0");
@@ -227,14 +190,11 @@ public class InitialSearchTask extends AbstractAuthServletTask {
         throw new WorkflowException("countrySpecificDetailSearchResult.getResultCount() != 1");
       }
       if (countrySpecificDetailSearchResult.getResultsZmr().size() == 1) {
-        //update ZMR
         zmrClient.update(countrySpecificDetailSearchResult.getResultsZmr().get(0), eidData);
       }
-      if (countrySpecificDetailSearchResult.getResultsErnb().size() == 1) {
-        //update ErnB
-        ernbClient.update(countrySpecificDetailSearchResult.getResultsErnb().get(0), eidData);
+      if (countrySpecificDetailSearchResult.getResultsErnp().size() == 1) {
+        ernpClient.update(countrySpecificDetailSearchResult.getResultsErnp().get(0), eidData);
       }
-
       String bpK = countrySpecificDetailSearchResult.getBpk();
       return bpK;
     } catch (WorkflowException e) {
@@ -244,35 +204,70 @@ public class InitialSearchTask extends AbstractAuthServletTask {
 
   private String step8RegisterSearchWithMds(MergedRegisterSearchResult initialSearchResult,
                                             SimpleEidasData eidData) {
-    MergedRegisterSearchResult mdsSearchResult = new MergedRegisterSearchResult();
-
+    log.trace("Starting step8RegisterSearchWithMds");
     ArrayList<RegisterResult> resultsZmr =
         zmrClient.searchWithMds(eidData.getGivenName(), eidData.getFamilyName(), eidData.getDateOfBirth());
-    mdsSearchResult.setResultsZmr(resultsZmr);
 
-    ArrayList<RegisterResult> resultsErnb =
-        ernbClient.searchWithMds(eidData.getGivenName(), eidData.getFamilyName(), eidData.getDateOfBirth());
-    mdsSearchResult.setResultsErnb(resultsErnb);
+    ArrayList<RegisterResult> resultsErnp =
+        ernpClient.searchWithMds(eidData.getGivenName(), eidData.getFamilyName(), eidData.getDateOfBirth());
 
+    MergedRegisterSearchResult mdsSearchResult = new MergedRegisterSearchResult(resultsZmr, resultsErnp);
     log.debug("Automerge " + initialSearchResult + " with " + eidData + " " + mdsSearchResult);
     //TODO implement next phase and return correct value
     return "TODO-Temporary-Endnode-105";
   }
 
   private MergedRegisterSearchResult searchInZmrAndErnp(String personIdentifier) {
-    MergedRegisterSearchResult initialSearchResult = new MergedRegisterSearchResult();
 
     ArrayList<RegisterResult> resultsZmr =
-        zmrClient.searchWithPersonIdentifer(personIdentifier);
-    initialSearchResult.setResultsZmr(resultsZmr);
+        zmrClient.searchWithPersonIdentifier(personIdentifier);
 
-    ArrayList<RegisterResult> resultsErnb =
-        ernbClient.searchWithPersonIdentifer(personIdentifier);
-    initialSearchResult.setResultsErnb(resultsErnb);
+    ArrayList<RegisterResult> resultsErnp =
+        ernpClient.searchWithPersonIdentifier(personIdentifier);
 
+    MergedRegisterSearchResult initialSearchResult = new MergedRegisterSearchResult(resultsZmr, resultsErnp);
     return initialSearchResult;
   }
 
+  private SimpleEidasData convertSimpleMapToSimpleData(Map<String, Object> eidasAttrMap)
+      throws EidasAttributeException {
+    SimpleEidasData simpleEidasData = new SimpleEidasData();
+
+    final Object eIdentifierObj = eidasAttrMap.get(Constants.eIDAS_ATTR_PERSONALIDENTIFIER);
+    final Triple<String, String, String> eIdentifier =
+        EidasResponseUtils.parseEidasPersonalIdentifier((String) eIdentifierObj);
+    if (eIdentifier == null) {
+      throw new EidasAttributeException("Error processing eIdentifier");
+    }
+    simpleEidasData.setCitizenCountryCode(eIdentifier.getFirst());
+
+    // MDS attributes
+    simpleEidasData.setPseudonym(EidasResponseUtils.processPseudonym(
+        eidasAttrMap.get(Constants.eIDAS_ATTR_PERSONALIDENTIFIER)));
+    simpleEidasData.setFamilyName(EidasResponseUtils.processFamilyName(
+        eidasAttrMap.get(Constants.eIDAS_ATTR_CURRENTFAMILYNAME)));
+    simpleEidasData.setGivenName(EidasResponseUtils.processGivenName(
+        eidasAttrMap.get(Constants.eIDAS_ATTR_CURRENTGIVENNAME)));
+    simpleEidasData.setDateOfBirth(EidasResponseUtils.processDateOfBirthToString(
+        eidasAttrMap.get(Constants.eIDAS_ATTR_DATEOFBIRTH)));
+
+    // additional attributes
+    simpleEidasData.setPlaceOfBirth(EidasResponseUtils.processPlaceOfBirth(
+        eidasAttrMap.get(Constants.eIDAS_ATTR_PLACEOFBIRTH)));
+    simpleEidasData.setBirthName(EidasResponseUtils.processBirthName(
+        eidasAttrMap.get(Constants.eIDAS_ATTR_BIRTHNAME)));
+    simpleEidasData.setAddress(EidasResponseUtils.processAddress(
+        eidasAttrMap.get(Constants.eIDAS_ATTR_CURRENTADDRESS)));
+
+    if (eidasAttrMap.containsKey(Constants.eIDAS_ATTR_TAXREFERENCE)) {
+      simpleEidasData.setTaxNumber(EidasResponseUtils.processTaxReference(
+          eidasAttrMap.get(Constants.eIDAS_ATTR_TAXREFERENCE)));
+    }
+
+    //TODO other additional attributes
+    return simpleEidasData;
+  }
+
   private Map<String, Object> convertEidasAttrToSimpleMap(
       ImmutableMap<AttributeDefinition<?>, ImmutableSet<? extends AttributeValue<?>>> attributeMap) {
     final Map<String, Object> result = new HashMap<>();
@@ -289,7 +284,6 @@ public class InitialSearchTask extends AbstractAuthServletTask {
         } else {
           log.info("Ignore empty 'DateTime' attribute");
         }
-
       } else if (PostalAddress.class.equals(parameterizedType)) {
         final PostalAddress addressAttribute = EidasResponseUtils
             .translateAddressAttribute(el, attributeMap.get(el).asList());
@@ -300,7 +294,6 @@ public class InitialSearchTask extends AbstractAuthServletTask {
         } else {
           log.info("Ignore empty 'PostalAddress' attribute");
         }
-
       } else {
         final List<String> natPersonIdObj = EidasResponseUtils
             .translateStringListAttribute(el, attributeMap.get(el).asList());
@@ -308,7 +301,6 @@ public class InitialSearchTask extends AbstractAuthServletTask {
         if (StringUtils.isNotEmpty(stringAttr)) {
           result.put(el.getFriendlyName(), stringAttr);
           log.trace("Find attr '" + el.getFriendlyName() + "' with value: " + stringAttr);
-
         } else {
           log.info("Ignore empty 'String' attribute");
         }
@@ -317,18 +309,4 @@ public class InitialSearchTask extends AbstractAuthServletTask {
     log.debug("Receive #" + result.size() + " attributes with names: " + result.keySet().toString());
     return result;
   }
-
-  /**
-   * Constructor.
-   * @param handlers List of countrySpecificSearchProcessors
-   * @param ernbClient Ernb client
-   * @param zmrClient ZMR client
-   */
-  public InitialSearchTask(List<ICountrySpecificDetailSearchProcessor> handlers, IErnbClient ernbClient,
-                           IZmrClient zmrClient) {
-    this.ernbClient = ernbClient;
-    this.zmrClient = zmrClient;
-    this.handlers = handlers;
-    log.info("# " + handlers.size() + " country specific detail search services are registered");
-  }
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveAuthnResponseTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveAuthnResponseTask.java
index 684546f7..0f733e8d 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveAuthnResponseTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveAuthnResponseTask.java
@@ -94,7 +94,7 @@ public class ReceiveAuthnResponseTask extends AbstractAuthServletTask {
           attrRegistry);
 
       // **********************************************************
-      // ******* Store resonse infos into session object **********
+      // ******* Store response infos into session object **********
       // **********************************************************
 
       // update MOA-Session data with received information
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/EidasResponseUtils.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/EidasResponseUtils.java
index 55c1c31a..fb223ee7 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/EidasResponseUtils.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/EidasResponseUtils.java
@@ -23,32 +23,28 @@
 
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.utils;
 
-import java.text.SimpleDateFormat;
-import java.util.ArrayList;
-import java.util.List;
-import java.util.regex.Matcher;
-import java.util.regex.Pattern;
-
-import javax.annotation.Nullable;
-
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidPostProcessingException;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidasAttributeException;
 import at.gv.e_government.reference.namespace.persondata._20020228.PostalAddressType;
-import org.apache.commons.lang3.StringUtils;
-import org.joda.time.DateTime;
-import org.slf4j.Logger;
-import org.slf4j.LoggerFactory;
-
-import com.google.common.collect.ImmutableList;
-
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
 import at.gv.egiz.eaaf.core.impl.data.Triple;
+import com.google.common.collect.ImmutableList;
 import eu.eidas.auth.commons.attribute.AttributeDefinition;
 import eu.eidas.auth.commons.attribute.AttributeValue;
 import eu.eidas.auth.commons.attribute.AttributeValueMarshaller;
 import eu.eidas.auth.commons.attribute.AttributeValueMarshallingException;
 import eu.eidas.auth.commons.attribute.AttributeValueTransliterator;
 import eu.eidas.auth.commons.protocol.eidas.impl.PostalAddress;
+import org.apache.commons.lang3.StringUtils;
+import org.joda.time.DateTime;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+
+import javax.annotation.Nullable;
+import java.text.SimpleDateFormat;
+import java.util.ArrayList;
+import java.util.List;
+import java.util.regex.Matcher;
+import java.util.regex.Pattern;
 
 public class EidasResponseUtils {
   private static final Logger log = LoggerFactory.getLogger(EidasResponseUtils.class);
@@ -170,7 +166,6 @@ public class EidasResponseUtils {
       ImmutableList<? extends AttributeValue<?>> attributeValues) {
     final AttributeValue<?> firstAttributeValue = attributeValues.get(0);
     return (PostalAddress) firstAttributeValue.getValue();
-
   }
 
   /**
@@ -178,34 +173,24 @@ public class EidasResponseUtils {
    *
    * @param currentAddressObj eIDAS current address information
    * @return current address or null if no attribute is available
-   * @throws EidPostProcessingException if post-processing fails
    * @throws EidasAttributeException    if eIDAS attribute is of a wrong type
    */
-  public static PostalAddressType processAddress(Object currentAddressObj) throws EidPostProcessingException,
-      EidasAttributeException {
-
+  public static PostalAddressType processAddress(Object currentAddressObj) throws EidasAttributeException {
     if (currentAddressObj != null) {
       if (currentAddressObj instanceof PostalAddress) {
         final PostalAddressType result = new PostalAddressType();
         result.setPostalCode(((PostalAddress) currentAddressObj).getPostCode());
         result.setMunicipality(((PostalAddress) currentAddressObj).getPostName());
-
         // TODO: add more mappings
-
         return result;
-
       } else {
         log.warn("eIDAS attr: " + Constants.eIDAS_ATTR_CURRENTADDRESS + " is of WRONG type");
         throw new EidasAttributeException(Constants.eIDAS_ATTR_CURRENTADDRESS);
-
       }
-
     } else {
       log.debug("NO '" + Constants.eIDAS_ATTR_CURRENTADDRESS + "' attribute. Post-Processing skipped ... ");
     }
-
     return null;
-
   }
 
   /**
@@ -213,27 +198,20 @@ public class EidasResponseUtils {
    *
    * @param birthNameObj eIDAS birthname information
    * @return birthName or null if no attribute is available
-   * @throws EidPostProcessingException if post-processing fails
    * @throws EidasAttributeException    if eIDAS attribute is of a wrong type
    */
-  public static String processBirthName(Object birthNameObj) throws EidPostProcessingException,
-      EidasAttributeException {
+  public static String processBirthName(Object birthNameObj) throws EidasAttributeException {
     if (birthNameObj != null) {
       if (birthNameObj instanceof String) {
         return (String) birthNameObj;
-
       } else {
         log.warn("eIDAS attr: " + Constants.eIDAS_ATTR_BIRTHNAME + " is of WRONG type");
         throw new EidasAttributeException(Constants.eIDAS_ATTR_BIRTHNAME);
-
       }
-
     } else {
       log.debug("NO '" + Constants.eIDAS_ATTR_BIRTHNAME + "' attribute. Post-Processing skipped ... ");
     }
-
     return null;
-
   }
 
   /**
@@ -241,11 +219,9 @@ public class EidasResponseUtils {
    *
    * @param placeOfBirthObj eIDAS Place-of-Birth information
    * @return place of Birth or null if no attribute is available
-   * @throws EidPostProcessingException if post-processing fails
    * @throws EidasAttributeException    if eIDAS attribute is of a wrong type
    */
-  public static String processPlaceOfBirth(Object placeOfBirthObj) throws EidPostProcessingException,
-      EidasAttributeException {
+  public static String processPlaceOfBirth(Object placeOfBirthObj) throws EidasAttributeException {
     if (placeOfBirthObj != null) {
       if (placeOfBirthObj instanceof String) {
         return (String) placeOfBirthObj;
@@ -259,9 +235,7 @@ public class EidasResponseUtils {
     } else {
       log.debug("NO '" + Constants.eIDAS_ATTR_PLACEOFBIRTH + "' attribute. Post-Processing skipped ... ");
     }
-
     return null;
-
   }
 
   /**
@@ -270,16 +244,12 @@ public class EidasResponseUtils {
    * @param dateOfBirthObj eIDAS date-of-birth attribute information
    * @return formated user's date-of-birth
    * @throws EidasAttributeException    if NO attribute is available
-   * @throws EidPostProcessingException if post-processing fails
    */
-  public static DateTime processDateOfBirth(Object dateOfBirthObj) throws EidPostProcessingException,
-      EidasAttributeException {
-    if (dateOfBirthObj == null || !(dateOfBirthObj instanceof DateTime)) {
+  public static DateTime processDateOfBirth(Object dateOfBirthObj) throws EidasAttributeException {
+    if (!(dateOfBirthObj instanceof DateTime)) {
       throw new EidasAttributeException(Constants.eIDAS_ATTR_DATEOFBIRTH);
     }
-
     return (DateTime) dateOfBirthObj;
-
   }
 
   /**
@@ -288,11 +258,9 @@ public class EidasResponseUtils {
    * @param dateOfBirthObj eIDAS date-of-birth attribute information
    * @return formated user's date-of-birth as string
    * @throws EidasAttributeException    if NO attribute is available
-   * @throws EidPostProcessingException if post-processing fails
    */
-  public static String processDateOfBirthToString(Object dateOfBirthObj) throws EidPostProcessingException,
-      EidasAttributeException {
-    if (dateOfBirthObj == null || !(dateOfBirthObj instanceof DateTime)) {
+  public static String processDateOfBirthToString(Object dateOfBirthObj) throws EidasAttributeException {
+    if (!(dateOfBirthObj instanceof DateTime)) {
       throw new EidasAttributeException(Constants.eIDAS_ATTR_DATEOFBIRTH);
     }
     return new SimpleDateFormat("yyyy-MM-dd").format(((DateTime) dateOfBirthObj).toDate());
@@ -304,16 +272,12 @@ public class EidasResponseUtils {
    * @param givenNameObj eIDAS givenName attribute information
    * @return formated user's givenname
    * @throws EidasAttributeException    if NO attribute is available
-   * @throws EidPostProcessingException if post-processing fails
    */
-  public static String processGivenName(Object givenNameObj) throws EidPostProcessingException,
-      EidasAttributeException {
-    if (givenNameObj == null || !(givenNameObj instanceof String)) {
+  public static String processGivenName(Object givenNameObj) throws EidasAttributeException {
+    if (!(givenNameObj instanceof String)) {
       throw new EidasAttributeException(Constants.eIDAS_ATTR_CURRENTGIVENNAME);
     }
-
     return (String) givenNameObj;
-
   }
 
   /**
@@ -322,16 +286,12 @@ public class EidasResponseUtils {
    * @param familyNameObj eIDAS familyName attribute information
    * @return formated user's familyname
    * @throws EidasAttributeException    if NO attribute is available
-   * @throws EidPostProcessingException if post-processing fails
    */
-  public static String processFamilyName(Object familyNameObj) throws EidPostProcessingException,
-      EidasAttributeException {
-    if (familyNameObj == null || !(familyNameObj instanceof String)) {
+  public static String processFamilyName(Object familyNameObj) throws EidasAttributeException {
+    if (!(familyNameObj instanceof String)) {
       throw new EidasAttributeException(Constants.eIDAS_ATTR_CURRENTFAMILYNAME);
     }
-
     return (String) familyNameObj;
-
   }
 
   /**
@@ -340,17 +300,16 @@ public class EidasResponseUtils {
    * @param personalIdObj eIDAS PersonalIdentifierAttribute
    * @return Unique personal identifier without country-code information
    * @throws EidasAttributeException    if NO attribute is available
-   * @throws EidPostProcessingException if post-processing fails
    */
-  public static String processPseudonym(Object personalIdObj) throws EidPostProcessingException,
-      EidasAttributeException {
-    if (personalIdObj == null || !(personalIdObj instanceof String)) {
+  public static String processPseudonym(Object personalIdObj) throws EidasAttributeException {
+    if (!(personalIdObj instanceof String)) {
       throw new EidasAttributeException(Constants.eIDAS_ATTR_PERSONALIDENTIFIER);
     }
-
     final Triple<String, String, String> eIdentifier =
         EidasResponseUtils.parseEidasPersonalIdentifier((String) personalIdObj);
-
+    if (eIdentifier.getThird() == null) {
+      throw new EidasAttributeException("Error processing eIdentifier");
+    }
     return eIdentifier.getThird();
   }
 
@@ -360,15 +319,11 @@ public class EidasResponseUtils {
    * @param taxReferenceObj eIDAS TaxReference attribute information
    * @return formated user's TaxReference
    * @throws EidasAttributeException    if NO attribute is available
-   * @throws EidPostProcessingException if post-processing fails
    */
-  public static String processTaxReference(Object taxReferenceObj) throws EidPostProcessingException,
-      EidasAttributeException {
-    if (taxReferenceObj == null || !(taxReferenceObj instanceof String)) {
+  public static String processTaxReference(Object taxReferenceObj) throws EidasAttributeException {
+    if (!(taxReferenceObj instanceof String)) {
       throw new EidasAttributeException(Constants.eIDAS_ATTR_CURRENTGIVENNAME);
     }
-
     return (String) taxReferenceObj;
-
   }
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/DummyZmrClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/DummyZmrClient.java
index f4d77b03..60dd2ef2 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/DummyZmrClient.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/DummyZmrClient.java
@@ -1,3 +1,26 @@
+/*
+ * Copyright 2020 A-SIT Plus GmbH
+ * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
+ * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
+ *
+ * Licensed under the EUPL, Version 1.2 or - as soon they will be approved by
+ * the European Commission - subsequent versions of the EUPL (the "License");
+ * You may not use this work except in compliance with the License.
+ * You may obtain a copy of the License at:
+ * https://joinup.ec.europa.eu/news/understanding-eupl-v12
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" basis,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ *
+ * This product combines work with different licenses. See the "NOTICE" text
+ * file for details on the various modules and licenses.
+ * The "NOTICE" text file is part of the distribution. Any derivative works
+ * that you distribute must include a readable copy of the "NOTICE" text file.
+ */
+
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr;
 
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
@@ -10,7 +33,7 @@ import java.util.ArrayList;
 public class DummyZmrClient implements IZmrClient {
 
   @Override
-  public ArrayList<RegisterResult> searchWithPersonIdentifer(String personIdentifer) {
+  public ArrayList<RegisterResult> searchWithPersonIdentifier(String personIdentifier) {
     return resultEmpty();
   }
 
@@ -26,7 +49,7 @@ public class DummyZmrClient implements IZmrClient {
   }
 
   @Override
-  public ArrayList<RegisterResult> searchItSpecific(String txNumber) {
+  public ArrayList<RegisterResult> searchItSpecific(String taxNumber) {
     return resultEmpty();//TODO
   }
 
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/IZmrClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/IZmrClient.java
index 4af7bfe9..3a518e64 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/IZmrClient.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/IZmrClient.java
@@ -1,3 +1,26 @@
+/*
+ * Copyright 2020 A-SIT Plus GmbH
+ * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
+ * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
+ *
+ * Licensed under the EUPL, Version 1.2 or - as soon they will be approved by
+ * the European Commission - subsequent versions of the EUPL (the "License");
+ * You may not use this work except in compliance with the License.
+ * You may obtain a copy of the License at:
+ * https://joinup.ec.europa.eu/news/understanding-eupl-v12
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" basis,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ *
+ * This product combines work with different licenses. See the "NOTICE" text
+ * file for details on the various modules and licenses.
+ * The "NOTICE" text file is part of the distribution. Any derivative works
+ * that you distribute must include a readable copy of the "NOTICE" text file.
+ */
+
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr;
 
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
@@ -7,14 +30,14 @@ import java.util.ArrayList;
 
 public interface IZmrClient {
 
-  ArrayList<RegisterResult> searchWithPersonIdentifer(String personIdentifer);
+  ArrayList<RegisterResult> searchWithPersonIdentifier(String personIdentifier);
 
   ArrayList<RegisterResult> searchWithMds(String givenName, String familyName, String dateOfBirth);
 
   ArrayList<RegisterResult> searchDeSpecific(String givenName, String familyName, String dateOfBirth,
                                              String birthPlace, String birthName);
 
-  ArrayList<RegisterResult> searchItSpecific(String txNumber);
+  ArrayList<RegisterResult> searchItSpecific(String taxNumber);
 
   void update(RegisterResult registerResult, SimpleEidasData eidData);
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml
index ca6eba20..52404bab 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml
@@ -18,7 +18,7 @@
     class="at.asitplus.eidas.specific.modules.auth.eidas.v2.szr.SzrClient" />
 
   <bean id="ErnbClientForeIDAS"
-        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.ernb.DummyErnbClient" />
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.ernp.DummyErnpClient" />
 
   <bean id="ZmrClientForeIDAS"
         class="at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.DummyZmrClient" />
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
index f7fc6b06..a1dce0f2 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
@@ -1,11 +1,34 @@
+/*
+ * Copyright 2020 A-SIT Plus GmbH
+ * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
+ * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
+ *
+ * Licensed under the EUPL, Version 1.2 or - as soon they will be approved by
+ * the European Commission - subsequent versions of the EUPL (the "License");
+ * You may not use this work except in compliance with the License.
+ * You may obtain a copy of the License at:
+ * https://joinup.ec.europa.eu/news/understanding-eupl-v12
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" basis,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ *
+ * This product combines work with different licenses. See the "NOTICE" text
+ * file for details on the various modules and licenses.
+ * The "NOTICE" text file is part of the distribution. Any derivative works
+ * that you distribute must include a readable copy of the "NOTICE" text file.
+ */
+
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.test.tasks;
 
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernb.IErnbClient;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernp.IErnpClient;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.ManualFixNecessaryException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.DeSpecificDetailSearchProcessor;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.ICountrySpecificDetailSearchProcessor;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.CountrySpecificDetailSearchProcessor;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.ItSpecificDetailSearchProcessor;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.InitialSearchTask;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.IZmrClient;
@@ -27,10 +50,7 @@ import org.junit.Before;
 import org.junit.BeforeClass;
 import org.junit.Test;
 import org.junit.runner.RunWith;
-import org.mockito.InjectMocks;
-import org.mockito.Mock;
 import org.mockito.Mockito;
-import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.mock.web.MockHttpServletRequest;
 import org.springframework.mock.web.MockHttpServletResponse;
 import org.springframework.test.annotation.DirtiesContext;
@@ -46,6 +66,7 @@ import java.net.URI;
 import java.net.URISyntaxException;
 import java.util.ArrayList;
 import java.util.List;
+import java.util.Random;
 
 @RunWith(SpringJUnit4ClassRunner.class)
 
@@ -53,13 +74,9 @@ import java.util.List;
 @DirtiesContext(classMode = ClassMode.BEFORE_CLASS)
 public class InitialSearchTaskFirstTest {
 
-  @Autowired(required = true)
-  @Mock
-  @InjectMocks
   private InitialSearchTask task;
-
   private IZmrClient zmrClient;
-  private IErnbClient ernbClient;
+  private IErnpClient ernpClient;
 
   final ExecutionContext executionContext = new ExecutionContextImpl();
   private MockHttpServletRequest httpReq;
@@ -68,6 +85,12 @@ public class InitialSearchTaskFirstTest {
   private String randomIdentifier = RandomStringUtils.randomNumeric(10);
   private String randomFamilyName = RandomStringUtils.randomNumeric(11);
   private String randomGivenName = RandomStringUtils.randomNumeric(12);
+  private String randomPlaceOfBirth = RandomStringUtils.randomNumeric(12);
+  private String randomBirthName = RandomStringUtils.randomNumeric(12);
+  private String randomDate = "2011-01-"+ (10 + new Random().nextInt(18));
+  private String DE_ST = "de/st/";
+  private String IT_ST = "it/st/";
+
   /**
    * jUnit class initializer.
    *
@@ -101,68 +124,52 @@ public class InitialSearchTaskFirstTest {
   /**
    * One match, but register update needed
    */
-  // NOTE: Why is the method named "testNode100a"?
-  public void testNode100a() throws Exception {
+  public void testNode100_UserIdentifiedUpdateNecessary_a() throws Exception {
 
-    //Mock ZMR
     ArrayList<RegisterResult> zmrResult = new ArrayList<>();
     String randomBpk = RandomStringUtils.randomNumeric(6);
-    zmrResult.add(new RegisterResult(randomBpk, "de/st/"+randomIdentifier, "Max_new", randomFamilyName, "2011-01-01"));
+    String newFirstName = RandomStringUtils.randomAlphabetic(5);
+    zmrResult.add(new RegisterResult(randomBpk, DE_ST+randomIdentifier, newFirstName, randomFamilyName, randomDate));
 
     zmrClient = Mockito.mock(IZmrClient.class);
-    Mockito.when(zmrClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(zmrResult);
-
-    //Mock ernb
-    ArrayList<RegisterResult> ernbResult = new ArrayList<>();
+    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResult);
 
-    ernbClient = Mockito.mock(IErnbClient.class);
-    Mockito.when(ernbClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(ernbResult);
-
-    task = new InitialSearchTask(emptyHandlers(), ernbClient, zmrClient);
-    try {
-      task.execute(pendingReq, executionContext);
-      String bPk = (String)
-          pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
-      Assert.assertTrue("Wrong bpk", bPk.equals(randomBpk));
+    ArrayList<RegisterResult> ernpResult = new ArrayList<>();
+    ernpClient = Mockito.mock(IErnpClient.class);
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(ernpResult);
 
-    } catch (final TaskExecutionException e) {
-      // NOTE: assertTrue is probably the wrong method to use ... why catch the exception anyway?
-      Assert.assertTrue("Wrong workflow, should not reach this point", false);
-    }
+    task = new InitialSearchTask(emptyHandlers(), ernpClient, zmrClient);
+    task.execute(pendingReq, executionContext);
+    String bPk = (String)
+        pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
+    Assert.assertTrue("Wrong bpk", bPk.equals(randomBpk));
   }
 
   @Test
-  // NOTE: Why is @DirtiesContext after each test necessary? What is changed in the context and why?
   @DirtiesContext
   /**
    * One match, but register update needed
    */
-  public void testNode100b() throws Exception {
+  public void testNode100_UserIdentifiedUpdateNecessary_b() throws TaskExecutionException {
 
-    //Mock ZMR
     ArrayList<RegisterResult> zmrResult = new ArrayList<>();
 
     zmrClient = Mockito.mock(IZmrClient.class);
-    Mockito.when(zmrClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(zmrResult);//"de/st/max123"???
+    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResult);
 
-    //Mock ernb
-    ArrayList<RegisterResult> ernbResult = new ArrayList<>();
+    ArrayList<RegisterResult> ernpResult = new ArrayList<>();
     String randomBpk = RandomStringUtils.randomNumeric(6);
-    ernbResult.add(new RegisterResult(randomBpk, "de/st/"+randomIdentifier, "Max_new", randomFamilyName, "2011-01-01"));
+    ernpResult.add(new RegisterResult(randomBpk, DE_ST+randomIdentifier, "Max_new", randomFamilyName, randomDate));
 
-    ernbClient = Mockito.mock(IErnbClient.class);
-    Mockito.when(ernbClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(ernbResult);
+    ernpClient = Mockito.mock(IErnpClient.class);
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(ernpResult);
 
-    task = new InitialSearchTask(emptyHandlers(), ernbClient, zmrClient);
-    try {
-      task.execute(pendingReq, executionContext);
-      String bPk = (String)
-          pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
-      Assert.assertTrue("Wrong bpk", bPk.equals(randomBpk));
+    task = new InitialSearchTask(emptyHandlers(), ernpClient, zmrClient);
+    task.execute(pendingReq, executionContext);
+    String bPk = (String)
+        pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
+    Assert.assertTrue("Wrong bpk", bPk.equals(randomBpk));
 
-    } catch (final TaskExecutionException e) {
-      Assert.assertTrue("Wrong workflow, should not reach this point", false);
-    }
   }
 
 
@@ -171,21 +178,19 @@ public class InitialSearchTaskFirstTest {
   /**
    * Two matches found in ZMR
    */
-  public void testNode101a() throws Exception {
+  public void testNode101_ManualFixNecessary_a() throws Exception {
 
-    //Mock ZMR
     ArrayList<RegisterResult> zmrResult = new ArrayList<>();
-    zmrResult.add(new RegisterResult("bpkMax", "de/st/"+randomIdentifier, randomGivenName, randomFamilyName, "2011-01-01"));
-    zmrResult.add(new RegisterResult("bpkMax", "de/st/"+randomIdentifier, "Maximilian", randomFamilyName, "2011-01-01"));
+    zmrResult.add(new RegisterResult("bpkMax", DE_ST+randomIdentifier, randomGivenName, randomFamilyName, randomDate));
+    zmrResult.add(new RegisterResult("bpkMax", DE_ST+randomIdentifier, "Maximilian", randomFamilyName, randomDate));
     zmrClient = Mockito.mock(IZmrClient.class);
-    Mockito.when(zmrClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(zmrResult);
+    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResult);
 
-    //Mock ernb
-    ArrayList<RegisterResult> ernbResult = new ArrayList<>();
-    ernbClient = Mockito.mock(IErnbClient.class);
-    Mockito.when(ernbClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(ernbResult);
+    ArrayList<RegisterResult> ernpResult = new ArrayList<>();
+    ernpClient = Mockito.mock(IErnpClient.class);
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(ernpResult);
 
-    task = new InitialSearchTask(emptyHandlers(), ernbClient, zmrClient);
+    task = new InitialSearchTask(emptyHandlers(), ernpClient, zmrClient);
     try {
       task.execute(pendingReq, executionContext);
       Assert.assertTrue("Wrong workflow, should not reach this point/ get a bpk", false);
@@ -199,24 +204,24 @@ public class InitialSearchTaskFirstTest {
   @Test
   @DirtiesContext
   /**
-   * Two matches found in ErnB
+   * Two matches found in ErnP
    */
-  public void testNode101b() throws Exception {
-
-    //Mock ZMR
+  public void testNode101_ManualFixNecessary_b() throws Exception {
+    String randombpk = RandomStringUtils.random(5);
     ArrayList<RegisterResult> zmrResult = new ArrayList<>();
     zmrClient = Mockito.mock(IZmrClient.class);
-    Mockito.when(zmrClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(zmrResult);
+    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResult);
 
-    //Mock ernb
-    ArrayList<RegisterResult> ernbResult = new ArrayList<>();
-    ernbResult.add(new RegisterResult("bpkMax", "de/st/"+randomIdentifier, randomGivenName, randomFamilyName, "2011-01-01"));
-    ernbResult.add(new RegisterResult("bpkMax", "de/st/"+randomIdentifier, "Maximilian", randomFamilyName, "2011-01-01"));
+    ArrayList<RegisterResult> ernpResult = new ArrayList<>();
+    ernpResult.add(new RegisterResult(randombpk, DE_ST+randomIdentifier, randomGivenName, randomFamilyName, randomDate));
+    ernpResult.add(new RegisterResult(randombpk, DE_ST+randomIdentifier, randomGivenName+RandomStringUtils.random(2),
+        randomFamilyName,
+        randomDate));
 
-    ernbClient = Mockito.mock(IErnbClient.class);
-    Mockito.when(ernbClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(ernbResult);
+    ernpClient = Mockito.mock(IErnpClient.class);
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(ernpResult);
 
-    task = new InitialSearchTask(emptyHandlers(), ernbClient, zmrClient);
+    task = new InitialSearchTask(emptyHandlers(), ernpClient, zmrClient);
     try {
       task.execute(pendingReq, executionContext);
       Assert.assertTrue("Wrong workflow, should not reach this point/ get a bpk", false);
@@ -231,30 +236,24 @@ public class InitialSearchTaskFirstTest {
   /**
    * One match, no register update needed
    */
-  public void testNode102a() throws Exception {
+  public void testNode102_UserIdentified_a() throws Exception {
 
-    String randomBpk = RandomStringUtils.randomNumeric(12);;
-    //Mock ZMR
+    String randomBpk = RandomStringUtils.randomNumeric(12);
     ArrayList<RegisterResult> zmrResult = new ArrayList<>();
     zmrClient = Mockito.mock(IZmrClient.class);
-    Mockito.when(zmrClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(zmrResult);
+    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResult);
 
-    //Mock ernb
-    ArrayList<RegisterResult> ernbResult = new ArrayList<>();
-    ernbResult.add(new RegisterResult(randomBpk, "de/st/"+randomIdentifier, randomGivenName, randomFamilyName, "2011-01-01"));
+    ArrayList<RegisterResult> ernpResult = new ArrayList<>();
+    ernpResult.add(new RegisterResult(randomBpk, DE_ST+randomIdentifier, randomGivenName, randomFamilyName, randomDate));
 
-    ernbClient = Mockito.mock(IErnbClient.class);
-    Mockito.when(ernbClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(ernbResult);
+    ernpClient = Mockito.mock(IErnpClient.class);
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(ernpResult);
 
-    task = new InitialSearchTask(emptyHandlers(), ernbClient, zmrClient);
-    try {
-      task.execute(pendingReq, executionContext);
-      String bPk = (String)
-          pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
-      Assert.assertTrue("Wrong bpk", bPk.equals(randomBpk));
-    } catch (final TaskExecutionException e) {
-      Assert.assertTrue("Wrong workflow, should not reach this point", false);
-    }
+    task = new InitialSearchTask(emptyHandlers(), ernpClient, zmrClient);
+    task.execute(pendingReq, executionContext);
+    String bPk = (String)
+        pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
+    Assert.assertTrue("Wrong bpk", bPk.equals(randomBpk));
   }
 
   @Test
@@ -262,39 +261,33 @@ public class InitialSearchTaskFirstTest {
   /**
    * One match, no register update needed
    */
-  public void testNode102b() throws Exception {
+  public void testNode102_UserIdentified_b() throws Exception {
     String randomBpk = RandomStringUtils.randomNumeric(14);
-    //Mock ZMR
+
     ArrayList<RegisterResult> zmrResult = new ArrayList<>();
-    zmrResult.add(new RegisterResult(randomBpk, "de/st/"+randomIdentifier, randomGivenName, randomFamilyName, "2011-01-01"));
+    zmrResult.add(new RegisterResult(randomBpk, DE_ST+randomIdentifier, randomGivenName, randomFamilyName, randomDate));
 
     zmrClient = Mockito.mock(IZmrClient.class);
-    Mockito.when(zmrClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(zmrResult);
+    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResult);
 
-    //Mock ernb
-    ArrayList<RegisterResult> ernbResult = new ArrayList<>();
+    ArrayList<RegisterResult> ernpResult = new ArrayList<>();
 
-    ernbClient = Mockito.mock(IErnbClient.class);
-    Mockito.when(ernbClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(ernbResult);
+    ernpClient = Mockito.mock(IErnpClient.class);
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(ernpResult);
 
-    task = new InitialSearchTask(emptyHandlers(), ernbClient, zmrClient);
-    try {
-      task.execute(pendingReq, executionContext);
-      String bPk = (String)
-          pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
-      Assert.assertTrue("Wrong bpk", bPk.equals(randomBpk));
-
-    } catch (final TaskExecutionException e) {
-      Assert.assertTrue("Wrong workflow, should not reach this point", false);
-    }
+    task = new InitialSearchTask(emptyHandlers(), ernpClient, zmrClient);
+    task.execute(pendingReq, executionContext);
+    String bPk = (String)
+        pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
+    Assert.assertTrue("Wrong bpk", bPk.equals(randomBpk));
   }
 
   @Test
   @DirtiesContext
   /**
-   * One match found in ZMR and ErnB with detail search
+   * One match found in ZMR and ErnP with detail search
    */
-  public void testNode103IT() throws Exception {
+  public void testNode103_UserIdentified_IT() throws Exception {
     String bpkRegister = RandomStringUtils.randomNumeric(14);
     String taxNumber = RandomStringUtils.randomNumeric(14);
     final AuthenticationResponse response = buildDummyAuthResponseRandomPersonIT_Tax(taxNumber);
@@ -302,29 +295,26 @@ public class InitialSearchTaskFirstTest {
     pendingReq1.getSessionData(AuthProcessDataWrapper.class)
         .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
 
-    //Mock ZMR initial search
     ArrayList<RegisterResult> zmrResultInitial = new ArrayList<>();
     zmrClient = Mockito.mock(IZmrClient.class);
-    Mockito.when(zmrClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(zmrResultInitial);
+    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResultInitial);
     ArrayList<RegisterResult> zmrResultSpecific = new ArrayList<>();
-    //String bpk, String pseudonym, String givenName, String familyName, String dateOfBirth,
-    //                        String placeOfBirth, String birthName, String taxNumber, PostalAddressType address
-    zmrResultSpecific.add(new RegisterResult(bpkRegister, "it/st/"+randomIdentifier+"4", randomGivenName, randomFamilyName,
-        "2011-01-01", null, null, taxNumber, null));
 
-    Mockito.when(zmrClient.searchItSpecific(taxNumber)).thenReturn(zmrResultSpecific);
+    zmrResultSpecific.add(new RegisterResult(bpkRegister, IT_ST+randomIdentifier+RandomStringUtils.random(2),
+        randomGivenName,
+        randomFamilyName,
+        randomDate, null, null, taxNumber, null));
 
-    //Mock ernb initial search
-    ArrayList<RegisterResult> ernbResultInitial = new ArrayList<>();
-    ernbClient = Mockito.mock(IErnbClient.class);
-    Mockito.when(ernbClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(ernbResultInitial);
+    Mockito.when(zmrClient.searchItSpecific(taxNumber)).thenReturn(zmrResultSpecific);
 
+    ArrayList<RegisterResult> ernpResultInitial = new ArrayList<>();
+    ernpClient = Mockito.mock(IErnpClient.class);
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(ernpResultInitial);
 
-    //Mock country specific search
-    List<ICountrySpecificDetailSearchProcessor> handlers = new ArrayList<>();
-    ItSpecificDetailSearchProcessor it = new ItSpecificDetailSearchProcessor(ernbClient, zmrClient);
+    List<CountrySpecificDetailSearchProcessor> handlers = new ArrayList<>();
+    ItSpecificDetailSearchProcessor it = new ItSpecificDetailSearchProcessor(ernpClient, zmrClient);
     handlers.add(it);
-    task = new InitialSearchTask(handlers, ernbClient, zmrClient);
+    task = new InitialSearchTask(handlers, ernpClient, zmrClient);
 
     try {
       task.execute(pendingReq1, executionContext);
@@ -340,26 +330,25 @@ public class InitialSearchTaskFirstTest {
   @Test
   @DirtiesContext
   /**
-   * Multiple matches found in ZMR and ErnB with detail search
+   * Multiple matches found in ZMR and ErnP with detail search
    */
-  public void testNode103DE() throws Exception {
+  public void testNode103_UserIdentified_DE() throws Exception {
     String givenName = randomGivenName;
     String familyName = randomFamilyName;
-    String pseudonym = "de/st/max1234";
-    String bpk = "bpkMax";
-    String dateOfBirth = "2011-01-01";
-    String placeOfBirth = "München";
-    String birthName = "BabyMax";
+    String pseudonym = DE_ST + RandomStringUtils.random(5);
+    String bpk = RandomStringUtils.random(5);
+    String dateOfBirth = randomDate;
+    String placeOfBirth = randomPlaceOfBirth;
+    String birthName = randomBirthName;
     final AuthenticationResponse response = buildDummyAuthResponseDE(givenName, familyName, pseudonym,
         dateOfBirth, placeOfBirth, birthName);
     TestRequestImpl pendingReq1 = new TestRequestImpl();
     pendingReq1.getSessionData(AuthProcessDataWrapper.class)
         .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
 
-    //Mock ZMR initial search
     ArrayList<RegisterResult> zmrResultInitial = new ArrayList<>();
     zmrClient = Mockito.mock(IZmrClient.class);
-    Mockito.when(zmrClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(zmrResultInitial);
+    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResultInitial);
     ArrayList<RegisterResult> zmrResultSpecific = new ArrayList<>();
 
     zmrResultSpecific.add(new RegisterResult(bpk, pseudonym, givenName, familyName, dateOfBirth, placeOfBirth,
@@ -368,16 +357,14 @@ public class InitialSearchTaskFirstTest {
 
     Mockito.when(zmrClient.searchDeSpecific(givenName, familyName, dateOfBirth, placeOfBirth, birthName)).thenReturn(zmrResultSpecific);
 
-    //Mock ernb initial search
-    ArrayList<RegisterResult> ernbResultInitial = new ArrayList<>();
-    ernbClient = Mockito.mock(IErnbClient.class);
-    Mockito.when(ernbClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(ernbResultInitial);
+    ArrayList<RegisterResult> ernpResultInitial = new ArrayList<>();
+    ernpClient = Mockito.mock(IErnpClient.class);
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(ernpResultInitial);
 
-    //Mock country specific search
-    List<ICountrySpecificDetailSearchProcessor> handlers = new ArrayList<>();
-    DeSpecificDetailSearchProcessor de = new DeSpecificDetailSearchProcessor(ernbClient, zmrClient);
+    List<CountrySpecificDetailSearchProcessor> handlers = new ArrayList<>();
+    DeSpecificDetailSearchProcessor de = new DeSpecificDetailSearchProcessor(ernpClient, zmrClient);
     handlers.add(de);
-    task = new InitialSearchTask(handlers, ernbClient, zmrClient);
+    task = new InitialSearchTask(handlers, ernpClient, zmrClient);
 
     try {
       task.execute(pendingReq1, executionContext);
@@ -393,28 +380,27 @@ public class InitialSearchTaskFirstTest {
   @Test
   @DirtiesContext
   /**
-   * Multiple matches found in ZMR and ErnB with detail search
+   * Multiple matches found in ZMR and ErnP with detail search
    */
-  public void testNode104DE() throws Exception {
+  public void testNode104_ManualFixNecessary_DE() throws Exception {
     String givenName = randomGivenName;
     String familyName = randomFamilyName;
-    String pseudonym1 = "de/st/max1234";
-    String pseudonym2 = "de/st/max12345";
-    String bpk1 = "bpkMax";
-    String bpk2 = "bpkMax1";
-    String dateOfBirth = "2011-01-01";
-    String placeOfBirth = "München";
-    String birthName = "BabyMax";
+    String pseudonym1 = DE_ST + RandomStringUtils.random(5);
+    String pseudonym2 = pseudonym1 + RandomStringUtils.random(2);
+    String bpk1 = RandomStringUtils.random(5);
+    String bpk2 = bpk1 + RandomStringUtils.random(2);
+    String dateOfBirth = randomDate;
+    String placeOfBirth = randomPlaceOfBirth;
+    String birthName = randomBirthName;
     final AuthenticationResponse response = buildDummyAuthResponseDE(givenName, familyName, pseudonym1,
         dateOfBirth, placeOfBirth, birthName);
     TestRequestImpl pendingReq1 = new TestRequestImpl();
     pendingReq1.getSessionData(AuthProcessDataWrapper.class)
         .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
 
-    //Mock ZMR initial search
     ArrayList<RegisterResult> zmrResultInitial = new ArrayList<>();
     zmrClient = Mockito.mock(IZmrClient.class);
-    Mockito.when(zmrClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(zmrResultInitial);
+    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResultInitial);
     ArrayList<RegisterResult> zmrResultSpecific = new ArrayList<>();
 
     zmrResultSpecific.add(new RegisterResult(bpk1, pseudonym1, givenName, familyName, dateOfBirth, placeOfBirth,
@@ -425,23 +411,18 @@ public class InitialSearchTaskFirstTest {
         null, null));
     Mockito.when(zmrClient.searchDeSpecific(givenName, familyName, dateOfBirth, placeOfBirth, birthName)).thenReturn(zmrResultSpecific);
 
+    ArrayList<RegisterResult> ernpResultInitial = new ArrayList<>();
+    ernpClient = Mockito.mock(IErnpClient.class);
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(ernpResultInitial);
 
-    //Mock ernb initial search
-    ArrayList<RegisterResult> ernbResultInitial = new ArrayList<>();
-    ernbClient = Mockito.mock(IErnbClient.class);
-    Mockito.when(ernbClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(ernbResultInitial);
-
-    //Mock country specific search
-    List<ICountrySpecificDetailSearchProcessor> handlers = new ArrayList<>();
-    DeSpecificDetailSearchProcessor de = new DeSpecificDetailSearchProcessor(ernbClient, zmrClient);
+    List<CountrySpecificDetailSearchProcessor> handlers = new ArrayList<>();
+    DeSpecificDetailSearchProcessor de = new DeSpecificDetailSearchProcessor(ernpClient, zmrClient);
     handlers.add(de);
-    task = new InitialSearchTask(handlers, ernbClient, zmrClient);
+    task = new InitialSearchTask(handlers, ernpClient, zmrClient);
 
     try {
       task.execute(pendingReq1, executionContext);
-
       Assert.assertTrue("Wrong workflow, should not reach this point/ get a bpk", false);
-
     } catch (final TaskExecutionException e) {
       Throwable origE = e.getOriginalException();
       Assert.assertTrue("Wrong exception", (origE.getCause() instanceof ManualFixNecessaryException));
@@ -451,43 +432,40 @@ public class InitialSearchTaskFirstTest {
   @Test
   @DirtiesContext
   /**
-   * Multiple matches found in ZMR and ErnB with detail search
+   * Multiple matches found in ZMR and ErnP with detail search
    */
-  public void testNode104IT() throws Exception {
+  public void testNode104_ManualFixNecessary_IT() throws Exception {
     String fakeTaxNumber = RandomStringUtils.randomNumeric(14);;
     final AuthenticationResponse response = buildDummyAuthResponseRandomPersonIT_Tax(fakeTaxNumber);
     TestRequestImpl pendingReq1 = new TestRequestImpl();
     pendingReq1.getSessionData(AuthProcessDataWrapper.class)
         .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
 
-    //Mock ZMR initial search
     ArrayList<RegisterResult> zmrResultInitial = new ArrayList<>();
     zmrClient = Mockito.mock(IZmrClient.class);
-    Mockito.when(zmrClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(zmrResultInitial);
+    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResultInitial);
     ArrayList<RegisterResult> zmrResultSpecific = new ArrayList<>();
 
-    zmrResultSpecific.add(new RegisterResult("bpkMax", "it/st/"+randomIdentifier+"4", randomGivenName, randomFamilyName, "2011-01-01", null, null,
+    zmrResultSpecific.add(new RegisterResult("bpkMax", IT_ST+randomIdentifier+"4", randomGivenName, randomFamilyName,
+        randomDate, null, null,
         fakeTaxNumber, null));
-    zmrResultSpecific.add(new RegisterResult("bpkMax1", "it/st/"+randomIdentifier+"5", randomGivenName, randomFamilyName, "2011-01-01", null, null,
+    zmrResultSpecific.add(new RegisterResult("bpkMax1", IT_ST+randomIdentifier+"5", randomGivenName, randomFamilyName,
+        randomDate, null, null,
         fakeTaxNumber, null));
     Mockito.when(zmrClient.searchItSpecific(fakeTaxNumber)).thenReturn(zmrResultSpecific);
 
-    //Mock ernb initial search
-    ArrayList<RegisterResult> ernbResultInitial = new ArrayList<>();
-    ernbClient = Mockito.mock(IErnbClient.class);
-    Mockito.when(ernbClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(ernbResultInitial);
+    ArrayList<RegisterResult> ernpResultInitial = new ArrayList<>();
+    ernpClient = Mockito.mock(IErnpClient.class);
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(ernpResultInitial);
 
-    //Mock country specific search
-    List<ICountrySpecificDetailSearchProcessor> handlers = new ArrayList<>();
-    ItSpecificDetailSearchProcessor it = new ItSpecificDetailSearchProcessor(ernbClient, zmrClient);
+    List<CountrySpecificDetailSearchProcessor> handlers = new ArrayList<>();
+    ItSpecificDetailSearchProcessor it = new ItSpecificDetailSearchProcessor(ernpClient, zmrClient);
     handlers.add(it);
-    task = new InitialSearchTask(handlers, ernbClient, zmrClient);
+    task = new InitialSearchTask(handlers, ernpClient, zmrClient);
 
     try {
       task.execute(pendingReq1, executionContext);
-
       Assert.assertTrue("Wrong workflow, should not reach this point/ get a bpk", false);
-
     } catch (final TaskExecutionException e) {
       Throwable origE = e.getOriginalException();
       Assert.assertTrue("Wrong exception", (origE.getCause() instanceof ManualFixNecessaryException));
@@ -497,45 +475,35 @@ public class InitialSearchTaskFirstTest {
   @Test
   @DirtiesContext
   /**
-   * NO match found in ZMR and ErnB with Initial search
+   * NO match found in ZMR and ErnP with Initial search
    */
-  public void testNode105() {
+  public void testNode105_TemporaryEnd() throws TaskExecutionException {
 
-    //Mock ZMR
     ArrayList<RegisterResult> zmrResult = new ArrayList<>();
     zmrClient = Mockito.mock(IZmrClient.class);
-    Mockito.when(zmrClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(zmrResult);
-
-    //Mock ernb
-    ArrayList<RegisterResult> ernbResult = new ArrayList<>();
-    ernbClient = Mockito.mock(IErnbClient.class);
-    Mockito.when(ernbClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(ernbResult);
+    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResult);
 
-    task = new InitialSearchTask(emptyHandlers(), ernbClient, zmrClient);
-    try {
-      task.execute(pendingReq, executionContext);
+    ArrayList<RegisterResult> ernpResult = new ArrayList<>();
+    ernpClient = Mockito.mock(IErnpClient.class);
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(ernpResult);
 
-      String bPk = (String)
-          pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
-      Assert.assertTrue("Wrong bpk", bPk.equals("TODO-Temporary-Endnode-105"));
-    } catch (final TaskExecutionException e) {
-      Assert.assertTrue("Wrong workflow, should not reach this point", false);
-    }
+    task = new InitialSearchTask(emptyHandlers(), ernpClient, zmrClient);
+    task.execute(pendingReq, executionContext);
+    String bPk = (String)
+        pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
+    Assert.assertEquals("Wrong bpk", "TODO-Temporary-Endnode-105", bPk);
   }
 
 
   @NotNull
   private AuthenticationResponse buildDummyAuthResponseRandomPerson() throws URISyntaxException {
-    // NOTE: Those strings "de/st/max123" seem to be somehow relevant, but where do we need to use that exact string
-    // again?
-    // NOTE: If not, why not using random strings?
     return buildDummyAuthResponse(randomGivenName, randomFamilyName,
-        "de/st/"+randomIdentifier, "2011-01-01");
+        DE_ST+randomIdentifier, randomDate);
   }
 
   private AuthenticationResponse buildDummyAuthResponseRandomPersonIT_Tax(String taxNumber) throws URISyntaxException {
     return buildDummyAuthResponse(randomGivenName, randomFamilyName,
-        "it/st/"+randomIdentifier, "2011-01-01", taxNumber, null, null);
+        IT_ST+randomIdentifier, randomDate, taxNumber, null, null);
   }
 
   @NotNull
@@ -555,58 +523,46 @@ public class InitialSearchTaskFirstTest {
   private AuthenticationResponse buildDummyAuthResponse(String givenName, String familyName, String identifier,
                                                         String dateOfBirth, String taxNumber, String placeOfBirth,
                                                         String birthName) throws URISyntaxException {
-    final AttributeDefinition attributeDef = AttributeDefinition.builder()
-        .friendlyName(Constants.eIDAS_ATTR_PERSONALIDENTIFIER).nameUri(new URI("ad", "sd", "ff"))
-        .personType(PersonType.LEGAL_PERSON).xmlType(new QName("http://saf", "as", "af"))
-        .attributeValueMarshaller("eu.eidas.auth.commons.attribute.impl.LiteralStringAttributeValueMarshaller").build();
-    final AttributeDefinition attributeDef2 = AttributeDefinition.builder()
-        .friendlyName(Constants.eIDAS_ATTR_CURRENTFAMILYNAME).nameUri(new URI("ad", "sd", "fff"))
-        .personType(PersonType.LEGAL_PERSON).xmlType(new QName("http://saf", "as", "aff"))
-        .attributeValueMarshaller("eu.eidas.auth.commons.attribute.impl.LiteralStringAttributeValueMarshaller").build();
-    final AttributeDefinition attributeDef3 = AttributeDefinition.builder()
-        .friendlyName(Constants.eIDAS_ATTR_CURRENTGIVENNAME).nameUri(new URI("ad", "sd", "ffff"))
-        .personType(PersonType.LEGAL_PERSON).xmlType(new QName("http://saf", "as", "afff"))
-        .attributeValueMarshaller("eu.eidas.auth.commons.attribute.impl.LiteralStringAttributeValueMarshaller").build();
-    final AttributeDefinition attributeDef4 = AttributeDefinition.builder()
-        .friendlyName(Constants.eIDAS_ATTR_DATEOFBIRTH).nameUri(new URI("ad", "sd", "fffff"))
-        .personType(PersonType.LEGAL_PERSON).xmlType(new QName("http://saf", "as", "affff"))
-        .attributeValueMarshaller("eu.eidas.auth.commons.attribute.impl.DateTimeAttributeValueMarshaller").build();
-    final AttributeDefinition attributeDef5 = AttributeDefinition.builder()
-        .friendlyName(Constants.eIDAS_ATTR_TAXREFERENCE).nameUri(new URI("ad", "sd", "ffffff"))
-        .personType(PersonType.LEGAL_PERSON).xmlType(new QName("http://saf", "as", "afffff"))
-        .attributeValueMarshaller("eu.eidas.auth.commons.attribute.impl.LiteralStringAttributeValueMarshaller").build();
-    final AttributeDefinition attributeDef6 = AttributeDefinition.builder()
-        .friendlyName(Constants.eIDAS_ATTR_PLACEOFBIRTH).nameUri(new URI("ad", "sd", "fffffff"))
-        .personType(PersonType.LEGAL_PERSON).xmlType(new QName("http://saf", "as", "affffff"))
-        .attributeValueMarshaller("eu.eidas.auth.commons.attribute.impl.LiteralStringAttributeValueMarshaller").build();
-    final AttributeDefinition attributeDef7 = AttributeDefinition.builder()
-        .friendlyName(Constants.eIDAS_ATTR_BIRTHNAME).nameUri(new URI("ad", "sd", "ffffffff"))
-        .personType(PersonType.LEGAL_PERSON).xmlType(new QName("http://saf", "as", "afffffff"))
-        .attributeValueMarshaller("eu.eidas.auth.commons.attribute.impl.LiteralStringAttributeValueMarshaller").build();
     ImmutableAttributeMap.Builder builder = ImmutableAttributeMap.builder()
-        .put(attributeDef, identifier)
-        .put(attributeDef2, familyName)
-        .put(attributeDef3, givenName)
-        .put(attributeDef4, dateOfBirth);
-
+        .put(generateStringAttribute(Constants.eIDAS_ATTR_PERSONALIDENTIFIER,"ff","af"), identifier)
+        .put(generateStringAttribute(Constants.eIDAS_ATTR_CURRENTFAMILYNAME,"fff","aff"), familyName)
+        .put(generateStringAttribute(Constants.eIDAS_ATTR_CURRENTGIVENNAME,"ffff","afff"), givenName)
+        .put(generateDateTimeAttribute(Constants.eIDAS_ATTR_DATEOFBIRTH,"fffff","affff"), dateOfBirth);
     if (taxNumber != null) {
-      builder.put(attributeDef5, taxNumber);
+      builder.put(generateStringAttribute(Constants.eIDAS_ATTR_TAXREFERENCE,"ffffff","afffff"), taxNumber);
     }
     if (birthName != null) {
-      builder.put(attributeDef7, birthName);
+      builder.put(generateStringAttribute(Constants.eIDAS_ATTR_BIRTHNAME,"fffffff","affffff"), birthName);
     }
     if (placeOfBirth != null) {
-      builder.put(attributeDef6, placeOfBirth);
+      builder.put(generateStringAttribute(Constants.eIDAS_ATTR_PLACEOFBIRTH,"ffffffff","afffffff"), placeOfBirth);
     }
     final ImmutableAttributeMap attributeMap = builder.build();
 
     val b = new AuthenticationResponse.Builder();
     return b.id("aasdf").issuer("asd").subject("asf").statusCode("200").inResponseTo("asdf").subjectNameIdFormat(
-        "afaf")
-        .attributes(attributeMap).build();
+        "afaf").attributes(attributeMap).build();
+  }
+
+  private AttributeDefinition generateStringAttribute(String friendlyName, String fragment, String prefix) throws URISyntaxException {
+    return generateAttribute(friendlyName, fragment, prefix, "eu.eidas.auth.commons.attribute.impl" +
+        ".LiteralStringAttributeValueMarshaller");
+  }
+
+  private AttributeDefinition generateDateTimeAttribute(String friendlyName, String fragment, String prefix) throws URISyntaxException {
+    return generateAttribute(friendlyName, fragment, prefix, "eu.eidas.auth.commons.attribute.impl" +
+        ".DateTimeAttributeValueMarshaller");
+  }
+
+  private AttributeDefinition generateAttribute(String friendlyName, String fragment, String prefix,
+                                                String marshaller) throws URISyntaxException {
+    return AttributeDefinition.builder()
+        .friendlyName(friendlyName).nameUri(new URI("ad", "sd", fragment))
+        .personType(PersonType.LEGAL_PERSON).xmlType(new QName("http://saf", "as", prefix))
+        .attributeValueMarshaller(marshaller).build();
   }
 
-  private List<ICountrySpecificDetailSearchProcessor> emptyHandlers() {
+  private List<CountrySpecificDetailSearchProcessor> emptyHandlers() {
     return new ArrayList<>();
   }
 
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_tasks_test.xml b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_tasks_test.xml
index 10d480e0..1f3a984b 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_tasks_test.xml
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_tasks_test.xml
@@ -66,7 +66,7 @@
         scope="prototype" />
 
   <bean id="ErnbClientForeIDAS"
-        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.ernb.DummyErnbClient" />
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.ernp.DummyErnpClient" />
 
   <bean id="ZmrClientForeIDAS"
         class="at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.DummyZmrClient" />
-- 
cgit v1.2.3


From b0f2b00b460e1c8419ea631bdbd1da1c33150bce Mon Sep 17 00:00:00 2001
From: Christian Kollmann <christian.kollmann@a-sit.at>
Date: Tue, 12 Jan 2021 14:17:52 +0100
Subject: Streamline mock creation in tests

---
 .../v2/test/tasks/InitialSearchTaskFirstTest.java  | 53 +++-------------------
 1 file changed, 7 insertions(+), 46 deletions(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
index a1dce0f2..12a0969d 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
@@ -50,7 +50,9 @@ import org.junit.Before;
 import org.junit.BeforeClass;
 import org.junit.Test;
 import org.junit.runner.RunWith;
+import org.mockito.Mock;
 import org.mockito.Mockito;
+import org.mockito.MockitoAnnotations;
 import org.springframework.mock.web.MockHttpServletRequest;
 import org.springframework.mock.web.MockHttpServletResponse;
 import org.springframework.test.annotation.DirtiesContext;
@@ -69,13 +71,14 @@ import java.util.List;
 import java.util.Random;
 
 @RunWith(SpringJUnit4ClassRunner.class)
-
 @ContextConfiguration("/SpringTest-context_tasks_test.xml")
 @DirtiesContext(classMode = ClassMode.BEFORE_CLASS)
 public class InitialSearchTaskFirstTest {
 
   private InitialSearchTask task;
+  @Mock
   private IZmrClient zmrClient;
+  @Mock
   private IErnpClient ernpClient;
 
   final ExecutionContext executionContext = new ExecutionContextImpl();
@@ -108,6 +111,9 @@ public class InitialSearchTaskFirstTest {
    */
   @Before
   public void setUp() throws URISyntaxException, EaafStorageException {
+    MockitoAnnotations.initMocks(this);
+    task = new InitialSearchTask(new ArrayList<CountrySpecificDetailSearchProcessor>(), ernpClient, zmrClient);
+
     httpReq = new MockHttpServletRequest("POST", "https://localhost/authhandler");
     httpResp = new MockHttpServletResponse();
     RequestContextHolder.resetRequestAttributes();
@@ -125,20 +131,15 @@ public class InitialSearchTaskFirstTest {
    * One match, but register update needed
    */
   public void testNode100_UserIdentifiedUpdateNecessary_a() throws Exception {
-
     ArrayList<RegisterResult> zmrResult = new ArrayList<>();
     String randomBpk = RandomStringUtils.randomNumeric(6);
     String newFirstName = RandomStringUtils.randomAlphabetic(5);
     zmrResult.add(new RegisterResult(randomBpk, DE_ST+randomIdentifier, newFirstName, randomFamilyName, randomDate));
-
-    zmrClient = Mockito.mock(IZmrClient.class);
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResult);
 
     ArrayList<RegisterResult> ernpResult = new ArrayList<>();
-    ernpClient = Mockito.mock(IErnpClient.class);
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(ernpResult);
 
-    task = new InitialSearchTask(emptyHandlers(), ernpClient, zmrClient);
     task.execute(pendingReq, executionContext);
     String bPk = (String)
         pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
@@ -151,20 +152,14 @@ public class InitialSearchTaskFirstTest {
    * One match, but register update needed
    */
   public void testNode100_UserIdentifiedUpdateNecessary_b() throws TaskExecutionException {
-
     ArrayList<RegisterResult> zmrResult = new ArrayList<>();
-
-    zmrClient = Mockito.mock(IZmrClient.class);
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResult);
 
     ArrayList<RegisterResult> ernpResult = new ArrayList<>();
     String randomBpk = RandomStringUtils.randomNumeric(6);
     ernpResult.add(new RegisterResult(randomBpk, DE_ST+randomIdentifier, "Max_new", randomFamilyName, randomDate));
-
-    ernpClient = Mockito.mock(IErnpClient.class);
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(ernpResult);
 
-    task = new InitialSearchTask(emptyHandlers(), ernpClient, zmrClient);
     task.execute(pendingReq, executionContext);
     String bPk = (String)
         pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
@@ -179,18 +174,14 @@ public class InitialSearchTaskFirstTest {
    * Two matches found in ZMR
    */
   public void testNode101_ManualFixNecessary_a() throws Exception {
-
     ArrayList<RegisterResult> zmrResult = new ArrayList<>();
     zmrResult.add(new RegisterResult("bpkMax", DE_ST+randomIdentifier, randomGivenName, randomFamilyName, randomDate));
     zmrResult.add(new RegisterResult("bpkMax", DE_ST+randomIdentifier, "Maximilian", randomFamilyName, randomDate));
-    zmrClient = Mockito.mock(IZmrClient.class);
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResult);
 
     ArrayList<RegisterResult> ernpResult = new ArrayList<>();
-    ernpClient = Mockito.mock(IErnpClient.class);
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(ernpResult);
 
-    task = new InitialSearchTask(emptyHandlers(), ernpClient, zmrClient);
     try {
       task.execute(pendingReq, executionContext);
       Assert.assertTrue("Wrong workflow, should not reach this point/ get a bpk", false);
@@ -209,7 +200,6 @@ public class InitialSearchTaskFirstTest {
   public void testNode101_ManualFixNecessary_b() throws Exception {
     String randombpk = RandomStringUtils.random(5);
     ArrayList<RegisterResult> zmrResult = new ArrayList<>();
-    zmrClient = Mockito.mock(IZmrClient.class);
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResult);
 
     ArrayList<RegisterResult> ernpResult = new ArrayList<>();
@@ -217,11 +207,8 @@ public class InitialSearchTaskFirstTest {
     ernpResult.add(new RegisterResult(randombpk, DE_ST+randomIdentifier, randomGivenName+RandomStringUtils.random(2),
         randomFamilyName,
         randomDate));
-
-    ernpClient = Mockito.mock(IErnpClient.class);
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(ernpResult);
 
-    task = new InitialSearchTask(emptyHandlers(), ernpClient, zmrClient);
     try {
       task.execute(pendingReq, executionContext);
       Assert.assertTrue("Wrong workflow, should not reach this point/ get a bpk", false);
@@ -237,19 +224,14 @@ public class InitialSearchTaskFirstTest {
    * One match, no register update needed
    */
   public void testNode102_UserIdentified_a() throws Exception {
-
     String randomBpk = RandomStringUtils.randomNumeric(12);
     ArrayList<RegisterResult> zmrResult = new ArrayList<>();
-    zmrClient = Mockito.mock(IZmrClient.class);
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResult);
 
     ArrayList<RegisterResult> ernpResult = new ArrayList<>();
     ernpResult.add(new RegisterResult(randomBpk, DE_ST+randomIdentifier, randomGivenName, randomFamilyName, randomDate));
-
-    ernpClient = Mockito.mock(IErnpClient.class);
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(ernpResult);
 
-    task = new InitialSearchTask(emptyHandlers(), ernpClient, zmrClient);
     task.execute(pendingReq, executionContext);
     String bPk = (String)
         pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
@@ -266,16 +248,11 @@ public class InitialSearchTaskFirstTest {
 
     ArrayList<RegisterResult> zmrResult = new ArrayList<>();
     zmrResult.add(new RegisterResult(randomBpk, DE_ST+randomIdentifier, randomGivenName, randomFamilyName, randomDate));
-
-    zmrClient = Mockito.mock(IZmrClient.class);
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResult);
 
     ArrayList<RegisterResult> ernpResult = new ArrayList<>();
-
-    ernpClient = Mockito.mock(IErnpClient.class);
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(ernpResult);
 
-    task = new InitialSearchTask(emptyHandlers(), ernpClient, zmrClient);
     task.execute(pendingReq, executionContext);
     String bPk = (String)
         pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
@@ -296,7 +273,6 @@ public class InitialSearchTaskFirstTest {
         .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
 
     ArrayList<RegisterResult> zmrResultInitial = new ArrayList<>();
-    zmrClient = Mockito.mock(IZmrClient.class);
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResultInitial);
     ArrayList<RegisterResult> zmrResultSpecific = new ArrayList<>();
 
@@ -308,7 +284,6 @@ public class InitialSearchTaskFirstTest {
     Mockito.when(zmrClient.searchItSpecific(taxNumber)).thenReturn(zmrResultSpecific);
 
     ArrayList<RegisterResult> ernpResultInitial = new ArrayList<>();
-    ernpClient = Mockito.mock(IErnpClient.class);
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(ernpResultInitial);
 
     List<CountrySpecificDetailSearchProcessor> handlers = new ArrayList<>();
@@ -347,7 +322,6 @@ public class InitialSearchTaskFirstTest {
         .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
 
     ArrayList<RegisterResult> zmrResultInitial = new ArrayList<>();
-    zmrClient = Mockito.mock(IZmrClient.class);
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResultInitial);
     ArrayList<RegisterResult> zmrResultSpecific = new ArrayList<>();
 
@@ -358,7 +332,6 @@ public class InitialSearchTaskFirstTest {
     Mockito.when(zmrClient.searchDeSpecific(givenName, familyName, dateOfBirth, placeOfBirth, birthName)).thenReturn(zmrResultSpecific);
 
     ArrayList<RegisterResult> ernpResultInitial = new ArrayList<>();
-    ernpClient = Mockito.mock(IErnpClient.class);
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(ernpResultInitial);
 
     List<CountrySpecificDetailSearchProcessor> handlers = new ArrayList<>();
@@ -399,7 +372,6 @@ public class InitialSearchTaskFirstTest {
         .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
 
     ArrayList<RegisterResult> zmrResultInitial = new ArrayList<>();
-    zmrClient = Mockito.mock(IZmrClient.class);
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResultInitial);
     ArrayList<RegisterResult> zmrResultSpecific = new ArrayList<>();
 
@@ -412,7 +384,6 @@ public class InitialSearchTaskFirstTest {
     Mockito.when(zmrClient.searchDeSpecific(givenName, familyName, dateOfBirth, placeOfBirth, birthName)).thenReturn(zmrResultSpecific);
 
     ArrayList<RegisterResult> ernpResultInitial = new ArrayList<>();
-    ernpClient = Mockito.mock(IErnpClient.class);
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(ernpResultInitial);
 
     List<CountrySpecificDetailSearchProcessor> handlers = new ArrayList<>();
@@ -442,7 +413,6 @@ public class InitialSearchTaskFirstTest {
         .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
 
     ArrayList<RegisterResult> zmrResultInitial = new ArrayList<>();
-    zmrClient = Mockito.mock(IZmrClient.class);
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResultInitial);
     ArrayList<RegisterResult> zmrResultSpecific = new ArrayList<>();
 
@@ -455,7 +425,6 @@ public class InitialSearchTaskFirstTest {
     Mockito.when(zmrClient.searchItSpecific(fakeTaxNumber)).thenReturn(zmrResultSpecific);
 
     ArrayList<RegisterResult> ernpResultInitial = new ArrayList<>();
-    ernpClient = Mockito.mock(IErnpClient.class);
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(ernpResultInitial);
 
     List<CountrySpecificDetailSearchProcessor> handlers = new ArrayList<>();
@@ -478,16 +447,12 @@ public class InitialSearchTaskFirstTest {
    * NO match found in ZMR and ErnP with Initial search
    */
   public void testNode105_TemporaryEnd() throws TaskExecutionException {
-
     ArrayList<RegisterResult> zmrResult = new ArrayList<>();
-    zmrClient = Mockito.mock(IZmrClient.class);
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResult);
 
     ArrayList<RegisterResult> ernpResult = new ArrayList<>();
-    ernpClient = Mockito.mock(IErnpClient.class);
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(ernpResult);
 
-    task = new InitialSearchTask(emptyHandlers(), ernpClient, zmrClient);
     task.execute(pendingReq, executionContext);
     String bPk = (String)
         pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
@@ -562,8 +527,4 @@ public class InitialSearchTaskFirstTest {
         .attributeValueMarshaller(marshaller).build();
   }
 
-  private List<CountrySpecificDetailSearchProcessor> emptyHandlers() {
-    return new ArrayList<>();
-  }
-
 }
-- 
cgit v1.2.3


From 5a6df04af0db1a3d66b447da35bf9ad28a371281 Mon Sep 17 00:00:00 2001
From: Christian Kollmann <christian.kollmann@a-sit.at>
Date: Tue, 12 Jan 2021 14:18:29 +0100
Subject: Fix typo

---
 .../auth/eidas/v2/utils/EidasResponseUtils.java    | 24 +++++++++++-----------
 1 file changed, 12 insertions(+), 12 deletions(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/EidasResponseUtils.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/EidasResponseUtils.java
index fb223ee7..3cf73944 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/EidasResponseUtils.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/EidasResponseUtils.java
@@ -54,7 +54,7 @@ public class EidasResponseUtils {
   /**
    * Validate a eIDAS PersonalIdentifier attribute value This validation is done
    * according to eIDAS SAML Attribute Profile - Section 2.2.3 Unique Identifier
-   * 
+   *
    * @param uniqueID eIDAS attribute value of a unique identifier
    * @return true if the uniqueID matches to eIDAS to Unique Identifier
    *         specification, otherwise false
@@ -70,9 +70,9 @@ public class EidasResponseUtils {
    * Parse an eIDAS PersonalIdentifier attribute value into it components. This
    * processing is done according to eIDAS SAML Attribute Profile - Section 2.2.3
    * Unique Identifier
-   * 
+   *
    * @param uniqueID eIDAS attribute value of a unique identifier
-   * @return {@link Trible} that contains: <br>
+   * @return {@link Triple} that contains: <br>
    *         First : citizen country <br>
    *         Second: destination country <br>
    *         Third : unique identifier <br>
@@ -80,7 +80,7 @@ public class EidasResponseUtils {
    */
   public static Triple<String, String, String> parseEidasPersonalIdentifier(String uniqueID) {
     if (!validateEidasPersonalIdentifier(uniqueID)) {
-      log.error("eIDAS attribute value for {} looks wrong formated. Value: {}", 
+      log.error("eIDAS attribute value for {} looks wrong formated. Value: {}",
           Constants.eIDAS_ATTR_PERSONALIDENTIFIER, uniqueID);
       return null;
 
@@ -90,11 +90,11 @@ public class EidasResponseUtils {
   }
 
   /**
-   * Get eIDAS attribute-values from eIDAS Node attributes. 
-   * 
+   * Get eIDAS attribute-values from eIDAS Node attributes.
+   *
    * @param attributeDefinition eIDAS attribute definition
    * @param attributeValues Attributes from eIDAS response
-   * @return Set of attribute values. If more then one value than the first value contains the 'Latin' value. 
+   * @return Set of attribute values. If more then one value than the first value contains the 'Latin' value.
    */
   // TODO: check possible problem with nonLatinCharacters
   public static List<String> translateStringListAttribute(AttributeDefinition<?> attributeDefinition,
@@ -109,7 +109,7 @@ public class EidasResponseUtils {
 
         log.trace("Find attr: {} with value: {} nonLatinFlag: {} needTransliteration: {}",
             attributeDefinition.getFriendlyName(), attributeValue.toString(),
-            attributeValue.isNonLatinScriptAlternateVersion(), 
+            attributeValue.isNonLatinScriptAlternateVersion(),
             AttributeValueTransliterator.needsTransliteration(valueString));
 
         // if (attributeValue.isNonLatinScriptAlternateVersion()) {
@@ -128,7 +128,7 @@ public class EidasResponseUtils {
       }
     }
 
-    log.trace("Extract values: {} for attr: {}", 
+    log.trace("Extract values: {} for attr: {}",
         StringUtils.join(stringListAttribute, ","), attributeDefinition.getFriendlyName());
 
     return stringListAttribute;
@@ -136,8 +136,8 @@ public class EidasResponseUtils {
   }
 
   /**
-   * Convert eIDAS DateTime attribute to Java Object. 
-   * 
+   * Convert eIDAS DateTime attribute to Java Object.
+   *
    * @param attributeDefinition eIDAS attribute definition.
    * @param attributeValues eIDAS attribute value
    * @return
@@ -156,7 +156,7 @@ public class EidasResponseUtils {
 
   /**
    * Concert eIDAS Address attribute to Java object.
-   * 
+   *
    * @param attributeDefinition eIDAS attribute definition
    * @param attributeValues eIDAS attribute value
    * @return
-- 
cgit v1.2.3


From f74e02f9f0735ff9a1e897c5eba10f69ff720f8f Mon Sep 17 00:00:00 2001
From: Alexander Marsalek <amarsalek@iaik.tugraz.at>
Date: Tue, 12 Jan 2021 13:35:02 +0100
Subject: created tasks and beans

---
 .../eidas/v2/tasks/CreateNewErnbEntryTask.java     | 66 ----------------------
 .../eidas/v2/tasks/CreateNewErnpEntryTask.java     | 55 ++++++++++++++++++
 .../auth/eidas/v2/tasks/GenerateGuiTask.java       | 14 +----
 .../GenerateMobilePhoneSignatureRequestTask.java   | 14 +----
 .../eidas/v2/tasks/ReceiveGuiResponseTask.java     | 20 ++-----
 .../ReceiveMobilePhoneSignatureResponseTask.java   | 15 +----
 .../resources/eIDAS.Authentication.process.xml     | 12 ++++
 .../src/main/resources/eidas_v2_auth.beans.xml     | 20 +++++++
 .../resources/SpringTest-context_tasks_test.xml    | 20 +++++++
 9 files changed, 118 insertions(+), 118 deletions(-)
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateNewErnbEntryTask.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateNewErnpEntryTask.java

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateNewErnbEntryTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateNewErnbEntryTask.java
deleted file mode 100644
index 77d6ed41..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateNewErnbEntryTask.java
+++ /dev/null
@@ -1,66 +0,0 @@
-/*
- * Copyright 2018 A-SIT Plus GmbH
- * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
- * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
- *
- * Licensed under the EUPL, Version 1.2 or - as soon they will be approved by
- * the European Commission - subsequent versions of the EUPL (the "License");
- * You may not use this work except in compliance with the License.
- * You may obtain a copy of the License at:
- * https://joinup.ec.europa.eu/news/understanding-eupl-v12
- *
- * Unless required by applicable law or agreed to in writing, software
- * distributed under the License is distributed on an "AS IS" basis,
- * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
- * See the License for the specific language governing permissions and
- * limitations under the License.
- *
- * This product combines work with different licenses. See the "NOTICE" text
- * file for details on the various modules and licenses.
- * The "NOTICE" text file is part of the distribution. Any derivative works
- * that you distribute must include a readable copy of the "NOTICE" text file.
- */
-
-package at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks;
-
-import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
-import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
-import at.gv.egiz.eaaf.core.impl.idp.auth.modules.AbstractAuthServletTask;
-import lombok.extern.slf4j.Slf4j;
-import org.springframework.stereotype.Component;
-
-import javax.servlet.http.HttpServletRequest;
-import javax.servlet.http.HttpServletResponse;
-
-/**
- * Task that searches ErnB and ZMR before adding person to SZR.
- *
- * @author tlenz
- */
-@Slf4j
-@Component("CreateNewErnbEntryTask")
-// NOTE: General: Please rebase git commit and squash them where useful, i.e. "remove unused import" should
-//       not be a separate commit.
-public class CreateNewErnbEntryTask extends AbstractAuthServletTask {
-
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see at.gv.egovernment.moa.id.process.springweb.MoaIdTask#execute(at.gv.
-   * egovernment.moa.id.process.api.ExecutionContext,
-   * javax.servlet.http.HttpServletRequest,
-   * javax.servlet.http.HttpServletResponse)
-   */
-  @Override
-  public void execute(ExecutionContext executionContext, HttpServletRequest request, HttpServletResponse response)
-      throws TaskExecutionException {
-    try {
-      //TODO
-    } catch (final Exception e) {
-      log.error("Initial search FAILED.", e);
-      throw new TaskExecutionException(pendingReq, "Initial search FAILED.", e);
-    }
-  }
-
-}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateNewErnpEntryTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateNewErnpEntryTask.java
new file mode 100644
index 00000000..6f7304c9
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateNewErnpEntryTask.java
@@ -0,0 +1,55 @@
+/*
+ * Copyright 2021 A-SIT Plus GmbH
+ * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
+ * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
+ *
+ * Licensed under the EUPL, Version 1.2 or - as soon they will be approved by
+ * the European Commission - subsequent versions of the EUPL (the "License");
+ * You may not use this work except in compliance with the License.
+ * You may obtain a copy of the License at:
+ * https://joinup.ec.europa.eu/news/understanding-eupl-v12
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" basis,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ *
+ * This product combines work with different licenses. See the "NOTICE" text
+ * file for details on the various modules and licenses.
+ * The "NOTICE" text file is part of the distribution. Any derivative works
+ * that you distribute must include a readable copy of the "NOTICE" text file.
+ */
+
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks;
+
+import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
+import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
+import at.gv.egiz.eaaf.core.impl.idp.auth.modules.AbstractAuthServletTask;
+import lombok.extern.slf4j.Slf4j;
+import org.springframework.stereotype.Component;
+
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+
+/**
+ * Task that searches ErnB and ZMR before adding person to SZR.
+ *
+ * @author amarsalek
+ */
+@Slf4j
+@Component("CreateNewErnbEntryTask")
+public class CreateNewErnpEntryTask extends AbstractAuthServletTask {
+
+  @Override
+  public void execute(ExecutionContext executionContext, HttpServletRequest request, HttpServletResponse response)
+      throws TaskExecutionException {
+    try {
+      //TODO
+    } catch (final Exception e) {
+      log.error("Initial search FAILED.", e);
+      throw new TaskExecutionException(pendingReq, "Initial search FAILED.", e);
+    }
+  }
+
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateGuiTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateGuiTask.java
index d55d4a7e..3d77f994 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateGuiTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateGuiTask.java
@@ -1,5 +1,5 @@
 /*
- * Copyright 2018 A-SIT Plus GmbH
+ * Copyright 2021 A-SIT Plus GmbH
  * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
  * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
  *
@@ -41,12 +41,10 @@ import javax.servlet.http.HttpServletResponse;
 /**
  * Task that searches ErnB and ZMR before adding person to SZR.
  *
- * @author tlenz
+ * @author amarsalek
  */
 @Slf4j
 @Component("GenerateGuiTask")
-// NOTE: General: Please rebase git commit and squash them where useful, i.e. "remove unused import" should
-//       not be a separate commit.
 public class GenerateGuiTask extends AbstractAuthServletTask {
 
   @Autowired
@@ -54,14 +52,6 @@ public class GenerateGuiTask extends AbstractAuthServletTask {
   @Autowired
   IConfiguration basicConfig;
 
-  /*
-   * (non-Javadoc)
-   *
-   * @see at.gv.egovernment.moa.id.process.springweb.MoaIdTask#execute(at.gv.
-   * egovernment.moa.id.process.api.ExecutionContext,
-   * javax.servlet.http.HttpServletRequest,
-   * javax.servlet.http.HttpServletResponse)
-   */
   @Override
   public void execute(ExecutionContext executionContext, HttpServletRequest request, HttpServletResponse response)
       throws TaskExecutionException {
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateMobilePhoneSignatureRequestTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateMobilePhoneSignatureRequestTask.java
index c9974509..7c154705 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateMobilePhoneSignatureRequestTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateMobilePhoneSignatureRequestTask.java
@@ -1,5 +1,5 @@
 /*
- * Copyright 2018 A-SIT Plus GmbH
+ * Copyright 2021 A-SIT Plus GmbH
  * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
  * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
  *
@@ -35,23 +35,13 @@ import javax.servlet.http.HttpServletResponse;
 /**
  * Task that searches ErnB and ZMR before adding person to SZR.
  *
- * @author tlenz
+ * @author amarsalek
  */
 @Slf4j
 @Component("GenerateMobilePhoneSignatureRequestTask")
-// NOTE: General: Please rebase git commit and squash them where useful, i.e. "remove unused import" should
-//       not be a separate commit.
 public class GenerateMobilePhoneSignatureRequestTask extends AbstractAuthServletTask {
 
 
-  /*
-   * (non-Javadoc)
-   *
-   * @see at.gv.egovernment.moa.id.process.springweb.MoaIdTask#execute(at.gv.
-   * egovernment.moa.id.process.api.ExecutionContext,
-   * javax.servlet.http.HttpServletRequest,
-   * javax.servlet.http.HttpServletResponse)
-   */
   @Override
   public void execute(ExecutionContext executionContext, HttpServletRequest request, HttpServletResponse response)
       throws TaskExecutionException {
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveGuiResponseTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveGuiResponseTask.java
index b0cb857e..fc51ce2d 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveGuiResponseTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveGuiResponseTask.java
@@ -1,5 +1,5 @@
 /*
- * Copyright 2018 A-SIT Plus GmbH
+ * Copyright 2021 A-SIT Plus GmbH
  * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
  * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
  *
@@ -40,24 +40,14 @@ import java.util.Enumeration;
 /**
  * Task that searches ErnB and ZMR before adding person to SZR.
  *
- * @author tlenz
+ * @author amarsalek
  */
 @Slf4j
 @Component("ReceiveGuiResponseTask")
-// NOTE: General: Please rebase git commit and squash them where useful, i.e. "remove unused import" should
-//       not be a separate commit.
 public class ReceiveGuiResponseTask extends AbstractAuthServletTask {
 
-  final String LOGIN_METHOD = "loginSelection";
+  final String loginMethod = "loginSelection";
 
-  /*
-   * (non-Javadoc)
-   *
-   * @see at.gv.egovernment.moa.id.process.springweb.MoaIdTask#execute(at.gv.
-   * egovernment.moa.id.process.api.ExecutionContext,
-   * javax.servlet.http.HttpServletRequest,
-   * javax.servlet.http.HttpServletResponse)
-   */
   @Override
   public void execute(ExecutionContext executionContext, HttpServletRequest request, HttpServletResponse response)
       throws TaskExecutionException {
@@ -68,10 +58,10 @@ public class ReceiveGuiResponseTask extends AbstractAuthServletTask {
         final String paramName = reqParamNames.nextElement();
         if (StringUtils.isNotEmpty(paramName)
             && !EaafConstants.PROCESS_ENGINE_PENDINGREQUESTID.equalsIgnoreCase(paramName)) {
-          if (LOGIN_METHOD.equalsIgnoreCase(paramName)) {
+          if (loginMethod.equalsIgnoreCase(paramName)) {
             String value = StringEscapeUtils.escapeHtml(request.getParameter(paramName));
             SelectedLoginMethod selection = SelectedLoginMethod.valueOf(value);
-            executionContext.put(LOGIN_METHOD, selection);
+            executionContext.put(loginMethod, selection);
           }
         }
       }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseTask.java
index 28c351f2..95eeca4c 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseTask.java
@@ -1,5 +1,5 @@
 /*
- * Copyright 2018 A-SIT Plus GmbH
+ * Copyright 2021 A-SIT Plus GmbH
  * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
  * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
  *
@@ -35,23 +35,12 @@ import javax.servlet.http.HttpServletResponse;
 /**
  * Task that searches ErnB and ZMR before adding person to SZR.
  *
- * @author tlenz
+ * @author amarsalek
  */
 @Slf4j
 @Component("ReceiveMobilePhoneSignatureResponseTask")
-// NOTE: General: Please rebase git commit and squash them where useful, i.e. "remove unused import" should
-//       not be a separate commit.
 public class ReceiveMobilePhoneSignatureResponseTask extends AbstractAuthServletTask {
 
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see at.gv.egovernment.moa.id.process.springweb.MoaIdTask#execute(at.gv.
-   * egovernment.moa.id.process.api.ExecutionContext,
-   * javax.servlet.http.HttpServletRequest,
-   * javax.servlet.http.HttpServletResponse)
-   */
   @Override
   public void execute(ExecutionContext executionContext, HttpServletRequest request, HttpServletResponse response)
       throws TaskExecutionException {
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eIDAS.Authentication.process.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eIDAS.Authentication.process.xml
index e199d379..5134982a 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eIDAS.Authentication.process.xml
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eIDAS.Authentication.process.xml
@@ -13,6 +13,18 @@
   <pd:Task id="initialRegisterSearch"
            class="InitialSearchTask" />
 
+  <pd:Task id="CreateNewErnpEntryTask"
+           class="CreateNewErnpEntryTask" />
+  <pd:Task id="GenerateGuiTask"
+           class="GenerateGuiTask" />
+  <pd:Task id="GenerateMobilePhoneSignatureRequestTask"
+           class="GenerateMobilePhoneSignatureRequestTask" />
+  <pd:Task id="ReceiveGuiResponseTask"
+           class="ReceiveGuiResponseTask" />
+  <pd:Task id="ReceiveMobilePhoneSignatureResponseTask"
+           class="ReceiveMobilePhoneSignatureResponseTask" />
+
+
   <pd:StartEvent id="start" />
   
   <pd:Transition  from="start" 
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml
index ca6eba20..06269bfc 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml
@@ -105,4 +105,24 @@
         class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.InitialSearchTask"
         scope="prototype" />
 
+  <bean id="CreateNewErnpEntryTask"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.CreateNewErnpEntryTask"
+        scope="prototype" />
+
+  <bean id="GenerateGuiTask"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.GenerateGuiTask"
+        scope="prototype" />
+
+  <bean id="GenerateMobilePhoneSignatureRequestTask"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.GenerateMobilePhoneSignatureRequestTask"
+        scope="prototype" />
+
+  <bean id="ReceiveGuiResponseTask"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.ReceiveGuiResponseTask"
+        scope="prototype" />
+
+  <bean id="ReceiveMobilePhoneSignatureResponseTask"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.ReceiveMobilePhoneSignatureResponseTask"
+        scope="prototype" />
+
 </beans>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_tasks_test.xml b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_tasks_test.xml
index 10d480e0..7d7f2c59 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_tasks_test.xml
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_tasks_test.xml
@@ -78,4 +78,24 @@
   <bean id="IT-Specific-Search"
         class="at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.ItSpecificDetailSearchProcessor">
   </bean>
+
+  <bean id="CreateNewErnpEntryTask"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.CreateNewErnpEntryTask"
+        scope="prototype" />
+
+  <bean id="GenerateGuiTask"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.GenerateGuiTask"
+        scope="prototype" />
+
+  <bean id="GenerateMobilePhoneSignatureRequestTask"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.GenerateMobilePhoneSignatureRequestTask"
+        scope="prototype" />
+
+  <bean id="ReceiveGuiResponseTask"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.ReceiveGuiResponseTask"
+        scope="prototype" />
+
+  <bean id="ReceiveMobilePhoneSignatureResponseTask"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.ReceiveMobilePhoneSignatureResponseTask"
+        scope="prototype" />
 </beans>
\ No newline at end of file
-- 
cgit v1.2.3


From 50c82048f034803a3486368d2c5cb3ad09eb07b3 Mon Sep 17 00:00:00 2001
From: Christian Kollmann <christian.kollmann@a-sit.at>
Date: Tue, 12 Jan 2021 15:00:43 +0100
Subject: Improve readability of test cases by using modern syntax

---
 .../v2/test/tasks/InitialSearchTaskFirstTest.java  | 151 +++++++++------------
 1 file changed, 67 insertions(+), 84 deletions(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
index 12a0969d..35e2e56e 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
@@ -70,6 +70,8 @@ import java.util.ArrayList;
 import java.util.List;
 import java.util.Random;
 
+import static org.junit.Assert.assertThrows;
+
 @RunWith(SpringJUnit4ClassRunner.class)
 @ContextConfiguration("/SpringTest-context_tasks_test.xml")
 @DirtiesContext(classMode = ClassMode.BEFORE_CLASS)
@@ -82,17 +84,15 @@ public class InitialSearchTaskFirstTest {
   private IErnpClient ernpClient;
 
   final ExecutionContext executionContext = new ExecutionContextImpl();
-  private MockHttpServletRequest httpReq;
-  private MockHttpServletResponse httpResp;
   private TestRequestImpl pendingReq;
-  private String randomIdentifier = RandomStringUtils.randomNumeric(10);
-  private String randomFamilyName = RandomStringUtils.randomNumeric(11);
-  private String randomGivenName = RandomStringUtils.randomNumeric(12);
-  private String randomPlaceOfBirth = RandomStringUtils.randomNumeric(12);
-  private String randomBirthName = RandomStringUtils.randomNumeric(12);
-  private String randomDate = "2011-01-"+ (10 + new Random().nextInt(18));
-  private String DE_ST = "de/st/";
-  private String IT_ST = "it/st/";
+  private final String randomIdentifier = RandomStringUtils.randomNumeric(10);
+  private final String randomFamilyName = RandomStringUtils.randomNumeric(11);
+  private final String randomGivenName = RandomStringUtils.randomNumeric(12);
+  private final String randomPlaceOfBirth = RandomStringUtils.randomNumeric(12);
+  private final String randomBirthName = RandomStringUtils.randomNumeric(12);
+  private final String randomDate = "2011-01-"+ (10 + new Random().nextInt(18));
+  private final String DE_ST = "de/st/";
+  private final String IT_ST = "it/st/";
 
   /**
    * jUnit class initializer.
@@ -112,10 +112,10 @@ public class InitialSearchTaskFirstTest {
   @Before
   public void setUp() throws URISyntaxException, EaafStorageException {
     MockitoAnnotations.initMocks(this);
-    task = new InitialSearchTask(new ArrayList<CountrySpecificDetailSearchProcessor>(), ernpClient, zmrClient);
+    task = new InitialSearchTask(new ArrayList<>(), ernpClient, zmrClient);
 
-    httpReq = new MockHttpServletRequest("POST", "https://localhost/authhandler");
-    httpResp = new MockHttpServletResponse();
+    MockHttpServletRequest httpReq = new MockHttpServletRequest("POST", "https://localhost/authhandler");
+    MockHttpServletResponse httpResp = new MockHttpServletResponse();
     RequestContextHolder.resetRequestAttributes();
     RequestContextHolder.setRequestAttributes(new ServletRequestAttributes(httpReq, httpResp));
 
@@ -125,11 +125,11 @@ public class InitialSearchTaskFirstTest {
         .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
   }
 
-  @Test
-  @DirtiesContext
   /**
    * One match, but register update needed
    */
+  @Test
+  @DirtiesContext
   public void testNode100_UserIdentifiedUpdateNecessary_a() throws Exception {
     ArrayList<RegisterResult> zmrResult = new ArrayList<>();
     String randomBpk = RandomStringUtils.randomNumeric(6);
@@ -143,14 +143,14 @@ public class InitialSearchTaskFirstTest {
     task.execute(pendingReq, executionContext);
     String bPk = (String)
         pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
-    Assert.assertTrue("Wrong bpk", bPk.equals(randomBpk));
+    Assert.assertEquals("Wrong bpk", bPk, randomBpk);
   }
 
-  @Test
-  @DirtiesContext
   /**
    * One match, but register update needed
    */
+  @Test
+  @DirtiesContext
   public void testNode100_UserIdentifiedUpdateNecessary_b() throws TaskExecutionException {
     ArrayList<RegisterResult> zmrResult = new ArrayList<>();
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResult);
@@ -163,17 +163,16 @@ public class InitialSearchTaskFirstTest {
     task.execute(pendingReq, executionContext);
     String bPk = (String)
         pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
-    Assert.assertTrue("Wrong bpk", bPk.equals(randomBpk));
-
+    Assert.assertEquals("Wrong bpk", bPk, randomBpk);
   }
 
 
-  @Test
-  @DirtiesContext
   /**
    * Two matches found in ZMR
    */
-  public void testNode101_ManualFixNecessary_a() throws Exception {
+  @Test
+  @DirtiesContext
+  public void testNode101_ManualFixNecessary_a() {
     ArrayList<RegisterResult> zmrResult = new ArrayList<>();
     zmrResult.add(new RegisterResult("bpkMax", DE_ST+randomIdentifier, randomGivenName, randomFamilyName, randomDate));
     zmrResult.add(new RegisterResult("bpkMax", DE_ST+randomIdentifier, "Maximilian", randomFamilyName, randomDate));
@@ -182,22 +181,19 @@ public class InitialSearchTaskFirstTest {
     ArrayList<RegisterResult> ernpResult = new ArrayList<>();
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(ernpResult);
 
-    try {
-      task.execute(pendingReq, executionContext);
-      Assert.assertTrue("Wrong workflow, should not reach this point/ get a bpk", false);
-    } catch (final TaskExecutionException e) {
-      Throwable origE = e.getOriginalException();
-      Assert.assertTrue("Wrong exception", (origE.getCause() instanceof ManualFixNecessaryException));
-    }
+    TaskExecutionException exception = assertThrows(TaskExecutionException.class,
+            () -> task.execute(pendingReq, executionContext));
+    Throwable origE = exception.getOriginalException();
+    Assert.assertTrue("Wrong exception", (origE.getCause() instanceof ManualFixNecessaryException));
   }
 
 
-  @Test
-  @DirtiesContext
   /**
    * Two matches found in ErnP
    */
-  public void testNode101_ManualFixNecessary_b() throws Exception {
+  @Test
+  @DirtiesContext
+  public void testNode101_ManualFixNecessary_b() {
     String randombpk = RandomStringUtils.random(5);
     ArrayList<RegisterResult> zmrResult = new ArrayList<>();
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResult);
@@ -209,20 +205,17 @@ public class InitialSearchTaskFirstTest {
         randomDate));
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(ernpResult);
 
-    try {
-      task.execute(pendingReq, executionContext);
-      Assert.assertTrue("Wrong workflow, should not reach this point/ get a bpk", false);
-    } catch (final TaskExecutionException e) {
-      Throwable origE = e.getOriginalException();
-      Assert.assertTrue("Wrong exception", (origE.getCause() instanceof ManualFixNecessaryException));
-    }
+    TaskExecutionException exception = assertThrows(TaskExecutionException.class,
+            () -> task.execute(pendingReq, executionContext));
+    Throwable origE = exception.getOriginalException();
+    Assert.assertTrue("Wrong exception", (origE.getCause() instanceof ManualFixNecessaryException));
   }
 
-  @Test
-  @DirtiesContext
   /**
    * One match, no register update needed
    */
+  @Test
+  @DirtiesContext
   public void testNode102_UserIdentified_a() throws Exception {
     String randomBpk = RandomStringUtils.randomNumeric(12);
     ArrayList<RegisterResult> zmrResult = new ArrayList<>();
@@ -235,14 +228,14 @@ public class InitialSearchTaskFirstTest {
     task.execute(pendingReq, executionContext);
     String bPk = (String)
         pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
-    Assert.assertTrue("Wrong bpk", bPk.equals(randomBpk));
+    Assert.assertEquals("Wrong bpk", bPk, randomBpk);
   }
 
-  @Test
-  @DirtiesContext
   /**
    * One match, no register update needed
    */
+  @Test
+  @DirtiesContext
   public void testNode102_UserIdentified_b() throws Exception {
     String randomBpk = RandomStringUtils.randomNumeric(14);
 
@@ -256,14 +249,14 @@ public class InitialSearchTaskFirstTest {
     task.execute(pendingReq, executionContext);
     String bPk = (String)
         pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
-    Assert.assertTrue("Wrong bpk", bPk.equals(randomBpk));
+    Assert.assertEquals("Wrong bpk", bPk, randomBpk);
   }
 
-  @Test
-  @DirtiesContext
   /**
    * One match found in ZMR and ErnP with detail search
    */
+  @Test
+  @DirtiesContext
   public void testNode103_UserIdentified_IT() throws Exception {
     String bpkRegister = RandomStringUtils.randomNumeric(14);
     String taxNumber = RandomStringUtils.randomNumeric(14);
@@ -291,22 +284,18 @@ public class InitialSearchTaskFirstTest {
     handlers.add(it);
     task = new InitialSearchTask(handlers, ernpClient, zmrClient);
 
-    try {
-      task.execute(pendingReq1, executionContext);
+    task.execute(pendingReq1, executionContext);
 
-      String bPk = (String)
-          pendingReq1.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
-      Assert.assertTrue("Wrong bpk", bPk.equals(bpkRegister));
-    } catch (final TaskExecutionException e) {
-      Assert.assertTrue("Wrong workflow, should not reach this point", false);
-    }
+    String bPk = (String)
+        pendingReq1.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
+    Assert.assertEquals("Wrong bpk", bPk, bpkRegister);
   }
 
-  @Test
-  @DirtiesContext
   /**
    * Multiple matches found in ZMR and ErnP with detail search
    */
+  @Test
+  @DirtiesContext
   public void testNode103_UserIdentified_DE() throws Exception {
     String givenName = randomGivenName;
     String familyName = randomFamilyName;
@@ -339,22 +328,18 @@ public class InitialSearchTaskFirstTest {
     handlers.add(de);
     task = new InitialSearchTask(handlers, ernpClient, zmrClient);
 
-    try {
-      task.execute(pendingReq1, executionContext);
+    task.execute(pendingReq1, executionContext);
 
-      String bPk = (String)
-          pendingReq1.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
-      Assert.assertTrue("Wrong bpk", bPk.equals(bpk));
-    } catch (final TaskExecutionException e) {
-      Assert.assertTrue("Wrong workflow, should not reach this point", false);
-    }
+    String bPk = (String)
+        pendingReq1.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
+    Assert.assertEquals("Wrong bpk", bPk, bpk);
   }
 
-  @Test
-  @DirtiesContext
   /**
    * Multiple matches found in ZMR and ErnP with detail search
    */
+  @Test
+  @DirtiesContext
   public void testNode104_ManualFixNecessary_DE() throws Exception {
     String givenName = randomGivenName;
     String familyName = randomFamilyName;
@@ -393,20 +378,20 @@ public class InitialSearchTaskFirstTest {
 
     try {
       task.execute(pendingReq1, executionContext);
-      Assert.assertTrue("Wrong workflow, should not reach this point/ get a bpk", false);
+      Assert.fail("Wrong workflow, should not reach this point/ get a bpk");
     } catch (final TaskExecutionException e) {
       Throwable origE = e.getOriginalException();
       Assert.assertTrue("Wrong exception", (origE.getCause() instanceof ManualFixNecessaryException));
     }
   }
 
-  @Test
-  @DirtiesContext
   /**
    * Multiple matches found in ZMR and ErnP with detail search
    */
+  @Test
+  @DirtiesContext
   public void testNode104_ManualFixNecessary_IT() throws Exception {
-    String fakeTaxNumber = RandomStringUtils.randomNumeric(14);;
+    String fakeTaxNumber = RandomStringUtils.randomNumeric(14);
     final AuthenticationResponse response = buildDummyAuthResponseRandomPersonIT_Tax(fakeTaxNumber);
     TestRequestImpl pendingReq1 = new TestRequestImpl();
     pendingReq1.getSessionData(AuthProcessDataWrapper.class)
@@ -432,20 +417,18 @@ public class InitialSearchTaskFirstTest {
     handlers.add(it);
     task = new InitialSearchTask(handlers, ernpClient, zmrClient);
 
-    try {
-      task.execute(pendingReq1, executionContext);
-      Assert.assertTrue("Wrong workflow, should not reach this point/ get a bpk", false);
-    } catch (final TaskExecutionException e) {
-      Throwable origE = e.getOriginalException();
-      Assert.assertTrue("Wrong exception", (origE.getCause() instanceof ManualFixNecessaryException));
-    }
+
+    TaskExecutionException exception = assertThrows(TaskExecutionException.class,
+            () -> task.execute(pendingReq1, executionContext));
+    Throwable origE = exception.getOriginalException();
+    Assert.assertTrue("Wrong exception", (origE.getCause() instanceof ManualFixNecessaryException));
   }
 
-  @Test
-  @DirtiesContext
   /**
    * NO match found in ZMR and ErnP with Initial search
    */
+  @Test
+  @DirtiesContext
   public void testNode105_TemporaryEnd() throws TaskExecutionException {
     ArrayList<RegisterResult> zmrResult = new ArrayList<>();
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResult);
@@ -509,17 +492,17 @@ public class InitialSearchTaskFirstTest {
         "afaf").attributes(attributeMap).build();
   }
 
-  private AttributeDefinition generateStringAttribute(String friendlyName, String fragment, String prefix) throws URISyntaxException {
+  private AttributeDefinition<Object> generateStringAttribute(String friendlyName, String fragment, String prefix) throws URISyntaxException {
     return generateAttribute(friendlyName, fragment, prefix, "eu.eidas.auth.commons.attribute.impl" +
         ".LiteralStringAttributeValueMarshaller");
   }
 
-  private AttributeDefinition generateDateTimeAttribute(String friendlyName, String fragment, String prefix) throws URISyntaxException {
+  private AttributeDefinition<Object> generateDateTimeAttribute(String friendlyName, String fragment, String prefix) throws URISyntaxException {
     return generateAttribute(friendlyName, fragment, prefix, "eu.eidas.auth.commons.attribute.impl" +
         ".DateTimeAttributeValueMarshaller");
   }
 
-  private AttributeDefinition generateAttribute(String friendlyName, String fragment, String prefix,
+  private AttributeDefinition<Object> generateAttribute(String friendlyName, String fragment, String prefix,
                                                 String marshaller) throws URISyntaxException {
     return AttributeDefinition.builder()
         .friendlyName(friendlyName).nameUri(new URI("ad", "sd", fragment))
-- 
cgit v1.2.3


From fb99ff15185b4f3b10d4c72270787b04281494bf Mon Sep 17 00:00:00 2001
From: Christian Kollmann <christian.kollmann@a-sit.at>
Date: Tue, 12 Jan 2021 15:08:17 +0100
Subject: Use generic list types in parameters and return types

List instead of ArrayList allows for easier mocking and stubbing
---
 .../eidas/v2/dao/MergedRegisterSearchResult.java   |  8 ++--
 .../auth/eidas/v2/ernp/DummyErnpClient.java        | 26 +++++-----
 .../modules/auth/eidas/v2/ernp/IErnpClient.java    | 10 ++--
 .../handler/DeSpecificDetailSearchProcessor.java   | 13 ++---
 .../handler/ItSpecificDetailSearchProcessor.java   | 14 ++----
 .../auth/eidas/v2/tasks/InitialSearchTask.java     | 19 ++------
 .../modules/auth/eidas/v2/zmr/DummyZmrClient.java  | 26 +++++-----
 .../modules/auth/eidas/v2/zmr/IZmrClient.java      | 10 ++--
 .../v2/test/tasks/InitialSearchTaskFirstTest.java  | 55 +++++++---------------
 9 files changed, 70 insertions(+), 111 deletions(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/MergedRegisterSearchResult.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/MergedRegisterSearchResult.java
index 7703af2a..e147b8aa 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/MergedRegisterSearchResult.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/MergedRegisterSearchResult.java
@@ -26,15 +26,15 @@ package at.asitplus.eidas.specific.modules.auth.eidas.v2.dao;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.WorkflowException;
 import lombok.Data;
 
-import java.util.ArrayList;
+import java.util.List;
 
 @Data
 public class MergedRegisterSearchResult {
 
-  final ArrayList<RegisterResult> resultsZmr;
-  final ArrayList<RegisterResult> resultsErnp;
+  final List<RegisterResult> resultsZmr;
+  final List<RegisterResult> resultsErnp;
 
-  public MergedRegisterSearchResult(ArrayList<RegisterResult> resultsZmr, ArrayList<RegisterResult> resultsErnp) {
+  public MergedRegisterSearchResult(List<RegisterResult> resultsZmr, List<RegisterResult> resultsErnp) {
     this.resultsZmr = resultsZmr;
     this.resultsErnp = resultsErnp;
   }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernp/DummyErnpClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernp/DummyErnpClient.java
index 3b49ab95..e514c808 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernp/DummyErnpClient.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernp/DummyErnpClient.java
@@ -27,30 +27,34 @@ import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
 import org.springframework.stereotype.Service;
 
-import java.util.ArrayList;
+import java.util.Collections;
+import java.util.List;
 
 @Service("ErnbClientForeIDAS")
 public class DummyErnpClient implements IErnpClient {
 
   @Override
-  public ArrayList<RegisterResult> searchWithPersonIdentifier(String personIdentifier) {
-    return resultEmpty();
+  public List<RegisterResult> searchWithPersonIdentifier(String personIdentifier) {
+    return Collections.emptyList();
   }
 
   @Override
-  public ArrayList<RegisterResult> searchWithMds(String givenName, String familyName, String dateOfBirth) {
-    return resultEmpty();//TODO will I only receive matches where all three values match perfectly?
+  public List<RegisterResult> searchWithMds(String givenName, String familyName, String dateOfBirth) {
+    //TODO will I only receive matches where all three values match perfectly?
+    return Collections.emptyList();
   }
 
   @Override
-  public ArrayList<RegisterResult> searchDeSpecific(String givenName, String familyName, String dateOfBirth,
+  public List<RegisterResult> searchDeSpecific(String givenName, String familyName, String dateOfBirth,
                                                     String birthPlace, String birthName) {
-    return resultEmpty();//TODO
+    //TODO
+    return Collections.emptyList();
   }
 
   @Override
-  public ArrayList<RegisterResult> searchItSpecific(String taxNumber) {
-    return resultEmpty();//TODO
+  public List<RegisterResult> searchItSpecific(String taxNumber) {
+    //TODO
+    return Collections.emptyList();
   }
 
   @Override
@@ -58,9 +62,5 @@ public class DummyErnpClient implements IErnpClient {
     //TODO
   }
 
-  private ArrayList<RegisterResult> resultEmpty() {
-    return new ArrayList<RegisterResult>();//Nobody found
-  }
-
 
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernp/IErnpClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernp/IErnpClient.java
index 01ac88fb..b9641c5c 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernp/IErnpClient.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernp/IErnpClient.java
@@ -26,18 +26,18 @@ package at.asitplus.eidas.specific.modules.auth.eidas.v2.ernp;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
 
-import java.util.ArrayList;
+import java.util.List;
 
 public interface IErnpClient {
 
-  ArrayList<RegisterResult> searchWithPersonIdentifier(String personIdentifier);
+  List<RegisterResult> searchWithPersonIdentifier(String personIdentifier);
 
-  ArrayList<RegisterResult> searchWithMds(String givenName, String familyName, String dateOfBirth);
+  List<RegisterResult> searchWithMds(String givenName, String familyName, String dateOfBirth);
 
-  ArrayList<RegisterResult> searchDeSpecific(String givenName, String familyName, String dateOfBirth,
+  List<RegisterResult> searchDeSpecific(String givenName, String familyName, String dateOfBirth,
                                              String birthPlace, String birthName);
 
-  ArrayList<RegisterResult> searchItSpecific(String taxNumber);
+  List<RegisterResult> searchItSpecific(String taxNumber);
 
   void update(RegisterResult registerResult, SimpleEidasData eidData);
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/DeSpecificDetailSearchProcessor.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/DeSpecificDetailSearchProcessor.java
index a29725c8..544d5b0c 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/DeSpecificDetailSearchProcessor.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/DeSpecificDetailSearchProcessor.java
@@ -30,7 +30,7 @@ import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernp.IErnpClient;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.IZmrClient;
 
-import java.util.ArrayList;
+import java.util.List;
 
 public class DeSpecificDetailSearchProcessor extends CountrySpecificDetailSearchProcessor {
 
@@ -54,17 +54,12 @@ public class DeSpecificDetailSearchProcessor extends CountrySpecificDetailSearch
 
   @Override
   public MergedRegisterSearchResult search(SimpleEidasData eidData) {
-
-
-    ArrayList<RegisterResult> resultsZmr =
+    List<RegisterResult> resultsZmr =
         zmrClient.searchDeSpecific(eidData.getGivenName(), eidData.getFamilyName(), eidData.getDateOfBirth(),
             eidData.getPlaceOfBirth(), eidData.getBirthName());
-
-    ArrayList<RegisterResult> resultsErnb =
+    List<RegisterResult> resultsErnb =
         ernbClient.searchDeSpecific(eidData.getGivenName(), eidData.getFamilyName(), eidData.getDateOfBirth(),
             eidData.getPlaceOfBirth(), eidData.getBirthName());
-
-    MergedRegisterSearchResult searchResult = new MergedRegisterSearchResult(resultsZmr, resultsErnb);
-    return searchResult;
+    return new MergedRegisterSearchResult(resultsZmr, resultsErnb);
   }
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ItSpecificDetailSearchProcessor.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ItSpecificDetailSearchProcessor.java
index e730066d..370a111c 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ItSpecificDetailSearchProcessor.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ItSpecificDetailSearchProcessor.java
@@ -30,7 +30,7 @@ import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernp.IErnpClient;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.IZmrClient;
 
-import java.util.ArrayList;
+import java.util.List;
 
 public class ItSpecificDetailSearchProcessor extends CountrySpecificDetailSearchProcessor {
 
@@ -51,14 +51,8 @@ public class ItSpecificDetailSearchProcessor extends CountrySpecificDetailSearch
 
   @Override
   public MergedRegisterSearchResult search(SimpleEidasData eidData) {
-
-    ArrayList<RegisterResult> resultsZmr =
-        zmrClient.searchItSpecific(eidData.getTaxNumber());
-
-    ArrayList<RegisterResult> resultsErnb =
-        ernbClient.searchItSpecific(eidData.getTaxNumber());
-
-    MergedRegisterSearchResult searchResult = new MergedRegisterSearchResult(resultsZmr, resultsErnb);
-    return searchResult;
+    List<RegisterResult> resultsZmr = zmrClient.searchItSpecific(eidData.getTaxNumber());
+    List<RegisterResult> resultsErnb = ernbClient.searchItSpecific(eidData.getTaxNumber());
+    return new MergedRegisterSearchResult(resultsZmr, resultsErnb);
   }
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
index ba05ef0d..fd9e93e0 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
@@ -52,7 +52,6 @@ import org.springframework.stereotype.Component;
 
 import javax.servlet.http.HttpServletRequest;
 import javax.servlet.http.HttpServletResponse;
-import java.util.ArrayList;
 import java.util.HashMap;
 import java.util.List;
 import java.util.Map;
@@ -205,12 +204,10 @@ public class InitialSearchTask extends AbstractAuthServletTask {
   private String step8RegisterSearchWithMds(MergedRegisterSearchResult initialSearchResult,
                                             SimpleEidasData eidData) {
     log.trace("Starting step8RegisterSearchWithMds");
-    ArrayList<RegisterResult> resultsZmr =
+    List<RegisterResult> resultsZmr =
         zmrClient.searchWithMds(eidData.getGivenName(), eidData.getFamilyName(), eidData.getDateOfBirth());
-
-    ArrayList<RegisterResult> resultsErnp =
+    List<RegisterResult> resultsErnp =
         ernpClient.searchWithMds(eidData.getGivenName(), eidData.getFamilyName(), eidData.getDateOfBirth());
-
     MergedRegisterSearchResult mdsSearchResult = new MergedRegisterSearchResult(resultsZmr, resultsErnp);
     log.debug("Automerge " + initialSearchResult + " with " + eidData + " " + mdsSearchResult);
     //TODO implement next phase and return correct value
@@ -218,15 +215,9 @@ public class InitialSearchTask extends AbstractAuthServletTask {
   }
 
   private MergedRegisterSearchResult searchInZmrAndErnp(String personIdentifier) {
-
-    ArrayList<RegisterResult> resultsZmr =
-        zmrClient.searchWithPersonIdentifier(personIdentifier);
-
-    ArrayList<RegisterResult> resultsErnp =
-        ernpClient.searchWithPersonIdentifier(personIdentifier);
-
-    MergedRegisterSearchResult initialSearchResult = new MergedRegisterSearchResult(resultsZmr, resultsErnp);
-    return initialSearchResult;
+    List<RegisterResult> resultsZmr = zmrClient.searchWithPersonIdentifier(personIdentifier);
+    List<RegisterResult> resultsErnp = ernpClient.searchWithPersonIdentifier(personIdentifier);
+    return new MergedRegisterSearchResult(resultsZmr, resultsErnp);
   }
 
   private SimpleEidasData convertSimpleMapToSimpleData(Map<String, Object> eidasAttrMap)
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/DummyZmrClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/DummyZmrClient.java
index 60dd2ef2..b12c1bcb 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/DummyZmrClient.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/DummyZmrClient.java
@@ -27,30 +27,34 @@ import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
 import org.springframework.stereotype.Service;
 
-import java.util.ArrayList;
+import java.util.Collections;
+import java.util.List;
 
 @Service("ZmrClientForeIDAS")
 public class DummyZmrClient implements IZmrClient {
 
   @Override
-  public ArrayList<RegisterResult> searchWithPersonIdentifier(String personIdentifier) {
-    return resultEmpty();
+  public List<RegisterResult> searchWithPersonIdentifier(String personIdentifier) {
+    return Collections.emptyList();
   }
 
   @Override
-  public ArrayList<RegisterResult> searchWithMds(String givenName, String familyName, String dateOfBirth) {
-    return resultEmpty();//TODO will I only receive matches where all three values match perfectly?
+  public List<RegisterResult> searchWithMds(String givenName, String familyName, String dateOfBirth) {
+    //TODO will I only receive matches where all three values match perfectly?
+    return Collections.emptyList();
   }
 
   @Override
-  public ArrayList<RegisterResult> searchDeSpecific(String givenName, String familyName, String dateOfBirth,
+  public List<RegisterResult> searchDeSpecific(String givenName, String familyName, String dateOfBirth,
                                                     String birthPlace, String birthName) {
-    return resultEmpty();//TODO
+    //TODO
+    return Collections.emptyList();
   }
 
   @Override
-  public ArrayList<RegisterResult> searchItSpecific(String taxNumber) {
-    return resultEmpty();//TODO
+  public List<RegisterResult> searchItSpecific(String taxNumber) {
+    //TODO
+    return Collections.emptyList();
   }
 
   @Override
@@ -58,8 +62,4 @@ public class DummyZmrClient implements IZmrClient {
     //TODO
   }
 
-  private ArrayList<RegisterResult> resultEmpty() {
-    return new ArrayList<RegisterResult>();//Nobody found
-  }
-
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/IZmrClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/IZmrClient.java
index 3a518e64..5175cd7b 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/IZmrClient.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/IZmrClient.java
@@ -26,18 +26,18 @@ package at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
 
-import java.util.ArrayList;
+import java.util.List;
 
 public interface IZmrClient {
 
-  ArrayList<RegisterResult> searchWithPersonIdentifier(String personIdentifier);
+  List<RegisterResult> searchWithPersonIdentifier(String personIdentifier);
 
-  ArrayList<RegisterResult> searchWithMds(String givenName, String familyName, String dateOfBirth);
+  List<RegisterResult> searchWithMds(String givenName, String familyName, String dateOfBirth);
 
-  ArrayList<RegisterResult> searchDeSpecific(String givenName, String familyName, String dateOfBirth,
+  List<RegisterResult> searchDeSpecific(String givenName, String familyName, String dateOfBirth,
                                              String birthPlace, String birthName);
 
-  ArrayList<RegisterResult> searchItSpecific(String taxNumber);
+  List<RegisterResult> searchItSpecific(String taxNumber);
 
   void update(RegisterResult registerResult, SimpleEidasData eidData);
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
index 35e2e56e..1f512354 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
@@ -67,6 +67,7 @@ import java.io.IOException;
 import java.net.URI;
 import java.net.URISyntaxException;
 import java.util.ArrayList;
+import java.util.Collections;
 import java.util.List;
 import java.util.Random;
 
@@ -136,9 +137,7 @@ public class InitialSearchTaskFirstTest {
     String newFirstName = RandomStringUtils.randomAlphabetic(5);
     zmrResult.add(new RegisterResult(randomBpk, DE_ST+randomIdentifier, newFirstName, randomFamilyName, randomDate));
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResult);
-
-    ArrayList<RegisterResult> ernpResult = new ArrayList<>();
-    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(ernpResult);
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
 
     task.execute(pendingReq, executionContext);
     String bPk = (String)
@@ -152,9 +151,7 @@ public class InitialSearchTaskFirstTest {
   @Test
   @DirtiesContext
   public void testNode100_UserIdentifiedUpdateNecessary_b() throws TaskExecutionException {
-    ArrayList<RegisterResult> zmrResult = new ArrayList<>();
-    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResult);
-
+    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
     ArrayList<RegisterResult> ernpResult = new ArrayList<>();
     String randomBpk = RandomStringUtils.randomNumeric(6);
     ernpResult.add(new RegisterResult(randomBpk, DE_ST+randomIdentifier, "Max_new", randomFamilyName, randomDate));
@@ -177,9 +174,7 @@ public class InitialSearchTaskFirstTest {
     zmrResult.add(new RegisterResult("bpkMax", DE_ST+randomIdentifier, randomGivenName, randomFamilyName, randomDate));
     zmrResult.add(new RegisterResult("bpkMax", DE_ST+randomIdentifier, "Maximilian", randomFamilyName, randomDate));
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResult);
-
-    ArrayList<RegisterResult> ernpResult = new ArrayList<>();
-    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(ernpResult);
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
 
     TaskExecutionException exception = assertThrows(TaskExecutionException.class,
             () -> task.execute(pendingReq, executionContext));
@@ -195,9 +190,7 @@ public class InitialSearchTaskFirstTest {
   @DirtiesContext
   public void testNode101_ManualFixNecessary_b() {
     String randombpk = RandomStringUtils.random(5);
-    ArrayList<RegisterResult> zmrResult = new ArrayList<>();
-    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResult);
-
+    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
     ArrayList<RegisterResult> ernpResult = new ArrayList<>();
     ernpResult.add(new RegisterResult(randombpk, DE_ST+randomIdentifier, randomGivenName, randomFamilyName, randomDate));
     ernpResult.add(new RegisterResult(randombpk, DE_ST+randomIdentifier, randomGivenName+RandomStringUtils.random(2),
@@ -218,8 +211,7 @@ public class InitialSearchTaskFirstTest {
   @DirtiesContext
   public void testNode102_UserIdentified_a() throws Exception {
     String randomBpk = RandomStringUtils.randomNumeric(12);
-    ArrayList<RegisterResult> zmrResult = new ArrayList<>();
-    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResult);
+    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
 
     ArrayList<RegisterResult> ernpResult = new ArrayList<>();
     ernpResult.add(new RegisterResult(randomBpk, DE_ST+randomIdentifier, randomGivenName, randomFamilyName, randomDate));
@@ -242,9 +234,7 @@ public class InitialSearchTaskFirstTest {
     ArrayList<RegisterResult> zmrResult = new ArrayList<>();
     zmrResult.add(new RegisterResult(randomBpk, DE_ST+randomIdentifier, randomGivenName, randomFamilyName, randomDate));
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResult);
-
-    ArrayList<RegisterResult> ernpResult = new ArrayList<>();
-    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(ernpResult);
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
 
     task.execute(pendingReq, executionContext);
     String bPk = (String)
@@ -265,8 +255,7 @@ public class InitialSearchTaskFirstTest {
     pendingReq1.getSessionData(AuthProcessDataWrapper.class)
         .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
 
-    ArrayList<RegisterResult> zmrResultInitial = new ArrayList<>();
-    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResultInitial);
+    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
     ArrayList<RegisterResult> zmrResultSpecific = new ArrayList<>();
 
     zmrResultSpecific.add(new RegisterResult(bpkRegister, IT_ST+randomIdentifier+RandomStringUtils.random(2),
@@ -276,8 +265,7 @@ public class InitialSearchTaskFirstTest {
 
     Mockito.when(zmrClient.searchItSpecific(taxNumber)).thenReturn(zmrResultSpecific);
 
-    ArrayList<RegisterResult> ernpResultInitial = new ArrayList<>();
-    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(ernpResultInitial);
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
 
     List<CountrySpecificDetailSearchProcessor> handlers = new ArrayList<>();
     ItSpecificDetailSearchProcessor it = new ItSpecificDetailSearchProcessor(ernpClient, zmrClient);
@@ -310,8 +298,7 @@ public class InitialSearchTaskFirstTest {
     pendingReq1.getSessionData(AuthProcessDataWrapper.class)
         .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
 
-    ArrayList<RegisterResult> zmrResultInitial = new ArrayList<>();
-    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResultInitial);
+    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
     ArrayList<RegisterResult> zmrResultSpecific = new ArrayList<>();
 
     zmrResultSpecific.add(new RegisterResult(bpk, pseudonym, givenName, familyName, dateOfBirth, placeOfBirth,
@@ -320,8 +307,7 @@ public class InitialSearchTaskFirstTest {
 
     Mockito.when(zmrClient.searchDeSpecific(givenName, familyName, dateOfBirth, placeOfBirth, birthName)).thenReturn(zmrResultSpecific);
 
-    ArrayList<RegisterResult> ernpResultInitial = new ArrayList<>();
-    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(ernpResultInitial);
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
 
     List<CountrySpecificDetailSearchProcessor> handlers = new ArrayList<>();
     DeSpecificDetailSearchProcessor de = new DeSpecificDetailSearchProcessor(ernpClient, zmrClient);
@@ -356,8 +342,7 @@ public class InitialSearchTaskFirstTest {
     pendingReq1.getSessionData(AuthProcessDataWrapper.class)
         .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
 
-    ArrayList<RegisterResult> zmrResultInitial = new ArrayList<>();
-    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResultInitial);
+    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
     ArrayList<RegisterResult> zmrResultSpecific = new ArrayList<>();
 
     zmrResultSpecific.add(new RegisterResult(bpk1, pseudonym1, givenName, familyName, dateOfBirth, placeOfBirth,
@@ -368,8 +353,7 @@ public class InitialSearchTaskFirstTest {
         null, null));
     Mockito.when(zmrClient.searchDeSpecific(givenName, familyName, dateOfBirth, placeOfBirth, birthName)).thenReturn(zmrResultSpecific);
 
-    ArrayList<RegisterResult> ernpResultInitial = new ArrayList<>();
-    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(ernpResultInitial);
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
 
     List<CountrySpecificDetailSearchProcessor> handlers = new ArrayList<>();
     DeSpecificDetailSearchProcessor de = new DeSpecificDetailSearchProcessor(ernpClient, zmrClient);
@@ -397,8 +381,7 @@ public class InitialSearchTaskFirstTest {
     pendingReq1.getSessionData(AuthProcessDataWrapper.class)
         .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
 
-    ArrayList<RegisterResult> zmrResultInitial = new ArrayList<>();
-    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResultInitial);
+    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
     ArrayList<RegisterResult> zmrResultSpecific = new ArrayList<>();
 
     zmrResultSpecific.add(new RegisterResult("bpkMax", IT_ST+randomIdentifier+"4", randomGivenName, randomFamilyName,
@@ -409,8 +392,7 @@ public class InitialSearchTaskFirstTest {
         fakeTaxNumber, null));
     Mockito.when(zmrClient.searchItSpecific(fakeTaxNumber)).thenReturn(zmrResultSpecific);
 
-    ArrayList<RegisterResult> ernpResultInitial = new ArrayList<>();
-    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(ernpResultInitial);
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
 
     List<CountrySpecificDetailSearchProcessor> handlers = new ArrayList<>();
     ItSpecificDetailSearchProcessor it = new ItSpecificDetailSearchProcessor(ernpClient, zmrClient);
@@ -430,11 +412,8 @@ public class InitialSearchTaskFirstTest {
   @Test
   @DirtiesContext
   public void testNode105_TemporaryEnd() throws TaskExecutionException {
-    ArrayList<RegisterResult> zmrResult = new ArrayList<>();
-    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResult);
-
-    ArrayList<RegisterResult> ernpResult = new ArrayList<>();
-    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(ernpResult);
+    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
 
     task.execute(pendingReq, executionContext);
     String bPk = (String)
-- 
cgit v1.2.3


From 130df15476c455adb1a232fc555917ff69f0f09b Mon Sep 17 00:00:00 2001
From: Christian Kollmann <christian.kollmann@a-sit.at>
Date: Tue, 12 Jan 2021 15:13:47 +0100
Subject: Use random values in tests

---
 .../v2/test/tasks/InitialSearchTaskFirstTest.java  | 111 +++++++++------------
 1 file changed, 47 insertions(+), 64 deletions(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
index 1f512354..c18dabb9 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
@@ -87,10 +87,10 @@ public class InitialSearchTaskFirstTest {
   final ExecutionContext executionContext = new ExecutionContextImpl();
   private TestRequestImpl pendingReq;
   private final String randomIdentifier = RandomStringUtils.randomNumeric(10);
-  private final String randomFamilyName = RandomStringUtils.randomNumeric(11);
-  private final String randomGivenName = RandomStringUtils.randomNumeric(12);
-  private final String randomPlaceOfBirth = RandomStringUtils.randomNumeric(12);
-  private final String randomBirthName = RandomStringUtils.randomNumeric(12);
+  private final String randomFamilyName = RandomStringUtils.randomAlphabetic(10);
+  private final String randomGivenName = RandomStringUtils.randomAlphabetic(10);
+  private final String randomPlaceOfBirth = RandomStringUtils.randomAlphabetic(10);
+  private final String randomBirthName = RandomStringUtils.randomAlphabetic(10);
   private final String randomDate = "2011-01-"+ (10 + new Random().nextInt(18));
   private final String DE_ST = "de/st/";
   private final String IT_ST = "it/st/";
@@ -154,7 +154,8 @@ public class InitialSearchTaskFirstTest {
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
     ArrayList<RegisterResult> ernpResult = new ArrayList<>();
     String randomBpk = RandomStringUtils.randomNumeric(6);
-    ernpResult.add(new RegisterResult(randomBpk, DE_ST+randomIdentifier, "Max_new", randomFamilyName, randomDate));
+    String newRandomGivenName = RandomStringUtils.randomAlphabetic(10);
+    ernpResult.add(new RegisterResult(randomBpk, DE_ST+randomIdentifier, newRandomGivenName, randomFamilyName, randomDate));
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(ernpResult);
 
     task.execute(pendingReq, executionContext);
@@ -172,7 +173,8 @@ public class InitialSearchTaskFirstTest {
   public void testNode101_ManualFixNecessary_a() {
     ArrayList<RegisterResult> zmrResult = new ArrayList<>();
     zmrResult.add(new RegisterResult("bpkMax", DE_ST+randomIdentifier, randomGivenName, randomFamilyName, randomDate));
-    zmrResult.add(new RegisterResult("bpkMax", DE_ST+randomIdentifier, "Maximilian", randomFamilyName, randomDate));
+    String newRandomGivenName = randomGivenName + RandomStringUtils.randomAlphabetic(2);
+    zmrResult.add(new RegisterResult("bpkMax", DE_ST+randomIdentifier, newRandomGivenName, randomFamilyName, randomDate));
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResult);
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
 
@@ -189,13 +191,12 @@ public class InitialSearchTaskFirstTest {
   @Test
   @DirtiesContext
   public void testNode101_ManualFixNecessary_b() {
-    String randombpk = RandomStringUtils.random(5);
+    String randombpk = RandomStringUtils.randomNumeric(5);
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
     ArrayList<RegisterResult> ernpResult = new ArrayList<>();
     ernpResult.add(new RegisterResult(randombpk, DE_ST+randomIdentifier, randomGivenName, randomFamilyName, randomDate));
-    ernpResult.add(new RegisterResult(randombpk, DE_ST+randomIdentifier, randomGivenName+RandomStringUtils.random(2),
-        randomFamilyName,
-        randomDate));
+    String newRandomGivenName = randomGivenName + RandomStringUtils.randomAlphabetic(2);
+    ernpResult.add(new RegisterResult(randombpk, DE_ST+randomIdentifier, newRandomGivenName, randomFamilyName, randomDate));
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(ernpResult);
 
     TaskExecutionException exception = assertThrows(TaskExecutionException.class,
@@ -258,10 +259,9 @@ public class InitialSearchTaskFirstTest {
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
     ArrayList<RegisterResult> zmrResultSpecific = new ArrayList<>();
 
-    zmrResultSpecific.add(new RegisterResult(bpkRegister, IT_ST+randomIdentifier+RandomStringUtils.random(2),
-        randomGivenName,
-        randomFamilyName,
-        randomDate, null, null, taxNumber, null));
+    String newRandomPseudonym = IT_ST + randomIdentifier + RandomStringUtils.randomNumeric(2);
+    zmrResultSpecific.add(new RegisterResult(bpkRegister, newRandomPseudonym, randomGivenName, randomFamilyName,
+            randomDate, null, null, taxNumber, null));
 
     Mockito.when(zmrClient.searchItSpecific(taxNumber)).thenReturn(zmrResultSpecific);
 
@@ -285,15 +285,10 @@ public class InitialSearchTaskFirstTest {
   @Test
   @DirtiesContext
   public void testNode103_UserIdentified_DE() throws Exception {
-    String givenName = randomGivenName;
-    String familyName = randomFamilyName;
-    String pseudonym = DE_ST + RandomStringUtils.random(5);
-    String bpk = RandomStringUtils.random(5);
-    String dateOfBirth = randomDate;
-    String placeOfBirth = randomPlaceOfBirth;
-    String birthName = randomBirthName;
-    final AuthenticationResponse response = buildDummyAuthResponseDE(givenName, familyName, pseudonym,
-        dateOfBirth, placeOfBirth, birthName);
+    String randomPseudonym = DE_ST + RandomStringUtils.randomNumeric(5);
+    String randomBpk = RandomStringUtils.randomNumeric(5);
+    final AuthenticationResponse response = buildDummyAuthResponseDE(randomGivenName, randomFamilyName, randomPseudonym,
+            randomDate, randomPlaceOfBirth, randomBirthName);
     TestRequestImpl pendingReq1 = new TestRequestImpl();
     pendingReq1.getSessionData(AuthProcessDataWrapper.class)
         .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
@@ -301,11 +296,11 @@ public class InitialSearchTaskFirstTest {
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
     ArrayList<RegisterResult> zmrResultSpecific = new ArrayList<>();
 
-    zmrResultSpecific.add(new RegisterResult(bpk, pseudonym, givenName, familyName, dateOfBirth, placeOfBirth,
-        birthName,
-        null, null));
+    zmrResultSpecific.add(new RegisterResult(randomBpk, randomPseudonym, randomGivenName, randomFamilyName, randomDate,
+            randomPlaceOfBirth, randomBirthName,null, null));
 
-    Mockito.when(zmrClient.searchDeSpecific(givenName, familyName, dateOfBirth, placeOfBirth, birthName)).thenReturn(zmrResultSpecific);
+    Mockito.when(zmrClient.searchDeSpecific(randomGivenName, randomFamilyName, randomDate, randomPlaceOfBirth,
+            randomBirthName)).thenReturn(zmrResultSpecific);
 
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
 
@@ -316,9 +311,9 @@ public class InitialSearchTaskFirstTest {
 
     task.execute(pendingReq1, executionContext);
 
-    String bPk = (String)
+    String resultBpk = (String)
         pendingReq1.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
-    Assert.assertEquals("Wrong bpk", bPk, bpk);
+    Assert.assertEquals("Wrong bpk", resultBpk, randomBpk);
   }
 
   /**
@@ -327,17 +322,12 @@ public class InitialSearchTaskFirstTest {
   @Test
   @DirtiesContext
   public void testNode104_ManualFixNecessary_DE() throws Exception {
-    String givenName = randomGivenName;
-    String familyName = randomFamilyName;
-    String pseudonym1 = DE_ST + RandomStringUtils.random(5);
-    String pseudonym2 = pseudonym1 + RandomStringUtils.random(2);
-    String bpk1 = RandomStringUtils.random(5);
-    String bpk2 = bpk1 + RandomStringUtils.random(2);
-    String dateOfBirth = randomDate;
-    String placeOfBirth = randomPlaceOfBirth;
-    String birthName = randomBirthName;
-    final AuthenticationResponse response = buildDummyAuthResponseDE(givenName, familyName, pseudonym1,
-        dateOfBirth, placeOfBirth, birthName);
+    String pseudonym1 = DE_ST + RandomStringUtils.randomNumeric(5);
+    String pseudonym2 = pseudonym1 + RandomStringUtils.randomNumeric(2);
+    String bpk1 = RandomStringUtils.randomNumeric(5);
+    String bpk2 = bpk1 + RandomStringUtils.randomNumeric(2);
+    final AuthenticationResponse response = buildDummyAuthResponseDE(randomGivenName, randomFamilyName, pseudonym1,
+            randomDate, randomPlaceOfBirth, randomBirthName);
     TestRequestImpl pendingReq1 = new TestRequestImpl();
     pendingReq1.getSessionData(AuthProcessDataWrapper.class)
         .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
@@ -345,13 +335,12 @@ public class InitialSearchTaskFirstTest {
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
     ArrayList<RegisterResult> zmrResultSpecific = new ArrayList<>();
 
-    zmrResultSpecific.add(new RegisterResult(bpk1, pseudonym1, givenName, familyName, dateOfBirth, placeOfBirth,
-        birthName,
-        null, null));
-    zmrResultSpecific.add(new RegisterResult(bpk2, pseudonym2, givenName, familyName, dateOfBirth, placeOfBirth,
-        birthName,
-        null, null));
-    Mockito.when(zmrClient.searchDeSpecific(givenName, familyName, dateOfBirth, placeOfBirth, birthName)).thenReturn(zmrResultSpecific);
+    zmrResultSpecific.add(new RegisterResult(bpk1, pseudonym1, randomGivenName, randomFamilyName, randomDate,
+            randomPlaceOfBirth, randomBirthName,null, null));
+    zmrResultSpecific.add(new RegisterResult(bpk2, pseudonym2, randomGivenName, randomFamilyName, randomDate,
+            randomPlaceOfBirth, randomBirthName,null, null));
+    Mockito.when(zmrClient.searchDeSpecific(randomGivenName, randomFamilyName, randomDate, randomPlaceOfBirth,
+            randomBirthName)).thenReturn(zmrResultSpecific);
 
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
 
@@ -360,13 +349,10 @@ public class InitialSearchTaskFirstTest {
     handlers.add(de);
     task = new InitialSearchTask(handlers, ernpClient, zmrClient);
 
-    try {
-      task.execute(pendingReq1, executionContext);
-      Assert.fail("Wrong workflow, should not reach this point/ get a bpk");
-    } catch (final TaskExecutionException e) {
-      Throwable origE = e.getOriginalException();
-      Assert.assertTrue("Wrong exception", (origE.getCause() instanceof ManualFixNecessaryException));
-    }
+    TaskExecutionException exception = assertThrows(TaskExecutionException.class,
+            () -> task.execute(pendingReq1, executionContext));
+    Throwable origE = exception.getOriginalException();
+    Assert.assertTrue("Wrong exception", (origE.getCause() instanceof ManualFixNecessaryException));
   }
 
   /**
@@ -384,12 +370,10 @@ public class InitialSearchTaskFirstTest {
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
     ArrayList<RegisterResult> zmrResultSpecific = new ArrayList<>();
 
-    zmrResultSpecific.add(new RegisterResult("bpkMax", IT_ST+randomIdentifier+"4", randomGivenName, randomFamilyName,
-        randomDate, null, null,
-        fakeTaxNumber, null));
-    zmrResultSpecific.add(new RegisterResult("bpkMax1", IT_ST+randomIdentifier+"5", randomGivenName, randomFamilyName,
-        randomDate, null, null,
-        fakeTaxNumber, null));
+    zmrResultSpecific.add(new RegisterResult("bpkMax", IT_ST+randomIdentifier+"4", randomGivenName,
+            randomFamilyName, randomDate, null, null, fakeTaxNumber, null));
+    zmrResultSpecific.add(new RegisterResult("bpkMax1", IT_ST+randomIdentifier+"5", randomGivenName,
+            randomFamilyName, randomDate, null, null, fakeTaxNumber, null));
     Mockito.when(zmrClient.searchItSpecific(fakeTaxNumber)).thenReturn(zmrResultSpecific);
 
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
@@ -424,13 +408,12 @@ public class InitialSearchTaskFirstTest {
 
   @NotNull
   private AuthenticationResponse buildDummyAuthResponseRandomPerson() throws URISyntaxException {
-    return buildDummyAuthResponse(randomGivenName, randomFamilyName,
-        DE_ST+randomIdentifier, randomDate);
+    return buildDummyAuthResponse(randomGivenName, randomFamilyName, DE_ST+randomIdentifier, randomDate);
   }
 
   private AuthenticationResponse buildDummyAuthResponseRandomPersonIT_Tax(String taxNumber) throws URISyntaxException {
-    return buildDummyAuthResponse(randomGivenName, randomFamilyName,
-        IT_ST+randomIdentifier, randomDate, taxNumber, null, null);
+    return buildDummyAuthResponse(randomGivenName, randomFamilyName, IT_ST+randomIdentifier, randomDate,
+            taxNumber, null, null);
   }
 
   @NotNull
-- 
cgit v1.2.3


From ccad318ae01794b246f5ca02c954fe94a92be515 Mon Sep 17 00:00:00 2001
From: Christian Kollmann <christian.kollmann@a-sit.at>
Date: Tue, 12 Jan 2021 15:25:51 +0100
Subject: Use clear Arrange-Act-Assert structure in tests

---
 .../v2/test/tasks/InitialSearchTaskFirstTest.java  | 88 ++++++++--------------
 1 file changed, 31 insertions(+), 57 deletions(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
index c18dabb9..99764aad 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
@@ -135,13 +135,15 @@ public class InitialSearchTaskFirstTest {
     ArrayList<RegisterResult> zmrResult = new ArrayList<>();
     String randomBpk = RandomStringUtils.randomNumeric(6);
     String newFirstName = RandomStringUtils.randomAlphabetic(5);
-    zmrResult.add(new RegisterResult(randomBpk, DE_ST+randomIdentifier, newFirstName, randomFamilyName, randomDate));
-    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResult);
+    String randomPseudonym = DE_ST + randomIdentifier;
+    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.singletonList(
+            new RegisterResult(randomBpk, randomPseudonym, newFirstName, randomFamilyName, randomDate)));
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
 
     task.execute(pendingReq, executionContext);
     String bPk = (String)
         pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
+
     Assert.assertEquals("Wrong bpk", bPk, randomBpk);
   }
 
@@ -152,19 +154,18 @@ public class InitialSearchTaskFirstTest {
   @DirtiesContext
   public void testNode100_UserIdentifiedUpdateNecessary_b() throws TaskExecutionException {
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
-    ArrayList<RegisterResult> ernpResult = new ArrayList<>();
     String randomBpk = RandomStringUtils.randomNumeric(6);
     String newRandomGivenName = RandomStringUtils.randomAlphabetic(10);
-    ernpResult.add(new RegisterResult(randomBpk, DE_ST+randomIdentifier, newRandomGivenName, randomFamilyName, randomDate));
-    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(ernpResult);
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.singletonList(
+            new RegisterResult(randomBpk, DE_ST+randomIdentifier, newRandomGivenName, randomFamilyName, randomDate)));
 
     task.execute(pendingReq, executionContext);
     String bPk = (String)
         pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
+
     Assert.assertEquals("Wrong bpk", bPk, randomBpk);
   }
 
-
   /**
    * Two matches found in ZMR
    */
@@ -180,6 +181,7 @@ public class InitialSearchTaskFirstTest {
 
     TaskExecutionException exception = assertThrows(TaskExecutionException.class,
             () -> task.execute(pendingReq, executionContext));
+
     Throwable origE = exception.getOriginalException();
     Assert.assertTrue("Wrong exception", (origE.getCause() instanceof ManualFixNecessaryException));
   }
@@ -201,6 +203,7 @@ public class InitialSearchTaskFirstTest {
 
     TaskExecutionException exception = assertThrows(TaskExecutionException.class,
             () -> task.execute(pendingReq, executionContext));
+
     Throwable origE = exception.getOriginalException();
     Assert.assertTrue("Wrong exception", (origE.getCause() instanceof ManualFixNecessaryException));
   }
@@ -213,10 +216,8 @@ public class InitialSearchTaskFirstTest {
   public void testNode102_UserIdentified_a() throws Exception {
     String randomBpk = RandomStringUtils.randomNumeric(12);
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
-
-    ArrayList<RegisterResult> ernpResult = new ArrayList<>();
-    ernpResult.add(new RegisterResult(randomBpk, DE_ST+randomIdentifier, randomGivenName, randomFamilyName, randomDate));
-    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(ernpResult);
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.singletonList(
+            new RegisterResult(randomBpk, DE_ST+randomIdentifier, randomGivenName, randomFamilyName, randomDate)));
 
     task.execute(pendingReq, executionContext);
     String bPk = (String)
@@ -231,13 +232,12 @@ public class InitialSearchTaskFirstTest {
   @DirtiesContext
   public void testNode102_UserIdentified_b() throws Exception {
     String randomBpk = RandomStringUtils.randomNumeric(14);
-
-    ArrayList<RegisterResult> zmrResult = new ArrayList<>();
-    zmrResult.add(new RegisterResult(randomBpk, DE_ST+randomIdentifier, randomGivenName, randomFamilyName, randomDate));
-    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResult);
+    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.singletonList(
+            new RegisterResult(randomBpk, DE_ST+randomIdentifier, randomGivenName, randomFamilyName, randomDate)));
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
 
     task.execute(pendingReq, executionContext);
+
     String bPk = (String)
         pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
     Assert.assertEquals("Wrong bpk", bPk, randomBpk);
@@ -255,22 +255,14 @@ public class InitialSearchTaskFirstTest {
     TestRequestImpl pendingReq1 = new TestRequestImpl();
     pendingReq1.getSessionData(AuthProcessDataWrapper.class)
         .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
-
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
-    ArrayList<RegisterResult> zmrResultSpecific = new ArrayList<>();
-
     String newRandomPseudonym = IT_ST + randomIdentifier + RandomStringUtils.randomNumeric(2);
-    zmrResultSpecific.add(new RegisterResult(bpkRegister, newRandomPseudonym, randomGivenName, randomFamilyName,
-            randomDate, null, null, taxNumber, null));
-
-    Mockito.when(zmrClient.searchItSpecific(taxNumber)).thenReturn(zmrResultSpecific);
-
+    Mockito.when(zmrClient.searchItSpecific(taxNumber)).thenReturn(Collections.singletonList(
+            new RegisterResult(bpkRegister, newRandomPseudonym, randomGivenName, randomFamilyName,
+                    randomDate, null, null, taxNumber, null)));
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
-
-    List<CountrySpecificDetailSearchProcessor> handlers = new ArrayList<>();
-    ItSpecificDetailSearchProcessor it = new ItSpecificDetailSearchProcessor(ernpClient, zmrClient);
-    handlers.add(it);
-    task = new InitialSearchTask(handlers, ernpClient, zmrClient);
+    task = new InitialSearchTask(Collections.singletonList(new ItSpecificDetailSearchProcessor(ernpClient, zmrClient)),
+            ernpClient, zmrClient);
 
     task.execute(pendingReq1, executionContext);
 
@@ -292,22 +284,14 @@ public class InitialSearchTaskFirstTest {
     TestRequestImpl pendingReq1 = new TestRequestImpl();
     pendingReq1.getSessionData(AuthProcessDataWrapper.class)
         .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
-
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
-    ArrayList<RegisterResult> zmrResultSpecific = new ArrayList<>();
-
-    zmrResultSpecific.add(new RegisterResult(randomBpk, randomPseudonym, randomGivenName, randomFamilyName, randomDate,
-            randomPlaceOfBirth, randomBirthName,null, null));
-
     Mockito.when(zmrClient.searchDeSpecific(randomGivenName, randomFamilyName, randomDate, randomPlaceOfBirth,
-            randomBirthName)).thenReturn(zmrResultSpecific);
-
+            randomBirthName))
+            .thenReturn(Collections.singletonList(new RegisterResult(randomBpk, randomPseudonym, randomGivenName,
+                    randomFamilyName, randomDate, randomPlaceOfBirth, randomBirthName,null, null)));
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
-
-    List<CountrySpecificDetailSearchProcessor> handlers = new ArrayList<>();
-    DeSpecificDetailSearchProcessor de = new DeSpecificDetailSearchProcessor(ernpClient, zmrClient);
-    handlers.add(de);
-    task = new InitialSearchTask(handlers, ernpClient, zmrClient);
+    task = new InitialSearchTask(Collections.singletonList(new DeSpecificDetailSearchProcessor(ernpClient, zmrClient)),
+            ernpClient, zmrClient);
 
     task.execute(pendingReq1, executionContext);
 
@@ -331,26 +315,21 @@ public class InitialSearchTaskFirstTest {
     TestRequestImpl pendingReq1 = new TestRequestImpl();
     pendingReq1.getSessionData(AuthProcessDataWrapper.class)
         .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
-
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
     ArrayList<RegisterResult> zmrResultSpecific = new ArrayList<>();
-
     zmrResultSpecific.add(new RegisterResult(bpk1, pseudonym1, randomGivenName, randomFamilyName, randomDate,
             randomPlaceOfBirth, randomBirthName,null, null));
     zmrResultSpecific.add(new RegisterResult(bpk2, pseudonym2, randomGivenName, randomFamilyName, randomDate,
             randomPlaceOfBirth, randomBirthName,null, null));
     Mockito.when(zmrClient.searchDeSpecific(randomGivenName, randomFamilyName, randomDate, randomPlaceOfBirth,
             randomBirthName)).thenReturn(zmrResultSpecific);
-
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
-
-    List<CountrySpecificDetailSearchProcessor> handlers = new ArrayList<>();
-    DeSpecificDetailSearchProcessor de = new DeSpecificDetailSearchProcessor(ernpClient, zmrClient);
-    handlers.add(de);
-    task = new InitialSearchTask(handlers, ernpClient, zmrClient);
+    task = new InitialSearchTask(Collections.singletonList(new DeSpecificDetailSearchProcessor(ernpClient, zmrClient)),
+            ernpClient, zmrClient);
 
     TaskExecutionException exception = assertThrows(TaskExecutionException.class,
             () -> task.execute(pendingReq1, executionContext));
+
     Throwable origE = exception.getOriginalException();
     Assert.assertTrue("Wrong exception", (origE.getCause() instanceof ManualFixNecessaryException));
   }
@@ -366,26 +345,20 @@ public class InitialSearchTaskFirstTest {
     TestRequestImpl pendingReq1 = new TestRequestImpl();
     pendingReq1.getSessionData(AuthProcessDataWrapper.class)
         .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
-
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
     ArrayList<RegisterResult> zmrResultSpecific = new ArrayList<>();
-
     zmrResultSpecific.add(new RegisterResult("bpkMax", IT_ST+randomIdentifier+"4", randomGivenName,
             randomFamilyName, randomDate, null, null, fakeTaxNumber, null));
     zmrResultSpecific.add(new RegisterResult("bpkMax1", IT_ST+randomIdentifier+"5", randomGivenName,
             randomFamilyName, randomDate, null, null, fakeTaxNumber, null));
     Mockito.when(zmrClient.searchItSpecific(fakeTaxNumber)).thenReturn(zmrResultSpecific);
-
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
-
-    List<CountrySpecificDetailSearchProcessor> handlers = new ArrayList<>();
-    ItSpecificDetailSearchProcessor it = new ItSpecificDetailSearchProcessor(ernpClient, zmrClient);
-    handlers.add(it);
-    task = new InitialSearchTask(handlers, ernpClient, zmrClient);
-
+    task = new InitialSearchTask(Collections.singletonList(new ItSpecificDetailSearchProcessor(ernpClient, zmrClient)),
+            ernpClient, zmrClient);
 
     TaskExecutionException exception = assertThrows(TaskExecutionException.class,
             () -> task.execute(pendingReq1, executionContext));
+
     Throwable origE = exception.getOriginalException();
     Assert.assertTrue("Wrong exception", (origE.getCause() instanceof ManualFixNecessaryException));
   }
@@ -400,6 +373,7 @@ public class InitialSearchTaskFirstTest {
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
 
     task.execute(pendingReq, executionContext);
+
     String bPk = (String)
         pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
     Assert.assertEquals("Wrong bpk", "TODO-Temporary-Endnode-105", bPk);
-- 
cgit v1.2.3


From 2e8313758ae4d55274319200aba9226e65f2a82c Mon Sep 17 00:00:00 2001
From: Christian Kollmann <christian.kollmann@a-sit.at>
Date: Tue, 12 Jan 2021 15:50:57 +0100
Subject: Rename variables in test for better readability

---
 .../v2/test/tasks/InitialSearchTaskFirstTest.java  | 177 +++++++++++----------
 1 file changed, 94 insertions(+), 83 deletions(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
index 99764aad..9f58ba71 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
@@ -28,7 +28,6 @@ import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernp.IErnpClient;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.ManualFixNecessaryException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.DeSpecificDetailSearchProcessor;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.CountrySpecificDetailSearchProcessor;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.ItSpecificDetailSearchProcessor;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.InitialSearchTask;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.IZmrClient;
@@ -68,7 +67,6 @@ import java.net.URI;
 import java.net.URISyntaxException;
 import java.util.ArrayList;
 import java.util.Collections;
-import java.util.List;
 import java.util.Random;
 
 import static org.junit.Assert.assertThrows;
@@ -78,6 +76,9 @@ import static org.junit.Assert.assertThrows;
 @DirtiesContext(classMode = ClassMode.BEFORE_CLASS)
 public class InitialSearchTaskFirstTest {
 
+  private static final String DE_ST = "de/st/";
+  private static final String IT_ST = "it/st/";
+
   private InitialSearchTask task;
   @Mock
   private IZmrClient zmrClient;
@@ -86,14 +87,14 @@ public class InitialSearchTaskFirstTest {
 
   final ExecutionContext executionContext = new ExecutionContextImpl();
   private TestRequestImpl pendingReq;
+  private final String randomBpk = RandomStringUtils.randomNumeric(6);
   private final String randomIdentifier = RandomStringUtils.randomNumeric(10);
+  private final String randomPseudonym = DE_ST + randomIdentifier;
   private final String randomFamilyName = RandomStringUtils.randomAlphabetic(10);
   private final String randomGivenName = RandomStringUtils.randomAlphabetic(10);
   private final String randomPlaceOfBirth = RandomStringUtils.randomAlphabetic(10);
   private final String randomBirthName = RandomStringUtils.randomAlphabetic(10);
-  private final String randomDate = "2011-01-"+ (10 + new Random().nextInt(18));
-  private final String DE_ST = "de/st/";
-  private final String IT_ST = "it/st/";
+  private final String randomDate = "2011-01-" + (10 + new Random().nextInt(18));
 
   /**
    * jUnit class initializer.
@@ -132,17 +133,15 @@ public class InitialSearchTaskFirstTest {
   @Test
   @DirtiesContext
   public void testNode100_UserIdentifiedUpdateNecessary_a() throws Exception {
-    ArrayList<RegisterResult> zmrResult = new ArrayList<>();
-    String randomBpk = RandomStringUtils.randomNumeric(6);
-    String newFirstName = RandomStringUtils.randomAlphabetic(5);
-    String randomPseudonym = DE_ST + randomIdentifier;
+    String newFirstName = RandomStringUtils.randomAlphabetic(10);
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.singletonList(
-            new RegisterResult(randomBpk, randomPseudonym, newFirstName, randomFamilyName, randomDate)));
+        new RegisterResult(randomBpk, randomPseudonym, newFirstName, randomFamilyName, randomDate)));
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
 
     task.execute(pendingReq, executionContext);
     String bPk = (String)
-        pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
+        pendingReq.getSessionData(AuthProcessDataWrapper.class)
+            .getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
 
     Assert.assertEquals("Wrong bpk", bPk, randomBpk);
   }
@@ -154,14 +153,14 @@ public class InitialSearchTaskFirstTest {
   @DirtiesContext
   public void testNode100_UserIdentifiedUpdateNecessary_b() throws TaskExecutionException {
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
-    String randomBpk = RandomStringUtils.randomNumeric(6);
     String newRandomGivenName = RandomStringUtils.randomAlphabetic(10);
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.singletonList(
-            new RegisterResult(randomBpk, DE_ST+randomIdentifier, newRandomGivenName, randomFamilyName, randomDate)));
+        new RegisterResult(randomBpk, randomPseudonym, newRandomGivenName, randomFamilyName, randomDate)));
 
     task.execute(pendingReq, executionContext);
     String bPk = (String)
-        pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
+        pendingReq.getSessionData(AuthProcessDataWrapper.class)
+            .getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
 
     Assert.assertEquals("Wrong bpk", bPk, randomBpk);
   }
@@ -173,14 +172,14 @@ public class InitialSearchTaskFirstTest {
   @DirtiesContext
   public void testNode101_ManualFixNecessary_a() {
     ArrayList<RegisterResult> zmrResult = new ArrayList<>();
-    zmrResult.add(new RegisterResult("bpkMax", DE_ST+randomIdentifier, randomGivenName, randomFamilyName, randomDate));
+    zmrResult.add(new RegisterResult(randomBpk, randomPseudonym, randomGivenName, randomFamilyName, randomDate));
     String newRandomGivenName = randomGivenName + RandomStringUtils.randomAlphabetic(2);
-    zmrResult.add(new RegisterResult("bpkMax", DE_ST+randomIdentifier, newRandomGivenName, randomFamilyName, randomDate));
+    zmrResult.add(new RegisterResult(randomBpk, randomPseudonym, newRandomGivenName, randomFamilyName, randomDate));
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResult);
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
 
     TaskExecutionException exception = assertThrows(TaskExecutionException.class,
-            () -> task.execute(pendingReq, executionContext));
+        () -> task.execute(pendingReq, executionContext));
 
     Throwable origE = exception.getOriginalException();
     Assert.assertTrue("Wrong exception", (origE.getCause() instanceof ManualFixNecessaryException));
@@ -193,16 +192,16 @@ public class InitialSearchTaskFirstTest {
   @Test
   @DirtiesContext
   public void testNode101_ManualFixNecessary_b() {
-    String randombpk = RandomStringUtils.randomNumeric(5);
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
     ArrayList<RegisterResult> ernpResult = new ArrayList<>();
-    ernpResult.add(new RegisterResult(randombpk, DE_ST+randomIdentifier, randomGivenName, randomFamilyName, randomDate));
+    ernpResult.add(new RegisterResult(randomBpk, randomPseudonym, randomGivenName, randomFamilyName, randomDate));
     String newRandomGivenName = randomGivenName + RandomStringUtils.randomAlphabetic(2);
-    ernpResult.add(new RegisterResult(randombpk, DE_ST+randomIdentifier, newRandomGivenName, randomFamilyName, randomDate));
+    ernpResult.add(
+        new RegisterResult(randomBpk, randomPseudonym, newRandomGivenName, randomFamilyName, randomDate));
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(ernpResult);
 
     TaskExecutionException exception = assertThrows(TaskExecutionException.class,
-            () -> task.execute(pendingReq, executionContext));
+        () -> task.execute(pendingReq, executionContext));
 
     Throwable origE = exception.getOriginalException();
     Assert.assertTrue("Wrong exception", (origE.getCause() instanceof ManualFixNecessaryException));
@@ -214,14 +213,14 @@ public class InitialSearchTaskFirstTest {
   @Test
   @DirtiesContext
   public void testNode102_UserIdentified_a() throws Exception {
-    String randomBpk = RandomStringUtils.randomNumeric(12);
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.singletonList(
-            new RegisterResult(randomBpk, DE_ST+randomIdentifier, randomGivenName, randomFamilyName, randomDate)));
+        new RegisterResult(randomBpk, randomPseudonym, randomGivenName, randomFamilyName, randomDate)));
 
     task.execute(pendingReq, executionContext);
     String bPk = (String)
-        pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
+        pendingReq.getSessionData(AuthProcessDataWrapper.class)
+            .getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
     Assert.assertEquals("Wrong bpk", bPk, randomBpk);
   }
 
@@ -231,15 +230,15 @@ public class InitialSearchTaskFirstTest {
   @Test
   @DirtiesContext
   public void testNode102_UserIdentified_b() throws Exception {
-    String randomBpk = RandomStringUtils.randomNumeric(14);
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.singletonList(
-            new RegisterResult(randomBpk, DE_ST+randomIdentifier, randomGivenName, randomFamilyName, randomDate)));
+        new RegisterResult(randomBpk, randomPseudonym, randomGivenName, randomFamilyName, randomDate)));
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
 
     task.execute(pendingReq, executionContext);
 
     String bPk = (String)
-        pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
+        pendingReq.getSessionData(AuthProcessDataWrapper.class)
+            .getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
     Assert.assertEquals("Wrong bpk", bPk, randomBpk);
   }
 
@@ -249,7 +248,6 @@ public class InitialSearchTaskFirstTest {
   @Test
   @DirtiesContext
   public void testNode103_UserIdentified_IT() throws Exception {
-    String bpkRegister = RandomStringUtils.randomNumeric(14);
     String taxNumber = RandomStringUtils.randomNumeric(14);
     final AuthenticationResponse response = buildDummyAuthResponseRandomPersonIT_Tax(taxNumber);
     TestRequestImpl pendingReq1 = new TestRequestImpl();
@@ -258,17 +256,19 @@ public class InitialSearchTaskFirstTest {
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
     String newRandomPseudonym = IT_ST + randomIdentifier + RandomStringUtils.randomNumeric(2);
     Mockito.when(zmrClient.searchItSpecific(taxNumber)).thenReturn(Collections.singletonList(
-            new RegisterResult(bpkRegister, newRandomPseudonym, randomGivenName, randomFamilyName,
-                    randomDate, null, null, taxNumber, null)));
+        new RegisterResult(randomBpk, newRandomPseudonym, randomGivenName, randomFamilyName,
+            randomDate, null, null, taxNumber, null)));
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
-    task = new InitialSearchTask(Collections.singletonList(new ItSpecificDetailSearchProcessor(ernpClient, zmrClient)),
-            ernpClient, zmrClient);
+    task = new InitialSearchTask(
+        Collections.singletonList(new ItSpecificDetailSearchProcessor(ernpClient, zmrClient)),
+        ernpClient, zmrClient);
 
     task.execute(pendingReq1, executionContext);
 
     String bPk = (String)
-        pendingReq1.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
-    Assert.assertEquals("Wrong bpk", bPk, bpkRegister);
+        pendingReq1.getSessionData(AuthProcessDataWrapper.class)
+            .getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
+    Assert.assertEquals("Wrong bpk", bPk, randomBpk);
   }
 
   /**
@@ -277,26 +277,27 @@ public class InitialSearchTaskFirstTest {
   @Test
   @DirtiesContext
   public void testNode103_UserIdentified_DE() throws Exception {
-    String randomPseudonym = DE_ST + RandomStringUtils.randomNumeric(5);
-    String randomBpk = RandomStringUtils.randomNumeric(5);
-    final AuthenticationResponse response = buildDummyAuthResponseDE(randomGivenName, randomFamilyName, randomPseudonym,
-            randomDate, randomPlaceOfBirth, randomBirthName);
+    final AuthenticationResponse response = buildDummyAuthResponseDE(randomGivenName, randomFamilyName,
+        randomPseudonym,
+        randomDate, randomPlaceOfBirth, randomBirthName);
     TestRequestImpl pendingReq1 = new TestRequestImpl();
     pendingReq1.getSessionData(AuthProcessDataWrapper.class)
         .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
     Mockito.when(zmrClient.searchDeSpecific(randomGivenName, randomFamilyName, randomDate, randomPlaceOfBirth,
-            randomBirthName))
-            .thenReturn(Collections.singletonList(new RegisterResult(randomBpk, randomPseudonym, randomGivenName,
-                    randomFamilyName, randomDate, randomPlaceOfBirth, randomBirthName,null, null)));
+        randomBirthName))
+        .thenReturn(Collections.singletonList(new RegisterResult(randomBpk, randomPseudonym, randomGivenName,
+            randomFamilyName, randomDate, randomPlaceOfBirth, randomBirthName, null, null)));
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
-    task = new InitialSearchTask(Collections.singletonList(new DeSpecificDetailSearchProcessor(ernpClient, zmrClient)),
-            ernpClient, zmrClient);
+    task = new InitialSearchTask(
+        Collections.singletonList(new DeSpecificDetailSearchProcessor(ernpClient, zmrClient)),
+        ernpClient, zmrClient);
 
     task.execute(pendingReq1, executionContext);
 
     String resultBpk = (String)
-        pendingReq1.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
+        pendingReq1.getSessionData(AuthProcessDataWrapper.class)
+            .getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
     Assert.assertEquals("Wrong bpk", resultBpk, randomBpk);
   }
 
@@ -306,29 +307,30 @@ public class InitialSearchTaskFirstTest {
   @Test
   @DirtiesContext
   public void testNode104_ManualFixNecessary_DE() throws Exception {
-    String pseudonym1 = DE_ST + RandomStringUtils.randomNumeric(5);
-    String pseudonym2 = pseudonym1 + RandomStringUtils.randomNumeric(2);
-    String bpk1 = RandomStringUtils.randomNumeric(5);
-    String bpk2 = bpk1 + RandomStringUtils.randomNumeric(2);
-    final AuthenticationResponse response = buildDummyAuthResponseDE(randomGivenName, randomFamilyName, pseudonym1,
-            randomDate, randomPlaceOfBirth, randomBirthName);
+    String newRandomPseudonym = randomPseudonym + RandomStringUtils.randomNumeric(2);
+    String newRandomBpk = randomBpk + RandomStringUtils.randomNumeric(6);
+    final AuthenticationResponse response = buildDummyAuthResponseDE(randomGivenName, randomFamilyName,
+        randomPseudonym,
+        randomDate, randomPlaceOfBirth, randomBirthName);
     TestRequestImpl pendingReq1 = new TestRequestImpl();
     pendingReq1.getSessionData(AuthProcessDataWrapper.class)
         .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
     ArrayList<RegisterResult> zmrResultSpecific = new ArrayList<>();
-    zmrResultSpecific.add(new RegisterResult(bpk1, pseudonym1, randomGivenName, randomFamilyName, randomDate,
-            randomPlaceOfBirth, randomBirthName,null, null));
-    zmrResultSpecific.add(new RegisterResult(bpk2, pseudonym2, randomGivenName, randomFamilyName, randomDate,
-            randomPlaceOfBirth, randomBirthName,null, null));
+    zmrResultSpecific.add(
+        new RegisterResult(randomBpk, randomPseudonym, randomGivenName, randomFamilyName, randomDate,
+            randomPlaceOfBirth, randomBirthName, null, null));
+    zmrResultSpecific.add(new RegisterResult(newRandomBpk, newRandomPseudonym, randomGivenName, randomFamilyName, randomDate,
+        randomPlaceOfBirth, randomBirthName, null, null));
     Mockito.when(zmrClient.searchDeSpecific(randomGivenName, randomFamilyName, randomDate, randomPlaceOfBirth,
-            randomBirthName)).thenReturn(zmrResultSpecific);
+        randomBirthName)).thenReturn(zmrResultSpecific);
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
-    task = new InitialSearchTask(Collections.singletonList(new DeSpecificDetailSearchProcessor(ernpClient, zmrClient)),
-            ernpClient, zmrClient);
+    task = new InitialSearchTask(
+        Collections.singletonList(new DeSpecificDetailSearchProcessor(ernpClient, zmrClient)),
+        ernpClient, zmrClient);
 
     TaskExecutionException exception = assertThrows(TaskExecutionException.class,
-            () -> task.execute(pendingReq1, executionContext));
+        () -> task.execute(pendingReq1, executionContext));
 
     Throwable origE = exception.getOriginalException();
     Assert.assertTrue("Wrong exception", (origE.getCause() instanceof ManualFixNecessaryException));
@@ -340,24 +342,28 @@ public class InitialSearchTaskFirstTest {
   @Test
   @DirtiesContext
   public void testNode104_ManualFixNecessary_IT() throws Exception {
-    String fakeTaxNumber = RandomStringUtils.randomNumeric(14);
-    final AuthenticationResponse response = buildDummyAuthResponseRandomPersonIT_Tax(fakeTaxNumber);
+    String randomTaxNumber = RandomStringUtils.randomNumeric(14);
+    final AuthenticationResponse response = buildDummyAuthResponseRandomPersonIT_Tax(randomTaxNumber);
     TestRequestImpl pendingReq1 = new TestRequestImpl();
     pendingReq1.getSessionData(AuthProcessDataWrapper.class)
         .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
     ArrayList<RegisterResult> zmrResultSpecific = new ArrayList<>();
-    zmrResultSpecific.add(new RegisterResult("bpkMax", IT_ST+randomIdentifier+"4", randomGivenName,
-            randomFamilyName, randomDate, null, null, fakeTaxNumber, null));
-    zmrResultSpecific.add(new RegisterResult("bpkMax1", IT_ST+randomIdentifier+"5", randomGivenName,
-            randomFamilyName, randomDate, null, null, fakeTaxNumber, null));
-    Mockito.when(zmrClient.searchItSpecific(fakeTaxNumber)).thenReturn(zmrResultSpecific);
+    String randomPseudonym = IT_ST + randomIdentifier + "4";
+    zmrResultSpecific.add(new RegisterResult(randomBpk, randomPseudonym, randomGivenName,
+        randomFamilyName, randomDate, null, null, randomTaxNumber, null));
+    String newRandomPseudonym = IT_ST + randomIdentifier + "5";
+    String newRandomBpk = RandomStringUtils.randomNumeric(6);
+    zmrResultSpecific.add(new RegisterResult(newRandomBpk, newRandomPseudonym, randomGivenName,
+        randomFamilyName, randomDate, null, null, randomTaxNumber, null));
+    Mockito.when(zmrClient.searchItSpecific(randomTaxNumber)).thenReturn(zmrResultSpecific);
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
-    task = new InitialSearchTask(Collections.singletonList(new ItSpecificDetailSearchProcessor(ernpClient, zmrClient)),
-            ernpClient, zmrClient);
+    task = new InitialSearchTask(
+        Collections.singletonList(new ItSpecificDetailSearchProcessor(ernpClient, zmrClient)),
+        ernpClient, zmrClient);
 
     TaskExecutionException exception = assertThrows(TaskExecutionException.class,
-            () -> task.execute(pendingReq1, executionContext));
+        () -> task.execute(pendingReq1, executionContext));
 
     Throwable origE = exception.getOriginalException();
     Assert.assertTrue("Wrong exception", (origE.getCause() instanceof ManualFixNecessaryException));
@@ -375,19 +381,21 @@ public class InitialSearchTaskFirstTest {
     task.execute(pendingReq, executionContext);
 
     String bPk = (String)
-        pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
+        pendingReq.getSessionData(AuthProcessDataWrapper.class)
+            .getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
     Assert.assertEquals("Wrong bpk", "TODO-Temporary-Endnode-105", bPk);
   }
 
 
   @NotNull
   private AuthenticationResponse buildDummyAuthResponseRandomPerson() throws URISyntaxException {
-    return buildDummyAuthResponse(randomGivenName, randomFamilyName, DE_ST+randomIdentifier, randomDate);
+    return buildDummyAuthResponse(randomGivenName, randomFamilyName, DE_ST + randomIdentifier, randomDate);
   }
 
-  private AuthenticationResponse buildDummyAuthResponseRandomPersonIT_Tax(String taxNumber) throws URISyntaxException {
-    return buildDummyAuthResponse(randomGivenName, randomFamilyName, IT_ST+randomIdentifier, randomDate,
-            taxNumber, null, null);
+  private AuthenticationResponse buildDummyAuthResponseRandomPersonIT_Tax(String taxNumber)
+      throws URISyntaxException {
+    return buildDummyAuthResponse(randomGivenName, randomFamilyName, IT_ST + randomIdentifier, randomDate,
+        taxNumber, null, null);
   }
 
   @NotNull
@@ -408,18 +416,19 @@ public class InitialSearchTaskFirstTest {
                                                         String dateOfBirth, String taxNumber, String placeOfBirth,
                                                         String birthName) throws URISyntaxException {
     ImmutableAttributeMap.Builder builder = ImmutableAttributeMap.builder()
-        .put(generateStringAttribute(Constants.eIDAS_ATTR_PERSONALIDENTIFIER,"ff","af"), identifier)
-        .put(generateStringAttribute(Constants.eIDAS_ATTR_CURRENTFAMILYNAME,"fff","aff"), familyName)
-        .put(generateStringAttribute(Constants.eIDAS_ATTR_CURRENTGIVENNAME,"ffff","afff"), givenName)
-        .put(generateDateTimeAttribute(Constants.eIDAS_ATTR_DATEOFBIRTH,"fffff","affff"), dateOfBirth);
+        .put(generateStringAttribute(Constants.eIDAS_ATTR_PERSONALIDENTIFIER, "ff", "af"), identifier)
+        .put(generateStringAttribute(Constants.eIDAS_ATTR_CURRENTFAMILYNAME, "fff", "aff"), familyName)
+        .put(generateStringAttribute(Constants.eIDAS_ATTR_CURRENTGIVENNAME, "ffff", "afff"), givenName)
+        .put(generateDateTimeAttribute(Constants.eIDAS_ATTR_DATEOFBIRTH, "fffff", "affff"), dateOfBirth);
     if (taxNumber != null) {
-      builder.put(generateStringAttribute(Constants.eIDAS_ATTR_TAXREFERENCE,"ffffff","afffff"), taxNumber);
+      builder.put(generateStringAttribute(Constants.eIDAS_ATTR_TAXREFERENCE, "ffffff", "afffff"), taxNumber);
     }
     if (birthName != null) {
-      builder.put(generateStringAttribute(Constants.eIDAS_ATTR_BIRTHNAME,"fffffff","affffff"), birthName);
+      builder.put(generateStringAttribute(Constants.eIDAS_ATTR_BIRTHNAME, "fffffff", "affffff"), birthName);
     }
     if (placeOfBirth != null) {
-      builder.put(generateStringAttribute(Constants.eIDAS_ATTR_PLACEOFBIRTH,"ffffffff","afffffff"), placeOfBirth);
+      builder.put(generateStringAttribute(Constants.eIDAS_ATTR_PLACEOFBIRTH, "ffffffff", "afffffff"),
+          placeOfBirth);
     }
     final ImmutableAttributeMap attributeMap = builder.build();
 
@@ -428,18 +437,20 @@ public class InitialSearchTaskFirstTest {
         "afaf").attributes(attributeMap).build();
   }
 
-  private AttributeDefinition<Object> generateStringAttribute(String friendlyName, String fragment, String prefix) throws URISyntaxException {
+  private AttributeDefinition<Object> generateStringAttribute(String friendlyName, String fragment, String prefix)
+      throws URISyntaxException {
     return generateAttribute(friendlyName, fragment, prefix, "eu.eidas.auth.commons.attribute.impl" +
         ".LiteralStringAttributeValueMarshaller");
   }
 
-  private AttributeDefinition<Object> generateDateTimeAttribute(String friendlyName, String fragment, String prefix) throws URISyntaxException {
+  private AttributeDefinition<Object> generateDateTimeAttribute(String friendlyName, String fragment, String prefix)
+      throws URISyntaxException {
     return generateAttribute(friendlyName, fragment, prefix, "eu.eidas.auth.commons.attribute.impl" +
         ".DateTimeAttributeValueMarshaller");
   }
 
   private AttributeDefinition<Object> generateAttribute(String friendlyName, String fragment, String prefix,
-                                                String marshaller) throws URISyntaxException {
+                                                        String marshaller) throws URISyntaxException {
     return AttributeDefinition.builder()
         .friendlyName(friendlyName).nameUri(new URI("ad", "sd", fragment))
         .personType(PersonType.LEGAL_PERSON).xmlType(new QName("http://saf", "as", prefix))
-- 
cgit v1.2.3


From eae2f7b06fc41741863d1ea6ec9c8b6da8a6b8fb Mon Sep 17 00:00:00 2001
From: Christian Kollmann <christian.kollmann@a-sit.at>
Date: Tue, 12 Jan 2021 15:51:07 +0100
Subject: Add null check for more safety

---
 .../eidas/specific/modules/auth/eidas/v2/utils/EidasResponseUtils.java  | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/EidasResponseUtils.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/EidasResponseUtils.java
index 3cf73944..aafcd8b9 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/EidasResponseUtils.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/EidasResponseUtils.java
@@ -307,7 +307,7 @@ public class EidasResponseUtils {
     }
     final Triple<String, String, String> eIdentifier =
         EidasResponseUtils.parseEidasPersonalIdentifier((String) personalIdObj);
-    if (eIdentifier.getThird() == null) {
+    if (eIdentifier == null || eIdentifier.getThird() == null) {
       throw new EidasAttributeException("Error processing eIdentifier");
     }
     return eIdentifier.getThird();
-- 
cgit v1.2.3


From c1b44dcd325e9e49ba38c384b9bfb981dca5a776 Mon Sep 17 00:00:00 2001
From: Alexander Marsalek <amarsalek@iaik.tugraz.at>
Date: Tue, 12 Jan 2021 16:10:10 +0100
Subject: add task transitions

---
 .../auth/eidas/v2/tasks/InitialSearchTask.java     |  9 ++++++-
 .../resources/eIDAS.Authentication.process.xml     | 31 ++++++++++++++++++----
 2 files changed, 34 insertions(+), 6 deletions(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
index a87be6c5..0812f55e 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
@@ -73,6 +73,7 @@ public class InitialSearchTask extends AbstractAuthServletTask {
 
   private IErnbClient ernbClient;
   private IZmrClient zmrClient;
+  private ExecutionContext executionContext;
 
   /*
    * (non-Javadoc)
@@ -86,6 +87,7 @@ public class InitialSearchTask extends AbstractAuthServletTask {
   public void execute(ExecutionContext executionContext, HttpServletRequest request, HttpServletResponse response)
       throws TaskExecutionException {
     try {
+      this.executionContext = executionContext;
       final AuthProcessDataWrapper authProcessData = pendingReq.getSessionData(AuthProcessDataWrapper.class);
       final ILightResponse eidasResponse = authProcessData
           .getGenericDataFromSession(Constants.DATA_FULL_EIDAS_RESPONSE, ILightResponse.class);
@@ -254,7 +256,12 @@ public class InitialSearchTask extends AbstractAuthServletTask {
         ernbClient.searchWithMds(eidData.getGivenName(), eidData.getFamilyName(), eidData.getDateOfBirth());
     mdsSearchResult.setResultsErnb(resultsErnb);
 
-    log.debug("Automerge " + initialSearchResult + " with " + eidData + " " + mdsSearchResult);
+    if (mdsSearchResult.getResultCount() == 0) {
+      executionContext.put("TASK_CreateNewErnpEntryTask", true);
+    } else {
+      executionContext.put("TASK_GenerateGuiTask", true);
+    }
+
     //TODO implement next phase and return correct value
     return "TODO-Temporary-Endnode-105";
   }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eIDAS.Authentication.process.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eIDAS.Authentication.process.xml
index 5134982a..5299093e 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eIDAS.Authentication.process.xml
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eIDAS.Authentication.process.xml
@@ -13,15 +13,15 @@
   <pd:Task id="initialRegisterSearch"
            class="InitialSearchTask" />
 
-  <pd:Task id="CreateNewErnpEntryTask"
+  <pd:Task id="createNewErnpEntryTask"
            class="CreateNewErnpEntryTask" />
-  <pd:Task id="GenerateGuiTask"
+  <pd:Task id="generateGuiTask"
            class="GenerateGuiTask" />
-  <pd:Task id="GenerateMobilePhoneSignatureRequestTask"
+  <pd:Task id="generateMobilePhoneSignatureRequestTask"
            class="GenerateMobilePhoneSignatureRequestTask" />
-  <pd:Task id="ReceiveGuiResponseTask"
+  <pd:Task id="receiveGuiResponseTask"
            class="ReceiveGuiResponseTask" />
-  <pd:Task id="ReceiveMobilePhoneSignatureResponseTask"
+  <pd:Task id="receiveMobilePhoneSignatureResponseTask"
            class="ReceiveMobilePhoneSignatureResponseTask" />
 
 
@@ -33,8 +33,29 @@
                   to="receiveAuthnResponse" />
   <pd:Transition  from="receiveAuthnResponse"
                   to="initialRegisterSearch" />
+  <!-- TODO start-->
   <pd:Transition  from="initialRegisterSearch"
+                  to="createNewErnpEntryTask"
+                  conditionExpression="ctx['TASK_CreateNewErnpEntryTask']"/>
+  <pd:Transition  from="initialRegisterSearch"
+                  to="generateGuiTask"
+                  conditionExpression="ctx['TASK_GenerateGuiTask']"/>
+
+  <pd:Transition  from="generateGuiTask"
+                  to="receiveGuiResponseTask" />
+  <pd:Transition  from="receiveGuiResponseTask"
+                  to="generateMobilePhoneSignatureRequestTask"
+                  conditionExpression="ctx['TASK_TODO']"/>
+  <pd:Transition  from="generateMobilePhoneSignatureRequestTask"
+                  to="receiveMobilePhoneSignatureResponseTask" />
+  <pd:Transition  from="receiveMobilePhoneSignatureResponseTask"
+                  to="createNewErnpEntryTask" />
+  <pd:Transition  from="receiveGuiResponseTask"
+                  to="createNewErnpEntryTask" />
+  <pd:Transition  from="createNewErnpEntryTask"
                   to="generateIdentityLink" />
+  <!-- TODO end-->
+
   <pd:Transition  from="generateIdentityLink"
                   to="finalizeAuthentication" />
   <pd:Transition  from="finalizeAuthentication" 
-- 
cgit v1.2.3


From 7e768d77fba98d75944367aa83aea13009ad0910 Mon Sep 17 00:00:00 2001
From: Alexander Marsalek <amarsalek@iaik.tugraz.at>
Date: Thu, 3 Dec 2020 10:13:44 +0100
Subject: general workflow steps 1-8

---
 .../v2/dao/CountrySpecificDetailSearchResult.java  |  14 ++
 .../auth/eidas/v2/dao/InitialSearchResult.java     |  12 +
 .../v2/exception/ManualFixNecessaryException.java  |  40 ++++
 .../ICountrySpecificDetailSearchProcessor.java     |  58 +++++
 .../auth/eidas/v2/tasks/InitialSearchTask.java     | 258 +++++++++++++++++++++
 .../resources/eIDAS.Authentication.process.xml     |   4 +
 .../src/main/resources/eidas_v2_auth.beans.xml     |   4 +
 .../EidasRequestPreProcessingSecondTest.java       |   2 +-
 8 files changed, 391 insertions(+), 1 deletion(-)
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/CountrySpecificDetailSearchResult.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/InitialSearchResult.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/exception/ManualFixNecessaryException.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ICountrySpecificDetailSearchProcessor.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/CountrySpecificDetailSearchResult.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/CountrySpecificDetailSearchResult.java
new file mode 100644
index 00000000..710e286c
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/CountrySpecificDetailSearchResult.java
@@ -0,0 +1,14 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.dao;
+
+public class CountrySpecificDetailSearchResult {
+
+  //TODO is the result the same as the one form the initial search?
+  int resultsZmr;
+  int resultsErnb;
+
+  public int getResultCount() {
+    return resultsZmr + resultsErnb;
+  }
+
+
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/InitialSearchResult.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/InitialSearchResult.java
new file mode 100644
index 00000000..8fe69414
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/InitialSearchResult.java
@@ -0,0 +1,12 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.dao;
+
+public class InitialSearchResult {
+
+  int resultsZmr;
+  int resultsErnb;
+
+  public int getResultCount() {
+    return resultsErnb + resultsZmr;
+  }
+
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/exception/ManualFixNecessaryException.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/exception/ManualFixNecessaryException.java
new file mode 100644
index 00000000..f3916ed6
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/exception/ManualFixNecessaryException.java
@@ -0,0 +1,40 @@
+/*
+ * Copyright 2018 A-SIT Plus GmbH
+ * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
+ * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
+ *
+ * Licensed under the EUPL, Version 1.2 or - as soon they will be approved by
+ * the European Commission - subsequent versions of the EUPL (the "License");
+ * You may not use this work except in compliance with the License.
+ * You may obtain a copy of the License at:
+ * https://joinup.ec.europa.eu/news/understanding-eupl-v12
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" basis,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ *
+ * This product combines work with different licenses. See the "NOTICE" text
+ * file for details on the various modules and licenses.
+ * The "NOTICE" text file is part of the distribution. Any derivative works
+ * that you distribute must include a readable copy of the "NOTICE" text file.
+*/
+
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.exception;
+
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.ErnbEidData;
+
+public class ManualFixNecessaryException extends EidasSAuthenticationException {
+  private static final long serialVersionUID = 1L;
+
+  public ManualFixNecessaryException(String personIdentifier) {
+    super("eidas.00", new Object[] { personIdentifier });//TODO "eidas.00"
+
+  }
+
+  public ManualFixNecessaryException(ErnbEidData eidData) {
+
+    super("eidas.00", new Object[] { eidData.getPseudonym() });//TODO "eidas.00"   => what info to pass???
+  }
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ICountrySpecificDetailSearchProcessor.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ICountrySpecificDetailSearchProcessor.java
new file mode 100644
index 00000000..c35f6e16
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ICountrySpecificDetailSearchProcessor.java
@@ -0,0 +1,58 @@
+/*
+ * Copyright 2018 A-SIT Plus GmbH
+ * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
+ * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
+ *
+ * Licensed under the EUPL, Version 1.2 or - as soon they will be approved by
+ * the European Commission - subsequent versions of the EUPL (the "License");
+ * You may not use this work except in compliance with the License.
+ * You may obtain a copy of the License at:
+ * https://joinup.ec.europa.eu/news/understanding-eupl-v12
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" basis,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ *
+ * This product combines work with different licenses. See the "NOTICE" text
+ * file for details on the various modules and licenses.
+ * The "NOTICE" text file is part of the distribution. Any derivative works
+ * that you distribute must include a readable copy of the "NOTICE" text file.
+ */
+
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.handler;
+
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.CountrySpecificDetailSearchResult;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.ErnbEidData;
+
+public interface ICountrySpecificDetailSearchProcessor {
+
+  /**
+   * Get a friendlyName of this post-processor implementation.
+   *
+   * @return
+   */
+  String getName();
+
+  /**
+   * Get the priority of this eID Post-Processor <br>
+   * If more than one Post-Processor implementations can handle the eID data, the
+   * post-processor with the highest priority are selected. The Default-Processor
+   * has priority '0'
+   *
+   * @return Priority of this handler
+   */
+  int getPriority();
+
+  /**
+   * Check if this postProcessor is sensitive for a specific country.
+   *
+   * @param countryCode of the eID data that should be processed
+   * @param eidData eID data
+   * @return true if this implementation can handle the country, otherwise false
+   */
+  boolean canHandle(String countryCode, ErnbEidData eidData);
+
+  CountrySpecificDetailSearchResult search(ErnbEidData eidData);
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
new file mode 100644
index 00000000..d9f70a81
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
@@ -0,0 +1,258 @@
+/*
+ * Copyright 2018 A-SIT Plus GmbH
+ * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
+ * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
+ *
+ * Licensed under the EUPL, Version 1.2 or - as soon they will be approved by
+ * the European Commission - subsequent versions of the EUPL (the "License");
+ * You may not use this work except in compliance with the License.
+ * You may obtain a copy of the License at:
+ * https://joinup.ec.europa.eu/news/understanding-eupl-v12
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" basis,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ *
+ * This product combines work with different licenses. See the "NOTICE" text
+ * file for details on the various modules and licenses.
+ * The "NOTICE" text file is part of the distribution. Any derivative works
+ * that you distribute must include a readable copy of the "NOTICE" text file.
+ */
+
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks;
+
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.CountrySpecificDetailSearchResult;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.ErnbEidData;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.InitialSearchResult;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.ManualFixNecessaryException;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.ICountrySpecificDetailSearchProcessor;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.ICcSpecificEidProcessingService;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.EidasResponseUtils;
+import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
+import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
+import at.gv.egiz.eaaf.core.impl.idp.auth.data.AuthProcessDataWrapper;
+import at.gv.egiz.eaaf.core.impl.idp.auth.modules.AbstractAuthServletTask;
+import com.google.common.collect.ImmutableMap;
+import com.google.common.collect.ImmutableSet;
+import eu.eidas.auth.commons.attribute.AttributeDefinition;
+import eu.eidas.auth.commons.attribute.AttributeValue;
+import eu.eidas.auth.commons.light.ILightResponse;
+import eu.eidas.auth.commons.protocol.eidas.impl.PostalAddress;
+import lombok.extern.slf4j.Slf4j;
+import org.apache.commons.lang3.StringUtils;
+import org.joda.time.DateTime;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.context.ApplicationContext;
+import org.springframework.stereotype.Component;
+
+import javax.annotation.PostConstruct;
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+import java.util.ArrayList;
+import java.util.Collections;
+import java.util.HashMap;
+import java.util.Iterator;
+import java.util.List;
+import java.util.Map;
+
+/**
+ * Task that creates the IdentityLink for an eIDAS authenticated person.
+ *
+ * @author tlenz
+ */
+@Slf4j
+@Component("InitialSearchTask")
+public class InitialSearchTask extends AbstractAuthServletTask {
+
+  private final List<ICountrySpecificDetailSearchProcessor> handlers = new ArrayList<>();
+
+  //  @Autowired
+  //  private AuthBlockSigningService authBlockSigner;
+  //  @Autowired
+  //  private IConfiguration basicConfig;
+  //  @Autowired
+  //  private SzrClient szrClient;
+  @Autowired
+  private ICcSpecificEidProcessingService eidPostProcessor;
+
+  //  private static final String EID_STATUS = "urn:eidgvat:eid.status.eidas";
+  @Autowired
+  private ApplicationContext context;
+
+  @PostConstruct
+  private void initialize() {
+    log.debug("Initialize country specific detail search services ... ");
+    final Map<String, ICountrySpecificDetailSearchProcessor> postProcessors = context.getBeansOfType(
+        ICountrySpecificDetailSearchProcessor.class);
+    final Iterator<Map.Entry<String, ICountrySpecificDetailSearchProcessor>> iterator =
+        postProcessors.entrySet().iterator();
+    while (iterator.hasNext()) {
+      final Map.Entry<String, ICountrySpecificDetailSearchProcessor> el = iterator.next();
+      log.debug("Find country specific detail search services with name: " + el.getKey());
+      handlers.add(el.getValue());
+
+    }
+
+    log.trace("Sorting country specific detail search services on priority ... ");
+    Collections.sort(handlers, (thisAuthModule, otherAuthModule) -> {
+      final int thisOrder = thisAuthModule.getPriority();
+      final int otherOrder = otherAuthModule.getPriority();
+      return thisOrder < otherOrder ? 1 : thisOrder == otherOrder ? 0 : -1;
+    });
+
+    log.info("# " + handlers.size() + " country specific detail search services are registrated");
+
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see at.gv.egovernment.moa.id.process.springweb.MoaIdTask#execute(at.gv.
+   * egovernment.moa.id.process.api.ExecutionContext,
+   * javax.servlet.http.HttpServletRequest,
+   * javax.servlet.http.HttpServletResponse)
+   */
+  @Override
+  public void execute(ExecutionContext executionContext, HttpServletRequest request, HttpServletResponse response)
+      throws TaskExecutionException {
+    try {
+      final AuthProcessDataWrapper authProcessData = pendingReq.getSessionData(AuthProcessDataWrapper.class);
+      final ILightResponse eidasResponse = authProcessData
+          .getGenericDataFromSession(Constants.DATA_FULL_EIDAS_RESPONSE, ILightResponse.class);
+
+      final Map<String, Object> simpleAttrMap = convertEidasAttrToSimpleMap(
+          eidasResponse.getAttributes().getAttributeMap());
+
+      // post-process eIDAS attributes
+      final ErnbEidData eidData = eidPostProcessor.postProcess(simpleAttrMap);
+
+      String personIdentifier = eidData.getPseudonym();
+
+      //search in register(step 2)
+      InitialSearchResult result = searchInZmrAndErnp(personIdentifier);
+      switch (result.getResultCount()) {
+        case 0:
+          step5(result, eidData);
+          break;
+        case 1:
+          step3(result, eidData);
+          break;
+        default://should not happen
+          throw new TaskExecutionException(pendingReq, "Initial search - Kitt Process necessary.",
+              new ManualFixNecessaryException(personIdentifier));
+      }
+    } catch (final Exception e) {
+      log.error("Initial search FAILED.", e);
+      throw new TaskExecutionException(pendingReq, "Initial search FAILED.", e);
+    }
+  }
+
+  private void step3(InitialSearchResult result, ErnbEidData eidData) {
+    //check if data from eidas authentication matches with data from register
+    //TODO
+
+  }
+
+  private void step5(InitialSearchResult result, ErnbEidData eidData) throws TaskExecutionException {
+    String citizenCountry = eidData.getCitizenCountryCode();
+    ICountrySpecificDetailSearchProcessor foundHandler = null;
+    for (final ICountrySpecificDetailSearchProcessor el : handlers) {
+      //5 check if country specific search is possible
+      if (el.canHandle(citizenCountry, eidData)) {
+        log.debug("Found suitable country specific search handler for " + citizenCountry
+            + " by using: " + el.getName());
+        foundHandler = el;
+        break;
+      }
+    }
+    if (foundHandler == null) {
+      //MDS search
+      step8(result, eidData);
+    } else {
+      //country specific search
+      step6(foundHandler, result, eidData);
+    }
+  }
+
+  private void step6(ICountrySpecificDetailSearchProcessor countrySpecificDetailSearchProcessor,
+                     InitialSearchResult initialSearchResult, ErnbEidData eidData) throws TaskExecutionException {
+    //6 country specific search
+    CountrySpecificDetailSearchResult countrySpecificDetailSearchResult =
+        countrySpecificDetailSearchProcessor.search(eidData);
+
+    switch (countrySpecificDetailSearchResult.getResultCount()) {
+      case 0:
+        step8(initialSearchResult, eidData);
+        break;
+      case 1:
+        step7a(initialSearchResult, countrySpecificDetailSearchResult, eidData);
+        break;
+      default://should not happen
+        throw new TaskExecutionException(pendingReq, "Detail search - Kitt Process necessary.",
+            new ManualFixNecessaryException(eidData));
+    }
+  }
+
+  private void step7a(InitialSearchResult initialSearchResult,
+                      CountrySpecificDetailSearchResult countrySpecificDetailSearchResult, ErnbEidData eidData) {
+    //TODO automerge
+
+  }
+
+  private void step8(InitialSearchResult initialSearchResult, ErnbEidData eidData) {
+    //TODO MDS Suche
+  }
+
+  private InitialSearchResult searchInZmrAndErnp(String personIdentifier) {
+    //search TODO
+    return new InitialSearchResult();//TODO
+  }
+
+  private Map<String, Object> convertEidasAttrToSimpleMap(
+      ImmutableMap<AttributeDefinition<?>, ImmutableSet<? extends AttributeValue<?>>> attributeMap) {
+    final Map<String, Object> result = new HashMap<>();
+
+    for (final AttributeDefinition<?> el : attributeMap.keySet()) {
+
+      final Class<?> parameterizedType = el.getParameterizedType();
+      if (DateTime.class.equals(parameterizedType)) {
+        final DateTime attribute = EidasResponseUtils.translateDateAttribute(el, attributeMap.get(el).asList());
+        if (attribute != null) {
+          result.put(el.getFriendlyName(), attribute);
+          log.trace("Find attr '" + el.getFriendlyName() + "' with value: " + attribute.toString());
+
+        } else {
+          log.info("Ignore empty 'DateTime' attribute");
+        }
+
+      } else if (PostalAddress.class.equals(parameterizedType)) {
+        final PostalAddress addressAttribute = EidasResponseUtils
+            .translateAddressAttribute(el, attributeMap.get(el).asList());
+        if (addressAttribute != null) {
+          result.put(el.getFriendlyName(), addressAttribute);
+          log.trace("Find attr '" + el.getFriendlyName() + "' with value: " + addressAttribute.toString());
+
+        } else {
+          log.info("Ignore empty 'PostalAddress' attribute");
+        }
+
+      } else {
+        final List<String> natPersonIdObj = EidasResponseUtils
+            .translateStringListAttribute(el, attributeMap.get(el).asList());
+        final String stringAttr = natPersonIdObj.get(0);
+        if (StringUtils.isNotEmpty(stringAttr)) {
+          result.put(el.getFriendlyName(), stringAttr);
+          log.trace("Find attr '" + el.getFriendlyName() + "' with value: " + stringAttr);
+
+        } else {
+          log.info("Ignore empty 'String' attribute");
+        }
+      }
+    }
+    log.debug("Receive #" + result.size() + " attributes with names: " + result.keySet().toString());
+    return result;
+  }
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eIDAS.Authentication.process.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eIDAS.Authentication.process.xml
index 55bb1ace..e199d379 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eIDAS.Authentication.process.xml
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eIDAS.Authentication.process.xml
@@ -10,6 +10,8 @@
     class="FinalizeAuthenticationTask" />
   <pd:Task id="generateIdentityLink"
     class="CreateIdentityLinkTask" />
+  <pd:Task id="initialRegisterSearch"
+           class="InitialSearchTask" />
 
   <pd:StartEvent id="start" />
   
@@ -18,6 +20,8 @@
   <pd:Transition  from="createAuthnRequest"
                   to="receiveAuthnResponse" />
   <pd:Transition  from="receiveAuthnResponse"
+                  to="initialRegisterSearch" />
+  <pd:Transition  from="initialRegisterSearch"
                   to="generateIdentityLink" />
   <pd:Transition  from="generateIdentityLink"
                   to="finalizeAuthentication" />
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml
index 6cc704ab..9c28bf07 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml
@@ -87,4 +87,8 @@
     class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.CreateIdentityLinkTask"
     scope="prototype" />
 
+  <bean id="InitialSearchTask"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.InitialSearchTask"
+        scope="prototype" />
+
 </beans>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/validation/EidasRequestPreProcessingSecondTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/validation/EidasRequestPreProcessingSecondTest.java
index c44e803b..23175a18 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/validation/EidasRequestPreProcessingSecondTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/validation/EidasRequestPreProcessingSecondTest.java
@@ -100,7 +100,7 @@ public class EidasRequestPreProcessingSecondTest {
 
     final LightRequest lightReq = authnRequestBuilder.build();
 
-    Assert.assertEquals("ProviderName is not Static", "myNode", lightReq.getProviderName());
+    Assert.assertEquals("ProviderName is not Static", "myNode", lightReq.getProviderName());//Fixme "myNode"
     Assert.assertEquals("no PublicSP", "public", lightReq.getSpType());
     Assert.assertEquals("Requested attribute size not match", 8, lightReq.getRequestedAttributes().size());
 
-- 
cgit v1.2.3


From 4b7abac5a3090b924c3c2a6c6bc0c2da8cf05bdd Mon Sep 17 00:00:00 2001
From: Alexander Marsalek <amarsalek@iaik.tugraz.at>
Date: Fri, 4 Dec 2020 12:59:42 +0100
Subject: added dummy ZMR & ERnB client

---
 .../auth/eidas/v2/dao/InitialSearchResult.java     |  12 --
 .../eidas/v2/dao/MergedRegisterSearchResult.java   |  16 ++
 .../modules/auth/eidas/v2/dao/RegisterResult.java  |  59 +++++++
 .../modules/auth/eidas/v2/dao/SimpleEidasData.java |  52 ++++++
 .../auth/eidas/v2/ernb/DummyErnbClient.java        |  49 ++++++
 .../modules/auth/eidas/v2/ernb/IErnbClient.java    |  12 ++
 .../v2/exception/ManualFixNecessaryException.java  |   6 +-
 .../eidas/v2/handler/AbstractEidProcessor.java     | 115 +++----------
 .../ICountrySpecificDetailSearchProcessor.java     |   6 +-
 .../auth/eidas/v2/tasks/InitialSearchTask.java     | 189 +++++++++++++++------
 .../auth/eidas/v2/utils/EidasResponseUtils.java    | 168 ++++++++++++++++++
 .../modules/auth/eidas/v2/zmr/DummyZmrClient.java  |  49 ++++++
 .../modules/auth/eidas/v2/zmr/IZmrClient.java      |  12 ++
 .../src/main/resources/eidas_v2_auth.beans.xml     |   6 +
 14 files changed, 584 insertions(+), 167 deletions(-)
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/InitialSearchResult.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/MergedRegisterSearchResult.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/RegisterResult.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleEidasData.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernb/DummyErnbClient.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernb/IErnbClient.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/DummyZmrClient.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/IZmrClient.java

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/InitialSearchResult.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/InitialSearchResult.java
deleted file mode 100644
index 8fe69414..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/InitialSearchResult.java
+++ /dev/null
@@ -1,12 +0,0 @@
-package at.asitplus.eidas.specific.modules.auth.eidas.v2.dao;
-
-public class InitialSearchResult {
-
-  int resultsZmr;
-  int resultsErnb;
-
-  public int getResultCount() {
-    return resultsErnb + resultsZmr;
-  }
-
-}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/MergedRegisterSearchResult.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/MergedRegisterSearchResult.java
new file mode 100644
index 00000000..bc5b358d
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/MergedRegisterSearchResult.java
@@ -0,0 +1,16 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.dao;
+
+import lombok.Data;
+
+import java.util.ArrayList;
+
+@Data public class MergedRegisterSearchResult {
+
+  ArrayList<RegisterResult> resultsZmr = new ArrayList<>();
+  ArrayList<RegisterResult> resultsErnb = new ArrayList<>();
+
+  public int getResultCount() {
+    return resultsZmr.size() + resultsErnb.size();
+  }
+
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/RegisterResult.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/RegisterResult.java
new file mode 100644
index 00000000..9509e7de
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/RegisterResult.java
@@ -0,0 +1,59 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.dao;
+
+import at.gv.e_government.reference.namespace.persondata._20020228.PostalAddressType;
+import lombok.Data;
+
+@Data public class RegisterResult {
+
+  // MDS
+  private String pseudonym = null;
+  private String givenName = null;
+  private String familyName = null;
+  private String dateOfBirth = null;
+
+  // additional attributes
+  private String placeOfBirth = null;
+  private String birthName = null;
+  private String taxNumber = null;
+  private PostalAddressType address = null;
+
+  /**
+   * Register search result.
+   * @param pseudonym The pseudonym
+   * @param givenName The givenName
+   * @param familyName The familyName
+   * @param dateOfBirth The dateOfBirth
+   * @param placeOfBirth The placeOfBirth
+   */
+  public RegisterResult(String pseudonym, String givenName, String familyName, String dateOfBirth,
+                        String placeOfBirth) {
+    this.pseudonym = pseudonym;
+    this.givenName = givenName;
+    this.familyName = familyName;
+    this.dateOfBirth = dateOfBirth;
+    this.placeOfBirth = placeOfBirth;
+  }
+
+  /**
+   * Register search result.
+   * @param pseudonym The pseudonym
+   * @param givenName The givenName
+   * @param familyName The familyName
+   * @param dateOfBirth The dateOfBirth
+   * @param placeOfBirth The placeOfBirth
+   * @param birthName The birthName
+   * @param taxNumber The taxNumber
+   * @param address The address
+   */
+  public RegisterResult(String pseudonym, String givenName, String familyName, String dateOfBirth,
+                        String placeOfBirth, String birthName, String taxNumber, PostalAddressType address) {
+    this.pseudonym = pseudonym;
+    this.givenName = givenName;
+    this.familyName = familyName;
+    this.dateOfBirth = dateOfBirth;
+    this.placeOfBirth = placeOfBirth;
+    this.birthName = birthName;
+    this.taxNumber = taxNumber;
+    this.address = address;
+  }
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleEidasData.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleEidasData.java
new file mode 100644
index 00000000..0b116bfb
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleEidasData.java
@@ -0,0 +1,52 @@
+/*
+ * Copyright 2018 A-SIT Plus GmbH
+ * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
+ * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
+ *
+ * Licensed under the EUPL, Version 1.2 or - as soon they will be approved by
+ * the European Commission - subsequent versions of the EUPL (the "License");
+ * You may not use this work except in compliance with the License.
+ * You may obtain a copy of the License at:
+ * https://joinup.ec.europa.eu/news/understanding-eupl-v12
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" basis,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ *
+ * This product combines work with different licenses. See the "NOTICE" text
+ * file for details on the various modules and licenses.
+ * The "NOTICE" text file is part of the distribution. Any derivative works
+ * that you distribute must include a readable copy of the "NOTICE" text file.
+ */
+
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.dao;
+
+import at.gv.e_government.reference.namespace.persondata._20020228.PostalAddressType;
+import lombok.Data;
+import org.joda.time.DateTime;
+
+import java.text.SimpleDateFormat;
+
+@Data public class SimpleEidasData {
+
+  private String citizenCountryCode = null;
+
+  // MDS
+  private String pseudonym = null;
+  private String givenName = null;
+  private String familyName = null;
+  private DateTime dateOfBirth = null;
+
+  // additional attributes
+  private String placeOfBirth = null;
+  private String birthName = null;
+  private PostalAddressType address = null;
+  private String taxNumber;
+
+  public String getFormatedDateOfBirth() {
+    return new SimpleDateFormat("yyyy-MM-dd").format(dateOfBirth.toDate());
+  }
+
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernb/DummyErnbClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernb/DummyErnbClient.java
new file mode 100644
index 00000000..8b2379bf
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernb/DummyErnbClient.java
@@ -0,0 +1,49 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.ernb;
+
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
+import org.springframework.stereotype.Service;
+
+import java.util.ArrayList;
+
+@Service("ErnbClientForeIDAS")
+public class DummyErnbClient implements IErnbClient {
+
+  @Override
+  public ArrayList<RegisterResult> searchWithPersonIdentifer(String personIdentifer) {
+    switch (personIdentifer) {
+      case "a12345":
+      case "a12345-":
+        return result1();
+      case "a123456":
+        return result2();
+      default:
+        return resultEmpty();
+    }
+  }
+
+  @Override
+  public ArrayList<RegisterResult> searchWithMds(String givenName, String familyName, String dateOfBirth) {
+    return resultEmpty();//TODO will I only receive matches where all three values match perfectly?
+  }
+
+  private ArrayList<RegisterResult> resultEmpty() {
+    return new ArrayList<RegisterResult>();//Nobody found
+  }
+
+  private ArrayList<RegisterResult> result1() {
+    ArrayList<RegisterResult> results = new ArrayList<>();
+    RegisterResult result1 = new RegisterResult("a12345", "Tom", "Mustermann", "1950-01-01", "Wien");
+    results.add(result1);
+    RegisterResult result2 = new RegisterResult("a12345-", "Tom", "Mustermann", "1950-01-01", "Wien");
+    results.add(result2);
+    return results;
+  }
+
+  private ArrayList<RegisterResult> result2() {
+    ArrayList<RegisterResult> results = new ArrayList<>();
+    RegisterResult result = new RegisterResult("a123456", "Max", "Mustermann", "2000-01-01", "Wien");
+    results.add(result);
+    return results;
+  }
+
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernb/IErnbClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernb/IErnbClient.java
new file mode 100644
index 00000000..4873b939
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernb/IErnbClient.java
@@ -0,0 +1,12 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.ernb;
+
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
+
+import java.util.ArrayList;
+
+public interface IErnbClient {
+
+  ArrayList<RegisterResult> searchWithPersonIdentifer(String personIdentifer);
+
+  ArrayList<RegisterResult> searchWithMds(String givenName, String familyName, String dateOfBirth);
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/exception/ManualFixNecessaryException.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/exception/ManualFixNecessaryException.java
index f3916ed6..c22e8135 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/exception/ManualFixNecessaryException.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/exception/ManualFixNecessaryException.java
@@ -23,18 +23,16 @@
 
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.exception;
 
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.ErnbEidData;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
 
 public class ManualFixNecessaryException extends EidasSAuthenticationException {
   private static final long serialVersionUID = 1L;
 
   public ManualFixNecessaryException(String personIdentifier) {
     super("eidas.00", new Object[] { personIdentifier });//TODO "eidas.00"
-
   }
 
-  public ManualFixNecessaryException(ErnbEidData eidData) {
-
+  public ManualFixNecessaryException(SimpleEidasData eidData) {
     super("eidas.00", new Object[] { eidData.getPseudonym() });//TODO "eidas.00"   => what info to pass???
   }
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/AbstractEidProcessor.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/AbstractEidProcessor.java
index 42dbfeac..3691ee47 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/AbstractEidProcessor.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/AbstractEidProcessor.java
@@ -23,6 +23,7 @@
 
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.handler;
 
+
 import java.util.Map;
 import java.util.regex.Matcher;
 import java.util.regex.Pattern;
@@ -52,7 +53,6 @@ import eu.eidas.auth.commons.attribute.AttributeDefinition;
 import eu.eidas.auth.commons.attribute.ImmutableAttributeMap;
 import eu.eidas.auth.commons.light.impl.LightRequest.Builder;
 import eu.eidas.auth.commons.protocol.eidas.SpType;
-import eu.eidas.auth.commons.protocol.eidas.impl.PostalAddress;
 
 public abstract class AbstractEidProcessor implements INationalEidProcessor {
   private static final Logger log = LoggerFactory.getLogger(AbstractEidProcessor.class);
@@ -68,7 +68,6 @@ public abstract class AbstractEidProcessor implements INationalEidProcessor {
     buildLevelOfAssurance(pendingReq.getServiceProviderConfiguration(), authnRequestBuilder);
     buildProviderNameAttribute(pendingReq, authnRequestBuilder);
     buildRequestedAttributes(authnRequestBuilder);
-
   }
 
 
@@ -94,13 +93,12 @@ public abstract class AbstractEidProcessor implements INationalEidProcessor {
     result.setAddress(processAddress(eidasAttrMap.get(Constants.eIDAS_ATTR_CURRENTADDRESS)));
 
     return result;
-
   }
 
-  
+
   /**
    * Get a Map of country-specific requested attributes.
-   * 
+   *
    * @return
    */
   @NonNull
@@ -108,7 +106,7 @@ public abstract class AbstractEidProcessor implements INationalEidProcessor {
 
   /**
    * Post-Process the eIDAS CurrentAddress attribute.
-   * 
+   *
    * @param currentAddressObj eIDAS current address information
    * @return current address or null if no attribute is available
    * @throws EidPostProcessingException if post-processing fails
@@ -116,34 +114,12 @@ public abstract class AbstractEidProcessor implements INationalEidProcessor {
    */
   protected PostalAddressType processAddress(Object currentAddressObj) throws EidPostProcessingException,
       EidasAttributeException {
-
-    if (currentAddressObj != null) {
-      if (currentAddressObj instanceof PostalAddress) {
-        final PostalAddressType result = new PostalAddressType();
-        result.setPostalCode(((PostalAddress) currentAddressObj).getPostCode());
-        result.setMunicipality(((PostalAddress) currentAddressObj).getPostName());
-
-        // TODO: add more mappings
-        
-        return result;
-
-      } else {
-        log.warn("eIDAS attr: " + Constants.eIDAS_ATTR_CURRENTADDRESS + " is of WRONG type");
-        throw new EidasAttributeException(Constants.eIDAS_ATTR_CURRENTADDRESS);
-
-      }
-
-    } else {
-      log.debug("NO '" + Constants.eIDAS_ATTR_CURRENTADDRESS + "' attribute. Post-Processing skipped ... ");
-    }
-
-    return null;
-
+    return EidasResponseUtils.processAddress(currentAddressObj);
   }
 
   /**
    * Post-Process the eIDAS BirthName attribute.
-   * 
+   *
    * @param birthNameObj eIDAS birthname information
    * @return birthName or null if no attribute is available
    * @throws EidPostProcessingException if post-processing fails
@@ -151,27 +127,12 @@ public abstract class AbstractEidProcessor implements INationalEidProcessor {
    */
   protected String processBirthName(Object birthNameObj) throws EidPostProcessingException,
       EidasAttributeException {
-    if (birthNameObj != null) {
-      if (birthNameObj instanceof String) {
-        return (String) birthNameObj;
-
-      } else {
-        log.warn("eIDAS attr: " + Constants.eIDAS_ATTR_BIRTHNAME + " is of WRONG type");
-        throw new EidasAttributeException(Constants.eIDAS_ATTR_BIRTHNAME);
-
-      }
-
-    } else {
-      log.debug("NO '" + Constants.eIDAS_ATTR_BIRTHNAME + "' attribute. Post-Processing skipped ... ");
-    }
-
-    return null;
-
+    return EidasResponseUtils.processBirthName(birthNameObj);
   }
 
   /**
    * Post-Process the eIDAS PlaceOfBirth attribute.
-   * 
+   *
    * @param placeOfBirthObj eIDAS Place-of-Birth information
    * @return place of Birth or null if no attribute is available
    * @throws EidPostProcessingException if post-processing fails
@@ -179,27 +140,12 @@ public abstract class AbstractEidProcessor implements INationalEidProcessor {
    */
   protected String processPlaceOfBirth(Object placeOfBirthObj) throws EidPostProcessingException,
       EidasAttributeException {
-    if (placeOfBirthObj != null) {
-      if (placeOfBirthObj instanceof String) {
-        return (String) placeOfBirthObj;
-
-      } else {
-        log.warn("eIDAS attr: " + Constants.eIDAS_ATTR_PLACEOFBIRTH + " is of WRONG type");
-        throw new EidasAttributeException(Constants.eIDAS_ATTR_PLACEOFBIRTH);
-
-      }
-
-    } else {
-      log.debug("NO '" + Constants.eIDAS_ATTR_PLACEOFBIRTH + "' attribute. Post-Processing skipped ... ");
-    }
-
-    return null;
-
+    return EidasResponseUtils.processPlaceOfBirth(placeOfBirthObj);
   }
 
   /**
    * Post-Process the eIDAS DateOfBirth attribute.
-   * 
+   *
    * @param dateOfBirthObj eIDAS date-of-birth attribute information
    * @return formated user's date-of-birth
    * @throws EidasAttributeException    if NO attribute is available
@@ -207,17 +153,12 @@ public abstract class AbstractEidProcessor implements INationalEidProcessor {
    */
   protected DateTime processDateOfBirth(Object dateOfBirthObj) throws EidPostProcessingException,
       EidasAttributeException {
-    if (dateOfBirthObj == null || !(dateOfBirthObj instanceof DateTime)) {
-      throw new EidasAttributeException(Constants.eIDAS_ATTR_DATEOFBIRTH);
-    }
-
-    return (DateTime) dateOfBirthObj;
-
+    return EidasResponseUtils.processDateOfBirth(dateOfBirthObj);
   }
 
   /**
    * Post-Process the eIDAS GivenName attribute.
-   * 
+   *
    * @param givenNameObj eIDAS givenName attribute information
    * @return formated user's givenname
    * @throws EidasAttributeException    if NO attribute is available
@@ -225,17 +166,12 @@ public abstract class AbstractEidProcessor implements INationalEidProcessor {
    */
   protected String processGivenName(Object givenNameObj) throws EidPostProcessingException,
       EidasAttributeException {
-    if (givenNameObj == null || !(givenNameObj instanceof String)) {
-      throw new EidasAttributeException(Constants.eIDAS_ATTR_CURRENTGIVENNAME);
-    }
-
-    return (String) givenNameObj;
-
+    return EidasResponseUtils.processGivenName(givenNameObj);
   }
 
   /**
    * Post-Process the eIDAS FamilyName attribute.
-   * 
+   *
    * @param familyNameObj eIDAS familyName attribute information
    * @return formated user's familyname
    * @throws EidasAttributeException    if NO attribute is available
@@ -243,17 +179,12 @@ public abstract class AbstractEidProcessor implements INationalEidProcessor {
    */
   protected String processFamilyName(Object familyNameObj) throws EidPostProcessingException,
       EidasAttributeException {
-    if (familyNameObj == null || !(familyNameObj instanceof String)) {
-      throw new EidasAttributeException(Constants.eIDAS_ATTR_CURRENTFAMILYNAME);
-    }
-
-    return (String) familyNameObj;
-
+    return EidasResponseUtils.processFamilyName(familyNameObj);
   }
 
   /**
    * Post-Process the eIDAS pseudonym to ERnB unique identifier.
-   * 
+   *
    * @param personalIdObj eIDAS PersonalIdentifierAttribute
    * @return Unique personal identifier without country-code information
    * @throws EidasAttributeException    if NO attribute is available
@@ -261,15 +192,7 @@ public abstract class AbstractEidProcessor implements INationalEidProcessor {
    */
   protected String processPseudonym(Object personalIdObj) throws EidPostProcessingException,
       EidasAttributeException {
-    if (personalIdObj == null || !(personalIdObj instanceof String)) {
-      throw new EidasAttributeException(Constants.eIDAS_ATTR_PERSONALIDENTIFIER);
-    }
-
-    final Triple<String, String, String> eIdentifier =
-        EidasResponseUtils.parseEidasPersonalIdentifier((String) personalIdObj);
-
-    return eIdentifier.getThird();
-
+    return EidasResponseUtils.processPseudonym(personalIdObj);
   }
 
   private void buildRequestedAttributes(Builder authnRequestBuilder) {
@@ -335,8 +258,8 @@ public abstract class AbstractEidProcessor implements INationalEidProcessor {
         final String providerName = pendingReq.getRawData(Constants.DATA_PROVIDERNAME, String.class);
         if (StringUtils.isNotEmpty(providerName)
             && basicConfig.getBasicConfigurationBoolean(
-                Constants.CONIG_PROPS_EIDAS_NODE_WORKAROUND_ADD_ALWAYS_PROVIDERNAME,
-                false)) {
+            Constants.CONIG_PROPS_EIDAS_NODE_WORKAROUND_ADD_ALWAYS_PROVIDERNAME,
+            false)) {
           authnRequestBuilder.providerName(providerName);
 
         }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ICountrySpecificDetailSearchProcessor.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ICountrySpecificDetailSearchProcessor.java
index c35f6e16..13d9117d 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ICountrySpecificDetailSearchProcessor.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ICountrySpecificDetailSearchProcessor.java
@@ -24,7 +24,7 @@
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.handler;
 
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.CountrySpecificDetailSearchResult;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.ErnbEidData;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
 
 public interface ICountrySpecificDetailSearchProcessor {
 
@@ -52,7 +52,7 @@ public interface ICountrySpecificDetailSearchProcessor {
    * @param eidData eID data
    * @return true if this implementation can handle the country, otherwise false
    */
-  boolean canHandle(String countryCode, ErnbEidData eidData);
+  boolean canHandle(String countryCode, SimpleEidasData eidData);
 
-  CountrySpecificDetailSearchResult search(ErnbEidData eidData);
+  CountrySpecificDetailSearchResult search(SimpleEidasData eidData);
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
index d9f70a81..bcada70f 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
@@ -23,40 +23,48 @@
 
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks;
 
+import java.util.ArrayList;
+import java.util.Collections;
+import java.util.HashMap;
+import java.util.Iterator;
+import java.util.List;
+import java.util.Map;
+
+import javax.annotation.PostConstruct;
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+
+import org.apache.commons.lang3.StringUtils;
+import org.joda.time.DateTime;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.context.ApplicationContext;
+import org.springframework.stereotype.Component;
+
+import com.google.common.collect.ImmutableMap;
+import com.google.common.collect.ImmutableSet;
+
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.CountrySpecificDetailSearchResult;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.ErnbEidData;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.InitialSearchResult;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.MergedRegisterSearchResult;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernb.IErnbClient;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidPostProcessingException;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidasAttributeException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.ManualFixNecessaryException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.ICountrySpecificDetailSearchProcessor;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.ICcSpecificEidProcessingService;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.EidasResponseUtils;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.IZmrClient;
 import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
 import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
+import at.gv.egiz.eaaf.core.impl.data.Triple;
 import at.gv.egiz.eaaf.core.impl.idp.auth.data.AuthProcessDataWrapper;
 import at.gv.egiz.eaaf.core.impl.idp.auth.modules.AbstractAuthServletTask;
-import com.google.common.collect.ImmutableMap;
-import com.google.common.collect.ImmutableSet;
 import eu.eidas.auth.commons.attribute.AttributeDefinition;
 import eu.eidas.auth.commons.attribute.AttributeValue;
 import eu.eidas.auth.commons.light.ILightResponse;
 import eu.eidas.auth.commons.protocol.eidas.impl.PostalAddress;
 import lombok.extern.slf4j.Slf4j;
-import org.apache.commons.lang3.StringUtils;
-import org.joda.time.DateTime;
-import org.springframework.beans.factory.annotation.Autowired;
-import org.springframework.context.ApplicationContext;
-import org.springframework.stereotype.Component;
-
-import javax.annotation.PostConstruct;
-import javax.servlet.http.HttpServletRequest;
-import javax.servlet.http.HttpServletResponse;
-import java.util.ArrayList;
-import java.util.Collections;
-import java.util.HashMap;
-import java.util.Iterator;
-import java.util.List;
-import java.util.Map;
 
 /**
  * Task that creates the IdentityLink for an eIDAS authenticated person.
@@ -75,13 +83,19 @@ public class InitialSearchTask extends AbstractAuthServletTask {
   //  private IConfiguration basicConfig;
   //  @Autowired
   //  private SzrClient szrClient;
-  @Autowired
-  private ICcSpecificEidProcessingService eidPostProcessor;
+  //  @Autowired
+  //  private ICcSpecificEidProcessingService eidPostProcessor;
 
   //  private static final String EID_STATUS = "urn:eidgvat:eid.status.eidas";
   @Autowired
   private ApplicationContext context;
 
+  @Autowired
+  private IErnbClient ernbClient;
+
+  @Autowired
+  private IZmrClient zmrClient;
+
   @PostConstruct
   private void initialize() {
     log.debug("Initialize country specific detail search services ... ");
@@ -127,36 +141,82 @@ public class InitialSearchTask extends AbstractAuthServletTask {
           eidasResponse.getAttributes().getAttributeMap());
 
       // post-process eIDAS attributes
-      final ErnbEidData eidData = eidPostProcessor.postProcess(simpleAttrMap);
-
-      String personIdentifier = eidData.getPseudonym();
-
-      //search in register(step 2)
-      InitialSearchResult result = searchInZmrAndErnp(personIdentifier);
-      switch (result.getResultCount()) {
-        case 0:
-          step5(result, eidData);
-          break;
-        case 1:
-          step3(result, eidData);
-          break;
-        default://should not happen
-          throw new TaskExecutionException(pendingReq, "Initial search - Kitt Process necessary.",
-              new ManualFixNecessaryException(personIdentifier));
-      }
+      final SimpleEidasData eidData = convertSimpleMapToSimpleData(simpleAttrMap);
+      step2(eidData);
     } catch (final Exception e) {
       log.error("Initial search FAILED.", e);
       throw new TaskExecutionException(pendingReq, "Initial search FAILED.", e);
     }
   }
 
-  private void step3(InitialSearchResult result, ErnbEidData eidData) {
+  private void step2(SimpleEidasData eidData) throws TaskExecutionException {
+    String personIdentifier = eidData.getPseudonym();
+    //search in register(step 2)
+    MergedRegisterSearchResult result = searchInZmrAndErnp(personIdentifier);
+    switch (result.getResultCount()) {
+      case 0:
+        step5(result, eidData);
+        break;
+      case 1:
+        step3(result, eidData);
+        break;
+      default://should not happen
+        throw new TaskExecutionException(pendingReq, "Initial search - Kitt Process necessary.",
+            new ManualFixNecessaryException(personIdentifier));
+    }
+  }
+
+  private SimpleEidasData convertSimpleMapToSimpleData(Map<String, Object> eidasAttrMap)
+      throws EidasAttributeException, EidPostProcessingException {
+    SimpleEidasData simpleEidasData = new SimpleEidasData();
+
+    final Object eIdentifierObj = eidasAttrMap.get(Constants.eIDAS_ATTR_PERSONALIDENTIFIER);
+    final Triple<String, String, String> eIdentifier =
+        EidasResponseUtils.parseEidasPersonalIdentifier((String) eIdentifierObj);
+    simpleEidasData.setCitizenCountryCode(eIdentifier.getFirst());
+
+    // MDS attributes
+    simpleEidasData.setPseudonym(EidasResponseUtils.processPseudonym(
+        eidasAttrMap.get(Constants.eIDAS_ATTR_PERSONALIDENTIFIER)));
+    simpleEidasData.setFamilyName(EidasResponseUtils.processFamilyName(
+        eidasAttrMap.get(Constants.eIDAS_ATTR_CURRENTFAMILYNAME)));
+    simpleEidasData.setGivenName(EidasResponseUtils.processGivenName(
+        eidasAttrMap.get(Constants.eIDAS_ATTR_CURRENTGIVENNAME)));
+    simpleEidasData.setDateOfBirth(EidasResponseUtils.processDateOfBirth(
+        eidasAttrMap.get(Constants.eIDAS_ATTR_DATEOFBIRTH)));
+
+    // additional attributes
+    simpleEidasData.setPlaceOfBirth(EidasResponseUtils.processPlaceOfBirth(
+        eidasAttrMap.get(Constants.eIDAS_ATTR_PLACEOFBIRTH)));
+    simpleEidasData.setBirthName(EidasResponseUtils.processBirthName(
+        eidasAttrMap.get(Constants.eIDAS_ATTR_BIRTHNAME)));
+    simpleEidasData.setAddress(EidasResponseUtils.processAddress(
+        eidasAttrMap.get(Constants.eIDAS_ATTR_CURRENTADDRESS)));
+
+    //TODO other additional attributes
+    return simpleEidasData;
+  }
+
+  private void step3(MergedRegisterSearchResult result, SimpleEidasData eidData) {
     //check if data from eidas authentication matches with data from register
-    //TODO
 
+    log.debug("Compare " + result + " with " + eidData);
+    //TODO check if data matches
+    boolean match = true;
+    if (match) {
+      return;
+    } else {
+      step4(result, eidData);
+    }
   }
 
-  private void step5(InitialSearchResult result, ErnbEidData eidData) throws TaskExecutionException {
+  private void step4(MergedRegisterSearchResult result, SimpleEidasData eidData) {
+    log.debug("Update " + result + " with " + eidData);
+    //TODO
+  }
+
+  private void step5(MergedRegisterSearchResult result, SimpleEidasData eidData)
+      throws TaskExecutionException {
     String citizenCountry = eidData.getCitizenCountryCode();
     ICountrySpecificDetailSearchProcessor foundHandler = null;
     for (final ICountrySpecificDetailSearchProcessor el : handlers) {
@@ -178,7 +238,8 @@ public class InitialSearchTask extends AbstractAuthServletTask {
   }
 
   private void step6(ICountrySpecificDetailSearchProcessor countrySpecificDetailSearchProcessor,
-                     InitialSearchResult initialSearchResult, ErnbEidData eidData) throws TaskExecutionException {
+                     MergedRegisterSearchResult initialSearchResult, SimpleEidasData eidData)
+      throws TaskExecutionException {
     //6 country specific search
     CountrySpecificDetailSearchResult countrySpecificDetailSearchResult =
         countrySpecificDetailSearchProcessor.search(eidData);
@@ -196,19 +257,40 @@ public class InitialSearchTask extends AbstractAuthServletTask {
     }
   }
 
-  private void step7a(InitialSearchResult initialSearchResult,
-                      CountrySpecificDetailSearchResult countrySpecificDetailSearchResult, ErnbEidData eidData) {
+  private void step7a(MergedRegisterSearchResult initialSearchResult,
+                      CountrySpecificDetailSearchResult countrySpecificDetailSearchResult, SimpleEidasData eidData) {
     //TODO automerge
-
+    log.debug("Automerge " + initialSearchResult + " with " + eidData + " " + countrySpecificDetailSearchResult);
   }
 
-  private void step8(InitialSearchResult initialSearchResult, ErnbEidData eidData) {
-    //TODO MDS Suche
+  private void step8(MergedRegisterSearchResult initialSearchResult, SimpleEidasData eidData) {
+    MergedRegisterSearchResult mdsSearchResult = new MergedRegisterSearchResult();
+
+    ArrayList<RegisterResult> resultsZmr =
+        zmrClient.searchWithMds(eidData.getGivenName(), eidData.getFamilyName(), eidData.getFormatedDateOfBirth());
+    mdsSearchResult.setResultsZmr(resultsZmr);
+
+    ArrayList<RegisterResult> resultsErnb =
+        ernbClient.searchWithMds(eidData.getGivenName(), eidData.getFamilyName(), eidData.getFormatedDateOfBirth());
+    mdsSearchResult.setResultsErnb(resultsErnb);
+
+    log.debug("Automerge " + initialSearchResult + " with " + eidData + " " + mdsSearchResult);
+    //TODO
+
   }
 
-  private InitialSearchResult searchInZmrAndErnp(String personIdentifier) {
-    //search TODO
-    return new InitialSearchResult();//TODO
+  private MergedRegisterSearchResult searchInZmrAndErnp(String personIdentifier) {
+    MergedRegisterSearchResult initialSearchResult = new MergedRegisterSearchResult();
+
+    ArrayList<RegisterResult> resultsZmr =
+        zmrClient.searchWithPersonIdentifer(personIdentifier);
+    initialSearchResult.setResultsZmr(resultsZmr);
+
+    ArrayList<RegisterResult> resultsErnb =
+        ernbClient.searchWithPersonIdentifer(personIdentifier);
+    initialSearchResult.setResultsErnb(resultsErnb);
+
+    return initialSearchResult;
   }
 
   private Map<String, Object> convertEidasAttrToSimpleMap(
@@ -241,7 +323,7 @@ public class InitialSearchTask extends AbstractAuthServletTask {
 
       } else {
         final List<String> natPersonIdObj = EidasResponseUtils
-            .translateStringListAttribute(el, attributeMap.get(el).asList());
+            .translateStringListAttribute(el, attributeMap.get(el));
         final String stringAttr = natPersonIdObj.get(0);
         if (StringUtils.isNotEmpty(stringAttr)) {
           result.put(el.getFriendlyName(), stringAttr);
@@ -250,9 +332,12 @@ public class InitialSearchTask extends AbstractAuthServletTask {
         } else {
           log.info("Ignore empty 'String' attribute");
         }
+
       }
     }
+
     log.debug("Receive #" + result.size() + " attributes with names: " + result.keySet().toString());
+
     return result;
   }
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/EidasResponseUtils.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/EidasResponseUtils.java
index c8c5a069..ea4a4c76 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/EidasResponseUtils.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/EidasResponseUtils.java
@@ -30,6 +30,9 @@ import java.util.regex.Pattern;
 
 import javax.annotation.Nullable;
 
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidPostProcessingException;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidasAttributeException;
+import at.gv.e_government.reference.namespace.persondata._20020228.PostalAddressType;
 import org.apache.commons.lang3.StringUtils;
 import org.joda.time.DateTime;
 import org.slf4j.Logger;
@@ -176,4 +179,169 @@ public class EidasResponseUtils {
 
   }
 
+  /**
+   * Post-Process the eIDAS CurrentAddress attribute.
+   *
+   * @param currentAddressObj eIDAS current address information
+   * @return current address or null if no attribute is available
+   * @throws EidPostProcessingException if post-processing fails
+   * @throws EidasAttributeException    if eIDAS attribute is of a wrong type
+   */
+  public static PostalAddressType processAddress(Object currentAddressObj) throws EidPostProcessingException,
+      EidasAttributeException {
+
+    if (currentAddressObj != null) {
+      if (currentAddressObj instanceof PostalAddress) {
+        final PostalAddressType result = new PostalAddressType();
+        result.setPostalCode(((PostalAddress) currentAddressObj).getPostCode());
+        result.setMunicipality(((PostalAddress) currentAddressObj).getPostName());
+
+        // TODO: add more mappings
+
+        return result;
+
+      } else {
+        log.warn("eIDAS attr: " + Constants.eIDAS_ATTR_CURRENTADDRESS + " is of WRONG type");
+        throw new EidasAttributeException(Constants.eIDAS_ATTR_CURRENTADDRESS);
+
+      }
+
+    } else {
+      log.debug("NO '" + Constants.eIDAS_ATTR_CURRENTADDRESS + "' attribute. Post-Processing skipped ... ");
+    }
+
+    return null;
+
+  }
+
+  /**
+   * Post-Process the eIDAS BirthName attribute.
+   *
+   * @param birthNameObj eIDAS birthname information
+   * @return birthName or null if no attribute is available
+   * @throws EidPostProcessingException if post-processing fails
+   * @throws EidasAttributeException    if eIDAS attribute is of a wrong type
+   */
+  public static String processBirthName(Object birthNameObj) throws EidPostProcessingException,
+      EidasAttributeException {
+    if (birthNameObj != null) {
+      if (birthNameObj instanceof String) {
+        return (String) birthNameObj;
+
+      } else {
+        log.warn("eIDAS attr: " + Constants.eIDAS_ATTR_BIRTHNAME + " is of WRONG type");
+        throw new EidasAttributeException(Constants.eIDAS_ATTR_BIRTHNAME);
+
+      }
+
+    } else {
+      log.debug("NO '" + Constants.eIDAS_ATTR_BIRTHNAME + "' attribute. Post-Processing skipped ... ");
+    }
+
+    return null;
+
+  }
+
+  /**
+   * Post-Process the eIDAS PlaceOfBirth attribute.
+   *
+   * @param placeOfBirthObj eIDAS Place-of-Birth information
+   * @return place of Birth or null if no attribute is available
+   * @throws EidPostProcessingException if post-processing fails
+   * @throws EidasAttributeException    if eIDAS attribute is of a wrong type
+   */
+  public static String processPlaceOfBirth(Object placeOfBirthObj) throws EidPostProcessingException,
+      EidasAttributeException {
+    if (placeOfBirthObj != null) {
+      if (placeOfBirthObj instanceof String) {
+        return (String) placeOfBirthObj;
+
+      } else {
+        log.warn("eIDAS attr: " + Constants.eIDAS_ATTR_PLACEOFBIRTH + " is of WRONG type");
+        throw new EidasAttributeException(Constants.eIDAS_ATTR_PLACEOFBIRTH);
+
+      }
+
+    } else {
+      log.debug("NO '" + Constants.eIDAS_ATTR_PLACEOFBIRTH + "' attribute. Post-Processing skipped ... ");
+    }
+
+    return null;
+
+  }
+
+  /**
+   * Post-Process the eIDAS DateOfBirth attribute.
+   *
+   * @param dateOfBirthObj eIDAS date-of-birth attribute information
+   * @return formated user's date-of-birth
+   * @throws EidasAttributeException    if NO attribute is available
+   * @throws EidPostProcessingException if post-processing fails
+   */
+  public static DateTime processDateOfBirth(Object dateOfBirthObj) throws EidPostProcessingException,
+      EidasAttributeException {
+    if (dateOfBirthObj == null || !(dateOfBirthObj instanceof DateTime)) {
+      throw new EidasAttributeException(Constants.eIDAS_ATTR_DATEOFBIRTH);
+    }
+
+    return (DateTime) dateOfBirthObj;
+
+  }
+
+  /**
+   * Post-Process the eIDAS GivenName attribute.
+   *
+   * @param givenNameObj eIDAS givenName attribute information
+   * @return formated user's givenname
+   * @throws EidasAttributeException    if NO attribute is available
+   * @throws EidPostProcessingException if post-processing fails
+   */
+  public static String processGivenName(Object givenNameObj) throws EidPostProcessingException,
+      EidasAttributeException {
+    if (givenNameObj == null || !(givenNameObj instanceof String)) {
+      throw new EidasAttributeException(Constants.eIDAS_ATTR_CURRENTGIVENNAME);
+    }
+
+    return (String) givenNameObj;
+
+  }
+
+  /**
+   * Post-Process the eIDAS FamilyName attribute.
+   *
+   * @param familyNameObj eIDAS familyName attribute information
+   * @return formated user's familyname
+   * @throws EidasAttributeException    if NO attribute is available
+   * @throws EidPostProcessingException if post-processing fails
+   */
+  public static String processFamilyName(Object familyNameObj) throws EidPostProcessingException,
+      EidasAttributeException {
+    if (familyNameObj == null || !(familyNameObj instanceof String)) {
+      throw new EidasAttributeException(Constants.eIDAS_ATTR_CURRENTFAMILYNAME);
+    }
+
+    return (String) familyNameObj;
+
+  }
+
+  /**
+   * Post-Process the eIDAS pseudonym to ERnB unique identifier.
+   *
+   * @param personalIdObj eIDAS PersonalIdentifierAttribute
+   * @return Unique personal identifier without country-code information
+   * @throws EidasAttributeException    if NO attribute is available
+   * @throws EidPostProcessingException if post-processing fails
+   */
+  public static String processPseudonym(Object personalIdObj) throws EidPostProcessingException,
+      EidasAttributeException {
+    if (personalIdObj == null || !(personalIdObj instanceof String)) {
+      throw new EidasAttributeException(Constants.eIDAS_ATTR_PERSONALIDENTIFIER);
+    }
+
+    final Triple<String, String, String> eIdentifier =
+        EidasResponseUtils.parseEidasPersonalIdentifier((String) personalIdObj);
+
+    return eIdentifier.getThird();
+
+  }
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/DummyZmrClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/DummyZmrClient.java
new file mode 100644
index 00000000..9a7cc9b3
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/DummyZmrClient.java
@@ -0,0 +1,49 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr;
+
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
+import org.springframework.stereotype.Service;
+
+import java.util.ArrayList;
+
+@Service("ZmrClientForeIDAS")
+public class DummyZmrClient implements IZmrClient {
+
+  @Override
+  public ArrayList<RegisterResult> searchWithPersonIdentifer(String personIdentifer) {
+    switch (personIdentifer) {
+      case "a12345":
+      case "a12345-":
+        return result1();
+      case "a123456":
+        return result2();
+      default:
+        return resultEmpty();
+    }
+  }
+
+  @Override
+  public ArrayList<RegisterResult> searchWithMds(String givenName, String familyName, String dateOfBirth) {
+    return resultEmpty();//TODO will I only receive matches where all three values match perfectly?
+  }
+
+  private ArrayList<RegisterResult> resultEmpty() {
+    return new ArrayList<RegisterResult>();//Nobody found
+  }
+
+  private ArrayList<RegisterResult> result1() {
+    ArrayList<RegisterResult> results = new ArrayList<>();
+    RegisterResult result1 = new RegisterResult("12345", "Tom", "Mustermann", "1950-01-01", "Wien");
+    results.add(result1);
+    RegisterResult result2 = new RegisterResult("12345-", "Tom", "Mustermann", "1950-01-01", "Wien");
+    results.add(result2);
+    return results;
+  }
+
+  private ArrayList<RegisterResult> result2() {
+    ArrayList<RegisterResult> results = new ArrayList<>();
+    RegisterResult result = new RegisterResult("123456", "Max", "Mustermann", "2000-01-01", "Wien");
+    results.add(result);
+    return results;
+  }
+
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/IZmrClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/IZmrClient.java
new file mode 100644
index 00000000..1f7e4949
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/IZmrClient.java
@@ -0,0 +1,12 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr;
+
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
+
+import java.util.ArrayList;
+
+public interface IZmrClient {
+
+  ArrayList<RegisterResult> searchWithPersonIdentifer(String personIdentifer);
+
+  ArrayList<RegisterResult> searchWithMds(String givenName, String familyName, String dateOfBirth);
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml
index 9c28bf07..0f6277c0 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml
@@ -17,6 +17,12 @@
   <bean id="SZRClientForeIDAS"
     class="at.asitplus.eidas.specific.modules.auth.eidas.v2.szr.SzrClient" />
 
+  <bean id="ErnbClientForeIDAS"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.ernb.DummyErnbClient" />
+
+  <bean id="ZmrClientForeIDAS"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.DummyZmrClient" />
+
   <bean id="specificConnectorAttributesFile"
     class="java.lang.String">
     <constructor-arg value="eidas-attributes.xml" />
-- 
cgit v1.2.3


From b02cb48667a1ffc95b7e104c3f287bfa1a384123 Mon Sep 17 00:00:00 2001
From: Alexander Marsalek <amarsalek@iaik.tugraz.at>
Date: Wed, 9 Dec 2020 08:53:28 +0100
Subject: added (non working) test

---
 .../auth/eidas/v2/tasks/InitialSearchTask.java     |  19 ++-
 .../v2/test/tasks/InitialSearchTaskFirstTest.java  | 160 +++++++++++++++++++++
 .../resources/SpringTest-context_tasks_test.xml    |  10 ++
 3 files changed, 178 insertions(+), 11 deletions(-)
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
index bcada70f..3b573851 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
@@ -67,7 +67,7 @@ import eu.eidas.auth.commons.protocol.eidas.impl.PostalAddress;
 import lombok.extern.slf4j.Slf4j;
 
 /**
- * Task that creates the IdentityLink for an eIDAS authenticated person.
+ * Task that searches ErnB and ZMR before adding person to SZR.
  *
  * @author tlenz
  */
@@ -153,16 +153,13 @@ public class InitialSearchTask extends AbstractAuthServletTask {
     String personIdentifier = eidData.getPseudonym();
     //search in register(step 2)
     MergedRegisterSearchResult result = searchInZmrAndErnp(personIdentifier);
-    switch (result.getResultCount()) {
-      case 0:
-        step5(result, eidData);
-        break;
-      case 1:
-        step3(result, eidData);
-        break;
-      default://should not happen
-        throw new TaskExecutionException(pendingReq, "Initial search - Kitt Process necessary.",
-            new ManualFixNecessaryException(personIdentifier));
+    if (result.getResultCount() == 0) {
+      step5(result, eidData);
+    } else if (result.getResultCount() == 1) {
+      step3(result, eidData);
+    } else if (result.getResultCount() > 1) {
+      throw new TaskExecutionException(pendingReq, "Initial search - Kitt Process necessary.",
+          new ManualFixNecessaryException(personIdentifier));
     }
   }
 
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
new file mode 100644
index 00000000..30f88ec8
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
@@ -0,0 +1,160 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.test.tasks;
+
+import at.asitplus.eidas.specific.connector.MsEidasNodeConstants;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.InitialSearchTask;
+import at.gv.egiz.eaaf.core.api.idp.IConfiguration;
+import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
+import at.gv.egiz.eaaf.core.exceptions.EaafStorageException;
+import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
+import at.gv.egiz.eaaf.core.impl.idp.auth.data.AuthProcessDataWrapper;
+import at.gv.egiz.eaaf.core.impl.idp.module.test.DummySpConfiguration;
+import at.gv.egiz.eaaf.core.impl.idp.module.test.TestRequestImpl;
+import at.gv.egiz.eaaf.core.impl.idp.process.ExecutionContextImpl;
+import eu.eidas.auth.commons.attribute.AttributeDefinition;
+import eu.eidas.auth.commons.attribute.ImmutableAttributeMap;
+import eu.eidas.auth.commons.attribute.PersonType;
+import eu.eidas.auth.commons.protocol.impl.AuthenticationResponse;
+import lombok.val;
+import org.apache.commons.lang3.RandomStringUtils;
+import org.jetbrains.annotations.NotNull;
+import org.junit.Before;
+import org.junit.BeforeClass;
+import org.junit.Test;
+import org.junit.runner.RunWith;
+import org.mockito.ArgumentMatchers;
+import org.mockito.Mock;
+import org.powermock.api.mockito.PowerMockito;
+import org.powermock.core.classloader.annotations.PrepareForTest;
+import org.powermock.modules.junit4.PowerMockRunner;
+import org.powermock.modules.junit4.PowerMockRunnerDelegate;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.mock.web.MockHttpServletRequest;
+import org.springframework.mock.web.MockHttpServletResponse;
+import org.springframework.test.annotation.DirtiesContext;
+import org.springframework.test.annotation.DirtiesContext.ClassMode;
+import org.springframework.test.context.ContextConfiguration;
+import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
+import org.springframework.web.context.request.RequestContextHolder;
+import org.springframework.web.context.request.ServletRequestAttributes;
+
+import javax.xml.namespace.QName;
+import java.io.IOException;
+import java.net.URI;
+import java.net.URISyntaxException;
+
+import static org.mockito.Mockito.times;
+import static org.powermock.api.mockito.PowerMockito.verifyPrivate;
+
+@RunWith(SpringJUnit4ClassRunner.class)
+//@RunWith(PowerMockRunner.class)
+//@PowerMockRunnerDelegate(SpringJUnit4ClassRunner.class)
+@ContextConfiguration("/SpringTest-context_tasks_test.xml")
+@DirtiesContext(classMode = ClassMode.BEFORE_CLASS)
+//@RunWith(PowerMockRunner.class)
+//@PrepareForTest(InitialSearchTaskFirstTest.class)
+public class InitialSearchTaskFirstTest {
+
+  @Autowired(required = true)
+  @Mock
+  private InitialSearchTask task;
+
+  @Autowired(required = true)
+  private IConfiguration basicConfig;
+
+  final ExecutionContext executionContext = new ExecutionContextImpl();
+  private MockHttpServletRequest httpReq;
+  private MockHttpServletResponse httpResp;
+  private TestRequestImpl pendingReq;
+  private DummySpConfiguration oaParam;
+
+  /**
+   * jUnit class initializer.
+   *  
+   * @throws IOException In case of an error
+   */
+  @BeforeClass
+  public static void classInitializer() throws IOException {
+    final String current = new java.io.File(".").toURI().toString();
+    System.setProperty("eidas.ms.configuration", current
+        + "src/test/resources/config/junit_config_1.properties");
+
+  }
+
+  /**
+   * jUnit test set-up.
+   * 
+   */
+  @Before
+  public void setUp() throws URISyntaxException, EaafStorageException {
+
+    task = PowerMockito.spy(task);
+
+    httpReq = new MockHttpServletRequest("POST", "https://localhost/authhandler");
+    httpResp = new MockHttpServletResponse();
+    RequestContextHolder.resetRequestAttributes();
+    RequestContextHolder.setRequestAttributes(new ServletRequestAttributes(httpReq, httpResp));
+
+    final AuthenticationResponse response = buildDummyAuthResponse();
+    pendingReq = new TestRequestImpl();
+    pendingReq.getSessionData(AuthProcessDataWrapper.class)
+        .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
+
+  }
+  
+  @Test
+  @DirtiesContext
+  public void testInitialSearch() throws Exception {
+
+    try {
+      task.execute(pendingReq, executionContext);
+
+    } catch (final TaskExecutionException e) {
+      // forward URL is not set in example config
+      //      org.springframework.util.Assert.isInstanceOf(EaafConfigurationException.class, e.getOriginalException(),
+      //          "Wrong exception");
+      //      Assert.assertEquals("wrong errorCode", "config.08", ((EaafException) e.getOriginalException())
+      //          .getErrorId());
+      //      Assert.assertEquals("wrong parameter size", 1, ((EaafException) e.getOriginalException())
+      //          .getParams().length);
+      //      Assert.assertEquals("wrong errorMsg", Constants.CONIG_PROPS_EIDAS_NODE_FORWARD_URL, ((EaafException) e
+      //          .getOriginalException()).getParams()[0]);
+
+    }
+//    verifyPrivate(task, times(1)).invoke("step2", ArgumentMatchers.any(SimpleEidasData.class));
+//    verifyPrivate(task, times(0)).invoke("step3", ArgumentMatchers.any());
+//    verifyPrivate(task, times(0)).invoke("step4", ArgumentMatchers.any());
+
+  }
+
+
+  @NotNull
+  private AuthenticationResponse buildDummyAuthResponse() throws URISyntaxException {
+    final AttributeDefinition attributeDef = AttributeDefinition.builder()
+        .friendlyName(Constants.eIDAS_ATTR_PERSONALIDENTIFIER).nameUri(new URI("ad", "sd", "ff"))
+        .personType(PersonType.LEGAL_PERSON).xmlType(new QName("http://saf", "as", "af"))
+        .attributeValueMarshaller("eu.eidas.auth.commons.attribute.impl.LiteralStringAttributeValueMarshaller").build();
+    final AttributeDefinition attributeDef2 = AttributeDefinition.builder()
+        .friendlyName(Constants.eIDAS_ATTR_CURRENTFAMILYNAME).nameUri(new URI("ad", "sd", "fff"))
+        .personType(PersonType.LEGAL_PERSON).xmlType(new QName("http://saf", "as", "aff"))
+        .attributeValueMarshaller("eu.eidas.auth.commons.attribute.impl.LiteralStringAttributeValueMarshaller").build();
+    final AttributeDefinition attributeDef3 = AttributeDefinition.builder()
+        .friendlyName(Constants.eIDAS_ATTR_CURRENTGIVENNAME).nameUri(new URI("ad", "sd", "ffff"))
+        .personType(PersonType.LEGAL_PERSON).xmlType(new QName("http://saf", "as", "afff"))
+        .attributeValueMarshaller("eu.eidas.auth.commons.attribute.impl.LiteralStringAttributeValueMarshaller").build();
+    final AttributeDefinition attributeDef4 = AttributeDefinition.builder()
+        .friendlyName(Constants.eIDAS_ATTR_DATEOFBIRTH).nameUri(new URI("ad", "sd", "fffff"))
+        .personType(PersonType.LEGAL_PERSON).xmlType(new QName("http://saf", "as", "affff"))
+        .attributeValueMarshaller("eu.eidas.auth.commons.attribute.impl.DateTimeAttributeValueMarshaller").build();
+
+    final ImmutableAttributeMap attributeMap = ImmutableAttributeMap.builder()
+        .put(attributeDef, "de/st/" + RandomStringUtils.randomNumeric(64))
+        .put(attributeDef2, RandomStringUtils.randomAlphabetic(10))
+        .put(attributeDef3, RandomStringUtils.randomAlphabetic(10)).put(attributeDef4, "2001-01-01").build();
+
+    val b = new AuthenticationResponse.Builder();
+    return b.id("aasdf").issuer("asd").subject("asf").statusCode("200").inResponseTo("asdf").subjectNameIdFormat("afaf")
+        .attributes(attributeMap).build();
+  }
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_tasks_test.xml b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_tasks_test.xml
index 60ecfa8c..17e32b86 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_tasks_test.xml
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_tasks_test.xml
@@ -64,4 +64,14 @@
     class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.CreateIdentityLinkTask"
     scope="prototype" />
 
+  <bean id="InitialSearchTask"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.InitialSearchTask"
+        scope="prototype" />
+
+  <bean id="ErnbClientForeIDAS"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.ernb.DummyErnbClient" />
+
+  <bean id="ZmrClientForeIDAS"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.DummyZmrClient" />
+
 </beans>
\ No newline at end of file
-- 
cgit v1.2.3


From 710cae803e5b6846e1ec2a584bf9be1b57c8d23a Mon Sep 17 00:00:00 2001
From: Alexander Marsalek <amarsalek@iaik.tugraz.at>
Date: Fri, 11 Dec 2020 17:16:50 +0100
Subject: added two tests

---
 .../specific/modules/auth/eidas/v2/Constants.java  |   1 +
 .../modules/auth/eidas/v2/dao/RegisterResult.java  |  14 +++
 .../auth/eidas/v2/tasks/InitialSearchTask.java     |  10 ++
 .../v2/test/tasks/InitialSearchTaskFirstTest.java  | 135 +++++++++++++++------
 4 files changed, 121 insertions(+), 39 deletions(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java
index cdc17654..cc275f24 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java
@@ -32,6 +32,7 @@ public class Constants {
   public static final String DATA_REQUESTED_LOA_LIST = "req_requestedLoA";
   public static final String DATA_REQUESTED_LOA_COMPERISON = "req_requestedLoAComperision";
   public static final String DATA_FULL_EIDAS_RESPONSE = "resp_fulleIDASResponse";
+  public static final String DATA_RESULT_MATCHING_BPK = "matching-result-bpk";//TODO?
 
   // templates for post-binding forwarding
   public static final String TEMPLATE_POST_FORWARD_NAME = "eidas_node_forward.html";
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/RegisterResult.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/RegisterResult.java
index 9509e7de..f557ca69 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/RegisterResult.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/RegisterResult.java
@@ -17,6 +17,20 @@ import lombok.Data;
   private String taxNumber = null;
   private PostalAddressType address = null;
 
+  /**
+   * Register search result.
+   * @param pseudonym The pseudonym
+   * @param givenName The givenName
+   * @param familyName The familyName
+   * @param dateOfBirth The dateOfBirth
+   */
+  public RegisterResult(String pseudonym, String givenName, String familyName, String dateOfBirth) {
+    this.pseudonym = pseudonym;
+    this.givenName = givenName;
+    this.familyName = familyName;
+    this.dateOfBirth = dateOfBirth;
+  }
+
   /**
    * Register search result.
    * @param pseudonym The pseudonym
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
index 3b573851..0b7ce030 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
@@ -337,4 +337,14 @@ public class InitialSearchTask extends AbstractAuthServletTask {
 
     return result;
   }
+
+  //just for testing
+  //TODO is there a nicer solution?
+  public void setErnbClient(IErnbClient ernbClient) {
+    this.ernbClient = ernbClient;
+  }
+
+  public void setZmrClient(IZmrClient zmrClient) {
+    this.zmrClient = zmrClient;
+  }
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
index 30f88ec8..1b1bdeae 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
@@ -1,10 +1,13 @@
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.test.tasks;
 
-import at.asitplus.eidas.specific.connector.MsEidasNodeConstants;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernb.DummyErnbClient;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernb.IErnbClient;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.ManualFixNecessaryException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.InitialSearchTask;
-import at.gv.egiz.eaaf.core.api.idp.IConfiguration;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.DummyZmrClient;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.IZmrClient;
 import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
 import at.gv.egiz.eaaf.core.exceptions.EaafStorageException;
 import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
@@ -23,12 +26,10 @@ import org.junit.Before;
 import org.junit.BeforeClass;
 import org.junit.Test;
 import org.junit.runner.RunWith;
-import org.mockito.ArgumentMatchers;
+import org.mockito.InjectMocks;
 import org.mockito.Mock;
+import org.mockito.Mockito;
 import org.powermock.api.mockito.PowerMockito;
-import org.powermock.core.classloader.annotations.PrepareForTest;
-import org.powermock.modules.junit4.PowerMockRunner;
-import org.powermock.modules.junit4.PowerMockRunnerDelegate;
 import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.mock.web.MockHttpServletRequest;
 import org.springframework.mock.web.MockHttpServletResponse;
@@ -38,30 +39,29 @@ import org.springframework.test.context.ContextConfiguration;
 import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
 import org.springframework.web.context.request.RequestContextHolder;
 import org.springframework.web.context.request.ServletRequestAttributes;
-
+import org.junit.Assert;
 import javax.xml.namespace.QName;
 import java.io.IOException;
 import java.net.URI;
 import java.net.URISyntaxException;
-
-import static org.mockito.Mockito.times;
-import static org.powermock.api.mockito.PowerMockito.verifyPrivate;
+import java.util.ArrayList;
 
 @RunWith(SpringJUnit4ClassRunner.class)
-//@RunWith(PowerMockRunner.class)
-//@PowerMockRunnerDelegate(SpringJUnit4ClassRunner.class)
+
 @ContextConfiguration("/SpringTest-context_tasks_test.xml")
 @DirtiesContext(classMode = ClassMode.BEFORE_CLASS)
-//@RunWith(PowerMockRunner.class)
-//@PrepareForTest(InitialSearchTaskFirstTest.class)
 public class InitialSearchTaskFirstTest {
 
   @Autowired(required = true)
   @Mock
+  @InjectMocks
   private InitialSearchTask task;
 
-  @Autowired(required = true)
-  private IConfiguration basicConfig;
+  @Mock
+  private IZmrClient zmrClient;
+
+  @Mock
+  private IErnbClient ernbClient;
 
   final ExecutionContext executionContext = new ExecutionContextImpl();
   private MockHttpServletRequest httpReq;
@@ -71,7 +71,7 @@ public class InitialSearchTaskFirstTest {
 
   /**
    * jUnit class initializer.
-   *  
+   *
    * @throws IOException In case of an error
    */
   @BeforeClass
@@ -84,7 +84,6 @@ public class InitialSearchTaskFirstTest {
 
   /**
    * jUnit test set-up.
-   * 
    */
   @Before
   public void setUp() throws URISyntaxException, EaafStorageException {
@@ -96,41 +95,97 @@ public class InitialSearchTaskFirstTest {
     RequestContextHolder.resetRequestAttributes();
     RequestContextHolder.setRequestAttributes(new ServletRequestAttributes(httpReq, httpResp));
 
-    final AuthenticationResponse response = buildDummyAuthResponse();
+    final AuthenticationResponse response = buildDummyAuthResponseMaxMustermann();
     pendingReq = new TestRequestImpl();
     pendingReq.getSessionData(AuthProcessDataWrapper.class)
         .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
 
   }
-  
+
   @Test
   @DirtiesContext
-  public void testInitialSearch() throws Exception {
+  /**
+   * Two matches found in ZMR
+   */
+  public void testNode101a() throws Exception {
+
+    //Mock ZMR
+    ArrayList<RegisterResult> zmrResult = new ArrayList<>();
+    zmrResult.add(new RegisterResult("de/st/max123", "Max", "Mustermann", "1111-01-01"));
+    zmrResult.add(new RegisterResult("de/st/max123", "Maximilian", "Mustermann", "1111-01-01"));
+    zmrClient = Mockito.mock(DummyZmrClient.class);
+    Mockito.when(zmrClient.searchWithPersonIdentifer("max123")).thenReturn(zmrResult);//"de/st/max123"???
+    task.setZmrClient(zmrClient);
+
+    //Mock ernb
+    ArrayList<RegisterResult> ernbResult = new ArrayList<>();
+    ernbClient = Mockito.mock(DummyErnbClient.class);
+    Mockito.when(ernbClient.searchWithPersonIdentifer("max123")).thenReturn(ernbResult);//"de/st/max123"???
+    task.setErnbClient(ernbClient);
 
     try {
       task.execute(pendingReq, executionContext);
+      Assert.assertTrue("Wrong workflow, should not reach this point/ get a bpk", false);
+      String bPk = (String)
+          pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
 
     } catch (final TaskExecutionException e) {
-      // forward URL is not set in example config
-      //      org.springframework.util.Assert.isInstanceOf(EaafConfigurationException.class, e.getOriginalException(),
-      //          "Wrong exception");
-      //      Assert.assertEquals("wrong errorCode", "config.08", ((EaafException) e.getOriginalException())
-      //          .getErrorId());
-      //      Assert.assertEquals("wrong parameter size", 1, ((EaafException) e.getOriginalException())
-      //          .getParams().length);
-      //      Assert.assertEquals("wrong errorMsg", Constants.CONIG_PROPS_EIDAS_NODE_FORWARD_URL, ((EaafException) e
-      //          .getOriginalException()).getParams()[0]);
-
+      Throwable origE = e.getOriginalException();
+      Assert.assertTrue("Wrong exception", (origE.getCause() instanceof ManualFixNecessaryException));
     }
-//    verifyPrivate(task, times(1)).invoke("step2", ArgumentMatchers.any(SimpleEidasData.class));
-//    verifyPrivate(task, times(0)).invoke("step3", ArgumentMatchers.any());
-//    verifyPrivate(task, times(0)).invoke("step4", ArgumentMatchers.any());
+  }
+
+
+  @Test
+  @DirtiesContext
+  /**
+   * Two matches found in ErnB
+   */
+  public void testNode101b() throws Exception {
+
+    //Mock ZMR
+    ArrayList<RegisterResult> zmrResult = new ArrayList<>();
+    zmrClient = Mockito.mock(DummyZmrClient.class);
+    Mockito.when(zmrClient.searchWithPersonIdentifer("max123")).thenReturn(zmrResult);//"de/st/max123"???
+    task.setZmrClient(zmrClient);
+
+    //Mock ernb
+    ArrayList<RegisterResult> ernbResult = new ArrayList<>();
+    ernbResult.add(new RegisterResult("de/st/max123", "Max", "Mustermann", "1111-01-01"));
+    ernbResult.add(new RegisterResult("de/st/max123", "Maximilian", "Mustermann", "1111-01-01"));
+
+    ernbClient = Mockito.mock(DummyErnbClient.class);
+    Mockito.when(ernbClient.searchWithPersonIdentifer("max123")).thenReturn(ernbResult);//"de/st/max123"???
+    task.setErnbClient(ernbClient);
+
+    try {
+      task.execute(pendingReq, executionContext);
+      Assert.assertTrue("Wrong workflow, should not reach this point/ get a bpk", false);
+      String bPk = (String)
+          pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
 
+    } catch (final TaskExecutionException e) {
+      Throwable origE = e.getOriginalException();
+      Assert.assertTrue("Wrong exception", (origE.getCause() instanceof ManualFixNecessaryException));
+    }
   }
 
 
   @NotNull
   private AuthenticationResponse buildDummyAuthResponse() throws URISyntaxException {
+    return buildDummyAuthResponse(RandomStringUtils.randomAlphabetic(10), RandomStringUtils.randomAlphabetic(10),
+        "de/st/" + RandomStringUtils.randomNumeric(64), "2001-01-01");
+  }
+
+  @NotNull
+  private AuthenticationResponse buildDummyAuthResponseMaxMustermann() throws URISyntaxException {
+    return buildDummyAuthResponse("Max", "Mustermann",
+        "de/st/max123", "1111-01-01");
+  }
+
+  @NotNull
+  private AuthenticationResponse buildDummyAuthResponse(String givenName, String familyName, String identifier,
+                                                        String dateOfBirth) throws URISyntaxException {
     final AttributeDefinition attributeDef = AttributeDefinition.builder()
         .friendlyName(Constants.eIDAS_ATTR_PERSONALIDENTIFIER).nameUri(new URI("ad", "sd", "ff"))
         .personType(PersonType.LEGAL_PERSON).xmlType(new QName("http://saf", "as", "af"))
@@ -149,12 +204,14 @@ public class InitialSearchTaskFirstTest {
         .attributeValueMarshaller("eu.eidas.auth.commons.attribute.impl.DateTimeAttributeValueMarshaller").build();
 
     final ImmutableAttributeMap attributeMap = ImmutableAttributeMap.builder()
-        .put(attributeDef, "de/st/" + RandomStringUtils.randomNumeric(64))
-        .put(attributeDef2, RandomStringUtils.randomAlphabetic(10))
-        .put(attributeDef3, RandomStringUtils.randomAlphabetic(10)).put(attributeDef4, "2001-01-01").build();
+        .put(attributeDef, identifier)
+        .put(attributeDef2, familyName)
+        .put(attributeDef3, givenName)
+        .put(attributeDef4, dateOfBirth).build();
 
     val b = new AuthenticationResponse.Builder();
-    return b.id("aasdf").issuer("asd").subject("asf").statusCode("200").inResponseTo("asdf").subjectNameIdFormat("afaf")
+    return b.id("aasdf").issuer("asd").subject("asf").statusCode("200").inResponseTo("asdf").subjectNameIdFormat(
+        "afaf")
         .attributes(attributeMap).build();
   }
 }
-- 
cgit v1.2.3


From b49ccd7d7ec1c0f0b560321b7e5559f18913ae7c Mon Sep 17 00:00:00 2001
From: Alexander Marsalek <amarsalek@iaik.tugraz.at>
Date: Tue, 15 Dec 2020 10:01:11 +0100
Subject: return bPk

---
 .../auth/eidas/v2/tasks/InitialSearchTask.java     | 53 +++++++++++++---------
 1 file changed, 31 insertions(+), 22 deletions(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
index 0b7ce030..bc64dc86 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
@@ -142,25 +142,28 @@ public class InitialSearchTask extends AbstractAuthServletTask {
 
       // post-process eIDAS attributes
       final SimpleEidasData eidData = convertSimpleMapToSimpleData(simpleAttrMap);
-      step2(eidData);
+      
+      String bpK = step2(eidData);
+      authProcessData.setGenericDataToSession(Constants.DATA_RESULT_MATCHING_BPK,bpK);
     } catch (final Exception e) {
       log.error("Initial search FAILED.", e);
       throw new TaskExecutionException(pendingReq, "Initial search FAILED.", e);
     }
   }
 
-  private void step2(SimpleEidasData eidData) throws TaskExecutionException {
+  private String step2(SimpleEidasData eidData) throws TaskExecutionException {
     String personIdentifier = eidData.getPseudonym();
     //search in register(step 2)
     MergedRegisterSearchResult result = searchInZmrAndErnp(personIdentifier);
     if (result.getResultCount() == 0) {
-      step5(result, eidData);
+      return step5(result, eidData);
     } else if (result.getResultCount() == 1) {
-      step3(result, eidData);
-    } else if (result.getResultCount() > 1) {
-      throw new TaskExecutionException(pendingReq, "Initial search - Kitt Process necessary.",
+      return step3(result, eidData);
+    } //else if (result.getResultCount() > 1) {
+    throw new TaskExecutionException(pendingReq, "Initial search - Kitt Process necessary.",
           new ManualFixNecessaryException(personIdentifier));
-    }
+    //    }
+    //    return null;
   }
 
   private SimpleEidasData convertSimpleMapToSimpleData(Map<String, Object> eidasAttrMap)
@@ -194,25 +197,30 @@ public class InitialSearchTask extends AbstractAuthServletTask {
     return simpleEidasData;
   }
 
-  private void step3(MergedRegisterSearchResult result, SimpleEidasData eidData) {
+  private String step3(MergedRegisterSearchResult result, SimpleEidasData eidData) {
     //check if data from eidas authentication matches with data from register
 
     log.debug("Compare " + result + " with " + eidData);
     //TODO check if data matches
     boolean match = true;
     if (match) {
-      return;
+      String bpK = "102";
+      return bpK;
     } else {
-      step4(result, eidData);
+      return step4(result, eidData);
     }
   }
 
-  private void step4(MergedRegisterSearchResult result, SimpleEidasData eidData) {
+  private String step4(MergedRegisterSearchResult result,
+                  SimpleEidasData eidData) {
     log.debug("Update " + result + " with " + eidData);
     //TODO
+    
+    String bpK = "100";
+    return bpK;
   }
 
-  private void step5(MergedRegisterSearchResult result, SimpleEidasData eidData)
+  private String step5(MergedRegisterSearchResult result, SimpleEidasData eidData)
       throws TaskExecutionException {
     String citizenCountry = eidData.getCitizenCountryCode();
     ICountrySpecificDetailSearchProcessor foundHandler = null;
@@ -227,14 +235,14 @@ public class InitialSearchTask extends AbstractAuthServletTask {
     }
     if (foundHandler == null) {
       //MDS search
-      step8(result, eidData);
+      return step8(result, eidData);
     } else {
       //country specific search
-      step6(foundHandler, result, eidData);
+      return step6(foundHandler, result, eidData);
     }
   }
 
-  private void step6(ICountrySpecificDetailSearchProcessor countrySpecificDetailSearchProcessor,
+  private String step6(ICountrySpecificDetailSearchProcessor countrySpecificDetailSearchProcessor,
                      MergedRegisterSearchResult initialSearchResult, SimpleEidasData eidData)
       throws TaskExecutionException {
     //6 country specific search
@@ -243,24 +251,25 @@ public class InitialSearchTask extends AbstractAuthServletTask {
 
     switch (countrySpecificDetailSearchResult.getResultCount()) {
       case 0:
-        step8(initialSearchResult, eidData);
-        break;
+        return step8(initialSearchResult, eidData);
       case 1:
-        step7a(initialSearchResult, countrySpecificDetailSearchResult, eidData);
-        break;
+        return step7a(initialSearchResult, countrySpecificDetailSearchResult, eidData);
       default://should not happen
         throw new TaskExecutionException(pendingReq, "Detail search - Kitt Process necessary.",
             new ManualFixNecessaryException(eidData));
     }
   }
 
-  private void step7a(MergedRegisterSearchResult initialSearchResult,
+  private String step7a(MergedRegisterSearchResult initialSearchResult,
                       CountrySpecificDetailSearchResult countrySpecificDetailSearchResult, SimpleEidasData eidData) {
     //TODO automerge
     log.debug("Automerge " + initialSearchResult + " with " + eidData + " " + countrySpecificDetailSearchResult);
+    String bpK = "103";
+    return bpK;
   }
 
-  private void step8(MergedRegisterSearchResult initialSearchResult, SimpleEidasData eidData) {
+  private String step8(MergedRegisterSearchResult initialSearchResult,
+                  SimpleEidasData eidData) {
     MergedRegisterSearchResult mdsSearchResult = new MergedRegisterSearchResult();
 
     ArrayList<RegisterResult> resultsZmr =
@@ -273,7 +282,7 @@ public class InitialSearchTask extends AbstractAuthServletTask {
 
     log.debug("Automerge " + initialSearchResult + " with " + eidData + " " + mdsSearchResult);
     //TODO
-
+    return "105";
   }
 
   private MergedRegisterSearchResult searchInZmrAndErnp(String personIdentifier) {
-- 
cgit v1.2.3


From 41a2c873d585d00ee06cc95a5e30fe17f4bc85a9 Mon Sep 17 00:00:00 2001
From: Alexander Marsalek <amarsalek@iaik.tugraz.at>
Date: Tue, 15 Dec 2020 23:07:53 +0100
Subject: added machting (3-4) + tests

---
 .../eidas/v2/dao/MergedRegisterSearchResult.java   |  16 +++
 .../modules/auth/eidas/v2/dao/RegisterResult.java  |  48 ++++---
 .../modules/auth/eidas/v2/dao/SimpleEidasData.java |  46 ++++++-
 .../auth/eidas/v2/exception/WorkflowException.java |  33 +++++
 .../auth/eidas/v2/tasks/InitialSearchTask.java     |  27 ++--
 .../v2/test/tasks/InitialSearchTaskFirstTest.java  | 140 ++++++++++++++++++++-
 6 files changed, 276 insertions(+), 34 deletions(-)
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/exception/WorkflowException.java

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/MergedRegisterSearchResult.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/MergedRegisterSearchResult.java
index bc5b358d..056b0450 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/MergedRegisterSearchResult.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/MergedRegisterSearchResult.java
@@ -1,5 +1,6 @@
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.dao;
 
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.WorkflowException;
 import lombok.Data;
 
 import java.util.ArrayList;
@@ -13,4 +14,19 @@ import java.util.ArrayList;
     return resultsZmr.size() + resultsErnb.size();
   }
 
+  /**
+   * Verfies that there is only one match and retunrs the bpk.
+   * @return bpk bpk of the match
+   * @throws WorkflowException if multiple results have been found
+   */
+  public String getBpk() throws WorkflowException {
+    if (getResultCount() != 1) {
+      throw new WorkflowException("getResultCount() != 1");
+    }
+    if (resultsZmr.size() == 1) {
+      return resultsZmr.get(0).getBpk();
+    } else {
+      return resultsErnb.get(0).getBpk();
+    }
+  }
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/RegisterResult.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/RegisterResult.java
index f557ca69..c92808a1 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/RegisterResult.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/RegisterResult.java
@@ -3,7 +3,8 @@ package at.asitplus.eidas.specific.modules.auth.eidas.v2.dao;
 import at.gv.e_government.reference.namespace.persondata._20020228.PostalAddressType;
 import lombok.Data;
 
-@Data public class RegisterResult {
+@Data
+public class RegisterResult {
 
   // MDS
   private String pseudonym = null;
@@ -17,14 +18,19 @@ import lombok.Data;
   private String taxNumber = null;
   private PostalAddressType address = null;
 
+  private String bpk = null;
+
   /**
    * Register search result.
-   * @param pseudonym The pseudonym
-   * @param givenName The givenName
-   * @param familyName The familyName
+   *
+   * @param bpk         The bpk
+   * @param pseudonym   The pseudonym
+   * @param givenName   The givenName
+   * @param familyName  The familyName
    * @param dateOfBirth The dateOfBirth
    */
-  public RegisterResult(String pseudonym, String givenName, String familyName, String dateOfBirth) {
+  public RegisterResult(String bpk, String pseudonym, String givenName, String familyName, String dateOfBirth) {
+    this.bpk = bpk;
     this.pseudonym = pseudonym;
     this.givenName = givenName;
     this.familyName = familyName;
@@ -33,14 +39,17 @@ import lombok.Data;
 
   /**
    * Register search result.
-   * @param pseudonym The pseudonym
-   * @param givenName The givenName
-   * @param familyName The familyName
-   * @param dateOfBirth The dateOfBirth
+   *
+   * @param bpk          The bpk
+   * @param pseudonym    The pseudonym
+   * @param givenName    The givenName
+   * @param familyName   The familyName
+   * @param dateOfBirth  The dateOfBirth
    * @param placeOfBirth The placeOfBirth
    */
-  public RegisterResult(String pseudonym, String givenName, String familyName, String dateOfBirth,
+  public RegisterResult(String bpk, String pseudonym, String givenName, String familyName, String dateOfBirth,
                         String placeOfBirth) {
+    this.bpk = bpk;
     this.pseudonym = pseudonym;
     this.givenName = givenName;
     this.familyName = familyName;
@@ -50,17 +59,20 @@ import lombok.Data;
 
   /**
    * Register search result.
-   * @param pseudonym The pseudonym
-   * @param givenName The givenName
-   * @param familyName The familyName
-   * @param dateOfBirth The dateOfBirth
+   *
+   * @param bpk          The bpk
+   * @param pseudonym    The pseudonym
+   * @param givenName    The givenName
+   * @param familyName   The familyName
+   * @param dateOfBirth  The dateOfBirth
    * @param placeOfBirth The placeOfBirth
-   * @param birthName The birthName
-   * @param taxNumber The taxNumber
-   * @param address The address
+   * @param birthName    The birthName
+   * @param taxNumber    The taxNumber
+   * @param address      The address
    */
-  public RegisterResult(String pseudonym, String givenName, String familyName, String dateOfBirth,
+  public RegisterResult(String bpk, String pseudonym, String givenName, String familyName, String dateOfBirth,
                         String placeOfBirth, String birthName, String taxNumber, PostalAddressType address) {
+    this.bpk = bpk;
     this.pseudonym = pseudonym;
     this.givenName = givenName;
     this.familyName = familyName;
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleEidasData.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleEidasData.java
index 0b116bfb..c41dd39e 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleEidasData.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleEidasData.java
@@ -23,13 +23,15 @@
 
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.dao;
 
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.WorkflowException;
 import at.gv.e_government.reference.namespace.persondata._20020228.PostalAddressType;
 import lombok.Data;
 import org.joda.time.DateTime;
 
 import java.text.SimpleDateFormat;
 
-@Data public class SimpleEidasData {
+@Data
+public class SimpleEidasData {
 
   private String citizenCountryCode = null;
 
@@ -49,4 +51,46 @@ import java.text.SimpleDateFormat;
     return new SimpleDateFormat("yyyy-MM-dd").format(dateOfBirth.toDate());
   }
 
+  /**
+   * Compares the register result with the eidas data.
+   * @param result The register data to use for comparison
+   * @return true or false depending of the data matches
+   * @throws WorkflowException if multiple results have been found
+   */
+  public boolean equalsRegisterData(MergedRegisterSearchResult result) throws WorkflowException {
+    if (result.getResultCount() != 1) {
+      throw new WorkflowException("result.getResultCount() != 1");
+    }
+    if (result.getResultsErnb().size() == 1) {
+      return equalsRegisterData(result.getResultsErnb().get(0));
+    } else {
+      return equalsRegisterData(result.getResultsZmr().get(0));
+    }
+  }
+
+  private boolean equalsRegisterData(RegisterResult result) {
+    if (!result.getPseudonym().equals(pseudonym)) {
+      return false;
+    }
+    if (!result.getGivenName().equals(givenName)) {
+      return false;
+    }
+    if (!result.getFamilyName().equals(familyName)) {
+      return false;
+    }
+    if (!result.getDateOfBirth().equals(dateOfBirth)) {
+      return false;
+    }
+    if (!result.getPlaceOfBirth().equals(placeOfBirth)) {
+      return false;
+    }
+    if (!result.getBirthName().equals(birthName)) {
+      return false;
+    }
+    if (!result.getTaxNumber().equals(taxNumber)) {
+      return false;
+    }
+
+    return true;
+  }
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/exception/WorkflowException.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/exception/WorkflowException.java
new file mode 100644
index 00000000..aa879bcc
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/exception/WorkflowException.java
@@ -0,0 +1,33 @@
+/*
+ * Copyright 2018 A-SIT Plus GmbH
+ * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
+ * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
+ *
+ * Licensed under the EUPL, Version 1.2 or - as soon they will be approved by
+ * the European Commission - subsequent versions of the EUPL (the "License");
+ * You may not use this work except in compliance with the License.
+ * You may obtain a copy of the License at:
+ * https://joinup.ec.europa.eu/news/understanding-eupl-v12
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" basis,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ *
+ * This product combines work with different licenses. See the "NOTICE" text
+ * file for details on the various modules and licenses.
+ * The "NOTICE" text file is part of the distribution. Any derivative works
+ * that you distribute must include a readable copy of the "NOTICE" text file.
+*/
+
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.exception;
+
+public class WorkflowException extends EidasSAuthenticationException {
+  private static final long serialVersionUID = 1L;
+
+  public WorkflowException(String data) {
+    super("eidas.00", new Object[] { data });
+  }
+
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
index bc64dc86..93dbc7c2 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
@@ -52,6 +52,7 @@ import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernb.IErnbClient;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidPostProcessingException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidasAttributeException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.ManualFixNecessaryException;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.WorkflowException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.ICountrySpecificDetailSearchProcessor;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.EidasResponseUtils;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.IZmrClient;
@@ -142,7 +143,7 @@ public class InitialSearchTask extends AbstractAuthServletTask {
 
       // post-process eIDAS attributes
       final SimpleEidasData eidData = convertSimpleMapToSimpleData(simpleAttrMap);
-      
+
       String bpK = step2(eidData);
       authProcessData.setGenericDataToSession(Constants.DATA_RESULT_MATCHING_BPK,bpK);
     } catch (final Exception e) {
@@ -197,27 +198,30 @@ public class InitialSearchTask extends AbstractAuthServletTask {
     return simpleEidasData;
   }
 
-  private String step3(MergedRegisterSearchResult result, SimpleEidasData eidData) {
+  private String step3(MergedRegisterSearchResult result, SimpleEidasData eidData) throws TaskExecutionException {
     //check if data from eidas authentication matches with data from register
 
     log.debug("Compare " + result + " with " + eidData);
     //TODO check if data matches
-    boolean match = true;
-    if (match) {
-      String bpK = "102";
-      return bpK;
-    } else {
-      return step4(result, eidData);
+    try {
+      if (eidData.equalsRegisterData(result)) {
+        //TODO
+        return result.getBpk();
+      } else {
+        return step4(result, eidData);
+      }
+    } catch (WorkflowException e) {
+      throw new TaskExecutionException(pendingReq, "Initial search - Kitt Process necessary.", e);
     }
   }
 
   private String step4(MergedRegisterSearchResult result,
-                  SimpleEidasData eidData) {
+                  SimpleEidasData eidData) throws WorkflowException {
     log.debug("Update " + result + " with " + eidData);
     //TODO
     
-    String bpK = "100";
-    return bpK;
+
+    return result.getBpk();
   }
 
   private String step5(MergedRegisterSearchResult result, SimpleEidasData eidData)
@@ -264,6 +268,7 @@ public class InitialSearchTask extends AbstractAuthServletTask {
                       CountrySpecificDetailSearchResult countrySpecificDetailSearchResult, SimpleEidasData eidData) {
     //TODO automerge
     log.debug("Automerge " + initialSearchResult + " with " + eidData + " " + countrySpecificDetailSearchResult);
+    //TODO
     String bpK = "103";
     return bpK;
   }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
index 1b1bdeae..2614f9ba 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
@@ -111,8 +111,8 @@ public class InitialSearchTaskFirstTest {
 
     //Mock ZMR
     ArrayList<RegisterResult> zmrResult = new ArrayList<>();
-    zmrResult.add(new RegisterResult("de/st/max123", "Max", "Mustermann", "1111-01-01"));
-    zmrResult.add(new RegisterResult("de/st/max123", "Maximilian", "Mustermann", "1111-01-01"));
+    zmrResult.add(new RegisterResult("bpkMax","de/st/max123", "Max", "Mustermann", "1111-01-01"));
+    zmrResult.add(new RegisterResult("bpkMax","de/st/max123", "Maximilian", "Mustermann", "1111-01-01"));
     zmrClient = Mockito.mock(DummyZmrClient.class);
     Mockito.when(zmrClient.searchWithPersonIdentifer("max123")).thenReturn(zmrResult);//"de/st/max123"???
     task.setZmrClient(zmrClient);
@@ -151,8 +151,8 @@ public class InitialSearchTaskFirstTest {
 
     //Mock ernb
     ArrayList<RegisterResult> ernbResult = new ArrayList<>();
-    ernbResult.add(new RegisterResult("de/st/max123", "Max", "Mustermann", "1111-01-01"));
-    ernbResult.add(new RegisterResult("de/st/max123", "Maximilian", "Mustermann", "1111-01-01"));
+    ernbResult.add(new RegisterResult("bpkMax","de/st/max123", "Max", "Mustermann", "1111-01-01"));
+    ernbResult.add(new RegisterResult("bpkMax","de/st/max123", "Maximilian", "Mustermann", "1111-01-01"));
 
     ernbClient = Mockito.mock(DummyErnbClient.class);
     Mockito.when(ernbClient.searchWithPersonIdentifer("max123")).thenReturn(ernbResult);//"de/st/max123"???
@@ -170,6 +170,138 @@ public class InitialSearchTaskFirstTest {
     }
   }
 
+  @Test
+  @DirtiesContext
+  /**
+   * One match, but register update needed
+   */
+  public void testNode100a() throws Exception {
+
+    //Mock ZMR
+    ArrayList<RegisterResult> zmrResult = new ArrayList<>();
+    String randomBpk = RandomStringUtils.randomNumeric(6);
+    zmrResult.add(new RegisterResult(randomBpk,"de/st/max123", "Max_new", "Mustermann", "1111-01-01"));
+
+    zmrClient = Mockito.mock(DummyZmrClient.class);
+    Mockito.when(zmrClient.searchWithPersonIdentifer("max123")).thenReturn(zmrResult);//"de/st/max123"???
+    task.setZmrClient(zmrClient);
+
+    //Mock ernb
+    ArrayList<RegisterResult> ernbResult = new ArrayList<>();
+
+    ernbClient = Mockito.mock(DummyErnbClient.class);
+    Mockito.when(ernbClient.searchWithPersonIdentifer("max123")).thenReturn(ernbResult);//"de/st/max123"???
+    task.setErnbClient(ernbClient);
+
+    try {
+      task.execute(pendingReq, executionContext);
+      String bPk = (String)
+          pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
+      Assert.assertTrue("Wrong bpk", bPk.equals(randomBpk));
+
+    } catch (final TaskExecutionException e) {
+      Assert.assertTrue("Wrong workflow, should not reach this point", false);
+    }
+  }
+
+  @Test
+  @DirtiesContext
+  /**
+   * One match, but register update needed
+   */
+  public void testNode100b() throws Exception {
+
+    //Mock ZMR
+    ArrayList<RegisterResult> zmrResult = new ArrayList<>();
+
+    zmrClient = Mockito.mock(DummyZmrClient.class);
+    Mockito.when(zmrClient.searchWithPersonIdentifer("max123")).thenReturn(zmrResult);//"de/st/max123"???
+    task.setZmrClient(zmrClient);
+
+    //Mock ernb
+    ArrayList<RegisterResult> ernbResult = new ArrayList<>();
+    String randomBpk = RandomStringUtils.randomNumeric(6);
+    ernbResult.add(new RegisterResult(randomBpk,"de/st/max123", "Max_new", "Mustermann", "1111-01-01"));
+
+    ernbClient = Mockito.mock(DummyErnbClient.class);
+    Mockito.when(ernbClient.searchWithPersonIdentifer("max123")).thenReturn(ernbResult);//"de/st/max123"???
+    task.setErnbClient(ernbClient);
+
+    try {
+      task.execute(pendingReq, executionContext);
+      String bPk = (String)
+          pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
+      Assert.assertTrue("Wrong bpk", bPk.equals(randomBpk));
+
+    } catch (final TaskExecutionException e) {
+      Assert.assertTrue("Wrong workflow, should not reach this point", false);
+    }
+  }
+
+  @Test
+  @DirtiesContext
+  /**
+   * One match, no register update needed
+   */
+  public void testNode102a() throws Exception {
+
+    //Mock ZMR
+    ArrayList<RegisterResult> zmrResult = new ArrayList<>();
+    zmrClient = Mockito.mock(DummyZmrClient.class);
+    Mockito.when(zmrClient.searchWithPersonIdentifer("max123")).thenReturn(zmrResult);//"de/st/max123"???
+    task.setZmrClient(zmrClient);
+
+    //Mock ernb
+    ArrayList<RegisterResult> ernbResult = new ArrayList<>();
+    ernbResult.add(new RegisterResult("bpkMax","de/st/max123", "Max", "Mustermann", "1111-01-01"));
+
+    ernbClient = Mockito.mock(DummyErnbClient.class);
+    Mockito.when(ernbClient.searchWithPersonIdentifer("max123")).thenReturn(ernbResult);//"de/st/max123"???
+    task.setErnbClient(ernbClient);
+
+    try {
+      task.execute(pendingReq, executionContext);
+      String bPk = (String)
+          pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
+      Assert.assertTrue("Wrong bpk", bPk.equals("bpkMax"));
+
+    } catch (final TaskExecutionException e) {
+      Assert.assertTrue("Wrong workflow, should not reach this point", false);
+    }
+  }
+
+  @Test
+  @DirtiesContext
+  /**
+   * One match, no register update needed
+   */
+  public void testNode102b() throws Exception {
+
+    //Mock ZMR
+    ArrayList<RegisterResult> zmrResult = new ArrayList<>();
+    zmrResult.add(new RegisterResult("bpkMax","de/st/max123", "Max", "Mustermann", "1111-01-01"));
+
+    zmrClient = Mockito.mock(DummyZmrClient.class);
+    Mockito.when(zmrClient.searchWithPersonIdentifer("max123")).thenReturn(zmrResult);//"de/st/max123"???
+    task.setZmrClient(zmrClient);
+
+    //Mock ernb
+    ArrayList<RegisterResult> ernbResult = new ArrayList<>();
+
+    ernbClient = Mockito.mock(DummyErnbClient.class);
+    Mockito.when(ernbClient.searchWithPersonIdentifer("max123")).thenReturn(ernbResult);//"de/st/max123"???
+    task.setErnbClient(ernbClient);
+
+    try {
+      task.execute(pendingReq, executionContext);
+      String bPk = (String)
+          pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
+      Assert.assertTrue("Wrong bpk", bPk.equals("bpkMax"));
+
+    } catch (final TaskExecutionException e) {
+      Assert.assertTrue("Wrong workflow, should not reach this point", false);
+    }
+  }
 
   @NotNull
   private AuthenticationResponse buildDummyAuthResponse() throws URISyntaxException {
-- 
cgit v1.2.3


From c893656f79dfdda49527aaba6f17f088884602f8 Mon Sep 17 00:00:00 2001
From: Alexander Marsalek <amarsalek@iaik.tugraz.at>
Date: Tue, 15 Dec 2020 23:46:02 +0100
Subject: implemented CountrySpecificDetailSearchResult, changed datetime to
 string

---
 .../v2/dao/CountrySpecificDetailSearchResult.java  | 26 ++++++++++++++++++----
 .../modules/auth/eidas/v2/dao/SimpleEidasData.java |  9 +-------
 .../auth/eidas/v2/tasks/InitialSearchTask.java     | 17 +++++++++-----
 .../auth/eidas/v2/utils/EidasResponseUtils.java    | 17 ++++++++++++++
 4 files changed, 51 insertions(+), 18 deletions(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/CountrySpecificDetailSearchResult.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/CountrySpecificDetailSearchResult.java
index 710e286c..b74172f9 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/CountrySpecificDetailSearchResult.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/CountrySpecificDetailSearchResult.java
@@ -1,14 +1,32 @@
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.dao;
 
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.WorkflowException;
+
+import java.util.ArrayList;
+
 public class CountrySpecificDetailSearchResult {
 
   //TODO is the result the same as the one form the initial search?
-  int resultsZmr;
-  int resultsErnb;
+  ArrayList<RegisterResult> resultsZmr = new ArrayList<>();
+  ArrayList<RegisterResult> resultsErnb = new ArrayList<>();
 
   public int getResultCount() {
-    return resultsZmr + resultsErnb;
+    return resultsZmr.size() + resultsErnb.size();
   }
 
-
+  /**
+   * Verfies that there is only one match and retunrs the bpk.
+   * @return bpk bpk of the match
+   * @throws WorkflowException if multiple results have been found
+   */
+  public String getBpk() throws WorkflowException {
+    if (getResultCount() != 1) {
+      throw new WorkflowException("getResultCount() != 1");
+    }
+    if (resultsZmr.size() == 1) {
+      return resultsZmr.get(0).getBpk();
+    } else {
+      return resultsErnb.get(0).getBpk();
+    }
+  }
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleEidasData.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleEidasData.java
index c41dd39e..43d85772 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleEidasData.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleEidasData.java
@@ -26,9 +26,6 @@ package at.asitplus.eidas.specific.modules.auth.eidas.v2.dao;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.WorkflowException;
 import at.gv.e_government.reference.namespace.persondata._20020228.PostalAddressType;
 import lombok.Data;
-import org.joda.time.DateTime;
-
-import java.text.SimpleDateFormat;
 
 @Data
 public class SimpleEidasData {
@@ -39,7 +36,7 @@ public class SimpleEidasData {
   private String pseudonym = null;
   private String givenName = null;
   private String familyName = null;
-  private DateTime dateOfBirth = null;
+  private String dateOfBirth = null;
 
   // additional attributes
   private String placeOfBirth = null;
@@ -47,10 +44,6 @@ public class SimpleEidasData {
   private PostalAddressType address = null;
   private String taxNumber;
 
-  public String getFormatedDateOfBirth() {
-    return new SimpleDateFormat("yyyy-MM-dd").format(dateOfBirth.toDate());
-  }
-
   /**
    * Compares the register result with the eidas data.
    * @param result The register data to use for comparison
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
index 93dbc7c2..d8c14b8e 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
@@ -183,7 +183,7 @@ public class InitialSearchTask extends AbstractAuthServletTask {
         eidasAttrMap.get(Constants.eIDAS_ATTR_CURRENTFAMILYNAME)));
     simpleEidasData.setGivenName(EidasResponseUtils.processGivenName(
         eidasAttrMap.get(Constants.eIDAS_ATTR_CURRENTGIVENNAME)));
-    simpleEidasData.setDateOfBirth(EidasResponseUtils.processDateOfBirth(
+    simpleEidasData.setDateOfBirth(EidasResponseUtils.processDateOfBirthToString(
         eidasAttrMap.get(Constants.eIDAS_ATTR_DATEOFBIRTH)));
 
     // additional attributes
@@ -265,12 +265,17 @@ public class InitialSearchTask extends AbstractAuthServletTask {
   }
 
   private String step7a(MergedRegisterSearchResult initialSearchResult,
-                      CountrySpecificDetailSearchResult countrySpecificDetailSearchResult, SimpleEidasData eidData) {
+                        CountrySpecificDetailSearchResult countrySpecificDetailSearchResult,
+                        SimpleEidasData eidData) throws TaskExecutionException {
     //TODO automerge
     log.debug("Automerge " + initialSearchResult + " with " + eidData + " " + countrySpecificDetailSearchResult);
     //TODO
-    String bpK = "103";
-    return bpK;
+    try {
+      String bpK = countrySpecificDetailSearchResult.getBpk();
+      return bpK;
+    } catch (WorkflowException e) {
+      throw new TaskExecutionException(pendingReq, "Step7a failed.", e);
+    }
   }
 
   private String step8(MergedRegisterSearchResult initialSearchResult,
@@ -278,11 +283,11 @@ public class InitialSearchTask extends AbstractAuthServletTask {
     MergedRegisterSearchResult mdsSearchResult = new MergedRegisterSearchResult();
 
     ArrayList<RegisterResult> resultsZmr =
-        zmrClient.searchWithMds(eidData.getGivenName(), eidData.getFamilyName(), eidData.getFormatedDateOfBirth());
+        zmrClient.searchWithMds(eidData.getGivenName(), eidData.getFamilyName(), eidData.getDateOfBirth());
     mdsSearchResult.setResultsZmr(resultsZmr);
 
     ArrayList<RegisterResult> resultsErnb =
-        ernbClient.searchWithMds(eidData.getGivenName(), eidData.getFamilyName(), eidData.getFormatedDateOfBirth());
+        ernbClient.searchWithMds(eidData.getGivenName(), eidData.getFamilyName(), eidData.getDateOfBirth());
     mdsSearchResult.setResultsErnb(resultsErnb);
 
     log.debug("Automerge " + initialSearchResult + " with " + eidData + " " + mdsSearchResult);
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/EidasResponseUtils.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/EidasResponseUtils.java
index ea4a4c76..54928eb7 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/EidasResponseUtils.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/EidasResponseUtils.java
@@ -23,6 +23,7 @@
 
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.utils;
 
+import java.text.SimpleDateFormat;
 import java.util.ArrayList;
 import java.util.List;
 import java.util.regex.Matcher;
@@ -288,6 +289,22 @@ public class EidasResponseUtils {
 
   }
 
+  /**
+   * Post-Process the eIDAS DateOfBirth attribute to a string.
+   *
+   * @param dateOfBirthObj eIDAS date-of-birth attribute information
+   * @return formated user's date-of-birth as string
+   * @throws EidasAttributeException    if NO attribute is available
+   * @throws EidPostProcessingException if post-processing fails
+   */
+  public static String processDateOfBirthToString(Object dateOfBirthObj) throws EidPostProcessingException,
+      EidasAttributeException {
+    if (dateOfBirthObj == null || !(dateOfBirthObj instanceof DateTime)) {
+      throw new EidasAttributeException(Constants.eIDAS_ATTR_DATEOFBIRTH);
+    }
+    return new SimpleDateFormat("yyyy-MM-dd").format(((DateTime) dateOfBirthObj).toDate());
+  }
+
   /**
    * Post-Process the eIDAS GivenName attribute.
    *
-- 
cgit v1.2.3


From ad3f9df147e671522ebbae47e667ce06ef52bf9c Mon Sep 17 00:00:00 2001
From: Alexander Marsalek <amarsalek@iaik.tugraz.at>
Date: Tue, 15 Dec 2020 23:57:14 +0100
Subject: Testcase no match found added

---
 .../v2/test/tasks/InitialSearchTaskFirstTest.java  | 32 ++++++++++++++++++++++
 1 file changed, 32 insertions(+)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
index 2614f9ba..924a180d 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
@@ -303,6 +303,38 @@ public class InitialSearchTaskFirstTest {
     }
   }
 
+
+  @Test
+  @DirtiesContext
+  /**
+   * NO match found in ZMR and ErnB with Initial search
+   */
+  public void testNode105() throws Exception {
+
+    //Mock ZMR
+    ArrayList<RegisterResult> zmrResult = new ArrayList<>();
+    zmrClient = Mockito.mock(DummyZmrClient.class);
+    Mockito.when(zmrClient.searchWithPersonIdentifer("max123")).thenReturn(zmrResult);//"de/st/max123"???
+    task.setZmrClient(zmrClient);
+
+    //Mock ernb
+    ArrayList<RegisterResult> ernbResult = new ArrayList<>();
+    ernbClient = Mockito.mock(DummyErnbClient.class);
+    Mockito.when(ernbClient.searchWithPersonIdentifer("max123")).thenReturn(ernbResult);//"de/st/max123"???
+    task.setErnbClient(ernbClient);
+
+    try {
+      task.execute(pendingReq, executionContext);
+
+      String bPk = (String)
+          pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
+      Assert.assertTrue("Wrong bpk", bPk.equals("105"));
+    } catch (final TaskExecutionException e) {
+      Assert.assertTrue("Wrong workflow, should not reach this point", false);
+    }
+  }
+
+
   @NotNull
   private AuthenticationResponse buildDummyAuthResponse() throws URISyntaxException {
     return buildDummyAuthResponse(RandomStringUtils.randomAlphabetic(10), RandomStringUtils.randomAlphabetic(10),
-- 
cgit v1.2.3


From 4bd5e89de5c8256aa5ce35bf29053ded0c649801 Mon Sep 17 00:00:00 2001
From: Alexander Marsalek <amarsalek@iaik.tugraz.at>
Date: Wed, 16 Dec 2020 10:47:09 +0100
Subject: added country specific search classes

---
 .../v2/dao/CountrySpecificDetailSearchResult.java  |  2 +-
 .../handler/DeSpecificDetailSearchProcessor.java   | 32 ++++++++++++++++++++++
 .../ICountrySpecificDetailSearchProcessor.java     | 11 +-------
 .../handler/ItSpecificDetailSearchProcessor.java   | 29 ++++++++++++++++++++
 .../auth/eidas/v2/tasks/InitialSearchTask.java     | 15 +++++-----
 .../src/main/resources/eidas_v2_auth.beans.xml     |  8 ++++++
 6 files changed, 78 insertions(+), 19 deletions(-)
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/DeSpecificDetailSearchProcessor.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ItSpecificDetailSearchProcessor.java

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/CountrySpecificDetailSearchResult.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/CountrySpecificDetailSearchResult.java
index b74172f9..6e1f8653 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/CountrySpecificDetailSearchResult.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/CountrySpecificDetailSearchResult.java
@@ -6,7 +6,7 @@ import java.util.ArrayList;
 
 public class CountrySpecificDetailSearchResult {
 
-  //TODO is the result the same as the one form the initial search?
+  //TODO is the result the same as the one from the initial search?
   ArrayList<RegisterResult> resultsZmr = new ArrayList<>();
   ArrayList<RegisterResult> resultsErnb = new ArrayList<>();
 
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/DeSpecificDetailSearchProcessor.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/DeSpecificDetailSearchProcessor.java
new file mode 100644
index 00000000..727aa718
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/DeSpecificDetailSearchProcessor.java
@@ -0,0 +1,32 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.handler;
+
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.CountrySpecificDetailSearchResult;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
+
+public class DeSpecificDetailSearchProcessor implements ICountrySpecificDetailSearchProcessor {
+
+  @Override
+  public String getName() {
+    return this.getClass().getName();
+  }
+
+  @Override
+  public boolean canHandle(String countryCode, SimpleEidasData eidData) {
+    if (!countryCode.equalsIgnoreCase("de")) {
+      return false;
+    }
+    if (eidData.getBirthName() == null || eidData.getBirthName().isEmpty()) {
+      return false;
+    }
+    if (eidData.getPlaceOfBirth() == null || eidData.getPlaceOfBirth().isEmpty()) {
+      return false;
+    }
+    return true;
+  }
+
+  @Override
+  public CountrySpecificDetailSearchResult search(SimpleEidasData eidData) {
+    //TODO
+    return new CountrySpecificDetailSearchResult();
+  }
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ICountrySpecificDetailSearchProcessor.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ICountrySpecificDetailSearchProcessor.java
index 13d9117d..8ddd79bb 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ICountrySpecificDetailSearchProcessor.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ICountrySpecificDetailSearchProcessor.java
@@ -35,16 +35,6 @@ public interface ICountrySpecificDetailSearchProcessor {
    */
   String getName();
 
-  /**
-   * Get the priority of this eID Post-Processor <br>
-   * If more than one Post-Processor implementations can handle the eID data, the
-   * post-processor with the highest priority are selected. The Default-Processor
-   * has priority '0'
-   *
-   * @return Priority of this handler
-   */
-  int getPriority();
-
   /**
    * Check if this postProcessor is sensitive for a specific country.
    *
@@ -55,4 +45,5 @@ public interface ICountrySpecificDetailSearchProcessor {
   boolean canHandle(String countryCode, SimpleEidasData eidData);
 
   CountrySpecificDetailSearchResult search(SimpleEidasData eidData);
+
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ItSpecificDetailSearchProcessor.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ItSpecificDetailSearchProcessor.java
new file mode 100644
index 00000000..bb0a5262
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ItSpecificDetailSearchProcessor.java
@@ -0,0 +1,29 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.handler;
+
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.CountrySpecificDetailSearchResult;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
+
+public class ItSpecificDetailSearchProcessor implements ICountrySpecificDetailSearchProcessor {
+
+  @Override
+  public String getName() {
+    return this.getClass().getName();
+  }
+
+  @Override
+  public boolean canHandle(String countryCode, SimpleEidasData eidData) {
+    if (!countryCode.equalsIgnoreCase("it")) {
+      return false;
+    }
+    if (eidData.getTaxNumber() == null || eidData.getTaxNumber().isEmpty()) {
+      return false;
+    }
+    return true;
+  }
+
+  @Override
+  public CountrySpecificDetailSearchResult search(SimpleEidasData eidData) {
+    //TODO
+    return new CountrySpecificDetailSearchResult();
+  }
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
index d8c14b8e..2a5b9a23 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
@@ -24,7 +24,6 @@
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks;
 
 import java.util.ArrayList;
-import java.util.Collections;
 import java.util.HashMap;
 import java.util.Iterator;
 import java.util.List;
@@ -52,7 +51,6 @@ import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernb.IErnbClient;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidPostProcessingException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidasAttributeException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.ManualFixNecessaryException;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.WorkflowException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.ICountrySpecificDetailSearchProcessor;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.EidasResponseUtils;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.IZmrClient;
@@ -67,6 +65,7 @@ import eu.eidas.auth.commons.light.ILightResponse;
 import eu.eidas.auth.commons.protocol.eidas.impl.PostalAddress;
 import lombok.extern.slf4j.Slf4j;
 
+
 /**
  * Task that searches ErnB and ZMR before adding person to SZR.
  *
@@ -111,12 +110,12 @@ public class InitialSearchTask extends AbstractAuthServletTask {
 
     }
 
-    log.trace("Sorting country specific detail search services on priority ... ");
-    Collections.sort(handlers, (thisAuthModule, otherAuthModule) -> {
-      final int thisOrder = thisAuthModule.getPriority();
-      final int otherOrder = otherAuthModule.getPriority();
-      return thisOrder < otherOrder ? 1 : thisOrder == otherOrder ? 0 : -1;
-    });
+    //    log.trace("Sorting country specific detail search services on priority ... ");
+    //    Collections.sort(handlers, (thisAuthModule, otherAuthModule) -> {
+    //      final int thisOrder = thisAuthModule.getPriority();
+    //      final int otherOrder = otherAuthModule.getPriority();
+    //      return thisOrder < otherOrder ? 1 : thisOrder == otherOrder ? 0 : -1;
+    //    });
 
     log.info("# " + handlers.size() + " country specific detail search services are registrated");
 
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml
index 0f6277c0..ca6eba20 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml
@@ -80,6 +80,14 @@
     <property name="priority" value="0" />
   </bean>
 
+  <bean id="DE-Specific-Search"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.DeSpecificDetailSearchProcessor">
+  </bean>
+
+  <bean id="IT-Specific-Search"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.ItSpecificDetailSearchProcessor">
+  </bean>
+
   <!-- Authentication Process Tasks -->
   <bean id="ConnecteIDASNodeTask"
     class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.GenerateAuthnRequestTask"
-- 
cgit v1.2.3


From 69c5f2715fa545554867d9022952b05dc003e186 Mon Sep 17 00:00:00 2001
From: Alexander Marsalek <amarsalek@iaik.tugraz.at>
Date: Wed, 16 Dec 2020 11:22:00 +0100
Subject: removed CountrySpecificDetailSearchResult, implemented
 countryspecific search classes

---
 .../v2/dao/CountrySpecificDetailSearchResult.java  | 32 ----------------------
 .../auth/eidas/v2/ernb/DummyErnbClient.java        | 11 ++++++++
 .../modules/auth/eidas/v2/ernb/IErnbClient.java    |  6 ++++
 .../handler/DeSpecificDetailSearchProcessor.java   | 30 +++++++++++++++++---
 .../ICountrySpecificDetailSearchProcessor.java     |  4 +--
 .../handler/ItSpecificDetailSearchProcessor.java   | 28 ++++++++++++++++---
 .../auth/eidas/v2/tasks/InitialSearchTask.java     |  5 ++--
 .../modules/auth/eidas/v2/zmr/DummyZmrClient.java  | 11 ++++++++
 .../modules/auth/eidas/v2/zmr/IZmrClient.java      |  6 ++++
 9 files changed, 88 insertions(+), 45 deletions(-)
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/CountrySpecificDetailSearchResult.java

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/CountrySpecificDetailSearchResult.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/CountrySpecificDetailSearchResult.java
deleted file mode 100644
index 6e1f8653..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/CountrySpecificDetailSearchResult.java
+++ /dev/null
@@ -1,32 +0,0 @@
-package at.asitplus.eidas.specific.modules.auth.eidas.v2.dao;
-
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.WorkflowException;
-
-import java.util.ArrayList;
-
-public class CountrySpecificDetailSearchResult {
-
-  //TODO is the result the same as the one from the initial search?
-  ArrayList<RegisterResult> resultsZmr = new ArrayList<>();
-  ArrayList<RegisterResult> resultsErnb = new ArrayList<>();
-
-  public int getResultCount() {
-    return resultsZmr.size() + resultsErnb.size();
-  }
-
-  /**
-   * Verfies that there is only one match and retunrs the bpk.
-   * @return bpk bpk of the match
-   * @throws WorkflowException if multiple results have been found
-   */
-  public String getBpk() throws WorkflowException {
-    if (getResultCount() != 1) {
-      throw new WorkflowException("getResultCount() != 1");
-    }
-    if (resultsZmr.size() == 1) {
-      return resultsZmr.get(0).getBpk();
-    } else {
-      return resultsErnb.get(0).getBpk();
-    }
-  }
-}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernb/DummyErnbClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernb/DummyErnbClient.java
index 8b2379bf..7e926c8e 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernb/DummyErnbClient.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernb/DummyErnbClient.java
@@ -26,6 +26,17 @@ public class DummyErnbClient implements IErnbClient {
     return resultEmpty();//TODO will I only receive matches where all three values match perfectly?
   }
 
+  @Override
+  public ArrayList<RegisterResult> searchDeSpecific(String givenName, String familyName, String dateOfBirth,
+                                                    String birthPlace, String birthName) {
+    return resultEmpty();//TODO
+  }
+
+  @Override
+  public ArrayList<RegisterResult> searchItSpecific(String txNumber) {
+    return resultEmpty();//TODO
+  }
+
   private ArrayList<RegisterResult> resultEmpty() {
     return new ArrayList<RegisterResult>();//Nobody found
   }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernb/IErnbClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernb/IErnbClient.java
index 4873b939..f8a41cfe 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernb/IErnbClient.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernb/IErnbClient.java
@@ -9,4 +9,10 @@ public interface IErnbClient {
   ArrayList<RegisterResult> searchWithPersonIdentifer(String personIdentifer);
 
   ArrayList<RegisterResult> searchWithMds(String givenName, String familyName, String dateOfBirth);
+
+  ArrayList<RegisterResult> searchDeSpecific(String givenName, String familyName, String dateOfBirth,
+                                             String birthPlace, String birthName);
+
+  ArrayList<RegisterResult> searchItSpecific(String txNumber);
+
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/DeSpecificDetailSearchProcessor.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/DeSpecificDetailSearchProcessor.java
index 727aa718..9fa13fe8 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/DeSpecificDetailSearchProcessor.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/DeSpecificDetailSearchProcessor.java
@@ -1,10 +1,22 @@
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.handler;
 
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.CountrySpecificDetailSearchResult;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.MergedRegisterSearchResult;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernb.IErnbClient;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.IZmrClient;
+import org.springframework.beans.factory.annotation.Autowired;
+
+import java.util.ArrayList;
 
 public class DeSpecificDetailSearchProcessor implements ICountrySpecificDetailSearchProcessor {
 
+  @Autowired
+  private IErnbClient ernbClient;
+
+  @Autowired
+  private IZmrClient zmrClient;
+
   @Override
   public String getName() {
     return this.getClass().getName();
@@ -25,8 +37,18 @@ public class DeSpecificDetailSearchProcessor implements ICountrySpecificDetailSe
   }
 
   @Override
-  public CountrySpecificDetailSearchResult search(SimpleEidasData eidData) {
-    //TODO
-    return new CountrySpecificDetailSearchResult();
+  public MergedRegisterSearchResult search(SimpleEidasData eidData) {
+    MergedRegisterSearchResult searchResult = new MergedRegisterSearchResult();
+
+    ArrayList<RegisterResult> resultsZmr =
+        zmrClient.searchDeSpecific(eidData.getGivenName(), eidData.getFamilyName(), eidData.getDateOfBirth(),
+            eidData.getPlaceOfBirth(), eidData.getBirthName());
+    searchResult.setResultsZmr(resultsZmr);
+
+    ArrayList<RegisterResult> resultsErnb =
+        ernbClient.searchDeSpecific(eidData.getGivenName(), eidData.getFamilyName(), eidData.getDateOfBirth(),
+        eidData.getPlaceOfBirth(), eidData.getBirthName());
+    searchResult.setResultsErnb(resultsErnb);
+    return searchResult;
   }
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ICountrySpecificDetailSearchProcessor.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ICountrySpecificDetailSearchProcessor.java
index 8ddd79bb..887aef4a 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ICountrySpecificDetailSearchProcessor.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ICountrySpecificDetailSearchProcessor.java
@@ -23,7 +23,7 @@
 
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.handler;
 
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.CountrySpecificDetailSearchResult;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.MergedRegisterSearchResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
 
 public interface ICountrySpecificDetailSearchProcessor {
@@ -44,6 +44,6 @@ public interface ICountrySpecificDetailSearchProcessor {
    */
   boolean canHandle(String countryCode, SimpleEidasData eidData);
 
-  CountrySpecificDetailSearchResult search(SimpleEidasData eidData);
+  MergedRegisterSearchResult search(SimpleEidasData eidData);
 
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ItSpecificDetailSearchProcessor.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ItSpecificDetailSearchProcessor.java
index bb0a5262..e3b9e702 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ItSpecificDetailSearchProcessor.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ItSpecificDetailSearchProcessor.java
@@ -1,10 +1,22 @@
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.handler;
 
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.CountrySpecificDetailSearchResult;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.MergedRegisterSearchResult;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernb.IErnbClient;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.IZmrClient;
+import org.springframework.beans.factory.annotation.Autowired;
+
+import java.util.ArrayList;
 
 public class ItSpecificDetailSearchProcessor implements ICountrySpecificDetailSearchProcessor {
 
+  @Autowired
+  private IErnbClient ernbClient;
+
+  @Autowired
+  private IZmrClient zmrClient;
+
   @Override
   public String getName() {
     return this.getClass().getName();
@@ -22,8 +34,16 @@ public class ItSpecificDetailSearchProcessor implements ICountrySpecificDetailSe
   }
 
   @Override
-  public CountrySpecificDetailSearchResult search(SimpleEidasData eidData) {
-    //TODO
-    return new CountrySpecificDetailSearchResult();
+  public MergedRegisterSearchResult search(SimpleEidasData eidData) {
+    MergedRegisterSearchResult searchResult = new MergedRegisterSearchResult();
+
+    ArrayList<RegisterResult> resultsZmr =
+        zmrClient.searchItSpecific(eidData.getTaxNumber());
+    searchResult.setResultsZmr(resultsZmr);
+
+    ArrayList<RegisterResult> resultsErnb =
+        ernbClient.searchItSpecific(eidData.getTaxNumber());
+    searchResult.setResultsErnb(resultsErnb);
+    return searchResult;
   }
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
index 2a5b9a23..9df24e9f 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
@@ -43,7 +43,6 @@ import com.google.common.collect.ImmutableMap;
 import com.google.common.collect.ImmutableSet;
 
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.CountrySpecificDetailSearchResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.MergedRegisterSearchResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
@@ -249,7 +248,7 @@ public class InitialSearchTask extends AbstractAuthServletTask {
                      MergedRegisterSearchResult initialSearchResult, SimpleEidasData eidData)
       throws TaskExecutionException {
     //6 country specific search
-    CountrySpecificDetailSearchResult countrySpecificDetailSearchResult =
+    MergedRegisterSearchResult countrySpecificDetailSearchResult =
         countrySpecificDetailSearchProcessor.search(eidData);
 
     switch (countrySpecificDetailSearchResult.getResultCount()) {
@@ -264,7 +263,7 @@ public class InitialSearchTask extends AbstractAuthServletTask {
   }
 
   private String step7a(MergedRegisterSearchResult initialSearchResult,
-                        CountrySpecificDetailSearchResult countrySpecificDetailSearchResult,
+                        MergedRegisterSearchResult countrySpecificDetailSearchResult,
                         SimpleEidasData eidData) throws TaskExecutionException {
     //TODO automerge
     log.debug("Automerge " + initialSearchResult + " with " + eidData + " " + countrySpecificDetailSearchResult);
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/DummyZmrClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/DummyZmrClient.java
index 9a7cc9b3..343651f7 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/DummyZmrClient.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/DummyZmrClient.java
@@ -26,6 +26,17 @@ public class DummyZmrClient implements IZmrClient {
     return resultEmpty();//TODO will I only receive matches where all three values match perfectly?
   }
 
+  @Override
+  public ArrayList<RegisterResult> searchDeSpecific(String givenName, String familyName, String dateOfBirth,
+                                                    String birthPlace, String birthName) {
+    return resultEmpty();//TODO
+  }
+
+  @Override
+  public ArrayList<RegisterResult> searchItSpecific(String txNumber) {
+    return resultEmpty();//TODO
+  }
+
   private ArrayList<RegisterResult> resultEmpty() {
     return new ArrayList<RegisterResult>();//Nobody found
   }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/IZmrClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/IZmrClient.java
index 1f7e4949..018122ea 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/IZmrClient.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/IZmrClient.java
@@ -9,4 +9,10 @@ public interface IZmrClient {
   ArrayList<RegisterResult> searchWithPersonIdentifer(String personIdentifer);
 
   ArrayList<RegisterResult> searchWithMds(String givenName, String familyName, String dateOfBirth);
+
+  ArrayList<RegisterResult> searchDeSpecific(String givenName, String familyName, String dateOfBirth,
+                                             String birthPlace, String birthName);
+
+  ArrayList<RegisterResult> searchItSpecific(String txNumber);
+
 }
-- 
cgit v1.2.3


From 20b28fa85e5fc24868b22fa769e87f1dcacf205a Mon Sep 17 00:00:00 2001
From: Alexander Marsalek <amarsalek@iaik.tugraz.at>
Date: Wed, 16 Dec 2020 17:32:43 +0100
Subject: 2 more tests (bean mocking still missing)

---
 .../v2/test/tasks/InitialSearchTaskFirstTest.java  | 85 +++++++++++++++++++++-
 1 file changed, 84 insertions(+), 1 deletion(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
index 924a180d..5c75d1e4 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
@@ -22,8 +22,10 @@ import eu.eidas.auth.commons.protocol.impl.AuthenticationResponse;
 import lombok.val;
 import org.apache.commons.lang3.RandomStringUtils;
 import org.jetbrains.annotations.NotNull;
+import org.junit.Assert;
 import org.junit.Before;
 import org.junit.BeforeClass;
+import org.junit.Ignore;
 import org.junit.Test;
 import org.junit.runner.RunWith;
 import org.mockito.InjectMocks;
@@ -39,7 +41,7 @@ import org.springframework.test.context.ContextConfiguration;
 import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
 import org.springframework.web.context.request.RequestContextHolder;
 import org.springframework.web.context.request.ServletRequestAttributes;
-import org.junit.Assert;
+
 import javax.xml.namespace.QName;
 import java.io.IOException;
 import java.net.URI;
@@ -303,6 +305,87 @@ public class InitialSearchTaskFirstTest {
     }
   }
 
+  @Ignore
+  @Test
+  @DirtiesContext
+  /**
+   * One match found in ZMR and ErnB with detail search
+   */
+  public void testNode103() throws Exception {
+
+    //Mock ZMR initial search
+    ArrayList<RegisterResult> zmrResultInitial = new ArrayList<>();
+    zmrClient = Mockito.mock(DummyZmrClient.class);
+    Mockito.when(zmrClient.searchWithPersonIdentifer("max123")).thenReturn(zmrResultInitial);
+    ArrayList<RegisterResult> zmrResultSpecific = new ArrayList<>();
+    //String bpk, String pseudonym, String givenName, String familyName, String dateOfBirth,
+    //                        String placeOfBirth, String birthName, String taxNumber, PostalAddressType address
+    zmrResultSpecific.add(new RegisterResult("bpkMax","de/st/max1234", "Max", "Mustermann", "1111-01-01", null, null,
+        "tax123", null));
+
+    Mockito.when(zmrClient.searchItSpecific("tax123")).thenReturn(zmrResultSpecific);
+    task.setZmrClient(zmrClient);
+
+    //Mock ernb initial search
+    ArrayList<RegisterResult> ernbResultInitial = new ArrayList<>();
+    ernbClient = Mockito.mock(DummyErnbClient.class);
+    Mockito.when(ernbClient.searchWithPersonIdentifer("max123")).thenReturn(ernbResultInitial);//"de/st/max123"???
+
+    task.setErnbClient(ernbClient);
+
+    try {
+      task.execute(pendingReq, executionContext);
+
+      String bPk = (String)
+          pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
+      Assert.assertTrue("Wrong bpk", bPk.equals("bpkMax"));
+    } catch (final TaskExecutionException e) {
+      Assert.assertTrue("Wrong workflow, should not reach this point", false);
+    }
+  }
+
+  @Ignore
+  @Test
+  @DirtiesContext
+  /**
+   * Multiple matches found in ZMR and ErnB with detail search
+   */
+  public void testNode104() throws Exception {
+
+    //Mock ZMR initial search
+    ArrayList<RegisterResult> zmrResultInitial = new ArrayList<>();
+    zmrClient = Mockito.mock(DummyZmrClient.class);
+    Mockito.when(zmrClient.searchWithPersonIdentifer("max123")).thenReturn(zmrResultInitial);
+    ArrayList<RegisterResult> zmrResultSpecific = new ArrayList<>();
+    //String bpk, String pseudonym, String givenName, String familyName, String dateOfBirth,
+    //                        String placeOfBirth, String birthName, String taxNumber, PostalAddressType address
+    zmrResultSpecific.add(new RegisterResult("bpkMax","de/st/max1234", "Max", "Mustermann", "1111-01-01", null, null,
+        "tax123", null));
+    zmrResultSpecific.add(new RegisterResult("bpkMax1","de/st/max1235", "Max", "Mustermann", "1111-01-01", null, null,
+        "tax123", null));
+    Mockito.when(zmrClient.searchItSpecific("tax123")).thenReturn(zmrResultSpecific);
+
+
+    task.setZmrClient(zmrClient);
+
+    //Mock ernb initial search
+    ArrayList<RegisterResult> ernbResultInitial = new ArrayList<>();
+    ernbClient = Mockito.mock(DummyErnbClient.class);
+    Mockito.when(ernbClient.searchWithPersonIdentifer("max123")).thenReturn(ernbResultInitial);//"de/st/max123"???
+
+    task.setErnbClient(ernbClient);
+
+    try {
+      task.execute(pendingReq, executionContext);
+
+      Assert.assertTrue("Wrong workflow, should not reach this point/ get a bpk", false);
+
+    } catch (final TaskExecutionException e) {
+      Throwable origE = e.getOriginalException();
+      Assert.assertTrue("Wrong exception", (origE.getCause() instanceof ManualFixNecessaryException));
+    }
+  }
+
 
   @Test
   @DirtiesContext
-- 
cgit v1.2.3


From 21613f2d1af10639b65077c5600763e82b5eb63c Mon Sep 17 00:00:00 2001
From: Alexander Marsalek <amarsalek@iaik.tugraz.at>
Date: Thu, 17 Dec 2020 13:18:37 +0100
Subject: country specific tests

---
 .../specific/modules/auth/eidas/v2/Constants.java  |   1 +
 .../handler/DeSpecificDetailSearchProcessor.java   |  18 +-
 .../ICountrySpecificDetailSearchProcessor.java     |  29 +-
 .../handler/ItSpecificDetailSearchProcessor.java   |  16 +-
 .../auth/eidas/v2/tasks/InitialSearchTask.java     |  72 ++---
 .../auth/eidas/v2/utils/EidasResponseUtils.java    |  17 ++
 .../v2/test/tasks/InitialSearchTaskFirstTest.java  | 305 +++++++++++++++++----
 .../resources/SpringTest-context_tasks_test.xml    |   7 +
 8 files changed, 328 insertions(+), 137 deletions(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java
index cc275f24..145cf262 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java
@@ -140,6 +140,7 @@ public class Constants {
   public static final String eIDAS_ATTR_PLACEOFBIRTH = "PlaceOfBirth";
   public static final String eIDAS_ATTR_BIRTHNAME = "BirthName";
   public static final String eIDAS_ATTR_CURRENTADDRESS = "CurrentAddress";
+  public static final String eIDAS_ATTR_TAXREFERENCE = "TaxReference";
 
   public static final String eIDAS_ATTR_LEGALPERSONIDENTIFIER = "LegalPersonIdentifier";
   public static final String eIDAS_ATTR_LEGALNAME = "LegalName";
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/DeSpecificDetailSearchProcessor.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/DeSpecificDetailSearchProcessor.java
index 9fa13fe8..51d6952f 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/DeSpecificDetailSearchProcessor.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/DeSpecificDetailSearchProcessor.java
@@ -3,24 +3,10 @@ package at.asitplus.eidas.specific.modules.auth.eidas.v2.handler;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.MergedRegisterSearchResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernb.IErnbClient;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.IZmrClient;
-import org.springframework.beans.factory.annotation.Autowired;
 
 import java.util.ArrayList;
 
-public class DeSpecificDetailSearchProcessor implements ICountrySpecificDetailSearchProcessor {
-
-  @Autowired
-  private IErnbClient ernbClient;
-
-  @Autowired
-  private IZmrClient zmrClient;
-
-  @Override
-  public String getName() {
-    return this.getClass().getName();
-  }
+public class DeSpecificDetailSearchProcessor extends ICountrySpecificDetailSearchProcessor {
 
   @Override
   public boolean canHandle(String countryCode, SimpleEidasData eidData) {
@@ -47,7 +33,7 @@ public class DeSpecificDetailSearchProcessor implements ICountrySpecificDetailSe
 
     ArrayList<RegisterResult> resultsErnb =
         ernbClient.searchDeSpecific(eidData.getGivenName(), eidData.getFamilyName(), eidData.getDateOfBirth(),
-        eidData.getPlaceOfBirth(), eidData.getBirthName());
+            eidData.getPlaceOfBirth(), eidData.getBirthName());
     searchResult.setResultsErnb(resultsErnb);
     return searchResult;
   }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ICountrySpecificDetailSearchProcessor.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ICountrySpecificDetailSearchProcessor.java
index 887aef4a..3d6b35e9 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ICountrySpecificDetailSearchProcessor.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ICountrySpecificDetailSearchProcessor.java
@@ -25,25 +25,44 @@ package at.asitplus.eidas.specific.modules.auth.eidas.v2.handler;
 
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.MergedRegisterSearchResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernb.IErnbClient;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.IZmrClient;
+import org.springframework.beans.factory.annotation.Autowired;
 
-public interface ICountrySpecificDetailSearchProcessor {
+public abstract class ICountrySpecificDetailSearchProcessor {
+
+
+  protected IErnbClient ernbClient;
+  protected IZmrClient zmrClient;
+
+  @Autowired
+  public void setErnbClient(IErnbClient ernbClient) {
+    this.ernbClient = ernbClient;
+  }
+
+  @Autowired
+  public void setZmrClient(IZmrClient zmrClient) {
+    this.zmrClient = zmrClient;
+  }
 
   /**
    * Get a friendlyName of this post-processor implementation.
    *
    * @return
    */
-  String getName();
+  public String getName() {
+    return this.getClass().getName();
+  }
 
   /**
    * Check if this postProcessor is sensitive for a specific country.
    *
    * @param countryCode of the eID data that should be processed
-   * @param eidData eID data
+   * @param eidData     eID data
    * @return true if this implementation can handle the country, otherwise false
    */
-  boolean canHandle(String countryCode, SimpleEidasData eidData);
+  public abstract boolean canHandle(String countryCode, SimpleEidasData eidData);
 
-  MergedRegisterSearchResult search(SimpleEidasData eidData);
+  public abstract MergedRegisterSearchResult search(SimpleEidasData eidData);
 
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ItSpecificDetailSearchProcessor.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ItSpecificDetailSearchProcessor.java
index e3b9e702..d055345a 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ItSpecificDetailSearchProcessor.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ItSpecificDetailSearchProcessor.java
@@ -3,24 +3,10 @@ package at.asitplus.eidas.specific.modules.auth.eidas.v2.handler;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.MergedRegisterSearchResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernb.IErnbClient;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.IZmrClient;
-import org.springframework.beans.factory.annotation.Autowired;
 
 import java.util.ArrayList;
 
-public class ItSpecificDetailSearchProcessor implements ICountrySpecificDetailSearchProcessor {
-
-  @Autowired
-  private IErnbClient ernbClient;
-
-  @Autowired
-  private IZmrClient zmrClient;
-
-  @Override
-  public String getName() {
-    return this.getClass().getName();
-  }
+public class ItSpecificDetailSearchProcessor extends ICountrySpecificDetailSearchProcessor {
 
   @Override
   public boolean canHandle(String countryCode, SimpleEidasData eidData) {
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
index 9df24e9f..e722200c 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
@@ -25,11 +25,9 @@ package at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks;
 
 import java.util.ArrayList;
 import java.util.HashMap;
-import java.util.Iterator;
 import java.util.List;
 import java.util.Map;
 
-import javax.annotation.PostConstruct;
 import javax.servlet.http.HttpServletRequest;
 import javax.servlet.http.HttpServletResponse;
 
@@ -50,6 +48,7 @@ import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernb.IErnbClient;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidPostProcessingException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidasAttributeException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.ManualFixNecessaryException;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.WorkflowException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.ICountrySpecificDetailSearchProcessor;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.EidasResponseUtils;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.IZmrClient;
@@ -74,52 +73,14 @@ import lombok.extern.slf4j.Slf4j;
 @Component("InitialSearchTask")
 public class InitialSearchTask extends AbstractAuthServletTask {
 
-  private final List<ICountrySpecificDetailSearchProcessor> handlers = new ArrayList<>();
+  private List<ICountrySpecificDetailSearchProcessor> handlers = new ArrayList<>();
 
-  //  @Autowired
-  //  private AuthBlockSigningService authBlockSigner;
-  //  @Autowired
-  //  private IConfiguration basicConfig;
-  //  @Autowired
-  //  private SzrClient szrClient;
-  //  @Autowired
-  //  private ICcSpecificEidProcessingService eidPostProcessor;
-
-  //  private static final String EID_STATUS = "urn:eidgvat:eid.status.eidas";
   @Autowired
   private ApplicationContext context;
 
-  @Autowired
   private IErnbClient ernbClient;
-
-  @Autowired
   private IZmrClient zmrClient;
 
-  @PostConstruct
-  private void initialize() {
-    log.debug("Initialize country specific detail search services ... ");
-    final Map<String, ICountrySpecificDetailSearchProcessor> postProcessors = context.getBeansOfType(
-        ICountrySpecificDetailSearchProcessor.class);
-    final Iterator<Map.Entry<String, ICountrySpecificDetailSearchProcessor>> iterator =
-        postProcessors.entrySet().iterator();
-    while (iterator.hasNext()) {
-      final Map.Entry<String, ICountrySpecificDetailSearchProcessor> el = iterator.next();
-      log.debug("Find country specific detail search services with name: " + el.getKey());
-      handlers.add(el.getValue());
-
-    }
-
-    //    log.trace("Sorting country specific detail search services on priority ... ");
-    //    Collections.sort(handlers, (thisAuthModule, otherAuthModule) -> {
-    //      final int thisOrder = thisAuthModule.getPriority();
-    //      final int otherOrder = otherAuthModule.getPriority();
-    //      return thisOrder < otherOrder ? 1 : thisOrder == otherOrder ? 0 : -1;
-    //    });
-
-    log.info("# " + handlers.size() + " country specific detail search services are registrated");
-
-  }
-
   /*
    * (non-Javadoc)
    *
@@ -136,6 +97,9 @@ public class InitialSearchTask extends AbstractAuthServletTask {
       final ILightResponse eidasResponse = authProcessData
           .getGenericDataFromSession(Constants.DATA_FULL_EIDAS_RESPONSE, ILightResponse.class);
 
+      ImmutableMap<AttributeDefinition<?>, ImmutableSet<? extends AttributeValue<?>>> aa =
+          eidasResponse.getAttributes().getAttributeMap();
+      
       final Map<String, Object> simpleAttrMap = convertEidasAttrToSimpleMap(
           eidasResponse.getAttributes().getAttributeMap());
 
@@ -143,7 +107,7 @@ public class InitialSearchTask extends AbstractAuthServletTask {
       final SimpleEidasData eidData = convertSimpleMapToSimpleData(simpleAttrMap);
 
       String bpK = step2(eidData);
-      authProcessData.setGenericDataToSession(Constants.DATA_RESULT_MATCHING_BPK,bpK);
+      authProcessData.setGenericDataToSession(Constants.DATA_RESULT_MATCHING_BPK, bpK);
     } catch (final Exception e) {
       log.error("Initial search FAILED.", e);
       throw new TaskExecutionException(pendingReq, "Initial search FAILED.", e);
@@ -160,7 +124,7 @@ public class InitialSearchTask extends AbstractAuthServletTask {
       return step3(result, eidData);
     } //else if (result.getResultCount() > 1) {
     throw new TaskExecutionException(pendingReq, "Initial search - Kitt Process necessary.",
-          new ManualFixNecessaryException(personIdentifier));
+        new ManualFixNecessaryException(personIdentifier));
     //    }
     //    return null;
   }
@@ -192,6 +156,11 @@ public class InitialSearchTask extends AbstractAuthServletTask {
     simpleEidasData.setAddress(EidasResponseUtils.processAddress(
         eidasAttrMap.get(Constants.eIDAS_ATTR_CURRENTADDRESS)));
 
+    if (eidasAttrMap.containsKey(Constants.eIDAS_ATTR_TAXREFERENCE)) {
+      simpleEidasData.setTaxNumber(EidasResponseUtils.processTaxReference(
+          eidasAttrMap.get(Constants.eIDAS_ATTR_TAXREFERENCE)));
+    }
+
     //TODO other additional attributes
     return simpleEidasData;
   }
@@ -214,10 +183,10 @@ public class InitialSearchTask extends AbstractAuthServletTask {
   }
 
   private String step4(MergedRegisterSearchResult result,
-                  SimpleEidasData eidData) throws WorkflowException {
+                       SimpleEidasData eidData) throws WorkflowException {
     log.debug("Update " + result + " with " + eidData);
     //TODO
-    
+
 
     return result.getBpk();
   }
@@ -245,7 +214,7 @@ public class InitialSearchTask extends AbstractAuthServletTask {
   }
 
   private String step6(ICountrySpecificDetailSearchProcessor countrySpecificDetailSearchProcessor,
-                     MergedRegisterSearchResult initialSearchResult, SimpleEidasData eidData)
+                       MergedRegisterSearchResult initialSearchResult, SimpleEidasData eidData)
       throws TaskExecutionException {
     //6 country specific search
     MergedRegisterSearchResult countrySpecificDetailSearchResult =
@@ -277,7 +246,7 @@ public class InitialSearchTask extends AbstractAuthServletTask {
   }
 
   private String step8(MergedRegisterSearchResult initialSearchResult,
-                  SimpleEidasData eidData) {
+                       SimpleEidasData eidData) {
     MergedRegisterSearchResult mdsSearchResult = new MergedRegisterSearchResult();
 
     ArrayList<RegisterResult> resultsZmr =
@@ -357,11 +326,20 @@ public class InitialSearchTask extends AbstractAuthServletTask {
 
   //just for testing
   //TODO is there a nicer solution?
+  @Autowired
   public void setErnbClient(IErnbClient ernbClient) {
     this.ernbClient = ernbClient;
   }
 
+  @Autowired
   public void setZmrClient(IZmrClient zmrClient) {
     this.zmrClient = zmrClient;
   }
+
+  @Autowired
+  public void setHandlers(List<ICountrySpecificDetailSearchProcessor> handlers) {
+    this.handlers = handlers;
+    log.info("# " + handlers.size() + " country specific detail search services are registrated");
+  }
+
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/EidasResponseUtils.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/EidasResponseUtils.java
index 54928eb7..aaa4212a 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/EidasResponseUtils.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/EidasResponseUtils.java
@@ -359,6 +359,23 @@ public class EidasResponseUtils {
         EidasResponseUtils.parseEidasPersonalIdentifier((String) personalIdObj);
 
     return eIdentifier.getThird();
+  }
+
+  /**
+   * Post-Process the eIDAS TaxReference attribute.
+   *
+   * @param taxReferenceObj eIDAS TaxReference attribute information
+   * @return formated user's TaxReference
+   * @throws EidasAttributeException    if NO attribute is available
+   * @throws EidPostProcessingException if post-processing fails
+   */
+  public static String processTaxReference(Object taxReferenceObj) throws EidPostProcessingException,
+      EidasAttributeException {
+    if (taxReferenceObj == null || !(taxReferenceObj instanceof String)) {
+      throw new EidasAttributeException(Constants.eIDAS_ATTR_CURRENTGIVENNAME);
+    }
+
+    return (String) taxReferenceObj;
 
   }
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
index 5c75d1e4..64a73bda 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
@@ -5,6 +5,9 @@ import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernb.DummyErnbClient;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernb.IErnbClient;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.ManualFixNecessaryException;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.DeSpecificDetailSearchProcessor;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.ICountrySpecificDetailSearchProcessor;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.ItSpecificDetailSearchProcessor;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.InitialSearchTask;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.DummyZmrClient;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.IZmrClient;
@@ -25,7 +28,6 @@ import org.jetbrains.annotations.NotNull;
 import org.junit.Assert;
 import org.junit.Before;
 import org.junit.BeforeClass;
-import org.junit.Ignore;
 import org.junit.Test;
 import org.junit.runner.RunWith;
 import org.mockito.InjectMocks;
@@ -47,6 +49,7 @@ import java.io.IOException;
 import java.net.URI;
 import java.net.URISyntaxException;
 import java.util.ArrayList;
+import java.util.List;
 
 @RunWith(SpringJUnit4ClassRunner.class)
 
@@ -107,54 +110,55 @@ public class InitialSearchTaskFirstTest {
   @Test
   @DirtiesContext
   /**
-   * Two matches found in ZMR
+   * One match, but register update needed
    */
-  public void testNode101a() throws Exception {
+  public void testNode100a() throws Exception {
 
     //Mock ZMR
     ArrayList<RegisterResult> zmrResult = new ArrayList<>();
-    zmrResult.add(new RegisterResult("bpkMax","de/st/max123", "Max", "Mustermann", "1111-01-01"));
-    zmrResult.add(new RegisterResult("bpkMax","de/st/max123", "Maximilian", "Mustermann", "1111-01-01"));
+    String randomBpk = RandomStringUtils.randomNumeric(6);
+    zmrResult.add(new RegisterResult(randomBpk,"de/st/max123", "Max_new", "Mustermann", "2011-01-01"));
+
     zmrClient = Mockito.mock(DummyZmrClient.class);
     Mockito.when(zmrClient.searchWithPersonIdentifer("max123")).thenReturn(zmrResult);//"de/st/max123"???
     task.setZmrClient(zmrClient);
 
     //Mock ernb
     ArrayList<RegisterResult> ernbResult = new ArrayList<>();
+
     ernbClient = Mockito.mock(DummyErnbClient.class);
     Mockito.when(ernbClient.searchWithPersonIdentifer("max123")).thenReturn(ernbResult);//"de/st/max123"???
     task.setErnbClient(ernbClient);
 
     try {
       task.execute(pendingReq, executionContext);
-      Assert.assertTrue("Wrong workflow, should not reach this point/ get a bpk", false);
       String bPk = (String)
           pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
+      Assert.assertTrue("Wrong bpk", bPk.equals(randomBpk));
 
     } catch (final TaskExecutionException e) {
-      Throwable origE = e.getOriginalException();
-      Assert.assertTrue("Wrong exception", (origE.getCause() instanceof ManualFixNecessaryException));
+      Assert.assertTrue("Wrong workflow, should not reach this point", false);
     }
   }
 
-
   @Test
   @DirtiesContext
   /**
-   * Two matches found in ErnB
+   * One match, but register update needed
    */
-  public void testNode101b() throws Exception {
+  public void testNode100b() throws Exception {
 
     //Mock ZMR
     ArrayList<RegisterResult> zmrResult = new ArrayList<>();
+
     zmrClient = Mockito.mock(DummyZmrClient.class);
     Mockito.when(zmrClient.searchWithPersonIdentifer("max123")).thenReturn(zmrResult);//"de/st/max123"???
     task.setZmrClient(zmrClient);
 
     //Mock ernb
     ArrayList<RegisterResult> ernbResult = new ArrayList<>();
-    ernbResult.add(new RegisterResult("bpkMax","de/st/max123", "Max", "Mustermann", "1111-01-01"));
-    ernbResult.add(new RegisterResult("bpkMax","de/st/max123", "Maximilian", "Mustermann", "1111-01-01"));
+    String randomBpk = RandomStringUtils.randomNumeric(6);
+    ernbResult.add(new RegisterResult(randomBpk,"de/st/max123", "Max_new", "Mustermann", "2011-01-01"));
 
     ernbClient = Mockito.mock(DummyErnbClient.class);
     Mockito.when(ernbClient.searchWithPersonIdentifer("max123")).thenReturn(ernbResult);//"de/st/max123"???
@@ -162,68 +166,67 @@ public class InitialSearchTaskFirstTest {
 
     try {
       task.execute(pendingReq, executionContext);
-      Assert.assertTrue("Wrong workflow, should not reach this point/ get a bpk", false);
       String bPk = (String)
           pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
+      Assert.assertTrue("Wrong bpk", bPk.equals(randomBpk));
 
     } catch (final TaskExecutionException e) {
-      Throwable origE = e.getOriginalException();
-      Assert.assertTrue("Wrong exception", (origE.getCause() instanceof ManualFixNecessaryException));
+      Assert.assertTrue("Wrong workflow, should not reach this point", false);
     }
   }
 
+
   @Test
   @DirtiesContext
   /**
-   * One match, but register update needed
+   * Two matches found in ZMR
    */
-  public void testNode100a() throws Exception {
+  public void testNode101a() throws Exception {
 
     //Mock ZMR
     ArrayList<RegisterResult> zmrResult = new ArrayList<>();
-    String randomBpk = RandomStringUtils.randomNumeric(6);
-    zmrResult.add(new RegisterResult(randomBpk,"de/st/max123", "Max_new", "Mustermann", "1111-01-01"));
-
+    zmrResult.add(new RegisterResult("bpkMax","de/st/max123", "Max", "Mustermann", "2011-01-01"));
+    zmrResult.add(new RegisterResult("bpkMax","de/st/max123", "Maximilian", "Mustermann", "2011-01-01"));
     zmrClient = Mockito.mock(DummyZmrClient.class);
     Mockito.when(zmrClient.searchWithPersonIdentifer("max123")).thenReturn(zmrResult);//"de/st/max123"???
     task.setZmrClient(zmrClient);
 
     //Mock ernb
     ArrayList<RegisterResult> ernbResult = new ArrayList<>();
-
     ernbClient = Mockito.mock(DummyErnbClient.class);
     Mockito.when(ernbClient.searchWithPersonIdentifer("max123")).thenReturn(ernbResult);//"de/st/max123"???
     task.setErnbClient(ernbClient);
 
     try {
       task.execute(pendingReq, executionContext);
+      Assert.assertTrue("Wrong workflow, should not reach this point/ get a bpk", false);
       String bPk = (String)
           pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
-      Assert.assertTrue("Wrong bpk", bPk.equals(randomBpk));
 
     } catch (final TaskExecutionException e) {
-      Assert.assertTrue("Wrong workflow, should not reach this point", false);
+      Throwable origE = e.getOriginalException();
+      Assert.assertTrue("Wrong exception", (origE.getCause() instanceof ManualFixNecessaryException));
     }
   }
 
+
   @Test
   @DirtiesContext
   /**
-   * One match, but register update needed
+   * Two matches found in ErnB
    */
-  public void testNode100b() throws Exception {
+  public void testNode101b() throws Exception {
 
     //Mock ZMR
     ArrayList<RegisterResult> zmrResult = new ArrayList<>();
-
     zmrClient = Mockito.mock(DummyZmrClient.class);
     Mockito.when(zmrClient.searchWithPersonIdentifer("max123")).thenReturn(zmrResult);//"de/st/max123"???
     task.setZmrClient(zmrClient);
 
     //Mock ernb
     ArrayList<RegisterResult> ernbResult = new ArrayList<>();
-    String randomBpk = RandomStringUtils.randomNumeric(6);
-    ernbResult.add(new RegisterResult(randomBpk,"de/st/max123", "Max_new", "Mustermann", "1111-01-01"));
+    ernbResult.add(new RegisterResult("bpkMax","de/st/max123", "Max", "Mustermann", "2011-01-01"));
+    ernbResult.add(new RegisterResult("bpkMax","de/st/max123", "Maximilian", "Mustermann", "2011-01-01"));
 
     ernbClient = Mockito.mock(DummyErnbClient.class);
     Mockito.when(ernbClient.searchWithPersonIdentifer("max123")).thenReturn(ernbResult);//"de/st/max123"???
@@ -231,12 +234,13 @@ public class InitialSearchTaskFirstTest {
 
     try {
       task.execute(pendingReq, executionContext);
+      Assert.assertTrue("Wrong workflow, should not reach this point/ get a bpk", false);
       String bPk = (String)
           pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
-      Assert.assertTrue("Wrong bpk", bPk.equals(randomBpk));
 
     } catch (final TaskExecutionException e) {
-      Assert.assertTrue("Wrong workflow, should not reach this point", false);
+      Throwable origE = e.getOriginalException();
+      Assert.assertTrue("Wrong exception", (origE.getCause() instanceof ManualFixNecessaryException));
     }
   }
 
@@ -255,7 +259,7 @@ public class InitialSearchTaskFirstTest {
 
     //Mock ernb
     ArrayList<RegisterResult> ernbResult = new ArrayList<>();
-    ernbResult.add(new RegisterResult("bpkMax","de/st/max123", "Max", "Mustermann", "1111-01-01"));
+    ernbResult.add(new RegisterResult("bpkMax","de/st/max123", "Max", "Mustermann", "2011-01-01"));
 
     ernbClient = Mockito.mock(DummyErnbClient.class);
     Mockito.when(ernbClient.searchWithPersonIdentifer("max123")).thenReturn(ernbResult);//"de/st/max123"???
@@ -281,7 +285,7 @@ public class InitialSearchTaskFirstTest {
 
     //Mock ZMR
     ArrayList<RegisterResult> zmrResult = new ArrayList<>();
-    zmrResult.add(new RegisterResult("bpkMax","de/st/max123", "Max", "Mustermann", "1111-01-01"));
+    zmrResult.add(new RegisterResult("bpkMax","de/st/max123", "Max", "Mustermann", "2011-01-01"));
 
     zmrClient = Mockito.mock(DummyZmrClient.class);
     Mockito.when(zmrClient.searchWithPersonIdentifer("max123")).thenReturn(zmrResult);//"de/st/max123"???
@@ -305,13 +309,18 @@ public class InitialSearchTaskFirstTest {
     }
   }
 
-  @Ignore
   @Test
   @DirtiesContext
   /**
    * One match found in ZMR and ErnB with detail search
    */
-  public void testNode103() throws Exception {
+  public void testNode103IT() throws Exception {
+    String bpkRegister = "bpkMax";
+ String taxNumber = "tax123";
+    final AuthenticationResponse response = buildDummyAuthResponseMaxMustermannIT_Tax(taxNumber);
+    TestRequestImpl pendingReq1 = new TestRequestImpl();
+    pendingReq1.getSessionData(AuthProcessDataWrapper.class)
+        .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
 
     //Mock ZMR initial search
     ArrayList<RegisterResult> zmrResultInitial = new ArrayList<>();
@@ -320,10 +329,10 @@ public class InitialSearchTaskFirstTest {
     ArrayList<RegisterResult> zmrResultSpecific = new ArrayList<>();
     //String bpk, String pseudonym, String givenName, String familyName, String dateOfBirth,
     //                        String placeOfBirth, String birthName, String taxNumber, PostalAddressType address
-    zmrResultSpecific.add(new RegisterResult("bpkMax","de/st/max1234", "Max", "Mustermann", "1111-01-01", null, null,
-        "tax123", null));
+    zmrResultSpecific.add(new RegisterResult(bpkRegister,"it/st/max1234", "Max", "Mustermann", "2011-01-01", null,
+        null, taxNumber, null));
 
-    Mockito.when(zmrClient.searchItSpecific("tax123")).thenReturn(zmrResultSpecific);
+    Mockito.when(zmrClient.searchItSpecific(taxNumber)).thenReturn(zmrResultSpecific);
     task.setZmrClient(zmrClient);
 
     //Mock ernb initial search
@@ -333,24 +342,160 @@ public class InitialSearchTaskFirstTest {
 
     task.setErnbClient(ernbClient);
 
+    //Mock country specific search
+    List<ICountrySpecificDetailSearchProcessor> handlers = new ArrayList<>();
+    ItSpecificDetailSearchProcessor it = new ItSpecificDetailSearchProcessor();
+    it.setErnbClient(ernbClient);
+    it.setZmrClient(zmrClient);
+    handlers.add(it);
+    task.setHandlers(handlers);
+
     try {
-      task.execute(pendingReq, executionContext);
+      task.execute(pendingReq1, executionContext);
 
       String bPk = (String)
-          pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
-      Assert.assertTrue("Wrong bpk", bPk.equals("bpkMax"));
+          pendingReq1.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
+      Assert.assertTrue("Wrong bpk", bPk.equals(bpkRegister));
+    } catch (final TaskExecutionException e) {
+      Assert.assertTrue("Wrong workflow, should not reach this point", false);
+    }
+  }
+
+  @Test
+  @DirtiesContext
+  /**
+   * Multiple matches found in ZMR and ErnB with detail search
+   */
+  public void testNode103DE() throws Exception {
+    String givenName = "Max";
+    String familyName = "Mustermann";
+    String pseudonym = "de/st/max1234";
+    String bpk = "bpkMax";
+    String dateOfBirth = "2011-01-01";
+    String placeOfBirth = "München";
+    String birthName = "BabyMax";
+    final AuthenticationResponse response = buildDummyAuthResponseDE(givenName, familyName, pseudonym,
+        dateOfBirth, placeOfBirth, birthName);
+    TestRequestImpl pendingReq1 = new TestRequestImpl();
+    pendingReq1.getSessionData(AuthProcessDataWrapper.class)
+        .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
+
+    //Mock ZMR initial search
+    ArrayList<RegisterResult> zmrResultInitial = new ArrayList<>();
+    zmrClient = Mockito.mock(DummyZmrClient.class);
+    Mockito.when(zmrClient.searchWithPersonIdentifer("max123")).thenReturn(zmrResultInitial);
+    ArrayList<RegisterResult> zmrResultSpecific = new ArrayList<>();
+
+    zmrResultSpecific.add(new RegisterResult(bpk, pseudonym, givenName, familyName, dateOfBirth, placeOfBirth, birthName,
+        null, null));
+
+    //.searchDeSpecific(eidData.getGivenName(), eidData.getFamilyName(), eidData.getDateOfBirth(),
+    //            eidData.getPlaceOfBirth(), eidData.getBirthName()
+    Mockito.when(zmrClient.searchDeSpecific(givenName, familyName, dateOfBirth, placeOfBirth, birthName)).thenReturn(zmrResultSpecific);
+
+    task.setZmrClient(zmrClient);
+
+    //Mock ernb initial search
+    ArrayList<RegisterResult> ernbResultInitial = new ArrayList<>();
+    ernbClient = Mockito.mock(DummyErnbClient.class);
+    Mockito.when(ernbClient.searchWithPersonIdentifer("max123")).thenReturn(ernbResultInitial);//"de/st/max123"???
+
+    task.setErnbClient(ernbClient);
+
+    //Mock country specific search
+    List<ICountrySpecificDetailSearchProcessor> handlers = new ArrayList<>();
+    DeSpecificDetailSearchProcessor de = new DeSpecificDetailSearchProcessor();
+    de.setErnbClient(ernbClient);
+    de.setZmrClient(zmrClient);
+    handlers.add(de);
+    task.setHandlers(handlers);
+
+    try {
+      task.execute(pendingReq1, executionContext);
+
+      String bPk = (String)
+          pendingReq1.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
+      Assert.assertTrue("Wrong bpk", bPk.equals(bpk));
     } catch (final TaskExecutionException e) {
       Assert.assertTrue("Wrong workflow, should not reach this point", false);
     }
   }
 
-  @Ignore
   @Test
   @DirtiesContext
   /**
    * Multiple matches found in ZMR and ErnB with detail search
    */
-  public void testNode104() throws Exception {
+  public void testNode104DE() throws Exception {
+    String givenName = "Max";
+    String familyName = "Mustermann";
+    String pseudonym1 = "de/st/max1234";
+    String pseudonym2 = "de/st/max12345";
+    String bpk1 = "bpkMax";
+    String bpk2 = "bpkMax1";
+    String dateOfBirth = "2011-01-01";
+    String placeOfBirth = "München";
+    String birthName = "BabyMax";
+    final AuthenticationResponse response = buildDummyAuthResponseDE(givenName, familyName, pseudonym1,
+        dateOfBirth, placeOfBirth, birthName);
+    TestRequestImpl pendingReq1 = new TestRequestImpl();
+    pendingReq1.getSessionData(AuthProcessDataWrapper.class)
+        .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
+
+    //Mock ZMR initial search
+    ArrayList<RegisterResult> zmrResultInitial = new ArrayList<>();
+    zmrClient = Mockito.mock(DummyZmrClient.class);
+    Mockito.when(zmrClient.searchWithPersonIdentifer("max123")).thenReturn(zmrResultInitial);
+    ArrayList<RegisterResult> zmrResultSpecific = new ArrayList<>();
+
+    zmrResultSpecific.add(new RegisterResult(bpk1, pseudonym1, givenName, familyName, dateOfBirth, placeOfBirth, birthName,
+        null, null));
+    zmrResultSpecific.add(new RegisterResult(bpk2, pseudonym2, givenName, familyName, dateOfBirth, placeOfBirth, birthName,
+        null, null));
+    //.searchDeSpecific(eidData.getGivenName(), eidData.getFamilyName(), eidData.getDateOfBirth(),
+    //            eidData.getPlaceOfBirth(), eidData.getBirthName()
+    Mockito.when(zmrClient.searchDeSpecific(givenName, familyName, dateOfBirth, placeOfBirth, birthName)).thenReturn(zmrResultSpecific);
+
+    task.setZmrClient(zmrClient);
+
+    //Mock ernb initial search
+    ArrayList<RegisterResult> ernbResultInitial = new ArrayList<>();
+    ernbClient = Mockito.mock(DummyErnbClient.class);
+    Mockito.when(ernbClient.searchWithPersonIdentifer("max123")).thenReturn(ernbResultInitial);//"de/st/max123"???
+
+    task.setErnbClient(ernbClient);
+
+    //Mock country specific search
+    List<ICountrySpecificDetailSearchProcessor> handlers = new ArrayList<>();
+    DeSpecificDetailSearchProcessor de = new DeSpecificDetailSearchProcessor();
+    de.setErnbClient(ernbClient);
+    de.setZmrClient(zmrClient);
+    handlers.add(de);
+    task.setHandlers(handlers);
+
+    try {
+      task.execute(pendingReq1, executionContext);
+
+      Assert.assertTrue("Wrong workflow, should not reach this point/ get a bpk", false);
+
+    } catch (final TaskExecutionException e) {
+      Throwable origE = e.getOriginalException();
+      Assert.assertTrue("Wrong exception", (origE.getCause() instanceof ManualFixNecessaryException));
+    }
+  }
+
+  @Test
+  @DirtiesContext
+  /**
+   * Multiple matches found in ZMR and ErnB with detail search
+   */
+  public void testNode104IT() throws Exception {
+
+    String fakeTaxNumber = "tax123";
+    final AuthenticationResponse response = buildDummyAuthResponseMaxMustermannIT_Tax(fakeTaxNumber);
+    TestRequestImpl pendingReq1 = new TestRequestImpl();
+    pendingReq1.getSessionData(AuthProcessDataWrapper.class)
+        .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
 
     //Mock ZMR initial search
     ArrayList<RegisterResult> zmrResultInitial = new ArrayList<>();
@@ -359,11 +504,11 @@ public class InitialSearchTaskFirstTest {
     ArrayList<RegisterResult> zmrResultSpecific = new ArrayList<>();
     //String bpk, String pseudonym, String givenName, String familyName, String dateOfBirth,
     //                        String placeOfBirth, String birthName, String taxNumber, PostalAddressType address
-    zmrResultSpecific.add(new RegisterResult("bpkMax","de/st/max1234", "Max", "Mustermann", "1111-01-01", null, null,
-        "tax123", null));
-    zmrResultSpecific.add(new RegisterResult("bpkMax1","de/st/max1235", "Max", "Mustermann", "1111-01-01", null, null,
-        "tax123", null));
-    Mockito.when(zmrClient.searchItSpecific("tax123")).thenReturn(zmrResultSpecific);
+    zmrResultSpecific.add(new RegisterResult("bpkMax","it/st/max1234", "Max", "Mustermann", "2011-01-01", null, null,
+        fakeTaxNumber, null));
+    zmrResultSpecific.add(new RegisterResult("bpkMax1","it/st/max1235", "Max", "Mustermann", "2011-01-01", null, null,
+        fakeTaxNumber, null));
+    Mockito.when(zmrClient.searchItSpecific(fakeTaxNumber)).thenReturn(zmrResultSpecific);
 
 
     task.setZmrClient(zmrClient);
@@ -375,8 +520,16 @@ public class InitialSearchTaskFirstTest {
 
     task.setErnbClient(ernbClient);
 
+    //Mock country specific search
+    List<ICountrySpecificDetailSearchProcessor> handlers = new ArrayList<>();
+    ItSpecificDetailSearchProcessor it = new ItSpecificDetailSearchProcessor();
+    it.setErnbClient(ernbClient);
+    it.setZmrClient(zmrClient);
+    handlers.add(it);
+    task.setHandlers(handlers);
+
     try {
-      task.execute(pendingReq, executionContext);
+      task.execute(pendingReq1, executionContext);
 
       Assert.assertTrue("Wrong workflow, should not reach this point/ get a bpk", false);
 
@@ -386,7 +539,6 @@ public class InitialSearchTaskFirstTest {
     }
   }
 
-
   @Test
   @DirtiesContext
   /**
@@ -427,12 +579,35 @@ public class InitialSearchTaskFirstTest {
   @NotNull
   private AuthenticationResponse buildDummyAuthResponseMaxMustermann() throws URISyntaxException {
     return buildDummyAuthResponse("Max", "Mustermann",
-        "de/st/max123", "1111-01-01");
+        "de/st/max123", "2011-01-01");
+  }
+
+  private AuthenticationResponse buildDummyAuthResponseMaxMustermannIT() throws URISyntaxException {
+    return buildDummyAuthResponse("Max", "Mustermann",
+        "it/st/max123", "2011-01-01");
+  }
+
+  private AuthenticationResponse buildDummyAuthResponseMaxMustermannIT_Tax(String taxNumber) throws URISyntaxException {
+    return buildDummyAuthResponse("Max", "Mustermann",
+        "it/st/max123", "2011-01-01", taxNumber, null, null);
   }
 
   @NotNull
   private AuthenticationResponse buildDummyAuthResponse(String givenName, String familyName, String identifier,
                                                         String dateOfBirth) throws URISyntaxException {
+    return buildDummyAuthResponse(givenName, familyName, identifier, dateOfBirth, null, null, null);
+  }
+
+  @NotNull
+  private AuthenticationResponse buildDummyAuthResponseDE(String givenName, String familyName, String identifier,
+                                                        String dateOfBirth, String placeOfBirth,
+                                                          String birthName) throws URISyntaxException {
+    return buildDummyAuthResponse(givenName, familyName, identifier, dateOfBirth, null, placeOfBirth, birthName);
+  }
+  @NotNull
+  private AuthenticationResponse buildDummyAuthResponse(String givenName, String familyName, String identifier,
+                                                        String dateOfBirth, String taxNumber, String placeOfBirth,
+                                                        String birthName) throws URISyntaxException {
     final AttributeDefinition attributeDef = AttributeDefinition.builder()
         .friendlyName(Constants.eIDAS_ATTR_PERSONALIDENTIFIER).nameUri(new URI("ad", "sd", "ff"))
         .personType(PersonType.LEGAL_PERSON).xmlType(new QName("http://saf", "as", "af"))
@@ -449,12 +624,34 @@ public class InitialSearchTaskFirstTest {
         .friendlyName(Constants.eIDAS_ATTR_DATEOFBIRTH).nameUri(new URI("ad", "sd", "fffff"))
         .personType(PersonType.LEGAL_PERSON).xmlType(new QName("http://saf", "as", "affff"))
         .attributeValueMarshaller("eu.eidas.auth.commons.attribute.impl.DateTimeAttributeValueMarshaller").build();
-
-    final ImmutableAttributeMap attributeMap = ImmutableAttributeMap.builder()
+    final AttributeDefinition attributeDef5 = AttributeDefinition.builder()
+        .friendlyName(Constants.eIDAS_ATTR_TAXREFERENCE).nameUri(new URI("ad", "sd", "ffffff"))
+        .personType(PersonType.LEGAL_PERSON).xmlType(new QName("http://saf", "as", "afffff"))
+        .attributeValueMarshaller("eu.eidas.auth.commons.attribute.impl.LiteralStringAttributeValueMarshaller").build();
+    final AttributeDefinition attributeDef6 = AttributeDefinition.builder()
+        .friendlyName(Constants.eIDAS_ATTR_PLACEOFBIRTH).nameUri(new URI("ad", "sd", "fffffff"))
+        .personType(PersonType.LEGAL_PERSON).xmlType(new QName("http://saf", "as", "affffff"))
+        .attributeValueMarshaller("eu.eidas.auth.commons.attribute.impl.LiteralStringAttributeValueMarshaller").build();
+    final AttributeDefinition attributeDef7 = AttributeDefinition.builder()
+        .friendlyName(Constants.eIDAS_ATTR_BIRTHNAME).nameUri(new URI("ad", "sd", "ffffffff"))
+        .personType(PersonType.LEGAL_PERSON).xmlType(new QName("http://saf", "as", "afffffff"))
+        .attributeValueMarshaller("eu.eidas.auth.commons.attribute.impl.LiteralStringAttributeValueMarshaller").build();
+    ImmutableAttributeMap.Builder builder = ImmutableAttributeMap.builder()
         .put(attributeDef, identifier)
         .put(attributeDef2, familyName)
         .put(attributeDef3, givenName)
-        .put(attributeDef4, dateOfBirth).build();
+        .put(attributeDef4, dateOfBirth);
+
+    if(taxNumber != null) {
+      builder.put(attributeDef5, taxNumber);
+    }
+    if(birthName != null) {
+      builder.put(attributeDef7, birthName);
+    }
+    if(placeOfBirth != null) {
+      builder.put(attributeDef6, placeOfBirth);
+    }
+    final ImmutableAttributeMap attributeMap = builder.build();
 
     val b = new AuthenticationResponse.Builder();
     return b.id("aasdf").issuer("asd").subject("asf").statusCode("200").inResponseTo("asdf").subjectNameIdFormat(
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_tasks_test.xml b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_tasks_test.xml
index 17e32b86..cde374a1 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_tasks_test.xml
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_tasks_test.xml
@@ -74,4 +74,11 @@
   <bean id="ZmrClientForeIDAS"
         class="at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.DummyZmrClient" />
 
+  <bean id="DE-Specific-Search"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.DeSpecificDetailSearchProcessor">
+  </bean>
+
+  <bean id="IT-Specific-Search"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.ItSpecificDetailSearchProcessor">
+  </bean>
 </beans>
\ No newline at end of file
-- 
cgit v1.2.3


From 14a14c71bc33cdbbcf0d4a65f9b6689091e7082c Mon Sep 17 00:00:00 2001
From: Alexander Marsalek <amarsalek@iaik.tugraz.at>
Date: Thu, 17 Dec 2020 14:58:11 +0100
Subject: added register update method

---
 .../modules/auth/eidas/v2/ernb/DummyErnbClient.java    |  6 ++++++
 .../modules/auth/eidas/v2/ernb/IErnbClient.java        |  2 ++
 .../modules/auth/eidas/v2/tasks/InitialSearchTask.java | 18 ++++++++++++++++--
 .../modules/auth/eidas/v2/zmr/DummyZmrClient.java      |  6 ++++++
 .../specific/modules/auth/eidas/v2/zmr/IZmrClient.java |  2 ++
 5 files changed, 32 insertions(+), 2 deletions(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernb/DummyErnbClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernb/DummyErnbClient.java
index 7e926c8e..0c8a2f59 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernb/DummyErnbClient.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernb/DummyErnbClient.java
@@ -1,6 +1,7 @@
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.ernb;
 
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
 import org.springframework.stereotype.Service;
 
 import java.util.ArrayList;
@@ -37,6 +38,11 @@ public class DummyErnbClient implements IErnbClient {
     return resultEmpty();//TODO
   }
 
+  @Override
+  public void update(RegisterResult registerResult, SimpleEidasData eidData) {
+    //TODO
+  }
+
   private ArrayList<RegisterResult> resultEmpty() {
     return new ArrayList<RegisterResult>();//Nobody found
   }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernb/IErnbClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernb/IErnbClient.java
index f8a41cfe..cda4c426 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernb/IErnbClient.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernb/IErnbClient.java
@@ -1,6 +1,7 @@
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.ernb;
 
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
 
 import java.util.ArrayList;
 
@@ -15,4 +16,5 @@ public interface IErnbClient {
 
   ArrayList<RegisterResult> searchItSpecific(String txNumber);
 
+  void update(RegisterResult registerResult, SimpleEidasData eidData);
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
index e722200c..3e38ca20 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
@@ -99,7 +99,7 @@ public class InitialSearchTask extends AbstractAuthServletTask {
 
       ImmutableMap<AttributeDefinition<?>, ImmutableSet<? extends AttributeValue<?>>> aa =
           eidasResponse.getAttributes().getAttributeMap();
-      
+
       final Map<String, Object> simpleAttrMap = convertEidasAttrToSimpleMap(
           eidasResponse.getAttributes().getAttributeMap());
 
@@ -236,8 +236,22 @@ public class InitialSearchTask extends AbstractAuthServletTask {
                         SimpleEidasData eidData) throws TaskExecutionException {
     //TODO automerge
     log.debug("Automerge " + initialSearchResult + " with " + eidData + " " + countrySpecificDetailSearchResult);
-    //TODO
     try {
+      if (initialSearchResult.getResultCount() != 0) {
+        throw new WorkflowException("initialSearchResult.getResultCount() != 0");
+      }
+      if (countrySpecificDetailSearchResult.getResultCount() != 1) {
+        throw new WorkflowException("countrySpecificDetailSearchResult.getResultCount() != 1");
+      }
+      if (countrySpecificDetailSearchResult.getResultsZmr().size() == 1) {
+        //update ZMR
+        zmrClient.update(countrySpecificDetailSearchResult.getResultsZmr().get(0), eidData);
+      }
+      if (countrySpecificDetailSearchResult.getResultsErnb().size() == 1) {
+        //update ErnB
+        ernbClient.update(countrySpecificDetailSearchResult.getResultsErnb().get(0), eidData);
+      }
+
       String bpK = countrySpecificDetailSearchResult.getBpk();
       return bpK;
     } catch (WorkflowException e) {
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/DummyZmrClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/DummyZmrClient.java
index 343651f7..0f3436d8 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/DummyZmrClient.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/DummyZmrClient.java
@@ -1,6 +1,7 @@
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr;
 
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
 import org.springframework.stereotype.Service;
 
 import java.util.ArrayList;
@@ -37,6 +38,11 @@ public class DummyZmrClient implements IZmrClient {
     return resultEmpty();//TODO
   }
 
+  @Override
+  public void update(RegisterResult registerResult, SimpleEidasData eidData) {
+    //TODO
+  }
+
   private ArrayList<RegisterResult> resultEmpty() {
     return new ArrayList<RegisterResult>();//Nobody found
   }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/IZmrClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/IZmrClient.java
index 018122ea..4af7bfe9 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/IZmrClient.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/IZmrClient.java
@@ -1,6 +1,7 @@
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr;
 
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
 
 import java.util.ArrayList;
 
@@ -15,4 +16,5 @@ public interface IZmrClient {
 
   ArrayList<RegisterResult> searchItSpecific(String txNumber);
 
+  void update(RegisterResult registerResult, SimpleEidasData eidData);
 }
-- 
cgit v1.2.3


From 2281bdc0352337ea9b72f574e4e4cb51397c1864 Mon Sep 17 00:00:00 2001
From: Christian Kollmann <christian.kollmann@a-sit.at>
Date: Thu, 17 Dec 2020 09:05:09 +0100
Subject: Update .gitignore

---
 .../specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java   | 8 ++------
 1 file changed, 2 insertions(+), 6 deletions(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
index 3e38ca20..5066ac85 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
@@ -34,7 +34,6 @@ import javax.servlet.http.HttpServletResponse;
 import org.apache.commons.lang3.StringUtils;
 import org.joda.time.DateTime;
 import org.springframework.beans.factory.annotation.Autowired;
-import org.springframework.context.ApplicationContext;
 import org.springframework.stereotype.Component;
 
 import com.google.common.collect.ImmutableMap;
@@ -75,8 +74,8 @@ public class InitialSearchTask extends AbstractAuthServletTask {
 
   private List<ICountrySpecificDetailSearchProcessor> handlers = new ArrayList<>();
 
-  @Autowired
-  private ApplicationContext context;
+  //  @Autowired
+  //  private ApplicationContext context;
 
   private IErnbClient ernbClient;
   private IZmrClient zmrClient;
@@ -97,9 +96,6 @@ public class InitialSearchTask extends AbstractAuthServletTask {
       final ILightResponse eidasResponse = authProcessData
           .getGenericDataFromSession(Constants.DATA_FULL_EIDAS_RESPONSE, ILightResponse.class);
 
-      ImmutableMap<AttributeDefinition<?>, ImmutableSet<? extends AttributeValue<?>>> aa =
-          eidasResponse.getAttributes().getAttributeMap();
-
       final Map<String, Object> simpleAttrMap = convertEidasAttrToSimpleMap(
           eidasResponse.getAttributes().getAttributeMap());
 
-- 
cgit v1.2.3


From 1dd2f63eb54befa7b347051c509d33dd8448bff0 Mon Sep 17 00:00:00 2001
From: Christian Kollmann <christian.kollmann@a-sit.at>
Date: Fri, 18 Dec 2020 10:22:59 +0100
Subject: Review code

---
 .../modules/auth/eidas/v2/ernb/DummyErnbClient.java         |  1 +
 .../eidas/v2/handler/DeSpecificDetailSearchProcessor.java   |  1 +
 .../v2/handler/ICountrySpecificDetailSearchProcessor.java   |  1 +
 .../modules/auth/eidas/v2/tasks/InitialSearchTask.java      | 11 ++++++++++-
 .../specific/modules/auth/eidas/v2/zmr/DummyZmrClient.java  |  1 +
 .../eidas/v2/test/tasks/InitialSearchTaskFirstTest.java     | 13 ++++++++++++-
 6 files changed, 26 insertions(+), 2 deletions(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernb/DummyErnbClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernb/DummyErnbClient.java
index 0c8a2f59..978be4d0 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernb/DummyErnbClient.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernb/DummyErnbClient.java
@@ -11,6 +11,7 @@ public class DummyErnbClient implements IErnbClient {
 
   @Override
   public ArrayList<RegisterResult> searchWithPersonIdentifer(String personIdentifer) {
+    // NOTE: Are we using Mockito or these fixed strings for testing, why are those defined here?
     switch (personIdentifer) {
       case "a12345":
       case "a12345-":
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/DeSpecificDetailSearchProcessor.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/DeSpecificDetailSearchProcessor.java
index 51d6952f..b5e8551b 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/DeSpecificDetailSearchProcessor.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/DeSpecificDetailSearchProcessor.java
@@ -10,6 +10,7 @@ public class DeSpecificDetailSearchProcessor extends ICountrySpecificDetailSearc
 
   @Override
   public boolean canHandle(String countryCode, SimpleEidasData eidData) {
+    // NOTE: Please extract constant for "de"
     if (!countryCode.equalsIgnoreCase("de")) {
       return false;
     }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ICountrySpecificDetailSearchProcessor.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ICountrySpecificDetailSearchProcessor.java
index 3d6b35e9..b9ab2ceb 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ICountrySpecificDetailSearchProcessor.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ICountrySpecificDetailSearchProcessor.java
@@ -31,6 +31,7 @@ import org.springframework.beans.factory.annotation.Autowired;
 
 public abstract class ICountrySpecificDetailSearchProcessor {
 
+  // NOTE: Please use constructor injection
 
   protected IErnbClient ernbClient;
   protected IZmrClient zmrClient;
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
index 5066ac85..4142b68b 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
@@ -70,6 +70,8 @@ import lombok.extern.slf4j.Slf4j;
  */
 @Slf4j
 @Component("InitialSearchTask")
+// NOTE: General: Please rebase git commit and squash them where useful, i.e. "remove unused import" should
+//       not be a separate commit.
 public class InitialSearchTask extends AbstractAuthServletTask {
 
   private List<ICountrySpecificDetailSearchProcessor> handlers = new ArrayList<>();
@@ -96,6 +98,7 @@ public class InitialSearchTask extends AbstractAuthServletTask {
       final ILightResponse eidasResponse = authProcessData
           .getGenericDataFromSession(Constants.DATA_FULL_EIDAS_RESPONSE, ILightResponse.class);
 
+      // NOTE: Why is eidas first converted to a map, and then to a SimpleEidasData?
       final Map<String, Object> simpleAttrMap = convertEidasAttrToSimpleMap(
           eidasResponse.getAttributes().getAttributeMap());
 
@@ -110,14 +113,17 @@ public class InitialSearchTask extends AbstractAuthServletTask {
     }
   }
 
+  // NOTE: Please rename methods ... "step2" doesn't tell the reader anything
   private String step2(SimpleEidasData eidData) throws TaskExecutionException {
     String personIdentifier = eidData.getPseudonym();
+    // NOTE: Is that comment really necessary?
     //search in register(step 2)
     MergedRegisterSearchResult result = searchInZmrAndErnp(personIdentifier);
     if (result.getResultCount() == 0) {
       return step5(result, eidData);
     } else if (result.getResultCount() == 1) {
       return step3(result, eidData);
+      // NOTE: Why is that code commented-out?
     } //else if (result.getResultCount() > 1) {
     throw new TaskExecutionException(pendingReq, "Initial search - Kitt Process necessary.",
         new ManualFixNecessaryException(personIdentifier));
@@ -183,7 +189,7 @@ public class InitialSearchTask extends AbstractAuthServletTask {
     log.debug("Update " + result + " with " + eidData);
     //TODO
 
-
+    // NOTE: Sometimes the bpk is returned, sometimes "105"?
     return result.getBpk();
   }
 
@@ -269,6 +275,7 @@ public class InitialSearchTask extends AbstractAuthServletTask {
 
     log.debug("Automerge " + initialSearchResult + " with " + eidData + " " + mdsSearchResult);
     //TODO
+    // NOTE: Sometimes the bpk is returned, sometimes "105"?
     return "105";
   }
 
@@ -336,6 +343,7 @@ public class InitialSearchTask extends AbstractAuthServletTask {
 
   //just for testing
   //TODO is there a nicer solution?
+  // There is: Constructor Injection see https://reflectoring.io/constructor-injection/ or https://www.baeldung.com/constructor-injection-in-spring
   @Autowired
   public void setErnbClient(IErnbClient ernbClient) {
     this.ernbClient = ernbClient;
@@ -349,6 +357,7 @@ public class InitialSearchTask extends AbstractAuthServletTask {
   @Autowired
   public void setHandlers(List<ICountrySpecificDetailSearchProcessor> handlers) {
     this.handlers = handlers;
+    // NOTE: There's a typo in "registrated"
     log.info("# " + handlers.size() + " country specific detail search services are registrated");
   }
 
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/DummyZmrClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/DummyZmrClient.java
index 0f3436d8..3af2e39e 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/DummyZmrClient.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/DummyZmrClient.java
@@ -11,6 +11,7 @@ public class DummyZmrClient implements IZmrClient {
 
   @Override
   public ArrayList<RegisterResult> searchWithPersonIdentifer(String personIdentifer) {
+    // NOTE: Are we using Mockito or these fixed strings for testing, why are those defined here?
     switch (personIdentifer) {
       case "a12345":
       case "a12345-":
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
index 64a73bda..d366fefc 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
@@ -62,9 +62,11 @@ public class InitialSearchTaskFirstTest {
   @InjectMocks
   private InitialSearchTask task;
 
+  // NOTE: Is defined as @Mock, but also manually mocked in "testNode100a" etc -- why?
   @Mock
   private IZmrClient zmrClient;
 
+  // NOTE: Is defined as @Mock, but also manually mocked in "testNode100a" etc -- why?
   @Mock
   private IErnbClient ernbClient;
 
@@ -92,7 +94,7 @@ public class InitialSearchTaskFirstTest {
    */
   @Before
   public void setUp() throws URISyntaxException, EaafStorageException {
-
+    // NOTE: PowerMockito should not be needed, as we don't want to test static and private methods
     task = PowerMockito.spy(task);
 
     httpReq = new MockHttpServletRequest("POST", "https://localhost/authhandler");
@@ -112,6 +114,7 @@ public class InitialSearchTaskFirstTest {
   /**
    * One match, but register update needed
    */
+  // NOTE: Why is the method named "testNode100a"?
   public void testNode100a() throws Exception {
 
     //Mock ZMR
@@ -119,6 +122,9 @@ public class InitialSearchTaskFirstTest {
     String randomBpk = RandomStringUtils.randomNumeric(6);
     zmrResult.add(new RegisterResult(randomBpk,"de/st/max123", "Max_new", "Mustermann", "2011-01-01"));
 
+    // NOTE: Are we using Mockito or these fixed strings in DummyZmrClient?
+    // NOTE: Please mock an interface, not a concrete class
+    // NOTE: But DummyZmrClient is also defined as a bean "ZmrClientForeIDAS" in "eidas_v2_auth.beans.xml"?
     zmrClient = Mockito.mock(DummyZmrClient.class);
     Mockito.when(zmrClient.searchWithPersonIdentifer("max123")).thenReturn(zmrResult);//"de/st/max123"???
     task.setZmrClient(zmrClient);
@@ -137,11 +143,13 @@ public class InitialSearchTaskFirstTest {
       Assert.assertTrue("Wrong bpk", bPk.equals(randomBpk));
 
     } catch (final TaskExecutionException e) {
+      // NOTE: assertTrue is probably the wrong method to use ... why catch the exception anyway?
       Assert.assertTrue("Wrong workflow, should not reach this point", false);
     }
   }
 
   @Test
+  // NOTE: Why is @DirtiesContext after each test necessary? What is changed in the context and why?
   @DirtiesContext
   /**
    * One match, but register update needed
@@ -563,6 +571,7 @@ public class InitialSearchTaskFirstTest {
 
       String bPk = (String)
           pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
+      // NOTE: Why "105"? Extract in a constant
       Assert.assertTrue("Wrong bpk", bPk.equals("105"));
     } catch (final TaskExecutionException e) {
       Assert.assertTrue("Wrong workflow, should not reach this point", false);
@@ -578,6 +587,8 @@ public class InitialSearchTaskFirstTest {
 
   @NotNull
   private AuthenticationResponse buildDummyAuthResponseMaxMustermann() throws URISyntaxException {
+    // NOTE: Those strings "de/st/max123" seem to be somehow relevant, but where do we need to use that exact string again?
+    // NOTE: If not, why not using random strings?
     return buildDummyAuthResponse("Max", "Mustermann",
         "de/st/max123", "2011-01-01");
   }
-- 
cgit v1.2.3


From 65da83cd168a87fe15c6e03a0178fe78780854fd Mon Sep 17 00:00:00 2001
From: Alexander Marsalek <amarsalek@iaik.tugraz.at>
Date: Fri, 18 Dec 2020 17:24:55 +0100
Subject: constructor based injection, randomized values for testing, added
 constants

---
 .../specific/modules/auth/eidas/v2/Constants.java  |   2 +
 .../modules/auth/eidas/v2/dao/SimpleEidasData.java |   1 -
 .../auth/eidas/v2/ernb/DummyErnbClient.java        |  26 +-
 .../handler/DeSpecificDetailSearchProcessor.java   |  10 +-
 .../ICountrySpecificDetailSearchProcessor.java     |  10 +-
 .../handler/ItSpecificDetailSearchProcessor.java   |   9 +-
 .../auth/eidas/v2/tasks/InitialSearchTask.java     |  99 +++----
 .../modules/auth/eidas/v2/zmr/DummyZmrClient.java  |  27 +-
 .../v2/test/tasks/InitialSearchTaskFirstTest.java  | 289 ++++++++-------------
 9 files changed, 174 insertions(+), 299 deletions(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java
index 145cf262..767a2d12 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java
@@ -176,4 +176,6 @@ public class Constants {
       "AJZyj/+sdCMDRq9RkvbFcgSTVn/OfS8EUE81ddwP8MNuJ1kd1SWBUJPaQX2JLJHrL54mkOhrkhH2M/zcuOTu8nW9TOEg"
       + "XGjrRB/0HpiYKpV+VDJViyyc/GacNLxN4Anw4pima6gHYaJIw9hQkL/nuO2hyh8PGJd7rxeFXJmbLy+X";
 
+  public static final String COUNTRY_CODE_DE = "DE";
+  public static final String COUNTRY_CODE_IT = "IT";
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleEidasData.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleEidasData.java
index 43d85772..674f5b48 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleEidasData.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleEidasData.java
@@ -83,7 +83,6 @@ public class SimpleEidasData {
     if (!result.getTaxNumber().equals(taxNumber)) {
       return false;
     }
-
     return true;
   }
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernb/DummyErnbClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernb/DummyErnbClient.java
index 978be4d0..2d2fa76d 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernb/DummyErnbClient.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernb/DummyErnbClient.java
@@ -11,16 +11,7 @@ public class DummyErnbClient implements IErnbClient {
 
   @Override
   public ArrayList<RegisterResult> searchWithPersonIdentifer(String personIdentifer) {
-    // NOTE: Are we using Mockito or these fixed strings for testing, why are those defined here?
-    switch (personIdentifer) {
-      case "a12345":
-      case "a12345-":
-        return result1();
-      case "a123456":
-        return result2();
-      default:
-        return resultEmpty();
-    }
+    return resultEmpty();
   }
 
   @Override
@@ -48,20 +39,5 @@ public class DummyErnbClient implements IErnbClient {
     return new ArrayList<RegisterResult>();//Nobody found
   }
 
-  private ArrayList<RegisterResult> result1() {
-    ArrayList<RegisterResult> results = new ArrayList<>();
-    RegisterResult result1 = new RegisterResult("a12345", "Tom", "Mustermann", "1950-01-01", "Wien");
-    results.add(result1);
-    RegisterResult result2 = new RegisterResult("a12345-", "Tom", "Mustermann", "1950-01-01", "Wien");
-    results.add(result2);
-    return results;
-  }
-
-  private ArrayList<RegisterResult> result2() {
-    ArrayList<RegisterResult> results = new ArrayList<>();
-    RegisterResult result = new RegisterResult("a123456", "Max", "Mustermann", "2000-01-01", "Wien");
-    results.add(result);
-    return results;
-  }
 
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/DeSpecificDetailSearchProcessor.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/DeSpecificDetailSearchProcessor.java
index b5e8551b..e8cb7a1a 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/DeSpecificDetailSearchProcessor.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/DeSpecificDetailSearchProcessor.java
@@ -1,17 +1,23 @@
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.handler;
 
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.MergedRegisterSearchResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernb.IErnbClient;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.IZmrClient;
 
 import java.util.ArrayList;
 
 public class DeSpecificDetailSearchProcessor extends ICountrySpecificDetailSearchProcessor {
 
+  public DeSpecificDetailSearchProcessor(IErnbClient ernbClient, IZmrClient zmrClient) {
+    super(ernbClient, zmrClient);
+  }
+
   @Override
   public boolean canHandle(String countryCode, SimpleEidasData eidData) {
-    // NOTE: Please extract constant for "de"
-    if (!countryCode.equalsIgnoreCase("de")) {
+    if (!countryCode.equalsIgnoreCase(Constants.COUNTRY_CODE_DE)) {
       return false;
     }
     if (eidData.getBirthName() == null || eidData.getBirthName().isEmpty()) {
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ICountrySpecificDetailSearchProcessor.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ICountrySpecificDetailSearchProcessor.java
index b9ab2ceb..6a2b2c0a 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ICountrySpecificDetailSearchProcessor.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ICountrySpecificDetailSearchProcessor.java
@@ -27,22 +27,14 @@ import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.MergedRegisterSearch
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernb.IErnbClient;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.IZmrClient;
-import org.springframework.beans.factory.annotation.Autowired;
 
 public abstract class ICountrySpecificDetailSearchProcessor {
 
-  // NOTE: Please use constructor injection
-
   protected IErnbClient ernbClient;
   protected IZmrClient zmrClient;
 
-  @Autowired
-  public void setErnbClient(IErnbClient ernbClient) {
+  public ICountrySpecificDetailSearchProcessor(IErnbClient ernbClient, IZmrClient zmrClient) {
     this.ernbClient = ernbClient;
-  }
-
-  @Autowired
-  public void setZmrClient(IZmrClient zmrClient) {
     this.zmrClient = zmrClient;
   }
 
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ItSpecificDetailSearchProcessor.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ItSpecificDetailSearchProcessor.java
index d055345a..a94a67b3 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ItSpecificDetailSearchProcessor.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ItSpecificDetailSearchProcessor.java
@@ -1,16 +1,23 @@
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.handler;
 
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.MergedRegisterSearchResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernb.IErnbClient;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.IZmrClient;
 
 import java.util.ArrayList;
 
 public class ItSpecificDetailSearchProcessor extends ICountrySpecificDetailSearchProcessor {
 
+  public ItSpecificDetailSearchProcessor(IErnbClient ernbClient, IZmrClient zmrClient) {
+    super(ernbClient, zmrClient);
+  }
+
   @Override
   public boolean canHandle(String countryCode, SimpleEidasData eidData) {
-    if (!countryCode.equalsIgnoreCase("it")) {
+    if (!countryCode.equalsIgnoreCase(Constants.COUNTRY_CODE_IT)) {
       return false;
     }
     if (eidData.getTaxNumber() == null || eidData.getTaxNumber().isEmpty()) {
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
index 4142b68b..5906ee6c 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
@@ -33,7 +33,6 @@ import javax.servlet.http.HttpServletResponse;
 
 import org.apache.commons.lang3.StringUtils;
 import org.joda.time.DateTime;
-import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.stereotype.Component;
 
 import com.google.common.collect.ImmutableMap;
@@ -76,9 +75,6 @@ public class InitialSearchTask extends AbstractAuthServletTask {
 
   private List<ICountrySpecificDetailSearchProcessor> handlers = new ArrayList<>();
 
-  //  @Autowired
-  //  private ApplicationContext context;
-
   private IErnbClient ernbClient;
   private IZmrClient zmrClient;
 
@@ -98,14 +94,11 @@ public class InitialSearchTask extends AbstractAuthServletTask {
       final ILightResponse eidasResponse = authProcessData
           .getGenericDataFromSession(Constants.DATA_FULL_EIDAS_RESPONSE, ILightResponse.class);
 
-      // NOTE: Why is eidas first converted to a map, and then to a SimpleEidasData?
-      final Map<String, Object> simpleAttrMap = convertEidasAttrToSimpleMap(
-          eidasResponse.getAttributes().getAttributeMap());
-
       // post-process eIDAS attributes
-      final SimpleEidasData eidData = convertSimpleMapToSimpleData(simpleAttrMap);
+      final SimpleEidasData eidData = convertSimpleMapToSimpleData(convertEidasAttrToSimpleMap(
+          eidasResponse.getAttributes().getAttributeMap()));
 
-      String bpK = step2(eidData);
+      String bpK = step2RegisterSearchWithPersonidentifier(eidData);
       authProcessData.setGenericDataToSession(Constants.DATA_RESULT_MATCHING_BPK, bpK);
     } catch (final Exception e) {
       log.error("Initial search FAILED.", e);
@@ -113,22 +106,16 @@ public class InitialSearchTask extends AbstractAuthServletTask {
     }
   }
 
-  // NOTE: Please rename methods ... "step2" doesn't tell the reader anything
-  private String step2(SimpleEidasData eidData) throws TaskExecutionException {
+  private String step2RegisterSearchWithPersonidentifier(SimpleEidasData eidData) throws TaskExecutionException {
     String personIdentifier = eidData.getPseudonym();
-    // NOTE: Is that comment really necessary?
-    //search in register(step 2)
     MergedRegisterSearchResult result = searchInZmrAndErnp(personIdentifier);
     if (result.getResultCount() == 0) {
-      return step5(result, eidData);
+      return step5CheckCountrySpecificSearchPossible(result, eidData);
     } else if (result.getResultCount() == 1) {
-      return step3(result, eidData);
-      // NOTE: Why is that code commented-out?
-    } //else if (result.getResultCount() > 1) {
+      return step3CheckRegisterUpdateNecessary(result, eidData);
+    }
     throw new TaskExecutionException(pendingReq, "Initial search - Kitt Process necessary.",
         new ManualFixNecessaryException(personIdentifier));
-    //    }
-    //    return null;
   }
 
   private SimpleEidasData convertSimpleMapToSimpleData(Map<String, Object> eidasAttrMap)
@@ -167,33 +154,31 @@ public class InitialSearchTask extends AbstractAuthServletTask {
     return simpleEidasData;
   }
 
-  private String step3(MergedRegisterSearchResult result, SimpleEidasData eidData) throws TaskExecutionException {
+  private String step3CheckRegisterUpdateNecessary(MergedRegisterSearchResult result, SimpleEidasData eidData)
+      throws TaskExecutionException {
     //check if data from eidas authentication matches with data from register
-
     log.debug("Compare " + result + " with " + eidData);
-    //TODO check if data matches
     try {
       if (eidData.equalsRegisterData(result)) {
-        //TODO
+        //No update necessary, just return bpk
         return result.getBpk();
       } else {
-        return step4(result, eidData);
+        return step4UpdateRegisterData(result, eidData);
       }
     } catch (WorkflowException e) {
       throw new TaskExecutionException(pendingReq, "Initial search - Kitt Process necessary.", e);
     }
   }
 
-  private String step4(MergedRegisterSearchResult result,
-                       SimpleEidasData eidData) throws WorkflowException {
+  private String step4UpdateRegisterData(MergedRegisterSearchResult result,
+                                         SimpleEidasData eidData) throws WorkflowException {
     log.debug("Update " + result + " with " + eidData);
-    //TODO
+    //TODO wann rechtlich möglich?
 
-    // NOTE: Sometimes the bpk is returned, sometimes "105"?
     return result.getBpk();
   }
 
-  private String step5(MergedRegisterSearchResult result, SimpleEidasData eidData)
+  private String step5CheckCountrySpecificSearchPossible(MergedRegisterSearchResult result, SimpleEidasData eidData)
       throws TaskExecutionException {
     String citizenCountry = eidData.getCitizenCountryCode();
     ICountrySpecificDetailSearchProcessor foundHandler = null;
@@ -208,15 +193,15 @@ public class InitialSearchTask extends AbstractAuthServletTask {
     }
     if (foundHandler == null) {
       //MDS search
-      return step8(result, eidData);
+      return step8RegisterSearchWithMds(result, eidData);
     } else {
       //country specific search
-      return step6(foundHandler, result, eidData);
+      return step6CountrySpecificSearch(foundHandler, result, eidData);
     }
   }
 
-  private String step6(ICountrySpecificDetailSearchProcessor countrySpecificDetailSearchProcessor,
-                       MergedRegisterSearchResult initialSearchResult, SimpleEidasData eidData)
+  private String step6CountrySpecificSearch(ICountrySpecificDetailSearchProcessor countrySpecificDetailSearchProcessor,
+                                            MergedRegisterSearchResult initialSearchResult, SimpleEidasData eidData)
       throws TaskExecutionException {
     //6 country specific search
     MergedRegisterSearchResult countrySpecificDetailSearchResult =
@@ -224,19 +209,19 @@ public class InitialSearchTask extends AbstractAuthServletTask {
 
     switch (countrySpecificDetailSearchResult.getResultCount()) {
       case 0:
-        return step8(initialSearchResult, eidData);
+        return step8RegisterSearchWithMds(initialSearchResult, eidData);
       case 1:
-        return step7a(initialSearchResult, countrySpecificDetailSearchResult, eidData);
+        return step7aKittProcess(initialSearchResult, countrySpecificDetailSearchResult, eidData);
       default://should not happen
         throw new TaskExecutionException(pendingReq, "Detail search - Kitt Process necessary.",
             new ManualFixNecessaryException(eidData));
     }
   }
 
-  private String step7a(MergedRegisterSearchResult initialSearchResult,
-                        MergedRegisterSearchResult countrySpecificDetailSearchResult,
-                        SimpleEidasData eidData) throws TaskExecutionException {
-    //TODO automerge
+  private String step7aKittProcess(MergedRegisterSearchResult initialSearchResult,
+                                   MergedRegisterSearchResult countrySpecificDetailSearchResult,
+                                   SimpleEidasData eidData) throws TaskExecutionException {
+    //Automerge data
     log.debug("Automerge " + initialSearchResult + " with " + eidData + " " + countrySpecificDetailSearchResult);
     try {
       if (initialSearchResult.getResultCount() != 0) {
@@ -261,8 +246,8 @@ public class InitialSearchTask extends AbstractAuthServletTask {
     }
   }
 
-  private String step8(MergedRegisterSearchResult initialSearchResult,
-                       SimpleEidasData eidData) {
+  private String step8RegisterSearchWithMds(MergedRegisterSearchResult initialSearchResult,
+                                            SimpleEidasData eidData) {
     MergedRegisterSearchResult mdsSearchResult = new MergedRegisterSearchResult();
 
     ArrayList<RegisterResult> resultsZmr =
@@ -274,9 +259,8 @@ public class InitialSearchTask extends AbstractAuthServletTask {
     mdsSearchResult.setResultsErnb(resultsErnb);
 
     log.debug("Automerge " + initialSearchResult + " with " + eidData + " " + mdsSearchResult);
-    //TODO
-    // NOTE: Sometimes the bpk is returned, sometimes "105"?
-    return "105";
+    //TODO implement next phase and return correct value
+    return "TODO-Temporary-Endnode-105";
   }
 
   private MergedRegisterSearchResult searchInZmrAndErnp(String personIdentifier) {
@@ -341,24 +325,17 @@ public class InitialSearchTask extends AbstractAuthServletTask {
     return result;
   }
 
-  //just for testing
-  //TODO is there a nicer solution?
-  // There is: Constructor Injection see https://reflectoring.io/constructor-injection/ or https://www.baeldung.com/constructor-injection-in-spring
-  @Autowired
-  public void setErnbClient(IErnbClient ernbClient) {
+  /**
+   * Constructor.
+   * @param handlers List of countrySpecificSearchProcessors
+   * @param ernbClient Ernb client
+   * @param zmrClient ZMR client
+   */
+  public InitialSearchTask(List<ICountrySpecificDetailSearchProcessor> handlers, IErnbClient ernbClient,
+                           IZmrClient zmrClient) {
     this.ernbClient = ernbClient;
-  }
-
-  @Autowired
-  public void setZmrClient(IZmrClient zmrClient) {
     this.zmrClient = zmrClient;
-  }
-
-  @Autowired
-  public void setHandlers(List<ICountrySpecificDetailSearchProcessor> handlers) {
     this.handlers = handlers;
-    // NOTE: There's a typo in "registrated"
-    log.info("# " + handlers.size() + " country specific detail search services are registrated");
+    log.info("# " + handlers.size() + " country specific detail search services are registered");
   }
-
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/DummyZmrClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/DummyZmrClient.java
index 3af2e39e..f4d77b03 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/DummyZmrClient.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/DummyZmrClient.java
@@ -11,16 +11,7 @@ public class DummyZmrClient implements IZmrClient {
 
   @Override
   public ArrayList<RegisterResult> searchWithPersonIdentifer(String personIdentifer) {
-    // NOTE: Are we using Mockito or these fixed strings for testing, why are those defined here?
-    switch (personIdentifer) {
-      case "a12345":
-      case "a12345-":
-        return result1();
-      case "a123456":
-        return result2();
-      default:
-        return resultEmpty();
-    }
+    return resultEmpty();
   }
 
   @Override
@@ -48,20 +39,4 @@ public class DummyZmrClient implements IZmrClient {
     return new ArrayList<RegisterResult>();//Nobody found
   }
 
-  private ArrayList<RegisterResult> result1() {
-    ArrayList<RegisterResult> results = new ArrayList<>();
-    RegisterResult result1 = new RegisterResult("12345", "Tom", "Mustermann", "1950-01-01", "Wien");
-    results.add(result1);
-    RegisterResult result2 = new RegisterResult("12345-", "Tom", "Mustermann", "1950-01-01", "Wien");
-    results.add(result2);
-    return results;
-  }
-
-  private ArrayList<RegisterResult> result2() {
-    ArrayList<RegisterResult> results = new ArrayList<>();
-    RegisterResult result = new RegisterResult("123456", "Max", "Mustermann", "2000-01-01", "Wien");
-    results.add(result);
-    return results;
-  }
-
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
index d366fefc..f7fc6b06 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
@@ -2,20 +2,17 @@ package at.asitplus.eidas.specific.modules.auth.eidas.v2.test.tasks;
 
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernb.DummyErnbClient;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernb.IErnbClient;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.ManualFixNecessaryException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.DeSpecificDetailSearchProcessor;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.ICountrySpecificDetailSearchProcessor;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.ItSpecificDetailSearchProcessor;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.InitialSearchTask;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.DummyZmrClient;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.IZmrClient;
 import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
 import at.gv.egiz.eaaf.core.exceptions.EaafStorageException;
 import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
 import at.gv.egiz.eaaf.core.impl.idp.auth.data.AuthProcessDataWrapper;
-import at.gv.egiz.eaaf.core.impl.idp.module.test.DummySpConfiguration;
 import at.gv.egiz.eaaf.core.impl.idp.module.test.TestRequestImpl;
 import at.gv.egiz.eaaf.core.impl.idp.process.ExecutionContextImpl;
 import eu.eidas.auth.commons.attribute.AttributeDefinition;
@@ -33,7 +30,6 @@ import org.junit.runner.RunWith;
 import org.mockito.InjectMocks;
 import org.mockito.Mock;
 import org.mockito.Mockito;
-import org.powermock.api.mockito.PowerMockito;
 import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.mock.web.MockHttpServletRequest;
 import org.springframework.mock.web.MockHttpServletResponse;
@@ -62,20 +58,16 @@ public class InitialSearchTaskFirstTest {
   @InjectMocks
   private InitialSearchTask task;
 
-  // NOTE: Is defined as @Mock, but also manually mocked in "testNode100a" etc -- why?
-  @Mock
   private IZmrClient zmrClient;
-
-  // NOTE: Is defined as @Mock, but also manually mocked in "testNode100a" etc -- why?
-  @Mock
   private IErnbClient ernbClient;
 
   final ExecutionContext executionContext = new ExecutionContextImpl();
   private MockHttpServletRequest httpReq;
   private MockHttpServletResponse httpResp;
   private TestRequestImpl pendingReq;
-  private DummySpConfiguration oaParam;
-
+  private String randomIdentifier = RandomStringUtils.randomNumeric(10);
+  private String randomFamilyName = RandomStringUtils.randomNumeric(11);
+  private String randomGivenName = RandomStringUtils.randomNumeric(12);
   /**
    * jUnit class initializer.
    *
@@ -86,7 +78,6 @@ public class InitialSearchTaskFirstTest {
     final String current = new java.io.File(".").toURI().toString();
     System.setProperty("eidas.ms.configuration", current
         + "src/test/resources/config/junit_config_1.properties");
-
   }
 
   /**
@@ -94,19 +85,15 @@ public class InitialSearchTaskFirstTest {
    */
   @Before
   public void setUp() throws URISyntaxException, EaafStorageException {
-    // NOTE: PowerMockito should not be needed, as we don't want to test static and private methods
-    task = PowerMockito.spy(task);
-
     httpReq = new MockHttpServletRequest("POST", "https://localhost/authhandler");
     httpResp = new MockHttpServletResponse();
     RequestContextHolder.resetRequestAttributes();
     RequestContextHolder.setRequestAttributes(new ServletRequestAttributes(httpReq, httpResp));
 
-    final AuthenticationResponse response = buildDummyAuthResponseMaxMustermann();
+    final AuthenticationResponse response = buildDummyAuthResponseRandomPerson();
     pendingReq = new TestRequestImpl();
     pendingReq.getSessionData(AuthProcessDataWrapper.class)
         .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
-
   }
 
   @Test
@@ -120,22 +107,18 @@ public class InitialSearchTaskFirstTest {
     //Mock ZMR
     ArrayList<RegisterResult> zmrResult = new ArrayList<>();
     String randomBpk = RandomStringUtils.randomNumeric(6);
-    zmrResult.add(new RegisterResult(randomBpk,"de/st/max123", "Max_new", "Mustermann", "2011-01-01"));
+    zmrResult.add(new RegisterResult(randomBpk, "de/st/"+randomIdentifier, "Max_new", randomFamilyName, "2011-01-01"));
 
-    // NOTE: Are we using Mockito or these fixed strings in DummyZmrClient?
-    // NOTE: Please mock an interface, not a concrete class
-    // NOTE: But DummyZmrClient is also defined as a bean "ZmrClientForeIDAS" in "eidas_v2_auth.beans.xml"?
-    zmrClient = Mockito.mock(DummyZmrClient.class);
-    Mockito.when(zmrClient.searchWithPersonIdentifer("max123")).thenReturn(zmrResult);//"de/st/max123"???
-    task.setZmrClient(zmrClient);
+    zmrClient = Mockito.mock(IZmrClient.class);
+    Mockito.when(zmrClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(zmrResult);
 
     //Mock ernb
     ArrayList<RegisterResult> ernbResult = new ArrayList<>();
 
-    ernbClient = Mockito.mock(DummyErnbClient.class);
-    Mockito.when(ernbClient.searchWithPersonIdentifer("max123")).thenReturn(ernbResult);//"de/st/max123"???
-    task.setErnbClient(ernbClient);
+    ernbClient = Mockito.mock(IErnbClient.class);
+    Mockito.when(ernbClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(ernbResult);
 
+    task = new InitialSearchTask(emptyHandlers(), ernbClient, zmrClient);
     try {
       task.execute(pendingReq, executionContext);
       String bPk = (String)
@@ -159,19 +142,18 @@ public class InitialSearchTaskFirstTest {
     //Mock ZMR
     ArrayList<RegisterResult> zmrResult = new ArrayList<>();
 
-    zmrClient = Mockito.mock(DummyZmrClient.class);
-    Mockito.when(zmrClient.searchWithPersonIdentifer("max123")).thenReturn(zmrResult);//"de/st/max123"???
-    task.setZmrClient(zmrClient);
+    zmrClient = Mockito.mock(IZmrClient.class);
+    Mockito.when(zmrClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(zmrResult);//"de/st/max123"???
 
     //Mock ernb
     ArrayList<RegisterResult> ernbResult = new ArrayList<>();
     String randomBpk = RandomStringUtils.randomNumeric(6);
-    ernbResult.add(new RegisterResult(randomBpk,"de/st/max123", "Max_new", "Mustermann", "2011-01-01"));
+    ernbResult.add(new RegisterResult(randomBpk, "de/st/"+randomIdentifier, "Max_new", randomFamilyName, "2011-01-01"));
 
-    ernbClient = Mockito.mock(DummyErnbClient.class);
-    Mockito.when(ernbClient.searchWithPersonIdentifer("max123")).thenReturn(ernbResult);//"de/st/max123"???
-    task.setErnbClient(ernbClient);
+    ernbClient = Mockito.mock(IErnbClient.class);
+    Mockito.when(ernbClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(ernbResult);
 
+    task = new InitialSearchTask(emptyHandlers(), ernbClient, zmrClient);
     try {
       task.execute(pendingReq, executionContext);
       String bPk = (String)
@@ -193,24 +175,20 @@ public class InitialSearchTaskFirstTest {
 
     //Mock ZMR
     ArrayList<RegisterResult> zmrResult = new ArrayList<>();
-    zmrResult.add(new RegisterResult("bpkMax","de/st/max123", "Max", "Mustermann", "2011-01-01"));
-    zmrResult.add(new RegisterResult("bpkMax","de/st/max123", "Maximilian", "Mustermann", "2011-01-01"));
-    zmrClient = Mockito.mock(DummyZmrClient.class);
-    Mockito.when(zmrClient.searchWithPersonIdentifer("max123")).thenReturn(zmrResult);//"de/st/max123"???
-    task.setZmrClient(zmrClient);
+    zmrResult.add(new RegisterResult("bpkMax", "de/st/"+randomIdentifier, randomGivenName, randomFamilyName, "2011-01-01"));
+    zmrResult.add(new RegisterResult("bpkMax", "de/st/"+randomIdentifier, "Maximilian", randomFamilyName, "2011-01-01"));
+    zmrClient = Mockito.mock(IZmrClient.class);
+    Mockito.when(zmrClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(zmrResult);
 
     //Mock ernb
     ArrayList<RegisterResult> ernbResult = new ArrayList<>();
-    ernbClient = Mockito.mock(DummyErnbClient.class);
-    Mockito.when(ernbClient.searchWithPersonIdentifer("max123")).thenReturn(ernbResult);//"de/st/max123"???
-    task.setErnbClient(ernbClient);
+    ernbClient = Mockito.mock(IErnbClient.class);
+    Mockito.when(ernbClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(ernbResult);
 
+    task = new InitialSearchTask(emptyHandlers(), ernbClient, zmrClient);
     try {
       task.execute(pendingReq, executionContext);
       Assert.assertTrue("Wrong workflow, should not reach this point/ get a bpk", false);
-      String bPk = (String)
-          pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
-
     } catch (final TaskExecutionException e) {
       Throwable origE = e.getOriginalException();
       Assert.assertTrue("Wrong exception", (origE.getCause() instanceof ManualFixNecessaryException));
@@ -227,25 +205,21 @@ public class InitialSearchTaskFirstTest {
 
     //Mock ZMR
     ArrayList<RegisterResult> zmrResult = new ArrayList<>();
-    zmrClient = Mockito.mock(DummyZmrClient.class);
-    Mockito.when(zmrClient.searchWithPersonIdentifer("max123")).thenReturn(zmrResult);//"de/st/max123"???
-    task.setZmrClient(zmrClient);
+    zmrClient = Mockito.mock(IZmrClient.class);
+    Mockito.when(zmrClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(zmrResult);
 
     //Mock ernb
     ArrayList<RegisterResult> ernbResult = new ArrayList<>();
-    ernbResult.add(new RegisterResult("bpkMax","de/st/max123", "Max", "Mustermann", "2011-01-01"));
-    ernbResult.add(new RegisterResult("bpkMax","de/st/max123", "Maximilian", "Mustermann", "2011-01-01"));
+    ernbResult.add(new RegisterResult("bpkMax", "de/st/"+randomIdentifier, randomGivenName, randomFamilyName, "2011-01-01"));
+    ernbResult.add(new RegisterResult("bpkMax", "de/st/"+randomIdentifier, "Maximilian", randomFamilyName, "2011-01-01"));
 
-    ernbClient = Mockito.mock(DummyErnbClient.class);
-    Mockito.when(ernbClient.searchWithPersonIdentifer("max123")).thenReturn(ernbResult);//"de/st/max123"???
-    task.setErnbClient(ernbClient);
+    ernbClient = Mockito.mock(IErnbClient.class);
+    Mockito.when(ernbClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(ernbResult);
 
+    task = new InitialSearchTask(emptyHandlers(), ernbClient, zmrClient);
     try {
       task.execute(pendingReq, executionContext);
       Assert.assertTrue("Wrong workflow, should not reach this point/ get a bpk", false);
-      String bPk = (String)
-          pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
-
     } catch (final TaskExecutionException e) {
       Throwable origE = e.getOriginalException();
       Assert.assertTrue("Wrong exception", (origE.getCause() instanceof ManualFixNecessaryException));
@@ -259,26 +233,25 @@ public class InitialSearchTaskFirstTest {
    */
   public void testNode102a() throws Exception {
 
+    String randomBpk = RandomStringUtils.randomNumeric(12);;
     //Mock ZMR
     ArrayList<RegisterResult> zmrResult = new ArrayList<>();
-    zmrClient = Mockito.mock(DummyZmrClient.class);
-    Mockito.when(zmrClient.searchWithPersonIdentifer("max123")).thenReturn(zmrResult);//"de/st/max123"???
-    task.setZmrClient(zmrClient);
+    zmrClient = Mockito.mock(IZmrClient.class);
+    Mockito.when(zmrClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(zmrResult);
 
     //Mock ernb
     ArrayList<RegisterResult> ernbResult = new ArrayList<>();
-    ernbResult.add(new RegisterResult("bpkMax","de/st/max123", "Max", "Mustermann", "2011-01-01"));
+    ernbResult.add(new RegisterResult(randomBpk, "de/st/"+randomIdentifier, randomGivenName, randomFamilyName, "2011-01-01"));
 
-    ernbClient = Mockito.mock(DummyErnbClient.class);
-    Mockito.when(ernbClient.searchWithPersonIdentifer("max123")).thenReturn(ernbResult);//"de/st/max123"???
-    task.setErnbClient(ernbClient);
+    ernbClient = Mockito.mock(IErnbClient.class);
+    Mockito.when(ernbClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(ernbResult);
 
+    task = new InitialSearchTask(emptyHandlers(), ernbClient, zmrClient);
     try {
       task.execute(pendingReq, executionContext);
       String bPk = (String)
           pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
-      Assert.assertTrue("Wrong bpk", bPk.equals("bpkMax"));
-
+      Assert.assertTrue("Wrong bpk", bPk.equals(randomBpk));
     } catch (final TaskExecutionException e) {
       Assert.assertTrue("Wrong workflow, should not reach this point", false);
     }
@@ -290,27 +263,26 @@ public class InitialSearchTaskFirstTest {
    * One match, no register update needed
    */
   public void testNode102b() throws Exception {
-
+    String randomBpk = RandomStringUtils.randomNumeric(14);
     //Mock ZMR
     ArrayList<RegisterResult> zmrResult = new ArrayList<>();
-    zmrResult.add(new RegisterResult("bpkMax","de/st/max123", "Max", "Mustermann", "2011-01-01"));
+    zmrResult.add(new RegisterResult(randomBpk, "de/st/"+randomIdentifier, randomGivenName, randomFamilyName, "2011-01-01"));
 
-    zmrClient = Mockito.mock(DummyZmrClient.class);
-    Mockito.when(zmrClient.searchWithPersonIdentifer("max123")).thenReturn(zmrResult);//"de/st/max123"???
-    task.setZmrClient(zmrClient);
+    zmrClient = Mockito.mock(IZmrClient.class);
+    Mockito.when(zmrClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(zmrResult);
 
     //Mock ernb
     ArrayList<RegisterResult> ernbResult = new ArrayList<>();
 
-    ernbClient = Mockito.mock(DummyErnbClient.class);
-    Mockito.when(ernbClient.searchWithPersonIdentifer("max123")).thenReturn(ernbResult);//"de/st/max123"???
-    task.setErnbClient(ernbClient);
+    ernbClient = Mockito.mock(IErnbClient.class);
+    Mockito.when(ernbClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(ernbResult);
 
+    task = new InitialSearchTask(emptyHandlers(), ernbClient, zmrClient);
     try {
       task.execute(pendingReq, executionContext);
       String bPk = (String)
           pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
-      Assert.assertTrue("Wrong bpk", bPk.equals("bpkMax"));
+      Assert.assertTrue("Wrong bpk", bPk.equals(randomBpk));
 
     } catch (final TaskExecutionException e) {
       Assert.assertTrue("Wrong workflow, should not reach this point", false);
@@ -323,40 +295,36 @@ public class InitialSearchTaskFirstTest {
    * One match found in ZMR and ErnB with detail search
    */
   public void testNode103IT() throws Exception {
-    String bpkRegister = "bpkMax";
- String taxNumber = "tax123";
-    final AuthenticationResponse response = buildDummyAuthResponseMaxMustermannIT_Tax(taxNumber);
+    String bpkRegister = RandomStringUtils.randomNumeric(14);
+    String taxNumber = RandomStringUtils.randomNumeric(14);
+    final AuthenticationResponse response = buildDummyAuthResponseRandomPersonIT_Tax(taxNumber);
     TestRequestImpl pendingReq1 = new TestRequestImpl();
     pendingReq1.getSessionData(AuthProcessDataWrapper.class)
         .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
 
     //Mock ZMR initial search
     ArrayList<RegisterResult> zmrResultInitial = new ArrayList<>();
-    zmrClient = Mockito.mock(DummyZmrClient.class);
-    Mockito.when(zmrClient.searchWithPersonIdentifer("max123")).thenReturn(zmrResultInitial);
+    zmrClient = Mockito.mock(IZmrClient.class);
+    Mockito.when(zmrClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(zmrResultInitial);
     ArrayList<RegisterResult> zmrResultSpecific = new ArrayList<>();
     //String bpk, String pseudonym, String givenName, String familyName, String dateOfBirth,
     //                        String placeOfBirth, String birthName, String taxNumber, PostalAddressType address
-    zmrResultSpecific.add(new RegisterResult(bpkRegister,"it/st/max1234", "Max", "Mustermann", "2011-01-01", null,
-        null, taxNumber, null));
+    zmrResultSpecific.add(new RegisterResult(bpkRegister, "it/st/"+randomIdentifier+"4", randomGivenName, randomFamilyName,
+        "2011-01-01", null, null, taxNumber, null));
 
     Mockito.when(zmrClient.searchItSpecific(taxNumber)).thenReturn(zmrResultSpecific);
-    task.setZmrClient(zmrClient);
 
     //Mock ernb initial search
     ArrayList<RegisterResult> ernbResultInitial = new ArrayList<>();
-    ernbClient = Mockito.mock(DummyErnbClient.class);
-    Mockito.when(ernbClient.searchWithPersonIdentifer("max123")).thenReturn(ernbResultInitial);//"de/st/max123"???
+    ernbClient = Mockito.mock(IErnbClient.class);
+    Mockito.when(ernbClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(ernbResultInitial);
 
-    task.setErnbClient(ernbClient);
 
     //Mock country specific search
     List<ICountrySpecificDetailSearchProcessor> handlers = new ArrayList<>();
-    ItSpecificDetailSearchProcessor it = new ItSpecificDetailSearchProcessor();
-    it.setErnbClient(ernbClient);
-    it.setZmrClient(zmrClient);
+    ItSpecificDetailSearchProcessor it = new ItSpecificDetailSearchProcessor(ernbClient, zmrClient);
     handlers.add(it);
-    task.setHandlers(handlers);
+    task = new InitialSearchTask(handlers, ernbClient, zmrClient);
 
     try {
       task.execute(pendingReq1, executionContext);
@@ -375,8 +343,8 @@ public class InitialSearchTaskFirstTest {
    * Multiple matches found in ZMR and ErnB with detail search
    */
   public void testNode103DE() throws Exception {
-    String givenName = "Max";
-    String familyName = "Mustermann";
+    String givenName = randomGivenName;
+    String familyName = randomFamilyName;
     String pseudonym = "de/st/max1234";
     String bpk = "bpkMax";
     String dateOfBirth = "2011-01-01";
@@ -390,33 +358,26 @@ public class InitialSearchTaskFirstTest {
 
     //Mock ZMR initial search
     ArrayList<RegisterResult> zmrResultInitial = new ArrayList<>();
-    zmrClient = Mockito.mock(DummyZmrClient.class);
-    Mockito.when(zmrClient.searchWithPersonIdentifer("max123")).thenReturn(zmrResultInitial);
+    zmrClient = Mockito.mock(IZmrClient.class);
+    Mockito.when(zmrClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(zmrResultInitial);
     ArrayList<RegisterResult> zmrResultSpecific = new ArrayList<>();
 
-    zmrResultSpecific.add(new RegisterResult(bpk, pseudonym, givenName, familyName, dateOfBirth, placeOfBirth, birthName,
+    zmrResultSpecific.add(new RegisterResult(bpk, pseudonym, givenName, familyName, dateOfBirth, placeOfBirth,
+        birthName,
         null, null));
 
-    //.searchDeSpecific(eidData.getGivenName(), eidData.getFamilyName(), eidData.getDateOfBirth(),
-    //            eidData.getPlaceOfBirth(), eidData.getBirthName()
     Mockito.when(zmrClient.searchDeSpecific(givenName, familyName, dateOfBirth, placeOfBirth, birthName)).thenReturn(zmrResultSpecific);
 
-    task.setZmrClient(zmrClient);
-
     //Mock ernb initial search
     ArrayList<RegisterResult> ernbResultInitial = new ArrayList<>();
-    ernbClient = Mockito.mock(DummyErnbClient.class);
-    Mockito.when(ernbClient.searchWithPersonIdentifer("max123")).thenReturn(ernbResultInitial);//"de/st/max123"???
-
-    task.setErnbClient(ernbClient);
+    ernbClient = Mockito.mock(IErnbClient.class);
+    Mockito.when(ernbClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(ernbResultInitial);
 
     //Mock country specific search
     List<ICountrySpecificDetailSearchProcessor> handlers = new ArrayList<>();
-    DeSpecificDetailSearchProcessor de = new DeSpecificDetailSearchProcessor();
-    de.setErnbClient(ernbClient);
-    de.setZmrClient(zmrClient);
+    DeSpecificDetailSearchProcessor de = new DeSpecificDetailSearchProcessor(ernbClient, zmrClient);
     handlers.add(de);
-    task.setHandlers(handlers);
+    task = new InitialSearchTask(handlers, ernbClient, zmrClient);
 
     try {
       task.execute(pendingReq1, executionContext);
@@ -435,8 +396,8 @@ public class InitialSearchTaskFirstTest {
    * Multiple matches found in ZMR and ErnB with detail search
    */
   public void testNode104DE() throws Exception {
-    String givenName = "Max";
-    String familyName = "Mustermann";
+    String givenName = randomGivenName;
+    String familyName = randomFamilyName;
     String pseudonym1 = "de/st/max1234";
     String pseudonym2 = "de/st/max12345";
     String bpk1 = "bpkMax";
@@ -452,34 +413,29 @@ public class InitialSearchTaskFirstTest {
 
     //Mock ZMR initial search
     ArrayList<RegisterResult> zmrResultInitial = new ArrayList<>();
-    zmrClient = Mockito.mock(DummyZmrClient.class);
-    Mockito.when(zmrClient.searchWithPersonIdentifer("max123")).thenReturn(zmrResultInitial);
+    zmrClient = Mockito.mock(IZmrClient.class);
+    Mockito.when(zmrClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(zmrResultInitial);
     ArrayList<RegisterResult> zmrResultSpecific = new ArrayList<>();
 
-    zmrResultSpecific.add(new RegisterResult(bpk1, pseudonym1, givenName, familyName, dateOfBirth, placeOfBirth, birthName,
+    zmrResultSpecific.add(new RegisterResult(bpk1, pseudonym1, givenName, familyName, dateOfBirth, placeOfBirth,
+        birthName,
         null, null));
-    zmrResultSpecific.add(new RegisterResult(bpk2, pseudonym2, givenName, familyName, dateOfBirth, placeOfBirth, birthName,
+    zmrResultSpecific.add(new RegisterResult(bpk2, pseudonym2, givenName, familyName, dateOfBirth, placeOfBirth,
+        birthName,
         null, null));
-    //.searchDeSpecific(eidData.getGivenName(), eidData.getFamilyName(), eidData.getDateOfBirth(),
-    //            eidData.getPlaceOfBirth(), eidData.getBirthName()
     Mockito.when(zmrClient.searchDeSpecific(givenName, familyName, dateOfBirth, placeOfBirth, birthName)).thenReturn(zmrResultSpecific);
 
-    task.setZmrClient(zmrClient);
 
     //Mock ernb initial search
     ArrayList<RegisterResult> ernbResultInitial = new ArrayList<>();
-    ernbClient = Mockito.mock(DummyErnbClient.class);
-    Mockito.when(ernbClient.searchWithPersonIdentifer("max123")).thenReturn(ernbResultInitial);//"de/st/max123"???
-
-    task.setErnbClient(ernbClient);
+    ernbClient = Mockito.mock(IErnbClient.class);
+    Mockito.when(ernbClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(ernbResultInitial);
 
     //Mock country specific search
     List<ICountrySpecificDetailSearchProcessor> handlers = new ArrayList<>();
-    DeSpecificDetailSearchProcessor de = new DeSpecificDetailSearchProcessor();
-    de.setErnbClient(ernbClient);
-    de.setZmrClient(zmrClient);
+    DeSpecificDetailSearchProcessor de = new DeSpecificDetailSearchProcessor(ernbClient, zmrClient);
     handlers.add(de);
-    task.setHandlers(handlers);
+    task = new InitialSearchTask(handlers, ernbClient, zmrClient);
 
     try {
       task.execute(pendingReq1, executionContext);
@@ -498,43 +454,34 @@ public class InitialSearchTaskFirstTest {
    * Multiple matches found in ZMR and ErnB with detail search
    */
   public void testNode104IT() throws Exception {
-
-    String fakeTaxNumber = "tax123";
-    final AuthenticationResponse response = buildDummyAuthResponseMaxMustermannIT_Tax(fakeTaxNumber);
+    String fakeTaxNumber = RandomStringUtils.randomNumeric(14);;
+    final AuthenticationResponse response = buildDummyAuthResponseRandomPersonIT_Tax(fakeTaxNumber);
     TestRequestImpl pendingReq1 = new TestRequestImpl();
     pendingReq1.getSessionData(AuthProcessDataWrapper.class)
         .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
 
     //Mock ZMR initial search
     ArrayList<RegisterResult> zmrResultInitial = new ArrayList<>();
-    zmrClient = Mockito.mock(DummyZmrClient.class);
-    Mockito.when(zmrClient.searchWithPersonIdentifer("max123")).thenReturn(zmrResultInitial);
+    zmrClient = Mockito.mock(IZmrClient.class);
+    Mockito.when(zmrClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(zmrResultInitial);
     ArrayList<RegisterResult> zmrResultSpecific = new ArrayList<>();
-    //String bpk, String pseudonym, String givenName, String familyName, String dateOfBirth,
-    //                        String placeOfBirth, String birthName, String taxNumber, PostalAddressType address
-    zmrResultSpecific.add(new RegisterResult("bpkMax","it/st/max1234", "Max", "Mustermann", "2011-01-01", null, null,
+
+    zmrResultSpecific.add(new RegisterResult("bpkMax", "it/st/"+randomIdentifier+"4", randomGivenName, randomFamilyName, "2011-01-01", null, null,
         fakeTaxNumber, null));
-    zmrResultSpecific.add(new RegisterResult("bpkMax1","it/st/max1235", "Max", "Mustermann", "2011-01-01", null, null,
+    zmrResultSpecific.add(new RegisterResult("bpkMax1", "it/st/"+randomIdentifier+"5", randomGivenName, randomFamilyName, "2011-01-01", null, null,
         fakeTaxNumber, null));
     Mockito.when(zmrClient.searchItSpecific(fakeTaxNumber)).thenReturn(zmrResultSpecific);
 
-
-    task.setZmrClient(zmrClient);
-
     //Mock ernb initial search
     ArrayList<RegisterResult> ernbResultInitial = new ArrayList<>();
-    ernbClient = Mockito.mock(DummyErnbClient.class);
-    Mockito.when(ernbClient.searchWithPersonIdentifer("max123")).thenReturn(ernbResultInitial);//"de/st/max123"???
-
-    task.setErnbClient(ernbClient);
+    ernbClient = Mockito.mock(IErnbClient.class);
+    Mockito.when(ernbClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(ernbResultInitial);
 
     //Mock country specific search
     List<ICountrySpecificDetailSearchProcessor> handlers = new ArrayList<>();
-    ItSpecificDetailSearchProcessor it = new ItSpecificDetailSearchProcessor();
-    it.setErnbClient(ernbClient);
-    it.setZmrClient(zmrClient);
+    ItSpecificDetailSearchProcessor it = new ItSpecificDetailSearchProcessor(ernbClient, zmrClient);
     handlers.add(it);
-    task.setHandlers(handlers);
+    task = new InitialSearchTask(handlers, ernbClient, zmrClient);
 
     try {
       task.execute(pendingReq1, executionContext);
@@ -552,27 +499,25 @@ public class InitialSearchTaskFirstTest {
   /**
    * NO match found in ZMR and ErnB with Initial search
    */
-  public void testNode105() throws Exception {
+  public void testNode105() {
 
     //Mock ZMR
     ArrayList<RegisterResult> zmrResult = new ArrayList<>();
-    zmrClient = Mockito.mock(DummyZmrClient.class);
-    Mockito.when(zmrClient.searchWithPersonIdentifer("max123")).thenReturn(zmrResult);//"de/st/max123"???
-    task.setZmrClient(zmrClient);
+    zmrClient = Mockito.mock(IZmrClient.class);
+    Mockito.when(zmrClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(zmrResult);
 
     //Mock ernb
     ArrayList<RegisterResult> ernbResult = new ArrayList<>();
-    ernbClient = Mockito.mock(DummyErnbClient.class);
-    Mockito.when(ernbClient.searchWithPersonIdentifer("max123")).thenReturn(ernbResult);//"de/st/max123"???
-    task.setErnbClient(ernbClient);
+    ernbClient = Mockito.mock(IErnbClient.class);
+    Mockito.when(ernbClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(ernbResult);
 
+    task = new InitialSearchTask(emptyHandlers(), ernbClient, zmrClient);
     try {
       task.execute(pendingReq, executionContext);
 
       String bPk = (String)
           pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
-      // NOTE: Why "105"? Extract in a constant
-      Assert.assertTrue("Wrong bpk", bPk.equals("105"));
+      Assert.assertTrue("Wrong bpk", bPk.equals("TODO-Temporary-Endnode-105"));
     } catch (final TaskExecutionException e) {
       Assert.assertTrue("Wrong workflow, should not reach this point", false);
     }
@@ -580,27 +525,17 @@ public class InitialSearchTaskFirstTest {
 
 
   @NotNull
-  private AuthenticationResponse buildDummyAuthResponse() throws URISyntaxException {
-    return buildDummyAuthResponse(RandomStringUtils.randomAlphabetic(10), RandomStringUtils.randomAlphabetic(10),
-        "de/st/" + RandomStringUtils.randomNumeric(64), "2001-01-01");
-  }
-
-  @NotNull
-  private AuthenticationResponse buildDummyAuthResponseMaxMustermann() throws URISyntaxException {
-    // NOTE: Those strings "de/st/max123" seem to be somehow relevant, but where do we need to use that exact string again?
+  private AuthenticationResponse buildDummyAuthResponseRandomPerson() throws URISyntaxException {
+    // NOTE: Those strings "de/st/max123" seem to be somehow relevant, but where do we need to use that exact string
+    // again?
     // NOTE: If not, why not using random strings?
-    return buildDummyAuthResponse("Max", "Mustermann",
-        "de/st/max123", "2011-01-01");
-  }
-
-  private AuthenticationResponse buildDummyAuthResponseMaxMustermannIT() throws URISyntaxException {
-    return buildDummyAuthResponse("Max", "Mustermann",
-        "it/st/max123", "2011-01-01");
+    return buildDummyAuthResponse(randomGivenName, randomFamilyName,
+        "de/st/"+randomIdentifier, "2011-01-01");
   }
 
-  private AuthenticationResponse buildDummyAuthResponseMaxMustermannIT_Tax(String taxNumber) throws URISyntaxException {
-    return buildDummyAuthResponse("Max", "Mustermann",
-        "it/st/max123", "2011-01-01", taxNumber, null, null);
+  private AuthenticationResponse buildDummyAuthResponseRandomPersonIT_Tax(String taxNumber) throws URISyntaxException {
+    return buildDummyAuthResponse(randomGivenName, randomFamilyName,
+        "it/st/"+randomIdentifier, "2011-01-01", taxNumber, null, null);
   }
 
   @NotNull
@@ -611,10 +546,11 @@ public class InitialSearchTaskFirstTest {
 
   @NotNull
   private AuthenticationResponse buildDummyAuthResponseDE(String givenName, String familyName, String identifier,
-                                                        String dateOfBirth, String placeOfBirth,
+                                                          String dateOfBirth, String placeOfBirth,
                                                           String birthName) throws URISyntaxException {
     return buildDummyAuthResponse(givenName, familyName, identifier, dateOfBirth, null, placeOfBirth, birthName);
   }
+
   @NotNull
   private AuthenticationResponse buildDummyAuthResponse(String givenName, String familyName, String identifier,
                                                         String dateOfBirth, String taxNumber, String placeOfBirth,
@@ -653,13 +589,13 @@ public class InitialSearchTaskFirstTest {
         .put(attributeDef3, givenName)
         .put(attributeDef4, dateOfBirth);
 
-    if(taxNumber != null) {
+    if (taxNumber != null) {
       builder.put(attributeDef5, taxNumber);
     }
-    if(birthName != null) {
+    if (birthName != null) {
       builder.put(attributeDef7, birthName);
     }
-    if(placeOfBirth != null) {
+    if (placeOfBirth != null) {
       builder.put(attributeDef6, placeOfBirth);
     }
     final ImmutableAttributeMap attributeMap = builder.build();
@@ -669,4 +605,9 @@ public class InitialSearchTaskFirstTest {
         "afaf")
         .attributes(attributeMap).build();
   }
+
+  private List<ICountrySpecificDetailSearchProcessor> emptyHandlers() {
+    return new ArrayList<>();
+  }
+
 }
-- 
cgit v1.2.3


From ed033b4105eec8c00189729bd4b38b17c6b40509 Mon Sep 17 00:00:00 2001
From: Alexander Marsalek <amarsalek@iaik.tugraz.at>
Date: Thu, 7 Jan 2021 18:16:45 +0100
Subject: Resolve merge comments

---
 .../specific/modules/auth/eidas/v2/Constants.java  |   2 +-
 .../modules/auth/eidas/v2/dao/ErnbEidData.java     |   2 +-
 .../eidas/v2/dao/MergedRegisterSearchResult.java   |  57 ++-
 .../modules/auth/eidas/v2/dao/RegisterResult.java  |  61 +--
 .../modules/auth/eidas/v2/dao/SimpleEidasData.java |  27 +-
 .../auth/eidas/v2/ernb/DummyErnbClient.java        |  43 --
 .../modules/auth/eidas/v2/ernb/IErnbClient.java    |  20 -
 .../auth/eidas/v2/ernp/DummyErnpClient.java        |  66 ++++
 .../modules/auth/eidas/v2/ernp/IErnpClient.java    |  43 ++
 .../v2/exception/ManualFixNecessaryException.java  |   6 +-
 .../auth/eidas/v2/exception/WorkflowException.java |   6 +-
 .../CountrySpecificDetailSearchProcessor.java      |  61 +++
 .../handler/DeSpecificDetailSearchProcessor.java   |  35 +-
 .../ICountrySpecificDetailSearchProcessor.java     |  61 ---
 .../handler/ItSpecificDetailSearchProcessor.java   |  34 +-
 .../auth/eidas/v2/tasks/InitialSearchTask.java     | 188 ++++-----
 .../eidas/v2/tasks/ReceiveAuthnResponseTask.java   |   2 +-
 .../auth/eidas/v2/utils/EidasResponseUtils.java    |  82 +---
 .../modules/auth/eidas/v2/zmr/DummyZmrClient.java  |  27 +-
 .../modules/auth/eidas/v2/zmr/IZmrClient.java      |  27 +-
 .../src/main/resources/eidas_v2_auth.beans.xml     |   2 +-
 .../v2/test/tasks/InitialSearchTaskFirstTest.java  | 438 +++++++++------------
 .../resources/SpringTest-context_tasks_test.xml    |   2 +-
 23 files changed, 680 insertions(+), 612 deletions(-)
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernb/DummyErnbClient.java
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernb/IErnbClient.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernp/DummyErnpClient.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernp/IErnpClient.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/CountrySpecificDetailSearchProcessor.java
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ICountrySpecificDetailSearchProcessor.java

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java
index 767a2d12..57fd6ef1 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java
@@ -32,7 +32,7 @@ public class Constants {
   public static final String DATA_REQUESTED_LOA_LIST = "req_requestedLoA";
   public static final String DATA_REQUESTED_LOA_COMPERISON = "req_requestedLoAComperision";
   public static final String DATA_FULL_EIDAS_RESPONSE = "resp_fulleIDASResponse";
-  public static final String DATA_RESULT_MATCHING_BPK = "matching-result-bpk";//TODO?
+  public static final String DATA_RESULT_MATCHING_BPK = "matching-result-bpk";
 
   // templates for post-binding forwarding
   public static final String TEMPLATE_POST_FORWARD_NAME = "eidas_node_forward.html";
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/ErnbEidData.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/ErnbEidData.java
index 6c7eeb6b..b780d3e8 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/ErnbEidData.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/ErnbEidData.java
@@ -1,5 +1,5 @@
 /*
- * Copyright 2018 A-SIT Plus GmbH
+ * Copyright 2020 A-SIT Plus GmbH
  * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
  * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
  *
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/MergedRegisterSearchResult.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/MergedRegisterSearchResult.java
index 056b0450..7703af2a 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/MergedRegisterSearchResult.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/MergedRegisterSearchResult.java
@@ -1,3 +1,26 @@
+/*
+ * Copyright 2020 A-SIT Plus GmbH
+ * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
+ * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
+ *
+ * Licensed under the EUPL, Version 1.2 or - as soon they will be approved by
+ * the European Commission - subsequent versions of the EUPL (the "License");
+ * You may not use this work except in compliance with the License.
+ * You may obtain a copy of the License at:
+ * https://joinup.ec.europa.eu/news/understanding-eupl-v12
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" basis,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ *
+ * This product combines work with different licenses. See the "NOTICE" text
+ * file for details on the various modules and licenses.
+ * The "NOTICE" text file is part of the distribution. Any derivative works
+ * that you distribute must include a readable copy of the "NOTICE" text file.
+ */
+
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.dao;
 
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.WorkflowException;
@@ -5,28 +28,48 @@ import lombok.Data;
 
 import java.util.ArrayList;
 
-@Data public class MergedRegisterSearchResult {
+@Data
+public class MergedRegisterSearchResult {
+
+  final ArrayList<RegisterResult> resultsZmr;
+  final ArrayList<RegisterResult> resultsErnp;
 
-  ArrayList<RegisterResult> resultsZmr = new ArrayList<>();
-  ArrayList<RegisterResult> resultsErnb = new ArrayList<>();
+  public MergedRegisterSearchResult(ArrayList<RegisterResult> resultsZmr, ArrayList<RegisterResult> resultsErnp) {
+    this.resultsZmr = resultsZmr;
+    this.resultsErnp = resultsErnp;
+  }
 
   public int getResultCount() {
-    return resultsZmr.size() + resultsErnb.size();
+    return resultsZmr.size() + resultsErnp.size();
   }
 
   /**
-   * Verfies that there is only one match and retunrs the bpk.
+   * Verifies that there is only one match and returns the bpk.
+   *
    * @return bpk bpk of the match
    * @throws WorkflowException if multiple results have been found
    */
   public String getBpk() throws WorkflowException {
+    if (getResultCount() != 1) {
+      throw new WorkflowException("getResultCount() != 1");
+    }
+    return getResult().getBpk();
+  }
+
+  /**
+   * Returns the results, if there is exactly one, throws exception otherwise.
+   *
+   * @return The result
+   * @throws WorkflowException Results does not contain exactly one result
+   */
+  public RegisterResult getResult() throws WorkflowException {
     if (getResultCount() != 1) {
       throw new WorkflowException("getResultCount() != 1");
     }
     if (resultsZmr.size() == 1) {
-      return resultsZmr.get(0).getBpk();
+      return resultsZmr.get(0);
     } else {
-      return resultsErnb.get(0).getBpk();
+      return resultsErnp.get(0);
     }
   }
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/RegisterResult.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/RegisterResult.java
index c92808a1..1cc36fe9 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/RegisterResult.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/RegisterResult.java
@@ -1,3 +1,26 @@
+/*
+ * Copyright 2020 A-SIT Plus GmbH
+ * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
+ * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
+ *
+ * Licensed under the EUPL, Version 1.2 or - as soon they will be approved by
+ * the European Commission - subsequent versions of the EUPL (the "License");
+ * You may not use this work except in compliance with the License.
+ * You may obtain a copy of the License at:
+ * https://joinup.ec.europa.eu/news/understanding-eupl-v12
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" basis,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ *
+ * This product combines work with different licenses. See the "NOTICE" text
+ * file for details on the various modules and licenses.
+ * The "NOTICE" text file is part of the distribution. Any derivative works
+ * that you distribute must include a readable copy of the "NOTICE" text file.
+ */
+
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.dao;
 
 import at.gv.e_government.reference.namespace.persondata._20020228.PostalAddressType;
@@ -7,18 +30,18 @@ import lombok.Data;
 public class RegisterResult {
 
   // MDS
-  private String pseudonym = null;
-  private String givenName = null;
-  private String familyName = null;
-  private String dateOfBirth = null;
+  private String pseudonym;
+  private String givenName;
+  private String familyName;
+  private String dateOfBirth;
 
   // additional attributes
-  private String placeOfBirth = null;
-  private String birthName = null;
-  private String taxNumber = null;
-  private PostalAddressType address = null;
+  private String placeOfBirth;
+  private String birthName;
+  private String taxNumber;
+  private PostalAddressType address;
 
-  private String bpk = null;
+  private String bpk;
 
   /**
    * Register search result.
@@ -37,26 +60,6 @@ public class RegisterResult {
     this.dateOfBirth = dateOfBirth;
   }
 
-  /**
-   * Register search result.
-   *
-   * @param bpk          The bpk
-   * @param pseudonym    The pseudonym
-   * @param givenName    The givenName
-   * @param familyName   The familyName
-   * @param dateOfBirth  The dateOfBirth
-   * @param placeOfBirth The placeOfBirth
-   */
-  public RegisterResult(String bpk, String pseudonym, String givenName, String familyName, String dateOfBirth,
-                        String placeOfBirth) {
-    this.bpk = bpk;
-    this.pseudonym = pseudonym;
-    this.givenName = givenName;
-    this.familyName = familyName;
-    this.dateOfBirth = dateOfBirth;
-    this.placeOfBirth = placeOfBirth;
-  }
-
   /**
    * Register search result.
    *
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleEidasData.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleEidasData.java
index 674f5b48..57597122 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleEidasData.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleEidasData.java
@@ -1,5 +1,5 @@
 /*
- * Copyright 2018 A-SIT Plus GmbH
+ * Copyright 2020 A-SIT Plus GmbH
  * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
  * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
  *
@@ -30,18 +30,18 @@ import lombok.Data;
 @Data
 public class SimpleEidasData {
 
-  private String citizenCountryCode = null;
+  private String citizenCountryCode;
 
   // MDS
-  private String pseudonym = null;
-  private String givenName = null;
-  private String familyName = null;
-  private String dateOfBirth = null;
+  private String pseudonym;
+  private String givenName;
+  private String familyName;
+  private String dateOfBirth;
 
   // additional attributes
-  private String placeOfBirth = null;
-  private String birthName = null;
-  private PostalAddressType address = null;
+  private String placeOfBirth;
+  private String birthName;
+  private PostalAddressType address;
   private String taxNumber;
 
   /**
@@ -51,14 +51,7 @@ public class SimpleEidasData {
    * @throws WorkflowException if multiple results have been found
    */
   public boolean equalsRegisterData(MergedRegisterSearchResult result) throws WorkflowException {
-    if (result.getResultCount() != 1) {
-      throw new WorkflowException("result.getResultCount() != 1");
-    }
-    if (result.getResultsErnb().size() == 1) {
-      return equalsRegisterData(result.getResultsErnb().get(0));
-    } else {
-      return equalsRegisterData(result.getResultsZmr().get(0));
-    }
+    return equalsRegisterData(result.getResult());
   }
 
   private boolean equalsRegisterData(RegisterResult result) {
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernb/DummyErnbClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernb/DummyErnbClient.java
deleted file mode 100644
index 2d2fa76d..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernb/DummyErnbClient.java
+++ /dev/null
@@ -1,43 +0,0 @@
-package at.asitplus.eidas.specific.modules.auth.eidas.v2.ernb;
-
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
-import org.springframework.stereotype.Service;
-
-import java.util.ArrayList;
-
-@Service("ErnbClientForeIDAS")
-public class DummyErnbClient implements IErnbClient {
-
-  @Override
-  public ArrayList<RegisterResult> searchWithPersonIdentifer(String personIdentifer) {
-    return resultEmpty();
-  }
-
-  @Override
-  public ArrayList<RegisterResult> searchWithMds(String givenName, String familyName, String dateOfBirth) {
-    return resultEmpty();//TODO will I only receive matches where all three values match perfectly?
-  }
-
-  @Override
-  public ArrayList<RegisterResult> searchDeSpecific(String givenName, String familyName, String dateOfBirth,
-                                                    String birthPlace, String birthName) {
-    return resultEmpty();//TODO
-  }
-
-  @Override
-  public ArrayList<RegisterResult> searchItSpecific(String txNumber) {
-    return resultEmpty();//TODO
-  }
-
-  @Override
-  public void update(RegisterResult registerResult, SimpleEidasData eidData) {
-    //TODO
-  }
-
-  private ArrayList<RegisterResult> resultEmpty() {
-    return new ArrayList<RegisterResult>();//Nobody found
-  }
-
-
-}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernb/IErnbClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernb/IErnbClient.java
deleted file mode 100644
index cda4c426..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernb/IErnbClient.java
+++ /dev/null
@@ -1,20 +0,0 @@
-package at.asitplus.eidas.specific.modules.auth.eidas.v2.ernb;
-
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
-
-import java.util.ArrayList;
-
-public interface IErnbClient {
-
-  ArrayList<RegisterResult> searchWithPersonIdentifer(String personIdentifer);
-
-  ArrayList<RegisterResult> searchWithMds(String givenName, String familyName, String dateOfBirth);
-
-  ArrayList<RegisterResult> searchDeSpecific(String givenName, String familyName, String dateOfBirth,
-                                             String birthPlace, String birthName);
-
-  ArrayList<RegisterResult> searchItSpecific(String txNumber);
-
-  void update(RegisterResult registerResult, SimpleEidasData eidData);
-}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernp/DummyErnpClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernp/DummyErnpClient.java
new file mode 100644
index 00000000..3b49ab95
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernp/DummyErnpClient.java
@@ -0,0 +1,66 @@
+/*
+ * Copyright 2020 A-SIT Plus GmbH
+ * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
+ * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
+ *
+ * Licensed under the EUPL, Version 1.2 or - as soon they will be approved by
+ * the European Commission - subsequent versions of the EUPL (the "License");
+ * You may not use this work except in compliance with the License.
+ * You may obtain a copy of the License at:
+ * https://joinup.ec.europa.eu/news/understanding-eupl-v12
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" basis,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ *
+ * This product combines work with different licenses. See the "NOTICE" text
+ * file for details on the various modules and licenses.
+ * The "NOTICE" text file is part of the distribution. Any derivative works
+ * that you distribute must include a readable copy of the "NOTICE" text file.
+ */
+
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.ernp;
+
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
+import org.springframework.stereotype.Service;
+
+import java.util.ArrayList;
+
+@Service("ErnbClientForeIDAS")
+public class DummyErnpClient implements IErnpClient {
+
+  @Override
+  public ArrayList<RegisterResult> searchWithPersonIdentifier(String personIdentifier) {
+    return resultEmpty();
+  }
+
+  @Override
+  public ArrayList<RegisterResult> searchWithMds(String givenName, String familyName, String dateOfBirth) {
+    return resultEmpty();//TODO will I only receive matches where all three values match perfectly?
+  }
+
+  @Override
+  public ArrayList<RegisterResult> searchDeSpecific(String givenName, String familyName, String dateOfBirth,
+                                                    String birthPlace, String birthName) {
+    return resultEmpty();//TODO
+  }
+
+  @Override
+  public ArrayList<RegisterResult> searchItSpecific(String taxNumber) {
+    return resultEmpty();//TODO
+  }
+
+  @Override
+  public void update(RegisterResult registerResult, SimpleEidasData eidData) {
+    //TODO
+  }
+
+  private ArrayList<RegisterResult> resultEmpty() {
+    return new ArrayList<RegisterResult>();//Nobody found
+  }
+
+
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernp/IErnpClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernp/IErnpClient.java
new file mode 100644
index 00000000..01ac88fb
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernp/IErnpClient.java
@@ -0,0 +1,43 @@
+/*
+ * Copyright 2020 A-SIT Plus GmbH
+ * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
+ * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
+ *
+ * Licensed under the EUPL, Version 1.2 or - as soon they will be approved by
+ * the European Commission - subsequent versions of the EUPL (the "License");
+ * You may not use this work except in compliance with the License.
+ * You may obtain a copy of the License at:
+ * https://joinup.ec.europa.eu/news/understanding-eupl-v12
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" basis,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ *
+ * This product combines work with different licenses. See the "NOTICE" text
+ * file for details on the various modules and licenses.
+ * The "NOTICE" text file is part of the distribution. Any derivative works
+ * that you distribute must include a readable copy of the "NOTICE" text file.
+ */
+
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.ernp;
+
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
+
+import java.util.ArrayList;
+
+public interface IErnpClient {
+
+  ArrayList<RegisterResult> searchWithPersonIdentifier(String personIdentifier);
+
+  ArrayList<RegisterResult> searchWithMds(String givenName, String familyName, String dateOfBirth);
+
+  ArrayList<RegisterResult> searchDeSpecific(String givenName, String familyName, String dateOfBirth,
+                                             String birthPlace, String birthName);
+
+  ArrayList<RegisterResult> searchItSpecific(String taxNumber);
+
+  void update(RegisterResult registerResult, SimpleEidasData eidData);
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/exception/ManualFixNecessaryException.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/exception/ManualFixNecessaryException.java
index c22e8135..2fecaa6b 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/exception/ManualFixNecessaryException.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/exception/ManualFixNecessaryException.java
@@ -1,5 +1,5 @@
 /*
- * Copyright 2018 A-SIT Plus GmbH
+ * Copyright 2020 A-SIT Plus GmbH
  * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
  * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
  *
@@ -29,10 +29,10 @@ public class ManualFixNecessaryException extends EidasSAuthenticationException {
   private static final long serialVersionUID = 1L;
 
   public ManualFixNecessaryException(String personIdentifier) {
-    super("eidas.00", new Object[] { personIdentifier });//TODO "eidas.00"
+    super("eidas.09", new Object[] { personIdentifier });
   }
 
   public ManualFixNecessaryException(SimpleEidasData eidData) {
-    super("eidas.00", new Object[] { eidData.getPseudonym() });//TODO "eidas.00"   => what info to pass???
+    super("eidas.09", new Object[] { eidData.getPseudonym() });//TODO what info to pass???
   }
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/exception/WorkflowException.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/exception/WorkflowException.java
index aa879bcc..b6f3309b 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/exception/WorkflowException.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/exception/WorkflowException.java
@@ -1,5 +1,5 @@
 /*
- * Copyright 2018 A-SIT Plus GmbH
+ * Copyright 2020 A-SIT Plus GmbH
  * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
  * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
  *
@@ -19,7 +19,7 @@
  * file for details on the various modules and licenses.
  * The "NOTICE" text file is part of the distribution. Any derivative works
  * that you distribute must include a readable copy of the "NOTICE" text file.
-*/
+ */
 
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.exception;
 
@@ -27,7 +27,7 @@ public class WorkflowException extends EidasSAuthenticationException {
   private static final long serialVersionUID = 1L;
 
   public WorkflowException(String data) {
-    super("eidas.00", new Object[] { data });
+    super("eidas.08", new Object[]{data});
   }
 
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/CountrySpecificDetailSearchProcessor.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/CountrySpecificDetailSearchProcessor.java
new file mode 100644
index 00000000..c5b3b231
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/CountrySpecificDetailSearchProcessor.java
@@ -0,0 +1,61 @@
+/*
+ * Copyright 2020 A-SIT Plus GmbH
+ * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
+ * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
+ *
+ * Licensed under the EUPL, Version 1.2 or - as soon they will be approved by
+ * the European Commission - subsequent versions of the EUPL (the "License");
+ * You may not use this work except in compliance with the License.
+ * You may obtain a copy of the License at:
+ * https://joinup.ec.europa.eu/news/understanding-eupl-v12
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" basis,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ *
+ * This product combines work with different licenses. See the "NOTICE" text
+ * file for details on the various modules and licenses.
+ * The "NOTICE" text file is part of the distribution. Any derivative works
+ * that you distribute must include a readable copy of the "NOTICE" text file.
+ */
+
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.handler;
+
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.MergedRegisterSearchResult;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernp.IErnpClient;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.IZmrClient;
+
+public abstract class CountrySpecificDetailSearchProcessor {
+
+  protected IErnpClient ernbClient;
+  protected IZmrClient zmrClient;
+
+  public CountrySpecificDetailSearchProcessor(IErnpClient ernbClient, IZmrClient zmrClient) {
+    this.ernbClient = ernbClient;
+    this.zmrClient = zmrClient;
+  }
+
+  /**
+   * Get a friendlyName of this post-processor implementation.
+   *
+   * @return
+   */
+  public String getName() {
+    return this.getClass().getName();
+  }
+
+  /**
+   * Check if this postProcessor is sensitive for a specific country.
+   *
+   * @param countryCode of the eID data that should be processed
+   * @param eidData     eID data
+   * @return true if this implementation can handle the country, otherwise false
+   */
+  public abstract boolean canHandle(String countryCode, SimpleEidasData eidData);
+
+  public abstract MergedRegisterSearchResult search(SimpleEidasData eidData);
+
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/DeSpecificDetailSearchProcessor.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/DeSpecificDetailSearchProcessor.java
index e8cb7a1a..a29725c8 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/DeSpecificDetailSearchProcessor.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/DeSpecificDetailSearchProcessor.java
@@ -1,17 +1,40 @@
+/*
+ * Copyright 2020 A-SIT Plus GmbH
+ * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
+ * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
+ *
+ * Licensed under the EUPL, Version 1.2 or - as soon they will be approved by
+ * the European Commission - subsequent versions of the EUPL (the "License");
+ * You may not use this work except in compliance with the License.
+ * You may obtain a copy of the License at:
+ * https://joinup.ec.europa.eu/news/understanding-eupl-v12
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" basis,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ *
+ * This product combines work with different licenses. See the "NOTICE" text
+ * file for details on the various modules and licenses.
+ * The "NOTICE" text file is part of the distribution. Any derivative works
+ * that you distribute must include a readable copy of the "NOTICE" text file.
+ */
+
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.handler;
 
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.MergedRegisterSearchResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernb.IErnbClient;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernp.IErnpClient;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.IZmrClient;
 
 import java.util.ArrayList;
 
-public class DeSpecificDetailSearchProcessor extends ICountrySpecificDetailSearchProcessor {
+public class DeSpecificDetailSearchProcessor extends CountrySpecificDetailSearchProcessor {
 
-  public DeSpecificDetailSearchProcessor(IErnbClient ernbClient, IZmrClient zmrClient) {
+  public DeSpecificDetailSearchProcessor(IErnpClient ernbClient, IZmrClient zmrClient) {
     super(ernbClient, zmrClient);
   }
 
@@ -31,17 +54,17 @@ public class DeSpecificDetailSearchProcessor extends ICountrySpecificDetailSearc
 
   @Override
   public MergedRegisterSearchResult search(SimpleEidasData eidData) {
-    MergedRegisterSearchResult searchResult = new MergedRegisterSearchResult();
+
 
     ArrayList<RegisterResult> resultsZmr =
         zmrClient.searchDeSpecific(eidData.getGivenName(), eidData.getFamilyName(), eidData.getDateOfBirth(),
             eidData.getPlaceOfBirth(), eidData.getBirthName());
-    searchResult.setResultsZmr(resultsZmr);
 
     ArrayList<RegisterResult> resultsErnb =
         ernbClient.searchDeSpecific(eidData.getGivenName(), eidData.getFamilyName(), eidData.getDateOfBirth(),
             eidData.getPlaceOfBirth(), eidData.getBirthName());
-    searchResult.setResultsErnb(resultsErnb);
+
+    MergedRegisterSearchResult searchResult = new MergedRegisterSearchResult(resultsZmr, resultsErnb);
     return searchResult;
   }
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ICountrySpecificDetailSearchProcessor.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ICountrySpecificDetailSearchProcessor.java
deleted file mode 100644
index 6a2b2c0a..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ICountrySpecificDetailSearchProcessor.java
+++ /dev/null
@@ -1,61 +0,0 @@
-/*
- * Copyright 2018 A-SIT Plus GmbH
- * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
- * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
- *
- * Licensed under the EUPL, Version 1.2 or - as soon they will be approved by
- * the European Commission - subsequent versions of the EUPL (the "License");
- * You may not use this work except in compliance with the License.
- * You may obtain a copy of the License at:
- * https://joinup.ec.europa.eu/news/understanding-eupl-v12
- *
- * Unless required by applicable law or agreed to in writing, software
- * distributed under the License is distributed on an "AS IS" basis,
- * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
- * See the License for the specific language governing permissions and
- * limitations under the License.
- *
- * This product combines work with different licenses. See the "NOTICE" text
- * file for details on the various modules and licenses.
- * The "NOTICE" text file is part of the distribution. Any derivative works
- * that you distribute must include a readable copy of the "NOTICE" text file.
- */
-
-package at.asitplus.eidas.specific.modules.auth.eidas.v2.handler;
-
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.MergedRegisterSearchResult;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernb.IErnbClient;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.IZmrClient;
-
-public abstract class ICountrySpecificDetailSearchProcessor {
-
-  protected IErnbClient ernbClient;
-  protected IZmrClient zmrClient;
-
-  public ICountrySpecificDetailSearchProcessor(IErnbClient ernbClient, IZmrClient zmrClient) {
-    this.ernbClient = ernbClient;
-    this.zmrClient = zmrClient;
-  }
-
-  /**
-   * Get a friendlyName of this post-processor implementation.
-   *
-   * @return
-   */
-  public String getName() {
-    return this.getClass().getName();
-  }
-
-  /**
-   * Check if this postProcessor is sensitive for a specific country.
-   *
-   * @param countryCode of the eID data that should be processed
-   * @param eidData     eID data
-   * @return true if this implementation can handle the country, otherwise false
-   */
-  public abstract boolean canHandle(String countryCode, SimpleEidasData eidData);
-
-  public abstract MergedRegisterSearchResult search(SimpleEidasData eidData);
-
-}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ItSpecificDetailSearchProcessor.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ItSpecificDetailSearchProcessor.java
index a94a67b3..e730066d 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ItSpecificDetailSearchProcessor.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ItSpecificDetailSearchProcessor.java
@@ -1,17 +1,40 @@
+/*
+ * Copyright 2020 A-SIT Plus GmbH
+ * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
+ * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
+ *
+ * Licensed under the EUPL, Version 1.2 or - as soon they will be approved by
+ * the European Commission - subsequent versions of the EUPL (the "License");
+ * You may not use this work except in compliance with the License.
+ * You may obtain a copy of the License at:
+ * https://joinup.ec.europa.eu/news/understanding-eupl-v12
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" basis,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ *
+ * This product combines work with different licenses. See the "NOTICE" text
+ * file for details on the various modules and licenses.
+ * The "NOTICE" text file is part of the distribution. Any derivative works
+ * that you distribute must include a readable copy of the "NOTICE" text file.
+ */
+
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.handler;
 
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.MergedRegisterSearchResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernb.IErnbClient;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernp.IErnpClient;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.IZmrClient;
 
 import java.util.ArrayList;
 
-public class ItSpecificDetailSearchProcessor extends ICountrySpecificDetailSearchProcessor {
+public class ItSpecificDetailSearchProcessor extends CountrySpecificDetailSearchProcessor {
 
-  public ItSpecificDetailSearchProcessor(IErnbClient ernbClient, IZmrClient zmrClient) {
+  public ItSpecificDetailSearchProcessor(IErnpClient ernbClient, IZmrClient zmrClient) {
     super(ernbClient, zmrClient);
   }
 
@@ -28,15 +51,14 @@ public class ItSpecificDetailSearchProcessor extends ICountrySpecificDetailSearc
 
   @Override
   public MergedRegisterSearchResult search(SimpleEidasData eidData) {
-    MergedRegisterSearchResult searchResult = new MergedRegisterSearchResult();
 
     ArrayList<RegisterResult> resultsZmr =
         zmrClient.searchItSpecific(eidData.getTaxNumber());
-    searchResult.setResultsZmr(resultsZmr);
 
     ArrayList<RegisterResult> resultsErnb =
         ernbClient.searchItSpecific(eidData.getTaxNumber());
-    searchResult.setResultsErnb(resultsErnb);
+
+    MergedRegisterSearchResult searchResult = new MergedRegisterSearchResult(resultsZmr, resultsErnb);
     return searchResult;
   }
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
index 5906ee6c..c4f0f146 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
@@ -1,5 +1,5 @@
 /*
- * Copyright 2018 A-SIT Plus GmbH
+ * Copyright 2020 A-SIT Plus GmbH
  * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
  * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
  *
@@ -42,12 +42,11 @@ import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.MergedRegisterSearchResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernb.IErnbClient;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidPostProcessingException;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernp.IErnpClient;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidasAttributeException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.ManualFixNecessaryException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.WorkflowException;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.ICountrySpecificDetailSearchProcessor;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.CountrySpecificDetailSearchProcessor;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.EidasResponseUtils;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.IZmrClient;
 import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
@@ -63,29 +62,32 @@ import lombok.extern.slf4j.Slf4j;
 
 
 /**
- * Task that searches ErnB and ZMR before adding person to SZR.
+ * Task that searches ErnP and ZMR before adding person to SZR.
  *
- * @author tlenz
+ * @author amarsalek
  */
 @Slf4j
 @Component("InitialSearchTask")
-// NOTE: General: Please rebase git commit and squash them where useful, i.e. "remove unused import" should
-//       not be a separate commit.
 public class InitialSearchTask extends AbstractAuthServletTask {
 
-  private List<ICountrySpecificDetailSearchProcessor> handlers = new ArrayList<>();
+  private final List<CountrySpecificDetailSearchProcessor> handlers;
+  private final IErnpClient ernpClient;
+  private final IZmrClient zmrClient;
 
-  private IErnbClient ernbClient;
-  private IZmrClient zmrClient;
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see at.gv.egovernment.moa.id.process.springweb.MoaIdTask#execute(at.gv.
-   * egovernment.moa.id.process.api.ExecutionContext,
-   * javax.servlet.http.HttpServletRequest,
-   * javax.servlet.http.HttpServletResponse)
+  /**
+   * Constructor.
+   * @param handlers List of countrySpecificSearchProcessors
+   * @param ernpClient Ernp client
+   * @param zmrClient ZMR client
    */
+  public InitialSearchTask(List<CountrySpecificDetailSearchProcessor> handlers, IErnpClient ernpClient,
+                           IZmrClient zmrClient) {
+    this.ernpClient = ernpClient;
+    this.zmrClient = zmrClient;
+    this.handlers = handlers;
+    log.info("# " + handlers.size() + " country specific detail search services are registered");
+  }
+
   @Override
   public void execute(ExecutionContext executionContext, HttpServletRequest request, HttpServletResponse response)
       throws TaskExecutionException {
@@ -94,7 +96,6 @@ public class InitialSearchTask extends AbstractAuthServletTask {
       final ILightResponse eidasResponse = authProcessData
           .getGenericDataFromSession(Constants.DATA_FULL_EIDAS_RESPONSE, ILightResponse.class);
 
-      // post-process eIDAS attributes
       final SimpleEidasData eidData = convertSimpleMapToSimpleData(convertEidasAttrToSimpleMap(
           eidasResponse.getAttributes().getAttributeMap()));
 
@@ -107,10 +108,11 @@ public class InitialSearchTask extends AbstractAuthServletTask {
   }
 
   private String step2RegisterSearchWithPersonidentifier(SimpleEidasData eidData) throws TaskExecutionException {
+    log.trace("Starting step2RegisterSearchWithPersonidentifier");
     String personIdentifier = eidData.getPseudonym();
     MergedRegisterSearchResult result = searchInZmrAndErnp(personIdentifier);
     if (result.getResultCount() == 0) {
-      return step5CheckCountrySpecificSearchPossible(result, eidData);
+      return step5CheckAndPerformCountrySpecificSearchIfPossible(result, eidData);
     } else if (result.getResultCount() == 1) {
       return step3CheckRegisterUpdateNecessary(result, eidData);
     }
@@ -118,46 +120,9 @@ public class InitialSearchTask extends AbstractAuthServletTask {
         new ManualFixNecessaryException(personIdentifier));
   }
 
-  private SimpleEidasData convertSimpleMapToSimpleData(Map<String, Object> eidasAttrMap)
-      throws EidasAttributeException, EidPostProcessingException {
-    SimpleEidasData simpleEidasData = new SimpleEidasData();
-
-    final Object eIdentifierObj = eidasAttrMap.get(Constants.eIDAS_ATTR_PERSONALIDENTIFIER);
-    final Triple<String, String, String> eIdentifier =
-        EidasResponseUtils.parseEidasPersonalIdentifier((String) eIdentifierObj);
-    simpleEidasData.setCitizenCountryCode(eIdentifier.getFirst());
-
-    // MDS attributes
-    simpleEidasData.setPseudonym(EidasResponseUtils.processPseudonym(
-        eidasAttrMap.get(Constants.eIDAS_ATTR_PERSONALIDENTIFIER)));
-    simpleEidasData.setFamilyName(EidasResponseUtils.processFamilyName(
-        eidasAttrMap.get(Constants.eIDAS_ATTR_CURRENTFAMILYNAME)));
-    simpleEidasData.setGivenName(EidasResponseUtils.processGivenName(
-        eidasAttrMap.get(Constants.eIDAS_ATTR_CURRENTGIVENNAME)));
-    simpleEidasData.setDateOfBirth(EidasResponseUtils.processDateOfBirthToString(
-        eidasAttrMap.get(Constants.eIDAS_ATTR_DATEOFBIRTH)));
-
-    // additional attributes
-    simpleEidasData.setPlaceOfBirth(EidasResponseUtils.processPlaceOfBirth(
-        eidasAttrMap.get(Constants.eIDAS_ATTR_PLACEOFBIRTH)));
-    simpleEidasData.setBirthName(EidasResponseUtils.processBirthName(
-        eidasAttrMap.get(Constants.eIDAS_ATTR_BIRTHNAME)));
-    simpleEidasData.setAddress(EidasResponseUtils.processAddress(
-        eidasAttrMap.get(Constants.eIDAS_ATTR_CURRENTADDRESS)));
-
-    if (eidasAttrMap.containsKey(Constants.eIDAS_ATTR_TAXREFERENCE)) {
-      simpleEidasData.setTaxNumber(EidasResponseUtils.processTaxReference(
-          eidasAttrMap.get(Constants.eIDAS_ATTR_TAXREFERENCE)));
-    }
-
-    //TODO other additional attributes
-    return simpleEidasData;
-  }
-
   private String step3CheckRegisterUpdateNecessary(MergedRegisterSearchResult result, SimpleEidasData eidData)
       throws TaskExecutionException {
-    //check if data from eidas authentication matches with data from register
-    log.debug("Compare " + result + " with " + eidData);
+    log.trace("Starting step3CheckRegisterUpdateNecessary");
     try {
       if (eidData.equalsRegisterData(result)) {
         //No update necessary, just return bpk
@@ -172,18 +137,19 @@ public class InitialSearchTask extends AbstractAuthServletTask {
 
   private String step4UpdateRegisterData(MergedRegisterSearchResult result,
                                          SimpleEidasData eidData) throws WorkflowException {
+    log.trace("Starting step4UpdateRegisterData");
     log.debug("Update " + result + " with " + eidData);
     //TODO wann rechtlich möglich?
 
     return result.getBpk();
   }
 
-  private String step5CheckCountrySpecificSearchPossible(MergedRegisterSearchResult result, SimpleEidasData eidData)
-      throws TaskExecutionException {
+  private String step5CheckAndPerformCountrySpecificSearchIfPossible(
+      MergedRegisterSearchResult result, SimpleEidasData eidData) throws TaskExecutionException {
+    log.trace("Starting step5CheckAndPerformCountrySpecificSearchIfPossible");
     String citizenCountry = eidData.getCitizenCountryCode();
-    ICountrySpecificDetailSearchProcessor foundHandler = null;
-    for (final ICountrySpecificDetailSearchProcessor el : handlers) {
-      //5 check if country specific search is possible
+    CountrySpecificDetailSearchProcessor foundHandler = null;
+    for (final CountrySpecificDetailSearchProcessor el : handlers) {
       if (el.canHandle(citizenCountry, eidData)) {
         log.debug("Found suitable country specific search handler for " + citizenCountry
             + " by using: " + el.getName());
@@ -192,18 +158,16 @@ public class InitialSearchTask extends AbstractAuthServletTask {
       }
     }
     if (foundHandler == null) {
-      //MDS search
       return step8RegisterSearchWithMds(result, eidData);
     } else {
-      //country specific search
       return step6CountrySpecificSearch(foundHandler, result, eidData);
     }
   }
 
-  private String step6CountrySpecificSearch(ICountrySpecificDetailSearchProcessor countrySpecificDetailSearchProcessor,
+  private String step6CountrySpecificSearch(CountrySpecificDetailSearchProcessor countrySpecificDetailSearchProcessor,
                                             MergedRegisterSearchResult initialSearchResult, SimpleEidasData eidData)
       throws TaskExecutionException {
-    //6 country specific search
+    log.trace("Starting step6CountrySpecificSearch");
     MergedRegisterSearchResult countrySpecificDetailSearchResult =
         countrySpecificDetailSearchProcessor.search(eidData);
 
@@ -212,7 +176,7 @@ public class InitialSearchTask extends AbstractAuthServletTask {
         return step8RegisterSearchWithMds(initialSearchResult, eidData);
       case 1:
         return step7aKittProcess(initialSearchResult, countrySpecificDetailSearchResult, eidData);
-      default://should not happen
+      default:
         throw new TaskExecutionException(pendingReq, "Detail search - Kitt Process necessary.",
             new ManualFixNecessaryException(eidData));
     }
@@ -221,8 +185,7 @@ public class InitialSearchTask extends AbstractAuthServletTask {
   private String step7aKittProcess(MergedRegisterSearchResult initialSearchResult,
                                    MergedRegisterSearchResult countrySpecificDetailSearchResult,
                                    SimpleEidasData eidData) throws TaskExecutionException {
-    //Automerge data
-    log.debug("Automerge " + initialSearchResult + " with " + eidData + " " + countrySpecificDetailSearchResult);
+    log.trace("Starting step7aKittProcess");
     try {
       if (initialSearchResult.getResultCount() != 0) {
         throw new WorkflowException("initialSearchResult.getResultCount() != 0");
@@ -231,14 +194,11 @@ public class InitialSearchTask extends AbstractAuthServletTask {
         throw new WorkflowException("countrySpecificDetailSearchResult.getResultCount() != 1");
       }
       if (countrySpecificDetailSearchResult.getResultsZmr().size() == 1) {
-        //update ZMR
         zmrClient.update(countrySpecificDetailSearchResult.getResultsZmr().get(0), eidData);
       }
-      if (countrySpecificDetailSearchResult.getResultsErnb().size() == 1) {
-        //update ErnB
-        ernbClient.update(countrySpecificDetailSearchResult.getResultsErnb().get(0), eidData);
+      if (countrySpecificDetailSearchResult.getResultsErnp().size() == 1) {
+        ernpClient.update(countrySpecificDetailSearchResult.getResultsErnp().get(0), eidData);
       }
-
       String bpK = countrySpecificDetailSearchResult.getBpk();
       return bpK;
     } catch (WorkflowException e) {
@@ -248,35 +208,70 @@ public class InitialSearchTask extends AbstractAuthServletTask {
 
   private String step8RegisterSearchWithMds(MergedRegisterSearchResult initialSearchResult,
                                             SimpleEidasData eidData) {
-    MergedRegisterSearchResult mdsSearchResult = new MergedRegisterSearchResult();
-
+    log.trace("Starting step8RegisterSearchWithMds");
     ArrayList<RegisterResult> resultsZmr =
         zmrClient.searchWithMds(eidData.getGivenName(), eidData.getFamilyName(), eidData.getDateOfBirth());
-    mdsSearchResult.setResultsZmr(resultsZmr);
 
-    ArrayList<RegisterResult> resultsErnb =
-        ernbClient.searchWithMds(eidData.getGivenName(), eidData.getFamilyName(), eidData.getDateOfBirth());
-    mdsSearchResult.setResultsErnb(resultsErnb);
+    ArrayList<RegisterResult> resultsErnp =
+        ernpClient.searchWithMds(eidData.getGivenName(), eidData.getFamilyName(), eidData.getDateOfBirth());
 
+    MergedRegisterSearchResult mdsSearchResult = new MergedRegisterSearchResult(resultsZmr, resultsErnp);
     log.debug("Automerge " + initialSearchResult + " with " + eidData + " " + mdsSearchResult);
     //TODO implement next phase and return correct value
     return "TODO-Temporary-Endnode-105";
   }
 
   private MergedRegisterSearchResult searchInZmrAndErnp(String personIdentifier) {
-    MergedRegisterSearchResult initialSearchResult = new MergedRegisterSearchResult();
 
     ArrayList<RegisterResult> resultsZmr =
-        zmrClient.searchWithPersonIdentifer(personIdentifier);
-    initialSearchResult.setResultsZmr(resultsZmr);
+        zmrClient.searchWithPersonIdentifier(personIdentifier);
 
-    ArrayList<RegisterResult> resultsErnb =
-        ernbClient.searchWithPersonIdentifer(personIdentifier);
-    initialSearchResult.setResultsErnb(resultsErnb);
+    ArrayList<RegisterResult> resultsErnp =
+        ernpClient.searchWithPersonIdentifier(personIdentifier);
 
+    MergedRegisterSearchResult initialSearchResult = new MergedRegisterSearchResult(resultsZmr, resultsErnp);
     return initialSearchResult;
   }
 
+  private SimpleEidasData convertSimpleMapToSimpleData(Map<String, Object> eidasAttrMap)
+      throws EidasAttributeException {
+    SimpleEidasData simpleEidasData = new SimpleEidasData();
+
+    final Object eIdentifierObj = eidasAttrMap.get(Constants.eIDAS_ATTR_PERSONALIDENTIFIER);
+    final Triple<String, String, String> eIdentifier =
+        EidasResponseUtils.parseEidasPersonalIdentifier((String) eIdentifierObj);
+    if (eIdentifier == null) {
+      throw new EidasAttributeException("Error processing eIdentifier");
+    }
+    simpleEidasData.setCitizenCountryCode(eIdentifier.getFirst());
+
+    // MDS attributes
+    simpleEidasData.setPseudonym(EidasResponseUtils.processPseudonym(
+        eidasAttrMap.get(Constants.eIDAS_ATTR_PERSONALIDENTIFIER)));
+    simpleEidasData.setFamilyName(EidasResponseUtils.processFamilyName(
+        eidasAttrMap.get(Constants.eIDAS_ATTR_CURRENTFAMILYNAME)));
+    simpleEidasData.setGivenName(EidasResponseUtils.processGivenName(
+        eidasAttrMap.get(Constants.eIDAS_ATTR_CURRENTGIVENNAME)));
+    simpleEidasData.setDateOfBirth(EidasResponseUtils.processDateOfBirthToString(
+        eidasAttrMap.get(Constants.eIDAS_ATTR_DATEOFBIRTH)));
+
+    // additional attributes
+    simpleEidasData.setPlaceOfBirth(EidasResponseUtils.processPlaceOfBirth(
+        eidasAttrMap.get(Constants.eIDAS_ATTR_PLACEOFBIRTH)));
+    simpleEidasData.setBirthName(EidasResponseUtils.processBirthName(
+        eidasAttrMap.get(Constants.eIDAS_ATTR_BIRTHNAME)));
+    simpleEidasData.setAddress(EidasResponseUtils.processAddress(
+        eidasAttrMap.get(Constants.eIDAS_ATTR_CURRENTADDRESS)));
+
+    if (eidasAttrMap.containsKey(Constants.eIDAS_ATTR_TAXREFERENCE)) {
+      simpleEidasData.setTaxNumber(EidasResponseUtils.processTaxReference(
+          eidasAttrMap.get(Constants.eIDAS_ATTR_TAXREFERENCE)));
+    }
+
+    //TODO other additional attributes
+    return simpleEidasData;
+  }
+
   private Map<String, Object> convertEidasAttrToSimpleMap(
       ImmutableMap<AttributeDefinition<?>, ImmutableSet<? extends AttributeValue<?>>> attributeMap) {
     final Map<String, Object> result = new HashMap<>();
@@ -293,7 +288,6 @@ public class InitialSearchTask extends AbstractAuthServletTask {
         } else {
           log.info("Ignore empty 'DateTime' attribute");
         }
-
       } else if (PostalAddress.class.equals(parameterizedType)) {
         final PostalAddress addressAttribute = EidasResponseUtils
             .translateAddressAttribute(el, attributeMap.get(el).asList());
@@ -304,7 +298,6 @@ public class InitialSearchTask extends AbstractAuthServletTask {
         } else {
           log.info("Ignore empty 'PostalAddress' attribute");
         }
-
       } else {
         final List<String> natPersonIdObj = EidasResponseUtils
             .translateStringListAttribute(el, attributeMap.get(el));
@@ -312,7 +305,6 @@ public class InitialSearchTask extends AbstractAuthServletTask {
         if (StringUtils.isNotEmpty(stringAttr)) {
           result.put(el.getFriendlyName(), stringAttr);
           log.trace("Find attr '" + el.getFriendlyName() + "' with value: " + stringAttr);
-
         } else {
           log.info("Ignore empty 'String' attribute");
         }
@@ -324,18 +316,4 @@ public class InitialSearchTask extends AbstractAuthServletTask {
 
     return result;
   }
-
-  /**
-   * Constructor.
-   * @param handlers List of countrySpecificSearchProcessors
-   * @param ernbClient Ernb client
-   * @param zmrClient ZMR client
-   */
-  public InitialSearchTask(List<ICountrySpecificDetailSearchProcessor> handlers, IErnbClient ernbClient,
-                           IZmrClient zmrClient) {
-    this.ernbClient = ernbClient;
-    this.zmrClient = zmrClient;
-    this.handlers = handlers;
-    log.info("# " + handlers.size() + " country specific detail search services are registered");
-  }
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveAuthnResponseTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveAuthnResponseTask.java
index 684546f7..0f733e8d 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveAuthnResponseTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveAuthnResponseTask.java
@@ -94,7 +94,7 @@ public class ReceiveAuthnResponseTask extends AbstractAuthServletTask {
           attrRegistry);
 
       // **********************************************************
-      // ******* Store resonse infos into session object **********
+      // ******* Store response infos into session object **********
       // **********************************************************
 
       // update MOA-Session data with received information
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/EidasResponseUtils.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/EidasResponseUtils.java
index aaa4212a..fa26c2c5 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/EidasResponseUtils.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/EidasResponseUtils.java
@@ -31,9 +31,6 @@ import java.util.regex.Pattern;
 
 import javax.annotation.Nullable;
 
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidPostProcessingException;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidasAttributeException;
-import at.gv.e_government.reference.namespace.persondata._20020228.PostalAddressType;
 import org.apache.commons.lang3.StringUtils;
 import org.joda.time.DateTime;
 import org.slf4j.Logger;
@@ -43,6 +40,8 @@ import com.google.common.collect.ImmutableList;
 import com.google.common.collect.ImmutableSet;
 
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidasAttributeException;
+import at.gv.e_government.reference.namespace.persondata._20020228.PostalAddressType;
 import at.gv.egiz.eaaf.core.impl.data.Triple;
 import eu.eidas.auth.commons.attribute.AttributeDefinition;
 import eu.eidas.auth.commons.attribute.AttributeValue;
@@ -177,7 +176,6 @@ public class EidasResponseUtils {
       ImmutableList<? extends AttributeValue<?>> attributeValues) {
     final AttributeValue<?> firstAttributeValue = attributeValues.get(0);
     return (PostalAddress) firstAttributeValue.getValue();
-
   }
 
   /**
@@ -185,34 +183,24 @@ public class EidasResponseUtils {
    *
    * @param currentAddressObj eIDAS current address information
    * @return current address or null if no attribute is available
-   * @throws EidPostProcessingException if post-processing fails
    * @throws EidasAttributeException    if eIDAS attribute is of a wrong type
    */
-  public static PostalAddressType processAddress(Object currentAddressObj) throws EidPostProcessingException,
-      EidasAttributeException {
-
+  public static PostalAddressType processAddress(Object currentAddressObj) throws EidasAttributeException {
     if (currentAddressObj != null) {
       if (currentAddressObj instanceof PostalAddress) {
         final PostalAddressType result = new PostalAddressType();
         result.setPostalCode(((PostalAddress) currentAddressObj).getPostCode());
         result.setMunicipality(((PostalAddress) currentAddressObj).getPostName());
-
         // TODO: add more mappings
-
         return result;
-
       } else {
         log.warn("eIDAS attr: " + Constants.eIDAS_ATTR_CURRENTADDRESS + " is of WRONG type");
         throw new EidasAttributeException(Constants.eIDAS_ATTR_CURRENTADDRESS);
-
       }
-
     } else {
       log.debug("NO '" + Constants.eIDAS_ATTR_CURRENTADDRESS + "' attribute. Post-Processing skipped ... ");
     }
-
     return null;
-
   }
 
   /**
@@ -220,27 +208,20 @@ public class EidasResponseUtils {
    *
    * @param birthNameObj eIDAS birthname information
    * @return birthName or null if no attribute is available
-   * @throws EidPostProcessingException if post-processing fails
    * @throws EidasAttributeException    if eIDAS attribute is of a wrong type
    */
-  public static String processBirthName(Object birthNameObj) throws EidPostProcessingException,
-      EidasAttributeException {
+  public static String processBirthName(Object birthNameObj) throws EidasAttributeException {
     if (birthNameObj != null) {
       if (birthNameObj instanceof String) {
         return (String) birthNameObj;
-
       } else {
         log.warn("eIDAS attr: " + Constants.eIDAS_ATTR_BIRTHNAME + " is of WRONG type");
         throw new EidasAttributeException(Constants.eIDAS_ATTR_BIRTHNAME);
-
       }
-
     } else {
       log.debug("NO '" + Constants.eIDAS_ATTR_BIRTHNAME + "' attribute. Post-Processing skipped ... ");
     }
-
     return null;
-
   }
 
   /**
@@ -248,11 +229,9 @@ public class EidasResponseUtils {
    *
    * @param placeOfBirthObj eIDAS Place-of-Birth information
    * @return place of Birth or null if no attribute is available
-   * @throws EidPostProcessingException if post-processing fails
    * @throws EidasAttributeException    if eIDAS attribute is of a wrong type
    */
-  public static String processPlaceOfBirth(Object placeOfBirthObj) throws EidPostProcessingException,
-      EidasAttributeException {
+  public static String processPlaceOfBirth(Object placeOfBirthObj) throws EidasAttributeException {
     if (placeOfBirthObj != null) {
       if (placeOfBirthObj instanceof String) {
         return (String) placeOfBirthObj;
@@ -266,9 +245,7 @@ public class EidasResponseUtils {
     } else {
       log.debug("NO '" + Constants.eIDAS_ATTR_PLACEOFBIRTH + "' attribute. Post-Processing skipped ... ");
     }
-
     return null;
-
   }
 
   /**
@@ -277,16 +254,12 @@ public class EidasResponseUtils {
    * @param dateOfBirthObj eIDAS date-of-birth attribute information
    * @return formated user's date-of-birth
    * @throws EidasAttributeException    if NO attribute is available
-   * @throws EidPostProcessingException if post-processing fails
    */
-  public static DateTime processDateOfBirth(Object dateOfBirthObj) throws EidPostProcessingException,
-      EidasAttributeException {
-    if (dateOfBirthObj == null || !(dateOfBirthObj instanceof DateTime)) {
+  public static DateTime processDateOfBirth(Object dateOfBirthObj) throws EidasAttributeException {
+    if (!(dateOfBirthObj instanceof DateTime)) {
       throw new EidasAttributeException(Constants.eIDAS_ATTR_DATEOFBIRTH);
     }
-
     return (DateTime) dateOfBirthObj;
-
   }
 
   /**
@@ -295,11 +268,9 @@ public class EidasResponseUtils {
    * @param dateOfBirthObj eIDAS date-of-birth attribute information
    * @return formated user's date-of-birth as string
    * @throws EidasAttributeException    if NO attribute is available
-   * @throws EidPostProcessingException if post-processing fails
    */
-  public static String processDateOfBirthToString(Object dateOfBirthObj) throws EidPostProcessingException,
-      EidasAttributeException {
-    if (dateOfBirthObj == null || !(dateOfBirthObj instanceof DateTime)) {
+  public static String processDateOfBirthToString(Object dateOfBirthObj) throws EidasAttributeException {
+    if (!(dateOfBirthObj instanceof DateTime)) {
       throw new EidasAttributeException(Constants.eIDAS_ATTR_DATEOFBIRTH);
     }
     return new SimpleDateFormat("yyyy-MM-dd").format(((DateTime) dateOfBirthObj).toDate());
@@ -311,16 +282,12 @@ public class EidasResponseUtils {
    * @param givenNameObj eIDAS givenName attribute information
    * @return formated user's givenname
    * @throws EidasAttributeException    if NO attribute is available
-   * @throws EidPostProcessingException if post-processing fails
    */
-  public static String processGivenName(Object givenNameObj) throws EidPostProcessingException,
-      EidasAttributeException {
-    if (givenNameObj == null || !(givenNameObj instanceof String)) {
+  public static String processGivenName(Object givenNameObj) throws EidasAttributeException {
+    if (!(givenNameObj instanceof String)) {
       throw new EidasAttributeException(Constants.eIDAS_ATTR_CURRENTGIVENNAME);
     }
-
     return (String) givenNameObj;
-
   }
 
   /**
@@ -329,16 +296,12 @@ public class EidasResponseUtils {
    * @param familyNameObj eIDAS familyName attribute information
    * @return formated user's familyname
    * @throws EidasAttributeException    if NO attribute is available
-   * @throws EidPostProcessingException if post-processing fails
    */
-  public static String processFamilyName(Object familyNameObj) throws EidPostProcessingException,
-      EidasAttributeException {
-    if (familyNameObj == null || !(familyNameObj instanceof String)) {
+  public static String processFamilyName(Object familyNameObj) throws EidasAttributeException {
+    if (!(familyNameObj instanceof String)) {
       throw new EidasAttributeException(Constants.eIDAS_ATTR_CURRENTFAMILYNAME);
     }
-
     return (String) familyNameObj;
-
   }
 
   /**
@@ -347,17 +310,16 @@ public class EidasResponseUtils {
    * @param personalIdObj eIDAS PersonalIdentifierAttribute
    * @return Unique personal identifier without country-code information
    * @throws EidasAttributeException    if NO attribute is available
-   * @throws EidPostProcessingException if post-processing fails
    */
-  public static String processPseudonym(Object personalIdObj) throws EidPostProcessingException,
-      EidasAttributeException {
-    if (personalIdObj == null || !(personalIdObj instanceof String)) {
+  public static String processPseudonym(Object personalIdObj) throws EidasAttributeException {
+    if (!(personalIdObj instanceof String)) {
       throw new EidasAttributeException(Constants.eIDAS_ATTR_PERSONALIDENTIFIER);
     }
-
     final Triple<String, String, String> eIdentifier =
         EidasResponseUtils.parseEidasPersonalIdentifier((String) personalIdObj);
-
+    if (eIdentifier.getThird() == null) {
+      throw new EidasAttributeException("Error processing eIdentifier");
+    }
     return eIdentifier.getThird();
   }
 
@@ -367,15 +329,11 @@ public class EidasResponseUtils {
    * @param taxReferenceObj eIDAS TaxReference attribute information
    * @return formated user's TaxReference
    * @throws EidasAttributeException    if NO attribute is available
-   * @throws EidPostProcessingException if post-processing fails
    */
-  public static String processTaxReference(Object taxReferenceObj) throws EidPostProcessingException,
-      EidasAttributeException {
-    if (taxReferenceObj == null || !(taxReferenceObj instanceof String)) {
+  public static String processTaxReference(Object taxReferenceObj) throws EidasAttributeException {
+    if (!(taxReferenceObj instanceof String)) {
       throw new EidasAttributeException(Constants.eIDAS_ATTR_CURRENTGIVENNAME);
     }
-
     return (String) taxReferenceObj;
-
   }
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/DummyZmrClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/DummyZmrClient.java
index f4d77b03..60dd2ef2 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/DummyZmrClient.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/DummyZmrClient.java
@@ -1,3 +1,26 @@
+/*
+ * Copyright 2020 A-SIT Plus GmbH
+ * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
+ * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
+ *
+ * Licensed under the EUPL, Version 1.2 or - as soon they will be approved by
+ * the European Commission - subsequent versions of the EUPL (the "License");
+ * You may not use this work except in compliance with the License.
+ * You may obtain a copy of the License at:
+ * https://joinup.ec.europa.eu/news/understanding-eupl-v12
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" basis,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ *
+ * This product combines work with different licenses. See the "NOTICE" text
+ * file for details on the various modules and licenses.
+ * The "NOTICE" text file is part of the distribution. Any derivative works
+ * that you distribute must include a readable copy of the "NOTICE" text file.
+ */
+
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr;
 
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
@@ -10,7 +33,7 @@ import java.util.ArrayList;
 public class DummyZmrClient implements IZmrClient {
 
   @Override
-  public ArrayList<RegisterResult> searchWithPersonIdentifer(String personIdentifer) {
+  public ArrayList<RegisterResult> searchWithPersonIdentifier(String personIdentifier) {
     return resultEmpty();
   }
 
@@ -26,7 +49,7 @@ public class DummyZmrClient implements IZmrClient {
   }
 
   @Override
-  public ArrayList<RegisterResult> searchItSpecific(String txNumber) {
+  public ArrayList<RegisterResult> searchItSpecific(String taxNumber) {
     return resultEmpty();//TODO
   }
 
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/IZmrClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/IZmrClient.java
index 4af7bfe9..3a518e64 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/IZmrClient.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/IZmrClient.java
@@ -1,3 +1,26 @@
+/*
+ * Copyright 2020 A-SIT Plus GmbH
+ * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
+ * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
+ *
+ * Licensed under the EUPL, Version 1.2 or - as soon they will be approved by
+ * the European Commission - subsequent versions of the EUPL (the "License");
+ * You may not use this work except in compliance with the License.
+ * You may obtain a copy of the License at:
+ * https://joinup.ec.europa.eu/news/understanding-eupl-v12
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" basis,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ *
+ * This product combines work with different licenses. See the "NOTICE" text
+ * file for details on the various modules and licenses.
+ * The "NOTICE" text file is part of the distribution. Any derivative works
+ * that you distribute must include a readable copy of the "NOTICE" text file.
+ */
+
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr;
 
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
@@ -7,14 +30,14 @@ import java.util.ArrayList;
 
 public interface IZmrClient {
 
-  ArrayList<RegisterResult> searchWithPersonIdentifer(String personIdentifer);
+  ArrayList<RegisterResult> searchWithPersonIdentifier(String personIdentifier);
 
   ArrayList<RegisterResult> searchWithMds(String givenName, String familyName, String dateOfBirth);
 
   ArrayList<RegisterResult> searchDeSpecific(String givenName, String familyName, String dateOfBirth,
                                              String birthPlace, String birthName);
 
-  ArrayList<RegisterResult> searchItSpecific(String txNumber);
+  ArrayList<RegisterResult> searchItSpecific(String taxNumber);
 
   void update(RegisterResult registerResult, SimpleEidasData eidData);
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml
index ca6eba20..52404bab 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml
@@ -18,7 +18,7 @@
     class="at.asitplus.eidas.specific.modules.auth.eidas.v2.szr.SzrClient" />
 
   <bean id="ErnbClientForeIDAS"
-        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.ernb.DummyErnbClient" />
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.ernp.DummyErnpClient" />
 
   <bean id="ZmrClientForeIDAS"
         class="at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.DummyZmrClient" />
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
index f7fc6b06..a1dce0f2 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
@@ -1,11 +1,34 @@
+/*
+ * Copyright 2020 A-SIT Plus GmbH
+ * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
+ * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
+ *
+ * Licensed under the EUPL, Version 1.2 or - as soon they will be approved by
+ * the European Commission - subsequent versions of the EUPL (the "License");
+ * You may not use this work except in compliance with the License.
+ * You may obtain a copy of the License at:
+ * https://joinup.ec.europa.eu/news/understanding-eupl-v12
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" basis,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ *
+ * This product combines work with different licenses. See the "NOTICE" text
+ * file for details on the various modules and licenses.
+ * The "NOTICE" text file is part of the distribution. Any derivative works
+ * that you distribute must include a readable copy of the "NOTICE" text file.
+ */
+
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.test.tasks;
 
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernb.IErnbClient;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernp.IErnpClient;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.ManualFixNecessaryException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.DeSpecificDetailSearchProcessor;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.ICountrySpecificDetailSearchProcessor;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.CountrySpecificDetailSearchProcessor;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.ItSpecificDetailSearchProcessor;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.InitialSearchTask;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.IZmrClient;
@@ -27,10 +50,7 @@ import org.junit.Before;
 import org.junit.BeforeClass;
 import org.junit.Test;
 import org.junit.runner.RunWith;
-import org.mockito.InjectMocks;
-import org.mockito.Mock;
 import org.mockito.Mockito;
-import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.mock.web.MockHttpServletRequest;
 import org.springframework.mock.web.MockHttpServletResponse;
 import org.springframework.test.annotation.DirtiesContext;
@@ -46,6 +66,7 @@ import java.net.URI;
 import java.net.URISyntaxException;
 import java.util.ArrayList;
 import java.util.List;
+import java.util.Random;
 
 @RunWith(SpringJUnit4ClassRunner.class)
 
@@ -53,13 +74,9 @@ import java.util.List;
 @DirtiesContext(classMode = ClassMode.BEFORE_CLASS)
 public class InitialSearchTaskFirstTest {
 
-  @Autowired(required = true)
-  @Mock
-  @InjectMocks
   private InitialSearchTask task;
-
   private IZmrClient zmrClient;
-  private IErnbClient ernbClient;
+  private IErnpClient ernpClient;
 
   final ExecutionContext executionContext = new ExecutionContextImpl();
   private MockHttpServletRequest httpReq;
@@ -68,6 +85,12 @@ public class InitialSearchTaskFirstTest {
   private String randomIdentifier = RandomStringUtils.randomNumeric(10);
   private String randomFamilyName = RandomStringUtils.randomNumeric(11);
   private String randomGivenName = RandomStringUtils.randomNumeric(12);
+  private String randomPlaceOfBirth = RandomStringUtils.randomNumeric(12);
+  private String randomBirthName = RandomStringUtils.randomNumeric(12);
+  private String randomDate = "2011-01-"+ (10 + new Random().nextInt(18));
+  private String DE_ST = "de/st/";
+  private String IT_ST = "it/st/";
+
   /**
    * jUnit class initializer.
    *
@@ -101,68 +124,52 @@ public class InitialSearchTaskFirstTest {
   /**
    * One match, but register update needed
    */
-  // NOTE: Why is the method named "testNode100a"?
-  public void testNode100a() throws Exception {
+  public void testNode100_UserIdentifiedUpdateNecessary_a() throws Exception {
 
-    //Mock ZMR
     ArrayList<RegisterResult> zmrResult = new ArrayList<>();
     String randomBpk = RandomStringUtils.randomNumeric(6);
-    zmrResult.add(new RegisterResult(randomBpk, "de/st/"+randomIdentifier, "Max_new", randomFamilyName, "2011-01-01"));
+    String newFirstName = RandomStringUtils.randomAlphabetic(5);
+    zmrResult.add(new RegisterResult(randomBpk, DE_ST+randomIdentifier, newFirstName, randomFamilyName, randomDate));
 
     zmrClient = Mockito.mock(IZmrClient.class);
-    Mockito.when(zmrClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(zmrResult);
-
-    //Mock ernb
-    ArrayList<RegisterResult> ernbResult = new ArrayList<>();
+    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResult);
 
-    ernbClient = Mockito.mock(IErnbClient.class);
-    Mockito.when(ernbClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(ernbResult);
-
-    task = new InitialSearchTask(emptyHandlers(), ernbClient, zmrClient);
-    try {
-      task.execute(pendingReq, executionContext);
-      String bPk = (String)
-          pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
-      Assert.assertTrue("Wrong bpk", bPk.equals(randomBpk));
+    ArrayList<RegisterResult> ernpResult = new ArrayList<>();
+    ernpClient = Mockito.mock(IErnpClient.class);
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(ernpResult);
 
-    } catch (final TaskExecutionException e) {
-      // NOTE: assertTrue is probably the wrong method to use ... why catch the exception anyway?
-      Assert.assertTrue("Wrong workflow, should not reach this point", false);
-    }
+    task = new InitialSearchTask(emptyHandlers(), ernpClient, zmrClient);
+    task.execute(pendingReq, executionContext);
+    String bPk = (String)
+        pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
+    Assert.assertTrue("Wrong bpk", bPk.equals(randomBpk));
   }
 
   @Test
-  // NOTE: Why is @DirtiesContext after each test necessary? What is changed in the context and why?
   @DirtiesContext
   /**
    * One match, but register update needed
    */
-  public void testNode100b() throws Exception {
+  public void testNode100_UserIdentifiedUpdateNecessary_b() throws TaskExecutionException {
 
-    //Mock ZMR
     ArrayList<RegisterResult> zmrResult = new ArrayList<>();
 
     zmrClient = Mockito.mock(IZmrClient.class);
-    Mockito.when(zmrClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(zmrResult);//"de/st/max123"???
+    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResult);
 
-    //Mock ernb
-    ArrayList<RegisterResult> ernbResult = new ArrayList<>();
+    ArrayList<RegisterResult> ernpResult = new ArrayList<>();
     String randomBpk = RandomStringUtils.randomNumeric(6);
-    ernbResult.add(new RegisterResult(randomBpk, "de/st/"+randomIdentifier, "Max_new", randomFamilyName, "2011-01-01"));
+    ernpResult.add(new RegisterResult(randomBpk, DE_ST+randomIdentifier, "Max_new", randomFamilyName, randomDate));
 
-    ernbClient = Mockito.mock(IErnbClient.class);
-    Mockito.when(ernbClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(ernbResult);
+    ernpClient = Mockito.mock(IErnpClient.class);
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(ernpResult);
 
-    task = new InitialSearchTask(emptyHandlers(), ernbClient, zmrClient);
-    try {
-      task.execute(pendingReq, executionContext);
-      String bPk = (String)
-          pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
-      Assert.assertTrue("Wrong bpk", bPk.equals(randomBpk));
+    task = new InitialSearchTask(emptyHandlers(), ernpClient, zmrClient);
+    task.execute(pendingReq, executionContext);
+    String bPk = (String)
+        pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
+    Assert.assertTrue("Wrong bpk", bPk.equals(randomBpk));
 
-    } catch (final TaskExecutionException e) {
-      Assert.assertTrue("Wrong workflow, should not reach this point", false);
-    }
   }
 
 
@@ -171,21 +178,19 @@ public class InitialSearchTaskFirstTest {
   /**
    * Two matches found in ZMR
    */
-  public void testNode101a() throws Exception {
+  public void testNode101_ManualFixNecessary_a() throws Exception {
 
-    //Mock ZMR
     ArrayList<RegisterResult> zmrResult = new ArrayList<>();
-    zmrResult.add(new RegisterResult("bpkMax", "de/st/"+randomIdentifier, randomGivenName, randomFamilyName, "2011-01-01"));
-    zmrResult.add(new RegisterResult("bpkMax", "de/st/"+randomIdentifier, "Maximilian", randomFamilyName, "2011-01-01"));
+    zmrResult.add(new RegisterResult("bpkMax", DE_ST+randomIdentifier, randomGivenName, randomFamilyName, randomDate));
+    zmrResult.add(new RegisterResult("bpkMax", DE_ST+randomIdentifier, "Maximilian", randomFamilyName, randomDate));
     zmrClient = Mockito.mock(IZmrClient.class);
-    Mockito.when(zmrClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(zmrResult);
+    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResult);
 
-    //Mock ernb
-    ArrayList<RegisterResult> ernbResult = new ArrayList<>();
-    ernbClient = Mockito.mock(IErnbClient.class);
-    Mockito.when(ernbClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(ernbResult);
+    ArrayList<RegisterResult> ernpResult = new ArrayList<>();
+    ernpClient = Mockito.mock(IErnpClient.class);
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(ernpResult);
 
-    task = new InitialSearchTask(emptyHandlers(), ernbClient, zmrClient);
+    task = new InitialSearchTask(emptyHandlers(), ernpClient, zmrClient);
     try {
       task.execute(pendingReq, executionContext);
       Assert.assertTrue("Wrong workflow, should not reach this point/ get a bpk", false);
@@ -199,24 +204,24 @@ public class InitialSearchTaskFirstTest {
   @Test
   @DirtiesContext
   /**
-   * Two matches found in ErnB
+   * Two matches found in ErnP
    */
-  public void testNode101b() throws Exception {
-
-    //Mock ZMR
+  public void testNode101_ManualFixNecessary_b() throws Exception {
+    String randombpk = RandomStringUtils.random(5);
     ArrayList<RegisterResult> zmrResult = new ArrayList<>();
     zmrClient = Mockito.mock(IZmrClient.class);
-    Mockito.when(zmrClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(zmrResult);
+    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResult);
 
-    //Mock ernb
-    ArrayList<RegisterResult> ernbResult = new ArrayList<>();
-    ernbResult.add(new RegisterResult("bpkMax", "de/st/"+randomIdentifier, randomGivenName, randomFamilyName, "2011-01-01"));
-    ernbResult.add(new RegisterResult("bpkMax", "de/st/"+randomIdentifier, "Maximilian", randomFamilyName, "2011-01-01"));
+    ArrayList<RegisterResult> ernpResult = new ArrayList<>();
+    ernpResult.add(new RegisterResult(randombpk, DE_ST+randomIdentifier, randomGivenName, randomFamilyName, randomDate));
+    ernpResult.add(new RegisterResult(randombpk, DE_ST+randomIdentifier, randomGivenName+RandomStringUtils.random(2),
+        randomFamilyName,
+        randomDate));
 
-    ernbClient = Mockito.mock(IErnbClient.class);
-    Mockito.when(ernbClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(ernbResult);
+    ernpClient = Mockito.mock(IErnpClient.class);
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(ernpResult);
 
-    task = new InitialSearchTask(emptyHandlers(), ernbClient, zmrClient);
+    task = new InitialSearchTask(emptyHandlers(), ernpClient, zmrClient);
     try {
       task.execute(pendingReq, executionContext);
       Assert.assertTrue("Wrong workflow, should not reach this point/ get a bpk", false);
@@ -231,30 +236,24 @@ public class InitialSearchTaskFirstTest {
   /**
    * One match, no register update needed
    */
-  public void testNode102a() throws Exception {
+  public void testNode102_UserIdentified_a() throws Exception {
 
-    String randomBpk = RandomStringUtils.randomNumeric(12);;
-    //Mock ZMR
+    String randomBpk = RandomStringUtils.randomNumeric(12);
     ArrayList<RegisterResult> zmrResult = new ArrayList<>();
     zmrClient = Mockito.mock(IZmrClient.class);
-    Mockito.when(zmrClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(zmrResult);
+    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResult);
 
-    //Mock ernb
-    ArrayList<RegisterResult> ernbResult = new ArrayList<>();
-    ernbResult.add(new RegisterResult(randomBpk, "de/st/"+randomIdentifier, randomGivenName, randomFamilyName, "2011-01-01"));
+    ArrayList<RegisterResult> ernpResult = new ArrayList<>();
+    ernpResult.add(new RegisterResult(randomBpk, DE_ST+randomIdentifier, randomGivenName, randomFamilyName, randomDate));
 
-    ernbClient = Mockito.mock(IErnbClient.class);
-    Mockito.when(ernbClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(ernbResult);
+    ernpClient = Mockito.mock(IErnpClient.class);
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(ernpResult);
 
-    task = new InitialSearchTask(emptyHandlers(), ernbClient, zmrClient);
-    try {
-      task.execute(pendingReq, executionContext);
-      String bPk = (String)
-          pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
-      Assert.assertTrue("Wrong bpk", bPk.equals(randomBpk));
-    } catch (final TaskExecutionException e) {
-      Assert.assertTrue("Wrong workflow, should not reach this point", false);
-    }
+    task = new InitialSearchTask(emptyHandlers(), ernpClient, zmrClient);
+    task.execute(pendingReq, executionContext);
+    String bPk = (String)
+        pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
+    Assert.assertTrue("Wrong bpk", bPk.equals(randomBpk));
   }
 
   @Test
@@ -262,39 +261,33 @@ public class InitialSearchTaskFirstTest {
   /**
    * One match, no register update needed
    */
-  public void testNode102b() throws Exception {
+  public void testNode102_UserIdentified_b() throws Exception {
     String randomBpk = RandomStringUtils.randomNumeric(14);
-    //Mock ZMR
+
     ArrayList<RegisterResult> zmrResult = new ArrayList<>();
-    zmrResult.add(new RegisterResult(randomBpk, "de/st/"+randomIdentifier, randomGivenName, randomFamilyName, "2011-01-01"));
+    zmrResult.add(new RegisterResult(randomBpk, DE_ST+randomIdentifier, randomGivenName, randomFamilyName, randomDate));
 
     zmrClient = Mockito.mock(IZmrClient.class);
-    Mockito.when(zmrClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(zmrResult);
+    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResult);
 
-    //Mock ernb
-    ArrayList<RegisterResult> ernbResult = new ArrayList<>();
+    ArrayList<RegisterResult> ernpResult = new ArrayList<>();
 
-    ernbClient = Mockito.mock(IErnbClient.class);
-    Mockito.when(ernbClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(ernbResult);
+    ernpClient = Mockito.mock(IErnpClient.class);
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(ernpResult);
 
-    task = new InitialSearchTask(emptyHandlers(), ernbClient, zmrClient);
-    try {
-      task.execute(pendingReq, executionContext);
-      String bPk = (String)
-          pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
-      Assert.assertTrue("Wrong bpk", bPk.equals(randomBpk));
-
-    } catch (final TaskExecutionException e) {
-      Assert.assertTrue("Wrong workflow, should not reach this point", false);
-    }
+    task = new InitialSearchTask(emptyHandlers(), ernpClient, zmrClient);
+    task.execute(pendingReq, executionContext);
+    String bPk = (String)
+        pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
+    Assert.assertTrue("Wrong bpk", bPk.equals(randomBpk));
   }
 
   @Test
   @DirtiesContext
   /**
-   * One match found in ZMR and ErnB with detail search
+   * One match found in ZMR and ErnP with detail search
    */
-  public void testNode103IT() throws Exception {
+  public void testNode103_UserIdentified_IT() throws Exception {
     String bpkRegister = RandomStringUtils.randomNumeric(14);
     String taxNumber = RandomStringUtils.randomNumeric(14);
     final AuthenticationResponse response = buildDummyAuthResponseRandomPersonIT_Tax(taxNumber);
@@ -302,29 +295,26 @@ public class InitialSearchTaskFirstTest {
     pendingReq1.getSessionData(AuthProcessDataWrapper.class)
         .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
 
-    //Mock ZMR initial search
     ArrayList<RegisterResult> zmrResultInitial = new ArrayList<>();
     zmrClient = Mockito.mock(IZmrClient.class);
-    Mockito.when(zmrClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(zmrResultInitial);
+    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResultInitial);
     ArrayList<RegisterResult> zmrResultSpecific = new ArrayList<>();
-    //String bpk, String pseudonym, String givenName, String familyName, String dateOfBirth,
-    //                        String placeOfBirth, String birthName, String taxNumber, PostalAddressType address
-    zmrResultSpecific.add(new RegisterResult(bpkRegister, "it/st/"+randomIdentifier+"4", randomGivenName, randomFamilyName,
-        "2011-01-01", null, null, taxNumber, null));
 
-    Mockito.when(zmrClient.searchItSpecific(taxNumber)).thenReturn(zmrResultSpecific);
+    zmrResultSpecific.add(new RegisterResult(bpkRegister, IT_ST+randomIdentifier+RandomStringUtils.random(2),
+        randomGivenName,
+        randomFamilyName,
+        randomDate, null, null, taxNumber, null));
 
-    //Mock ernb initial search
-    ArrayList<RegisterResult> ernbResultInitial = new ArrayList<>();
-    ernbClient = Mockito.mock(IErnbClient.class);
-    Mockito.when(ernbClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(ernbResultInitial);
+    Mockito.when(zmrClient.searchItSpecific(taxNumber)).thenReturn(zmrResultSpecific);
 
+    ArrayList<RegisterResult> ernpResultInitial = new ArrayList<>();
+    ernpClient = Mockito.mock(IErnpClient.class);
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(ernpResultInitial);
 
-    //Mock country specific search
-    List<ICountrySpecificDetailSearchProcessor> handlers = new ArrayList<>();
-    ItSpecificDetailSearchProcessor it = new ItSpecificDetailSearchProcessor(ernbClient, zmrClient);
+    List<CountrySpecificDetailSearchProcessor> handlers = new ArrayList<>();
+    ItSpecificDetailSearchProcessor it = new ItSpecificDetailSearchProcessor(ernpClient, zmrClient);
     handlers.add(it);
-    task = new InitialSearchTask(handlers, ernbClient, zmrClient);
+    task = new InitialSearchTask(handlers, ernpClient, zmrClient);
 
     try {
       task.execute(pendingReq1, executionContext);
@@ -340,26 +330,25 @@ public class InitialSearchTaskFirstTest {
   @Test
   @DirtiesContext
   /**
-   * Multiple matches found in ZMR and ErnB with detail search
+   * Multiple matches found in ZMR and ErnP with detail search
    */
-  public void testNode103DE() throws Exception {
+  public void testNode103_UserIdentified_DE() throws Exception {
     String givenName = randomGivenName;
     String familyName = randomFamilyName;
-    String pseudonym = "de/st/max1234";
-    String bpk = "bpkMax";
-    String dateOfBirth = "2011-01-01";
-    String placeOfBirth = "München";
-    String birthName = "BabyMax";
+    String pseudonym = DE_ST + RandomStringUtils.random(5);
+    String bpk = RandomStringUtils.random(5);
+    String dateOfBirth = randomDate;
+    String placeOfBirth = randomPlaceOfBirth;
+    String birthName = randomBirthName;
     final AuthenticationResponse response = buildDummyAuthResponseDE(givenName, familyName, pseudonym,
         dateOfBirth, placeOfBirth, birthName);
     TestRequestImpl pendingReq1 = new TestRequestImpl();
     pendingReq1.getSessionData(AuthProcessDataWrapper.class)
         .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
 
-    //Mock ZMR initial search
     ArrayList<RegisterResult> zmrResultInitial = new ArrayList<>();
     zmrClient = Mockito.mock(IZmrClient.class);
-    Mockito.when(zmrClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(zmrResultInitial);
+    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResultInitial);
     ArrayList<RegisterResult> zmrResultSpecific = new ArrayList<>();
 
     zmrResultSpecific.add(new RegisterResult(bpk, pseudonym, givenName, familyName, dateOfBirth, placeOfBirth,
@@ -368,16 +357,14 @@ public class InitialSearchTaskFirstTest {
 
     Mockito.when(zmrClient.searchDeSpecific(givenName, familyName, dateOfBirth, placeOfBirth, birthName)).thenReturn(zmrResultSpecific);
 
-    //Mock ernb initial search
-    ArrayList<RegisterResult> ernbResultInitial = new ArrayList<>();
-    ernbClient = Mockito.mock(IErnbClient.class);
-    Mockito.when(ernbClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(ernbResultInitial);
+    ArrayList<RegisterResult> ernpResultInitial = new ArrayList<>();
+    ernpClient = Mockito.mock(IErnpClient.class);
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(ernpResultInitial);
 
-    //Mock country specific search
-    List<ICountrySpecificDetailSearchProcessor> handlers = new ArrayList<>();
-    DeSpecificDetailSearchProcessor de = new DeSpecificDetailSearchProcessor(ernbClient, zmrClient);
+    List<CountrySpecificDetailSearchProcessor> handlers = new ArrayList<>();
+    DeSpecificDetailSearchProcessor de = new DeSpecificDetailSearchProcessor(ernpClient, zmrClient);
     handlers.add(de);
-    task = new InitialSearchTask(handlers, ernbClient, zmrClient);
+    task = new InitialSearchTask(handlers, ernpClient, zmrClient);
 
     try {
       task.execute(pendingReq1, executionContext);
@@ -393,28 +380,27 @@ public class InitialSearchTaskFirstTest {
   @Test
   @DirtiesContext
   /**
-   * Multiple matches found in ZMR and ErnB with detail search
+   * Multiple matches found in ZMR and ErnP with detail search
    */
-  public void testNode104DE() throws Exception {
+  public void testNode104_ManualFixNecessary_DE() throws Exception {
     String givenName = randomGivenName;
     String familyName = randomFamilyName;
-    String pseudonym1 = "de/st/max1234";
-    String pseudonym2 = "de/st/max12345";
-    String bpk1 = "bpkMax";
-    String bpk2 = "bpkMax1";
-    String dateOfBirth = "2011-01-01";
-    String placeOfBirth = "München";
-    String birthName = "BabyMax";
+    String pseudonym1 = DE_ST + RandomStringUtils.random(5);
+    String pseudonym2 = pseudonym1 + RandomStringUtils.random(2);
+    String bpk1 = RandomStringUtils.random(5);
+    String bpk2 = bpk1 + RandomStringUtils.random(2);
+    String dateOfBirth = randomDate;
+    String placeOfBirth = randomPlaceOfBirth;
+    String birthName = randomBirthName;
     final AuthenticationResponse response = buildDummyAuthResponseDE(givenName, familyName, pseudonym1,
         dateOfBirth, placeOfBirth, birthName);
     TestRequestImpl pendingReq1 = new TestRequestImpl();
     pendingReq1.getSessionData(AuthProcessDataWrapper.class)
         .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
 
-    //Mock ZMR initial search
     ArrayList<RegisterResult> zmrResultInitial = new ArrayList<>();
     zmrClient = Mockito.mock(IZmrClient.class);
-    Mockito.when(zmrClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(zmrResultInitial);
+    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResultInitial);
     ArrayList<RegisterResult> zmrResultSpecific = new ArrayList<>();
 
     zmrResultSpecific.add(new RegisterResult(bpk1, pseudonym1, givenName, familyName, dateOfBirth, placeOfBirth,
@@ -425,23 +411,18 @@ public class InitialSearchTaskFirstTest {
         null, null));
     Mockito.when(zmrClient.searchDeSpecific(givenName, familyName, dateOfBirth, placeOfBirth, birthName)).thenReturn(zmrResultSpecific);
 
+    ArrayList<RegisterResult> ernpResultInitial = new ArrayList<>();
+    ernpClient = Mockito.mock(IErnpClient.class);
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(ernpResultInitial);
 
-    //Mock ernb initial search
-    ArrayList<RegisterResult> ernbResultInitial = new ArrayList<>();
-    ernbClient = Mockito.mock(IErnbClient.class);
-    Mockito.when(ernbClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(ernbResultInitial);
-
-    //Mock country specific search
-    List<ICountrySpecificDetailSearchProcessor> handlers = new ArrayList<>();
-    DeSpecificDetailSearchProcessor de = new DeSpecificDetailSearchProcessor(ernbClient, zmrClient);
+    List<CountrySpecificDetailSearchProcessor> handlers = new ArrayList<>();
+    DeSpecificDetailSearchProcessor de = new DeSpecificDetailSearchProcessor(ernpClient, zmrClient);
     handlers.add(de);
-    task = new InitialSearchTask(handlers, ernbClient, zmrClient);
+    task = new InitialSearchTask(handlers, ernpClient, zmrClient);
 
     try {
       task.execute(pendingReq1, executionContext);
-
       Assert.assertTrue("Wrong workflow, should not reach this point/ get a bpk", false);
-
     } catch (final TaskExecutionException e) {
       Throwable origE = e.getOriginalException();
       Assert.assertTrue("Wrong exception", (origE.getCause() instanceof ManualFixNecessaryException));
@@ -451,43 +432,40 @@ public class InitialSearchTaskFirstTest {
   @Test
   @DirtiesContext
   /**
-   * Multiple matches found in ZMR and ErnB with detail search
+   * Multiple matches found in ZMR and ErnP with detail search
    */
-  public void testNode104IT() throws Exception {
+  public void testNode104_ManualFixNecessary_IT() throws Exception {
     String fakeTaxNumber = RandomStringUtils.randomNumeric(14);;
     final AuthenticationResponse response = buildDummyAuthResponseRandomPersonIT_Tax(fakeTaxNumber);
     TestRequestImpl pendingReq1 = new TestRequestImpl();
     pendingReq1.getSessionData(AuthProcessDataWrapper.class)
         .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
 
-    //Mock ZMR initial search
     ArrayList<RegisterResult> zmrResultInitial = new ArrayList<>();
     zmrClient = Mockito.mock(IZmrClient.class);
-    Mockito.when(zmrClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(zmrResultInitial);
+    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResultInitial);
     ArrayList<RegisterResult> zmrResultSpecific = new ArrayList<>();
 
-    zmrResultSpecific.add(new RegisterResult("bpkMax", "it/st/"+randomIdentifier+"4", randomGivenName, randomFamilyName, "2011-01-01", null, null,
+    zmrResultSpecific.add(new RegisterResult("bpkMax", IT_ST+randomIdentifier+"4", randomGivenName, randomFamilyName,
+        randomDate, null, null,
         fakeTaxNumber, null));
-    zmrResultSpecific.add(new RegisterResult("bpkMax1", "it/st/"+randomIdentifier+"5", randomGivenName, randomFamilyName, "2011-01-01", null, null,
+    zmrResultSpecific.add(new RegisterResult("bpkMax1", IT_ST+randomIdentifier+"5", randomGivenName, randomFamilyName,
+        randomDate, null, null,
         fakeTaxNumber, null));
     Mockito.when(zmrClient.searchItSpecific(fakeTaxNumber)).thenReturn(zmrResultSpecific);
 
-    //Mock ernb initial search
-    ArrayList<RegisterResult> ernbResultInitial = new ArrayList<>();
-    ernbClient = Mockito.mock(IErnbClient.class);
-    Mockito.when(ernbClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(ernbResultInitial);
+    ArrayList<RegisterResult> ernpResultInitial = new ArrayList<>();
+    ernpClient = Mockito.mock(IErnpClient.class);
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(ernpResultInitial);
 
-    //Mock country specific search
-    List<ICountrySpecificDetailSearchProcessor> handlers = new ArrayList<>();
-    ItSpecificDetailSearchProcessor it = new ItSpecificDetailSearchProcessor(ernbClient, zmrClient);
+    List<CountrySpecificDetailSearchProcessor> handlers = new ArrayList<>();
+    ItSpecificDetailSearchProcessor it = new ItSpecificDetailSearchProcessor(ernpClient, zmrClient);
     handlers.add(it);
-    task = new InitialSearchTask(handlers, ernbClient, zmrClient);
+    task = new InitialSearchTask(handlers, ernpClient, zmrClient);
 
     try {
       task.execute(pendingReq1, executionContext);
-
       Assert.assertTrue("Wrong workflow, should not reach this point/ get a bpk", false);
-
     } catch (final TaskExecutionException e) {
       Throwable origE = e.getOriginalException();
       Assert.assertTrue("Wrong exception", (origE.getCause() instanceof ManualFixNecessaryException));
@@ -497,45 +475,35 @@ public class InitialSearchTaskFirstTest {
   @Test
   @DirtiesContext
   /**
-   * NO match found in ZMR and ErnB with Initial search
+   * NO match found in ZMR and ErnP with Initial search
    */
-  public void testNode105() {
+  public void testNode105_TemporaryEnd() throws TaskExecutionException {
 
-    //Mock ZMR
     ArrayList<RegisterResult> zmrResult = new ArrayList<>();
     zmrClient = Mockito.mock(IZmrClient.class);
-    Mockito.when(zmrClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(zmrResult);
-
-    //Mock ernb
-    ArrayList<RegisterResult> ernbResult = new ArrayList<>();
-    ernbClient = Mockito.mock(IErnbClient.class);
-    Mockito.when(ernbClient.searchWithPersonIdentifer(randomIdentifier)).thenReturn(ernbResult);
+    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResult);
 
-    task = new InitialSearchTask(emptyHandlers(), ernbClient, zmrClient);
-    try {
-      task.execute(pendingReq, executionContext);
+    ArrayList<RegisterResult> ernpResult = new ArrayList<>();
+    ernpClient = Mockito.mock(IErnpClient.class);
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(ernpResult);
 
-      String bPk = (String)
-          pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
-      Assert.assertTrue("Wrong bpk", bPk.equals("TODO-Temporary-Endnode-105"));
-    } catch (final TaskExecutionException e) {
-      Assert.assertTrue("Wrong workflow, should not reach this point", false);
-    }
+    task = new InitialSearchTask(emptyHandlers(), ernpClient, zmrClient);
+    task.execute(pendingReq, executionContext);
+    String bPk = (String)
+        pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
+    Assert.assertEquals("Wrong bpk", "TODO-Temporary-Endnode-105", bPk);
   }
 
 
   @NotNull
   private AuthenticationResponse buildDummyAuthResponseRandomPerson() throws URISyntaxException {
-    // NOTE: Those strings "de/st/max123" seem to be somehow relevant, but where do we need to use that exact string
-    // again?
-    // NOTE: If not, why not using random strings?
     return buildDummyAuthResponse(randomGivenName, randomFamilyName,
-        "de/st/"+randomIdentifier, "2011-01-01");
+        DE_ST+randomIdentifier, randomDate);
   }
 
   private AuthenticationResponse buildDummyAuthResponseRandomPersonIT_Tax(String taxNumber) throws URISyntaxException {
     return buildDummyAuthResponse(randomGivenName, randomFamilyName,
-        "it/st/"+randomIdentifier, "2011-01-01", taxNumber, null, null);
+        IT_ST+randomIdentifier, randomDate, taxNumber, null, null);
   }
 
   @NotNull
@@ -555,58 +523,46 @@ public class InitialSearchTaskFirstTest {
   private AuthenticationResponse buildDummyAuthResponse(String givenName, String familyName, String identifier,
                                                         String dateOfBirth, String taxNumber, String placeOfBirth,
                                                         String birthName) throws URISyntaxException {
-    final AttributeDefinition attributeDef = AttributeDefinition.builder()
-        .friendlyName(Constants.eIDAS_ATTR_PERSONALIDENTIFIER).nameUri(new URI("ad", "sd", "ff"))
-        .personType(PersonType.LEGAL_PERSON).xmlType(new QName("http://saf", "as", "af"))
-        .attributeValueMarshaller("eu.eidas.auth.commons.attribute.impl.LiteralStringAttributeValueMarshaller").build();
-    final AttributeDefinition attributeDef2 = AttributeDefinition.builder()
-        .friendlyName(Constants.eIDAS_ATTR_CURRENTFAMILYNAME).nameUri(new URI("ad", "sd", "fff"))
-        .personType(PersonType.LEGAL_PERSON).xmlType(new QName("http://saf", "as", "aff"))
-        .attributeValueMarshaller("eu.eidas.auth.commons.attribute.impl.LiteralStringAttributeValueMarshaller").build();
-    final AttributeDefinition attributeDef3 = AttributeDefinition.builder()
-        .friendlyName(Constants.eIDAS_ATTR_CURRENTGIVENNAME).nameUri(new URI("ad", "sd", "ffff"))
-        .personType(PersonType.LEGAL_PERSON).xmlType(new QName("http://saf", "as", "afff"))
-        .attributeValueMarshaller("eu.eidas.auth.commons.attribute.impl.LiteralStringAttributeValueMarshaller").build();
-    final AttributeDefinition attributeDef4 = AttributeDefinition.builder()
-        .friendlyName(Constants.eIDAS_ATTR_DATEOFBIRTH).nameUri(new URI("ad", "sd", "fffff"))
-        .personType(PersonType.LEGAL_PERSON).xmlType(new QName("http://saf", "as", "affff"))
-        .attributeValueMarshaller("eu.eidas.auth.commons.attribute.impl.DateTimeAttributeValueMarshaller").build();
-    final AttributeDefinition attributeDef5 = AttributeDefinition.builder()
-        .friendlyName(Constants.eIDAS_ATTR_TAXREFERENCE).nameUri(new URI("ad", "sd", "ffffff"))
-        .personType(PersonType.LEGAL_PERSON).xmlType(new QName("http://saf", "as", "afffff"))
-        .attributeValueMarshaller("eu.eidas.auth.commons.attribute.impl.LiteralStringAttributeValueMarshaller").build();
-    final AttributeDefinition attributeDef6 = AttributeDefinition.builder()
-        .friendlyName(Constants.eIDAS_ATTR_PLACEOFBIRTH).nameUri(new URI("ad", "sd", "fffffff"))
-        .personType(PersonType.LEGAL_PERSON).xmlType(new QName("http://saf", "as", "affffff"))
-        .attributeValueMarshaller("eu.eidas.auth.commons.attribute.impl.LiteralStringAttributeValueMarshaller").build();
-    final AttributeDefinition attributeDef7 = AttributeDefinition.builder()
-        .friendlyName(Constants.eIDAS_ATTR_BIRTHNAME).nameUri(new URI("ad", "sd", "ffffffff"))
-        .personType(PersonType.LEGAL_PERSON).xmlType(new QName("http://saf", "as", "afffffff"))
-        .attributeValueMarshaller("eu.eidas.auth.commons.attribute.impl.LiteralStringAttributeValueMarshaller").build();
     ImmutableAttributeMap.Builder builder = ImmutableAttributeMap.builder()
-        .put(attributeDef, identifier)
-        .put(attributeDef2, familyName)
-        .put(attributeDef3, givenName)
-        .put(attributeDef4, dateOfBirth);
-
+        .put(generateStringAttribute(Constants.eIDAS_ATTR_PERSONALIDENTIFIER,"ff","af"), identifier)
+        .put(generateStringAttribute(Constants.eIDAS_ATTR_CURRENTFAMILYNAME,"fff","aff"), familyName)
+        .put(generateStringAttribute(Constants.eIDAS_ATTR_CURRENTGIVENNAME,"ffff","afff"), givenName)
+        .put(generateDateTimeAttribute(Constants.eIDAS_ATTR_DATEOFBIRTH,"fffff","affff"), dateOfBirth);
     if (taxNumber != null) {
-      builder.put(attributeDef5, taxNumber);
+      builder.put(generateStringAttribute(Constants.eIDAS_ATTR_TAXREFERENCE,"ffffff","afffff"), taxNumber);
     }
     if (birthName != null) {
-      builder.put(attributeDef7, birthName);
+      builder.put(generateStringAttribute(Constants.eIDAS_ATTR_BIRTHNAME,"fffffff","affffff"), birthName);
     }
     if (placeOfBirth != null) {
-      builder.put(attributeDef6, placeOfBirth);
+      builder.put(generateStringAttribute(Constants.eIDAS_ATTR_PLACEOFBIRTH,"ffffffff","afffffff"), placeOfBirth);
     }
     final ImmutableAttributeMap attributeMap = builder.build();
 
     val b = new AuthenticationResponse.Builder();
     return b.id("aasdf").issuer("asd").subject("asf").statusCode("200").inResponseTo("asdf").subjectNameIdFormat(
-        "afaf")
-        .attributes(attributeMap).build();
+        "afaf").attributes(attributeMap).build();
+  }
+
+  private AttributeDefinition generateStringAttribute(String friendlyName, String fragment, String prefix) throws URISyntaxException {
+    return generateAttribute(friendlyName, fragment, prefix, "eu.eidas.auth.commons.attribute.impl" +
+        ".LiteralStringAttributeValueMarshaller");
+  }
+
+  private AttributeDefinition generateDateTimeAttribute(String friendlyName, String fragment, String prefix) throws URISyntaxException {
+    return generateAttribute(friendlyName, fragment, prefix, "eu.eidas.auth.commons.attribute.impl" +
+        ".DateTimeAttributeValueMarshaller");
+  }
+
+  private AttributeDefinition generateAttribute(String friendlyName, String fragment, String prefix,
+                                                String marshaller) throws URISyntaxException {
+    return AttributeDefinition.builder()
+        .friendlyName(friendlyName).nameUri(new URI("ad", "sd", fragment))
+        .personType(PersonType.LEGAL_PERSON).xmlType(new QName("http://saf", "as", prefix))
+        .attributeValueMarshaller(marshaller).build();
   }
 
-  private List<ICountrySpecificDetailSearchProcessor> emptyHandlers() {
+  private List<CountrySpecificDetailSearchProcessor> emptyHandlers() {
     return new ArrayList<>();
   }
 
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_tasks_test.xml b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_tasks_test.xml
index cde374a1..0989cbef 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_tasks_test.xml
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_tasks_test.xml
@@ -69,7 +69,7 @@
         scope="prototype" />
 
   <bean id="ErnbClientForeIDAS"
-        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.ernb.DummyErnbClient" />
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.ernp.DummyErnpClient" />
 
   <bean id="ZmrClientForeIDAS"
         class="at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.DummyZmrClient" />
-- 
cgit v1.2.3


From aac12e564c4cb92d6c3b84d8bcdabc112acb2427 Mon Sep 17 00:00:00 2001
From: Christian Kollmann <christian.kollmann@a-sit.at>
Date: Tue, 12 Jan 2021 14:17:52 +0100
Subject: Streamline mock creation in tests

---
 .../v2/test/tasks/InitialSearchTaskFirstTest.java  | 53 +++-------------------
 1 file changed, 7 insertions(+), 46 deletions(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
index a1dce0f2..12a0969d 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
@@ -50,7 +50,9 @@ import org.junit.Before;
 import org.junit.BeforeClass;
 import org.junit.Test;
 import org.junit.runner.RunWith;
+import org.mockito.Mock;
 import org.mockito.Mockito;
+import org.mockito.MockitoAnnotations;
 import org.springframework.mock.web.MockHttpServletRequest;
 import org.springframework.mock.web.MockHttpServletResponse;
 import org.springframework.test.annotation.DirtiesContext;
@@ -69,13 +71,14 @@ import java.util.List;
 import java.util.Random;
 
 @RunWith(SpringJUnit4ClassRunner.class)
-
 @ContextConfiguration("/SpringTest-context_tasks_test.xml")
 @DirtiesContext(classMode = ClassMode.BEFORE_CLASS)
 public class InitialSearchTaskFirstTest {
 
   private InitialSearchTask task;
+  @Mock
   private IZmrClient zmrClient;
+  @Mock
   private IErnpClient ernpClient;
 
   final ExecutionContext executionContext = new ExecutionContextImpl();
@@ -108,6 +111,9 @@ public class InitialSearchTaskFirstTest {
    */
   @Before
   public void setUp() throws URISyntaxException, EaafStorageException {
+    MockitoAnnotations.initMocks(this);
+    task = new InitialSearchTask(new ArrayList<CountrySpecificDetailSearchProcessor>(), ernpClient, zmrClient);
+
     httpReq = new MockHttpServletRequest("POST", "https://localhost/authhandler");
     httpResp = new MockHttpServletResponse();
     RequestContextHolder.resetRequestAttributes();
@@ -125,20 +131,15 @@ public class InitialSearchTaskFirstTest {
    * One match, but register update needed
    */
   public void testNode100_UserIdentifiedUpdateNecessary_a() throws Exception {
-
     ArrayList<RegisterResult> zmrResult = new ArrayList<>();
     String randomBpk = RandomStringUtils.randomNumeric(6);
     String newFirstName = RandomStringUtils.randomAlphabetic(5);
     zmrResult.add(new RegisterResult(randomBpk, DE_ST+randomIdentifier, newFirstName, randomFamilyName, randomDate));
-
-    zmrClient = Mockito.mock(IZmrClient.class);
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResult);
 
     ArrayList<RegisterResult> ernpResult = new ArrayList<>();
-    ernpClient = Mockito.mock(IErnpClient.class);
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(ernpResult);
 
-    task = new InitialSearchTask(emptyHandlers(), ernpClient, zmrClient);
     task.execute(pendingReq, executionContext);
     String bPk = (String)
         pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
@@ -151,20 +152,14 @@ public class InitialSearchTaskFirstTest {
    * One match, but register update needed
    */
   public void testNode100_UserIdentifiedUpdateNecessary_b() throws TaskExecutionException {
-
     ArrayList<RegisterResult> zmrResult = new ArrayList<>();
-
-    zmrClient = Mockito.mock(IZmrClient.class);
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResult);
 
     ArrayList<RegisterResult> ernpResult = new ArrayList<>();
     String randomBpk = RandomStringUtils.randomNumeric(6);
     ernpResult.add(new RegisterResult(randomBpk, DE_ST+randomIdentifier, "Max_new", randomFamilyName, randomDate));
-
-    ernpClient = Mockito.mock(IErnpClient.class);
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(ernpResult);
 
-    task = new InitialSearchTask(emptyHandlers(), ernpClient, zmrClient);
     task.execute(pendingReq, executionContext);
     String bPk = (String)
         pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
@@ -179,18 +174,14 @@ public class InitialSearchTaskFirstTest {
    * Two matches found in ZMR
    */
   public void testNode101_ManualFixNecessary_a() throws Exception {
-
     ArrayList<RegisterResult> zmrResult = new ArrayList<>();
     zmrResult.add(new RegisterResult("bpkMax", DE_ST+randomIdentifier, randomGivenName, randomFamilyName, randomDate));
     zmrResult.add(new RegisterResult("bpkMax", DE_ST+randomIdentifier, "Maximilian", randomFamilyName, randomDate));
-    zmrClient = Mockito.mock(IZmrClient.class);
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResult);
 
     ArrayList<RegisterResult> ernpResult = new ArrayList<>();
-    ernpClient = Mockito.mock(IErnpClient.class);
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(ernpResult);
 
-    task = new InitialSearchTask(emptyHandlers(), ernpClient, zmrClient);
     try {
       task.execute(pendingReq, executionContext);
       Assert.assertTrue("Wrong workflow, should not reach this point/ get a bpk", false);
@@ -209,7 +200,6 @@ public class InitialSearchTaskFirstTest {
   public void testNode101_ManualFixNecessary_b() throws Exception {
     String randombpk = RandomStringUtils.random(5);
     ArrayList<RegisterResult> zmrResult = new ArrayList<>();
-    zmrClient = Mockito.mock(IZmrClient.class);
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResult);
 
     ArrayList<RegisterResult> ernpResult = new ArrayList<>();
@@ -217,11 +207,8 @@ public class InitialSearchTaskFirstTest {
     ernpResult.add(new RegisterResult(randombpk, DE_ST+randomIdentifier, randomGivenName+RandomStringUtils.random(2),
         randomFamilyName,
         randomDate));
-
-    ernpClient = Mockito.mock(IErnpClient.class);
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(ernpResult);
 
-    task = new InitialSearchTask(emptyHandlers(), ernpClient, zmrClient);
     try {
       task.execute(pendingReq, executionContext);
       Assert.assertTrue("Wrong workflow, should not reach this point/ get a bpk", false);
@@ -237,19 +224,14 @@ public class InitialSearchTaskFirstTest {
    * One match, no register update needed
    */
   public void testNode102_UserIdentified_a() throws Exception {
-
     String randomBpk = RandomStringUtils.randomNumeric(12);
     ArrayList<RegisterResult> zmrResult = new ArrayList<>();
-    zmrClient = Mockito.mock(IZmrClient.class);
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResult);
 
     ArrayList<RegisterResult> ernpResult = new ArrayList<>();
     ernpResult.add(new RegisterResult(randomBpk, DE_ST+randomIdentifier, randomGivenName, randomFamilyName, randomDate));
-
-    ernpClient = Mockito.mock(IErnpClient.class);
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(ernpResult);
 
-    task = new InitialSearchTask(emptyHandlers(), ernpClient, zmrClient);
     task.execute(pendingReq, executionContext);
     String bPk = (String)
         pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
@@ -266,16 +248,11 @@ public class InitialSearchTaskFirstTest {
 
     ArrayList<RegisterResult> zmrResult = new ArrayList<>();
     zmrResult.add(new RegisterResult(randomBpk, DE_ST+randomIdentifier, randomGivenName, randomFamilyName, randomDate));
-
-    zmrClient = Mockito.mock(IZmrClient.class);
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResult);
 
     ArrayList<RegisterResult> ernpResult = new ArrayList<>();
-
-    ernpClient = Mockito.mock(IErnpClient.class);
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(ernpResult);
 
-    task = new InitialSearchTask(emptyHandlers(), ernpClient, zmrClient);
     task.execute(pendingReq, executionContext);
     String bPk = (String)
         pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
@@ -296,7 +273,6 @@ public class InitialSearchTaskFirstTest {
         .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
 
     ArrayList<RegisterResult> zmrResultInitial = new ArrayList<>();
-    zmrClient = Mockito.mock(IZmrClient.class);
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResultInitial);
     ArrayList<RegisterResult> zmrResultSpecific = new ArrayList<>();
 
@@ -308,7 +284,6 @@ public class InitialSearchTaskFirstTest {
     Mockito.when(zmrClient.searchItSpecific(taxNumber)).thenReturn(zmrResultSpecific);
 
     ArrayList<RegisterResult> ernpResultInitial = new ArrayList<>();
-    ernpClient = Mockito.mock(IErnpClient.class);
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(ernpResultInitial);
 
     List<CountrySpecificDetailSearchProcessor> handlers = new ArrayList<>();
@@ -347,7 +322,6 @@ public class InitialSearchTaskFirstTest {
         .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
 
     ArrayList<RegisterResult> zmrResultInitial = new ArrayList<>();
-    zmrClient = Mockito.mock(IZmrClient.class);
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResultInitial);
     ArrayList<RegisterResult> zmrResultSpecific = new ArrayList<>();
 
@@ -358,7 +332,6 @@ public class InitialSearchTaskFirstTest {
     Mockito.when(zmrClient.searchDeSpecific(givenName, familyName, dateOfBirth, placeOfBirth, birthName)).thenReturn(zmrResultSpecific);
 
     ArrayList<RegisterResult> ernpResultInitial = new ArrayList<>();
-    ernpClient = Mockito.mock(IErnpClient.class);
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(ernpResultInitial);
 
     List<CountrySpecificDetailSearchProcessor> handlers = new ArrayList<>();
@@ -399,7 +372,6 @@ public class InitialSearchTaskFirstTest {
         .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
 
     ArrayList<RegisterResult> zmrResultInitial = new ArrayList<>();
-    zmrClient = Mockito.mock(IZmrClient.class);
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResultInitial);
     ArrayList<RegisterResult> zmrResultSpecific = new ArrayList<>();
 
@@ -412,7 +384,6 @@ public class InitialSearchTaskFirstTest {
     Mockito.when(zmrClient.searchDeSpecific(givenName, familyName, dateOfBirth, placeOfBirth, birthName)).thenReturn(zmrResultSpecific);
 
     ArrayList<RegisterResult> ernpResultInitial = new ArrayList<>();
-    ernpClient = Mockito.mock(IErnpClient.class);
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(ernpResultInitial);
 
     List<CountrySpecificDetailSearchProcessor> handlers = new ArrayList<>();
@@ -442,7 +413,6 @@ public class InitialSearchTaskFirstTest {
         .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
 
     ArrayList<RegisterResult> zmrResultInitial = new ArrayList<>();
-    zmrClient = Mockito.mock(IZmrClient.class);
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResultInitial);
     ArrayList<RegisterResult> zmrResultSpecific = new ArrayList<>();
 
@@ -455,7 +425,6 @@ public class InitialSearchTaskFirstTest {
     Mockito.when(zmrClient.searchItSpecific(fakeTaxNumber)).thenReturn(zmrResultSpecific);
 
     ArrayList<RegisterResult> ernpResultInitial = new ArrayList<>();
-    ernpClient = Mockito.mock(IErnpClient.class);
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(ernpResultInitial);
 
     List<CountrySpecificDetailSearchProcessor> handlers = new ArrayList<>();
@@ -478,16 +447,12 @@ public class InitialSearchTaskFirstTest {
    * NO match found in ZMR and ErnP with Initial search
    */
   public void testNode105_TemporaryEnd() throws TaskExecutionException {
-
     ArrayList<RegisterResult> zmrResult = new ArrayList<>();
-    zmrClient = Mockito.mock(IZmrClient.class);
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResult);
 
     ArrayList<RegisterResult> ernpResult = new ArrayList<>();
-    ernpClient = Mockito.mock(IErnpClient.class);
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(ernpResult);
 
-    task = new InitialSearchTask(emptyHandlers(), ernpClient, zmrClient);
     task.execute(pendingReq, executionContext);
     String bPk = (String)
         pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
@@ -562,8 +527,4 @@ public class InitialSearchTaskFirstTest {
         .attributeValueMarshaller(marshaller).build();
   }
 
-  private List<CountrySpecificDetailSearchProcessor> emptyHandlers() {
-    return new ArrayList<>();
-  }
-
 }
-- 
cgit v1.2.3


From 8f7e42e88019014eb4e3fc326a8fdf0883c1a571 Mon Sep 17 00:00:00 2001
From: Christian Kollmann <christian.kollmann@a-sit.at>
Date: Tue, 12 Jan 2021 14:18:29 +0100
Subject: Fix typo

---
 .../auth/eidas/v2/utils/EidasResponseUtils.java    | 91 ++++++++++++----------
 1 file changed, 50 insertions(+), 41 deletions(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/EidasResponseUtils.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/EidasResponseUtils.java
index fa26c2c5..d71201ce 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/EidasResponseUtils.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/EidasResponseUtils.java
@@ -58,7 +58,7 @@ public class EidasResponseUtils {
   /**
    * Validate a eIDAS PersonalIdentifier attribute value This validation is done
    * according to eIDAS SAML Attribute Profile - Section 2.2.3 Unique Identifier
-   * 
+   *
    * @param uniqueID eIDAS attribute value of a unique identifier
    * @return true if the uniqueID matches to eIDAS to Unique Identifier
    *         specification, otherwise false
@@ -74,9 +74,9 @@ public class EidasResponseUtils {
    * Parse an eIDAS PersonalIdentifier attribute value into it components. This
    * processing is done according to eIDAS SAML Attribute Profile - Section 2.2.3
    * Unique Identifier
-   * 
+   *
    * @param uniqueID eIDAS attribute value of a unique identifier
-   * @return {@link Trible} that contains: <br>
+   * @return {@link Triple} that contains: <br>
    *         First : citizen country <br>
    *         Second: destination country <br>
    *         Third : unique identifier <br>
@@ -84,7 +84,7 @@ public class EidasResponseUtils {
    */
   public static Triple<String, String, String> parseEidasPersonalIdentifier(String uniqueID) {
     if (!validateEidasPersonalIdentifier(uniqueID)) {
-      log.error("eIDAS attribute value for {} looks wrong formated. Value: {}", 
+      log.error("eIDAS attribute value for {} looks wrong formated. Value: {}",
           Constants.eIDAS_ATTR_PERSONALIDENTIFIER, uniqueID);
       return null;
 
@@ -94,27 +94,41 @@ public class EidasResponseUtils {
   }
 
   /**
-   * Get eIDAS attribute-values from eIDAS Node attributes. 
-   * 
+   * Get eIDAS attribute-values from eIDAS Node attributes.
+   *
    * @param attributeDefinition eIDAS attribute definition
-   * @param attributeValues Attributes from eIDAS response
-   * @return Set of attribute values. If more then one value than the first value contains the 'Latin' value. 
+   * @param attributeValues     Attributes from eIDAS response
+   * @return Set of attribute values. If more then one value than the first value
+   *         contains the 'Latin' value.
    */
   // TODO: check possible problem with nonLatinCharacters
   public static List<String> translateStringListAttribute(AttributeDefinition<?> attributeDefinition,
       ImmutableSet<? extends AttributeValue<?>> attributeValues) {
     final List<String> stringListAttribute = new ArrayList<>();
-    if (attributeValues != null) {
-      final AttributeValueMarshaller<?> attributeValueMarshaller = attributeDefinition
-          .getAttributeValueMarshaller();
-      for (final AttributeValue<?> attributeValue : attributeValues.asList()) {
-        String valueString = null;
-        try {
-          valueString = attributeValueMarshaller.marshal((AttributeValue) attributeValue);
+
+    final AttributeValueMarshaller<?> attributeValueMarshaller = attributeDefinition
+        .getAttributeValueMarshaller();
+    for (final AttributeValue<?> attributeValue : attributeValues) {
+      String valueString = null;
+      try {
+        valueString = attributeValueMarshaller.marshal((AttributeValue) attributeValue);
+
+        log.trace("Find attr: {} with value: {} nonLatinFlag: {} needTransliteration: {}",
+            attributeDefinition.getFriendlyName(), attributeValue.toString(),
+            attributeValue.isNonLatinScriptAlternateVersion(),
+            AttributeValueTransliterator.needsTransliteration(valueString));
+
+        // if (attributeValue.isNonLatinScriptAlternateVersion()) {
+        if (!AttributeValueTransliterator.needsTransliteration(valueString)) {
+          stringListAttribute.add(0, valueString);
+
+        } else {
+          log.trace("Find 'needsTransliteration' flag. Setting this value at last list element ... ");
+          stringListAttribute.add(valueString);
 
           log.trace("Find attr: {} with value: {} nonLatinFlag: {} needTransliteration: {}",
               attributeDefinition.getFriendlyName(), attributeValue.toString(),
-              attributeValue.isNonLatinScriptAlternateVersion(), 
+              attributeValue.isNonLatinScriptAlternateVersion(),
               AttributeValueTransliterator.needsTransliteration(valueString));
 
           // if (attributeValue.isNonLatinScriptAlternateVersion()) {
@@ -126,30 +140,25 @@ public class EidasResponseUtils {
             stringListAttribute.add(valueString);
 
           }
-
-        } catch (final AttributeValueMarshallingException e) {
-          throw new IllegalStateException(e);
-
         }
-      }
+      } catch (final AttributeValueMarshallingException e) {
+        throw new IllegalStateException(e);
 
-      log.trace("Extract values: {} for attr: {}", 
-          StringUtils.join(stringListAttribute, ","), attributeDefinition.getFriendlyName());
-      
-    } else {
-      log.info("Can not extract infos from 'null' attribute value");
-      
+      }
     }
 
+    log.trace("Extract values: {} for attr: {}",
+        StringUtils.join(stringListAttribute, ","), attributeDefinition.getFriendlyName());
+
     return stringListAttribute;
 
   }
 
   /**
-   * Convert eIDAS DateTime attribute to Java Object. 
-   * 
+   * Convert eIDAS DateTime attribute to Java Object.
+   *
    * @param attributeDefinition eIDAS attribute definition.
-   * @param attributeValues eIDAS attribute value
+   * @param attributeValues     eIDAS attribute value
    * @return
    */
   @Nullable
@@ -166,9 +175,9 @@ public class EidasResponseUtils {
 
   /**
    * Concert eIDAS Address attribute to Java object.
-   * 
+   *
    * @param attributeDefinition eIDAS attribute definition
-   * @param attributeValues eIDAS attribute value
+   * @param attributeValues     eIDAS attribute value
    * @return
    */
   @Nullable
@@ -183,7 +192,7 @@ public class EidasResponseUtils {
    *
    * @param currentAddressObj eIDAS current address information
    * @return current address or null if no attribute is available
-   * @throws EidasAttributeException    if eIDAS attribute is of a wrong type
+   * @throws EidasAttributeException if eIDAS attribute is of a wrong type
    */
   public static PostalAddressType processAddress(Object currentAddressObj) throws EidasAttributeException {
     if (currentAddressObj != null) {
@@ -208,7 +217,7 @@ public class EidasResponseUtils {
    *
    * @param birthNameObj eIDAS birthname information
    * @return birthName or null if no attribute is available
-   * @throws EidasAttributeException    if eIDAS attribute is of a wrong type
+   * @throws EidasAttributeException if eIDAS attribute is of a wrong type
    */
   public static String processBirthName(Object birthNameObj) throws EidasAttributeException {
     if (birthNameObj != null) {
@@ -229,7 +238,7 @@ public class EidasResponseUtils {
    *
    * @param placeOfBirthObj eIDAS Place-of-Birth information
    * @return place of Birth or null if no attribute is available
-   * @throws EidasAttributeException    if eIDAS attribute is of a wrong type
+   * @throws EidasAttributeException if eIDAS attribute is of a wrong type
    */
   public static String processPlaceOfBirth(Object placeOfBirthObj) throws EidasAttributeException {
     if (placeOfBirthObj != null) {
@@ -253,7 +262,7 @@ public class EidasResponseUtils {
    *
    * @param dateOfBirthObj eIDAS date-of-birth attribute information
    * @return formated user's date-of-birth
-   * @throws EidasAttributeException    if NO attribute is available
+   * @throws EidasAttributeException if NO attribute is available
    */
   public static DateTime processDateOfBirth(Object dateOfBirthObj) throws EidasAttributeException {
     if (!(dateOfBirthObj instanceof DateTime)) {
@@ -267,7 +276,7 @@ public class EidasResponseUtils {
    *
    * @param dateOfBirthObj eIDAS date-of-birth attribute information
    * @return formated user's date-of-birth as string
-   * @throws EidasAttributeException    if NO attribute is available
+   * @throws EidasAttributeException if NO attribute is available
    */
   public static String processDateOfBirthToString(Object dateOfBirthObj) throws EidasAttributeException {
     if (!(dateOfBirthObj instanceof DateTime)) {
@@ -281,7 +290,7 @@ public class EidasResponseUtils {
    *
    * @param givenNameObj eIDAS givenName attribute information
    * @return formated user's givenname
-   * @throws EidasAttributeException    if NO attribute is available
+   * @throws EidasAttributeException if NO attribute is available
    */
   public static String processGivenName(Object givenNameObj) throws EidasAttributeException {
     if (!(givenNameObj instanceof String)) {
@@ -295,7 +304,7 @@ public class EidasResponseUtils {
    *
    * @param familyNameObj eIDAS familyName attribute information
    * @return formated user's familyname
-   * @throws EidasAttributeException    if NO attribute is available
+   * @throws EidasAttributeException if NO attribute is available
    */
   public static String processFamilyName(Object familyNameObj) throws EidasAttributeException {
     if (!(familyNameObj instanceof String)) {
@@ -309,7 +318,7 @@ public class EidasResponseUtils {
    *
    * @param personalIdObj eIDAS PersonalIdentifierAttribute
    * @return Unique personal identifier without country-code information
-   * @throws EidasAttributeException    if NO attribute is available
+   * @throws EidasAttributeException if NO attribute is available
    */
   public static String processPseudonym(Object personalIdObj) throws EidasAttributeException {
     if (!(personalIdObj instanceof String)) {
@@ -328,7 +337,7 @@ public class EidasResponseUtils {
    *
    * @param taxReferenceObj eIDAS TaxReference attribute information
    * @return formated user's TaxReference
-   * @throws EidasAttributeException    if NO attribute is available
+   * @throws EidasAttributeException if NO attribute is available
    */
   public static String processTaxReference(Object taxReferenceObj) throws EidasAttributeException {
     if (!(taxReferenceObj instanceof String)) {
-- 
cgit v1.2.3


From cd61bfbb1f865456ca609b807aaba40d6d1e13b2 Mon Sep 17 00:00:00 2001
From: Christian Kollmann <christian.kollmann@a-sit.at>
Date: Tue, 12 Jan 2021 15:00:43 +0100
Subject: Improve readability of test cases by using modern syntax

---
 .../v2/test/tasks/InitialSearchTaskFirstTest.java  | 151 +++++++++------------
 1 file changed, 67 insertions(+), 84 deletions(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
index 12a0969d..35e2e56e 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
@@ -70,6 +70,8 @@ import java.util.ArrayList;
 import java.util.List;
 import java.util.Random;
 
+import static org.junit.Assert.assertThrows;
+
 @RunWith(SpringJUnit4ClassRunner.class)
 @ContextConfiguration("/SpringTest-context_tasks_test.xml")
 @DirtiesContext(classMode = ClassMode.BEFORE_CLASS)
@@ -82,17 +84,15 @@ public class InitialSearchTaskFirstTest {
   private IErnpClient ernpClient;
 
   final ExecutionContext executionContext = new ExecutionContextImpl();
-  private MockHttpServletRequest httpReq;
-  private MockHttpServletResponse httpResp;
   private TestRequestImpl pendingReq;
-  private String randomIdentifier = RandomStringUtils.randomNumeric(10);
-  private String randomFamilyName = RandomStringUtils.randomNumeric(11);
-  private String randomGivenName = RandomStringUtils.randomNumeric(12);
-  private String randomPlaceOfBirth = RandomStringUtils.randomNumeric(12);
-  private String randomBirthName = RandomStringUtils.randomNumeric(12);
-  private String randomDate = "2011-01-"+ (10 + new Random().nextInt(18));
-  private String DE_ST = "de/st/";
-  private String IT_ST = "it/st/";
+  private final String randomIdentifier = RandomStringUtils.randomNumeric(10);
+  private final String randomFamilyName = RandomStringUtils.randomNumeric(11);
+  private final String randomGivenName = RandomStringUtils.randomNumeric(12);
+  private final String randomPlaceOfBirth = RandomStringUtils.randomNumeric(12);
+  private final String randomBirthName = RandomStringUtils.randomNumeric(12);
+  private final String randomDate = "2011-01-"+ (10 + new Random().nextInt(18));
+  private final String DE_ST = "de/st/";
+  private final String IT_ST = "it/st/";
 
   /**
    * jUnit class initializer.
@@ -112,10 +112,10 @@ public class InitialSearchTaskFirstTest {
   @Before
   public void setUp() throws URISyntaxException, EaafStorageException {
     MockitoAnnotations.initMocks(this);
-    task = new InitialSearchTask(new ArrayList<CountrySpecificDetailSearchProcessor>(), ernpClient, zmrClient);
+    task = new InitialSearchTask(new ArrayList<>(), ernpClient, zmrClient);
 
-    httpReq = new MockHttpServletRequest("POST", "https://localhost/authhandler");
-    httpResp = new MockHttpServletResponse();
+    MockHttpServletRequest httpReq = new MockHttpServletRequest("POST", "https://localhost/authhandler");
+    MockHttpServletResponse httpResp = new MockHttpServletResponse();
     RequestContextHolder.resetRequestAttributes();
     RequestContextHolder.setRequestAttributes(new ServletRequestAttributes(httpReq, httpResp));
 
@@ -125,11 +125,11 @@ public class InitialSearchTaskFirstTest {
         .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
   }
 
-  @Test
-  @DirtiesContext
   /**
    * One match, but register update needed
    */
+  @Test
+  @DirtiesContext
   public void testNode100_UserIdentifiedUpdateNecessary_a() throws Exception {
     ArrayList<RegisterResult> zmrResult = new ArrayList<>();
     String randomBpk = RandomStringUtils.randomNumeric(6);
@@ -143,14 +143,14 @@ public class InitialSearchTaskFirstTest {
     task.execute(pendingReq, executionContext);
     String bPk = (String)
         pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
-    Assert.assertTrue("Wrong bpk", bPk.equals(randomBpk));
+    Assert.assertEquals("Wrong bpk", bPk, randomBpk);
   }
 
-  @Test
-  @DirtiesContext
   /**
    * One match, but register update needed
    */
+  @Test
+  @DirtiesContext
   public void testNode100_UserIdentifiedUpdateNecessary_b() throws TaskExecutionException {
     ArrayList<RegisterResult> zmrResult = new ArrayList<>();
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResult);
@@ -163,17 +163,16 @@ public class InitialSearchTaskFirstTest {
     task.execute(pendingReq, executionContext);
     String bPk = (String)
         pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
-    Assert.assertTrue("Wrong bpk", bPk.equals(randomBpk));
-
+    Assert.assertEquals("Wrong bpk", bPk, randomBpk);
   }
 
 
-  @Test
-  @DirtiesContext
   /**
    * Two matches found in ZMR
    */
-  public void testNode101_ManualFixNecessary_a() throws Exception {
+  @Test
+  @DirtiesContext
+  public void testNode101_ManualFixNecessary_a() {
     ArrayList<RegisterResult> zmrResult = new ArrayList<>();
     zmrResult.add(new RegisterResult("bpkMax", DE_ST+randomIdentifier, randomGivenName, randomFamilyName, randomDate));
     zmrResult.add(new RegisterResult("bpkMax", DE_ST+randomIdentifier, "Maximilian", randomFamilyName, randomDate));
@@ -182,22 +181,19 @@ public class InitialSearchTaskFirstTest {
     ArrayList<RegisterResult> ernpResult = new ArrayList<>();
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(ernpResult);
 
-    try {
-      task.execute(pendingReq, executionContext);
-      Assert.assertTrue("Wrong workflow, should not reach this point/ get a bpk", false);
-    } catch (final TaskExecutionException e) {
-      Throwable origE = e.getOriginalException();
-      Assert.assertTrue("Wrong exception", (origE.getCause() instanceof ManualFixNecessaryException));
-    }
+    TaskExecutionException exception = assertThrows(TaskExecutionException.class,
+            () -> task.execute(pendingReq, executionContext));
+    Throwable origE = exception.getOriginalException();
+    Assert.assertTrue("Wrong exception", (origE.getCause() instanceof ManualFixNecessaryException));
   }
 
 
-  @Test
-  @DirtiesContext
   /**
    * Two matches found in ErnP
    */
-  public void testNode101_ManualFixNecessary_b() throws Exception {
+  @Test
+  @DirtiesContext
+  public void testNode101_ManualFixNecessary_b() {
     String randombpk = RandomStringUtils.random(5);
     ArrayList<RegisterResult> zmrResult = new ArrayList<>();
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResult);
@@ -209,20 +205,17 @@ public class InitialSearchTaskFirstTest {
         randomDate));
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(ernpResult);
 
-    try {
-      task.execute(pendingReq, executionContext);
-      Assert.assertTrue("Wrong workflow, should not reach this point/ get a bpk", false);
-    } catch (final TaskExecutionException e) {
-      Throwable origE = e.getOriginalException();
-      Assert.assertTrue("Wrong exception", (origE.getCause() instanceof ManualFixNecessaryException));
-    }
+    TaskExecutionException exception = assertThrows(TaskExecutionException.class,
+            () -> task.execute(pendingReq, executionContext));
+    Throwable origE = exception.getOriginalException();
+    Assert.assertTrue("Wrong exception", (origE.getCause() instanceof ManualFixNecessaryException));
   }
 
-  @Test
-  @DirtiesContext
   /**
    * One match, no register update needed
    */
+  @Test
+  @DirtiesContext
   public void testNode102_UserIdentified_a() throws Exception {
     String randomBpk = RandomStringUtils.randomNumeric(12);
     ArrayList<RegisterResult> zmrResult = new ArrayList<>();
@@ -235,14 +228,14 @@ public class InitialSearchTaskFirstTest {
     task.execute(pendingReq, executionContext);
     String bPk = (String)
         pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
-    Assert.assertTrue("Wrong bpk", bPk.equals(randomBpk));
+    Assert.assertEquals("Wrong bpk", bPk, randomBpk);
   }
 
-  @Test
-  @DirtiesContext
   /**
    * One match, no register update needed
    */
+  @Test
+  @DirtiesContext
   public void testNode102_UserIdentified_b() throws Exception {
     String randomBpk = RandomStringUtils.randomNumeric(14);
 
@@ -256,14 +249,14 @@ public class InitialSearchTaskFirstTest {
     task.execute(pendingReq, executionContext);
     String bPk = (String)
         pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
-    Assert.assertTrue("Wrong bpk", bPk.equals(randomBpk));
+    Assert.assertEquals("Wrong bpk", bPk, randomBpk);
   }
 
-  @Test
-  @DirtiesContext
   /**
    * One match found in ZMR and ErnP with detail search
    */
+  @Test
+  @DirtiesContext
   public void testNode103_UserIdentified_IT() throws Exception {
     String bpkRegister = RandomStringUtils.randomNumeric(14);
     String taxNumber = RandomStringUtils.randomNumeric(14);
@@ -291,22 +284,18 @@ public class InitialSearchTaskFirstTest {
     handlers.add(it);
     task = new InitialSearchTask(handlers, ernpClient, zmrClient);
 
-    try {
-      task.execute(pendingReq1, executionContext);
+    task.execute(pendingReq1, executionContext);
 
-      String bPk = (String)
-          pendingReq1.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
-      Assert.assertTrue("Wrong bpk", bPk.equals(bpkRegister));
-    } catch (final TaskExecutionException e) {
-      Assert.assertTrue("Wrong workflow, should not reach this point", false);
-    }
+    String bPk = (String)
+        pendingReq1.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
+    Assert.assertEquals("Wrong bpk", bPk, bpkRegister);
   }
 
-  @Test
-  @DirtiesContext
   /**
    * Multiple matches found in ZMR and ErnP with detail search
    */
+  @Test
+  @DirtiesContext
   public void testNode103_UserIdentified_DE() throws Exception {
     String givenName = randomGivenName;
     String familyName = randomFamilyName;
@@ -339,22 +328,18 @@ public class InitialSearchTaskFirstTest {
     handlers.add(de);
     task = new InitialSearchTask(handlers, ernpClient, zmrClient);
 
-    try {
-      task.execute(pendingReq1, executionContext);
+    task.execute(pendingReq1, executionContext);
 
-      String bPk = (String)
-          pendingReq1.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
-      Assert.assertTrue("Wrong bpk", bPk.equals(bpk));
-    } catch (final TaskExecutionException e) {
-      Assert.assertTrue("Wrong workflow, should not reach this point", false);
-    }
+    String bPk = (String)
+        pendingReq1.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
+    Assert.assertEquals("Wrong bpk", bPk, bpk);
   }
 
-  @Test
-  @DirtiesContext
   /**
    * Multiple matches found in ZMR and ErnP with detail search
    */
+  @Test
+  @DirtiesContext
   public void testNode104_ManualFixNecessary_DE() throws Exception {
     String givenName = randomGivenName;
     String familyName = randomFamilyName;
@@ -393,20 +378,20 @@ public class InitialSearchTaskFirstTest {
 
     try {
       task.execute(pendingReq1, executionContext);
-      Assert.assertTrue("Wrong workflow, should not reach this point/ get a bpk", false);
+      Assert.fail("Wrong workflow, should not reach this point/ get a bpk");
     } catch (final TaskExecutionException e) {
       Throwable origE = e.getOriginalException();
       Assert.assertTrue("Wrong exception", (origE.getCause() instanceof ManualFixNecessaryException));
     }
   }
 
-  @Test
-  @DirtiesContext
   /**
    * Multiple matches found in ZMR and ErnP with detail search
    */
+  @Test
+  @DirtiesContext
   public void testNode104_ManualFixNecessary_IT() throws Exception {
-    String fakeTaxNumber = RandomStringUtils.randomNumeric(14);;
+    String fakeTaxNumber = RandomStringUtils.randomNumeric(14);
     final AuthenticationResponse response = buildDummyAuthResponseRandomPersonIT_Tax(fakeTaxNumber);
     TestRequestImpl pendingReq1 = new TestRequestImpl();
     pendingReq1.getSessionData(AuthProcessDataWrapper.class)
@@ -432,20 +417,18 @@ public class InitialSearchTaskFirstTest {
     handlers.add(it);
     task = new InitialSearchTask(handlers, ernpClient, zmrClient);
 
-    try {
-      task.execute(pendingReq1, executionContext);
-      Assert.assertTrue("Wrong workflow, should not reach this point/ get a bpk", false);
-    } catch (final TaskExecutionException e) {
-      Throwable origE = e.getOriginalException();
-      Assert.assertTrue("Wrong exception", (origE.getCause() instanceof ManualFixNecessaryException));
-    }
+
+    TaskExecutionException exception = assertThrows(TaskExecutionException.class,
+            () -> task.execute(pendingReq1, executionContext));
+    Throwable origE = exception.getOriginalException();
+    Assert.assertTrue("Wrong exception", (origE.getCause() instanceof ManualFixNecessaryException));
   }
 
-  @Test
-  @DirtiesContext
   /**
    * NO match found in ZMR and ErnP with Initial search
    */
+  @Test
+  @DirtiesContext
   public void testNode105_TemporaryEnd() throws TaskExecutionException {
     ArrayList<RegisterResult> zmrResult = new ArrayList<>();
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResult);
@@ -509,17 +492,17 @@ public class InitialSearchTaskFirstTest {
         "afaf").attributes(attributeMap).build();
   }
 
-  private AttributeDefinition generateStringAttribute(String friendlyName, String fragment, String prefix) throws URISyntaxException {
+  private AttributeDefinition<Object> generateStringAttribute(String friendlyName, String fragment, String prefix) throws URISyntaxException {
     return generateAttribute(friendlyName, fragment, prefix, "eu.eidas.auth.commons.attribute.impl" +
         ".LiteralStringAttributeValueMarshaller");
   }
 
-  private AttributeDefinition generateDateTimeAttribute(String friendlyName, String fragment, String prefix) throws URISyntaxException {
+  private AttributeDefinition<Object> generateDateTimeAttribute(String friendlyName, String fragment, String prefix) throws URISyntaxException {
     return generateAttribute(friendlyName, fragment, prefix, "eu.eidas.auth.commons.attribute.impl" +
         ".DateTimeAttributeValueMarshaller");
   }
 
-  private AttributeDefinition generateAttribute(String friendlyName, String fragment, String prefix,
+  private AttributeDefinition<Object> generateAttribute(String friendlyName, String fragment, String prefix,
                                                 String marshaller) throws URISyntaxException {
     return AttributeDefinition.builder()
         .friendlyName(friendlyName).nameUri(new URI("ad", "sd", fragment))
-- 
cgit v1.2.3


From a344ab3231dd8f6c99e2e7369789aa97681f719f Mon Sep 17 00:00:00 2001
From: Christian Kollmann <christian.kollmann@a-sit.at>
Date: Tue, 12 Jan 2021 15:08:17 +0100
Subject: Use generic list types in parameters and return types

List instead of ArrayList allows for easier mocking and stubbing
---
 .../eidas/v2/dao/MergedRegisterSearchResult.java   |  8 ++--
 .../auth/eidas/v2/ernp/DummyErnpClient.java        | 26 +++++-----
 .../modules/auth/eidas/v2/ernp/IErnpClient.java    | 10 ++--
 .../handler/DeSpecificDetailSearchProcessor.java   | 13 ++---
 .../handler/ItSpecificDetailSearchProcessor.java   | 14 ++----
 .../auth/eidas/v2/tasks/InitialSearchTask.java     | 19 ++------
 .../modules/auth/eidas/v2/zmr/DummyZmrClient.java  | 26 +++++-----
 .../modules/auth/eidas/v2/zmr/IZmrClient.java      | 10 ++--
 .../v2/test/tasks/InitialSearchTaskFirstTest.java  | 55 +++++++---------------
 9 files changed, 70 insertions(+), 111 deletions(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/MergedRegisterSearchResult.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/MergedRegisterSearchResult.java
index 7703af2a..e147b8aa 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/MergedRegisterSearchResult.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/MergedRegisterSearchResult.java
@@ -26,15 +26,15 @@ package at.asitplus.eidas.specific.modules.auth.eidas.v2.dao;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.WorkflowException;
 import lombok.Data;
 
-import java.util.ArrayList;
+import java.util.List;
 
 @Data
 public class MergedRegisterSearchResult {
 
-  final ArrayList<RegisterResult> resultsZmr;
-  final ArrayList<RegisterResult> resultsErnp;
+  final List<RegisterResult> resultsZmr;
+  final List<RegisterResult> resultsErnp;
 
-  public MergedRegisterSearchResult(ArrayList<RegisterResult> resultsZmr, ArrayList<RegisterResult> resultsErnp) {
+  public MergedRegisterSearchResult(List<RegisterResult> resultsZmr, List<RegisterResult> resultsErnp) {
     this.resultsZmr = resultsZmr;
     this.resultsErnp = resultsErnp;
   }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernp/DummyErnpClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernp/DummyErnpClient.java
index 3b49ab95..e514c808 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernp/DummyErnpClient.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernp/DummyErnpClient.java
@@ -27,30 +27,34 @@ import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
 import org.springframework.stereotype.Service;
 
-import java.util.ArrayList;
+import java.util.Collections;
+import java.util.List;
 
 @Service("ErnbClientForeIDAS")
 public class DummyErnpClient implements IErnpClient {
 
   @Override
-  public ArrayList<RegisterResult> searchWithPersonIdentifier(String personIdentifier) {
-    return resultEmpty();
+  public List<RegisterResult> searchWithPersonIdentifier(String personIdentifier) {
+    return Collections.emptyList();
   }
 
   @Override
-  public ArrayList<RegisterResult> searchWithMds(String givenName, String familyName, String dateOfBirth) {
-    return resultEmpty();//TODO will I only receive matches where all three values match perfectly?
+  public List<RegisterResult> searchWithMds(String givenName, String familyName, String dateOfBirth) {
+    //TODO will I only receive matches where all three values match perfectly?
+    return Collections.emptyList();
   }
 
   @Override
-  public ArrayList<RegisterResult> searchDeSpecific(String givenName, String familyName, String dateOfBirth,
+  public List<RegisterResult> searchDeSpecific(String givenName, String familyName, String dateOfBirth,
                                                     String birthPlace, String birthName) {
-    return resultEmpty();//TODO
+    //TODO
+    return Collections.emptyList();
   }
 
   @Override
-  public ArrayList<RegisterResult> searchItSpecific(String taxNumber) {
-    return resultEmpty();//TODO
+  public List<RegisterResult> searchItSpecific(String taxNumber) {
+    //TODO
+    return Collections.emptyList();
   }
 
   @Override
@@ -58,9 +62,5 @@ public class DummyErnpClient implements IErnpClient {
     //TODO
   }
 
-  private ArrayList<RegisterResult> resultEmpty() {
-    return new ArrayList<RegisterResult>();//Nobody found
-  }
-
 
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernp/IErnpClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernp/IErnpClient.java
index 01ac88fb..b9641c5c 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernp/IErnpClient.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernp/IErnpClient.java
@@ -26,18 +26,18 @@ package at.asitplus.eidas.specific.modules.auth.eidas.v2.ernp;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
 
-import java.util.ArrayList;
+import java.util.List;
 
 public interface IErnpClient {
 
-  ArrayList<RegisterResult> searchWithPersonIdentifier(String personIdentifier);
+  List<RegisterResult> searchWithPersonIdentifier(String personIdentifier);
 
-  ArrayList<RegisterResult> searchWithMds(String givenName, String familyName, String dateOfBirth);
+  List<RegisterResult> searchWithMds(String givenName, String familyName, String dateOfBirth);
 
-  ArrayList<RegisterResult> searchDeSpecific(String givenName, String familyName, String dateOfBirth,
+  List<RegisterResult> searchDeSpecific(String givenName, String familyName, String dateOfBirth,
                                              String birthPlace, String birthName);
 
-  ArrayList<RegisterResult> searchItSpecific(String taxNumber);
+  List<RegisterResult> searchItSpecific(String taxNumber);
 
   void update(RegisterResult registerResult, SimpleEidasData eidData);
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/DeSpecificDetailSearchProcessor.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/DeSpecificDetailSearchProcessor.java
index a29725c8..544d5b0c 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/DeSpecificDetailSearchProcessor.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/DeSpecificDetailSearchProcessor.java
@@ -30,7 +30,7 @@ import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernp.IErnpClient;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.IZmrClient;
 
-import java.util.ArrayList;
+import java.util.List;
 
 public class DeSpecificDetailSearchProcessor extends CountrySpecificDetailSearchProcessor {
 
@@ -54,17 +54,12 @@ public class DeSpecificDetailSearchProcessor extends CountrySpecificDetailSearch
 
   @Override
   public MergedRegisterSearchResult search(SimpleEidasData eidData) {
-
-
-    ArrayList<RegisterResult> resultsZmr =
+    List<RegisterResult> resultsZmr =
         zmrClient.searchDeSpecific(eidData.getGivenName(), eidData.getFamilyName(), eidData.getDateOfBirth(),
             eidData.getPlaceOfBirth(), eidData.getBirthName());
-
-    ArrayList<RegisterResult> resultsErnb =
+    List<RegisterResult> resultsErnb =
         ernbClient.searchDeSpecific(eidData.getGivenName(), eidData.getFamilyName(), eidData.getDateOfBirth(),
             eidData.getPlaceOfBirth(), eidData.getBirthName());
-
-    MergedRegisterSearchResult searchResult = new MergedRegisterSearchResult(resultsZmr, resultsErnb);
-    return searchResult;
+    return new MergedRegisterSearchResult(resultsZmr, resultsErnb);
   }
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ItSpecificDetailSearchProcessor.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ItSpecificDetailSearchProcessor.java
index e730066d..370a111c 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ItSpecificDetailSearchProcessor.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ItSpecificDetailSearchProcessor.java
@@ -30,7 +30,7 @@ import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernp.IErnpClient;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.IZmrClient;
 
-import java.util.ArrayList;
+import java.util.List;
 
 public class ItSpecificDetailSearchProcessor extends CountrySpecificDetailSearchProcessor {
 
@@ -51,14 +51,8 @@ public class ItSpecificDetailSearchProcessor extends CountrySpecificDetailSearch
 
   @Override
   public MergedRegisterSearchResult search(SimpleEidasData eidData) {
-
-    ArrayList<RegisterResult> resultsZmr =
-        zmrClient.searchItSpecific(eidData.getTaxNumber());
-
-    ArrayList<RegisterResult> resultsErnb =
-        ernbClient.searchItSpecific(eidData.getTaxNumber());
-
-    MergedRegisterSearchResult searchResult = new MergedRegisterSearchResult(resultsZmr, resultsErnb);
-    return searchResult;
+    List<RegisterResult> resultsZmr = zmrClient.searchItSpecific(eidData.getTaxNumber());
+    List<RegisterResult> resultsErnb = ernbClient.searchItSpecific(eidData.getTaxNumber());
+    return new MergedRegisterSearchResult(resultsZmr, resultsErnb);
   }
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
index c4f0f146..d1bc8f53 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
@@ -23,7 +23,6 @@
 
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks;
 
-import java.util.ArrayList;
 import java.util.HashMap;
 import java.util.List;
 import java.util.Map;
@@ -209,12 +208,10 @@ public class InitialSearchTask extends AbstractAuthServletTask {
   private String step8RegisterSearchWithMds(MergedRegisterSearchResult initialSearchResult,
                                             SimpleEidasData eidData) {
     log.trace("Starting step8RegisterSearchWithMds");
-    ArrayList<RegisterResult> resultsZmr =
+    List<RegisterResult> resultsZmr =
         zmrClient.searchWithMds(eidData.getGivenName(), eidData.getFamilyName(), eidData.getDateOfBirth());
-
-    ArrayList<RegisterResult> resultsErnp =
+    List<RegisterResult> resultsErnp =
         ernpClient.searchWithMds(eidData.getGivenName(), eidData.getFamilyName(), eidData.getDateOfBirth());
-
     MergedRegisterSearchResult mdsSearchResult = new MergedRegisterSearchResult(resultsZmr, resultsErnp);
     log.debug("Automerge " + initialSearchResult + " with " + eidData + " " + mdsSearchResult);
     //TODO implement next phase and return correct value
@@ -222,15 +219,9 @@ public class InitialSearchTask extends AbstractAuthServletTask {
   }
 
   private MergedRegisterSearchResult searchInZmrAndErnp(String personIdentifier) {
-
-    ArrayList<RegisterResult> resultsZmr =
-        zmrClient.searchWithPersonIdentifier(personIdentifier);
-
-    ArrayList<RegisterResult> resultsErnp =
-        ernpClient.searchWithPersonIdentifier(personIdentifier);
-
-    MergedRegisterSearchResult initialSearchResult = new MergedRegisterSearchResult(resultsZmr, resultsErnp);
-    return initialSearchResult;
+    List<RegisterResult> resultsZmr = zmrClient.searchWithPersonIdentifier(personIdentifier);
+    List<RegisterResult> resultsErnp = ernpClient.searchWithPersonIdentifier(personIdentifier);
+    return new MergedRegisterSearchResult(resultsZmr, resultsErnp);
   }
 
   private SimpleEidasData convertSimpleMapToSimpleData(Map<String, Object> eidasAttrMap)
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/DummyZmrClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/DummyZmrClient.java
index 60dd2ef2..b12c1bcb 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/DummyZmrClient.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/DummyZmrClient.java
@@ -27,30 +27,34 @@ import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
 import org.springframework.stereotype.Service;
 
-import java.util.ArrayList;
+import java.util.Collections;
+import java.util.List;
 
 @Service("ZmrClientForeIDAS")
 public class DummyZmrClient implements IZmrClient {
 
   @Override
-  public ArrayList<RegisterResult> searchWithPersonIdentifier(String personIdentifier) {
-    return resultEmpty();
+  public List<RegisterResult> searchWithPersonIdentifier(String personIdentifier) {
+    return Collections.emptyList();
   }
 
   @Override
-  public ArrayList<RegisterResult> searchWithMds(String givenName, String familyName, String dateOfBirth) {
-    return resultEmpty();//TODO will I only receive matches where all three values match perfectly?
+  public List<RegisterResult> searchWithMds(String givenName, String familyName, String dateOfBirth) {
+    //TODO will I only receive matches where all three values match perfectly?
+    return Collections.emptyList();
   }
 
   @Override
-  public ArrayList<RegisterResult> searchDeSpecific(String givenName, String familyName, String dateOfBirth,
+  public List<RegisterResult> searchDeSpecific(String givenName, String familyName, String dateOfBirth,
                                                     String birthPlace, String birthName) {
-    return resultEmpty();//TODO
+    //TODO
+    return Collections.emptyList();
   }
 
   @Override
-  public ArrayList<RegisterResult> searchItSpecific(String taxNumber) {
-    return resultEmpty();//TODO
+  public List<RegisterResult> searchItSpecific(String taxNumber) {
+    //TODO
+    return Collections.emptyList();
   }
 
   @Override
@@ -58,8 +62,4 @@ public class DummyZmrClient implements IZmrClient {
     //TODO
   }
 
-  private ArrayList<RegisterResult> resultEmpty() {
-    return new ArrayList<RegisterResult>();//Nobody found
-  }
-
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/IZmrClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/IZmrClient.java
index 3a518e64..5175cd7b 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/IZmrClient.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/IZmrClient.java
@@ -26,18 +26,18 @@ package at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
 
-import java.util.ArrayList;
+import java.util.List;
 
 public interface IZmrClient {
 
-  ArrayList<RegisterResult> searchWithPersonIdentifier(String personIdentifier);
+  List<RegisterResult> searchWithPersonIdentifier(String personIdentifier);
 
-  ArrayList<RegisterResult> searchWithMds(String givenName, String familyName, String dateOfBirth);
+  List<RegisterResult> searchWithMds(String givenName, String familyName, String dateOfBirth);
 
-  ArrayList<RegisterResult> searchDeSpecific(String givenName, String familyName, String dateOfBirth,
+  List<RegisterResult> searchDeSpecific(String givenName, String familyName, String dateOfBirth,
                                              String birthPlace, String birthName);
 
-  ArrayList<RegisterResult> searchItSpecific(String taxNumber);
+  List<RegisterResult> searchItSpecific(String taxNumber);
 
   void update(RegisterResult registerResult, SimpleEidasData eidData);
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
index 35e2e56e..1f512354 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
@@ -67,6 +67,7 @@ import java.io.IOException;
 import java.net.URI;
 import java.net.URISyntaxException;
 import java.util.ArrayList;
+import java.util.Collections;
 import java.util.List;
 import java.util.Random;
 
@@ -136,9 +137,7 @@ public class InitialSearchTaskFirstTest {
     String newFirstName = RandomStringUtils.randomAlphabetic(5);
     zmrResult.add(new RegisterResult(randomBpk, DE_ST+randomIdentifier, newFirstName, randomFamilyName, randomDate));
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResult);
-
-    ArrayList<RegisterResult> ernpResult = new ArrayList<>();
-    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(ernpResult);
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
 
     task.execute(pendingReq, executionContext);
     String bPk = (String)
@@ -152,9 +151,7 @@ public class InitialSearchTaskFirstTest {
   @Test
   @DirtiesContext
   public void testNode100_UserIdentifiedUpdateNecessary_b() throws TaskExecutionException {
-    ArrayList<RegisterResult> zmrResult = new ArrayList<>();
-    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResult);
-
+    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
     ArrayList<RegisterResult> ernpResult = new ArrayList<>();
     String randomBpk = RandomStringUtils.randomNumeric(6);
     ernpResult.add(new RegisterResult(randomBpk, DE_ST+randomIdentifier, "Max_new", randomFamilyName, randomDate));
@@ -177,9 +174,7 @@ public class InitialSearchTaskFirstTest {
     zmrResult.add(new RegisterResult("bpkMax", DE_ST+randomIdentifier, randomGivenName, randomFamilyName, randomDate));
     zmrResult.add(new RegisterResult("bpkMax", DE_ST+randomIdentifier, "Maximilian", randomFamilyName, randomDate));
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResult);
-
-    ArrayList<RegisterResult> ernpResult = new ArrayList<>();
-    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(ernpResult);
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
 
     TaskExecutionException exception = assertThrows(TaskExecutionException.class,
             () -> task.execute(pendingReq, executionContext));
@@ -195,9 +190,7 @@ public class InitialSearchTaskFirstTest {
   @DirtiesContext
   public void testNode101_ManualFixNecessary_b() {
     String randombpk = RandomStringUtils.random(5);
-    ArrayList<RegisterResult> zmrResult = new ArrayList<>();
-    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResult);
-
+    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
     ArrayList<RegisterResult> ernpResult = new ArrayList<>();
     ernpResult.add(new RegisterResult(randombpk, DE_ST+randomIdentifier, randomGivenName, randomFamilyName, randomDate));
     ernpResult.add(new RegisterResult(randombpk, DE_ST+randomIdentifier, randomGivenName+RandomStringUtils.random(2),
@@ -218,8 +211,7 @@ public class InitialSearchTaskFirstTest {
   @DirtiesContext
   public void testNode102_UserIdentified_a() throws Exception {
     String randomBpk = RandomStringUtils.randomNumeric(12);
-    ArrayList<RegisterResult> zmrResult = new ArrayList<>();
-    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResult);
+    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
 
     ArrayList<RegisterResult> ernpResult = new ArrayList<>();
     ernpResult.add(new RegisterResult(randomBpk, DE_ST+randomIdentifier, randomGivenName, randomFamilyName, randomDate));
@@ -242,9 +234,7 @@ public class InitialSearchTaskFirstTest {
     ArrayList<RegisterResult> zmrResult = new ArrayList<>();
     zmrResult.add(new RegisterResult(randomBpk, DE_ST+randomIdentifier, randomGivenName, randomFamilyName, randomDate));
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResult);
-
-    ArrayList<RegisterResult> ernpResult = new ArrayList<>();
-    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(ernpResult);
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
 
     task.execute(pendingReq, executionContext);
     String bPk = (String)
@@ -265,8 +255,7 @@ public class InitialSearchTaskFirstTest {
     pendingReq1.getSessionData(AuthProcessDataWrapper.class)
         .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
 
-    ArrayList<RegisterResult> zmrResultInitial = new ArrayList<>();
-    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResultInitial);
+    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
     ArrayList<RegisterResult> zmrResultSpecific = new ArrayList<>();
 
     zmrResultSpecific.add(new RegisterResult(bpkRegister, IT_ST+randomIdentifier+RandomStringUtils.random(2),
@@ -276,8 +265,7 @@ public class InitialSearchTaskFirstTest {
 
     Mockito.when(zmrClient.searchItSpecific(taxNumber)).thenReturn(zmrResultSpecific);
 
-    ArrayList<RegisterResult> ernpResultInitial = new ArrayList<>();
-    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(ernpResultInitial);
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
 
     List<CountrySpecificDetailSearchProcessor> handlers = new ArrayList<>();
     ItSpecificDetailSearchProcessor it = new ItSpecificDetailSearchProcessor(ernpClient, zmrClient);
@@ -310,8 +298,7 @@ public class InitialSearchTaskFirstTest {
     pendingReq1.getSessionData(AuthProcessDataWrapper.class)
         .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
 
-    ArrayList<RegisterResult> zmrResultInitial = new ArrayList<>();
-    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResultInitial);
+    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
     ArrayList<RegisterResult> zmrResultSpecific = new ArrayList<>();
 
     zmrResultSpecific.add(new RegisterResult(bpk, pseudonym, givenName, familyName, dateOfBirth, placeOfBirth,
@@ -320,8 +307,7 @@ public class InitialSearchTaskFirstTest {
 
     Mockito.when(zmrClient.searchDeSpecific(givenName, familyName, dateOfBirth, placeOfBirth, birthName)).thenReturn(zmrResultSpecific);
 
-    ArrayList<RegisterResult> ernpResultInitial = new ArrayList<>();
-    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(ernpResultInitial);
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
 
     List<CountrySpecificDetailSearchProcessor> handlers = new ArrayList<>();
     DeSpecificDetailSearchProcessor de = new DeSpecificDetailSearchProcessor(ernpClient, zmrClient);
@@ -356,8 +342,7 @@ public class InitialSearchTaskFirstTest {
     pendingReq1.getSessionData(AuthProcessDataWrapper.class)
         .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
 
-    ArrayList<RegisterResult> zmrResultInitial = new ArrayList<>();
-    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResultInitial);
+    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
     ArrayList<RegisterResult> zmrResultSpecific = new ArrayList<>();
 
     zmrResultSpecific.add(new RegisterResult(bpk1, pseudonym1, givenName, familyName, dateOfBirth, placeOfBirth,
@@ -368,8 +353,7 @@ public class InitialSearchTaskFirstTest {
         null, null));
     Mockito.when(zmrClient.searchDeSpecific(givenName, familyName, dateOfBirth, placeOfBirth, birthName)).thenReturn(zmrResultSpecific);
 
-    ArrayList<RegisterResult> ernpResultInitial = new ArrayList<>();
-    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(ernpResultInitial);
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
 
     List<CountrySpecificDetailSearchProcessor> handlers = new ArrayList<>();
     DeSpecificDetailSearchProcessor de = new DeSpecificDetailSearchProcessor(ernpClient, zmrClient);
@@ -397,8 +381,7 @@ public class InitialSearchTaskFirstTest {
     pendingReq1.getSessionData(AuthProcessDataWrapper.class)
         .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
 
-    ArrayList<RegisterResult> zmrResultInitial = new ArrayList<>();
-    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResultInitial);
+    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
     ArrayList<RegisterResult> zmrResultSpecific = new ArrayList<>();
 
     zmrResultSpecific.add(new RegisterResult("bpkMax", IT_ST+randomIdentifier+"4", randomGivenName, randomFamilyName,
@@ -409,8 +392,7 @@ public class InitialSearchTaskFirstTest {
         fakeTaxNumber, null));
     Mockito.when(zmrClient.searchItSpecific(fakeTaxNumber)).thenReturn(zmrResultSpecific);
 
-    ArrayList<RegisterResult> ernpResultInitial = new ArrayList<>();
-    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(ernpResultInitial);
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
 
     List<CountrySpecificDetailSearchProcessor> handlers = new ArrayList<>();
     ItSpecificDetailSearchProcessor it = new ItSpecificDetailSearchProcessor(ernpClient, zmrClient);
@@ -430,11 +412,8 @@ public class InitialSearchTaskFirstTest {
   @Test
   @DirtiesContext
   public void testNode105_TemporaryEnd() throws TaskExecutionException {
-    ArrayList<RegisterResult> zmrResult = new ArrayList<>();
-    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResult);
-
-    ArrayList<RegisterResult> ernpResult = new ArrayList<>();
-    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(ernpResult);
+    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
 
     task.execute(pendingReq, executionContext);
     String bPk = (String)
-- 
cgit v1.2.3


From 111dd0f0a90a31488d1d9820cb877aeddade4bf7 Mon Sep 17 00:00:00 2001
From: Christian Kollmann <christian.kollmann@a-sit.at>
Date: Tue, 12 Jan 2021 15:13:47 +0100
Subject: Use random values in tests

---
 .../v2/test/tasks/InitialSearchTaskFirstTest.java  | 111 +++++++++------------
 1 file changed, 47 insertions(+), 64 deletions(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
index 1f512354..c18dabb9 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
@@ -87,10 +87,10 @@ public class InitialSearchTaskFirstTest {
   final ExecutionContext executionContext = new ExecutionContextImpl();
   private TestRequestImpl pendingReq;
   private final String randomIdentifier = RandomStringUtils.randomNumeric(10);
-  private final String randomFamilyName = RandomStringUtils.randomNumeric(11);
-  private final String randomGivenName = RandomStringUtils.randomNumeric(12);
-  private final String randomPlaceOfBirth = RandomStringUtils.randomNumeric(12);
-  private final String randomBirthName = RandomStringUtils.randomNumeric(12);
+  private final String randomFamilyName = RandomStringUtils.randomAlphabetic(10);
+  private final String randomGivenName = RandomStringUtils.randomAlphabetic(10);
+  private final String randomPlaceOfBirth = RandomStringUtils.randomAlphabetic(10);
+  private final String randomBirthName = RandomStringUtils.randomAlphabetic(10);
   private final String randomDate = "2011-01-"+ (10 + new Random().nextInt(18));
   private final String DE_ST = "de/st/";
   private final String IT_ST = "it/st/";
@@ -154,7 +154,8 @@ public class InitialSearchTaskFirstTest {
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
     ArrayList<RegisterResult> ernpResult = new ArrayList<>();
     String randomBpk = RandomStringUtils.randomNumeric(6);
-    ernpResult.add(new RegisterResult(randomBpk, DE_ST+randomIdentifier, "Max_new", randomFamilyName, randomDate));
+    String newRandomGivenName = RandomStringUtils.randomAlphabetic(10);
+    ernpResult.add(new RegisterResult(randomBpk, DE_ST+randomIdentifier, newRandomGivenName, randomFamilyName, randomDate));
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(ernpResult);
 
     task.execute(pendingReq, executionContext);
@@ -172,7 +173,8 @@ public class InitialSearchTaskFirstTest {
   public void testNode101_ManualFixNecessary_a() {
     ArrayList<RegisterResult> zmrResult = new ArrayList<>();
     zmrResult.add(new RegisterResult("bpkMax", DE_ST+randomIdentifier, randomGivenName, randomFamilyName, randomDate));
-    zmrResult.add(new RegisterResult("bpkMax", DE_ST+randomIdentifier, "Maximilian", randomFamilyName, randomDate));
+    String newRandomGivenName = randomGivenName + RandomStringUtils.randomAlphabetic(2);
+    zmrResult.add(new RegisterResult("bpkMax", DE_ST+randomIdentifier, newRandomGivenName, randomFamilyName, randomDate));
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResult);
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
 
@@ -189,13 +191,12 @@ public class InitialSearchTaskFirstTest {
   @Test
   @DirtiesContext
   public void testNode101_ManualFixNecessary_b() {
-    String randombpk = RandomStringUtils.random(5);
+    String randombpk = RandomStringUtils.randomNumeric(5);
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
     ArrayList<RegisterResult> ernpResult = new ArrayList<>();
     ernpResult.add(new RegisterResult(randombpk, DE_ST+randomIdentifier, randomGivenName, randomFamilyName, randomDate));
-    ernpResult.add(new RegisterResult(randombpk, DE_ST+randomIdentifier, randomGivenName+RandomStringUtils.random(2),
-        randomFamilyName,
-        randomDate));
+    String newRandomGivenName = randomGivenName + RandomStringUtils.randomAlphabetic(2);
+    ernpResult.add(new RegisterResult(randombpk, DE_ST+randomIdentifier, newRandomGivenName, randomFamilyName, randomDate));
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(ernpResult);
 
     TaskExecutionException exception = assertThrows(TaskExecutionException.class,
@@ -258,10 +259,9 @@ public class InitialSearchTaskFirstTest {
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
     ArrayList<RegisterResult> zmrResultSpecific = new ArrayList<>();
 
-    zmrResultSpecific.add(new RegisterResult(bpkRegister, IT_ST+randomIdentifier+RandomStringUtils.random(2),
-        randomGivenName,
-        randomFamilyName,
-        randomDate, null, null, taxNumber, null));
+    String newRandomPseudonym = IT_ST + randomIdentifier + RandomStringUtils.randomNumeric(2);
+    zmrResultSpecific.add(new RegisterResult(bpkRegister, newRandomPseudonym, randomGivenName, randomFamilyName,
+            randomDate, null, null, taxNumber, null));
 
     Mockito.when(zmrClient.searchItSpecific(taxNumber)).thenReturn(zmrResultSpecific);
 
@@ -285,15 +285,10 @@ public class InitialSearchTaskFirstTest {
   @Test
   @DirtiesContext
   public void testNode103_UserIdentified_DE() throws Exception {
-    String givenName = randomGivenName;
-    String familyName = randomFamilyName;
-    String pseudonym = DE_ST + RandomStringUtils.random(5);
-    String bpk = RandomStringUtils.random(5);
-    String dateOfBirth = randomDate;
-    String placeOfBirth = randomPlaceOfBirth;
-    String birthName = randomBirthName;
-    final AuthenticationResponse response = buildDummyAuthResponseDE(givenName, familyName, pseudonym,
-        dateOfBirth, placeOfBirth, birthName);
+    String randomPseudonym = DE_ST + RandomStringUtils.randomNumeric(5);
+    String randomBpk = RandomStringUtils.randomNumeric(5);
+    final AuthenticationResponse response = buildDummyAuthResponseDE(randomGivenName, randomFamilyName, randomPseudonym,
+            randomDate, randomPlaceOfBirth, randomBirthName);
     TestRequestImpl pendingReq1 = new TestRequestImpl();
     pendingReq1.getSessionData(AuthProcessDataWrapper.class)
         .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
@@ -301,11 +296,11 @@ public class InitialSearchTaskFirstTest {
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
     ArrayList<RegisterResult> zmrResultSpecific = new ArrayList<>();
 
-    zmrResultSpecific.add(new RegisterResult(bpk, pseudonym, givenName, familyName, dateOfBirth, placeOfBirth,
-        birthName,
-        null, null));
+    zmrResultSpecific.add(new RegisterResult(randomBpk, randomPseudonym, randomGivenName, randomFamilyName, randomDate,
+            randomPlaceOfBirth, randomBirthName,null, null));
 
-    Mockito.when(zmrClient.searchDeSpecific(givenName, familyName, dateOfBirth, placeOfBirth, birthName)).thenReturn(zmrResultSpecific);
+    Mockito.when(zmrClient.searchDeSpecific(randomGivenName, randomFamilyName, randomDate, randomPlaceOfBirth,
+            randomBirthName)).thenReturn(zmrResultSpecific);
 
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
 
@@ -316,9 +311,9 @@ public class InitialSearchTaskFirstTest {
 
     task.execute(pendingReq1, executionContext);
 
-    String bPk = (String)
+    String resultBpk = (String)
         pendingReq1.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
-    Assert.assertEquals("Wrong bpk", bPk, bpk);
+    Assert.assertEquals("Wrong bpk", resultBpk, randomBpk);
   }
 
   /**
@@ -327,17 +322,12 @@ public class InitialSearchTaskFirstTest {
   @Test
   @DirtiesContext
   public void testNode104_ManualFixNecessary_DE() throws Exception {
-    String givenName = randomGivenName;
-    String familyName = randomFamilyName;
-    String pseudonym1 = DE_ST + RandomStringUtils.random(5);
-    String pseudonym2 = pseudonym1 + RandomStringUtils.random(2);
-    String bpk1 = RandomStringUtils.random(5);
-    String bpk2 = bpk1 + RandomStringUtils.random(2);
-    String dateOfBirth = randomDate;
-    String placeOfBirth = randomPlaceOfBirth;
-    String birthName = randomBirthName;
-    final AuthenticationResponse response = buildDummyAuthResponseDE(givenName, familyName, pseudonym1,
-        dateOfBirth, placeOfBirth, birthName);
+    String pseudonym1 = DE_ST + RandomStringUtils.randomNumeric(5);
+    String pseudonym2 = pseudonym1 + RandomStringUtils.randomNumeric(2);
+    String bpk1 = RandomStringUtils.randomNumeric(5);
+    String bpk2 = bpk1 + RandomStringUtils.randomNumeric(2);
+    final AuthenticationResponse response = buildDummyAuthResponseDE(randomGivenName, randomFamilyName, pseudonym1,
+            randomDate, randomPlaceOfBirth, randomBirthName);
     TestRequestImpl pendingReq1 = new TestRequestImpl();
     pendingReq1.getSessionData(AuthProcessDataWrapper.class)
         .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
@@ -345,13 +335,12 @@ public class InitialSearchTaskFirstTest {
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
     ArrayList<RegisterResult> zmrResultSpecific = new ArrayList<>();
 
-    zmrResultSpecific.add(new RegisterResult(bpk1, pseudonym1, givenName, familyName, dateOfBirth, placeOfBirth,
-        birthName,
-        null, null));
-    zmrResultSpecific.add(new RegisterResult(bpk2, pseudonym2, givenName, familyName, dateOfBirth, placeOfBirth,
-        birthName,
-        null, null));
-    Mockito.when(zmrClient.searchDeSpecific(givenName, familyName, dateOfBirth, placeOfBirth, birthName)).thenReturn(zmrResultSpecific);
+    zmrResultSpecific.add(new RegisterResult(bpk1, pseudonym1, randomGivenName, randomFamilyName, randomDate,
+            randomPlaceOfBirth, randomBirthName,null, null));
+    zmrResultSpecific.add(new RegisterResult(bpk2, pseudonym2, randomGivenName, randomFamilyName, randomDate,
+            randomPlaceOfBirth, randomBirthName,null, null));
+    Mockito.when(zmrClient.searchDeSpecific(randomGivenName, randomFamilyName, randomDate, randomPlaceOfBirth,
+            randomBirthName)).thenReturn(zmrResultSpecific);
 
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
 
@@ -360,13 +349,10 @@ public class InitialSearchTaskFirstTest {
     handlers.add(de);
     task = new InitialSearchTask(handlers, ernpClient, zmrClient);
 
-    try {
-      task.execute(pendingReq1, executionContext);
-      Assert.fail("Wrong workflow, should not reach this point/ get a bpk");
-    } catch (final TaskExecutionException e) {
-      Throwable origE = e.getOriginalException();
-      Assert.assertTrue("Wrong exception", (origE.getCause() instanceof ManualFixNecessaryException));
-    }
+    TaskExecutionException exception = assertThrows(TaskExecutionException.class,
+            () -> task.execute(pendingReq1, executionContext));
+    Throwable origE = exception.getOriginalException();
+    Assert.assertTrue("Wrong exception", (origE.getCause() instanceof ManualFixNecessaryException));
   }
 
   /**
@@ -384,12 +370,10 @@ public class InitialSearchTaskFirstTest {
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
     ArrayList<RegisterResult> zmrResultSpecific = new ArrayList<>();
 
-    zmrResultSpecific.add(new RegisterResult("bpkMax", IT_ST+randomIdentifier+"4", randomGivenName, randomFamilyName,
-        randomDate, null, null,
-        fakeTaxNumber, null));
-    zmrResultSpecific.add(new RegisterResult("bpkMax1", IT_ST+randomIdentifier+"5", randomGivenName, randomFamilyName,
-        randomDate, null, null,
-        fakeTaxNumber, null));
+    zmrResultSpecific.add(new RegisterResult("bpkMax", IT_ST+randomIdentifier+"4", randomGivenName,
+            randomFamilyName, randomDate, null, null, fakeTaxNumber, null));
+    zmrResultSpecific.add(new RegisterResult("bpkMax1", IT_ST+randomIdentifier+"5", randomGivenName,
+            randomFamilyName, randomDate, null, null, fakeTaxNumber, null));
     Mockito.when(zmrClient.searchItSpecific(fakeTaxNumber)).thenReturn(zmrResultSpecific);
 
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
@@ -424,13 +408,12 @@ public class InitialSearchTaskFirstTest {
 
   @NotNull
   private AuthenticationResponse buildDummyAuthResponseRandomPerson() throws URISyntaxException {
-    return buildDummyAuthResponse(randomGivenName, randomFamilyName,
-        DE_ST+randomIdentifier, randomDate);
+    return buildDummyAuthResponse(randomGivenName, randomFamilyName, DE_ST+randomIdentifier, randomDate);
   }
 
   private AuthenticationResponse buildDummyAuthResponseRandomPersonIT_Tax(String taxNumber) throws URISyntaxException {
-    return buildDummyAuthResponse(randomGivenName, randomFamilyName,
-        IT_ST+randomIdentifier, randomDate, taxNumber, null, null);
+    return buildDummyAuthResponse(randomGivenName, randomFamilyName, IT_ST+randomIdentifier, randomDate,
+            taxNumber, null, null);
   }
 
   @NotNull
-- 
cgit v1.2.3


From 4e3c7bf6fba4bb38c286ab901a41b1d429db38f4 Mon Sep 17 00:00:00 2001
From: Christian Kollmann <christian.kollmann@a-sit.at>
Date: Tue, 12 Jan 2021 15:25:51 +0100
Subject: Use clear Arrange-Act-Assert structure in tests

---
 .../v2/test/tasks/InitialSearchTaskFirstTest.java  | 88 ++++++++--------------
 1 file changed, 31 insertions(+), 57 deletions(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
index c18dabb9..99764aad 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
@@ -135,13 +135,15 @@ public class InitialSearchTaskFirstTest {
     ArrayList<RegisterResult> zmrResult = new ArrayList<>();
     String randomBpk = RandomStringUtils.randomNumeric(6);
     String newFirstName = RandomStringUtils.randomAlphabetic(5);
-    zmrResult.add(new RegisterResult(randomBpk, DE_ST+randomIdentifier, newFirstName, randomFamilyName, randomDate));
-    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResult);
+    String randomPseudonym = DE_ST + randomIdentifier;
+    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.singletonList(
+            new RegisterResult(randomBpk, randomPseudonym, newFirstName, randomFamilyName, randomDate)));
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
 
     task.execute(pendingReq, executionContext);
     String bPk = (String)
         pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
+
     Assert.assertEquals("Wrong bpk", bPk, randomBpk);
   }
 
@@ -152,19 +154,18 @@ public class InitialSearchTaskFirstTest {
   @DirtiesContext
   public void testNode100_UserIdentifiedUpdateNecessary_b() throws TaskExecutionException {
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
-    ArrayList<RegisterResult> ernpResult = new ArrayList<>();
     String randomBpk = RandomStringUtils.randomNumeric(6);
     String newRandomGivenName = RandomStringUtils.randomAlphabetic(10);
-    ernpResult.add(new RegisterResult(randomBpk, DE_ST+randomIdentifier, newRandomGivenName, randomFamilyName, randomDate));
-    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(ernpResult);
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.singletonList(
+            new RegisterResult(randomBpk, DE_ST+randomIdentifier, newRandomGivenName, randomFamilyName, randomDate)));
 
     task.execute(pendingReq, executionContext);
     String bPk = (String)
         pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
+
     Assert.assertEquals("Wrong bpk", bPk, randomBpk);
   }
 
-
   /**
    * Two matches found in ZMR
    */
@@ -180,6 +181,7 @@ public class InitialSearchTaskFirstTest {
 
     TaskExecutionException exception = assertThrows(TaskExecutionException.class,
             () -> task.execute(pendingReq, executionContext));
+
     Throwable origE = exception.getOriginalException();
     Assert.assertTrue("Wrong exception", (origE.getCause() instanceof ManualFixNecessaryException));
   }
@@ -201,6 +203,7 @@ public class InitialSearchTaskFirstTest {
 
     TaskExecutionException exception = assertThrows(TaskExecutionException.class,
             () -> task.execute(pendingReq, executionContext));
+
     Throwable origE = exception.getOriginalException();
     Assert.assertTrue("Wrong exception", (origE.getCause() instanceof ManualFixNecessaryException));
   }
@@ -213,10 +216,8 @@ public class InitialSearchTaskFirstTest {
   public void testNode102_UserIdentified_a() throws Exception {
     String randomBpk = RandomStringUtils.randomNumeric(12);
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
-
-    ArrayList<RegisterResult> ernpResult = new ArrayList<>();
-    ernpResult.add(new RegisterResult(randomBpk, DE_ST+randomIdentifier, randomGivenName, randomFamilyName, randomDate));
-    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(ernpResult);
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.singletonList(
+            new RegisterResult(randomBpk, DE_ST+randomIdentifier, randomGivenName, randomFamilyName, randomDate)));
 
     task.execute(pendingReq, executionContext);
     String bPk = (String)
@@ -231,13 +232,12 @@ public class InitialSearchTaskFirstTest {
   @DirtiesContext
   public void testNode102_UserIdentified_b() throws Exception {
     String randomBpk = RandomStringUtils.randomNumeric(14);
-
-    ArrayList<RegisterResult> zmrResult = new ArrayList<>();
-    zmrResult.add(new RegisterResult(randomBpk, DE_ST+randomIdentifier, randomGivenName, randomFamilyName, randomDate));
-    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResult);
+    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.singletonList(
+            new RegisterResult(randomBpk, DE_ST+randomIdentifier, randomGivenName, randomFamilyName, randomDate)));
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
 
     task.execute(pendingReq, executionContext);
+
     String bPk = (String)
         pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
     Assert.assertEquals("Wrong bpk", bPk, randomBpk);
@@ -255,22 +255,14 @@ public class InitialSearchTaskFirstTest {
     TestRequestImpl pendingReq1 = new TestRequestImpl();
     pendingReq1.getSessionData(AuthProcessDataWrapper.class)
         .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
-
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
-    ArrayList<RegisterResult> zmrResultSpecific = new ArrayList<>();
-
     String newRandomPseudonym = IT_ST + randomIdentifier + RandomStringUtils.randomNumeric(2);
-    zmrResultSpecific.add(new RegisterResult(bpkRegister, newRandomPseudonym, randomGivenName, randomFamilyName,
-            randomDate, null, null, taxNumber, null));
-
-    Mockito.when(zmrClient.searchItSpecific(taxNumber)).thenReturn(zmrResultSpecific);
-
+    Mockito.when(zmrClient.searchItSpecific(taxNumber)).thenReturn(Collections.singletonList(
+            new RegisterResult(bpkRegister, newRandomPseudonym, randomGivenName, randomFamilyName,
+                    randomDate, null, null, taxNumber, null)));
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
-
-    List<CountrySpecificDetailSearchProcessor> handlers = new ArrayList<>();
-    ItSpecificDetailSearchProcessor it = new ItSpecificDetailSearchProcessor(ernpClient, zmrClient);
-    handlers.add(it);
-    task = new InitialSearchTask(handlers, ernpClient, zmrClient);
+    task = new InitialSearchTask(Collections.singletonList(new ItSpecificDetailSearchProcessor(ernpClient, zmrClient)),
+            ernpClient, zmrClient);
 
     task.execute(pendingReq1, executionContext);
 
@@ -292,22 +284,14 @@ public class InitialSearchTaskFirstTest {
     TestRequestImpl pendingReq1 = new TestRequestImpl();
     pendingReq1.getSessionData(AuthProcessDataWrapper.class)
         .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
-
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
-    ArrayList<RegisterResult> zmrResultSpecific = new ArrayList<>();
-
-    zmrResultSpecific.add(new RegisterResult(randomBpk, randomPseudonym, randomGivenName, randomFamilyName, randomDate,
-            randomPlaceOfBirth, randomBirthName,null, null));
-
     Mockito.when(zmrClient.searchDeSpecific(randomGivenName, randomFamilyName, randomDate, randomPlaceOfBirth,
-            randomBirthName)).thenReturn(zmrResultSpecific);
-
+            randomBirthName))
+            .thenReturn(Collections.singletonList(new RegisterResult(randomBpk, randomPseudonym, randomGivenName,
+                    randomFamilyName, randomDate, randomPlaceOfBirth, randomBirthName,null, null)));
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
-
-    List<CountrySpecificDetailSearchProcessor> handlers = new ArrayList<>();
-    DeSpecificDetailSearchProcessor de = new DeSpecificDetailSearchProcessor(ernpClient, zmrClient);
-    handlers.add(de);
-    task = new InitialSearchTask(handlers, ernpClient, zmrClient);
+    task = new InitialSearchTask(Collections.singletonList(new DeSpecificDetailSearchProcessor(ernpClient, zmrClient)),
+            ernpClient, zmrClient);
 
     task.execute(pendingReq1, executionContext);
 
@@ -331,26 +315,21 @@ public class InitialSearchTaskFirstTest {
     TestRequestImpl pendingReq1 = new TestRequestImpl();
     pendingReq1.getSessionData(AuthProcessDataWrapper.class)
         .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
-
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
     ArrayList<RegisterResult> zmrResultSpecific = new ArrayList<>();
-
     zmrResultSpecific.add(new RegisterResult(bpk1, pseudonym1, randomGivenName, randomFamilyName, randomDate,
             randomPlaceOfBirth, randomBirthName,null, null));
     zmrResultSpecific.add(new RegisterResult(bpk2, pseudonym2, randomGivenName, randomFamilyName, randomDate,
             randomPlaceOfBirth, randomBirthName,null, null));
     Mockito.when(zmrClient.searchDeSpecific(randomGivenName, randomFamilyName, randomDate, randomPlaceOfBirth,
             randomBirthName)).thenReturn(zmrResultSpecific);
-
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
-
-    List<CountrySpecificDetailSearchProcessor> handlers = new ArrayList<>();
-    DeSpecificDetailSearchProcessor de = new DeSpecificDetailSearchProcessor(ernpClient, zmrClient);
-    handlers.add(de);
-    task = new InitialSearchTask(handlers, ernpClient, zmrClient);
+    task = new InitialSearchTask(Collections.singletonList(new DeSpecificDetailSearchProcessor(ernpClient, zmrClient)),
+            ernpClient, zmrClient);
 
     TaskExecutionException exception = assertThrows(TaskExecutionException.class,
             () -> task.execute(pendingReq1, executionContext));
+
     Throwable origE = exception.getOriginalException();
     Assert.assertTrue("Wrong exception", (origE.getCause() instanceof ManualFixNecessaryException));
   }
@@ -366,26 +345,20 @@ public class InitialSearchTaskFirstTest {
     TestRequestImpl pendingReq1 = new TestRequestImpl();
     pendingReq1.getSessionData(AuthProcessDataWrapper.class)
         .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
-
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
     ArrayList<RegisterResult> zmrResultSpecific = new ArrayList<>();
-
     zmrResultSpecific.add(new RegisterResult("bpkMax", IT_ST+randomIdentifier+"4", randomGivenName,
             randomFamilyName, randomDate, null, null, fakeTaxNumber, null));
     zmrResultSpecific.add(new RegisterResult("bpkMax1", IT_ST+randomIdentifier+"5", randomGivenName,
             randomFamilyName, randomDate, null, null, fakeTaxNumber, null));
     Mockito.when(zmrClient.searchItSpecific(fakeTaxNumber)).thenReturn(zmrResultSpecific);
-
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
-
-    List<CountrySpecificDetailSearchProcessor> handlers = new ArrayList<>();
-    ItSpecificDetailSearchProcessor it = new ItSpecificDetailSearchProcessor(ernpClient, zmrClient);
-    handlers.add(it);
-    task = new InitialSearchTask(handlers, ernpClient, zmrClient);
-
+    task = new InitialSearchTask(Collections.singletonList(new ItSpecificDetailSearchProcessor(ernpClient, zmrClient)),
+            ernpClient, zmrClient);
 
     TaskExecutionException exception = assertThrows(TaskExecutionException.class,
             () -> task.execute(pendingReq1, executionContext));
+
     Throwable origE = exception.getOriginalException();
     Assert.assertTrue("Wrong exception", (origE.getCause() instanceof ManualFixNecessaryException));
   }
@@ -400,6 +373,7 @@ public class InitialSearchTaskFirstTest {
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
 
     task.execute(pendingReq, executionContext);
+
     String bPk = (String)
         pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
     Assert.assertEquals("Wrong bpk", "TODO-Temporary-Endnode-105", bPk);
-- 
cgit v1.2.3


From 2d804b8233f9f92feb83c700e7dc6a2bd7f70998 Mon Sep 17 00:00:00 2001
From: Christian Kollmann <christian.kollmann@a-sit.at>
Date: Tue, 12 Jan 2021 15:50:57 +0100
Subject: Rename variables in test for better readability

---
 .../v2/test/tasks/InitialSearchTaskFirstTest.java  | 177 +++++++++++----------
 1 file changed, 94 insertions(+), 83 deletions(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
index 99764aad..9f58ba71 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
@@ -28,7 +28,6 @@ import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernp.IErnpClient;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.ManualFixNecessaryException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.DeSpecificDetailSearchProcessor;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.CountrySpecificDetailSearchProcessor;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.ItSpecificDetailSearchProcessor;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.InitialSearchTask;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.IZmrClient;
@@ -68,7 +67,6 @@ import java.net.URI;
 import java.net.URISyntaxException;
 import java.util.ArrayList;
 import java.util.Collections;
-import java.util.List;
 import java.util.Random;
 
 import static org.junit.Assert.assertThrows;
@@ -78,6 +76,9 @@ import static org.junit.Assert.assertThrows;
 @DirtiesContext(classMode = ClassMode.BEFORE_CLASS)
 public class InitialSearchTaskFirstTest {
 
+  private static final String DE_ST = "de/st/";
+  private static final String IT_ST = "it/st/";
+
   private InitialSearchTask task;
   @Mock
   private IZmrClient zmrClient;
@@ -86,14 +87,14 @@ public class InitialSearchTaskFirstTest {
 
   final ExecutionContext executionContext = new ExecutionContextImpl();
   private TestRequestImpl pendingReq;
+  private final String randomBpk = RandomStringUtils.randomNumeric(6);
   private final String randomIdentifier = RandomStringUtils.randomNumeric(10);
+  private final String randomPseudonym = DE_ST + randomIdentifier;
   private final String randomFamilyName = RandomStringUtils.randomAlphabetic(10);
   private final String randomGivenName = RandomStringUtils.randomAlphabetic(10);
   private final String randomPlaceOfBirth = RandomStringUtils.randomAlphabetic(10);
   private final String randomBirthName = RandomStringUtils.randomAlphabetic(10);
-  private final String randomDate = "2011-01-"+ (10 + new Random().nextInt(18));
-  private final String DE_ST = "de/st/";
-  private final String IT_ST = "it/st/";
+  private final String randomDate = "2011-01-" + (10 + new Random().nextInt(18));
 
   /**
    * jUnit class initializer.
@@ -132,17 +133,15 @@ public class InitialSearchTaskFirstTest {
   @Test
   @DirtiesContext
   public void testNode100_UserIdentifiedUpdateNecessary_a() throws Exception {
-    ArrayList<RegisterResult> zmrResult = new ArrayList<>();
-    String randomBpk = RandomStringUtils.randomNumeric(6);
-    String newFirstName = RandomStringUtils.randomAlphabetic(5);
-    String randomPseudonym = DE_ST + randomIdentifier;
+    String newFirstName = RandomStringUtils.randomAlphabetic(10);
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.singletonList(
-            new RegisterResult(randomBpk, randomPseudonym, newFirstName, randomFamilyName, randomDate)));
+        new RegisterResult(randomBpk, randomPseudonym, newFirstName, randomFamilyName, randomDate)));
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
 
     task.execute(pendingReq, executionContext);
     String bPk = (String)
-        pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
+        pendingReq.getSessionData(AuthProcessDataWrapper.class)
+            .getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
 
     Assert.assertEquals("Wrong bpk", bPk, randomBpk);
   }
@@ -154,14 +153,14 @@ public class InitialSearchTaskFirstTest {
   @DirtiesContext
   public void testNode100_UserIdentifiedUpdateNecessary_b() throws TaskExecutionException {
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
-    String randomBpk = RandomStringUtils.randomNumeric(6);
     String newRandomGivenName = RandomStringUtils.randomAlphabetic(10);
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.singletonList(
-            new RegisterResult(randomBpk, DE_ST+randomIdentifier, newRandomGivenName, randomFamilyName, randomDate)));
+        new RegisterResult(randomBpk, randomPseudonym, newRandomGivenName, randomFamilyName, randomDate)));
 
     task.execute(pendingReq, executionContext);
     String bPk = (String)
-        pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
+        pendingReq.getSessionData(AuthProcessDataWrapper.class)
+            .getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
 
     Assert.assertEquals("Wrong bpk", bPk, randomBpk);
   }
@@ -173,14 +172,14 @@ public class InitialSearchTaskFirstTest {
   @DirtiesContext
   public void testNode101_ManualFixNecessary_a() {
     ArrayList<RegisterResult> zmrResult = new ArrayList<>();
-    zmrResult.add(new RegisterResult("bpkMax", DE_ST+randomIdentifier, randomGivenName, randomFamilyName, randomDate));
+    zmrResult.add(new RegisterResult(randomBpk, randomPseudonym, randomGivenName, randomFamilyName, randomDate));
     String newRandomGivenName = randomGivenName + RandomStringUtils.randomAlphabetic(2);
-    zmrResult.add(new RegisterResult("bpkMax", DE_ST+randomIdentifier, newRandomGivenName, randomFamilyName, randomDate));
+    zmrResult.add(new RegisterResult(randomBpk, randomPseudonym, newRandomGivenName, randomFamilyName, randomDate));
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResult);
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
 
     TaskExecutionException exception = assertThrows(TaskExecutionException.class,
-            () -> task.execute(pendingReq, executionContext));
+        () -> task.execute(pendingReq, executionContext));
 
     Throwable origE = exception.getOriginalException();
     Assert.assertTrue("Wrong exception", (origE.getCause() instanceof ManualFixNecessaryException));
@@ -193,16 +192,16 @@ public class InitialSearchTaskFirstTest {
   @Test
   @DirtiesContext
   public void testNode101_ManualFixNecessary_b() {
-    String randombpk = RandomStringUtils.randomNumeric(5);
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
     ArrayList<RegisterResult> ernpResult = new ArrayList<>();
-    ernpResult.add(new RegisterResult(randombpk, DE_ST+randomIdentifier, randomGivenName, randomFamilyName, randomDate));
+    ernpResult.add(new RegisterResult(randomBpk, randomPseudonym, randomGivenName, randomFamilyName, randomDate));
     String newRandomGivenName = randomGivenName + RandomStringUtils.randomAlphabetic(2);
-    ernpResult.add(new RegisterResult(randombpk, DE_ST+randomIdentifier, newRandomGivenName, randomFamilyName, randomDate));
+    ernpResult.add(
+        new RegisterResult(randomBpk, randomPseudonym, newRandomGivenName, randomFamilyName, randomDate));
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(ernpResult);
 
     TaskExecutionException exception = assertThrows(TaskExecutionException.class,
-            () -> task.execute(pendingReq, executionContext));
+        () -> task.execute(pendingReq, executionContext));
 
     Throwable origE = exception.getOriginalException();
     Assert.assertTrue("Wrong exception", (origE.getCause() instanceof ManualFixNecessaryException));
@@ -214,14 +213,14 @@ public class InitialSearchTaskFirstTest {
   @Test
   @DirtiesContext
   public void testNode102_UserIdentified_a() throws Exception {
-    String randomBpk = RandomStringUtils.randomNumeric(12);
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.singletonList(
-            new RegisterResult(randomBpk, DE_ST+randomIdentifier, randomGivenName, randomFamilyName, randomDate)));
+        new RegisterResult(randomBpk, randomPseudonym, randomGivenName, randomFamilyName, randomDate)));
 
     task.execute(pendingReq, executionContext);
     String bPk = (String)
-        pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
+        pendingReq.getSessionData(AuthProcessDataWrapper.class)
+            .getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
     Assert.assertEquals("Wrong bpk", bPk, randomBpk);
   }
 
@@ -231,15 +230,15 @@ public class InitialSearchTaskFirstTest {
   @Test
   @DirtiesContext
   public void testNode102_UserIdentified_b() throws Exception {
-    String randomBpk = RandomStringUtils.randomNumeric(14);
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.singletonList(
-            new RegisterResult(randomBpk, DE_ST+randomIdentifier, randomGivenName, randomFamilyName, randomDate)));
+        new RegisterResult(randomBpk, randomPseudonym, randomGivenName, randomFamilyName, randomDate)));
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
 
     task.execute(pendingReq, executionContext);
 
     String bPk = (String)
-        pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
+        pendingReq.getSessionData(AuthProcessDataWrapper.class)
+            .getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
     Assert.assertEquals("Wrong bpk", bPk, randomBpk);
   }
 
@@ -249,7 +248,6 @@ public class InitialSearchTaskFirstTest {
   @Test
   @DirtiesContext
   public void testNode103_UserIdentified_IT() throws Exception {
-    String bpkRegister = RandomStringUtils.randomNumeric(14);
     String taxNumber = RandomStringUtils.randomNumeric(14);
     final AuthenticationResponse response = buildDummyAuthResponseRandomPersonIT_Tax(taxNumber);
     TestRequestImpl pendingReq1 = new TestRequestImpl();
@@ -258,17 +256,19 @@ public class InitialSearchTaskFirstTest {
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
     String newRandomPseudonym = IT_ST + randomIdentifier + RandomStringUtils.randomNumeric(2);
     Mockito.when(zmrClient.searchItSpecific(taxNumber)).thenReturn(Collections.singletonList(
-            new RegisterResult(bpkRegister, newRandomPseudonym, randomGivenName, randomFamilyName,
-                    randomDate, null, null, taxNumber, null)));
+        new RegisterResult(randomBpk, newRandomPseudonym, randomGivenName, randomFamilyName,
+            randomDate, null, null, taxNumber, null)));
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
-    task = new InitialSearchTask(Collections.singletonList(new ItSpecificDetailSearchProcessor(ernpClient, zmrClient)),
-            ernpClient, zmrClient);
+    task = new InitialSearchTask(
+        Collections.singletonList(new ItSpecificDetailSearchProcessor(ernpClient, zmrClient)),
+        ernpClient, zmrClient);
 
     task.execute(pendingReq1, executionContext);
 
     String bPk = (String)
-        pendingReq1.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
-    Assert.assertEquals("Wrong bpk", bPk, bpkRegister);
+        pendingReq1.getSessionData(AuthProcessDataWrapper.class)
+            .getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
+    Assert.assertEquals("Wrong bpk", bPk, randomBpk);
   }
 
   /**
@@ -277,26 +277,27 @@ public class InitialSearchTaskFirstTest {
   @Test
   @DirtiesContext
   public void testNode103_UserIdentified_DE() throws Exception {
-    String randomPseudonym = DE_ST + RandomStringUtils.randomNumeric(5);
-    String randomBpk = RandomStringUtils.randomNumeric(5);
-    final AuthenticationResponse response = buildDummyAuthResponseDE(randomGivenName, randomFamilyName, randomPseudonym,
-            randomDate, randomPlaceOfBirth, randomBirthName);
+    final AuthenticationResponse response = buildDummyAuthResponseDE(randomGivenName, randomFamilyName,
+        randomPseudonym,
+        randomDate, randomPlaceOfBirth, randomBirthName);
     TestRequestImpl pendingReq1 = new TestRequestImpl();
     pendingReq1.getSessionData(AuthProcessDataWrapper.class)
         .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
     Mockito.when(zmrClient.searchDeSpecific(randomGivenName, randomFamilyName, randomDate, randomPlaceOfBirth,
-            randomBirthName))
-            .thenReturn(Collections.singletonList(new RegisterResult(randomBpk, randomPseudonym, randomGivenName,
-                    randomFamilyName, randomDate, randomPlaceOfBirth, randomBirthName,null, null)));
+        randomBirthName))
+        .thenReturn(Collections.singletonList(new RegisterResult(randomBpk, randomPseudonym, randomGivenName,
+            randomFamilyName, randomDate, randomPlaceOfBirth, randomBirthName, null, null)));
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
-    task = new InitialSearchTask(Collections.singletonList(new DeSpecificDetailSearchProcessor(ernpClient, zmrClient)),
-            ernpClient, zmrClient);
+    task = new InitialSearchTask(
+        Collections.singletonList(new DeSpecificDetailSearchProcessor(ernpClient, zmrClient)),
+        ernpClient, zmrClient);
 
     task.execute(pendingReq1, executionContext);
 
     String resultBpk = (String)
-        pendingReq1.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
+        pendingReq1.getSessionData(AuthProcessDataWrapper.class)
+            .getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
     Assert.assertEquals("Wrong bpk", resultBpk, randomBpk);
   }
 
@@ -306,29 +307,30 @@ public class InitialSearchTaskFirstTest {
   @Test
   @DirtiesContext
   public void testNode104_ManualFixNecessary_DE() throws Exception {
-    String pseudonym1 = DE_ST + RandomStringUtils.randomNumeric(5);
-    String pseudonym2 = pseudonym1 + RandomStringUtils.randomNumeric(2);
-    String bpk1 = RandomStringUtils.randomNumeric(5);
-    String bpk2 = bpk1 + RandomStringUtils.randomNumeric(2);
-    final AuthenticationResponse response = buildDummyAuthResponseDE(randomGivenName, randomFamilyName, pseudonym1,
-            randomDate, randomPlaceOfBirth, randomBirthName);
+    String newRandomPseudonym = randomPseudonym + RandomStringUtils.randomNumeric(2);
+    String newRandomBpk = randomBpk + RandomStringUtils.randomNumeric(6);
+    final AuthenticationResponse response = buildDummyAuthResponseDE(randomGivenName, randomFamilyName,
+        randomPseudonym,
+        randomDate, randomPlaceOfBirth, randomBirthName);
     TestRequestImpl pendingReq1 = new TestRequestImpl();
     pendingReq1.getSessionData(AuthProcessDataWrapper.class)
         .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
     ArrayList<RegisterResult> zmrResultSpecific = new ArrayList<>();
-    zmrResultSpecific.add(new RegisterResult(bpk1, pseudonym1, randomGivenName, randomFamilyName, randomDate,
-            randomPlaceOfBirth, randomBirthName,null, null));
-    zmrResultSpecific.add(new RegisterResult(bpk2, pseudonym2, randomGivenName, randomFamilyName, randomDate,
-            randomPlaceOfBirth, randomBirthName,null, null));
+    zmrResultSpecific.add(
+        new RegisterResult(randomBpk, randomPseudonym, randomGivenName, randomFamilyName, randomDate,
+            randomPlaceOfBirth, randomBirthName, null, null));
+    zmrResultSpecific.add(new RegisterResult(newRandomBpk, newRandomPseudonym, randomGivenName, randomFamilyName, randomDate,
+        randomPlaceOfBirth, randomBirthName, null, null));
     Mockito.when(zmrClient.searchDeSpecific(randomGivenName, randomFamilyName, randomDate, randomPlaceOfBirth,
-            randomBirthName)).thenReturn(zmrResultSpecific);
+        randomBirthName)).thenReturn(zmrResultSpecific);
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
-    task = new InitialSearchTask(Collections.singletonList(new DeSpecificDetailSearchProcessor(ernpClient, zmrClient)),
-            ernpClient, zmrClient);
+    task = new InitialSearchTask(
+        Collections.singletonList(new DeSpecificDetailSearchProcessor(ernpClient, zmrClient)),
+        ernpClient, zmrClient);
 
     TaskExecutionException exception = assertThrows(TaskExecutionException.class,
-            () -> task.execute(pendingReq1, executionContext));
+        () -> task.execute(pendingReq1, executionContext));
 
     Throwable origE = exception.getOriginalException();
     Assert.assertTrue("Wrong exception", (origE.getCause() instanceof ManualFixNecessaryException));
@@ -340,24 +342,28 @@ public class InitialSearchTaskFirstTest {
   @Test
   @DirtiesContext
   public void testNode104_ManualFixNecessary_IT() throws Exception {
-    String fakeTaxNumber = RandomStringUtils.randomNumeric(14);
-    final AuthenticationResponse response = buildDummyAuthResponseRandomPersonIT_Tax(fakeTaxNumber);
+    String randomTaxNumber = RandomStringUtils.randomNumeric(14);
+    final AuthenticationResponse response = buildDummyAuthResponseRandomPersonIT_Tax(randomTaxNumber);
     TestRequestImpl pendingReq1 = new TestRequestImpl();
     pendingReq1.getSessionData(AuthProcessDataWrapper.class)
         .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
     ArrayList<RegisterResult> zmrResultSpecific = new ArrayList<>();
-    zmrResultSpecific.add(new RegisterResult("bpkMax", IT_ST+randomIdentifier+"4", randomGivenName,
-            randomFamilyName, randomDate, null, null, fakeTaxNumber, null));
-    zmrResultSpecific.add(new RegisterResult("bpkMax1", IT_ST+randomIdentifier+"5", randomGivenName,
-            randomFamilyName, randomDate, null, null, fakeTaxNumber, null));
-    Mockito.when(zmrClient.searchItSpecific(fakeTaxNumber)).thenReturn(zmrResultSpecific);
+    String randomPseudonym = IT_ST + randomIdentifier + "4";
+    zmrResultSpecific.add(new RegisterResult(randomBpk, randomPseudonym, randomGivenName,
+        randomFamilyName, randomDate, null, null, randomTaxNumber, null));
+    String newRandomPseudonym = IT_ST + randomIdentifier + "5";
+    String newRandomBpk = RandomStringUtils.randomNumeric(6);
+    zmrResultSpecific.add(new RegisterResult(newRandomBpk, newRandomPseudonym, randomGivenName,
+        randomFamilyName, randomDate, null, null, randomTaxNumber, null));
+    Mockito.when(zmrClient.searchItSpecific(randomTaxNumber)).thenReturn(zmrResultSpecific);
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
-    task = new InitialSearchTask(Collections.singletonList(new ItSpecificDetailSearchProcessor(ernpClient, zmrClient)),
-            ernpClient, zmrClient);
+    task = new InitialSearchTask(
+        Collections.singletonList(new ItSpecificDetailSearchProcessor(ernpClient, zmrClient)),
+        ernpClient, zmrClient);
 
     TaskExecutionException exception = assertThrows(TaskExecutionException.class,
-            () -> task.execute(pendingReq1, executionContext));
+        () -> task.execute(pendingReq1, executionContext));
 
     Throwable origE = exception.getOriginalException();
     Assert.assertTrue("Wrong exception", (origE.getCause() instanceof ManualFixNecessaryException));
@@ -375,19 +381,21 @@ public class InitialSearchTaskFirstTest {
     task.execute(pendingReq, executionContext);
 
     String bPk = (String)
-        pendingReq.getSessionData(AuthProcessDataWrapper.class).getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
+        pendingReq.getSessionData(AuthProcessDataWrapper.class)
+            .getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
     Assert.assertEquals("Wrong bpk", "TODO-Temporary-Endnode-105", bPk);
   }
 
 
   @NotNull
   private AuthenticationResponse buildDummyAuthResponseRandomPerson() throws URISyntaxException {
-    return buildDummyAuthResponse(randomGivenName, randomFamilyName, DE_ST+randomIdentifier, randomDate);
+    return buildDummyAuthResponse(randomGivenName, randomFamilyName, DE_ST + randomIdentifier, randomDate);
   }
 
-  private AuthenticationResponse buildDummyAuthResponseRandomPersonIT_Tax(String taxNumber) throws URISyntaxException {
-    return buildDummyAuthResponse(randomGivenName, randomFamilyName, IT_ST+randomIdentifier, randomDate,
-            taxNumber, null, null);
+  private AuthenticationResponse buildDummyAuthResponseRandomPersonIT_Tax(String taxNumber)
+      throws URISyntaxException {
+    return buildDummyAuthResponse(randomGivenName, randomFamilyName, IT_ST + randomIdentifier, randomDate,
+        taxNumber, null, null);
   }
 
   @NotNull
@@ -408,18 +416,19 @@ public class InitialSearchTaskFirstTest {
                                                         String dateOfBirth, String taxNumber, String placeOfBirth,
                                                         String birthName) throws URISyntaxException {
     ImmutableAttributeMap.Builder builder = ImmutableAttributeMap.builder()
-        .put(generateStringAttribute(Constants.eIDAS_ATTR_PERSONALIDENTIFIER,"ff","af"), identifier)
-        .put(generateStringAttribute(Constants.eIDAS_ATTR_CURRENTFAMILYNAME,"fff","aff"), familyName)
-        .put(generateStringAttribute(Constants.eIDAS_ATTR_CURRENTGIVENNAME,"ffff","afff"), givenName)
-        .put(generateDateTimeAttribute(Constants.eIDAS_ATTR_DATEOFBIRTH,"fffff","affff"), dateOfBirth);
+        .put(generateStringAttribute(Constants.eIDAS_ATTR_PERSONALIDENTIFIER, "ff", "af"), identifier)
+        .put(generateStringAttribute(Constants.eIDAS_ATTR_CURRENTFAMILYNAME, "fff", "aff"), familyName)
+        .put(generateStringAttribute(Constants.eIDAS_ATTR_CURRENTGIVENNAME, "ffff", "afff"), givenName)
+        .put(generateDateTimeAttribute(Constants.eIDAS_ATTR_DATEOFBIRTH, "fffff", "affff"), dateOfBirth);
     if (taxNumber != null) {
-      builder.put(generateStringAttribute(Constants.eIDAS_ATTR_TAXREFERENCE,"ffffff","afffff"), taxNumber);
+      builder.put(generateStringAttribute(Constants.eIDAS_ATTR_TAXREFERENCE, "ffffff", "afffff"), taxNumber);
     }
     if (birthName != null) {
-      builder.put(generateStringAttribute(Constants.eIDAS_ATTR_BIRTHNAME,"fffffff","affffff"), birthName);
+      builder.put(generateStringAttribute(Constants.eIDAS_ATTR_BIRTHNAME, "fffffff", "affffff"), birthName);
     }
     if (placeOfBirth != null) {
-      builder.put(generateStringAttribute(Constants.eIDAS_ATTR_PLACEOFBIRTH,"ffffffff","afffffff"), placeOfBirth);
+      builder.put(generateStringAttribute(Constants.eIDAS_ATTR_PLACEOFBIRTH, "ffffffff", "afffffff"),
+          placeOfBirth);
     }
     final ImmutableAttributeMap attributeMap = builder.build();
 
@@ -428,18 +437,20 @@ public class InitialSearchTaskFirstTest {
         "afaf").attributes(attributeMap).build();
   }
 
-  private AttributeDefinition<Object> generateStringAttribute(String friendlyName, String fragment, String prefix) throws URISyntaxException {
+  private AttributeDefinition<Object> generateStringAttribute(String friendlyName, String fragment, String prefix)
+      throws URISyntaxException {
     return generateAttribute(friendlyName, fragment, prefix, "eu.eidas.auth.commons.attribute.impl" +
         ".LiteralStringAttributeValueMarshaller");
   }
 
-  private AttributeDefinition<Object> generateDateTimeAttribute(String friendlyName, String fragment, String prefix) throws URISyntaxException {
+  private AttributeDefinition<Object> generateDateTimeAttribute(String friendlyName, String fragment, String prefix)
+      throws URISyntaxException {
     return generateAttribute(friendlyName, fragment, prefix, "eu.eidas.auth.commons.attribute.impl" +
         ".DateTimeAttributeValueMarshaller");
   }
 
   private AttributeDefinition<Object> generateAttribute(String friendlyName, String fragment, String prefix,
-                                                String marshaller) throws URISyntaxException {
+                                                        String marshaller) throws URISyntaxException {
     return AttributeDefinition.builder()
         .friendlyName(friendlyName).nameUri(new URI("ad", "sd", fragment))
         .personType(PersonType.LEGAL_PERSON).xmlType(new QName("http://saf", "as", prefix))
-- 
cgit v1.2.3


From 6fad183dc6332b52cd33fbabeabbae3999b1ac2a Mon Sep 17 00:00:00 2001
From: Christian Kollmann <christian.kollmann@a-sit.at>
Date: Tue, 12 Jan 2021 15:51:07 +0100
Subject: Add null check for more safety

---
 .../eidas/specific/modules/auth/eidas/v2/utils/EidasResponseUtils.java  | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/EidasResponseUtils.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/EidasResponseUtils.java
index d71201ce..bb0545f7 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/EidasResponseUtils.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/EidasResponseUtils.java
@@ -326,7 +326,7 @@ public class EidasResponseUtils {
     }
     final Triple<String, String, String> eIdentifier =
         EidasResponseUtils.parseEidasPersonalIdentifier((String) personalIdObj);
-    if (eIdentifier.getThird() == null) {
+    if (eIdentifier == null || eIdentifier.getThird() == null) {
       throw new EidasAttributeException("Error processing eIdentifier");
     }
     return eIdentifier.getThird();
-- 
cgit v1.2.3


From b9f95d7008eca05ef26229725e7fed709fac4a10 Mon Sep 17 00:00:00 2001
From: Thomas Lenz <thomas.lenz@egiz.gv.at>
Date: Fri, 15 Jan 2021 15:50:31 +0100
Subject: fix merge problem in EidasResponseUtils.java refactor broken jUnit
 test InitialSearchTaskFirstTest.java to new configuration-loader

---
 .../auth/eidas/v2/utils/EidasResponseUtils.java    | 71 +++++++++++----------
 .../v2/test/tasks/InitialSearchTaskFirstTest.java  | 72 ++++++++++------------
 2 files changed, 70 insertions(+), 73 deletions(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/EidasResponseUtils.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/EidasResponseUtils.java
index bb0545f7..1ca4cdb6 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/EidasResponseUtils.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/EidasResponseUtils.java
@@ -103,53 +103,58 @@ public class EidasResponseUtils {
    */
   // TODO: check possible problem with nonLatinCharacters
   public static List<String> translateStringListAttribute(AttributeDefinition<?> attributeDefinition,
-      ImmutableSet<? extends AttributeValue<?>> attributeValues) {
+      @Nullable ImmutableSet<? extends AttributeValue<?>> attributeValues) {
     final List<String> stringListAttribute = new ArrayList<>();
-
-    final AttributeValueMarshaller<?> attributeValueMarshaller = attributeDefinition
-        .getAttributeValueMarshaller();
-    for (final AttributeValue<?> attributeValue : attributeValues) {
-      String valueString = null;
-      try {
-        valueString = attributeValueMarshaller.marshal((AttributeValue) attributeValue);
-
-        log.trace("Find attr: {} with value: {} nonLatinFlag: {} needTransliteration: {}",
-            attributeDefinition.getFriendlyName(), attributeValue.toString(),
-            attributeValue.isNonLatinScriptAlternateVersion(),
-            AttributeValueTransliterator.needsTransliteration(valueString));
-
-        // if (attributeValue.isNonLatinScriptAlternateVersion()) {
-        if (!AttributeValueTransliterator.needsTransliteration(valueString)) {
-          stringListAttribute.add(0, valueString);
-
-        } else {
-          log.trace("Find 'needsTransliteration' flag. Setting this value at last list element ... ");
-          stringListAttribute.add(valueString);
-
+    if (attributeValues == null) {
+      log.info("Can not extract infos from 'null' attribute value");
+      
+    } else {    
+      final AttributeValueMarshaller<?> attributeValueMarshaller = 
+          attributeDefinition.getAttributeValueMarshaller();
+      for (final AttributeValue<?> attributeValue : attributeValues) {
+        String valueString = null;
+        try {
+          valueString = attributeValueMarshaller.marshal((AttributeValue) attributeValue);
+  
           log.trace("Find attr: {} with value: {} nonLatinFlag: {} needTransliteration: {}",
               attributeDefinition.getFriendlyName(), attributeValue.toString(),
               attributeValue.isNonLatinScriptAlternateVersion(),
               AttributeValueTransliterator.needsTransliteration(valueString));
-
+  
           // if (attributeValue.isNonLatinScriptAlternateVersion()) {
           if (!AttributeValueTransliterator.needsTransliteration(valueString)) {
             stringListAttribute.add(0, valueString);
-
+  
           } else {
             log.trace("Find 'needsTransliteration' flag. Setting this value at last list element ... ");
             stringListAttribute.add(valueString);
-
+  
+            log.trace("Find attr: {} with value: {} nonLatinFlag: {} needTransliteration: {}",
+                attributeDefinition.getFriendlyName(), attributeValue.toString(),
+                attributeValue.isNonLatinScriptAlternateVersion(),
+                AttributeValueTransliterator.needsTransliteration(valueString));
+  
+            // if (attributeValue.isNonLatinScriptAlternateVersion()) {
+            if (!AttributeValueTransliterator.needsTransliteration(valueString)) {
+              stringListAttribute.add(0, valueString);
+  
+            } else {
+              log.trace("Find 'needsTransliteration' flag. Setting this value at last list element ... ");
+              stringListAttribute.add(valueString);
+  
+            }
           }
+        } catch (final AttributeValueMarshallingException e) {
+          throw new IllegalStateException(e);
+  
         }
-      } catch (final AttributeValueMarshallingException e) {
-        throw new IllegalStateException(e);
-
-      }
+        
+      }  
+      log.trace("Extract values: {} for attr: {}",
+          StringUtils.join(stringListAttribute, ","), attributeDefinition.getFriendlyName());
+      
     }
-
-    log.trace("Extract values: {} for attr: {}",
-        StringUtils.join(stringListAttribute, ","), attributeDefinition.getFriendlyName());
-
+    
     return stringListAttribute;
 
   }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
index 9f58ba71..f1bc98d6 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
@@ -23,6 +23,34 @@
 
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.test.tasks;
 
+import static org.junit.Assert.assertThrows;
+
+import java.net.URI;
+import java.net.URISyntaxException;
+import java.util.ArrayList;
+import java.util.Collections;
+import java.util.Random;
+
+import javax.xml.namespace.QName;
+
+import org.apache.commons.lang3.RandomStringUtils;
+import org.jetbrains.annotations.NotNull;
+import org.junit.Assert;
+import org.junit.Before;
+import org.junit.Test;
+import org.junit.runner.RunWith;
+import org.mockito.Mock;
+import org.mockito.Mockito;
+import org.mockito.MockitoAnnotations;
+import org.springframework.mock.web.MockHttpServletRequest;
+import org.springframework.mock.web.MockHttpServletResponse;
+import org.springframework.test.annotation.DirtiesContext;
+import org.springframework.test.annotation.DirtiesContext.ClassMode;
+import org.springframework.test.context.ContextConfiguration;
+import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
+import org.springframework.web.context.request.RequestContextHolder;
+import org.springframework.web.context.request.ServletRequestAttributes;
+
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernp.IErnpClient;
@@ -42,37 +70,12 @@ import eu.eidas.auth.commons.attribute.ImmutableAttributeMap;
 import eu.eidas.auth.commons.attribute.PersonType;
 import eu.eidas.auth.commons.protocol.impl.AuthenticationResponse;
 import lombok.val;
-import org.apache.commons.lang3.RandomStringUtils;
-import org.jetbrains.annotations.NotNull;
-import org.junit.Assert;
-import org.junit.Before;
-import org.junit.BeforeClass;
-import org.junit.Test;
-import org.junit.runner.RunWith;
-import org.mockito.Mock;
-import org.mockito.Mockito;
-import org.mockito.MockitoAnnotations;
-import org.springframework.mock.web.MockHttpServletRequest;
-import org.springframework.mock.web.MockHttpServletResponse;
-import org.springframework.test.annotation.DirtiesContext;
-import org.springframework.test.annotation.DirtiesContext.ClassMode;
-import org.springframework.test.context.ContextConfiguration;
-import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
-import org.springframework.web.context.request.RequestContextHolder;
-import org.springframework.web.context.request.ServletRequestAttributes;
-
-import javax.xml.namespace.QName;
-import java.io.IOException;
-import java.net.URI;
-import java.net.URISyntaxException;
-import java.util.ArrayList;
-import java.util.Collections;
-import java.util.Random;
-
-import static org.junit.Assert.assertThrows;
 
 @RunWith(SpringJUnit4ClassRunner.class)
-@ContextConfiguration("/SpringTest-context_tasks_test.xml")
+@ContextConfiguration(locations = {
+    "/SpringTest-context_tasks_test.xml",
+    "/SpringTest-context_basic_mapConfig.xml"
+})
 @DirtiesContext(classMode = ClassMode.BEFORE_CLASS)
 public class InitialSearchTaskFirstTest {
 
@@ -96,17 +99,6 @@ public class InitialSearchTaskFirstTest {
   private final String randomBirthName = RandomStringUtils.randomAlphabetic(10);
   private final String randomDate = "2011-01-" + (10 + new Random().nextInt(18));
 
-  /**
-   * jUnit class initializer.
-   *
-   * @throws IOException In case of an error
-   */
-  @BeforeClass
-  public static void classInitializer() throws IOException {
-    final String current = new java.io.File(".").toURI().toString();
-    System.setProperty("eidas.ms.configuration", current
-        + "src/test/resources/config/junit_config_1.properties");
-  }
 
   /**
    * jUnit test set-up.
-- 
cgit v1.2.3


From 891f01d3f79307a5a5bd9c352af16814fcb2b764 Mon Sep 17 00:00:00 2001
From: Alexander Marsalek <amarsalek@iaik.tugraz.at>
Date: Fri, 15 Jan 2021 14:30:26 +0100
Subject: added task/gui for step 10 (addional eidas eid) and 14 (mobile phone
 sig)

---
 .../specific/modules/auth/eidas/v2/Constants.java  |  1 +
 .../auth/eidas/v2/ernp/DummyErnpClient.java        |  6 ++
 .../modules/auth/eidas/v2/ernp/IErnpClient.java    |  2 +
 .../eidas/v2/tasks/CreateNewErnpEntryTask.java     | 25 ++++++-
 .../GenerateGuiQueryAustrianResidenceTask.java     | 77 ++++++++++++++++++++++
 .../GenerateMobilePhoneSignatureRequestTask.java   |  3 +
 .../auth/eidas/v2/tasks/InitialSearchTask.java     |  9 +--
 .../ReceiveGuiAustrianResidenceResponseTask.java   | 77 ++++++++++++++++++++++
 .../eidas/v2/tasks/ReceiveGuiResponseTask.java     | 12 ++--
 .../ReceiveMobilePhoneSignatureResponseTask.java   |  1 +
 .../resources/eIDAS.Authentication.process.xml     | 16 +++++
 .../src/main/resources/eidas_v2_auth.beans.xml     |  7 ++
 12 files changed, 225 insertions(+), 11 deletions(-)
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateGuiQueryAustrianResidenceTask.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveGuiAustrianResidenceResponseTask.java

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java
index 54f7f8fa..15057600 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java
@@ -33,6 +33,7 @@ public class Constants {
   public static final String DATA_REQUESTED_LOA_COMPERISON = "req_requestedLoAComperision";
   public static final String DATA_FULL_EIDAS_RESPONSE = "resp_fulleIDASResponse";
   public static final String DATA_RESULT_MATCHING_BPK = "matching-result-bpk";
+  public static final String DATA_SIMPLE_EIDAS = "simple_eidas_data";
 
   // templates for post-binding forwarding
   public static final String TEMPLATE_POST_FORWARD_NAME = "eidas_node_forward.html";
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernp/DummyErnpClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernp/DummyErnpClient.java
index e514c808..22482638 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernp/DummyErnpClient.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernp/DummyErnpClient.java
@@ -62,5 +62,11 @@ public class DummyErnpClient implements IErnpClient {
     //TODO
   }
 
+  @Override
+  public boolean createNewEntry(SimpleEidasData simpleEidasData) {
+    //TODO
+    return false;
+  }
+
 
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernp/IErnpClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernp/IErnpClient.java
index b9641c5c..cb499ca5 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernp/IErnpClient.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernp/IErnpClient.java
@@ -40,4 +40,6 @@ public interface IErnpClient {
   List<RegisterResult> searchItSpecific(String taxNumber);
 
   void update(RegisterResult registerResult, SimpleEidasData eidData);
+
+  boolean createNewEntry(SimpleEidasData simpleEidasData);
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateNewErnpEntryTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateNewErnpEntryTask.java
index 6f7304c9..09af0e24 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateNewErnpEntryTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateNewErnpEntryTask.java
@@ -23,8 +23,12 @@
 
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks;
 
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernp.IErnpClient;
 import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
 import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
+import at.gv.egiz.eaaf.core.impl.idp.auth.data.AuthProcessDataWrapper;
 import at.gv.egiz.eaaf.core.impl.idp.auth.modules.AbstractAuthServletTask;
 import lombok.extern.slf4j.Slf4j;
 import org.springframework.stereotype.Component;
@@ -41,15 +45,34 @@ import javax.servlet.http.HttpServletResponse;
 @Component("CreateNewErnbEntryTask")
 public class CreateNewErnpEntryTask extends AbstractAuthServletTask {
 
+  private final IErnpClient ernpClient;
+
+  /**
+   * Constructor.
+   * @param ernpClient ErnP client
+   */
+  public CreateNewErnpEntryTask(IErnpClient ernpClient) {
+    this.ernpClient = ernpClient;
+  }
+
   @Override
   public void execute(ExecutionContext executionContext, HttpServletRequest request, HttpServletResponse response)
       throws TaskExecutionException {
     try {
-      //TODO
+      final AuthProcessDataWrapper authProcessData = pendingReq.getSessionData(AuthProcessDataWrapper.class);
+      SimpleEidasData simpleEidasData = authProcessData.getGenericDataFromSession(Constants.DATA_SIMPLE_EIDAS,
+          SimpleEidasData.class);
+      step9CreateNewErnpEntry(simpleEidasData);
     } catch (final Exception e) {
       log.error("Initial search FAILED.", e);
       throw new TaskExecutionException(pendingReq, "Initial search FAILED.", e);
     }
   }
 
+  private void step9CreateNewErnpEntry(SimpleEidasData simpleEidasData) {
+
+    //TODO can i get bpk from response?
+    ernpClient.createNewEntry(simpleEidasData);
+  }
+
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateGuiQueryAustrianResidenceTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateGuiQueryAustrianResidenceTask.java
new file mode 100644
index 00000000..a80b8550
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateGuiQueryAustrianResidenceTask.java
@@ -0,0 +1,77 @@
+/*
+ * Copyright 2021 A-SIT Plus GmbH
+ * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
+ * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
+ *
+ * Licensed under the EUPL, Version 1.2 or - as soon they will be approved by
+ * the European Commission - subsequent versions of the EUPL (the "License");
+ * You may not use this work except in compliance with the License.
+ * You may obtain a copy of the License at:
+ * https://joinup.ec.europa.eu/news/understanding-eupl-v12
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" basis,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ *
+ * This product combines work with different licenses. See the "NOTICE" text
+ * file for details on the various modules and licenses.
+ * The "NOTICE" text file is part of the distribution. Any derivative works
+ * that you distribute must include a readable copy of the "NOTICE" text file.
+ */
+
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks;
+
+import at.asitplus.eidas.specific.connector.MsEidasNodeConstants;
+import at.asitplus.eidas.specific.connector.gui.StaticGuiBuilderConfiguration;
+import at.gv.egiz.eaaf.core.api.gui.IGuiBuilderConfiguration;
+import at.gv.egiz.eaaf.core.api.gui.ISpringMvcGuiFormBuilder;
+import at.gv.egiz.eaaf.core.api.idp.IConfiguration;
+import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
+import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
+import at.gv.egiz.eaaf.core.impl.idp.auth.modules.AbstractAuthServletTask;
+import lombok.extern.slf4j.Slf4j;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.stereotype.Component;
+
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+
+/**
+ * Task that generates a GUI that queries whether the user has an addional eidas eID or an Austrian mobile phone
+ * signature.
+ *
+ * @author amarsalek
+ */
+@Slf4j
+@Component("GenerateGuiQueryAustrianResidenceTask")
+public class GenerateGuiQueryAustrianResidenceTask extends AbstractAuthServletTask {
+
+  @Autowired
+  ISpringMvcGuiFormBuilder guiBuilder;
+  @Autowired
+  IConfiguration basicConfig;
+
+  @Override
+  public void execute(ExecutionContext executionContext, HttpServletRequest request, HttpServletResponse response)
+      throws TaskExecutionException {
+    try {
+      final IGuiBuilderConfiguration config = new StaticGuiBuilderConfiguration(
+          basicConfig,
+          pendingReq,
+          basicConfig.getBasicConfiguration(//TODO
+              MsEidasNodeConstants.PROP_CONFIG_WEBCONTENT_TEMPLATES_OTHER_LOGIN_METHOD_SELECTION,
+              MsEidasNodeConstants.TEMPLATE_HTML_OTHERLOGINMETHODS),
+          MsEidasNodeConstants.ENDPOINT_OTHERLOGINMETHODSELECTION,
+          resourceLoader);
+
+      guiBuilder.build(request, response, config, "Other login methods selection form");
+
+    } catch (final Exception e) {
+      log.error("Initial search FAILED.", e);
+      throw new TaskExecutionException(pendingReq, "Gui creation FAILED.", e);
+    }
+  }
+
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateMobilePhoneSignatureRequestTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateMobilePhoneSignatureRequestTask.java
index 7c154705..0f2fc8a3 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateMobilePhoneSignatureRequestTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateMobilePhoneSignatureRequestTask.java
@@ -46,6 +46,9 @@ public class GenerateMobilePhoneSignatureRequestTask extends AbstractAuthServlet
   public void execute(ExecutionContext executionContext, HttpServletRequest request, HttpServletResponse response)
       throws TaskExecutionException {
     try {
+      log.trace("Starting GenerateMobilePhoneSignatureRequestTask");
+      //step 15a
+
       //TODO
     } catch (final Exception e) {
       log.error("Initial search FAILED.", e);
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
index ae89a4a0..34e258ca 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
@@ -69,6 +69,7 @@ public class InitialSearchTask extends AbstractAuthServletTask {
   private final IErnpClient ernpClient;
   private final IZmrClient zmrClient;
   private ExecutionContext executionContext;
+
   /**
    * Constructor.
    * @param handlers List of countrySpecificSearchProcessors
@@ -97,6 +98,7 @@ public class InitialSearchTask extends AbstractAuthServletTask {
 
       String bpK = step2RegisterSearchWithPersonidentifier(eidData);
       authProcessData.setGenericDataToSession(Constants.DATA_RESULT_MATCHING_BPK, bpK);
+      authProcessData.setGenericDataToSession(Constants.DATA_SIMPLE_EIDAS, eidasResponse);
     } catch (final Exception e) {
       log.error("Initial search FAILED.", e);
       throw new TaskExecutionException(pendingReq, "Initial search FAILED.", e);
@@ -154,7 +156,7 @@ public class InitialSearchTask extends AbstractAuthServletTask {
       }
     }
     if (foundHandler == null) {
-      return step8RegisterSearchWithMds(result, eidData);
+      return step8RegisterSearchWithMds(eidData);
     } else {
       return step6CountrySpecificSearch(foundHandler, result, eidData);
     }
@@ -169,7 +171,7 @@ public class InitialSearchTask extends AbstractAuthServletTask {
 
     switch (countrySpecificDetailSearchResult.getResultCount()) {
       case 0:
-        return step8RegisterSearchWithMds(initialSearchResult, eidData);
+        return step8RegisterSearchWithMds(eidData);
       case 1:
         return step7aKittProcess(initialSearchResult, countrySpecificDetailSearchResult, eidData);
       default:
@@ -202,8 +204,7 @@ public class InitialSearchTask extends AbstractAuthServletTask {
     }
   }
 
-  private String step8RegisterSearchWithMds(MergedRegisterSearchResult initialSearchResult,
-                                            SimpleEidasData eidData) {
+  private String step8RegisterSearchWithMds(SimpleEidasData eidData) {
     log.trace("Starting step8RegisterSearchWithMds");
     List<RegisterResult> resultsZmr =
         zmrClient.searchWithMds(eidData.getGivenName(), eidData.getFamilyName(), eidData.getDateOfBirth());
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveGuiAustrianResidenceResponseTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveGuiAustrianResidenceResponseTask.java
new file mode 100644
index 00000000..3bbb59d1
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveGuiAustrianResidenceResponseTask.java
@@ -0,0 +1,77 @@
+/*
+ * Copyright 2021 A-SIT Plus GmbH
+ * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
+ * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
+ *
+ * Licensed under the EUPL, Version 1.2 or - as soon they will be approved by
+ * the European Commission - subsequent versions of the EUPL (the "License");
+ * You may not use this work except in compliance with the License.
+ * You may obtain a copy of the License at:
+ * https://joinup.ec.europa.eu/news/understanding-eupl-v12
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" basis,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ *
+ * This product combines work with different licenses. See the "NOTICE" text
+ * file for details on the various modules and licenses.
+ * The "NOTICE" text file is part of the distribution. Any derivative works
+ * that you distribute must include a readable copy of the "NOTICE" text file.
+ */
+
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks;
+
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SelectedLoginMethod;
+import at.gv.egiz.eaaf.core.api.data.EaafConstants;
+import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
+import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
+import at.gv.egiz.eaaf.core.impl.idp.auth.modules.AbstractAuthServletTask;
+import lombok.extern.slf4j.Slf4j;
+import org.apache.commons.lang.StringEscapeUtils;
+import org.apache.commons.lang3.StringUtils;
+import org.springframework.stereotype.Component;
+
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+import java.util.Enumeration;
+
+/**
+ * Task receives the response of GenerateGuiQueryAustrianResidenceTask and handles it.
+ *
+ * @author amarsalek
+ */
+@Slf4j
+@Component("ReceiveGuiAustrianResidenceResponseTask")
+public class ReceiveGuiAustrianResidenceResponseTask extends AbstractAuthServletTask {
+
+  final String loginMethod = "loginSelection";
+
+  //TODO
+  @Override
+  public void execute(ExecutionContext executionContext, HttpServletRequest request, HttpServletResponse response)
+      throws TaskExecutionException {
+    try {
+      log.trace("Starting ReceiveGuiAustrianResidenceResponseTask");
+      // set parameter execution context
+      final Enumeration<String> reqParamNames = request.getParameterNames();
+      while (reqParamNames.hasMoreElements()) {
+        final String paramName = reqParamNames.nextElement();
+        if (StringUtils.isNotEmpty(paramName)
+            && !EaafConstants.PROCESS_ENGINE_PENDINGREQUESTID.equalsIgnoreCase(paramName)
+            && loginMethod.equalsIgnoreCase(paramName)) {
+
+          String value = StringEscapeUtils.escapeHtml(request.getParameter(paramName));
+          SelectedLoginMethod selection = SelectedLoginMethod.valueOf(value);
+          executionContext.put(loginMethod, selection);
+
+        }
+      }
+    } catch (final Exception e) {
+      log.error("Parsing selected login method FAILED.", e);
+      throw new TaskExecutionException(pendingReq, "Parsing selected login method FAILED.", e);
+    }
+  }
+
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveGuiResponseTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveGuiResponseTask.java
index fc51ce2d..fa787792 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveGuiResponseTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveGuiResponseTask.java
@@ -57,12 +57,12 @@ public class ReceiveGuiResponseTask extends AbstractAuthServletTask {
       while (reqParamNames.hasMoreElements()) {
         final String paramName = reqParamNames.nextElement();
         if (StringUtils.isNotEmpty(paramName)
-            && !EaafConstants.PROCESS_ENGINE_PENDINGREQUESTID.equalsIgnoreCase(paramName)) {
-          if (loginMethod.equalsIgnoreCase(paramName)) {
-            String value = StringEscapeUtils.escapeHtml(request.getParameter(paramName));
-            SelectedLoginMethod selection = SelectedLoginMethod.valueOf(value);
-            executionContext.put(loginMethod, selection);
-          }
+            && !EaafConstants.PROCESS_ENGINE_PENDINGREQUESTID.equalsIgnoreCase(paramName)
+            && loginMethod.equalsIgnoreCase(paramName)) {
+          String value = StringEscapeUtils.escapeHtml(request.getParameter(paramName));
+          SelectedLoginMethod selection = SelectedLoginMethod.valueOf(value);
+          executionContext.put(loginMethod, selection);
+
         }
       }
     } catch (final Exception e) {
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseTask.java
index 95eeca4c..4329fc2e 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseTask.java
@@ -45,6 +45,7 @@ public class ReceiveMobilePhoneSignatureResponseTask extends AbstractAuthServlet
   public void execute(ExecutionContext executionContext, HttpServletRequest request, HttpServletResponse response)
       throws TaskExecutionException {
     try {
+      log.trace("Starting ReceiveMobilePhoneSignatureResponseTask");
       //TODO
     } catch (final Exception e) {
       log.error("Initial search FAILED.", e);
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eIDAS.Authentication.process.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eIDAS.Authentication.process.xml
index 5299093e..992ad766 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eIDAS.Authentication.process.xml
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eIDAS.Authentication.process.xml
@@ -24,6 +24,10 @@
   <pd:Task id="receiveMobilePhoneSignatureResponseTask"
            class="ReceiveMobilePhoneSignatureResponseTask" />
 
+  <pd:Task id="generateGuiQueryAustrianResidenceTask"
+           class="GenerateGuiQueryAustrianResidenceTask" />
+  <pd:Task id="receiveGuiAustrianResidenceResponseTask"
+           class="ReceiveGuiAustrianResidenceResponseTask" />
 
   <pd:StartEvent id="start" />
   
@@ -51,7 +55,19 @@
   <pd:Transition  from="receiveMobilePhoneSignatureResponseTask"
                   to="createNewErnpEntryTask" />
   <pd:Transition  from="receiveGuiResponseTask"
+                  to="generateGuiQueryAustrianResidenceTask" />
+
+  <pd:Transition  from="generateGuiQueryAustrianResidenceTask"
+                  to="receiveGuiAustrianResidenceResponseTask" />
+
+  <pd:Transition  from="receiveGuiAustrianResidenceResponseTask"
+                  to="generateIdentityLink"
+                  conditionExpression="ctx['TASK_TODO']"/>
+
+  <pd:Transition  from="receiveGuiAustrianResidenceResponseTask"
                   to="createNewErnpEntryTask" />
+
+
   <pd:Transition  from="createNewErnpEntryTask"
                   to="generateIdentityLink" />
   <!-- TODO end-->
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml
index 4c3a47fd..32e3241c 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml
@@ -125,4 +125,11 @@
         class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.ReceiveMobilePhoneSignatureResponseTask"
         scope="prototype" />
 
+  <bean id="GenerateGuiQueryAustrianResidenceTask"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.GenerateGuiQueryAustrianResidenceTask"
+        scope="prototype" />
+
+  <bean id="ReceiveGuiAustrianResidenceResponseTask"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.ReceiveGuiAustrianResidenceResponseTask"
+        scope="prototype" />
 </beans>
\ No newline at end of file
-- 
cgit v1.2.3


From 09751b59f7e2da247c32324826607e5f1eef0f10 Mon Sep 17 00:00:00 2001
From: Alexander Marsalek <amarsalek@iaik.tugraz.at>
Date: Fri, 15 Jan 2021 16:56:29 +0100
Subject: fix for test102*

---
 .../modules/auth/eidas/v2/dao/SimpleEidasData.java | 20 +++++++++++++++++---
 .../v2/test/tasks/InitialSearchTaskFirstTest.java  | 22 +++++++++++-----------
 2 files changed, 28 insertions(+), 14 deletions(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleEidasData.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleEidasData.java
index 57597122..b86984d0 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleEidasData.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleEidasData.java
@@ -46,6 +46,7 @@ public class SimpleEidasData {
 
   /**
    * Compares the register result with the eidas data.
+   *
    * @param result The register data to use for comparison
    * @return true or false depending of the data matches
    * @throws WorkflowException if multiple results have been found
@@ -67,15 +68,28 @@ public class SimpleEidasData {
     if (!result.getDateOfBirth().equals(dateOfBirth)) {
       return false;
     }
-    if (!result.getPlaceOfBirth().equals(placeOfBirth)) {
+    if (!equals(result.getPlaceOfBirth(), placeOfBirth)) {
       return false;
     }
-    if (!result.getBirthName().equals(birthName)) {
+    if (!equals(result.getBirthName(), birthName)) {
       return false;
     }
-    if (!result.getTaxNumber().equals(taxNumber)) {
+    if (!equals(result.getTaxNumber(), taxNumber)) {
       return false;
     }
     return true;
   }
+
+  private boolean equals(String a, String b) {
+    if (a == null && b == null) {
+      return true;
+    }
+    if (a == null && b != null) {
+      return false;
+    }
+    if (a != null && b == null) {
+      return false;
+    }
+    return a.equals(b);
+  }
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
index 9f58ba71..62c00813 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
@@ -135,7 +135,7 @@ public class InitialSearchTaskFirstTest {
   public void testNode100_UserIdentifiedUpdateNecessary_a() throws Exception {
     String newFirstName = RandomStringUtils.randomAlphabetic(10);
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.singletonList(
-        new RegisterResult(randomBpk, randomPseudonym, newFirstName, randomFamilyName, randomDate)));
+        new RegisterResult(randomBpk, randomIdentifier, newFirstName, randomFamilyName, randomDate)));
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
 
     task.execute(pendingReq, executionContext);
@@ -155,7 +155,7 @@ public class InitialSearchTaskFirstTest {
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
     String newRandomGivenName = RandomStringUtils.randomAlphabetic(10);
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.singletonList(
-        new RegisterResult(randomBpk, randomPseudonym, newRandomGivenName, randomFamilyName, randomDate)));
+        new RegisterResult(randomBpk, randomIdentifier, newRandomGivenName, randomFamilyName, randomDate)));
 
     task.execute(pendingReq, executionContext);
     String bPk = (String)
@@ -172,9 +172,9 @@ public class InitialSearchTaskFirstTest {
   @DirtiesContext
   public void testNode101_ManualFixNecessary_a() {
     ArrayList<RegisterResult> zmrResult = new ArrayList<>();
-    zmrResult.add(new RegisterResult(randomBpk, randomPseudonym, randomGivenName, randomFamilyName, randomDate));
+    zmrResult.add(new RegisterResult(randomBpk, randomIdentifier, randomGivenName, randomFamilyName, randomDate));
     String newRandomGivenName = randomGivenName + RandomStringUtils.randomAlphabetic(2);
-    zmrResult.add(new RegisterResult(randomBpk, randomPseudonym, newRandomGivenName, randomFamilyName, randomDate));
+    zmrResult.add(new RegisterResult(randomBpk, randomIdentifier, newRandomGivenName, randomFamilyName, randomDate));
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResult);
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
 
@@ -197,7 +197,7 @@ public class InitialSearchTaskFirstTest {
     ernpResult.add(new RegisterResult(randomBpk, randomPseudonym, randomGivenName, randomFamilyName, randomDate));
     String newRandomGivenName = randomGivenName + RandomStringUtils.randomAlphabetic(2);
     ernpResult.add(
-        new RegisterResult(randomBpk, randomPseudonym, newRandomGivenName, randomFamilyName, randomDate));
+        new RegisterResult(randomBpk, randomIdentifier, newRandomGivenName, randomFamilyName, randomDate));
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(ernpResult);
 
     TaskExecutionException exception = assertThrows(TaskExecutionException.class,
@@ -215,7 +215,7 @@ public class InitialSearchTaskFirstTest {
   public void testNode102_UserIdentified_a() throws Exception {
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.singletonList(
-        new RegisterResult(randomBpk, randomPseudonym, randomGivenName, randomFamilyName, randomDate)));
+        new RegisterResult(randomBpk, randomIdentifier, randomGivenName, randomFamilyName, randomDate)));
 
     task.execute(pendingReq, executionContext);
     String bPk = (String)
@@ -231,7 +231,7 @@ public class InitialSearchTaskFirstTest {
   @DirtiesContext
   public void testNode102_UserIdentified_b() throws Exception {
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.singletonList(
-        new RegisterResult(randomBpk, randomPseudonym, randomGivenName, randomFamilyName, randomDate)));
+        new RegisterResult(randomBpk, randomIdentifier, randomGivenName, randomFamilyName, randomDate)));
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
 
     task.execute(pendingReq, executionContext);
@@ -254,9 +254,9 @@ public class InitialSearchTaskFirstTest {
     pendingReq1.getSessionData(AuthProcessDataWrapper.class)
         .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
-    String newRandomPseudonym = IT_ST + randomIdentifier + RandomStringUtils.randomNumeric(2);
+    String newRandomIdentifier = randomIdentifier + RandomStringUtils.randomNumeric(2);
     Mockito.when(zmrClient.searchItSpecific(taxNumber)).thenReturn(Collections.singletonList(
-        new RegisterResult(randomBpk, newRandomPseudonym, randomGivenName, randomFamilyName,
+        new RegisterResult(randomBpk, newRandomIdentifier, randomGivenName, randomFamilyName,
             randomDate, null, null, taxNumber, null)));
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
     task = new InitialSearchTask(
@@ -286,7 +286,7 @@ public class InitialSearchTaskFirstTest {
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
     Mockito.when(zmrClient.searchDeSpecific(randomGivenName, randomFamilyName, randomDate, randomPlaceOfBirth,
         randomBirthName))
-        .thenReturn(Collections.singletonList(new RegisterResult(randomBpk, randomPseudonym, randomGivenName,
+        .thenReturn(Collections.singletonList(new RegisterResult(randomBpk, randomIdentifier, randomGivenName,
             randomFamilyName, randomDate, randomPlaceOfBirth, randomBirthName, null, null)));
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
     task = new InitialSearchTask(
@@ -318,7 +318,7 @@ public class InitialSearchTaskFirstTest {
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
     ArrayList<RegisterResult> zmrResultSpecific = new ArrayList<>();
     zmrResultSpecific.add(
-        new RegisterResult(randomBpk, randomPseudonym, randomGivenName, randomFamilyName, randomDate,
+        new RegisterResult(randomBpk, randomIdentifier, randomGivenName, randomFamilyName, randomDate,
             randomPlaceOfBirth, randomBirthName, null, null));
     zmrResultSpecific.add(new RegisterResult(newRandomBpk, newRandomPseudonym, randomGivenName, randomFamilyName, randomDate,
         randomPlaceOfBirth, randomBirthName, null, null));
-- 
cgit v1.2.3


From e4e4fbf37aa0326b1c06f907a13593732c23deb7 Mon Sep 17 00:00:00 2001
From: Alexander Marsalek <amarsalek@iaik.tugraz.at>
Date: Fri, 22 Jan 2021 09:53:50 +0100
Subject: processing after mobilephone auth response

---
 .../specific/modules/auth/eidas/v2/Constants.java  |   2 +-
 .../modules/auth/eidas/v2/dao/SimpleEidasData.java |   4 +-
 .../auth/eidas/v2/ernp/DummyErnpClient.java        |   6 ++
 .../modules/auth/eidas/v2/ernp/IErnpClient.java    |   1 +
 .../GenerateMobilePhoneSignatureRequestTask.java   |  11 +++
 .../auth/eidas/v2/tasks/InitialSearchTask.java     |  35 +++----
 .../ReceiveGuiAustrianResidenceResponseTask.java   |   1 +
 ...eSignatureResponseAndSearchInRegistersTask.java | 101 +++++++++++++++++++++
 .../ReceiveMobilePhoneSignatureResponseTask.java   |  56 ------------
 .../auth/eidas/v2/utils/EidasResponseUtils.java    |  16 ++--
 .../modules/auth/eidas/v2/utils/Utils.java         |  48 ++++++++++
 .../modules/auth/eidas/v2/zmr/DummyZmrClient.java  |   6 ++
 .../modules/auth/eidas/v2/zmr/IZmrClient.java      |   2 +
 .../src/main/resources/eidas_v2_auth.beans.xml     |   2 +-
 .../resources/SpringTest-context_tasks_test.xml    |   2 +-
 15 files changed, 203 insertions(+), 90 deletions(-)
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask.java
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseTask.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/Utils.java

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java
index 8a1a63f5..858637e9 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java
@@ -34,7 +34,7 @@ public class Constants {
   public static final String DATA_FULL_EIDAS_RESPONSE = "resp_fulleIDASResponse";
   public static final String DATA_RESULT_MATCHING_BPK = "matching-result-bpk";
   public static final String DATA_SIMPLE_EIDAS = "simple_eidas_data";
-
+  public static final String DATA_INITIAL_REGISTER_RESULT = "initial_register_result";
 
   // templates for post-binding forwarding
   public static final String TEMPLATE_POST_FORWARD_NAME = "eidas_node_forward.html";
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleEidasData.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleEidasData.java
index b86984d0..17f2b1ee 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleEidasData.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleEidasData.java
@@ -84,10 +84,10 @@ public class SimpleEidasData {
     if (a == null && b == null) {
       return true;
     }
-    if (a == null && b != null) {
+    if (a == null) {
       return false;
     }
-    if (a != null && b == null) {
+    if (b == null) {
       return false;
     }
     return a.equals(b);
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernp/DummyErnpClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernp/DummyErnpClient.java
index 22482638..77411dd1 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernp/DummyErnpClient.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernp/DummyErnpClient.java
@@ -68,5 +68,11 @@ public class DummyErnpClient implements IErnpClient {
     return false;
   }
 
+  @Override
+  public List<RegisterResult> searchWithBpkZp(String bpkzp) {
+    //TODO
+    return Collections.emptyList();
+  }
+
 
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernp/IErnpClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernp/IErnpClient.java
index 2f82387f..0c994f69 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernp/IErnpClient.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernp/IErnpClient.java
@@ -43,4 +43,5 @@ public interface IErnpClient {
 
   boolean createNewEntry(SimpleEidasData simpleEidasData);
 
+  List<RegisterResult> searchWithBpkZp(String bpkzp);
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateMobilePhoneSignatureRequestTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateMobilePhoneSignatureRequestTask.java
index 0f2fc8a3..736ac6e5 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateMobilePhoneSignatureRequestTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateMobilePhoneSignatureRequestTask.java
@@ -27,6 +27,7 @@ import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
 import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
 import at.gv.egiz.eaaf.core.impl.idp.auth.modules.AbstractAuthServletTask;
 import lombok.extern.slf4j.Slf4j;
+import org.apache.commons.lang3.StringUtils;
 import org.springframework.stereotype.Component;
 
 import javax.servlet.http.HttpServletRequest;
@@ -48,6 +49,16 @@ public class GenerateMobilePhoneSignatureRequestTask extends AbstractAuthServlet
     try {
       log.trace("Starting GenerateMobilePhoneSignatureRequestTask");
       //step 15a
+      // get entityID for ms-specific eIDAS node
+      final String msNodeEntityID = "TODO";
+
+      if (StringUtils.isEmpty(msNodeEntityID)) {
+        log.info("eIDAS authentication not possible -> NO EntityID for central eIDAS node FOUND!");
+        throw new TaskExecutionException(pendingReq, "", null);
+
+      }
+      //MsEidasNodeConstants.ENDPOINT_PVP_POST
+      //MsEidasNodeConstants.ENDPOINT_PVP_METADATA
 
       //TODO
     } catch (final Exception e) {
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
index 9e5b4d67..99da21a1 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
@@ -33,8 +33,10 @@ import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.ManualFixNeces
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.WorkflowException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.CountrySpecificDetailSearchProcessor;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.EidasResponseUtils;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.Utils;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.IZmrClient;
 import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
+import at.gv.egiz.eaaf.core.exceptions.EaafStorageException;
 import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
 import at.gv.egiz.eaaf.core.impl.data.Triple;
 import at.gv.egiz.eaaf.core.impl.idp.auth.data.AuthProcessDataWrapper;
@@ -96,19 +98,26 @@ public class InitialSearchTask extends AbstractAuthServletTask {
       final SimpleEidasData eidData = convertSimpleMapToSimpleData(convertEidasAttrToSimpleMap(
           eidasResponse.getAttributes().getAttributeMap()));
 
-      String bpK = step2RegisterSearchWithPersonidentifier(eidData);
+      String bpK = step2RegisterSearchWithPersonidentifier(eidData, authProcessData);
       authProcessData.setGenericDataToSession(Constants.DATA_RESULT_MATCHING_BPK, bpK);
-      authProcessData.setGenericDataToSession(Constants.DATA_SIMPLE_EIDAS, eidasResponse);
+      authProcessData.setGenericDataToSession(Constants.DATA_SIMPLE_EIDAS, eidData);
     } catch (final Exception e) {
       log.error("Initial search FAILED.", e);
       throw new TaskExecutionException(pendingReq, "Initial search FAILED.", e);
     }
   }
 
-  private String step2RegisterSearchWithPersonidentifier(SimpleEidasData eidData) throws TaskExecutionException {
+  private String step2RegisterSearchWithPersonidentifier(SimpleEidasData eidData,
+      AuthProcessDataWrapper authProcessData) throws TaskExecutionException {
     log.trace("Starting step2RegisterSearchWithPersonidentifier");
     String personIdentifier = eidData.getPseudonym();
     MergedRegisterSearchResult result = searchInZmrAndErnp(personIdentifier);
+    //store data in session
+    try {
+      authProcessData.setGenericDataToSession(Constants.DATA_INITIAL_REGISTER_RESULT, result);
+    } catch (EaafStorageException e) {
+      throw new TaskExecutionException(pendingReq, "Initial search - Kitt Process necessary.",e);
+    }
     if (result.getResultCount() == 0) {
       return step5CheckAndPerformCountrySpecificSearchIfPossible(result, eidData);
     } else if (result.getResultCount() == 1) {
@@ -184,24 +193,8 @@ public class InitialSearchTask extends AbstractAuthServletTask {
                                    MergedRegisterSearchResult countrySpecificDetailSearchResult,
                                    SimpleEidasData eidData) throws TaskExecutionException {
     log.trace("Starting step7aKittProcess");
-    try {
-      if (initialSearchResult.getResultCount() != 0) {
-        throw new WorkflowException("initialSearchResult.getResultCount() != 0");
-      }
-      if (countrySpecificDetailSearchResult.getResultCount() != 1) {
-        throw new WorkflowException("countrySpecificDetailSearchResult.getResultCount() != 1");
-      }
-      if (countrySpecificDetailSearchResult.getResultsZmr().size() == 1) {
-        zmrClient.update(countrySpecificDetailSearchResult.getResultsZmr().get(0), eidData);
-      }
-      if (countrySpecificDetailSearchResult.getResultsErnp().size() == 1) {
-        ernpClient.update(countrySpecificDetailSearchResult.getResultsErnp().get(0), eidData);
-      }
-      String bpK = countrySpecificDetailSearchResult.getBpk();
-      return bpK;
-    } catch (WorkflowException e) {
-      throw new TaskExecutionException(pendingReq, "Step7a failed.", e);
-    }
+    return Utils.step7aKittProcess(ernpClient, zmrClient, initialSearchResult, countrySpecificDetailSearchResult,
+        eidData, pendingReq);
   }
 
   private String step8RegisterSearchWithMds(SimpleEidasData eidData) {
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveGuiAustrianResidenceResponseTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveGuiAustrianResidenceResponseTask.java
index 3bbb59d1..34fbf507 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveGuiAustrianResidenceResponseTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveGuiAustrianResidenceResponseTask.java
@@ -68,6 +68,7 @@ public class ReceiveGuiAustrianResidenceResponseTask extends AbstractAuthServlet
 
         }
       }
+
     } catch (final Exception e) {
       log.error("Parsing selected login method FAILED.", e);
       throw new TaskExecutionException(pendingReq, "Parsing selected login method FAILED.", e);
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask.java
new file mode 100644
index 00000000..b598cb92
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask.java
@@ -0,0 +1,101 @@
+/*
+ * Copyright 2021 A-SIT Plus GmbH
+ * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
+ * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
+ *
+ * Licensed under the EUPL, Version 1.2 or - as soon they will be approved by
+ * the European Commission - subsequent versions of the EUPL (the "License");
+ * You may not use this work except in compliance with the License.
+ * You may obtain a copy of the License at:
+ * https://joinup.ec.europa.eu/news/understanding-eupl-v12
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" basis,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ *
+ * This product combines work with different licenses. See the "NOTICE" text
+ * file for details on the various modules and licenses.
+ * The "NOTICE" text file is part of the distribution. Any derivative works
+ * that you distribute must include a readable copy of the "NOTICE" text file.
+ */
+
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks;
+
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.MergedRegisterSearchResult;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernp.IErnpClient;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.ManualFixNecessaryException;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.Utils;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.IZmrClient;
+import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
+import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
+import at.gv.egiz.eaaf.core.impl.idp.auth.data.AuthProcessDataWrapper;
+import at.gv.egiz.eaaf.core.impl.idp.auth.modules.AbstractAuthServletTask;
+import lombok.extern.slf4j.Slf4j;
+import org.springframework.stereotype.Component;
+
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+import java.util.List;
+
+/**
+ * Task that searches ErnB and ZMR before adding person to SZR.
+ *
+ * @author amarsalek
+ */
+@Slf4j
+@Component("ReceiveMobilePhoneSignatureResponseTask")
+public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask extends AbstractAuthServletTask {
+
+  private final IErnpClient ernpClient;
+  private final IZmrClient zmrClient;
+
+  public ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask(IErnpClient ernpClient, IZmrClient zmrClient) {
+    this.ernpClient = ernpClient;
+    this.zmrClient = zmrClient;
+  }
+
+  @Override
+  public void execute(ExecutionContext executionContext, HttpServletRequest request, HttpServletResponse response)
+      throws TaskExecutionException {
+    try {
+      log.trace("Starting ReceiveMobilePhoneSignatureResponseTask");//Node 15
+      final AuthProcessDataWrapper authProcessData = pendingReq.getSessionData(AuthProcessDataWrapper.class);
+      MergedRegisterSearchResult initialSearchResult =
+          authProcessData.getGenericDataFromSession(Constants.DATA_INITIAL_REGISTER_RESULT,
+              MergedRegisterSearchResult.class);
+      SimpleEidasData eidData = authProcessData.getGenericDataFromSession(Constants.DATA_SIMPLE_EIDAS,
+          SimpleEidasData.class);
+
+      //TODO extract bPK-ZP from response
+      String bpkzp = "TODO";
+      MergedRegisterSearchResult result = searchInZmrAndErnp(bpkzp);
+      if (result.getResultCount() == 0) {
+        //go to step 16
+        //TODO set context variable
+        return;
+      } else if (result.getResultCount() == 1) {
+        String bpk = Utils.step7aKittProcess(ernpClient, zmrClient, initialSearchResult, result, eidData, pendingReq);
+        authProcessData.setGenericDataToSession(Constants.DATA_RESULT_MATCHING_BPK, bpk);
+        //node 110
+        //TODO bpk vs bpkzp???? same?
+      } else if (result.getResultCount() > 1) {
+        throw new ManualFixNecessaryException("bpkzp:" + bpkzp);// node 108
+      }
+
+    } catch (final Exception e) {
+      log.error("Initial search FAILED.", e);
+      throw new TaskExecutionException(pendingReq, "Initial search FAILED.", e);
+    }
+  }
+
+  private MergedRegisterSearchResult searchInZmrAndErnp(String bpkzp) {
+    List<RegisterResult> resultsZmr = zmrClient.searchWithBpkZp(bpkzp);
+    List<RegisterResult> resultsErnp = ernpClient.searchWithBpkZp(bpkzp);
+    return new MergedRegisterSearchResult(resultsZmr, resultsErnp);
+  }
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseTask.java
deleted file mode 100644
index 4329fc2e..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseTask.java
+++ /dev/null
@@ -1,56 +0,0 @@
-/*
- * Copyright 2021 A-SIT Plus GmbH
- * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
- * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
- *
- * Licensed under the EUPL, Version 1.2 or - as soon they will be approved by
- * the European Commission - subsequent versions of the EUPL (the "License");
- * You may not use this work except in compliance with the License.
- * You may obtain a copy of the License at:
- * https://joinup.ec.europa.eu/news/understanding-eupl-v12
- *
- * Unless required by applicable law or agreed to in writing, software
- * distributed under the License is distributed on an "AS IS" basis,
- * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
- * See the License for the specific language governing permissions and
- * limitations under the License.
- *
- * This product combines work with different licenses. See the "NOTICE" text
- * file for details on the various modules and licenses.
- * The "NOTICE" text file is part of the distribution. Any derivative works
- * that you distribute must include a readable copy of the "NOTICE" text file.
- */
-
-package at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks;
-
-import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
-import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
-import at.gv.egiz.eaaf.core.impl.idp.auth.modules.AbstractAuthServletTask;
-import lombok.extern.slf4j.Slf4j;
-import org.springframework.stereotype.Component;
-
-import javax.servlet.http.HttpServletRequest;
-import javax.servlet.http.HttpServletResponse;
-
-/**
- * Task that searches ErnB and ZMR before adding person to SZR.
- *
- * @author amarsalek
- */
-@Slf4j
-@Component("ReceiveMobilePhoneSignatureResponseTask")
-public class ReceiveMobilePhoneSignatureResponseTask extends AbstractAuthServletTask {
-
-  @Override
-  public void execute(ExecutionContext executionContext, HttpServletRequest request, HttpServletResponse response)
-      throws TaskExecutionException {
-    try {
-      log.trace("Starting ReceiveMobilePhoneSignatureResponseTask");
-      //TODO
-    } catch (final Exception e) {
-      log.error("Initial search FAILED.", e);
-      throw new TaskExecutionException(pendingReq, "Initial search FAILED.", e);
-    }
-  }
-
-}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/EidasResponseUtils.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/EidasResponseUtils.java
index ef8822aa..1d47df20 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/EidasResponseUtils.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/EidasResponseUtils.java
@@ -49,7 +49,6 @@ import java.util.regex.Pattern;
 
 public class EidasResponseUtils {
   private static final Logger log = LoggerFactory.getLogger(EidasResponseUtils.class);
-
   public static final String PERSONALIDENIFIER_VALIDATION_PATTERN = "^[A-Z,a-z]{2}/[A-Z,a-z]{2}/.*";
 
   /**
@@ -58,7 +57,7 @@ public class EidasResponseUtils {
    *
    * @param uniqueID eIDAS attribute value of a unique identifier
    * @return true if the uniqueID matches to eIDAS to Unique Identifier
-   * specification, otherwise false
+   *         specification, otherwise false
    */
   public static boolean validateEidasPersonalIdentifier(String uniqueID) {
     final Pattern pattern = Pattern.compile(PERSONALIDENIFIER_VALIDATION_PATTERN);
@@ -73,12 +72,13 @@ public class EidasResponseUtils {
    * Unique Identifier
    *
    * @param uniqueID eIDAS attribute value of a unique identifier
-   * @return {@link Triple} that contains: <br>
-   * First : citizen country <br>
-   * Second: destination country <br>
-   * Third : unique identifier <br>
-   * or null if the attribute value has a wrong format
+   * @return {@link Trible} that contains: <br>
+   *         First : citizen country <br>
+   *         Second: destination country <br>
+   *         Third : unique identifier <br>
+   *         or null if the attribute value has a wrong format
    */
+
   public static Triple<String, String, String> parseEidasPersonalIdentifier(String uniqueID) {
     if (!validateEidasPersonalIdentifier(uniqueID)) {
       log.error("eIDAS attribute value for {} looks wrong formated. Value: {}",
@@ -96,7 +96,7 @@ public class EidasResponseUtils {
    * @param attributeDefinition eIDAS attribute definition
    * @param attributeValues     Attributes from eIDAS response
    * @return Set of attribute values. If more then one value than the first value
-   * contains the 'Latin' value.
+   *         contains the 'Latin' value.
    */
   // TODO: check possible problem with nonLatinCharacters
   public static List<String> translateStringListAttribute(AttributeDefinition<?> attributeDefinition,
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/Utils.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/Utils.java
new file mode 100644
index 00000000..5612d137
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/Utils.java
@@ -0,0 +1,48 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.utils;
+
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.MergedRegisterSearchResult;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernp.IErnpClient;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.WorkflowException;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.IZmrClient;
+import at.gv.egiz.eaaf.core.api.IRequest;
+import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
+
+public class Utils {
+
+  /**
+   * Automatic process to fix the register entries.
+   *
+   * @param ernpClient ErnP client
+   * @param zmrClient ZMR client
+   * @param initialSearchResult Result of initial register search
+   * @param specificDetailSearchResult Result of last register search
+   * @param eidData Received eidas data
+   * @param pendingReq Pending request
+   * @return The bpk
+   * @throws TaskExecutionException if an error occurs during the register update
+   */
+  public static String step7aKittProcess(IErnpClient ernpClient, IZmrClient zmrClient,
+                                         MergedRegisterSearchResult initialSearchResult,
+                                         MergedRegisterSearchResult specificDetailSearchResult,
+                                         SimpleEidasData eidData, IRequest pendingReq) throws TaskExecutionException {
+    try {
+      if (initialSearchResult.getResultCount() != 0) {
+        throw new WorkflowException("initialSearchResult.getResultCount() != 0");
+      }
+      if (specificDetailSearchResult.getResultCount() != 1) {
+        throw new WorkflowException("countrySpecificDetailSearchResult.getResultCount() != 1");
+      }
+      if (specificDetailSearchResult.getResultsZmr().size() == 1) {
+        zmrClient.update(specificDetailSearchResult.getResultsZmr().get(0), eidData);
+      }
+      if (specificDetailSearchResult.getResultsErnp().size() == 1) {
+        ernpClient.update(specificDetailSearchResult.getResultsErnp().get(0), eidData);
+      }
+      String bpK = specificDetailSearchResult.getBpk();
+      return bpK;
+    } catch (WorkflowException e) {
+      throw new TaskExecutionException(pendingReq, "Step7a failed.", e);
+    }
+  }
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/DummyZmrClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/DummyZmrClient.java
index b12c1bcb..87b00f07 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/DummyZmrClient.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/DummyZmrClient.java
@@ -62,4 +62,10 @@ public class DummyZmrClient implements IZmrClient {
     //TODO
   }
 
+  @Override
+  public List<RegisterResult> searchWithBpkZp(String bpkzp) {
+    //TODO
+    return Collections.emptyList();
+  }
+
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/IZmrClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/IZmrClient.java
index 5175cd7b..2742ae31 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/IZmrClient.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/IZmrClient.java
@@ -40,4 +40,6 @@ public interface IZmrClient {
   List<RegisterResult> searchItSpecific(String taxNumber);
 
   void update(RegisterResult registerResult, SimpleEidasData eidData);
+
+  List<RegisterResult> searchWithBpkZp(String bpkzp);
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml
index fb1fa0f3..d669835f 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml
@@ -123,7 +123,7 @@
         scope="prototype" />
 
   <bean id="ReceiveMobilePhoneSignatureResponseTask"
-        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.ReceiveMobilePhoneSignatureResponseTask"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask"
         scope="prototype" />
 
   <bean id="GenerateGuiQueryAustrianResidenceTask"
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_tasks_test.xml b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_tasks_test.xml
index e479dc78..5a7f4161 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_tasks_test.xml
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_tasks_test.xml
@@ -99,7 +99,7 @@
         scope="prototype" />
 
   <bean id="ReceiveMobilePhoneSignatureResponseTask"
-        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.ReceiveMobilePhoneSignatureResponseTask"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask"
         scope="prototype" />
 
 </beans>
\ No newline at end of file
-- 
cgit v1.2.3


From e36aedb5b1acd1b985d09acb818f1f85175cb826 Mon Sep 17 00:00:00 2001
From: Alexander Marsalek <amarsalek@iaik.tugraz.at>
Date: Tue, 26 Jan 2021 18:57:51 +0100
Subject: copied and adapted classes for PVP request creation for mobile
 signature

---
 .../AhExtendedPvpAttributeDefinitions.java         |  24 ++
 .../eidas/v2/mobilesig/AuthHandlerConstants.java   | 141 ++++++
 .../v2/mobilesig/EidasCentralAuthConstants.java    | 166 ++++++++
 .../EidasCentralAuthCredentialProvider.java        | 130 ++++++
 .../EidasCentralAuthMetadataConfiguration.java     | 471 +++++++++++++++++++++
 .../EidasCentralAuthMetadataController.java        | 149 +++++++
 .../EidasCentralAuthMetadataProvider.java          | 169 ++++++++
 ...idasCentralAuthRequestBuilderConfiguration.java | 300 +++++++++++++
 .../eidas/v2/mobilesig/IAhSpConfiguration.java     | 151 +++++++
 .../GenerateMobilePhoneSignatureRequestTask.java   | 103 +++++
 .../src/main/resources/eidas_v2_auth.beans.xml     |   4 +
 11 files changed, 1808 insertions(+)
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/mobilesig/AhExtendedPvpAttributeDefinitions.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/mobilesig/AuthHandlerConstants.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/mobilesig/EidasCentralAuthConstants.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/mobilesig/EidasCentralAuthCredentialProvider.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/mobilesig/EidasCentralAuthMetadataConfiguration.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/mobilesig/EidasCentralAuthMetadataController.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/mobilesig/EidasCentralAuthMetadataProvider.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/mobilesig/EidasCentralAuthRequestBuilderConfiguration.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/mobilesig/IAhSpConfiguration.java

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/mobilesig/AhExtendedPvpAttributeDefinitions.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/mobilesig/AhExtendedPvpAttributeDefinitions.java
new file mode 100644
index 00000000..af9a2972
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/mobilesig/AhExtendedPvpAttributeDefinitions.java
@@ -0,0 +1,24 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.mobilesig;
+
+import at.gv.egiz.eaaf.core.api.data.ExtendedPvpAttributeDefinitions;
+
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+
+public class AhExtendedPvpAttributeDefinitions implements ExtendedPvpAttributeDefinitions {
+  private static final Logger log =
+      LoggerFactory.getLogger(AhExtendedPvpAttributeDefinitions.class);
+
+  private AhExtendedPvpAttributeDefinitions() {
+    log.trace("Instance class: {} for SonarQube",
+        AhExtendedPvpAttributeDefinitions.class.getName());
+
+  }
+
+  public static final String EID_BCBIND_NAME = "urn:eidgvat:attributes.bcbind";
+  public static final String EID_BCBIND_FRIENDLY_NAME = "bcBind";
+
+  public static final String EID_BINDING_PUBKEY_NAME = "urn:eidgvat:attributes.binding.pubkey";
+  public static final String EID_BINDING_PUBKEY_FRIENDLY_NAME = "BindingPubKey";
+
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/mobilesig/AuthHandlerConstants.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/mobilesig/AuthHandlerConstants.java
new file mode 100644
index 00000000..60219759
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/mobilesig/AuthHandlerConstants.java
@@ -0,0 +1,141 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.mobilesig;
+
+
+public class AuthHandlerConstants {
+
+  private AuthHandlerConstants() {
+
+  }
+
+  // TODO: maybe update to another target
+  public static final String DEFAULT_INTERNAL_BPK_TARGET = "urn:publicid:gv.at:cdid+ZP-MH";
+
+  // configuration parameters
+  public static final String PROP_CONFIG_APPLICATION_PREFIX = "authhandler.";
+  public static final String PROP_CONFIG_APPLICATION_PUBLIC_URL_PREFIX = "core.context.url.prefix";
+  public static final String PROP_CONFIG_APPLICATION_PUBLIC_URL_REQUEST_VALIDATION =
+      "core.context.url.request.validation";
+  public static final String PROP_CONFIG_LEGACY_ALLOW = "core.legacy.allowLegacyMode";
+
+  public static final String PROP_CONFIG_WEBCONTENT_STATIC_PATH =
+      "core.webcontent.static.directory";
+  public static final String PROP_CONFIG_WEBCONTENT_TEMPLATES_PATH = "core.webcontent.templates";
+  public static final String PROP_CONFIG_WEBCONTENT_PROPERTIES_PATH = "core.webcontent.properties";
+
+  public static final String PROP_CONFIG_CACHE_TRANSACTIONS_NAME = "core.cache.transaction.name";
+  public static final String PROP_CONFIG_CACHE_TRANSACTIONS_ENC_ENABLED =
+      "core.cache.transaction.encryption.enabled";
+  public static final String PROP_CONFIG_CACHE_TRANSACTIONS_ENC_KEY_TYPE =
+      "core.cache.transaction.encryption.type";
+  public static final String PROP_CONFIG_CACHE_TRANSACTIONS_ENC_PASSPHRASE =
+      "core.cache.transaction.encryption.passphrase";
+  public static final String PROP_CONFIG_CACHE_TRANSACTIONS_ENC_SALT =
+      "core.cache.transaction.encryption.salt";
+  public static final String PROP_CONFIG_CACHE_TRANSACTIONS_ENC_KEYSTORE_NAME =
+      "core.cache.transaction.encryption.keystore.name";
+  public static final String PROP_CONFIG_CACHE_TRANSACTIONS_ENC_KEY_ALIAS =
+      "core.cache.transaction.encryption.key.alias";
+
+  public static final String PROP_CONFIG_CACHE_ATTRIBUTEPROXY_NAME =
+      "core.cache.attributeproxy.name";
+
+  public static final String PROP_CONFIG_BACKEND_ENDPOINT_GETALLSUPPORTEDATTRIBUTES =
+      "backend.endpoints.getallsupportedattributes";
+  public static final String PROP_CONFIG_BACKEND_ENDPOINT_GETAPPLICATIONCONFIGURATION =
+      "backend.endpoints.getapplicationconfiguration";
+
+  public static final String PROP_CONFIG_INTERNAL_BPK_TARGET = "core.internal.bpk.target";
+
+  public static final String PROP_CONFIG_INTERNAL_FRONTEND_ONLY_MODE = "core.internal.frontend.only.mode";
+  public static final boolean PROP_DEFAULT_CONFIG_INTERNAL_FRONTEND_ONLY_MODE = false;
+
+  // Servlet End-Points
+  public static final String ENDPOINT_PROCESSENGINE_CONTROLLER = "/api/process";
+  public static final String ENDPOINT_ERROR_IFRAME_HOPPING = "/error/parenthop";
+
+
+  // GUI template directories
+  public static final String CLASSPATH_TEMPLATE_DIR = "/templates/";
+  public static final String FILESYSTEM_TEMPLATE_DIR = "./templates/";
+  public static final String TEMPLATE_HTML_ERROR = "error_message.html";
+
+  // GUI template defaultfiles
+  public static final String TEMPLATE_AUTHPROCESS_SELECTION_VDA_FULLFRAME = "authSelection.html";
+  public static final String TEMPLATE_AUTHPROCESS_SELECTION_VDA_IFRAME = "authSelection_iframe.html";
+  public static final String TEMPLATE_USER_CONSENT_REQUEST = "userConsent.html";
+  public static final String TEMPLATE_IFRAME_TO_PARENT_HOPE = "iframe_parent_hope.html";
+  public static final String TEMPLATE_MANDATE_SELECTION = "mandateSelection.html";
+  public static final String TEMPLATE_PROF_REP_MANDATE_SELECTION = "profRepMandateSelection.html";
+  public static final String TEMPLATE_MANDATE_SELECTION_DUMMY = "mandateSelection_dummy.html";
+
+
+
+  // http request parameters
+  public static final String HTTP_PARAM_APPLICATION_ID = "appId";
+  public static final String HTTP_PARAM_STOP_PROCESS = "stopAuthProcess";
+  public static final String HTTP_PARAM_EIDAS_PROCESS = "useeIDAS";
+  public static final String HTTP_PARAM_EID_PROCESS = "useeID";
+  public static final String HTTP_PARAM_EID_BINDING_AUTH_PROCESS = "useBindingAuth";
+  public static final String HTTP_PARAM_USE_MANDATES = "useMandate";
+  public static final String HTTP_PARAM_AUTHMETHOD = "authMethod";
+  public static final String HTTP_PARAM_CONSENT_RELEASE_ATTRIBUTES = "releaseAttributes";
+  public static final String HTTP_PARAM_CONSENT_STORE_CONSENT = "storeConsent";
+
+  @Deprecated
+  public static final String HTTP_PARAM_EIDMIGRATIONPILOT_PROCESS = "pilotMigration";
+  @Deprecated
+  public static final String HTTP_PARAM_EIDMIGRATIONPILOT_SHOW_INFO_PAGE = "pilotMigrationInfoPage";
+  @Deprecated
+  public static final String HTTP_PARAM_MOBILESIGNATURE_PROCESS = "usemobileSig";
+
+  // UI options
+  public static final String UI_PARAM_USE_MANDATES = HTTP_PARAM_USE_MANDATES;
+  public static final String UI_PARAM_USE_ONLY_MANDATES = "useOnlyMandate";
+  public static final String UI_PARAM_USE_EIDAS = HTTP_PARAM_EIDAS_PROCESS;
+  public static final String UI_PARAM_DSGVO_SHORT_INFO = "dsgvoShortText";
+  public static final String UI_PARAM_DSGVO_SP_PRIVACY_STATEMENT_URL = "dsgvoPrivacyStatementUrl";
+  public static final String UI_PARAM_DSGVO_SP_SERVICE_URL = "dsgvoServiceUrl";
+  public static final String UI_PARAM_DSGVO_SP_LOGO = "dsgvoSpLogo";
+  public static final String UI_PARAM_DSGVO_SP_LOGO_SET = "dsgvoSpLogoSet";
+  public static final String UI_PARAM_DSGVO_SP_LOGO_SET_DATAURL = "dataUrl";
+  public static final String UI_PARAM_DSGVO_SP_LOGO_SET_THEME = "theme";
+  public static final String UI_PARAM_DSGVO_SP_LOGO_SET_RESOLUTION = "resolution";
+  public static final String UI_PARAM_DSGVO_SP_LOGO_SET_TYPE = "type";
+
+  public enum LogoType { SVG, PNG, UNKNOWN }
+
+  public enum AuthBlockType {
+    CADES("CAdES"), JWS("JWS"), NONE("none");
+
+    private final String internalType;
+
+    AuthBlockType(final String type) {
+      this.internalType = type;
+
+    }
+
+    /**
+     * Get Type identifier for this AuthBlock.
+     *
+     * @return
+     */
+    public String getAuthBlockType() {
+      return this.internalType;
+    }
+
+    @Override
+    public String toString() {
+      return getAuthBlockType();
+
+    }
+  }
+
+  // process context parameters
+  public static final String PROCESSCONTEXT_USERCONSENT_NEEDED = "userConsentNeeded";
+  public static final String PROCESSCONTEXT_AUTHPROCESSSELECTION_DONE = "authProcSelectDone";
+  public static final String PROCESSCONTEXT_SWITCH_LANGUAGE = "changeLanguage";
+  public static final String PROCESSCONTEXT_IFRAME_PARENT_NEEDED = "iframeParentNeeded";
+
+  public static final String PROCESSCONTEXT_WAS_EID_PROCESS = "wasEidProcess";
+
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/mobilesig/EidasCentralAuthConstants.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/mobilesig/EidasCentralAuthConstants.java
new file mode 100644
index 00000000..e4d520b4
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/mobilesig/EidasCentralAuthConstants.java
@@ -0,0 +1,166 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.mobilesig;
+
+
+import at.gv.egiz.eaaf.core.api.data.EaafConstants;
+import at.gv.egiz.eaaf.core.api.data.ExtendedPvpAttributeDefinitions;
+import at.gv.egiz.eaaf.core.api.data.PvpAttributeDefinitions;
+import at.gv.egiz.eaaf.core.impl.data.Triple;
+
+import java.util.ArrayList;
+import java.util.Collections;
+import java.util.List;
+
+
+public class EidasCentralAuthConstants {
+
+  private EidasCentralAuthConstants() {
+
+  }
+
+  public static final String SAML2_STATUSCODE_USERSTOP = "1005";
+
+  public static final String MODULE_NAME_FOR_LOGGING = "eIDAS central authentication";
+
+  public static final int METADATA_VALIDUNTIL_IN_HOURS = 24;
+
+  //  public static final String HTTP_PARAM_CENTRAL_EIDAS_AUTH_SELECTION =
+  //      AuthHandlerConstants.HTTP_PARAM_EIDAS_PROCESS;
+
+  public static final String ENDPOINT_POST = "/sp/eidas/post";
+  public static final String ENDPOINT_REDIRECT = "/sp/eidas/redirect";
+  public static final String ENDPOINT_METADATA = "/sp/eidas/metadata";
+
+  public static final String CONFIG_PROPS_PREFIX = "modules.eidascentralauth.";
+  public static final String CONFIG_PROPS_KEYSTORE_TYPE = CONFIG_PROPS_PREFIX + "keystore.type";
+  public static final String CONFIG_PROPS_KEYSTORE_NAME = CONFIG_PROPS_PREFIX + "keystore.name";
+  public static final String CONFIG_PROPS_KEYSTORE_PATH = CONFIG_PROPS_PREFIX + "keystore.path";
+  public static final String CONFIG_PROPS_KEYSTOREPASSWORD = CONFIG_PROPS_PREFIX + "keystore.password";
+  public static final String CONFIG_PROPS_SIGN_METADATA_KEY_PASSWORD = CONFIG_PROPS_PREFIX
+      + "metadata.sign.password";
+  public static final String CONFIG_PROPS_SIGN_METADATA_ALIAS = CONFIG_PROPS_PREFIX
+      + "metadata.sign.alias";
+  public static final String CONFIG_PROPS_SIGN_SIGNING_KEY_PASSWORD = CONFIG_PROPS_PREFIX
+      + "request.sign.password";
+  public static final String CONFIG_PROPS_SIGN_SIGNING_ALIAS = CONFIG_PROPS_PREFIX
+      + "request.sign.alias";
+  public static final String CONFIG_PROPS_ENCRYPTION_KEY_PASSWORD = CONFIG_PROPS_PREFIX
+      + "response.encryption.password";
+  public static final String CONFIG_PROPS_ENCRYPTION_ALIAS = CONFIG_PROPS_PREFIX
+      + "response.encryption.alias";
+
+  public static final String CONFIG_PROPS_TRUSTSTORE_TYPE = CONFIG_PROPS_PREFIX + "truststore.type";
+  public static final String CONFIG_PROPS_TRUSTSTORE_NAME = CONFIG_PROPS_PREFIX + "truststore.name";
+  public static final String CONFIG_PROPS_TRUSTSTORE_PATH = CONFIG_PROPS_PREFIX + "truststore.path";
+  public static final String CONFIG_PROPS_TRUSTSTORE_PASSWORD = CONFIG_PROPS_PREFIX + "truststore.password";
+
+  public static final String CONFIG_PROPS_REQUIRED_PVP_ATTRIBUTES_LIST = CONFIG_PROPS_PREFIX
+      + "required.additional.attributes";
+  public static final String CONFIG_PROPS_REQUIRED_LOA = CONFIG_PROPS_PREFIX
+      + "required.loa";
+  public static final String CONFIG_PROPS_NODE_ENTITYID = CONFIG_PROPS_PREFIX + "node.entityId";
+  public static final String CONFIG_PROPS_NODE_METADATAURL = CONFIG_PROPS_PREFIX + "node.metadataUrl";
+  public static final String CONFIG_PROPS_NODE_TRUSTPROFILEID = CONFIG_PROPS_PREFIX + "node.trustprofileID";
+
+
+  public static final String CONFIG_PROPS_METADATA_CONTACT_GIVENNAME =
+      CONFIG_PROPS_PREFIX + "metadata.contact.givenname";
+  public static final String CONFIG_PROPS_METADATA_CONTACT_SURNAME =
+      CONFIG_PROPS_PREFIX + "metadata.contact.surname";
+  public static final String CONFIG_PROPS_METADATA_CONTACT_EMAIL =
+      CONFIG_PROPS_PREFIX + "metadata.contact.email";
+  public static final String CONFIG_PROPS_METADATA_ORGANISATION_NAME =
+      CONFIG_PROPS_PREFIX + "metadata.organisation.name";
+  public static final String CONFIG_PROPS_METADATA_ORGANISATION_FRIENDLYNAME =
+      CONFIG_PROPS_PREFIX + "metadata.organisation.friendyname";
+  public static final String CONFIG_PROPS_METADATA_ORGANISATION_URL =
+      CONFIG_PROPS_PREFIX + "metadata.organisation.url";
+
+  public static final String CONFIG_PROPS_APPSPECIFIC_EIDAS_NODE_URL = "auth.eidas.node.entityId";
+
+  public static final String CONFIG_PROPS_SEMPER_MANDATES_ACTIVE = CONFIG_PROPS_PREFIX
+      + "semper.mandates.active";
+  public static final String CONFIG_PROPS_SEMPER_MANDATES_MS_PROXY_LIST = CONFIG_PROPS_PREFIX
+      + "semper.msproxy.list";
+
+  public static final String CONFIG_DEFAULT_LOA_EIDAS_LEVEL = EaafConstants.EIDAS_LOA_HIGH;
+
+  @Deprecated
+  public static final List<Triple<String, String, Boolean>> DEFAULT_REQUIRED_PVP_ATTRIBUTES_WITHOUT_EID =
+      Collections.unmodifiableList(new ArrayList<Triple<String, String, Boolean>>() {
+        private static final long serialVersionUID = 1L;
+        {
+          // add PVP Version attribute
+          add(Triple.newInstance(PvpAttributeDefinitions.PVP_VERSION_NAME,
+              PvpAttributeDefinitions.PVP_VERSION_FRIENDLY_NAME, true));
+
+          // request entity information
+          add(Triple.newInstance(PvpAttributeDefinitions.EID_SECTOR_FOR_IDENTIFIER_NAME,
+              PvpAttributeDefinitions.EID_SECTOR_FOR_IDENTIFIER_FRIENDLY_NAME, false));
+          add(Triple.newInstance(PvpAttributeDefinitions.EID_CITIZEN_EIDAS_QAA_LEVEL_NAME,
+              PvpAttributeDefinitions.EID_CITIZEN_EIDAS_QAA_LEVEL_FRIENDLY_NAME, true));
+          add(Triple.newInstance(PvpAttributeDefinitions.EID_ISSUING_NATION_NAME,
+              PvpAttributeDefinitions.EID_ISSUING_NATION_FRIENDLY_NAME, true));
+
+          // entity eID information
+          add(Triple.newInstance(AhExtendedPvpAttributeDefinitions.EID_EIDBIND_NAME,
+              AhExtendedPvpAttributeDefinitions.EID_EIDBIND_FRIENDLY_NAME, false));
+          add(Triple.newInstance(AhExtendedPvpAttributeDefinitions.EID_AUTHBLOCK_SIGNED_NAME,
+              AhExtendedPvpAttributeDefinitions.EID_AUTHBLOCK_SIGNED_FRIENDLY_NAME, false));
+
+          // Deprecated information
+          add(Triple.newInstance(PvpAttributeDefinitions.GIVEN_NAME_NAME,
+              PvpAttributeDefinitions.GIVEN_NAME_FRIENDLY_NAME, false));
+          add(Triple.newInstance(PvpAttributeDefinitions.PRINCIPAL_NAME_NAME,
+              PvpAttributeDefinitions.PRINCIPAL_NAME_FRIENDLY_NAME, false));
+          add(Triple.newInstance(PvpAttributeDefinitions.BIRTHDATE_NAME,
+              PvpAttributeDefinitions.BIRTHDATE_FRIENDLY_NAME, false));
+          add(Triple.newInstance(PvpAttributeDefinitions.BPK_NAME, PvpAttributeDefinitions.BPK_FRIENDLY_NAME,
+              false));
+          add(Triple.newInstance(PvpAttributeDefinitions.EID_IDENTITY_LINK_NAME,
+              PvpAttributeDefinitions.EID_IDENTITY_LINK_FRIENDLY_NAME, false));
+
+          //request pII transactionId from MS-Connector
+          add(Triple.newInstance(ExtendedPvpAttributeDefinitions.EID_PII_TRANSACTION_ID_NAME,
+              ExtendedPvpAttributeDefinitions.EID_PII_TRANSACTION_ID_FRIENDLY_NAME, false));
+
+        }
+      });
+
+  public static final List<Triple<String, String, Boolean>> DEFAULT_REQUIRED_PVP_ATTRIBUTES =
+      Collections.unmodifiableList(new ArrayList<Triple<String, String, Boolean>>() {
+        private static final long serialVersionUID = 1L;
+        {
+          // add PVP Version attribute
+          add(Triple.newInstance(PvpAttributeDefinitions.PVP_VERSION_NAME,
+              PvpAttributeDefinitions.PVP_VERSION_FRIENDLY_NAME, true));
+
+          // entity metadata information
+          add(Triple.newInstance(PvpAttributeDefinitions.EID_CITIZEN_EIDAS_QAA_LEVEL_NAME,
+              PvpAttributeDefinitions.EID_CITIZEN_EIDAS_QAA_LEVEL_FRIENDLY_NAME, true));
+          add(Triple.newInstance(PvpAttributeDefinitions.EID_ISSUING_NATION_NAME,
+              PvpAttributeDefinitions.EID_ISSUING_NATION_FRIENDLY_NAME, true));
+
+          // entity eID information
+          add(Triple.newInstance(AhExtendedPvpAttributeDefinitions.EID_EIDBIND_NAME,
+              AhExtendedPvpAttributeDefinitions.EID_EIDBIND_FRIENDLY_NAME, true));
+          add(Triple.newInstance(AhExtendedPvpAttributeDefinitions.EID_AUTHBLOCK_SIGNED_NAME,
+              AhExtendedPvpAttributeDefinitions.EID_AUTHBLOCK_SIGNED_FRIENDLY_NAME, true));
+
+          //request pII transactionId from MS-Connector
+          add(Triple.newInstance(ExtendedPvpAttributeDefinitions.EID_PII_TRANSACTION_ID_NAME,
+              ExtendedPvpAttributeDefinitions.EID_PII_TRANSACTION_ID_FRIENDLY_NAME, false));
+
+        }
+      });
+
+  public static final List<String> DEFAULT_REQUIRED_PVP_ATTRIBUTE_NAMES =
+      Collections.unmodifiableList(new ArrayList<String>() {
+        private static final long serialVersionUID = 1L;
+        {
+          for (final Triple<String, String, Boolean> el : DEFAULT_REQUIRED_PVP_ATTRIBUTES) {
+            add(el.getFirst());
+          }
+        }
+      });
+
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/mobilesig/EidasCentralAuthCredentialProvider.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/mobilesig/EidasCentralAuthCredentialProvider.java
new file mode 100644
index 00000000..13c84bc5
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/mobilesig/EidasCentralAuthCredentialProvider.java
@@ -0,0 +1,130 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.mobilesig;
+
+import at.gv.egiz.eaaf.core.api.idp.IConfiguration;
+import at.gv.egiz.eaaf.core.exceptions.EaafConfigurationException;
+import at.gv.egiz.eaaf.core.impl.credential.KeyStoreConfiguration;
+import at.gv.egiz.eaaf.core.impl.credential.KeyStoreConfiguration.KeyStoreType;
+import at.gv.egiz.eaaf.modules.pvp2.impl.utils.AbstractCredentialProvider;
+
+import org.springframework.beans.factory.annotation.Autowired;
+
+/**
+ * Credential provider for eIDAS PVP S-Profile client.
+ *
+ * @author tlenz
+ *
+ */
+public class EidasCentralAuthCredentialProvider extends AbstractCredentialProvider {
+
+  @Autowired
+  IConfiguration authConfig;
+
+  private static final String FRIENDLYNAME = "eIDAS centrial authentication";
+
+  @Override
+  public KeyStoreConfiguration getBasicKeyStoreConfig() throws EaafConfigurationException {
+    final KeyStoreConfiguration keyStoreConfig = new KeyStoreConfiguration();
+    keyStoreConfig.setFriendlyName(FRIENDLYNAME);
+    keyStoreConfig.setKeyStoreType(
+        authConfig.getBasicConfiguration(EidasCentralAuthConstants.CONFIG_PROPS_KEYSTORE_TYPE,
+            KeyStoreType.PKCS12.getKeyStoreType()));
+    keyStoreConfig.setKeyStoreName(
+        authConfig.getBasicConfiguration(EidasCentralAuthConstants.CONFIG_PROPS_KEYSTORE_NAME));
+    keyStoreConfig.setSoftKeyStoreFilePath(getKeyStoreFilePath());
+    keyStoreConfig.setSoftKeyStorePassword(
+        authConfig.getBasicConfiguration(EidasCentralAuthConstants.CONFIG_PROPS_KEYSTOREPASSWORD));
+
+    return keyStoreConfig;
+
+  }
+
+  private String getKeyStoreFilePath() throws EaafConfigurationException {
+    final String path = authConfig.getBasicConfiguration(
+        EidasCentralAuthConstants.CONFIG_PROPS_KEYSTORE_PATH);
+    if (path == null) {
+      throw new EaafConfigurationException("module.eidasauth.00",
+          new Object[] { EidasCentralAuthConstants.CONFIG_PROPS_KEYSTORE_PATH });
+
+    }
+    return path;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.signer.AbstractCredentialProvider#
+   * getMetadataKeyAlias()
+   */
+  @Override
+  public String getMetadataKeyAlias() {
+    return authConfig.getBasicConfiguration(
+        EidasCentralAuthConstants.CONFIG_PROPS_SIGN_METADATA_ALIAS);
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.signer.AbstractCredentialProvider#
+   * getMetadataKeyPassword()
+   */
+  @Override
+  public String getMetadataKeyPassword() {
+    return authConfig.getBasicConfiguration(
+        EidasCentralAuthConstants.CONFIG_PROPS_SIGN_METADATA_KEY_PASSWORD);
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.signer.AbstractCredentialProvider#
+   * getSignatureKeyAlias()
+   */
+  @Override
+  public String getSignatureKeyAlias() {
+    return authConfig.getBasicConfiguration(
+        EidasCentralAuthConstants.CONFIG_PROPS_SIGN_SIGNING_ALIAS);
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.signer.AbstractCredentialProvider#
+   * getSignatureKeyPassword()
+   */
+  @Override
+  public String getSignatureKeyPassword() {
+    return authConfig.getBasicConfiguration(
+        EidasCentralAuthConstants.CONFIG_PROPS_SIGN_SIGNING_KEY_PASSWORD);
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.signer.AbstractCredentialProvider#
+   * getEncryptionKeyAlias()
+   */
+  @Override
+  public String getEncryptionKeyAlias() {
+    return authConfig.getBasicConfiguration(
+        EidasCentralAuthConstants.CONFIG_PROPS_ENCRYPTION_ALIAS);
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.signer.AbstractCredentialProvider#
+   * getEncryptionKeyPassword()
+   */
+  @Override
+  public String getEncryptionKeyPassword() {
+    return authConfig.getBasicConfiguration(
+        EidasCentralAuthConstants.CONFIG_PROPS_ENCRYPTION_KEY_PASSWORD);
+  }
+
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/mobilesig/EidasCentralAuthMetadataConfiguration.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/mobilesig/EidasCentralAuthMetadataConfiguration.java
new file mode 100644
index 00000000..ca71807f
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/mobilesig/EidasCentralAuthMetadataConfiguration.java
@@ -0,0 +1,471 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.mobilesig;
+
+
+import java.util.ArrayList;
+import java.util.Arrays;
+import java.util.Collection;
+import java.util.HashMap;
+import java.util.List;
+import java.util.Map;
+
+import at.gv.egiz.eaaf.core.exceptions.EaafException;
+import at.gv.egiz.eaaf.core.impl.data.Pair;
+import at.gv.egiz.eaaf.core.impl.data.Triple;
+import at.gv.egiz.eaaf.modules.pvp2.api.IPvp2BasicConfiguration;
+import at.gv.egiz.eaaf.modules.pvp2.api.credential.EaafX509Credential;
+import at.gv.egiz.eaaf.modules.pvp2.api.metadata.IPvpMetadataBuilderConfiguration;
+import at.gv.egiz.eaaf.modules.pvp2.exception.CredentialsNotAvailableException;
+import at.gv.egiz.eaaf.modules.pvp2.impl.builder.PvpAttributeBuilder;
+
+import org.opensaml.saml.saml2.core.Attribute;
+import org.opensaml.saml.saml2.core.NameIDType;
+import org.opensaml.saml.saml2.metadata.ContactPerson;
+import org.opensaml.saml.saml2.metadata.Organization;
+import org.opensaml.saml.saml2.metadata.RequestedAttribute;
+import org.opensaml.security.credential.Credential;
+
+import lombok.extern.slf4j.Slf4j;
+
+/**
+ * Configuration object to generate PVP S-Profile metadata for SAML2 client.
+ *
+ * @author tlenz
+ *
+ */
+@Slf4j
+public class EidasCentralAuthMetadataConfiguration implements IPvpMetadataBuilderConfiguration {
+
+  private Collection<RequestedAttribute> additionalAttributes = null;
+
+  private final String authUrl;
+  private final EidasCentralAuthCredentialProvider credentialProvider;
+  private final IPvp2BasicConfiguration pvpConfiguration;
+
+  /**
+   * Configuration object to create PVP2 S-Profile metadata information.
+   *
+   * @param authUrl            Public URL prefix of the application
+   * @param credentialProvider Credentials used by PVP2 S-Profile end-point
+   * @param pvpConfiguration   Basic PVP2 S-Profile end-point configuration
+   */
+  public EidasCentralAuthMetadataConfiguration(String authUrl,
+                                               EidasCentralAuthCredentialProvider credentialProvider,
+                                               IPvp2BasicConfiguration pvpConfiguration) {
+    this.authUrl = authUrl;
+    this.credentialProvider = credentialProvider;
+    this.pvpConfiguration = pvpConfiguration;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
+   * getMetadataValidUntil()
+   */
+  @Override
+  public int getMetadataValidUntil() {
+    return EidasCentralAuthConstants.METADATA_VALIDUNTIL_IN_HOURS;
+
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
+   * buildEntitiesDescriptorAsRootElement()
+   */
+  @Override
+  public boolean buildEntitiesDescriptorAsRootElement() {
+    return false;
+
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
+   * buildIDPSSODescriptor()
+   */
+  @Override
+  public boolean buildIdpSsoDescriptor() {
+    return false;
+
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
+   * buildSPSSODescriptor()
+   */
+  @Override
+  public boolean buildSpSsoDescriptor() {
+    return true;
+
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
+   * getEntityIDPostfix()
+   */
+  @Override
+  public String getEntityID() {
+    return authUrl + EidasCentralAuthConstants.ENDPOINT_METADATA;
+
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
+   * getEntityFriendlyName()
+   */
+  @Override
+  public String getEntityFriendlyName() {
+    return null;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
+   * getContactPersonInformation()
+   */
+  @Override
+  public List<ContactPerson> getContactPersonInformation() {
+    try {
+      return pvpConfiguration.getIdpContacts();
+
+    } catch (final EaafException e) {
+      log.warn("Can not load Metadata entry: Contect Person", e);
+      return null;
+
+    }
+
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
+   * getOrgansiationInformation()
+   */
+  @Override
+  public Organization getOrgansiationInformation() {
+    try {
+      return pvpConfiguration.getIdpOrganisation();
+
+    } catch (final EaafException e) {
+      log.warn("Can not load Metadata entry: Organisation", e);
+      return null;
+
+    }
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
+   * getMetadataSigningCredentials()
+   */
+  @Override
+  public EaafX509Credential getMetadataSigningCredentials() throws CredentialsNotAvailableException {
+    return credentialProvider.getMetaDataSigningCredential();
+
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
+   * getRequestorResponseSigningCredentials()
+   */
+  @Override
+  public Credential getRequestorResponseSigningCredentials() throws CredentialsNotAvailableException {
+    return credentialProvider.getMessageSigningCredential();
+
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
+   * getEncryptionCredentials()
+   */
+  @Override
+  public Credential getEncryptionCredentials() throws CredentialsNotAvailableException {
+    return credentialProvider.getMessageEncryptionCredential();
+
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
+   * getIDPWebSSOPostBindingURL()
+   */
+  @Override
+  public String getIdpWebSsoPostBindingUrl() {
+    return null;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
+   * getIDPWebSSORedirectBindingURL()
+   */
+  @Override
+  public String getIdpWebSsoRedirectBindingUrl() {
+    return null;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
+   * getIDPSLOPostBindingURL()
+   */
+  @Override
+  public String getIdpSloPostBindingUrl() {
+    return null;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
+   * getIDPSLORedirectBindingURL()
+   */
+  @Override
+  public String getIdpSloRedirectBindingUrl() {
+    return null;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
+   * getSPAssertionConsumerServicePostBindingURL()
+   */
+  @Override
+  public String getSpAssertionConsumerServicePostBindingUrl() {
+    return authUrl + EidasCentralAuthConstants.ENDPOINT_POST;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
+   * getSPAssertionConsumerServiceRedirectBindingURL()
+   */
+  @Override
+  public String getSpAssertionConsumerServiceRedirectBindingUrl() {
+    return authUrl + EidasCentralAuthConstants.ENDPOINT_REDIRECT;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
+   * getSPSLOPostBindingURL()
+   */
+  @Override
+  public String getSpSloPostBindingUrl() {
+    return null;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
+   * getSPSLORedirectBindingURL()
+   */
+  @Override
+  public String getSpSloRedirectBindingUrl() {
+    return null;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
+   * getSPSLOSOAPBindingURL()
+   */
+  @Override
+  public String getSpSloSoapBindingUrl() {
+    return null;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
+   * getIDPPossibleAttributes()
+   */
+  @Override
+  public List<Attribute> getIdpPossibleAttributes() {
+    return null;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
+   * getIDPPossibleNameITTypes()
+   */
+  @Override
+  public List<String> getIdpPossibleNameIdTypes() {
+    return null;
+  }
+
+
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
+   * getSPRequiredAttributes()
+   */
+  @Override
+  public Collection<RequestedAttribute> getSpRequiredAttributes() {
+    final Map<String, RequestedAttribute> requestedAttributes = new HashMap<>();
+
+    if (pvpConfiguration.getBasicConfiguration().getBasicConfigurationBoolean(
+        AuthHandlerConstants.PROP_CONFIG_LEGACY_ALLOW, false)) {
+      log.trace("Build required attributes for legacy operaton ... ");
+      injectDefinedAttributes(requestedAttributes,
+          EidasCentralAuthConstants.DEFAULT_REQUIRED_PVP_ATTRIBUTES_WITHOUT_EID);
+
+    } else {
+      log.trace("Build required attributes for E-ID operaton ... ");
+      injectDefinedAttributes(requestedAttributes,
+          EidasCentralAuthConstants.DEFAULT_REQUIRED_PVP_ATTRIBUTES);
+
+    }
+
+    if (additionalAttributes != null) {
+      log.trace("Add additional PVP attributes into metadata ... ");
+      for (final RequestedAttribute el : additionalAttributes) {
+        if (requestedAttributes.containsKey(el.getName())) {
+          log.debug("Attribute " + el.getName()
+              + " is already added by default configuration. Overwrite it by user configuration");
+        }
+
+        requestedAttributes.put(el.getName(), el);
+
+      }
+    }
+
+    return requestedAttributes.values();
+
+  }
+
+
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
+   * getSPAllowedNameITTypes()
+   */
+  @Override
+  public List<String> getSpAllowedNameIdTypes() {
+    return Arrays.asList(NameIDType.PERSISTENT);
+
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
+   * IPVPMetadataBuilderConfiguration#getSPNameForLogging()
+   */
+  @Override
+  public String getSpNameForLogging() {
+    return EidasCentralAuthConstants.MODULE_NAME_FOR_LOGGING;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
+   * IPVPMetadataBuilderConfiguration#wantAssertionSigned()
+   */
+  @Override
+  public boolean wantAssertionSigned() {
+    return false;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
+   * IPVPMetadataBuilderConfiguration#wantAuthnRequestSigned()
+   */
+  @Override
+  public boolean wantAuthnRequestSigned() {
+    return true;
+  }
+
+  /**
+   * Add additonal PVP attributes that are required by this deployment.
+   *
+   * @param additionalAttr List of PVP attribute name and isRequired flag
+   */
+  public void setAdditionalRequiredAttributes(List<Pair<String, Boolean>> additionalAttr) {
+    if (additionalAttr != null && !additionalAttr.isEmpty()) {
+      additionalAttributes = new ArrayList<>();
+      for (final Pair<String, Boolean> el : additionalAttr) {
+        final Attribute attributBuilder = PvpAttributeBuilder.buildEmptyAttribute(el.getFirst());
+        if (attributBuilder != null) {
+          additionalAttributes.add(
+              PvpAttributeBuilder.buildReqAttribute(
+                  attributBuilder.getName(),
+                  attributBuilder.getFriendlyName(),
+                  el.getSecond()));
+
+        } else {
+          log.info("NO PVP attribute with name: " + el.getFirst());
+        }
+
+      }
+    }
+  }
+
+  private void injectDefinedAttributes(Map<String, RequestedAttribute> requestedAttributes,
+                                       List<Triple<String, String, Boolean>> attributes) {
+    for (final Triple<String, String, Boolean> el : attributes) {
+      requestedAttributes.put(el.getFirst(), PvpAttributeBuilder.buildReqAttribute(el.getFirst(), el
+          .getSecond(), el.getThird()));
+
+    }
+  }
+
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/mobilesig/EidasCentralAuthMetadataController.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/mobilesig/EidasCentralAuthMetadataController.java
new file mode 100644
index 00000000..90e1e674
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/mobilesig/EidasCentralAuthMetadataController.java
@@ -0,0 +1,149 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.mobilesig;
+
+
+import java.io.IOException;
+import java.net.MalformedURLException;
+import java.net.URL;
+import java.util.ArrayList;
+import java.util.List;
+import java.util.Map;
+
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+
+import at.gv.egiz.eaaf.core.exceptions.EaafAuthenticationException;
+import at.gv.egiz.eaaf.core.exceptions.EaafException;
+import at.gv.egiz.eaaf.core.impl.data.Pair;
+import at.gv.egiz.eaaf.core.impl.http.HttpUtils;
+import at.gv.egiz.eaaf.core.impl.idp.controller.AbstractController;
+import at.gv.egiz.eaaf.core.impl.utils.KeyValueUtils;
+import at.gv.egiz.eaaf.modules.pvp2.api.IPvp2BasicConfiguration;
+import at.gv.egiz.eaaf.modules.pvp2.impl.builder.PvpMetadataBuilder;
+
+import org.apache.commons.lang3.StringUtils;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.stereotype.Controller;
+import org.springframework.web.bind.annotation.RequestMapping;
+import org.springframework.web.bind.annotation.RequestMethod;
+
+import com.google.common.net.MediaType;
+import lombok.extern.slf4j.Slf4j;
+
+/**
+ * Controller that generates SAML2 metadata for eIDAS authentication client.
+ *
+ * @author tlenz
+ *
+ */
+@Slf4j
+@Controller
+public class EidasCentralAuthMetadataController extends AbstractController {
+
+  private static final String ERROR_CODE_INTERNAL_00 = "eaaf.core.00";
+
+  @Autowired
+  PvpMetadataBuilder metadatabuilder;
+  @Autowired
+  EidasCentralAuthCredentialProvider credentialProvider;
+  @Autowired
+  IPvp2BasicConfiguration pvpConfiguration;
+
+  /**
+   * Default construction with logging.
+   *
+   */
+  public EidasCentralAuthMetadataController() {
+    super();
+    log.debug("Registering servlet " + getClass().getName()
+        + " with mappings '" + EidasCentralAuthConstants.ENDPOINT_METADATA
+        + "'.");
+
+  }
+
+  /**
+   * End-point that produce PVP2 metadata for eIDAS authentication client.
+   *
+   * @param req  http Request
+   * @param resp http Response
+   * @throws IOException   In case of an I/O error
+   * @throws EaafException In case of a metadata generation error
+   */
+  @RequestMapping(value = EidasCentralAuthConstants.ENDPOINT_METADATA,
+      method = { RequestMethod.GET })
+  public void getSpMetadata(HttpServletRequest req, HttpServletResponse resp) throws IOException,
+      EaafException {
+    // check PublicURL prefix
+    try {
+      final String authUrl = getAuthUrlFromHttpContext(req);
+
+      // initialize metadata builder configuration
+      final EidasCentralAuthMetadataConfiguration metadataConfig =
+          new EidasCentralAuthMetadataConfiguration(authUrl, credentialProvider, pvpConfiguration);
+      metadataConfig.setAdditionalRequiredAttributes(getAdditonalRequiredAttributes());
+
+      // build metadata
+      final String xmlMetadata = metadatabuilder.buildPvpMetadata(metadataConfig);
+
+      // write response
+      final byte[] content = xmlMetadata.getBytes("UTF-8");
+      resp.setStatus(HttpServletResponse.SC_OK);
+      resp.setContentLength(content.length);
+      resp.setContentType(MediaType.XML_UTF_8.toString());
+      resp.getOutputStream().write(content);
+
+    } catch (final Exception e) {
+      log.warn("Build federated-authentication PVP metadata FAILED.", e);
+      protAuthService.handleErrorNoRedirect(e, req, resp, false);
+
+    }
+
+  }
+
+  private String getAuthUrlFromHttpContext(HttpServletRequest req) throws EaafException {
+    // check if End-Point is valid
+    final String authUrlString = HttpUtils.extractAuthUrlFromRequest(req);
+    URL authReqUrl;
+    try {
+      authReqUrl = new URL(authUrlString);
+
+    } catch (final MalformedURLException e) {
+      log.warn("Requested URL: {} is not a valid URL.", authUrlString);
+      throw new EaafAuthenticationException(ERROR_CODE_INTERNAL_00, new Object[] { authUrlString }, e);
+
+    }
+
+    final String idpAuthUrl = authConfig.validateIdpUrl(authReqUrl);
+    if (idpAuthUrl == null) {
+      log.warn("Requested URL: {} is NOT found in configuration.", authReqUrl);
+      throw new EaafAuthenticationException(ERROR_CODE_INTERNAL_00, new Object[] { authUrlString });
+
+    }
+
+    return idpAuthUrl;
+  }
+
+  private List<Pair<String, Boolean>> getAdditonalRequiredAttributes() {
+    final List<Pair<String, Boolean>> result = new ArrayList<>();
+
+    // load attributes from configuration
+    final Map<String, String> addReqAttributes = authConfig.getBasicConfigurationWithPrefix(
+        EidasCentralAuthConstants.CONFIG_PROPS_REQUIRED_PVP_ATTRIBUTES_LIST);
+    for (final String el : addReqAttributes.values()) {
+      if (StringUtils.isNotEmpty(el)) {
+        log.trace("Parse additional attr. definition: " + el);
+        final List<String> attr = KeyValueUtils.getListOfCsvValues(el.trim());
+        if (attr.size() == 2) {
+          result.add(Pair.newInstance(attr.get(0), Boolean.parseBoolean(attr.get(1))));
+
+        } else {
+          log.info("IGNORE additional attr. definition: " + el
+              + " Reason: Format not valid");
+        }
+      }
+    }
+
+    return result;
+
+  }
+
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/mobilesig/EidasCentralAuthMetadataProvider.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/mobilesig/EidasCentralAuthMetadataProvider.java
new file mode 100644
index 00000000..b920e789
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/mobilesig/EidasCentralAuthMetadataProvider.java
@@ -0,0 +1,169 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.mobilesig;
+
+import java.io.IOException;
+import java.security.KeyStore;
+import java.security.Provider;
+import java.security.cert.CertificateException;
+import java.text.MessageFormat;
+import java.util.ArrayList;
+import java.util.Collections;
+import java.util.List;
+
+import javax.annotation.PostConstruct;
+
+import at.gv.egiz.eaaf.core.api.idp.IConfiguration;
+import at.gv.egiz.eaaf.core.exceptions.EaafConfigurationException;
+import at.gv.egiz.eaaf.core.exceptions.EaafException;
+import at.gv.egiz.eaaf.core.impl.credential.EaafKeyStoreFactory;
+import at.gv.egiz.eaaf.core.impl.credential.KeyStoreConfiguration;
+import at.gv.egiz.eaaf.core.impl.credential.KeyStoreConfiguration.KeyStoreType;
+import at.gv.egiz.eaaf.core.impl.data.Pair;
+import at.gv.egiz.eaaf.core.impl.http.IHttpClientFactory;
+import at.gv.egiz.eaaf.modules.pvp2.exception.Pvp2MetadataException;
+import at.gv.egiz.eaaf.modules.pvp2.impl.metadata.AbstractChainingMetadataProvider;
+import at.gv.egiz.eaaf.modules.pvp2.impl.metadata.PvpMetadataResolverFactory;
+import at.gv.egiz.eaaf.modules.pvp2.impl.validation.metadata.SchemaValidationFilter;
+import at.gv.egiz.eaaf.modules.pvp2.impl.validation.metadata.SimpleMetadataSignatureVerificationFilter;
+
+import org.apache.commons.lang3.StringUtils;
+import org.opensaml.saml.metadata.resolver.MetadataResolver;
+import org.opensaml.saml.metadata.resolver.filter.MetadataFilter;
+import org.opensaml.saml.metadata.resolver.filter.MetadataFilterChain;
+import org.springframework.beans.factory.annotation.Autowired;
+
+import lombok.extern.slf4j.Slf4j;
+
+/**
+ * SAML2 metadata-provider implementation for eIDAS client.
+ *
+ * @author tlenz
+ *
+ */
+@Slf4j
+public class EidasCentralAuthMetadataProvider extends AbstractChainingMetadataProvider {
+
+  private static final String FRIENDLYNAME_METADATA_TRUSTSTORE = "'eIDAS_client metadata truststore'";
+  private static final String PROVIDER_ID_PATTERN = "eIDAS resolver: {0}";
+  public static final String PROVIDER_ID = "'eIDAS_client metadata provider'";
+
+  @Autowired
+  private IConfiguration basicConfig;
+
+  @Autowired
+  private PvpMetadataResolverFactory metadataProviderFactory;
+  @Autowired
+  private IHttpClientFactory httpClientFactory;
+
+  @Autowired
+  private EaafKeyStoreFactory keyStoreFactory;
+
+  private Pair<KeyStore, Provider> metadataSigningTrustStore;
+
+  @Override
+  protected String getMetadataUrl(String entityId) throws EaafConfigurationException {
+    log.trace("eIDAS Auth. uses SAML2 well-known location approach. EntityId is Metadata-URL");
+    return entityId;
+
+  }
+
+  @Override
+  protected MetadataResolver createNewMetadataProvider(String entityId) throws EaafConfigurationException,
+      IOException, CertificateException {
+    final List<MetadataFilter> filterList = new ArrayList<>();
+    filterList.add(new SchemaValidationFilter(true));
+    filterList.add(new SimpleMetadataSignatureVerificationFilter(
+        metadataSigningTrustStore.getFirst(), entityId));
+
+    final MetadataFilterChain filter = new MetadataFilterChain();
+    filter.setFilters(filterList);
+
+    try {
+      return metadataProviderFactory.createMetadataProvider(getMetadataUrl(entityId),
+          filter,
+          MessageFormat.format(PROVIDER_ID_PATTERN, entityId),
+          httpClientFactory.getHttpClient());
+
+    } catch (final Pvp2MetadataException e) {
+      log.info("Can NOT build metadata provider for entityId: {}", entityId);
+      throw new EaafConfigurationException("module.eidasauth.04",
+          new Object[] { entityId, e.getMessage() }, e);
+
+    }
+  }
+
+  @Override
+  protected List<String> getAllMetadataUrlsFromConfiguration() throws EaafConfigurationException {
+    return Collections.emptyList();
+
+  }
+
+  @Override
+  protected String getMetadataProviderId() {
+    return PROVIDER_ID;
+
+  }
+
+  @Override
+  public void runGarbageCollector() {
+    log.trace("Garbage collection is NOT supported by: {}", getId());
+  }
+
+  @Override
+  public void doDestroy() {
+    super.fullyDestroy();
+
+  }
+
+  @PostConstruct
+  private void initialize() throws EaafException {
+    // initialize truststore to validate metadata signing certificates
+    initializeTrustStore();
+
+    // load metadata with metadataURL, as backup
+    initializeFileSystemMetadata();
+
+  }
+
+  private void initializeFileSystemMetadata() {
+    try {
+      final String metadataUrl = basicConfig.getBasicConfiguration(
+          EidasCentralAuthConstants.CONFIG_PROPS_NODE_METADATAURL);
+      if (StringUtils.isNotEmpty(metadataUrl)) {
+        log.info("Use not recommended metadata-provider initialization!"
+            + " SAML2 'Well-Known-Location' is the preferred methode.");
+        log.info("Initialize 'ms-specific eIDAS node' metadata-provider with URL: {}", metadataUrl);
+
+        addMetadataResolverIntoChain(createNewMetadataProvider(metadataUrl));
+      }
+
+    } catch (final EaafConfigurationException | CertificateException | IOException e) {
+      log.warn("Can NOT inject static eIDAS Node metadata-soure.", e);
+      log.warn("eIDAS Node communication can be FAIL.");
+
+    }
+  }
+
+  private void initializeTrustStore() throws EaafException {
+    // set configuration
+    final KeyStoreConfiguration trustStoreConfig = new KeyStoreConfiguration();
+    trustStoreConfig.setFriendlyName(FRIENDLYNAME_METADATA_TRUSTSTORE);
+    trustStoreConfig.setKeyStoreType(basicConfig.getBasicConfiguration(
+        EidasCentralAuthConstants.CONFIG_PROPS_TRUSTSTORE_TYPE,
+        KeyStoreType.JKS.getKeyStoreType()));
+    trustStoreConfig.setKeyStoreName(basicConfig.getBasicConfiguration(
+        EidasCentralAuthConstants.CONFIG_PROPS_TRUSTSTORE_NAME));
+    trustStoreConfig.setSoftKeyStoreFilePath(basicConfig.getBasicConfiguration(
+        EidasCentralAuthConstants.CONFIG_PROPS_TRUSTSTORE_PATH));
+    trustStoreConfig.setSoftKeyStorePassword(basicConfig.getBasicConfiguration(
+        EidasCentralAuthConstants.CONFIG_PROPS_TRUSTSTORE_PASSWORD));
+
+    // validate configuration
+    trustStoreConfig.validate();
+
+    // open new TrustStore
+    metadataSigningTrustStore = keyStoreFactory.buildNewKeyStore(trustStoreConfig);
+
+  }
+
+}
+
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/mobilesig/EidasCentralAuthRequestBuilderConfiguration.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/mobilesig/EidasCentralAuthRequestBuilderConfiguration.java
new file mode 100644
index 00000000..723654eb
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/mobilesig/EidasCentralAuthRequestBuilderConfiguration.java
@@ -0,0 +1,300 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.mobilesig;
+
+import java.util.List;
+
+import at.gv.egiz.eaaf.modules.pvp2.api.credential.EaafX509Credential;
+import at.gv.egiz.eaaf.modules.pvp2.api.reqattr.EaafRequestedAttribute;
+import at.gv.egiz.eaaf.modules.pvp2.sp.api.IPvpAuthnRequestBuilderConfiguruation;
+
+import org.opensaml.saml.saml2.core.AuthnContextComparisonTypeEnumeration;
+import org.opensaml.saml.saml2.core.NameIDType;
+import org.opensaml.saml.saml2.metadata.EntityDescriptor;
+import org.w3c.dom.Element;
+
+public class EidasCentralAuthRequestBuilderConfiguration implements IPvpAuthnRequestBuilderConfiguruation {
+
+  private boolean isPassive;
+  private String spEntityId;
+  private String qaaLevel;
+  private EntityDescriptor idpEntity;
+  private EaafX509Credential signCred;
+  private String scopeRequesterId;
+  private String providerName;
+  private List<EaafRequestedAttribute> requestedAttributes;
+  private String reqId;
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
+   * IPVPAuthnRequestBuilderConfiguruation#isPassivRequest()
+   */
+  @Override
+  public Boolean isPassivRequest() {
+    return this.isPassive;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
+   * IPVPAuthnRequestBuilderConfiguruation#getAssertionConsumerServiceId()
+   */
+  @Override
+  public Integer getAssertionConsumerServiceId() {
+    return 0;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
+   * IPVPAuthnRequestBuilderConfiguruation#getEntityID()
+   */
+  @Override
+  public String getSpEntityID() {
+    return this.spEntityId;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
+   * IPVPAuthnRequestBuilderConfiguruation#getNameIDPolicy()
+   */
+  @Override
+  public String getNameIdPolicyFormat() {
+    return NameIDType.PERSISTENT;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
+   * IPVPAuthnRequestBuilderConfiguruation#getNameIDPolicy()
+   */
+  @Override
+  public boolean getNameIdPolicyAllowCreation() {
+    return true;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
+   * IPVPAuthnRequestBuilderConfiguruation#getAuthnContextClassRef()
+   */
+  @Override
+  public String getAuthnContextClassRef() {
+    return this.qaaLevel;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
+   * IPVPAuthnRequestBuilderConfiguruation#getAuthnContextComparison()
+   */
+  @Override
+  public AuthnContextComparisonTypeEnumeration getAuthnContextComparison() {
+    return AuthnContextComparisonTypeEnumeration.MINIMUM;
+  }
+
+  /**
+   * Set isPassive flag in SAML2 request.
+   *
+   * @param isPassive the isPassive to set.
+   */
+  public void setPassive(boolean isPassive) {
+    this.isPassive = isPassive;
+  }
+
+  /**
+   * Set the requester EntityId.
+   *
+   * @param spEntityId EntityId of SP
+   */
+  public void setSpEntityID(String spEntityId) {
+    this.spEntityId = spEntityId;
+  }
+
+  /**
+   * Set required LoA.
+   *
+   * @param loa the LoA to set.
+   */
+  public void setRequestedLoA(String loa) {
+    qaaLevel = loa;
+  }
+
+  /**
+   * Set EntityId of IDP.
+   *
+   * @param idpEntity the idpEntity to set.
+   */
+  public void setIdpEntity(EntityDescriptor idpEntity) {
+    this.idpEntity = idpEntity;
+  }
+
+  /**
+   * Set message signing credentials.
+   *
+   * @param signCred the signCred to set.
+   */
+  public void setSignCred(EaafX509Credential signCred) {
+    this.signCred = signCred;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
+   * IPVPAuthnRequestBuilderConfiguruation#getAuthnRequestSigningCredential()
+   */
+  @Override
+  public EaafX509Credential getAuthnRequestSigningCredential() {
+    return this.signCred;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
+   * IPVPAuthnRequestBuilderConfiguruation#getIDPEntityDescriptor()
+   */
+  @Override
+  public EntityDescriptor getIdpEntityDescriptor() {
+    return this.idpEntity;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
+   * IPVPAuthnRequestBuilderConfiguruation#getSubjectNameID()
+   */
+  @Override
+  public String getSubjectNameID() {
+    return null;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
+   * IPVPAuthnRequestBuilderConfiguruation#getSPNameForLogging()
+   */
+  @Override
+  public String getSpNameForLogging() {
+    return EidasCentralAuthConstants.MODULE_NAME_FOR_LOGGING;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
+   * IPVPAuthnRequestBuilderConfiguruation#getSubjectNameIDFormat()
+   */
+  @Override
+  public String getSubjectNameIdFormat() {
+    return null;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
+   * IPVPAuthnRequestBuilderConfiguruation#getRequestID()
+   */
+  @Override
+  public String getRequestID() {
+    return this.reqId;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
+   * IPVPAuthnRequestBuilderConfiguruation#getSubjectNameIDQualifier()
+   */
+  @Override
+  public String getSubjectNameIdQualifier() {
+    return null;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
+   * IPVPAuthnRequestBuilderConfiguruation#getSubjectConformationMethode()
+   */
+  @Override
+  public String getSubjectConformationMethode() {
+    return null;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
+   * IPVPAuthnRequestBuilderConfiguruation#getSubjectConformationDate()
+   */
+  @Override
+  public Element getSubjectConformationDate() {
+    return null;
+  }
+
+  @Override
+  public List<EaafRequestedAttribute> getRequestedAttributes() {
+    return this.requestedAttributes;
+
+  }
+
+  @Override
+  public String getProviderName() {
+    return this.providerName;
+  }
+
+  @Override
+  public String getScopeRequesterId() {
+    return this.scopeRequesterId;
+  }
+
+  /**
+   * Set the entityId of the SP that requests the proxy for eIDAS authentication.
+   *
+   * @param scopeRequesterId RequestId in SAML2 Proxy extension
+   */
+  public void setScopeRequesterId(String scopeRequesterId) {
+    this.scopeRequesterId = scopeRequesterId;
+  }
+
+  /**
+   * Set a friendlyName for the SP that requests the proxy for eIDAS
+   * authentication.
+   *
+   * @param providerName SAML2 provider-name attribute-value
+   */
+  public void setProviderName(String providerName) {
+    this.providerName = providerName;
+  }
+
+  /**
+   * Set a Set of PVP attributes that a requested by using requested attributes.
+   *
+   * @param requestedAttributes Requested SAML2 attributes
+   */
+  public void setRequestedAttributes(List<EaafRequestedAttribute> requestedAttributes) {
+    this.requestedAttributes = requestedAttributes;
+  }
+
+  /**
+   * Set a RequestId for this Authn. Request.
+   *
+   * @param reqId SAML2 message requestId
+   */
+  public void setRequestId(String reqId) {
+    this.reqId = reqId;
+  }
+
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/mobilesig/IAhSpConfiguration.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/mobilesig/IAhSpConfiguration.java
new file mode 100644
index 00000000..d8e873c0
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/mobilesig/IAhSpConfiguration.java
@@ -0,0 +1,151 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.mobilesig;
+
+import java.util.List;
+
+import javax.annotation.Nonnull;
+import javax.annotation.Nullable;
+
+import at.gv.egiz.eaaf.core.api.idp.ISpConfiguration;
+import at.gv.egiz.eaaf.core.impl.data.Pair;
+
+public interface IAhSpConfiguration extends ISpConfiguration {
+
+
+  /**
+   * Flag if this Service Provider is enabled.
+   *
+   * @return true if the SP is enabled, otherwise false
+   */
+  boolean isEnabled();
+
+  /**
+   * Get unique identifier that is used in Application-Register from BM.I.
+   *
+   * <p>If no BM.I specific identifier is available then this method returns
+   * the same identifier as <code>getUniqueIdentifier()</code></p>
+   *
+   * @return unique identifier from BM.I AppReg, or generic uniqueId of no specific exists
+   */
+  String getUniqueApplicationRegisterIdentifier();
+
+  /**
+   * Flag that marks this Service-Provider as <i>public</i> or <i>private</i>.
+   *
+   * <p><b>Default:</b> If it is not set or has an unknown value, its <i>private</i> by default</p>
+   *
+   * @return <code>true</code> if it is from <i>public</i>, otherwise <code>false</code>
+   */
+  boolean isPublicServiceProvider();
+
+  /**
+   * Enable test identities for this Service Provider.
+   *
+   * @return true if test identities are allowed, otherwise false
+   */
+  boolean isTestCredentialEnabled();
+
+  /**
+   * Get a List of OID's that refine the set of allowed test identities.
+   *
+   * @return @link {@link List} of test-identity OID's
+   */
+  @Nullable
+  List<String> getTestCredentialOids();
+
+
+  /**
+   * Get a List of unique attribute URI's that are required by this SP.
+   *
+   * @return {@link List} of attribute URI's / parameter {@link Pair}s
+   */
+  List<Pair<String, String>> getRequiredAttributes();
+
+
+  /**
+   * Get the CountryCode for this service. <br>
+   * <br>
+   * <b>Default:</b> AT
+   *
+   * @return
+   */
+  String getCountryCode();
+
+  /**
+   * Set the CountryCode for this service. If not countryCode is set, AT is used as default.
+   *
+   * @param cc Service-Provider country-code
+   */
+  void setCountryCode(String cc);
+
+  /**
+   * Enable mandates for this service provider.
+   *
+   * @return <code>true</code> if mandates are enabled, otherwise <code>false</code>
+   */
+  boolean isMandateEnabled();
+
+  /**
+   * Enables multi-mandates for this service-provider.
+   *
+   * @return <code>true</code> if multi-mandates are enabled, otherwise <code>false</code>
+   */
+  boolean isMultiMandateEnabled();
+
+  /**
+   * Only mandates are allowed for this service provider.
+   *
+   * @return <code>true</code> if only mandates are allowed, otherwise <code>false</code>
+   */
+  boolean isOnlyMandateEnabled();
+
+  /**
+   * Get a {@link List} of mandate profiles that are supported by this Service provider.
+   *
+   * @return
+   */
+  @Nonnull List<String> getMandateProfiles();
+
+
+  /**
+   * eIDAS authentication allowed flag.
+   *
+   * @return <code>true</code> if eIDAS authentication is enabled, otherwise <code>false</code>
+   */
+  boolean isEidasEnabled();
+
+  /**
+   * Get a List of targets for additional bPKs that are required by this service provider.
+   *
+   * @return List of prefixed bPK targets
+   */
+  @Nonnull List<String> getAdditionalBpkTargets();
+
+  /**
+   * Get a list of foreign bPK targets that are required by this service provider.
+   *
+   * @return List of pairs with prefixed bPK targets as first element and VKZ as second element
+   */
+  @Nonnull List<Pair<String, String>> getAdditionalForeignBpkTargets();
+
+  /**
+   * Flag that indicates that service-provider as restricted or unrestricted.
+   *
+   * <p>A restricted service-provider can only used by test-identities that contains a
+   * valid application-restriction in User-Certificate Pinning</p>
+   *
+   * <p><b>Default:</b> true</p>
+   *
+   * @return <code>true</code> if it is restricted, otherwise <code>false</code>
+   */
+  boolean isRestrictedServiceProvider();
+
+
+  /**
+   * Defines the time in minutes how long the last VDA registration h@Override
+   ave passed as maximum.
+   *
+   * @return time in minutes
+   */
+  long lastVdaAuthenticationDelay();
+
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateMobilePhoneSignatureRequestTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateMobilePhoneSignatureRequestTask.java
index 736ac6e5..3f2ae1f2 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateMobilePhoneSignatureRequestTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateMobilePhoneSignatureRequestTask.java
@@ -23,15 +23,36 @@
 
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks;
 
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.mobilesig.EidasCentralAuthConstants;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.mobilesig.EidasCentralAuthCredentialProvider;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.mobilesig.EidasCentralAuthMetadataProvider;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.mobilesig.EidasCentralAuthRequestBuilderConfiguration;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.mobilesig.IAhSpConfiguration;
+import at.gv.egiz.eaaf.core.api.IRequest;
+import at.gv.egiz.eaaf.core.api.data.ExtendedPvpAttributeDefinitions;
+import at.gv.egiz.eaaf.core.api.data.PvpAttributeDefinitions;
 import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
+import at.gv.egiz.eaaf.core.exceptions.EaafConfigurationException;
 import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
 import at.gv.egiz.eaaf.core.impl.idp.auth.modules.AbstractAuthServletTask;
+import at.gv.egiz.eaaf.core.impl.utils.Random;
+import at.gv.egiz.eaaf.modules.pvp2.api.reqattr.EaafRequestedAttribute;
+import at.gv.egiz.eaaf.modules.pvp2.impl.builder.PvpAttributeBuilder;
+import at.gv.egiz.eaaf.modules.pvp2.impl.utils.Saml2Utils;
+import at.gv.egiz.eaaf.modules.pvp2.sp.impl.PvpAuthnRequestBuilder;
 import lombok.extern.slf4j.Slf4j;
+import net.shibboleth.utilities.java.support.security.SecureRandomIdentifierGenerationStrategy;
 import org.apache.commons.lang3.StringUtils;
+import org.opensaml.saml.saml2.core.Attribute;
+import org.opensaml.saml.saml2.metadata.EntityDescriptor;
+import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.stereotype.Component;
 
 import javax.servlet.http.HttpServletRequest;
 import javax.servlet.http.HttpServletResponse;
+import java.text.MessageFormat;
+import java.util.ArrayList;
+import java.util.List;
 
 /**
  * Task that searches ErnB and ZMR before adding person to SZR.
@@ -43,12 +64,31 @@ import javax.servlet.http.HttpServletResponse;
 public class GenerateMobilePhoneSignatureRequestTask extends AbstractAuthServletTask {
 
 
+  private static final String ERROR_CODE_02 = "module.eidasauth.02";
+
+  private static final String ERROR_MSG_1 =
+      "Requested 'ms-specific eIDAS node' {0} has no valid metadata or metadata is not found";
+
+  @Autowired
+  PvpAuthnRequestBuilder authnReqBuilder;
+  @Autowired
+  EidasCentralAuthCredentialProvider credential;
+  @Autowired
+  EidasCentralAuthMetadataProvider metadataService;
+  //  @Autowired
+  //  ITransactionStorage transactionStorage;
+
+
   @Override
   public void execute(ExecutionContext executionContext, HttpServletRequest request, HttpServletResponse response)
       throws TaskExecutionException {
     try {
       log.trace("Starting GenerateMobilePhoneSignatureRequestTask");
       //step 15a
+
+      //final IAhSpConfiguration spConfig = pendingReq.getServiceProviderConfiguration(
+      //    IAhSpConfiguration.class);
+
       // get entityID for ms-specific eIDAS node
       final String msNodeEntityID = "TODO";
 
@@ -57,6 +97,45 @@ public class GenerateMobilePhoneSignatureRequestTask extends AbstractAuthServlet
         throw new TaskExecutionException(pendingReq, "", null);
 
       }
+
+      // load IDP SAML2 entitydescriptor
+      final EntityDescriptor entityDesc = metadataService.getEntityDescriptor(msNodeEntityID);
+      if (entityDesc == null) {
+        throw new EaafConfigurationException(ERROR_CODE_02,
+            new Object[]{MessageFormat.format(ERROR_MSG_1, msNodeEntityID)});
+
+      }
+
+      // setup AuthnRequestBuilder configuration
+      final EidasCentralAuthRequestBuilderConfiguration authnReqConfig =
+          new EidasCentralAuthRequestBuilderConfiguration();
+      final SecureRandomIdentifierGenerationStrategy gen =
+          new SecureRandomIdentifierGenerationStrategy();
+      authnReqConfig.setRequestId(gen.generateIdentifier());
+      authnReqConfig.setIdpEntity(entityDesc);
+      authnReqConfig.setPassive(false);
+      authnReqConfig.setSignCred(credential.getMessageSigningCredential());
+      authnReqConfig.setSpEntityID(pendingReq.getAuthUrl() + EidasCentralAuthConstants.ENDPOINT_METADATA);
+      authnReqConfig.setRequestedLoA(authConfig.getBasicConfiguration(
+          EidasCentralAuthConstants.CONFIG_PROPS_REQUIRED_LOA,
+          EidasCentralAuthConstants.CONFIG_DEFAULT_LOA_EIDAS_LEVEL));
+
+      authnReqConfig.setScopeRequesterId(
+          pendingReq.getServiceProviderConfiguration(IAhSpConfiguration.class)
+              .getUniqueApplicationRegisterIdentifier());
+      authnReqConfig.setProviderName(pendingReq.getServiceProviderConfiguration().getFriendlyName());
+      authnReqConfig.setRequestedAttributes(buildRequestedAttributes(pendingReq));
+
+      /*build relayState for session synchronization, because SAML2 only allows RelayState with 80 characters
+       * but encrypted PendingRequestId is much longer.
+       */
+      String relayState = Random.nextProcessReferenceValue();
+      //      transactionStorage.put(relayState, pendingReq.getPendingRequestId(), -1);
+
+      // build and transmit AuthnRequest
+      authnReqBuilder.buildAuthnRequest(pendingReq, authnReqConfig, relayState, response);
+
+
       //MsEidasNodeConstants.ENDPOINT_PVP_POST
       //MsEidasNodeConstants.ENDPOINT_PVP_METADATA
 
@@ -67,4 +146,28 @@ public class GenerateMobilePhoneSignatureRequestTask extends AbstractAuthServlet
     }
   }
 
+  private List<EaafRequestedAttribute> buildRequestedAttributes(IRequest pendingReq) {
+    final List<EaafRequestedAttribute> attributes = new ArrayList<>();
+
+    //build TransactionId attribute
+    final Attribute attrTransId = PvpAttributeBuilder.buildEmptyAttribute(
+        ExtendedPvpAttributeDefinitions.EID_TRANSACTION_ID_NAME);
+    final EaafRequestedAttribute attrTransIdReqAttr = Saml2Utils.generateReqAuthnAttributeSimple(
+        attrTransId,
+        true,
+        pendingReq.getUniqueTransactionIdentifier());
+    attributes.add(attrTransIdReqAttr);
+
+    // build EID sector for identification attribute
+    final Attribute attr = PvpAttributeBuilder.buildEmptyAttribute(
+        PvpAttributeDefinitions.EID_SECTOR_FOR_IDENTIFIER_NAME);
+    final EaafRequestedAttribute bpkTargetReqAttr = Saml2Utils.generateReqAuthnAttributeSimple(
+        attr,
+        true,
+        pendingReq.getServiceProviderConfiguration().getAreaSpecificTargetIdentifier());
+    attributes.add(bpkTargetReqAttr);
+
+    return attributes;
+  }
+
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml
index d669835f..e1e3aedd 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml
@@ -133,4 +133,8 @@
   <bean id="ReceiveGuiAustrianResidenceResponseTask"
         class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.ReceiveGuiAustrianResidenceResponseTask"
         scope="prototype" />
+
+  <bean id="eidasCentralAuthCredentialProvider"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.mobilesig.EidasCentralAuthCredentialProvider" />
+
 </beans>
\ No newline at end of file
-- 
cgit v1.2.3


From cb42a3bce6a63f401750a77008ec69fe731365a1 Mon Sep 17 00:00:00 2001
From: Alexander Marsalek <amarsalek@iaik.tugraz.at>
Date: Thu, 28 Jan 2021 08:23:51 +0100
Subject: junit keystore and config

---
 .../modules/auth/eidas/v2/mobilesig/EidasCentralAuthConstants.java | 2 +-
 .../eidas/v2/mobilesig/EidasCentralAuthCredentialProvider.java     | 2 +-
 .../authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml | 7 +++++++
 3 files changed, 9 insertions(+), 2 deletions(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/mobilesig/EidasCentralAuthConstants.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/mobilesig/EidasCentralAuthConstants.java
index e4d520b4..ef7f667c 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/mobilesig/EidasCentralAuthConstants.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/mobilesig/EidasCentralAuthConstants.java
@@ -34,7 +34,7 @@ public class EidasCentralAuthConstants {
   public static final String CONFIG_PROPS_KEYSTORE_TYPE = CONFIG_PROPS_PREFIX + "keystore.type";
   public static final String CONFIG_PROPS_KEYSTORE_NAME = CONFIG_PROPS_PREFIX + "keystore.name";
   public static final String CONFIG_PROPS_KEYSTORE_PATH = CONFIG_PROPS_PREFIX + "keystore.path";
-  public static final String CONFIG_PROPS_KEYSTOREPASSWORD = CONFIG_PROPS_PREFIX + "keystore.password";
+  public static final String CONFIG_PROPS_KEYSTORE_PASSWORD = CONFIG_PROPS_PREFIX + "keystore.password";
   public static final String CONFIG_PROPS_SIGN_METADATA_KEY_PASSWORD = CONFIG_PROPS_PREFIX
       + "metadata.sign.password";
   public static final String CONFIG_PROPS_SIGN_METADATA_ALIAS = CONFIG_PROPS_PREFIX
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/mobilesig/EidasCentralAuthCredentialProvider.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/mobilesig/EidasCentralAuthCredentialProvider.java
index 13c84bc5..81ef82ed 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/mobilesig/EidasCentralAuthCredentialProvider.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/mobilesig/EidasCentralAuthCredentialProvider.java
@@ -32,7 +32,7 @@ public class EidasCentralAuthCredentialProvider extends AbstractCredentialProvid
         authConfig.getBasicConfiguration(EidasCentralAuthConstants.CONFIG_PROPS_KEYSTORE_NAME));
     keyStoreConfig.setSoftKeyStoreFilePath(getKeyStoreFilePath());
     keyStoreConfig.setSoftKeyStorePassword(
-        authConfig.getBasicConfiguration(EidasCentralAuthConstants.CONFIG_PROPS_KEYSTOREPASSWORD));
+        authConfig.getBasicConfiguration(EidasCentralAuthConstants.CONFIG_PROPS_KEYSTORE_PASSWORD));
 
     return keyStoreConfig;
 
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml
index e1e3aedd..dd0e1345 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml
@@ -137,4 +137,11 @@
   <bean id="eidasCentralAuthCredentialProvider"
         class="at.asitplus.eidas.specific.modules.auth.eidas.v2.mobilesig.EidasCentralAuthCredentialProvider" />
 
+  <bean id="eidasCentralAuthMetadataProvider"
+        class=" at.asitplus.eidas.specific.modules.auth.eidas.v2.mobilesig.EidasCentralAuthMetadataProvider" />
+
+  <bean id="eidasCentralAuthMetadataController"
+        class=" at.asitplus.eidas.specific.modules.auth.eidas.v2.mobilesig.EidasCentralAuthMetadataController" />
+
+
 </beans>
\ No newline at end of file
-- 
cgit v1.2.3


From 1791466bba8dc34971be3168ddcbf65b6cb2af98 Mon Sep 17 00:00:00 2001
From: Alexander Marsalek <amarsalek@iaik.tugraz.at>
Date: Thu, 28 Jan 2021 10:17:03 +0100
Subject: rename to IdAustriaClient

---
 .../AhExtendedPvpAttributeDefinitions.java         |  24 ++
 .../v2/idAustriaClient/AuthHandlerConstants.java   | 141 ++++++
 .../v2/idAustriaClient/IAhSpConfiguration.java     | 151 +++++++
 .../IdAustriaClientAuthConstants.java              | 166 ++++++++
 .../IdAustriaClientAuthCredentialProvider.java     | 130 ++++++
 .../IdAustriaClientAuthMetadataConfiguration.java  | 471 +++++++++++++++++++++
 .../IdAustriaClientAuthMetadataController.java     | 149 +++++++
 .../IdAustriaClientAuthMetadataProvider.java       | 169 ++++++++
 ...striaClientAuthRequestBuilderConfiguration.java | 300 +++++++++++++
 .../AhExtendedPvpAttributeDefinitions.java         |  24 --
 .../eidas/v2/mobilesig/AuthHandlerConstants.java   | 141 ------
 .../v2/mobilesig/EidasCentralAuthConstants.java    | 166 --------
 .../EidasCentralAuthCredentialProvider.java        | 130 ------
 .../EidasCentralAuthMetadataConfiguration.java     | 471 ---------------------
 .../EidasCentralAuthMetadataController.java        | 149 -------
 .../EidasCentralAuthMetadataProvider.java          | 169 --------
 ...idasCentralAuthRequestBuilderConfiguration.java | 300 -------------
 .../eidas/v2/mobilesig/IAhSpConfiguration.java     | 151 -------
 .../GenerateMobilePhoneSignatureRequestTask.java   |  24 +-
 .../src/main/resources/eidas_v2_auth.beans.xml     |   6 +-
 20 files changed, 1716 insertions(+), 1716 deletions(-)
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idAustriaClient/AhExtendedPvpAttributeDefinitions.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idAustriaClient/AuthHandlerConstants.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idAustriaClient/IAhSpConfiguration.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idAustriaClient/IdAustriaClientAuthConstants.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idAustriaClient/IdAustriaClientAuthCredentialProvider.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idAustriaClient/IdAustriaClientAuthMetadataConfiguration.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idAustriaClient/IdAustriaClientAuthMetadataController.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idAustriaClient/IdAustriaClientAuthMetadataProvider.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idAustriaClient/IdAustriaClientAuthRequestBuilderConfiguration.java
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/mobilesig/AhExtendedPvpAttributeDefinitions.java
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/mobilesig/AuthHandlerConstants.java
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/mobilesig/EidasCentralAuthConstants.java
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/mobilesig/EidasCentralAuthCredentialProvider.java
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/mobilesig/EidasCentralAuthMetadataConfiguration.java
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/mobilesig/EidasCentralAuthMetadataController.java
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/mobilesig/EidasCentralAuthMetadataProvider.java
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/mobilesig/EidasCentralAuthRequestBuilderConfiguration.java
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/mobilesig/IAhSpConfiguration.java

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idAustriaClient/AhExtendedPvpAttributeDefinitions.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idAustriaClient/AhExtendedPvpAttributeDefinitions.java
new file mode 100644
index 00000000..8dea6df3
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idAustriaClient/AhExtendedPvpAttributeDefinitions.java
@@ -0,0 +1,24 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.idAustriaClient;
+
+import at.gv.egiz.eaaf.core.api.data.ExtendedPvpAttributeDefinitions;
+
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+
+public class AhExtendedPvpAttributeDefinitions implements ExtendedPvpAttributeDefinitions {
+  private static final Logger log =
+      LoggerFactory.getLogger(AhExtendedPvpAttributeDefinitions.class);
+
+  private AhExtendedPvpAttributeDefinitions() {
+    log.trace("Instance class: {} for SonarQube",
+        AhExtendedPvpAttributeDefinitions.class.getName());
+
+  }
+
+  public static final String EID_BCBIND_NAME = "urn:eidgvat:attributes.bcbind";
+  public static final String EID_BCBIND_FRIENDLY_NAME = "bcBind";
+
+  public static final String EID_BINDING_PUBKEY_NAME = "urn:eidgvat:attributes.binding.pubkey";
+  public static final String EID_BINDING_PUBKEY_FRIENDLY_NAME = "BindingPubKey";
+
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idAustriaClient/AuthHandlerConstants.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idAustriaClient/AuthHandlerConstants.java
new file mode 100644
index 00000000..9c6929c2
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idAustriaClient/AuthHandlerConstants.java
@@ -0,0 +1,141 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.idAustriaClient;
+
+
+public class AuthHandlerConstants {
+
+  private AuthHandlerConstants() {
+
+  }
+
+  // TODO: maybe update to another target
+  public static final String DEFAULT_INTERNAL_BPK_TARGET = "urn:publicid:gv.at:cdid+ZP-MH";
+
+  // configuration parameters
+  public static final String PROP_CONFIG_APPLICATION_PREFIX = "authhandler.";
+  public static final String PROP_CONFIG_APPLICATION_PUBLIC_URL_PREFIX = "core.context.url.prefix";
+  public static final String PROP_CONFIG_APPLICATION_PUBLIC_URL_REQUEST_VALIDATION =
+      "core.context.url.request.validation";
+  public static final String PROP_CONFIG_LEGACY_ALLOW = "core.legacy.allowLegacyMode";
+
+  public static final String PROP_CONFIG_WEBCONTENT_STATIC_PATH =
+      "core.webcontent.static.directory";
+  public static final String PROP_CONFIG_WEBCONTENT_TEMPLATES_PATH = "core.webcontent.templates";
+  public static final String PROP_CONFIG_WEBCONTENT_PROPERTIES_PATH = "core.webcontent.properties";
+
+  public static final String PROP_CONFIG_CACHE_TRANSACTIONS_NAME = "core.cache.transaction.name";
+  public static final String PROP_CONFIG_CACHE_TRANSACTIONS_ENC_ENABLED =
+      "core.cache.transaction.encryption.enabled";
+  public static final String PROP_CONFIG_CACHE_TRANSACTIONS_ENC_KEY_TYPE =
+      "core.cache.transaction.encryption.type";
+  public static final String PROP_CONFIG_CACHE_TRANSACTIONS_ENC_PASSPHRASE =
+      "core.cache.transaction.encryption.passphrase";
+  public static final String PROP_CONFIG_CACHE_TRANSACTIONS_ENC_SALT =
+      "core.cache.transaction.encryption.salt";
+  public static final String PROP_CONFIG_CACHE_TRANSACTIONS_ENC_KEYSTORE_NAME =
+      "core.cache.transaction.encryption.keystore.name";
+  public static final String PROP_CONFIG_CACHE_TRANSACTIONS_ENC_KEY_ALIAS =
+      "core.cache.transaction.encryption.key.alias";
+
+  public static final String PROP_CONFIG_CACHE_ATTRIBUTEPROXY_NAME =
+      "core.cache.attributeproxy.name";
+
+  public static final String PROP_CONFIG_BACKEND_ENDPOINT_GETALLSUPPORTEDATTRIBUTES =
+      "backend.endpoints.getallsupportedattributes";
+  public static final String PROP_CONFIG_BACKEND_ENDPOINT_GETAPPLICATIONCONFIGURATION =
+      "backend.endpoints.getapplicationconfiguration";
+
+  public static final String PROP_CONFIG_INTERNAL_BPK_TARGET = "core.internal.bpk.target";
+
+  public static final String PROP_CONFIG_INTERNAL_FRONTEND_ONLY_MODE = "core.internal.frontend.only.mode";
+  public static final boolean PROP_DEFAULT_CONFIG_INTERNAL_FRONTEND_ONLY_MODE = false;
+
+  // Servlet End-Points
+  public static final String ENDPOINT_PROCESSENGINE_CONTROLLER = "/api/process";
+  public static final String ENDPOINT_ERROR_IFRAME_HOPPING = "/error/parenthop";
+
+
+  // GUI template directories
+  public static final String CLASSPATH_TEMPLATE_DIR = "/templates/";
+  public static final String FILESYSTEM_TEMPLATE_DIR = "./templates/";
+  public static final String TEMPLATE_HTML_ERROR = "error_message.html";
+
+  // GUI template defaultfiles
+  public static final String TEMPLATE_AUTHPROCESS_SELECTION_VDA_FULLFRAME = "authSelection.html";
+  public static final String TEMPLATE_AUTHPROCESS_SELECTION_VDA_IFRAME = "authSelection_iframe.html";
+  public static final String TEMPLATE_USER_CONSENT_REQUEST = "userConsent.html";
+  public static final String TEMPLATE_IFRAME_TO_PARENT_HOPE = "iframe_parent_hope.html";
+  public static final String TEMPLATE_MANDATE_SELECTION = "mandateSelection.html";
+  public static final String TEMPLATE_PROF_REP_MANDATE_SELECTION = "profRepMandateSelection.html";
+  public static final String TEMPLATE_MANDATE_SELECTION_DUMMY = "mandateSelection_dummy.html";
+
+
+
+  // http request parameters
+  public static final String HTTP_PARAM_APPLICATION_ID = "appId";
+  public static final String HTTP_PARAM_STOP_PROCESS = "stopAuthProcess";
+  public static final String HTTP_PARAM_EIDAS_PROCESS = "useeIDAS";
+  public static final String HTTP_PARAM_EID_PROCESS = "useeID";
+  public static final String HTTP_PARAM_EID_BINDING_AUTH_PROCESS = "useBindingAuth";
+  public static final String HTTP_PARAM_USE_MANDATES = "useMandate";
+  public static final String HTTP_PARAM_AUTHMETHOD = "authMethod";
+  public static final String HTTP_PARAM_CONSENT_RELEASE_ATTRIBUTES = "releaseAttributes";
+  public static final String HTTP_PARAM_CONSENT_STORE_CONSENT = "storeConsent";
+
+  @Deprecated
+  public static final String HTTP_PARAM_EIDMIGRATIONPILOT_PROCESS = "pilotMigration";
+  @Deprecated
+  public static final String HTTP_PARAM_EIDMIGRATIONPILOT_SHOW_INFO_PAGE = "pilotMigrationInfoPage";
+  @Deprecated
+  public static final String HTTP_PARAM_MOBILESIGNATURE_PROCESS = "usemobileSig";
+
+  // UI options
+  public static final String UI_PARAM_USE_MANDATES = HTTP_PARAM_USE_MANDATES;
+  public static final String UI_PARAM_USE_ONLY_MANDATES = "useOnlyMandate";
+  public static final String UI_PARAM_USE_EIDAS = HTTP_PARAM_EIDAS_PROCESS;
+  public static final String UI_PARAM_DSGVO_SHORT_INFO = "dsgvoShortText";
+  public static final String UI_PARAM_DSGVO_SP_PRIVACY_STATEMENT_URL = "dsgvoPrivacyStatementUrl";
+  public static final String UI_PARAM_DSGVO_SP_SERVICE_URL = "dsgvoServiceUrl";
+  public static final String UI_PARAM_DSGVO_SP_LOGO = "dsgvoSpLogo";
+  public static final String UI_PARAM_DSGVO_SP_LOGO_SET = "dsgvoSpLogoSet";
+  public static final String UI_PARAM_DSGVO_SP_LOGO_SET_DATAURL = "dataUrl";
+  public static final String UI_PARAM_DSGVO_SP_LOGO_SET_THEME = "theme";
+  public static final String UI_PARAM_DSGVO_SP_LOGO_SET_RESOLUTION = "resolution";
+  public static final String UI_PARAM_DSGVO_SP_LOGO_SET_TYPE = "type";
+
+  public enum LogoType { SVG, PNG, UNKNOWN }
+
+  public enum AuthBlockType {
+    CADES("CAdES"), JWS("JWS"), NONE("none");
+
+    private final String internalType;
+
+    AuthBlockType(final String type) {
+      this.internalType = type;
+
+    }
+
+    /**
+     * Get Type identifier for this AuthBlock.
+     *
+     * @return
+     */
+    public String getAuthBlockType() {
+      return this.internalType;
+    }
+
+    @Override
+    public String toString() {
+      return getAuthBlockType();
+
+    }
+  }
+
+  // process context parameters
+  public static final String PROCESSCONTEXT_USERCONSENT_NEEDED = "userConsentNeeded";
+  public static final String PROCESSCONTEXT_AUTHPROCESSSELECTION_DONE = "authProcSelectDone";
+  public static final String PROCESSCONTEXT_SWITCH_LANGUAGE = "changeLanguage";
+  public static final String PROCESSCONTEXT_IFRAME_PARENT_NEEDED = "iframeParentNeeded";
+
+  public static final String PROCESSCONTEXT_WAS_EID_PROCESS = "wasEidProcess";
+
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idAustriaClient/IAhSpConfiguration.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idAustriaClient/IAhSpConfiguration.java
new file mode 100644
index 00000000..2a54f541
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idAustriaClient/IAhSpConfiguration.java
@@ -0,0 +1,151 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.idAustriaClient;
+
+import java.util.List;
+
+import javax.annotation.Nonnull;
+import javax.annotation.Nullable;
+
+import at.gv.egiz.eaaf.core.api.idp.ISpConfiguration;
+import at.gv.egiz.eaaf.core.impl.data.Pair;
+
+public interface IAhSpConfiguration extends ISpConfiguration {
+
+
+  /**
+   * Flag if this Service Provider is enabled.
+   *
+   * @return true if the SP is enabled, otherwise false
+   */
+  boolean isEnabled();
+
+  /**
+   * Get unique identifier that is used in Application-Register from BM.I.
+   *
+   * <p>If no BM.I specific identifier is available then this method returns
+   * the same identifier as <code>getUniqueIdentifier()</code></p>
+   *
+   * @return unique identifier from BM.I AppReg, or generic uniqueId of no specific exists
+   */
+  String getUniqueApplicationRegisterIdentifier();
+
+  /**
+   * Flag that marks this Service-Provider as <i>public</i> or <i>private</i>.
+   *
+   * <p><b>Default:</b> If it is not set or has an unknown value, its <i>private</i> by default</p>
+   *
+   * @return <code>true</code> if it is from <i>public</i>, otherwise <code>false</code>
+   */
+  boolean isPublicServiceProvider();
+
+  /**
+   * Enable test identities for this Service Provider.
+   *
+   * @return true if test identities are allowed, otherwise false
+   */
+  boolean isTestCredentialEnabled();
+
+  /**
+   * Get a List of OID's that refine the set of allowed test identities.
+   *
+   * @return @link {@link List} of test-identity OID's
+   */
+  @Nullable
+  List<String> getTestCredentialOids();
+
+
+  /**
+   * Get a List of unique attribute URI's that are required by this SP.
+   *
+   * @return {@link List} of attribute URI's / parameter {@link Pair}s
+   */
+  List<Pair<String, String>> getRequiredAttributes();
+
+
+  /**
+   * Get the CountryCode for this service. <br>
+   * <br>
+   * <b>Default:</b> AT
+   *
+   * @return
+   */
+  String getCountryCode();
+
+  /**
+   * Set the CountryCode for this service. If not countryCode is set, AT is used as default.
+   *
+   * @param cc Service-Provider country-code
+   */
+  void setCountryCode(String cc);
+
+  /**
+   * Enable mandates for this service provider.
+   *
+   * @return <code>true</code> if mandates are enabled, otherwise <code>false</code>
+   */
+  boolean isMandateEnabled();
+
+  /**
+   * Enables multi-mandates for this service-provider.
+   *
+   * @return <code>true</code> if multi-mandates are enabled, otherwise <code>false</code>
+   */
+  boolean isMultiMandateEnabled();
+
+  /**
+   * Only mandates are allowed for this service provider.
+   *
+   * @return <code>true</code> if only mandates are allowed, otherwise <code>false</code>
+   */
+  boolean isOnlyMandateEnabled();
+
+  /**
+   * Get a {@link List} of mandate profiles that are supported by this Service provider.
+   *
+   * @return
+   */
+  @Nonnull List<String> getMandateProfiles();
+
+
+  /**
+   * eIDAS authentication allowed flag.
+   *
+   * @return <code>true</code> if eIDAS authentication is enabled, otherwise <code>false</code>
+   */
+  boolean isEidasEnabled();
+
+  /**
+   * Get a List of targets for additional bPKs that are required by this service provider.
+   *
+   * @return List of prefixed bPK targets
+   */
+  @Nonnull List<String> getAdditionalBpkTargets();
+
+  /**
+   * Get a list of foreign bPK targets that are required by this service provider.
+   *
+   * @return List of pairs with prefixed bPK targets as first element and VKZ as second element
+   */
+  @Nonnull List<Pair<String, String>> getAdditionalForeignBpkTargets();
+
+  /**
+   * Flag that indicates that service-provider as restricted or unrestricted.
+   *
+   * <p>A restricted service-provider can only used by test-identities that contains a
+   * valid application-restriction in User-Certificate Pinning</p>
+   *
+   * <p><b>Default:</b> true</p>
+   *
+   * @return <code>true</code> if it is restricted, otherwise <code>false</code>
+   */
+  boolean isRestrictedServiceProvider();
+
+
+  /**
+   * Defines the time in minutes how long the last VDA registration h@Override
+   ave passed as maximum.
+   *
+   * @return time in minutes
+   */
+  long lastVdaAuthenticationDelay();
+
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idAustriaClient/IdAustriaClientAuthConstants.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idAustriaClient/IdAustriaClientAuthConstants.java
new file mode 100644
index 00000000..22910614
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idAustriaClient/IdAustriaClientAuthConstants.java
@@ -0,0 +1,166 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.idAustriaClient;
+
+
+import at.gv.egiz.eaaf.core.api.data.EaafConstants;
+import at.gv.egiz.eaaf.core.api.data.ExtendedPvpAttributeDefinitions;
+import at.gv.egiz.eaaf.core.api.data.PvpAttributeDefinitions;
+import at.gv.egiz.eaaf.core.impl.data.Triple;
+
+import java.util.ArrayList;
+import java.util.Collections;
+import java.util.List;
+
+
+public class IdAustriaClientAuthConstants {
+
+  private IdAustriaClientAuthConstants() {
+
+  }
+
+  public static final String SAML2_STATUSCODE_USERSTOP = "1005";
+
+  public static final String MODULE_NAME_FOR_LOGGING = "ID Austria Client";
+
+  public static final int METADATA_VALIDUNTIL_IN_HOURS = 24;
+
+  //  public static final String HTTP_PARAM_CENTRAL_EIDAS_AUTH_SELECTION =
+  //      AuthHandlerConstants.HTTP_PARAM_EIDAS_PROCESS;
+
+  public static final String ENDPOINT_POST = "/idAustriaSp/post";
+  public static final String ENDPOINT_REDIRECT = "/idAustriaSp/redirect";
+  public static final String ENDPOINT_METADATA = "/idAustriaSp/metadata";
+
+  public static final String CONFIG_PROPS_PREFIX = "modules.idaustriaclient.";
+  public static final String CONFIG_PROPS_KEYSTORE_TYPE = CONFIG_PROPS_PREFIX + "keystore.type";
+  public static final String CONFIG_PROPS_KEYSTORE_NAME = CONFIG_PROPS_PREFIX + "keystore.name";
+  public static final String CONFIG_PROPS_KEYSTORE_PATH = CONFIG_PROPS_PREFIX + "keystore.path";
+  public static final String CONFIG_PROPS_KEYSTORE_PASSWORD = CONFIG_PROPS_PREFIX + "keystore.password";
+  public static final String CONFIG_PROPS_SIGN_METADATA_KEY_PASSWORD = CONFIG_PROPS_PREFIX
+      + "metadata.sign.password";
+  public static final String CONFIG_PROPS_SIGN_METADATA_ALIAS = CONFIG_PROPS_PREFIX
+      + "metadata.sign.alias";
+  public static final String CONFIG_PROPS_SIGN_SIGNING_KEY_PASSWORD = CONFIG_PROPS_PREFIX
+      + "request.sign.password";
+  public static final String CONFIG_PROPS_SIGN_SIGNING_ALIAS = CONFIG_PROPS_PREFIX
+      + "request.sign.alias";
+  public static final String CONFIG_PROPS_ENCRYPTION_KEY_PASSWORD = CONFIG_PROPS_PREFIX
+      + "response.encryption.password";
+  public static final String CONFIG_PROPS_ENCRYPTION_ALIAS = CONFIG_PROPS_PREFIX
+      + "response.encryption.alias";
+
+  public static final String CONFIG_PROPS_TRUSTSTORE_TYPE = CONFIG_PROPS_PREFIX + "truststore.type";
+  public static final String CONFIG_PROPS_TRUSTSTORE_NAME = CONFIG_PROPS_PREFIX + "truststore.name";
+  public static final String CONFIG_PROPS_TRUSTSTORE_PATH = CONFIG_PROPS_PREFIX + "truststore.path";
+  public static final String CONFIG_PROPS_TRUSTSTORE_PASSWORD = CONFIG_PROPS_PREFIX + "truststore.password";
+
+  public static final String CONFIG_PROPS_REQUIRED_PVP_ATTRIBUTES_LIST = CONFIG_PROPS_PREFIX
+      + "required.additional.attributes";
+  public static final String CONFIG_PROPS_REQUIRED_LOA = CONFIG_PROPS_PREFIX
+      + "required.loa";
+  public static final String CONFIG_PROPS_NODE_ENTITYID = CONFIG_PROPS_PREFIX + "node.entityId";
+  public static final String CONFIG_PROPS_NODE_METADATAURL = CONFIG_PROPS_PREFIX + "node.metadataUrl";
+  public static final String CONFIG_PROPS_NODE_TRUSTPROFILEID = CONFIG_PROPS_PREFIX + "node.trustprofileID";
+
+
+  public static final String CONFIG_PROPS_METADATA_CONTACT_GIVENNAME =
+      CONFIG_PROPS_PREFIX + "metadata.contact.givenname";
+  public static final String CONFIG_PROPS_METADATA_CONTACT_SURNAME =
+      CONFIG_PROPS_PREFIX + "metadata.contact.surname";
+  public static final String CONFIG_PROPS_METADATA_CONTACT_EMAIL =
+      CONFIG_PROPS_PREFIX + "metadata.contact.email";
+  public static final String CONFIG_PROPS_METADATA_ORGANISATION_NAME =
+      CONFIG_PROPS_PREFIX + "metadata.organisation.name";
+  public static final String CONFIG_PROPS_METADATA_ORGANISATION_FRIENDLYNAME =
+      CONFIG_PROPS_PREFIX + "metadata.organisation.friendyname";
+  public static final String CONFIG_PROPS_METADATA_ORGANISATION_URL =
+      CONFIG_PROPS_PREFIX + "metadata.organisation.url";
+
+  public static final String CONFIG_PROPS_APPSPECIFIC_EIDAS_NODE_URL = "auth.eidas.node.entityId";
+
+  public static final String CONFIG_PROPS_SEMPER_MANDATES_ACTIVE = CONFIG_PROPS_PREFIX
+      + "semper.mandates.active";
+  public static final String CONFIG_PROPS_SEMPER_MANDATES_MS_PROXY_LIST = CONFIG_PROPS_PREFIX
+      + "semper.msproxy.list";
+
+  public static final String CONFIG_DEFAULT_LOA_EIDAS_LEVEL = EaafConstants.EIDAS_LOA_HIGH;
+
+  @Deprecated
+  public static final List<Triple<String, String, Boolean>> DEFAULT_REQUIRED_PVP_ATTRIBUTES_WITHOUT_EID =
+      Collections.unmodifiableList(new ArrayList<Triple<String, String, Boolean>>() {
+        private static final long serialVersionUID = 1L;
+        {
+          // add PVP Version attribute
+          add(Triple.newInstance(PvpAttributeDefinitions.PVP_VERSION_NAME,
+              PvpAttributeDefinitions.PVP_VERSION_FRIENDLY_NAME, true));
+
+          // request entity information
+          add(Triple.newInstance(PvpAttributeDefinitions.EID_SECTOR_FOR_IDENTIFIER_NAME,
+              PvpAttributeDefinitions.EID_SECTOR_FOR_IDENTIFIER_FRIENDLY_NAME, false));
+          add(Triple.newInstance(PvpAttributeDefinitions.EID_CITIZEN_EIDAS_QAA_LEVEL_NAME,
+              PvpAttributeDefinitions.EID_CITIZEN_EIDAS_QAA_LEVEL_FRIENDLY_NAME, true));
+          add(Triple.newInstance(PvpAttributeDefinitions.EID_ISSUING_NATION_NAME,
+              PvpAttributeDefinitions.EID_ISSUING_NATION_FRIENDLY_NAME, true));
+
+          // entity eID information
+          add(Triple.newInstance(AhExtendedPvpAttributeDefinitions.EID_EIDBIND_NAME,
+              AhExtendedPvpAttributeDefinitions.EID_EIDBIND_FRIENDLY_NAME, false));
+          add(Triple.newInstance(AhExtendedPvpAttributeDefinitions.EID_AUTHBLOCK_SIGNED_NAME,
+              AhExtendedPvpAttributeDefinitions.EID_AUTHBLOCK_SIGNED_FRIENDLY_NAME, false));
+
+          // Deprecated information
+          add(Triple.newInstance(PvpAttributeDefinitions.GIVEN_NAME_NAME,
+              PvpAttributeDefinitions.GIVEN_NAME_FRIENDLY_NAME, false));
+          add(Triple.newInstance(PvpAttributeDefinitions.PRINCIPAL_NAME_NAME,
+              PvpAttributeDefinitions.PRINCIPAL_NAME_FRIENDLY_NAME, false));
+          add(Triple.newInstance(PvpAttributeDefinitions.BIRTHDATE_NAME,
+              PvpAttributeDefinitions.BIRTHDATE_FRIENDLY_NAME, false));
+          add(Triple.newInstance(PvpAttributeDefinitions.BPK_NAME, PvpAttributeDefinitions.BPK_FRIENDLY_NAME,
+              false));
+          add(Triple.newInstance(PvpAttributeDefinitions.EID_IDENTITY_LINK_NAME,
+              PvpAttributeDefinitions.EID_IDENTITY_LINK_FRIENDLY_NAME, false));
+
+          //request pII transactionId from MS-Connector
+          add(Triple.newInstance(ExtendedPvpAttributeDefinitions.EID_PII_TRANSACTION_ID_NAME,
+              ExtendedPvpAttributeDefinitions.EID_PII_TRANSACTION_ID_FRIENDLY_NAME, false));
+
+        }
+      });
+
+  public static final List<Triple<String, String, Boolean>> DEFAULT_REQUIRED_PVP_ATTRIBUTES =
+      Collections.unmodifiableList(new ArrayList<Triple<String, String, Boolean>>() {
+        private static final long serialVersionUID = 1L;
+        {
+          // add PVP Version attribute
+          add(Triple.newInstance(PvpAttributeDefinitions.PVP_VERSION_NAME,
+              PvpAttributeDefinitions.PVP_VERSION_FRIENDLY_NAME, true));
+
+          // entity metadata information
+          add(Triple.newInstance(PvpAttributeDefinitions.EID_CITIZEN_EIDAS_QAA_LEVEL_NAME,
+              PvpAttributeDefinitions.EID_CITIZEN_EIDAS_QAA_LEVEL_FRIENDLY_NAME, true));
+          add(Triple.newInstance(PvpAttributeDefinitions.EID_ISSUING_NATION_NAME,
+              PvpAttributeDefinitions.EID_ISSUING_NATION_FRIENDLY_NAME, true));
+
+          // entity eID information
+          add(Triple.newInstance(AhExtendedPvpAttributeDefinitions.EID_EIDBIND_NAME,
+              AhExtendedPvpAttributeDefinitions.EID_EIDBIND_FRIENDLY_NAME, true));
+          add(Triple.newInstance(AhExtendedPvpAttributeDefinitions.EID_AUTHBLOCK_SIGNED_NAME,
+              AhExtendedPvpAttributeDefinitions.EID_AUTHBLOCK_SIGNED_FRIENDLY_NAME, true));
+
+          //request pII transactionId from MS-Connector
+          add(Triple.newInstance(ExtendedPvpAttributeDefinitions.EID_PII_TRANSACTION_ID_NAME,
+              ExtendedPvpAttributeDefinitions.EID_PII_TRANSACTION_ID_FRIENDLY_NAME, false));
+
+        }
+      });
+
+  public static final List<String> DEFAULT_REQUIRED_PVP_ATTRIBUTE_NAMES =
+      Collections.unmodifiableList(new ArrayList<String>() {
+        private static final long serialVersionUID = 1L;
+        {
+          for (final Triple<String, String, Boolean> el : DEFAULT_REQUIRED_PVP_ATTRIBUTES) {
+            add(el.getFirst());
+          }
+        }
+      });
+
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idAustriaClient/IdAustriaClientAuthCredentialProvider.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idAustriaClient/IdAustriaClientAuthCredentialProvider.java
new file mode 100644
index 00000000..1aa85e71
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idAustriaClient/IdAustriaClientAuthCredentialProvider.java
@@ -0,0 +1,130 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.idAustriaClient;
+
+import at.gv.egiz.eaaf.core.api.idp.IConfiguration;
+import at.gv.egiz.eaaf.core.exceptions.EaafConfigurationException;
+import at.gv.egiz.eaaf.core.impl.credential.KeyStoreConfiguration;
+import at.gv.egiz.eaaf.core.impl.credential.KeyStoreConfiguration.KeyStoreType;
+import at.gv.egiz.eaaf.modules.pvp2.impl.utils.AbstractCredentialProvider;
+
+import org.springframework.beans.factory.annotation.Autowired;
+
+/**
+ * Credential provider for eIDAS PVP S-Profile client.
+ *
+ * @author tlenz
+ *
+ */
+public class IdAustriaClientAuthCredentialProvider extends AbstractCredentialProvider {
+
+  @Autowired
+  IConfiguration authConfig;
+
+  private static final String FRIENDLYNAME = "eIDAS centrial authentication";
+
+  @Override
+  public KeyStoreConfiguration getBasicKeyStoreConfig() throws EaafConfigurationException {
+    final KeyStoreConfiguration keyStoreConfig = new KeyStoreConfiguration();
+    keyStoreConfig.setFriendlyName(FRIENDLYNAME);
+    keyStoreConfig.setKeyStoreType(
+        authConfig.getBasicConfiguration(IdAustriaClientAuthConstants.CONFIG_PROPS_KEYSTORE_TYPE,
+            KeyStoreType.PKCS12.getKeyStoreType()));
+    keyStoreConfig.setKeyStoreName(
+        authConfig.getBasicConfiguration(IdAustriaClientAuthConstants.CONFIG_PROPS_KEYSTORE_NAME));
+    keyStoreConfig.setSoftKeyStoreFilePath(getKeyStoreFilePath());
+    keyStoreConfig.setSoftKeyStorePassword(
+        authConfig.getBasicConfiguration(IdAustriaClientAuthConstants.CONFIG_PROPS_KEYSTORE_PASSWORD));
+
+    return keyStoreConfig;
+
+  }
+
+  private String getKeyStoreFilePath() throws EaafConfigurationException {
+    final String path = authConfig.getBasicConfiguration(
+        IdAustriaClientAuthConstants.CONFIG_PROPS_KEYSTORE_PATH);
+    if (path == null) {
+      throw new EaafConfigurationException("module.eidasauth.00",
+          new Object[] { IdAustriaClientAuthConstants.CONFIG_PROPS_KEYSTORE_PATH });
+
+    }
+    return path;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.signer.AbstractCredentialProvider#
+   * getMetadataKeyAlias()
+   */
+  @Override
+  public String getMetadataKeyAlias() {
+    return authConfig.getBasicConfiguration(
+        IdAustriaClientAuthConstants.CONFIG_PROPS_SIGN_METADATA_ALIAS);
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.signer.AbstractCredentialProvider#
+   * getMetadataKeyPassword()
+   */
+  @Override
+  public String getMetadataKeyPassword() {
+    return authConfig.getBasicConfiguration(
+        IdAustriaClientAuthConstants.CONFIG_PROPS_SIGN_METADATA_KEY_PASSWORD);
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.signer.AbstractCredentialProvider#
+   * getSignatureKeyAlias()
+   */
+  @Override
+  public String getSignatureKeyAlias() {
+    return authConfig.getBasicConfiguration(
+        IdAustriaClientAuthConstants.CONFIG_PROPS_SIGN_SIGNING_ALIAS);
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.signer.AbstractCredentialProvider#
+   * getSignatureKeyPassword()
+   */
+  @Override
+  public String getSignatureKeyPassword() {
+    return authConfig.getBasicConfiguration(
+        IdAustriaClientAuthConstants.CONFIG_PROPS_SIGN_SIGNING_KEY_PASSWORD);
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.signer.AbstractCredentialProvider#
+   * getEncryptionKeyAlias()
+   */
+  @Override
+  public String getEncryptionKeyAlias() {
+    return authConfig.getBasicConfiguration(
+        IdAustriaClientAuthConstants.CONFIG_PROPS_ENCRYPTION_ALIAS);
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.signer.AbstractCredentialProvider#
+   * getEncryptionKeyPassword()
+   */
+  @Override
+  public String getEncryptionKeyPassword() {
+    return authConfig.getBasicConfiguration(
+        IdAustriaClientAuthConstants.CONFIG_PROPS_ENCRYPTION_KEY_PASSWORD);
+  }
+
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idAustriaClient/IdAustriaClientAuthMetadataConfiguration.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idAustriaClient/IdAustriaClientAuthMetadataConfiguration.java
new file mode 100644
index 00000000..4b5861e9
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idAustriaClient/IdAustriaClientAuthMetadataConfiguration.java
@@ -0,0 +1,471 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.idAustriaClient;
+
+
+import java.util.ArrayList;
+import java.util.Arrays;
+import java.util.Collection;
+import java.util.HashMap;
+import java.util.List;
+import java.util.Map;
+
+import at.gv.egiz.eaaf.core.exceptions.EaafException;
+import at.gv.egiz.eaaf.core.impl.data.Pair;
+import at.gv.egiz.eaaf.core.impl.data.Triple;
+import at.gv.egiz.eaaf.modules.pvp2.api.IPvp2BasicConfiguration;
+import at.gv.egiz.eaaf.modules.pvp2.api.credential.EaafX509Credential;
+import at.gv.egiz.eaaf.modules.pvp2.api.metadata.IPvpMetadataBuilderConfiguration;
+import at.gv.egiz.eaaf.modules.pvp2.exception.CredentialsNotAvailableException;
+import at.gv.egiz.eaaf.modules.pvp2.impl.builder.PvpAttributeBuilder;
+
+import org.opensaml.saml.saml2.core.Attribute;
+import org.opensaml.saml.saml2.core.NameIDType;
+import org.opensaml.saml.saml2.metadata.ContactPerson;
+import org.opensaml.saml.saml2.metadata.Organization;
+import org.opensaml.saml.saml2.metadata.RequestedAttribute;
+import org.opensaml.security.credential.Credential;
+
+import lombok.extern.slf4j.Slf4j;
+
+/**
+ * Configuration object to generate PVP S-Profile metadata for SAML2 client.
+ *
+ * @author tlenz
+ *
+ */
+@Slf4j
+public class IdAustriaClientAuthMetadataConfiguration implements IPvpMetadataBuilderConfiguration {
+
+  private Collection<RequestedAttribute> additionalAttributes = null;
+
+  private final String authUrl;
+  private final IdAustriaClientAuthCredentialProvider credentialProvider;
+  private final IPvp2BasicConfiguration pvpConfiguration;
+
+  /**
+   * Configuration object to create PVP2 S-Profile metadata information.
+   *
+   * @param authUrl            Public URL prefix of the application
+   * @param credentialProvider Credentials used by PVP2 S-Profile end-point
+   * @param pvpConfiguration   Basic PVP2 S-Profile end-point configuration
+   */
+  public IdAustriaClientAuthMetadataConfiguration(String authUrl,
+                                                  IdAustriaClientAuthCredentialProvider credentialProvider,
+                                                  IPvp2BasicConfiguration pvpConfiguration) {
+    this.authUrl = authUrl;
+    this.credentialProvider = credentialProvider;
+    this.pvpConfiguration = pvpConfiguration;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
+   * getMetadataValidUntil()
+   */
+  @Override
+  public int getMetadataValidUntil() {
+    return IdAustriaClientAuthConstants.METADATA_VALIDUNTIL_IN_HOURS;
+
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
+   * buildEntitiesDescriptorAsRootElement()
+   */
+  @Override
+  public boolean buildEntitiesDescriptorAsRootElement() {
+    return false;
+
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
+   * buildIDPSSODescriptor()
+   */
+  @Override
+  public boolean buildIdpSsoDescriptor() {
+    return false;
+
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
+   * buildSPSSODescriptor()
+   */
+  @Override
+  public boolean buildSpSsoDescriptor() {
+    return true;
+
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
+   * getEntityIDPostfix()
+   */
+  @Override
+  public String getEntityID() {
+    return authUrl + IdAustriaClientAuthConstants.ENDPOINT_METADATA;
+
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
+   * getEntityFriendlyName()
+   */
+  @Override
+  public String getEntityFriendlyName() {
+    return null;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
+   * getContactPersonInformation()
+   */
+  @Override
+  public List<ContactPerson> getContactPersonInformation() {
+    try {
+      return pvpConfiguration.getIdpContacts();
+
+    } catch (final EaafException e) {
+      log.warn("Can not load Metadata entry: Contect Person", e);
+      return null;
+
+    }
+
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
+   * getOrgansiationInformation()
+   */
+  @Override
+  public Organization getOrgansiationInformation() {
+    try {
+      return pvpConfiguration.getIdpOrganisation();
+
+    } catch (final EaafException e) {
+      log.warn("Can not load Metadata entry: Organisation", e);
+      return null;
+
+    }
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
+   * getMetadataSigningCredentials()
+   */
+  @Override
+  public EaafX509Credential getMetadataSigningCredentials() throws CredentialsNotAvailableException {
+    return credentialProvider.getMetaDataSigningCredential();
+
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
+   * getRequestorResponseSigningCredentials()
+   */
+  @Override
+  public Credential getRequestorResponseSigningCredentials() throws CredentialsNotAvailableException {
+    return credentialProvider.getMessageSigningCredential();
+
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
+   * getEncryptionCredentials()
+   */
+  @Override
+  public Credential getEncryptionCredentials() throws CredentialsNotAvailableException {
+    return credentialProvider.getMessageEncryptionCredential();
+
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
+   * getIDPWebSSOPostBindingURL()
+   */
+  @Override
+  public String getIdpWebSsoPostBindingUrl() {
+    return null;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
+   * getIDPWebSSORedirectBindingURL()
+   */
+  @Override
+  public String getIdpWebSsoRedirectBindingUrl() {
+    return null;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
+   * getIDPSLOPostBindingURL()
+   */
+  @Override
+  public String getIdpSloPostBindingUrl() {
+    return null;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
+   * getIDPSLORedirectBindingURL()
+   */
+  @Override
+  public String getIdpSloRedirectBindingUrl() {
+    return null;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
+   * getSPAssertionConsumerServicePostBindingURL()
+   */
+  @Override
+  public String getSpAssertionConsumerServicePostBindingUrl() {
+    return authUrl + IdAustriaClientAuthConstants.ENDPOINT_POST;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
+   * getSPAssertionConsumerServiceRedirectBindingURL()
+   */
+  @Override
+  public String getSpAssertionConsumerServiceRedirectBindingUrl() {
+    return authUrl + IdAustriaClientAuthConstants.ENDPOINT_REDIRECT;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
+   * getSPSLOPostBindingURL()
+   */
+  @Override
+  public String getSpSloPostBindingUrl() {
+    return null;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
+   * getSPSLORedirectBindingURL()
+   */
+  @Override
+  public String getSpSloRedirectBindingUrl() {
+    return null;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
+   * getSPSLOSOAPBindingURL()
+   */
+  @Override
+  public String getSpSloSoapBindingUrl() {
+    return null;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
+   * getIDPPossibleAttributes()
+   */
+  @Override
+  public List<Attribute> getIdpPossibleAttributes() {
+    return null;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
+   * getIDPPossibleNameITTypes()
+   */
+  @Override
+  public List<String> getIdpPossibleNameIdTypes() {
+    return null;
+  }
+
+
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
+   * getSPRequiredAttributes()
+   */
+  @Override
+  public Collection<RequestedAttribute> getSpRequiredAttributes() {
+    final Map<String, RequestedAttribute> requestedAttributes = new HashMap<>();
+
+    if (pvpConfiguration.getBasicConfiguration().getBasicConfigurationBoolean(
+        AuthHandlerConstants.PROP_CONFIG_LEGACY_ALLOW, false)) {
+      log.trace("Build required attributes for legacy operaton ... ");
+      injectDefinedAttributes(requestedAttributes,
+          IdAustriaClientAuthConstants.DEFAULT_REQUIRED_PVP_ATTRIBUTES_WITHOUT_EID);
+
+    } else {
+      log.trace("Build required attributes for E-ID operaton ... ");
+      injectDefinedAttributes(requestedAttributes,
+          IdAustriaClientAuthConstants.DEFAULT_REQUIRED_PVP_ATTRIBUTES);
+
+    }
+
+    if (additionalAttributes != null) {
+      log.trace("Add additional PVP attributes into metadata ... ");
+      for (final RequestedAttribute el : additionalAttributes) {
+        if (requestedAttributes.containsKey(el.getName())) {
+          log.debug("Attribute " + el.getName()
+              + " is already added by default configuration. Overwrite it by user configuration");
+        }
+
+        requestedAttributes.put(el.getName(), el);
+
+      }
+    }
+
+    return requestedAttributes.values();
+
+  }
+
+
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
+   * getSPAllowedNameITTypes()
+   */
+  @Override
+  public List<String> getSpAllowedNameIdTypes() {
+    return Arrays.asList(NameIDType.PERSISTENT);
+
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
+   * IPVPMetadataBuilderConfiguration#getSPNameForLogging()
+   */
+  @Override
+  public String getSpNameForLogging() {
+    return IdAustriaClientAuthConstants.MODULE_NAME_FOR_LOGGING;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
+   * IPVPMetadataBuilderConfiguration#wantAssertionSigned()
+   */
+  @Override
+  public boolean wantAssertionSigned() {
+    return false;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
+   * IPVPMetadataBuilderConfiguration#wantAuthnRequestSigned()
+   */
+  @Override
+  public boolean wantAuthnRequestSigned() {
+    return true;
+  }
+
+  /**
+   * Add additonal PVP attributes that are required by this deployment.
+   *
+   * @param additionalAttr List of PVP attribute name and isRequired flag
+   */
+  public void setAdditionalRequiredAttributes(List<Pair<String, Boolean>> additionalAttr) {
+    if (additionalAttr != null && !additionalAttr.isEmpty()) {
+      additionalAttributes = new ArrayList<>();
+      for (final Pair<String, Boolean> el : additionalAttr) {
+        final Attribute attributBuilder = PvpAttributeBuilder.buildEmptyAttribute(el.getFirst());
+        if (attributBuilder != null) {
+          additionalAttributes.add(
+              PvpAttributeBuilder.buildReqAttribute(
+                  attributBuilder.getName(),
+                  attributBuilder.getFriendlyName(),
+                  el.getSecond()));
+
+        } else {
+          log.info("NO PVP attribute with name: " + el.getFirst());
+        }
+
+      }
+    }
+  }
+
+  private void injectDefinedAttributes(Map<String, RequestedAttribute> requestedAttributes,
+                                       List<Triple<String, String, Boolean>> attributes) {
+    for (final Triple<String, String, Boolean> el : attributes) {
+      requestedAttributes.put(el.getFirst(), PvpAttributeBuilder.buildReqAttribute(el.getFirst(), el
+          .getSecond(), el.getThird()));
+
+    }
+  }
+
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idAustriaClient/IdAustriaClientAuthMetadataController.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idAustriaClient/IdAustriaClientAuthMetadataController.java
new file mode 100644
index 00000000..87886397
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idAustriaClient/IdAustriaClientAuthMetadataController.java
@@ -0,0 +1,149 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.idAustriaClient;
+
+
+import java.io.IOException;
+import java.net.MalformedURLException;
+import java.net.URL;
+import java.util.ArrayList;
+import java.util.List;
+import java.util.Map;
+
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+
+import at.gv.egiz.eaaf.core.exceptions.EaafAuthenticationException;
+import at.gv.egiz.eaaf.core.exceptions.EaafException;
+import at.gv.egiz.eaaf.core.impl.data.Pair;
+import at.gv.egiz.eaaf.core.impl.http.HttpUtils;
+import at.gv.egiz.eaaf.core.impl.idp.controller.AbstractController;
+import at.gv.egiz.eaaf.core.impl.utils.KeyValueUtils;
+import at.gv.egiz.eaaf.modules.pvp2.api.IPvp2BasicConfiguration;
+import at.gv.egiz.eaaf.modules.pvp2.impl.builder.PvpMetadataBuilder;
+
+import org.apache.commons.lang3.StringUtils;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.stereotype.Controller;
+import org.springframework.web.bind.annotation.RequestMapping;
+import org.springframework.web.bind.annotation.RequestMethod;
+
+import com.google.common.net.MediaType;
+import lombok.extern.slf4j.Slf4j;
+
+/**
+ * Controller that generates SAML2 metadata for eIDAS authentication client.
+ *
+ * @author tlenz
+ *
+ */
+@Slf4j
+@Controller
+public class IdAustriaClientAuthMetadataController extends AbstractController {
+
+  private static final String ERROR_CODE_INTERNAL_00 = "eaaf.core.00";
+
+  @Autowired
+  PvpMetadataBuilder metadatabuilder;
+  @Autowired
+  IdAustriaClientAuthCredentialProvider credentialProvider;
+  @Autowired
+  IPvp2BasicConfiguration pvpConfiguration;
+
+  /**
+   * Default construction with logging.
+   *
+   */
+  public IdAustriaClientAuthMetadataController() {
+    super();
+    log.debug("Registering servlet " + getClass().getName()
+        + " with mappings '" + IdAustriaClientAuthConstants.ENDPOINT_METADATA
+        + "'.");
+
+  }
+
+  /**
+   * End-point that produce PVP2 metadata for eIDAS authentication client.
+   *
+   * @param req  http Request
+   * @param resp http Response
+   * @throws IOException   In case of an I/O error
+   * @throws EaafException In case of a metadata generation error
+   */
+  @RequestMapping(value = IdAustriaClientAuthConstants.ENDPOINT_METADATA,
+      method = { RequestMethod.GET })
+  public void getSpMetadata(HttpServletRequest req, HttpServletResponse resp) throws IOException,
+      EaafException {
+    // check PublicURL prefix
+    try {
+      final String authUrl = getAuthUrlFromHttpContext(req);
+
+      // initialize metadata builder configuration
+      final IdAustriaClientAuthMetadataConfiguration metadataConfig =
+          new IdAustriaClientAuthMetadataConfiguration(authUrl, credentialProvider, pvpConfiguration);
+      metadataConfig.setAdditionalRequiredAttributes(getAdditonalRequiredAttributes());
+
+      // build metadata
+      final String xmlMetadata = metadatabuilder.buildPvpMetadata(metadataConfig);
+
+      // write response
+      final byte[] content = xmlMetadata.getBytes("UTF-8");
+      resp.setStatus(HttpServletResponse.SC_OK);
+      resp.setContentLength(content.length);
+      resp.setContentType(MediaType.XML_UTF_8.toString());
+      resp.getOutputStream().write(content);
+
+    } catch (final Exception e) {
+      log.warn("Build federated-authentication PVP metadata FAILED.", e);
+      protAuthService.handleErrorNoRedirect(e, req, resp, false);
+
+    }
+
+  }
+
+  private String getAuthUrlFromHttpContext(HttpServletRequest req) throws EaafException {
+    // check if End-Point is valid
+    final String authUrlString = HttpUtils.extractAuthUrlFromRequest(req);
+    URL authReqUrl;
+    try {
+      authReqUrl = new URL(authUrlString);
+
+    } catch (final MalformedURLException e) {
+      log.warn("Requested URL: {} is not a valid URL.", authUrlString);
+      throw new EaafAuthenticationException(ERROR_CODE_INTERNAL_00, new Object[] { authUrlString }, e);
+
+    }
+
+    final String idpAuthUrl = authConfig.validateIdpUrl(authReqUrl);
+    if (idpAuthUrl == null) {
+      log.warn("Requested URL: {} is NOT found in configuration.", authReqUrl);
+      throw new EaafAuthenticationException(ERROR_CODE_INTERNAL_00, new Object[] { authUrlString });
+
+    }
+
+    return idpAuthUrl;
+  }
+
+  private List<Pair<String, Boolean>> getAdditonalRequiredAttributes() {
+    final List<Pair<String, Boolean>> result = new ArrayList<>();
+
+    // load attributes from configuration
+    final Map<String, String> addReqAttributes = authConfig.getBasicConfigurationWithPrefix(
+        IdAustriaClientAuthConstants.CONFIG_PROPS_REQUIRED_PVP_ATTRIBUTES_LIST);
+    for (final String el : addReqAttributes.values()) {
+      if (StringUtils.isNotEmpty(el)) {
+        log.trace("Parse additional attr. definition: " + el);
+        final List<String> attr = KeyValueUtils.getListOfCsvValues(el.trim());
+        if (attr.size() == 2) {
+          result.add(Pair.newInstance(attr.get(0), Boolean.parseBoolean(attr.get(1))));
+
+        } else {
+          log.info("IGNORE additional attr. definition: " + el
+              + " Reason: Format not valid");
+        }
+      }
+    }
+
+    return result;
+
+  }
+
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idAustriaClient/IdAustriaClientAuthMetadataProvider.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idAustriaClient/IdAustriaClientAuthMetadataProvider.java
new file mode 100644
index 00000000..c0bfa290
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idAustriaClient/IdAustriaClientAuthMetadataProvider.java
@@ -0,0 +1,169 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.idAustriaClient;
+
+import java.io.IOException;
+import java.security.KeyStore;
+import java.security.Provider;
+import java.security.cert.CertificateException;
+import java.text.MessageFormat;
+import java.util.ArrayList;
+import java.util.Collections;
+import java.util.List;
+
+import javax.annotation.PostConstruct;
+
+import at.gv.egiz.eaaf.core.api.idp.IConfiguration;
+import at.gv.egiz.eaaf.core.exceptions.EaafConfigurationException;
+import at.gv.egiz.eaaf.core.exceptions.EaafException;
+import at.gv.egiz.eaaf.core.impl.credential.EaafKeyStoreFactory;
+import at.gv.egiz.eaaf.core.impl.credential.KeyStoreConfiguration;
+import at.gv.egiz.eaaf.core.impl.credential.KeyStoreConfiguration.KeyStoreType;
+import at.gv.egiz.eaaf.core.impl.data.Pair;
+import at.gv.egiz.eaaf.core.impl.http.IHttpClientFactory;
+import at.gv.egiz.eaaf.modules.pvp2.exception.Pvp2MetadataException;
+import at.gv.egiz.eaaf.modules.pvp2.impl.metadata.AbstractChainingMetadataProvider;
+import at.gv.egiz.eaaf.modules.pvp2.impl.metadata.PvpMetadataResolverFactory;
+import at.gv.egiz.eaaf.modules.pvp2.impl.validation.metadata.SchemaValidationFilter;
+import at.gv.egiz.eaaf.modules.pvp2.impl.validation.metadata.SimpleMetadataSignatureVerificationFilter;
+
+import org.apache.commons.lang3.StringUtils;
+import org.opensaml.saml.metadata.resolver.MetadataResolver;
+import org.opensaml.saml.metadata.resolver.filter.MetadataFilter;
+import org.opensaml.saml.metadata.resolver.filter.MetadataFilterChain;
+import org.springframework.beans.factory.annotation.Autowired;
+
+import lombok.extern.slf4j.Slf4j;
+
+/**
+ * SAML2 metadata-provider implementation for eIDAS client.
+ *
+ * @author tlenz
+ *
+ */
+@Slf4j
+public class IdAustriaClientAuthMetadataProvider extends AbstractChainingMetadataProvider {
+
+  private static final String FRIENDLYNAME_METADATA_TRUSTSTORE = "'eIDAS_client metadata truststore'";
+  private static final String PROVIDER_ID_PATTERN = "eIDAS resolver: {0}";
+  public static final String PROVIDER_ID = "'eIDAS_client metadata provider'";
+
+  @Autowired
+  private IConfiguration basicConfig;
+
+  @Autowired
+  private PvpMetadataResolverFactory metadataProviderFactory;
+  @Autowired
+  private IHttpClientFactory httpClientFactory;
+
+  @Autowired
+  private EaafKeyStoreFactory keyStoreFactory;
+
+  private Pair<KeyStore, Provider> metadataSigningTrustStore;
+
+  @Override
+  protected String getMetadataUrl(String entityId) throws EaafConfigurationException {
+    log.trace("eIDAS Auth. uses SAML2 well-known location approach. EntityId is Metadata-URL");
+    return entityId;
+
+  }
+
+  @Override
+  protected MetadataResolver createNewMetadataProvider(String entityId) throws EaafConfigurationException,
+      IOException, CertificateException {
+    final List<MetadataFilter> filterList = new ArrayList<>();
+    filterList.add(new SchemaValidationFilter(true));
+    filterList.add(new SimpleMetadataSignatureVerificationFilter(
+        metadataSigningTrustStore.getFirst(), entityId));
+
+    final MetadataFilterChain filter = new MetadataFilterChain();
+    filter.setFilters(filterList);
+
+    try {
+      return metadataProviderFactory.createMetadataProvider(getMetadataUrl(entityId),
+          filter,
+          MessageFormat.format(PROVIDER_ID_PATTERN, entityId),
+          httpClientFactory.getHttpClient());
+
+    } catch (final Pvp2MetadataException e) {
+      log.info("Can NOT build metadata provider for entityId: {}", entityId);
+      throw new EaafConfigurationException("module.eidasauth.04",
+          new Object[] { entityId, e.getMessage() }, e);
+
+    }
+  }
+
+  @Override
+  protected List<String> getAllMetadataUrlsFromConfiguration() throws EaafConfigurationException {
+    return Collections.emptyList();
+
+  }
+
+  @Override
+  protected String getMetadataProviderId() {
+    return PROVIDER_ID;
+
+  }
+
+  @Override
+  public void runGarbageCollector() {
+    log.trace("Garbage collection is NOT supported by: {}", getId());
+  }
+
+  @Override
+  public void doDestroy() {
+    super.fullyDestroy();
+
+  }
+
+  @PostConstruct
+  private void initialize() throws EaafException {
+    // initialize truststore to validate metadata signing certificates
+    initializeTrustStore();
+
+    // load metadata with metadataURL, as backup
+    initializeFileSystemMetadata();
+
+  }
+
+  private void initializeFileSystemMetadata() {
+    try {
+      final String metadataUrl = basicConfig.getBasicConfiguration(
+          IdAustriaClientAuthConstants.CONFIG_PROPS_NODE_METADATAURL);
+      if (StringUtils.isNotEmpty(metadataUrl)) {
+        log.info("Use not recommended metadata-provider initialization!"
+            + " SAML2 'Well-Known-Location' is the preferred methode.");
+        log.info("Initialize 'ms-specific eIDAS node' metadata-provider with URL: {}", metadataUrl);
+
+        addMetadataResolverIntoChain(createNewMetadataProvider(metadataUrl));
+      }
+
+    } catch (final EaafConfigurationException | CertificateException | IOException e) {
+      log.warn("Can NOT inject static eIDAS Node metadata-soure.", e);
+      log.warn("eIDAS Node communication can be FAIL.");
+
+    }
+  }
+
+  private void initializeTrustStore() throws EaafException {
+    // set configuration
+    final KeyStoreConfiguration trustStoreConfig = new KeyStoreConfiguration();
+    trustStoreConfig.setFriendlyName(FRIENDLYNAME_METADATA_TRUSTSTORE);
+    trustStoreConfig.setKeyStoreType(basicConfig.getBasicConfiguration(
+        IdAustriaClientAuthConstants.CONFIG_PROPS_TRUSTSTORE_TYPE,
+        KeyStoreType.JKS.getKeyStoreType()));
+    trustStoreConfig.setKeyStoreName(basicConfig.getBasicConfiguration(
+        IdAustriaClientAuthConstants.CONFIG_PROPS_TRUSTSTORE_NAME));
+    trustStoreConfig.setSoftKeyStoreFilePath(basicConfig.getBasicConfiguration(
+        IdAustriaClientAuthConstants.CONFIG_PROPS_TRUSTSTORE_PATH));
+    trustStoreConfig.setSoftKeyStorePassword(basicConfig.getBasicConfiguration(
+        IdAustriaClientAuthConstants.CONFIG_PROPS_TRUSTSTORE_PASSWORD));
+
+    // validate configuration
+    trustStoreConfig.validate();
+
+    // open new TrustStore
+    metadataSigningTrustStore = keyStoreFactory.buildNewKeyStore(trustStoreConfig);
+
+  }
+
+}
+
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idAustriaClient/IdAustriaClientAuthRequestBuilderConfiguration.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idAustriaClient/IdAustriaClientAuthRequestBuilderConfiguration.java
new file mode 100644
index 00000000..ddaf872d
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idAustriaClient/IdAustriaClientAuthRequestBuilderConfiguration.java
@@ -0,0 +1,300 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.idAustriaClient;
+
+import java.util.List;
+
+import at.gv.egiz.eaaf.modules.pvp2.api.credential.EaafX509Credential;
+import at.gv.egiz.eaaf.modules.pvp2.api.reqattr.EaafRequestedAttribute;
+import at.gv.egiz.eaaf.modules.pvp2.sp.api.IPvpAuthnRequestBuilderConfiguruation;
+
+import org.opensaml.saml.saml2.core.AuthnContextComparisonTypeEnumeration;
+import org.opensaml.saml.saml2.core.NameIDType;
+import org.opensaml.saml.saml2.metadata.EntityDescriptor;
+import org.w3c.dom.Element;
+
+public class IdAustriaClientAuthRequestBuilderConfiguration implements IPvpAuthnRequestBuilderConfiguruation {
+
+  private boolean isPassive;
+  private String spEntityId;
+  private String qaaLevel;
+  private EntityDescriptor idpEntity;
+  private EaafX509Credential signCred;
+  private String scopeRequesterId;
+  private String providerName;
+  private List<EaafRequestedAttribute> requestedAttributes;
+  private String reqId;
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
+   * IPVPAuthnRequestBuilderConfiguruation#isPassivRequest()
+   */
+  @Override
+  public Boolean isPassivRequest() {
+    return this.isPassive;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
+   * IPVPAuthnRequestBuilderConfiguruation#getAssertionConsumerServiceId()
+   */
+  @Override
+  public Integer getAssertionConsumerServiceId() {
+    return 0;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
+   * IPVPAuthnRequestBuilderConfiguruation#getEntityID()
+   */
+  @Override
+  public String getSpEntityID() {
+    return this.spEntityId;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
+   * IPVPAuthnRequestBuilderConfiguruation#getNameIDPolicy()
+   */
+  @Override
+  public String getNameIdPolicyFormat() {
+    return NameIDType.PERSISTENT;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
+   * IPVPAuthnRequestBuilderConfiguruation#getNameIDPolicy()
+   */
+  @Override
+  public boolean getNameIdPolicyAllowCreation() {
+    return true;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
+   * IPVPAuthnRequestBuilderConfiguruation#getAuthnContextClassRef()
+   */
+  @Override
+  public String getAuthnContextClassRef() {
+    return this.qaaLevel;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
+   * IPVPAuthnRequestBuilderConfiguruation#getAuthnContextComparison()
+   */
+  @Override
+  public AuthnContextComparisonTypeEnumeration getAuthnContextComparison() {
+    return AuthnContextComparisonTypeEnumeration.MINIMUM;
+  }
+
+  /**
+   * Set isPassive flag in SAML2 request.
+   *
+   * @param isPassive the isPassive to set.
+   */
+  public void setPassive(boolean isPassive) {
+    this.isPassive = isPassive;
+  }
+
+  /**
+   * Set the requester EntityId.
+   *
+   * @param spEntityId EntityId of SP
+   */
+  public void setSpEntityID(String spEntityId) {
+    this.spEntityId = spEntityId;
+  }
+
+  /**
+   * Set required LoA.
+   *
+   * @param loa the LoA to set.
+   */
+  public void setRequestedLoA(String loa) {
+    qaaLevel = loa;
+  }
+
+  /**
+   * Set EntityId of IDP.
+   *
+   * @param idpEntity the idpEntity to set.
+   */
+  public void setIdpEntity(EntityDescriptor idpEntity) {
+    this.idpEntity = idpEntity;
+  }
+
+  /**
+   * Set message signing credentials.
+   *
+   * @param signCred the signCred to set.
+   */
+  public void setSignCred(EaafX509Credential signCred) {
+    this.signCred = signCred;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
+   * IPVPAuthnRequestBuilderConfiguruation#getAuthnRequestSigningCredential()
+   */
+  @Override
+  public EaafX509Credential getAuthnRequestSigningCredential() {
+    return this.signCred;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
+   * IPVPAuthnRequestBuilderConfiguruation#getIDPEntityDescriptor()
+   */
+  @Override
+  public EntityDescriptor getIdpEntityDescriptor() {
+    return this.idpEntity;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
+   * IPVPAuthnRequestBuilderConfiguruation#getSubjectNameID()
+   */
+  @Override
+  public String getSubjectNameID() {
+    return null;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
+   * IPVPAuthnRequestBuilderConfiguruation#getSPNameForLogging()
+   */
+  @Override
+  public String getSpNameForLogging() {
+    return IdAustriaClientAuthConstants.MODULE_NAME_FOR_LOGGING;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
+   * IPVPAuthnRequestBuilderConfiguruation#getSubjectNameIDFormat()
+   */
+  @Override
+  public String getSubjectNameIdFormat() {
+    return null;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
+   * IPVPAuthnRequestBuilderConfiguruation#getRequestID()
+   */
+  @Override
+  public String getRequestID() {
+    return this.reqId;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
+   * IPVPAuthnRequestBuilderConfiguruation#getSubjectNameIDQualifier()
+   */
+  @Override
+  public String getSubjectNameIdQualifier() {
+    return null;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
+   * IPVPAuthnRequestBuilderConfiguruation#getSubjectConformationMethode()
+   */
+  @Override
+  public String getSubjectConformationMethode() {
+    return null;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
+   * IPVPAuthnRequestBuilderConfiguruation#getSubjectConformationDate()
+   */
+  @Override
+  public Element getSubjectConformationDate() {
+    return null;
+  }
+
+  @Override
+  public List<EaafRequestedAttribute> getRequestedAttributes() {
+    return this.requestedAttributes;
+
+  }
+
+  @Override
+  public String getProviderName() {
+    return this.providerName;
+  }
+
+  @Override
+  public String getScopeRequesterId() {
+    return this.scopeRequesterId;
+  }
+
+  /**
+   * Set the entityId of the SP that requests the proxy for eIDAS authentication.
+   *
+   * @param scopeRequesterId RequestId in SAML2 Proxy extension
+   */
+  public void setScopeRequesterId(String scopeRequesterId) {
+    this.scopeRequesterId = scopeRequesterId;
+  }
+
+  /**
+   * Set a friendlyName for the SP that requests the proxy for eIDAS
+   * authentication.
+   *
+   * @param providerName SAML2 provider-name attribute-value
+   */
+  public void setProviderName(String providerName) {
+    this.providerName = providerName;
+  }
+
+  /**
+   * Set a Set of PVP attributes that a requested by using requested attributes.
+   *
+   * @param requestedAttributes Requested SAML2 attributes
+   */
+  public void setRequestedAttributes(List<EaafRequestedAttribute> requestedAttributes) {
+    this.requestedAttributes = requestedAttributes;
+  }
+
+  /**
+   * Set a RequestId for this Authn. Request.
+   *
+   * @param reqId SAML2 message requestId
+   */
+  public void setRequestId(String reqId) {
+    this.reqId = reqId;
+  }
+
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/mobilesig/AhExtendedPvpAttributeDefinitions.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/mobilesig/AhExtendedPvpAttributeDefinitions.java
deleted file mode 100644
index af9a2972..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/mobilesig/AhExtendedPvpAttributeDefinitions.java
+++ /dev/null
@@ -1,24 +0,0 @@
-package at.asitplus.eidas.specific.modules.auth.eidas.v2.mobilesig;
-
-import at.gv.egiz.eaaf.core.api.data.ExtendedPvpAttributeDefinitions;
-
-import org.slf4j.Logger;
-import org.slf4j.LoggerFactory;
-
-public class AhExtendedPvpAttributeDefinitions implements ExtendedPvpAttributeDefinitions {
-  private static final Logger log =
-      LoggerFactory.getLogger(AhExtendedPvpAttributeDefinitions.class);
-
-  private AhExtendedPvpAttributeDefinitions() {
-    log.trace("Instance class: {} for SonarQube",
-        AhExtendedPvpAttributeDefinitions.class.getName());
-
-  }
-
-  public static final String EID_BCBIND_NAME = "urn:eidgvat:attributes.bcbind";
-  public static final String EID_BCBIND_FRIENDLY_NAME = "bcBind";
-
-  public static final String EID_BINDING_PUBKEY_NAME = "urn:eidgvat:attributes.binding.pubkey";
-  public static final String EID_BINDING_PUBKEY_FRIENDLY_NAME = "BindingPubKey";
-
-}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/mobilesig/AuthHandlerConstants.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/mobilesig/AuthHandlerConstants.java
deleted file mode 100644
index 60219759..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/mobilesig/AuthHandlerConstants.java
+++ /dev/null
@@ -1,141 +0,0 @@
-package at.asitplus.eidas.specific.modules.auth.eidas.v2.mobilesig;
-
-
-public class AuthHandlerConstants {
-
-  private AuthHandlerConstants() {
-
-  }
-
-  // TODO: maybe update to another target
-  public static final String DEFAULT_INTERNAL_BPK_TARGET = "urn:publicid:gv.at:cdid+ZP-MH";
-
-  // configuration parameters
-  public static final String PROP_CONFIG_APPLICATION_PREFIX = "authhandler.";
-  public static final String PROP_CONFIG_APPLICATION_PUBLIC_URL_PREFIX = "core.context.url.prefix";
-  public static final String PROP_CONFIG_APPLICATION_PUBLIC_URL_REQUEST_VALIDATION =
-      "core.context.url.request.validation";
-  public static final String PROP_CONFIG_LEGACY_ALLOW = "core.legacy.allowLegacyMode";
-
-  public static final String PROP_CONFIG_WEBCONTENT_STATIC_PATH =
-      "core.webcontent.static.directory";
-  public static final String PROP_CONFIG_WEBCONTENT_TEMPLATES_PATH = "core.webcontent.templates";
-  public static final String PROP_CONFIG_WEBCONTENT_PROPERTIES_PATH = "core.webcontent.properties";
-
-  public static final String PROP_CONFIG_CACHE_TRANSACTIONS_NAME = "core.cache.transaction.name";
-  public static final String PROP_CONFIG_CACHE_TRANSACTIONS_ENC_ENABLED =
-      "core.cache.transaction.encryption.enabled";
-  public static final String PROP_CONFIG_CACHE_TRANSACTIONS_ENC_KEY_TYPE =
-      "core.cache.transaction.encryption.type";
-  public static final String PROP_CONFIG_CACHE_TRANSACTIONS_ENC_PASSPHRASE =
-      "core.cache.transaction.encryption.passphrase";
-  public static final String PROP_CONFIG_CACHE_TRANSACTIONS_ENC_SALT =
-      "core.cache.transaction.encryption.salt";
-  public static final String PROP_CONFIG_CACHE_TRANSACTIONS_ENC_KEYSTORE_NAME =
-      "core.cache.transaction.encryption.keystore.name";
-  public static final String PROP_CONFIG_CACHE_TRANSACTIONS_ENC_KEY_ALIAS =
-      "core.cache.transaction.encryption.key.alias";
-
-  public static final String PROP_CONFIG_CACHE_ATTRIBUTEPROXY_NAME =
-      "core.cache.attributeproxy.name";
-
-  public static final String PROP_CONFIG_BACKEND_ENDPOINT_GETALLSUPPORTEDATTRIBUTES =
-      "backend.endpoints.getallsupportedattributes";
-  public static final String PROP_CONFIG_BACKEND_ENDPOINT_GETAPPLICATIONCONFIGURATION =
-      "backend.endpoints.getapplicationconfiguration";
-
-  public static final String PROP_CONFIG_INTERNAL_BPK_TARGET = "core.internal.bpk.target";
-
-  public static final String PROP_CONFIG_INTERNAL_FRONTEND_ONLY_MODE = "core.internal.frontend.only.mode";
-  public static final boolean PROP_DEFAULT_CONFIG_INTERNAL_FRONTEND_ONLY_MODE = false;
-
-  // Servlet End-Points
-  public static final String ENDPOINT_PROCESSENGINE_CONTROLLER = "/api/process";
-  public static final String ENDPOINT_ERROR_IFRAME_HOPPING = "/error/parenthop";
-
-
-  // GUI template directories
-  public static final String CLASSPATH_TEMPLATE_DIR = "/templates/";
-  public static final String FILESYSTEM_TEMPLATE_DIR = "./templates/";
-  public static final String TEMPLATE_HTML_ERROR = "error_message.html";
-
-  // GUI template defaultfiles
-  public static final String TEMPLATE_AUTHPROCESS_SELECTION_VDA_FULLFRAME = "authSelection.html";
-  public static final String TEMPLATE_AUTHPROCESS_SELECTION_VDA_IFRAME = "authSelection_iframe.html";
-  public static final String TEMPLATE_USER_CONSENT_REQUEST = "userConsent.html";
-  public static final String TEMPLATE_IFRAME_TO_PARENT_HOPE = "iframe_parent_hope.html";
-  public static final String TEMPLATE_MANDATE_SELECTION = "mandateSelection.html";
-  public static final String TEMPLATE_PROF_REP_MANDATE_SELECTION = "profRepMandateSelection.html";
-  public static final String TEMPLATE_MANDATE_SELECTION_DUMMY = "mandateSelection_dummy.html";
-
-
-
-  // http request parameters
-  public static final String HTTP_PARAM_APPLICATION_ID = "appId";
-  public static final String HTTP_PARAM_STOP_PROCESS = "stopAuthProcess";
-  public static final String HTTP_PARAM_EIDAS_PROCESS = "useeIDAS";
-  public static final String HTTP_PARAM_EID_PROCESS = "useeID";
-  public static final String HTTP_PARAM_EID_BINDING_AUTH_PROCESS = "useBindingAuth";
-  public static final String HTTP_PARAM_USE_MANDATES = "useMandate";
-  public static final String HTTP_PARAM_AUTHMETHOD = "authMethod";
-  public static final String HTTP_PARAM_CONSENT_RELEASE_ATTRIBUTES = "releaseAttributes";
-  public static final String HTTP_PARAM_CONSENT_STORE_CONSENT = "storeConsent";
-
-  @Deprecated
-  public static final String HTTP_PARAM_EIDMIGRATIONPILOT_PROCESS = "pilotMigration";
-  @Deprecated
-  public static final String HTTP_PARAM_EIDMIGRATIONPILOT_SHOW_INFO_PAGE = "pilotMigrationInfoPage";
-  @Deprecated
-  public static final String HTTP_PARAM_MOBILESIGNATURE_PROCESS = "usemobileSig";
-
-  // UI options
-  public static final String UI_PARAM_USE_MANDATES = HTTP_PARAM_USE_MANDATES;
-  public static final String UI_PARAM_USE_ONLY_MANDATES = "useOnlyMandate";
-  public static final String UI_PARAM_USE_EIDAS = HTTP_PARAM_EIDAS_PROCESS;
-  public static final String UI_PARAM_DSGVO_SHORT_INFO = "dsgvoShortText";
-  public static final String UI_PARAM_DSGVO_SP_PRIVACY_STATEMENT_URL = "dsgvoPrivacyStatementUrl";
-  public static final String UI_PARAM_DSGVO_SP_SERVICE_URL = "dsgvoServiceUrl";
-  public static final String UI_PARAM_DSGVO_SP_LOGO = "dsgvoSpLogo";
-  public static final String UI_PARAM_DSGVO_SP_LOGO_SET = "dsgvoSpLogoSet";
-  public static final String UI_PARAM_DSGVO_SP_LOGO_SET_DATAURL = "dataUrl";
-  public static final String UI_PARAM_DSGVO_SP_LOGO_SET_THEME = "theme";
-  public static final String UI_PARAM_DSGVO_SP_LOGO_SET_RESOLUTION = "resolution";
-  public static final String UI_PARAM_DSGVO_SP_LOGO_SET_TYPE = "type";
-
-  public enum LogoType { SVG, PNG, UNKNOWN }
-
-  public enum AuthBlockType {
-    CADES("CAdES"), JWS("JWS"), NONE("none");
-
-    private final String internalType;
-
-    AuthBlockType(final String type) {
-      this.internalType = type;
-
-    }
-
-    /**
-     * Get Type identifier for this AuthBlock.
-     *
-     * @return
-     */
-    public String getAuthBlockType() {
-      return this.internalType;
-    }
-
-    @Override
-    public String toString() {
-      return getAuthBlockType();
-
-    }
-  }
-
-  // process context parameters
-  public static final String PROCESSCONTEXT_USERCONSENT_NEEDED = "userConsentNeeded";
-  public static final String PROCESSCONTEXT_AUTHPROCESSSELECTION_DONE = "authProcSelectDone";
-  public static final String PROCESSCONTEXT_SWITCH_LANGUAGE = "changeLanguage";
-  public static final String PROCESSCONTEXT_IFRAME_PARENT_NEEDED = "iframeParentNeeded";
-
-  public static final String PROCESSCONTEXT_WAS_EID_PROCESS = "wasEidProcess";
-
-}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/mobilesig/EidasCentralAuthConstants.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/mobilesig/EidasCentralAuthConstants.java
deleted file mode 100644
index ef7f667c..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/mobilesig/EidasCentralAuthConstants.java
+++ /dev/null
@@ -1,166 +0,0 @@
-package at.asitplus.eidas.specific.modules.auth.eidas.v2.mobilesig;
-
-
-import at.gv.egiz.eaaf.core.api.data.EaafConstants;
-import at.gv.egiz.eaaf.core.api.data.ExtendedPvpAttributeDefinitions;
-import at.gv.egiz.eaaf.core.api.data.PvpAttributeDefinitions;
-import at.gv.egiz.eaaf.core.impl.data.Triple;
-
-import java.util.ArrayList;
-import java.util.Collections;
-import java.util.List;
-
-
-public class EidasCentralAuthConstants {
-
-  private EidasCentralAuthConstants() {
-
-  }
-
-  public static final String SAML2_STATUSCODE_USERSTOP = "1005";
-
-  public static final String MODULE_NAME_FOR_LOGGING = "eIDAS central authentication";
-
-  public static final int METADATA_VALIDUNTIL_IN_HOURS = 24;
-
-  //  public static final String HTTP_PARAM_CENTRAL_EIDAS_AUTH_SELECTION =
-  //      AuthHandlerConstants.HTTP_PARAM_EIDAS_PROCESS;
-
-  public static final String ENDPOINT_POST = "/sp/eidas/post";
-  public static final String ENDPOINT_REDIRECT = "/sp/eidas/redirect";
-  public static final String ENDPOINT_METADATA = "/sp/eidas/metadata";
-
-  public static final String CONFIG_PROPS_PREFIX = "modules.eidascentralauth.";
-  public static final String CONFIG_PROPS_KEYSTORE_TYPE = CONFIG_PROPS_PREFIX + "keystore.type";
-  public static final String CONFIG_PROPS_KEYSTORE_NAME = CONFIG_PROPS_PREFIX + "keystore.name";
-  public static final String CONFIG_PROPS_KEYSTORE_PATH = CONFIG_PROPS_PREFIX + "keystore.path";
-  public static final String CONFIG_PROPS_KEYSTORE_PASSWORD = CONFIG_PROPS_PREFIX + "keystore.password";
-  public static final String CONFIG_PROPS_SIGN_METADATA_KEY_PASSWORD = CONFIG_PROPS_PREFIX
-      + "metadata.sign.password";
-  public static final String CONFIG_PROPS_SIGN_METADATA_ALIAS = CONFIG_PROPS_PREFIX
-      + "metadata.sign.alias";
-  public static final String CONFIG_PROPS_SIGN_SIGNING_KEY_PASSWORD = CONFIG_PROPS_PREFIX
-      + "request.sign.password";
-  public static final String CONFIG_PROPS_SIGN_SIGNING_ALIAS = CONFIG_PROPS_PREFIX
-      + "request.sign.alias";
-  public static final String CONFIG_PROPS_ENCRYPTION_KEY_PASSWORD = CONFIG_PROPS_PREFIX
-      + "response.encryption.password";
-  public static final String CONFIG_PROPS_ENCRYPTION_ALIAS = CONFIG_PROPS_PREFIX
-      + "response.encryption.alias";
-
-  public static final String CONFIG_PROPS_TRUSTSTORE_TYPE = CONFIG_PROPS_PREFIX + "truststore.type";
-  public static final String CONFIG_PROPS_TRUSTSTORE_NAME = CONFIG_PROPS_PREFIX + "truststore.name";
-  public static final String CONFIG_PROPS_TRUSTSTORE_PATH = CONFIG_PROPS_PREFIX + "truststore.path";
-  public static final String CONFIG_PROPS_TRUSTSTORE_PASSWORD = CONFIG_PROPS_PREFIX + "truststore.password";
-
-  public static final String CONFIG_PROPS_REQUIRED_PVP_ATTRIBUTES_LIST = CONFIG_PROPS_PREFIX
-      + "required.additional.attributes";
-  public static final String CONFIG_PROPS_REQUIRED_LOA = CONFIG_PROPS_PREFIX
-      + "required.loa";
-  public static final String CONFIG_PROPS_NODE_ENTITYID = CONFIG_PROPS_PREFIX + "node.entityId";
-  public static final String CONFIG_PROPS_NODE_METADATAURL = CONFIG_PROPS_PREFIX + "node.metadataUrl";
-  public static final String CONFIG_PROPS_NODE_TRUSTPROFILEID = CONFIG_PROPS_PREFIX + "node.trustprofileID";
-
-
-  public static final String CONFIG_PROPS_METADATA_CONTACT_GIVENNAME =
-      CONFIG_PROPS_PREFIX + "metadata.contact.givenname";
-  public static final String CONFIG_PROPS_METADATA_CONTACT_SURNAME =
-      CONFIG_PROPS_PREFIX + "metadata.contact.surname";
-  public static final String CONFIG_PROPS_METADATA_CONTACT_EMAIL =
-      CONFIG_PROPS_PREFIX + "metadata.contact.email";
-  public static final String CONFIG_PROPS_METADATA_ORGANISATION_NAME =
-      CONFIG_PROPS_PREFIX + "metadata.organisation.name";
-  public static final String CONFIG_PROPS_METADATA_ORGANISATION_FRIENDLYNAME =
-      CONFIG_PROPS_PREFIX + "metadata.organisation.friendyname";
-  public static final String CONFIG_PROPS_METADATA_ORGANISATION_URL =
-      CONFIG_PROPS_PREFIX + "metadata.organisation.url";
-
-  public static final String CONFIG_PROPS_APPSPECIFIC_EIDAS_NODE_URL = "auth.eidas.node.entityId";
-
-  public static final String CONFIG_PROPS_SEMPER_MANDATES_ACTIVE = CONFIG_PROPS_PREFIX
-      + "semper.mandates.active";
-  public static final String CONFIG_PROPS_SEMPER_MANDATES_MS_PROXY_LIST = CONFIG_PROPS_PREFIX
-      + "semper.msproxy.list";
-
-  public static final String CONFIG_DEFAULT_LOA_EIDAS_LEVEL = EaafConstants.EIDAS_LOA_HIGH;
-
-  @Deprecated
-  public static final List<Triple<String, String, Boolean>> DEFAULT_REQUIRED_PVP_ATTRIBUTES_WITHOUT_EID =
-      Collections.unmodifiableList(new ArrayList<Triple<String, String, Boolean>>() {
-        private static final long serialVersionUID = 1L;
-        {
-          // add PVP Version attribute
-          add(Triple.newInstance(PvpAttributeDefinitions.PVP_VERSION_NAME,
-              PvpAttributeDefinitions.PVP_VERSION_FRIENDLY_NAME, true));
-
-          // request entity information
-          add(Triple.newInstance(PvpAttributeDefinitions.EID_SECTOR_FOR_IDENTIFIER_NAME,
-              PvpAttributeDefinitions.EID_SECTOR_FOR_IDENTIFIER_FRIENDLY_NAME, false));
-          add(Triple.newInstance(PvpAttributeDefinitions.EID_CITIZEN_EIDAS_QAA_LEVEL_NAME,
-              PvpAttributeDefinitions.EID_CITIZEN_EIDAS_QAA_LEVEL_FRIENDLY_NAME, true));
-          add(Triple.newInstance(PvpAttributeDefinitions.EID_ISSUING_NATION_NAME,
-              PvpAttributeDefinitions.EID_ISSUING_NATION_FRIENDLY_NAME, true));
-
-          // entity eID information
-          add(Triple.newInstance(AhExtendedPvpAttributeDefinitions.EID_EIDBIND_NAME,
-              AhExtendedPvpAttributeDefinitions.EID_EIDBIND_FRIENDLY_NAME, false));
-          add(Triple.newInstance(AhExtendedPvpAttributeDefinitions.EID_AUTHBLOCK_SIGNED_NAME,
-              AhExtendedPvpAttributeDefinitions.EID_AUTHBLOCK_SIGNED_FRIENDLY_NAME, false));
-
-          // Deprecated information
-          add(Triple.newInstance(PvpAttributeDefinitions.GIVEN_NAME_NAME,
-              PvpAttributeDefinitions.GIVEN_NAME_FRIENDLY_NAME, false));
-          add(Triple.newInstance(PvpAttributeDefinitions.PRINCIPAL_NAME_NAME,
-              PvpAttributeDefinitions.PRINCIPAL_NAME_FRIENDLY_NAME, false));
-          add(Triple.newInstance(PvpAttributeDefinitions.BIRTHDATE_NAME,
-              PvpAttributeDefinitions.BIRTHDATE_FRIENDLY_NAME, false));
-          add(Triple.newInstance(PvpAttributeDefinitions.BPK_NAME, PvpAttributeDefinitions.BPK_FRIENDLY_NAME,
-              false));
-          add(Triple.newInstance(PvpAttributeDefinitions.EID_IDENTITY_LINK_NAME,
-              PvpAttributeDefinitions.EID_IDENTITY_LINK_FRIENDLY_NAME, false));
-
-          //request pII transactionId from MS-Connector
-          add(Triple.newInstance(ExtendedPvpAttributeDefinitions.EID_PII_TRANSACTION_ID_NAME,
-              ExtendedPvpAttributeDefinitions.EID_PII_TRANSACTION_ID_FRIENDLY_NAME, false));
-
-        }
-      });
-
-  public static final List<Triple<String, String, Boolean>> DEFAULT_REQUIRED_PVP_ATTRIBUTES =
-      Collections.unmodifiableList(new ArrayList<Triple<String, String, Boolean>>() {
-        private static final long serialVersionUID = 1L;
-        {
-          // add PVP Version attribute
-          add(Triple.newInstance(PvpAttributeDefinitions.PVP_VERSION_NAME,
-              PvpAttributeDefinitions.PVP_VERSION_FRIENDLY_NAME, true));
-
-          // entity metadata information
-          add(Triple.newInstance(PvpAttributeDefinitions.EID_CITIZEN_EIDAS_QAA_LEVEL_NAME,
-              PvpAttributeDefinitions.EID_CITIZEN_EIDAS_QAA_LEVEL_FRIENDLY_NAME, true));
-          add(Triple.newInstance(PvpAttributeDefinitions.EID_ISSUING_NATION_NAME,
-              PvpAttributeDefinitions.EID_ISSUING_NATION_FRIENDLY_NAME, true));
-
-          // entity eID information
-          add(Triple.newInstance(AhExtendedPvpAttributeDefinitions.EID_EIDBIND_NAME,
-              AhExtendedPvpAttributeDefinitions.EID_EIDBIND_FRIENDLY_NAME, true));
-          add(Triple.newInstance(AhExtendedPvpAttributeDefinitions.EID_AUTHBLOCK_SIGNED_NAME,
-              AhExtendedPvpAttributeDefinitions.EID_AUTHBLOCK_SIGNED_FRIENDLY_NAME, true));
-
-          //request pII transactionId from MS-Connector
-          add(Triple.newInstance(ExtendedPvpAttributeDefinitions.EID_PII_TRANSACTION_ID_NAME,
-              ExtendedPvpAttributeDefinitions.EID_PII_TRANSACTION_ID_FRIENDLY_NAME, false));
-
-        }
-      });
-
-  public static final List<String> DEFAULT_REQUIRED_PVP_ATTRIBUTE_NAMES =
-      Collections.unmodifiableList(new ArrayList<String>() {
-        private static final long serialVersionUID = 1L;
-        {
-          for (final Triple<String, String, Boolean> el : DEFAULT_REQUIRED_PVP_ATTRIBUTES) {
-            add(el.getFirst());
-          }
-        }
-      });
-
-}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/mobilesig/EidasCentralAuthCredentialProvider.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/mobilesig/EidasCentralAuthCredentialProvider.java
deleted file mode 100644
index 81ef82ed..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/mobilesig/EidasCentralAuthCredentialProvider.java
+++ /dev/null
@@ -1,130 +0,0 @@
-package at.asitplus.eidas.specific.modules.auth.eidas.v2.mobilesig;
-
-import at.gv.egiz.eaaf.core.api.idp.IConfiguration;
-import at.gv.egiz.eaaf.core.exceptions.EaafConfigurationException;
-import at.gv.egiz.eaaf.core.impl.credential.KeyStoreConfiguration;
-import at.gv.egiz.eaaf.core.impl.credential.KeyStoreConfiguration.KeyStoreType;
-import at.gv.egiz.eaaf.modules.pvp2.impl.utils.AbstractCredentialProvider;
-
-import org.springframework.beans.factory.annotation.Autowired;
-
-/**
- * Credential provider for eIDAS PVP S-Profile client.
- *
- * @author tlenz
- *
- */
-public class EidasCentralAuthCredentialProvider extends AbstractCredentialProvider {
-
-  @Autowired
-  IConfiguration authConfig;
-
-  private static final String FRIENDLYNAME = "eIDAS centrial authentication";
-
-  @Override
-  public KeyStoreConfiguration getBasicKeyStoreConfig() throws EaafConfigurationException {
-    final KeyStoreConfiguration keyStoreConfig = new KeyStoreConfiguration();
-    keyStoreConfig.setFriendlyName(FRIENDLYNAME);
-    keyStoreConfig.setKeyStoreType(
-        authConfig.getBasicConfiguration(EidasCentralAuthConstants.CONFIG_PROPS_KEYSTORE_TYPE,
-            KeyStoreType.PKCS12.getKeyStoreType()));
-    keyStoreConfig.setKeyStoreName(
-        authConfig.getBasicConfiguration(EidasCentralAuthConstants.CONFIG_PROPS_KEYSTORE_NAME));
-    keyStoreConfig.setSoftKeyStoreFilePath(getKeyStoreFilePath());
-    keyStoreConfig.setSoftKeyStorePassword(
-        authConfig.getBasicConfiguration(EidasCentralAuthConstants.CONFIG_PROPS_KEYSTORE_PASSWORD));
-
-    return keyStoreConfig;
-
-  }
-
-  private String getKeyStoreFilePath() throws EaafConfigurationException {
-    final String path = authConfig.getBasicConfiguration(
-        EidasCentralAuthConstants.CONFIG_PROPS_KEYSTORE_PATH);
-    if (path == null) {
-      throw new EaafConfigurationException("module.eidasauth.00",
-          new Object[] { EidasCentralAuthConstants.CONFIG_PROPS_KEYSTORE_PATH });
-
-    }
-    return path;
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see
-   * at.gv.egovernment.moa.id.protocols.pvp2x.signer.AbstractCredentialProvider#
-   * getMetadataKeyAlias()
-   */
-  @Override
-  public String getMetadataKeyAlias() {
-    return authConfig.getBasicConfiguration(
-        EidasCentralAuthConstants.CONFIG_PROPS_SIGN_METADATA_ALIAS);
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see
-   * at.gv.egovernment.moa.id.protocols.pvp2x.signer.AbstractCredentialProvider#
-   * getMetadataKeyPassword()
-   */
-  @Override
-  public String getMetadataKeyPassword() {
-    return authConfig.getBasicConfiguration(
-        EidasCentralAuthConstants.CONFIG_PROPS_SIGN_METADATA_KEY_PASSWORD);
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see
-   * at.gv.egovernment.moa.id.protocols.pvp2x.signer.AbstractCredentialProvider#
-   * getSignatureKeyAlias()
-   */
-  @Override
-  public String getSignatureKeyAlias() {
-    return authConfig.getBasicConfiguration(
-        EidasCentralAuthConstants.CONFIG_PROPS_SIGN_SIGNING_ALIAS);
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see
-   * at.gv.egovernment.moa.id.protocols.pvp2x.signer.AbstractCredentialProvider#
-   * getSignatureKeyPassword()
-   */
-  @Override
-  public String getSignatureKeyPassword() {
-    return authConfig.getBasicConfiguration(
-        EidasCentralAuthConstants.CONFIG_PROPS_SIGN_SIGNING_KEY_PASSWORD);
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see
-   * at.gv.egovernment.moa.id.protocols.pvp2x.signer.AbstractCredentialProvider#
-   * getEncryptionKeyAlias()
-   */
-  @Override
-  public String getEncryptionKeyAlias() {
-    return authConfig.getBasicConfiguration(
-        EidasCentralAuthConstants.CONFIG_PROPS_ENCRYPTION_ALIAS);
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see
-   * at.gv.egovernment.moa.id.protocols.pvp2x.signer.AbstractCredentialProvider#
-   * getEncryptionKeyPassword()
-   */
-  @Override
-  public String getEncryptionKeyPassword() {
-    return authConfig.getBasicConfiguration(
-        EidasCentralAuthConstants.CONFIG_PROPS_ENCRYPTION_KEY_PASSWORD);
-  }
-
-}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/mobilesig/EidasCentralAuthMetadataConfiguration.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/mobilesig/EidasCentralAuthMetadataConfiguration.java
deleted file mode 100644
index ca71807f..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/mobilesig/EidasCentralAuthMetadataConfiguration.java
+++ /dev/null
@@ -1,471 +0,0 @@
-package at.asitplus.eidas.specific.modules.auth.eidas.v2.mobilesig;
-
-
-import java.util.ArrayList;
-import java.util.Arrays;
-import java.util.Collection;
-import java.util.HashMap;
-import java.util.List;
-import java.util.Map;
-
-import at.gv.egiz.eaaf.core.exceptions.EaafException;
-import at.gv.egiz.eaaf.core.impl.data.Pair;
-import at.gv.egiz.eaaf.core.impl.data.Triple;
-import at.gv.egiz.eaaf.modules.pvp2.api.IPvp2BasicConfiguration;
-import at.gv.egiz.eaaf.modules.pvp2.api.credential.EaafX509Credential;
-import at.gv.egiz.eaaf.modules.pvp2.api.metadata.IPvpMetadataBuilderConfiguration;
-import at.gv.egiz.eaaf.modules.pvp2.exception.CredentialsNotAvailableException;
-import at.gv.egiz.eaaf.modules.pvp2.impl.builder.PvpAttributeBuilder;
-
-import org.opensaml.saml.saml2.core.Attribute;
-import org.opensaml.saml.saml2.core.NameIDType;
-import org.opensaml.saml.saml2.metadata.ContactPerson;
-import org.opensaml.saml.saml2.metadata.Organization;
-import org.opensaml.saml.saml2.metadata.RequestedAttribute;
-import org.opensaml.security.credential.Credential;
-
-import lombok.extern.slf4j.Slf4j;
-
-/**
- * Configuration object to generate PVP S-Profile metadata for SAML2 client.
- *
- * @author tlenz
- *
- */
-@Slf4j
-public class EidasCentralAuthMetadataConfiguration implements IPvpMetadataBuilderConfiguration {
-
-  private Collection<RequestedAttribute> additionalAttributes = null;
-
-  private final String authUrl;
-  private final EidasCentralAuthCredentialProvider credentialProvider;
-  private final IPvp2BasicConfiguration pvpConfiguration;
-
-  /**
-   * Configuration object to create PVP2 S-Profile metadata information.
-   *
-   * @param authUrl            Public URL prefix of the application
-   * @param credentialProvider Credentials used by PVP2 S-Profile end-point
-   * @param pvpConfiguration   Basic PVP2 S-Profile end-point configuration
-   */
-  public EidasCentralAuthMetadataConfiguration(String authUrl,
-                                               EidasCentralAuthCredentialProvider credentialProvider,
-                                               IPvp2BasicConfiguration pvpConfiguration) {
-    this.authUrl = authUrl;
-    this.credentialProvider = credentialProvider;
-    this.pvpConfiguration = pvpConfiguration;
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see
-   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
-   * getMetadataValidUntil()
-   */
-  @Override
-  public int getMetadataValidUntil() {
-    return EidasCentralAuthConstants.METADATA_VALIDUNTIL_IN_HOURS;
-
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see
-   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
-   * buildEntitiesDescriptorAsRootElement()
-   */
-  @Override
-  public boolean buildEntitiesDescriptorAsRootElement() {
-    return false;
-
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see
-   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
-   * buildIDPSSODescriptor()
-   */
-  @Override
-  public boolean buildIdpSsoDescriptor() {
-    return false;
-
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see
-   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
-   * buildSPSSODescriptor()
-   */
-  @Override
-  public boolean buildSpSsoDescriptor() {
-    return true;
-
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see
-   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
-   * getEntityIDPostfix()
-   */
-  @Override
-  public String getEntityID() {
-    return authUrl + EidasCentralAuthConstants.ENDPOINT_METADATA;
-
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see
-   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
-   * getEntityFriendlyName()
-   */
-  @Override
-  public String getEntityFriendlyName() {
-    return null;
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see
-   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
-   * getContactPersonInformation()
-   */
-  @Override
-  public List<ContactPerson> getContactPersonInformation() {
-    try {
-      return pvpConfiguration.getIdpContacts();
-
-    } catch (final EaafException e) {
-      log.warn("Can not load Metadata entry: Contect Person", e);
-      return null;
-
-    }
-
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see
-   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
-   * getOrgansiationInformation()
-   */
-  @Override
-  public Organization getOrgansiationInformation() {
-    try {
-      return pvpConfiguration.getIdpOrganisation();
-
-    } catch (final EaafException e) {
-      log.warn("Can not load Metadata entry: Organisation", e);
-      return null;
-
-    }
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see
-   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
-   * getMetadataSigningCredentials()
-   */
-  @Override
-  public EaafX509Credential getMetadataSigningCredentials() throws CredentialsNotAvailableException {
-    return credentialProvider.getMetaDataSigningCredential();
-
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see
-   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
-   * getRequestorResponseSigningCredentials()
-   */
-  @Override
-  public Credential getRequestorResponseSigningCredentials() throws CredentialsNotAvailableException {
-    return credentialProvider.getMessageSigningCredential();
-
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see
-   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
-   * getEncryptionCredentials()
-   */
-  @Override
-  public Credential getEncryptionCredentials() throws CredentialsNotAvailableException {
-    return credentialProvider.getMessageEncryptionCredential();
-
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see
-   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
-   * getIDPWebSSOPostBindingURL()
-   */
-  @Override
-  public String getIdpWebSsoPostBindingUrl() {
-    return null;
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see
-   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
-   * getIDPWebSSORedirectBindingURL()
-   */
-  @Override
-  public String getIdpWebSsoRedirectBindingUrl() {
-    return null;
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see
-   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
-   * getIDPSLOPostBindingURL()
-   */
-  @Override
-  public String getIdpSloPostBindingUrl() {
-    return null;
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see
-   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
-   * getIDPSLORedirectBindingURL()
-   */
-  @Override
-  public String getIdpSloRedirectBindingUrl() {
-    return null;
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see
-   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
-   * getSPAssertionConsumerServicePostBindingURL()
-   */
-  @Override
-  public String getSpAssertionConsumerServicePostBindingUrl() {
-    return authUrl + EidasCentralAuthConstants.ENDPOINT_POST;
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see
-   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
-   * getSPAssertionConsumerServiceRedirectBindingURL()
-   */
-  @Override
-  public String getSpAssertionConsumerServiceRedirectBindingUrl() {
-    return authUrl + EidasCentralAuthConstants.ENDPOINT_REDIRECT;
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see
-   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
-   * getSPSLOPostBindingURL()
-   */
-  @Override
-  public String getSpSloPostBindingUrl() {
-    return null;
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see
-   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
-   * getSPSLORedirectBindingURL()
-   */
-  @Override
-  public String getSpSloRedirectBindingUrl() {
-    return null;
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see
-   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
-   * getSPSLOSOAPBindingURL()
-   */
-  @Override
-  public String getSpSloSoapBindingUrl() {
-    return null;
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see
-   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
-   * getIDPPossibleAttributes()
-   */
-  @Override
-  public List<Attribute> getIdpPossibleAttributes() {
-    return null;
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see
-   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
-   * getIDPPossibleNameITTypes()
-   */
-  @Override
-  public List<String> getIdpPossibleNameIdTypes() {
-    return null;
-  }
-
-
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see
-   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
-   * getSPRequiredAttributes()
-   */
-  @Override
-  public Collection<RequestedAttribute> getSpRequiredAttributes() {
-    final Map<String, RequestedAttribute> requestedAttributes = new HashMap<>();
-
-    if (pvpConfiguration.getBasicConfiguration().getBasicConfigurationBoolean(
-        AuthHandlerConstants.PROP_CONFIG_LEGACY_ALLOW, false)) {
-      log.trace("Build required attributes for legacy operaton ... ");
-      injectDefinedAttributes(requestedAttributes,
-          EidasCentralAuthConstants.DEFAULT_REQUIRED_PVP_ATTRIBUTES_WITHOUT_EID);
-
-    } else {
-      log.trace("Build required attributes for E-ID operaton ... ");
-      injectDefinedAttributes(requestedAttributes,
-          EidasCentralAuthConstants.DEFAULT_REQUIRED_PVP_ATTRIBUTES);
-
-    }
-
-    if (additionalAttributes != null) {
-      log.trace("Add additional PVP attributes into metadata ... ");
-      for (final RequestedAttribute el : additionalAttributes) {
-        if (requestedAttributes.containsKey(el.getName())) {
-          log.debug("Attribute " + el.getName()
-              + " is already added by default configuration. Overwrite it by user configuration");
-        }
-
-        requestedAttributes.put(el.getName(), el);
-
-      }
-    }
-
-    return requestedAttributes.values();
-
-  }
-
-
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see
-   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
-   * getSPAllowedNameITTypes()
-   */
-  @Override
-  public List<String> getSpAllowedNameIdTypes() {
-    return Arrays.asList(NameIDType.PERSISTENT);
-
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
-   * IPVPMetadataBuilderConfiguration#getSPNameForLogging()
-   */
-  @Override
-  public String getSpNameForLogging() {
-    return EidasCentralAuthConstants.MODULE_NAME_FOR_LOGGING;
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
-   * IPVPMetadataBuilderConfiguration#wantAssertionSigned()
-   */
-  @Override
-  public boolean wantAssertionSigned() {
-    return false;
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
-   * IPVPMetadataBuilderConfiguration#wantAuthnRequestSigned()
-   */
-  @Override
-  public boolean wantAuthnRequestSigned() {
-    return true;
-  }
-
-  /**
-   * Add additonal PVP attributes that are required by this deployment.
-   *
-   * @param additionalAttr List of PVP attribute name and isRequired flag
-   */
-  public void setAdditionalRequiredAttributes(List<Pair<String, Boolean>> additionalAttr) {
-    if (additionalAttr != null && !additionalAttr.isEmpty()) {
-      additionalAttributes = new ArrayList<>();
-      for (final Pair<String, Boolean> el : additionalAttr) {
-        final Attribute attributBuilder = PvpAttributeBuilder.buildEmptyAttribute(el.getFirst());
-        if (attributBuilder != null) {
-          additionalAttributes.add(
-              PvpAttributeBuilder.buildReqAttribute(
-                  attributBuilder.getName(),
-                  attributBuilder.getFriendlyName(),
-                  el.getSecond()));
-
-        } else {
-          log.info("NO PVP attribute with name: " + el.getFirst());
-        }
-
-      }
-    }
-  }
-
-  private void injectDefinedAttributes(Map<String, RequestedAttribute> requestedAttributes,
-                                       List<Triple<String, String, Boolean>> attributes) {
-    for (final Triple<String, String, Boolean> el : attributes) {
-      requestedAttributes.put(el.getFirst(), PvpAttributeBuilder.buildReqAttribute(el.getFirst(), el
-          .getSecond(), el.getThird()));
-
-    }
-  }
-
-}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/mobilesig/EidasCentralAuthMetadataController.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/mobilesig/EidasCentralAuthMetadataController.java
deleted file mode 100644
index 90e1e674..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/mobilesig/EidasCentralAuthMetadataController.java
+++ /dev/null
@@ -1,149 +0,0 @@
-package at.asitplus.eidas.specific.modules.auth.eidas.v2.mobilesig;
-
-
-import java.io.IOException;
-import java.net.MalformedURLException;
-import java.net.URL;
-import java.util.ArrayList;
-import java.util.List;
-import java.util.Map;
-
-import javax.servlet.http.HttpServletRequest;
-import javax.servlet.http.HttpServletResponse;
-
-import at.gv.egiz.eaaf.core.exceptions.EaafAuthenticationException;
-import at.gv.egiz.eaaf.core.exceptions.EaafException;
-import at.gv.egiz.eaaf.core.impl.data.Pair;
-import at.gv.egiz.eaaf.core.impl.http.HttpUtils;
-import at.gv.egiz.eaaf.core.impl.idp.controller.AbstractController;
-import at.gv.egiz.eaaf.core.impl.utils.KeyValueUtils;
-import at.gv.egiz.eaaf.modules.pvp2.api.IPvp2BasicConfiguration;
-import at.gv.egiz.eaaf.modules.pvp2.impl.builder.PvpMetadataBuilder;
-
-import org.apache.commons.lang3.StringUtils;
-import org.springframework.beans.factory.annotation.Autowired;
-import org.springframework.stereotype.Controller;
-import org.springframework.web.bind.annotation.RequestMapping;
-import org.springframework.web.bind.annotation.RequestMethod;
-
-import com.google.common.net.MediaType;
-import lombok.extern.slf4j.Slf4j;
-
-/**
- * Controller that generates SAML2 metadata for eIDAS authentication client.
- *
- * @author tlenz
- *
- */
-@Slf4j
-@Controller
-public class EidasCentralAuthMetadataController extends AbstractController {
-
-  private static final String ERROR_CODE_INTERNAL_00 = "eaaf.core.00";
-
-  @Autowired
-  PvpMetadataBuilder metadatabuilder;
-  @Autowired
-  EidasCentralAuthCredentialProvider credentialProvider;
-  @Autowired
-  IPvp2BasicConfiguration pvpConfiguration;
-
-  /**
-   * Default construction with logging.
-   *
-   */
-  public EidasCentralAuthMetadataController() {
-    super();
-    log.debug("Registering servlet " + getClass().getName()
-        + " with mappings '" + EidasCentralAuthConstants.ENDPOINT_METADATA
-        + "'.");
-
-  }
-
-  /**
-   * End-point that produce PVP2 metadata for eIDAS authentication client.
-   *
-   * @param req  http Request
-   * @param resp http Response
-   * @throws IOException   In case of an I/O error
-   * @throws EaafException In case of a metadata generation error
-   */
-  @RequestMapping(value = EidasCentralAuthConstants.ENDPOINT_METADATA,
-      method = { RequestMethod.GET })
-  public void getSpMetadata(HttpServletRequest req, HttpServletResponse resp) throws IOException,
-      EaafException {
-    // check PublicURL prefix
-    try {
-      final String authUrl = getAuthUrlFromHttpContext(req);
-
-      // initialize metadata builder configuration
-      final EidasCentralAuthMetadataConfiguration metadataConfig =
-          new EidasCentralAuthMetadataConfiguration(authUrl, credentialProvider, pvpConfiguration);
-      metadataConfig.setAdditionalRequiredAttributes(getAdditonalRequiredAttributes());
-
-      // build metadata
-      final String xmlMetadata = metadatabuilder.buildPvpMetadata(metadataConfig);
-
-      // write response
-      final byte[] content = xmlMetadata.getBytes("UTF-8");
-      resp.setStatus(HttpServletResponse.SC_OK);
-      resp.setContentLength(content.length);
-      resp.setContentType(MediaType.XML_UTF_8.toString());
-      resp.getOutputStream().write(content);
-
-    } catch (final Exception e) {
-      log.warn("Build federated-authentication PVP metadata FAILED.", e);
-      protAuthService.handleErrorNoRedirect(e, req, resp, false);
-
-    }
-
-  }
-
-  private String getAuthUrlFromHttpContext(HttpServletRequest req) throws EaafException {
-    // check if End-Point is valid
-    final String authUrlString = HttpUtils.extractAuthUrlFromRequest(req);
-    URL authReqUrl;
-    try {
-      authReqUrl = new URL(authUrlString);
-
-    } catch (final MalformedURLException e) {
-      log.warn("Requested URL: {} is not a valid URL.", authUrlString);
-      throw new EaafAuthenticationException(ERROR_CODE_INTERNAL_00, new Object[] { authUrlString }, e);
-
-    }
-
-    final String idpAuthUrl = authConfig.validateIdpUrl(authReqUrl);
-    if (idpAuthUrl == null) {
-      log.warn("Requested URL: {} is NOT found in configuration.", authReqUrl);
-      throw new EaafAuthenticationException(ERROR_CODE_INTERNAL_00, new Object[] { authUrlString });
-
-    }
-
-    return idpAuthUrl;
-  }
-
-  private List<Pair<String, Boolean>> getAdditonalRequiredAttributes() {
-    final List<Pair<String, Boolean>> result = new ArrayList<>();
-
-    // load attributes from configuration
-    final Map<String, String> addReqAttributes = authConfig.getBasicConfigurationWithPrefix(
-        EidasCentralAuthConstants.CONFIG_PROPS_REQUIRED_PVP_ATTRIBUTES_LIST);
-    for (final String el : addReqAttributes.values()) {
-      if (StringUtils.isNotEmpty(el)) {
-        log.trace("Parse additional attr. definition: " + el);
-        final List<String> attr = KeyValueUtils.getListOfCsvValues(el.trim());
-        if (attr.size() == 2) {
-          result.add(Pair.newInstance(attr.get(0), Boolean.parseBoolean(attr.get(1))));
-
-        } else {
-          log.info("IGNORE additional attr. definition: " + el
-              + " Reason: Format not valid");
-        }
-      }
-    }
-
-    return result;
-
-  }
-
-}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/mobilesig/EidasCentralAuthMetadataProvider.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/mobilesig/EidasCentralAuthMetadataProvider.java
deleted file mode 100644
index b920e789..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/mobilesig/EidasCentralAuthMetadataProvider.java
+++ /dev/null
@@ -1,169 +0,0 @@
-package at.asitplus.eidas.specific.modules.auth.eidas.v2.mobilesig;
-
-import java.io.IOException;
-import java.security.KeyStore;
-import java.security.Provider;
-import java.security.cert.CertificateException;
-import java.text.MessageFormat;
-import java.util.ArrayList;
-import java.util.Collections;
-import java.util.List;
-
-import javax.annotation.PostConstruct;
-
-import at.gv.egiz.eaaf.core.api.idp.IConfiguration;
-import at.gv.egiz.eaaf.core.exceptions.EaafConfigurationException;
-import at.gv.egiz.eaaf.core.exceptions.EaafException;
-import at.gv.egiz.eaaf.core.impl.credential.EaafKeyStoreFactory;
-import at.gv.egiz.eaaf.core.impl.credential.KeyStoreConfiguration;
-import at.gv.egiz.eaaf.core.impl.credential.KeyStoreConfiguration.KeyStoreType;
-import at.gv.egiz.eaaf.core.impl.data.Pair;
-import at.gv.egiz.eaaf.core.impl.http.IHttpClientFactory;
-import at.gv.egiz.eaaf.modules.pvp2.exception.Pvp2MetadataException;
-import at.gv.egiz.eaaf.modules.pvp2.impl.metadata.AbstractChainingMetadataProvider;
-import at.gv.egiz.eaaf.modules.pvp2.impl.metadata.PvpMetadataResolverFactory;
-import at.gv.egiz.eaaf.modules.pvp2.impl.validation.metadata.SchemaValidationFilter;
-import at.gv.egiz.eaaf.modules.pvp2.impl.validation.metadata.SimpleMetadataSignatureVerificationFilter;
-
-import org.apache.commons.lang3.StringUtils;
-import org.opensaml.saml.metadata.resolver.MetadataResolver;
-import org.opensaml.saml.metadata.resolver.filter.MetadataFilter;
-import org.opensaml.saml.metadata.resolver.filter.MetadataFilterChain;
-import org.springframework.beans.factory.annotation.Autowired;
-
-import lombok.extern.slf4j.Slf4j;
-
-/**
- * SAML2 metadata-provider implementation for eIDAS client.
- *
- * @author tlenz
- *
- */
-@Slf4j
-public class EidasCentralAuthMetadataProvider extends AbstractChainingMetadataProvider {
-
-  private static final String FRIENDLYNAME_METADATA_TRUSTSTORE = "'eIDAS_client metadata truststore'";
-  private static final String PROVIDER_ID_PATTERN = "eIDAS resolver: {0}";
-  public static final String PROVIDER_ID = "'eIDAS_client metadata provider'";
-
-  @Autowired
-  private IConfiguration basicConfig;
-
-  @Autowired
-  private PvpMetadataResolverFactory metadataProviderFactory;
-  @Autowired
-  private IHttpClientFactory httpClientFactory;
-
-  @Autowired
-  private EaafKeyStoreFactory keyStoreFactory;
-
-  private Pair<KeyStore, Provider> metadataSigningTrustStore;
-
-  @Override
-  protected String getMetadataUrl(String entityId) throws EaafConfigurationException {
-    log.trace("eIDAS Auth. uses SAML2 well-known location approach. EntityId is Metadata-URL");
-    return entityId;
-
-  }
-
-  @Override
-  protected MetadataResolver createNewMetadataProvider(String entityId) throws EaafConfigurationException,
-      IOException, CertificateException {
-    final List<MetadataFilter> filterList = new ArrayList<>();
-    filterList.add(new SchemaValidationFilter(true));
-    filterList.add(new SimpleMetadataSignatureVerificationFilter(
-        metadataSigningTrustStore.getFirst(), entityId));
-
-    final MetadataFilterChain filter = new MetadataFilterChain();
-    filter.setFilters(filterList);
-
-    try {
-      return metadataProviderFactory.createMetadataProvider(getMetadataUrl(entityId),
-          filter,
-          MessageFormat.format(PROVIDER_ID_PATTERN, entityId),
-          httpClientFactory.getHttpClient());
-
-    } catch (final Pvp2MetadataException e) {
-      log.info("Can NOT build metadata provider for entityId: {}", entityId);
-      throw new EaafConfigurationException("module.eidasauth.04",
-          new Object[] { entityId, e.getMessage() }, e);
-
-    }
-  }
-
-  @Override
-  protected List<String> getAllMetadataUrlsFromConfiguration() throws EaafConfigurationException {
-    return Collections.emptyList();
-
-  }
-
-  @Override
-  protected String getMetadataProviderId() {
-    return PROVIDER_ID;
-
-  }
-
-  @Override
-  public void runGarbageCollector() {
-    log.trace("Garbage collection is NOT supported by: {}", getId());
-  }
-
-  @Override
-  public void doDestroy() {
-    super.fullyDestroy();
-
-  }
-
-  @PostConstruct
-  private void initialize() throws EaafException {
-    // initialize truststore to validate metadata signing certificates
-    initializeTrustStore();
-
-    // load metadata with metadataURL, as backup
-    initializeFileSystemMetadata();
-
-  }
-
-  private void initializeFileSystemMetadata() {
-    try {
-      final String metadataUrl = basicConfig.getBasicConfiguration(
-          EidasCentralAuthConstants.CONFIG_PROPS_NODE_METADATAURL);
-      if (StringUtils.isNotEmpty(metadataUrl)) {
-        log.info("Use not recommended metadata-provider initialization!"
-            + " SAML2 'Well-Known-Location' is the preferred methode.");
-        log.info("Initialize 'ms-specific eIDAS node' metadata-provider with URL: {}", metadataUrl);
-
-        addMetadataResolverIntoChain(createNewMetadataProvider(metadataUrl));
-      }
-
-    } catch (final EaafConfigurationException | CertificateException | IOException e) {
-      log.warn("Can NOT inject static eIDAS Node metadata-soure.", e);
-      log.warn("eIDAS Node communication can be FAIL.");
-
-    }
-  }
-
-  private void initializeTrustStore() throws EaafException {
-    // set configuration
-    final KeyStoreConfiguration trustStoreConfig = new KeyStoreConfiguration();
-    trustStoreConfig.setFriendlyName(FRIENDLYNAME_METADATA_TRUSTSTORE);
-    trustStoreConfig.setKeyStoreType(basicConfig.getBasicConfiguration(
-        EidasCentralAuthConstants.CONFIG_PROPS_TRUSTSTORE_TYPE,
-        KeyStoreType.JKS.getKeyStoreType()));
-    trustStoreConfig.setKeyStoreName(basicConfig.getBasicConfiguration(
-        EidasCentralAuthConstants.CONFIG_PROPS_TRUSTSTORE_NAME));
-    trustStoreConfig.setSoftKeyStoreFilePath(basicConfig.getBasicConfiguration(
-        EidasCentralAuthConstants.CONFIG_PROPS_TRUSTSTORE_PATH));
-    trustStoreConfig.setSoftKeyStorePassword(basicConfig.getBasicConfiguration(
-        EidasCentralAuthConstants.CONFIG_PROPS_TRUSTSTORE_PASSWORD));
-
-    // validate configuration
-    trustStoreConfig.validate();
-
-    // open new TrustStore
-    metadataSigningTrustStore = keyStoreFactory.buildNewKeyStore(trustStoreConfig);
-
-  }
-
-}
-
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/mobilesig/EidasCentralAuthRequestBuilderConfiguration.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/mobilesig/EidasCentralAuthRequestBuilderConfiguration.java
deleted file mode 100644
index 723654eb..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/mobilesig/EidasCentralAuthRequestBuilderConfiguration.java
+++ /dev/null
@@ -1,300 +0,0 @@
-package at.asitplus.eidas.specific.modules.auth.eidas.v2.mobilesig;
-
-import java.util.List;
-
-import at.gv.egiz.eaaf.modules.pvp2.api.credential.EaafX509Credential;
-import at.gv.egiz.eaaf.modules.pvp2.api.reqattr.EaafRequestedAttribute;
-import at.gv.egiz.eaaf.modules.pvp2.sp.api.IPvpAuthnRequestBuilderConfiguruation;
-
-import org.opensaml.saml.saml2.core.AuthnContextComparisonTypeEnumeration;
-import org.opensaml.saml.saml2.core.NameIDType;
-import org.opensaml.saml.saml2.metadata.EntityDescriptor;
-import org.w3c.dom.Element;
-
-public class EidasCentralAuthRequestBuilderConfiguration implements IPvpAuthnRequestBuilderConfiguruation {
-
-  private boolean isPassive;
-  private String spEntityId;
-  private String qaaLevel;
-  private EntityDescriptor idpEntity;
-  private EaafX509Credential signCred;
-  private String scopeRequesterId;
-  private String providerName;
-  private List<EaafRequestedAttribute> requestedAttributes;
-  private String reqId;
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
-   * IPVPAuthnRequestBuilderConfiguruation#isPassivRequest()
-   */
-  @Override
-  public Boolean isPassivRequest() {
-    return this.isPassive;
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
-   * IPVPAuthnRequestBuilderConfiguruation#getAssertionConsumerServiceId()
-   */
-  @Override
-  public Integer getAssertionConsumerServiceId() {
-    return 0;
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
-   * IPVPAuthnRequestBuilderConfiguruation#getEntityID()
-   */
-  @Override
-  public String getSpEntityID() {
-    return this.spEntityId;
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
-   * IPVPAuthnRequestBuilderConfiguruation#getNameIDPolicy()
-   */
-  @Override
-  public String getNameIdPolicyFormat() {
-    return NameIDType.PERSISTENT;
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
-   * IPVPAuthnRequestBuilderConfiguruation#getNameIDPolicy()
-   */
-  @Override
-  public boolean getNameIdPolicyAllowCreation() {
-    return true;
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
-   * IPVPAuthnRequestBuilderConfiguruation#getAuthnContextClassRef()
-   */
-  @Override
-  public String getAuthnContextClassRef() {
-    return this.qaaLevel;
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
-   * IPVPAuthnRequestBuilderConfiguruation#getAuthnContextComparison()
-   */
-  @Override
-  public AuthnContextComparisonTypeEnumeration getAuthnContextComparison() {
-    return AuthnContextComparisonTypeEnumeration.MINIMUM;
-  }
-
-  /**
-   * Set isPassive flag in SAML2 request.
-   *
-   * @param isPassive the isPassive to set.
-   */
-  public void setPassive(boolean isPassive) {
-    this.isPassive = isPassive;
-  }
-
-  /**
-   * Set the requester EntityId.
-   *
-   * @param spEntityId EntityId of SP
-   */
-  public void setSpEntityID(String spEntityId) {
-    this.spEntityId = spEntityId;
-  }
-
-  /**
-   * Set required LoA.
-   *
-   * @param loa the LoA to set.
-   */
-  public void setRequestedLoA(String loa) {
-    qaaLevel = loa;
-  }
-
-  /**
-   * Set EntityId of IDP.
-   *
-   * @param idpEntity the idpEntity to set.
-   */
-  public void setIdpEntity(EntityDescriptor idpEntity) {
-    this.idpEntity = idpEntity;
-  }
-
-  /**
-   * Set message signing credentials.
-   *
-   * @param signCred the signCred to set.
-   */
-  public void setSignCred(EaafX509Credential signCred) {
-    this.signCred = signCred;
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
-   * IPVPAuthnRequestBuilderConfiguruation#getAuthnRequestSigningCredential()
-   */
-  @Override
-  public EaafX509Credential getAuthnRequestSigningCredential() {
-    return this.signCred;
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
-   * IPVPAuthnRequestBuilderConfiguruation#getIDPEntityDescriptor()
-   */
-  @Override
-  public EntityDescriptor getIdpEntityDescriptor() {
-    return this.idpEntity;
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
-   * IPVPAuthnRequestBuilderConfiguruation#getSubjectNameID()
-   */
-  @Override
-  public String getSubjectNameID() {
-    return null;
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
-   * IPVPAuthnRequestBuilderConfiguruation#getSPNameForLogging()
-   */
-  @Override
-  public String getSpNameForLogging() {
-    return EidasCentralAuthConstants.MODULE_NAME_FOR_LOGGING;
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
-   * IPVPAuthnRequestBuilderConfiguruation#getSubjectNameIDFormat()
-   */
-  @Override
-  public String getSubjectNameIdFormat() {
-    return null;
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
-   * IPVPAuthnRequestBuilderConfiguruation#getRequestID()
-   */
-  @Override
-  public String getRequestID() {
-    return this.reqId;
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
-   * IPVPAuthnRequestBuilderConfiguruation#getSubjectNameIDQualifier()
-   */
-  @Override
-  public String getSubjectNameIdQualifier() {
-    return null;
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
-   * IPVPAuthnRequestBuilderConfiguruation#getSubjectConformationMethode()
-   */
-  @Override
-  public String getSubjectConformationMethode() {
-    return null;
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
-   * IPVPAuthnRequestBuilderConfiguruation#getSubjectConformationDate()
-   */
-  @Override
-  public Element getSubjectConformationDate() {
-    return null;
-  }
-
-  @Override
-  public List<EaafRequestedAttribute> getRequestedAttributes() {
-    return this.requestedAttributes;
-
-  }
-
-  @Override
-  public String getProviderName() {
-    return this.providerName;
-  }
-
-  @Override
-  public String getScopeRequesterId() {
-    return this.scopeRequesterId;
-  }
-
-  /**
-   * Set the entityId of the SP that requests the proxy for eIDAS authentication.
-   *
-   * @param scopeRequesterId RequestId in SAML2 Proxy extension
-   */
-  public void setScopeRequesterId(String scopeRequesterId) {
-    this.scopeRequesterId = scopeRequesterId;
-  }
-
-  /**
-   * Set a friendlyName for the SP that requests the proxy for eIDAS
-   * authentication.
-   *
-   * @param providerName SAML2 provider-name attribute-value
-   */
-  public void setProviderName(String providerName) {
-    this.providerName = providerName;
-  }
-
-  /**
-   * Set a Set of PVP attributes that a requested by using requested attributes.
-   *
-   * @param requestedAttributes Requested SAML2 attributes
-   */
-  public void setRequestedAttributes(List<EaafRequestedAttribute> requestedAttributes) {
-    this.requestedAttributes = requestedAttributes;
-  }
-
-  /**
-   * Set a RequestId for this Authn. Request.
-   *
-   * @param reqId SAML2 message requestId
-   */
-  public void setRequestId(String reqId) {
-    this.reqId = reqId;
-  }
-
-}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/mobilesig/IAhSpConfiguration.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/mobilesig/IAhSpConfiguration.java
deleted file mode 100644
index d8e873c0..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/mobilesig/IAhSpConfiguration.java
+++ /dev/null
@@ -1,151 +0,0 @@
-package at.asitplus.eidas.specific.modules.auth.eidas.v2.mobilesig;
-
-import java.util.List;
-
-import javax.annotation.Nonnull;
-import javax.annotation.Nullable;
-
-import at.gv.egiz.eaaf.core.api.idp.ISpConfiguration;
-import at.gv.egiz.eaaf.core.impl.data.Pair;
-
-public interface IAhSpConfiguration extends ISpConfiguration {
-
-
-  /**
-   * Flag if this Service Provider is enabled.
-   *
-   * @return true if the SP is enabled, otherwise false
-   */
-  boolean isEnabled();
-
-  /**
-   * Get unique identifier that is used in Application-Register from BM.I.
-   *
-   * <p>If no BM.I specific identifier is available then this method returns
-   * the same identifier as <code>getUniqueIdentifier()</code></p>
-   *
-   * @return unique identifier from BM.I AppReg, or generic uniqueId of no specific exists
-   */
-  String getUniqueApplicationRegisterIdentifier();
-
-  /**
-   * Flag that marks this Service-Provider as <i>public</i> or <i>private</i>.
-   *
-   * <p><b>Default:</b> If it is not set or has an unknown value, its <i>private</i> by default</p>
-   *
-   * @return <code>true</code> if it is from <i>public</i>, otherwise <code>false</code>
-   */
-  boolean isPublicServiceProvider();
-
-  /**
-   * Enable test identities for this Service Provider.
-   *
-   * @return true if test identities are allowed, otherwise false
-   */
-  boolean isTestCredentialEnabled();
-
-  /**
-   * Get a List of OID's that refine the set of allowed test identities.
-   *
-   * @return @link {@link List} of test-identity OID's
-   */
-  @Nullable
-  List<String> getTestCredentialOids();
-
-
-  /**
-   * Get a List of unique attribute URI's that are required by this SP.
-   *
-   * @return {@link List} of attribute URI's / parameter {@link Pair}s
-   */
-  List<Pair<String, String>> getRequiredAttributes();
-
-
-  /**
-   * Get the CountryCode for this service. <br>
-   * <br>
-   * <b>Default:</b> AT
-   *
-   * @return
-   */
-  String getCountryCode();
-
-  /**
-   * Set the CountryCode for this service. If not countryCode is set, AT is used as default.
-   *
-   * @param cc Service-Provider country-code
-   */
-  void setCountryCode(String cc);
-
-  /**
-   * Enable mandates for this service provider.
-   *
-   * @return <code>true</code> if mandates are enabled, otherwise <code>false</code>
-   */
-  boolean isMandateEnabled();
-
-  /**
-   * Enables multi-mandates for this service-provider.
-   *
-   * @return <code>true</code> if multi-mandates are enabled, otherwise <code>false</code>
-   */
-  boolean isMultiMandateEnabled();
-
-  /**
-   * Only mandates are allowed for this service provider.
-   *
-   * @return <code>true</code> if only mandates are allowed, otherwise <code>false</code>
-   */
-  boolean isOnlyMandateEnabled();
-
-  /**
-   * Get a {@link List} of mandate profiles that are supported by this Service provider.
-   *
-   * @return
-   */
-  @Nonnull List<String> getMandateProfiles();
-
-
-  /**
-   * eIDAS authentication allowed flag.
-   *
-   * @return <code>true</code> if eIDAS authentication is enabled, otherwise <code>false</code>
-   */
-  boolean isEidasEnabled();
-
-  /**
-   * Get a List of targets for additional bPKs that are required by this service provider.
-   *
-   * @return List of prefixed bPK targets
-   */
-  @Nonnull List<String> getAdditionalBpkTargets();
-
-  /**
-   * Get a list of foreign bPK targets that are required by this service provider.
-   *
-   * @return List of pairs with prefixed bPK targets as first element and VKZ as second element
-   */
-  @Nonnull List<Pair<String, String>> getAdditionalForeignBpkTargets();
-
-  /**
-   * Flag that indicates that service-provider as restricted or unrestricted.
-   *
-   * <p>A restricted service-provider can only used by test-identities that contains a
-   * valid application-restriction in User-Certificate Pinning</p>
-   *
-   * <p><b>Default:</b> true</p>
-   *
-   * @return <code>true</code> if it is restricted, otherwise <code>false</code>
-   */
-  boolean isRestrictedServiceProvider();
-
-
-  /**
-   * Defines the time in minutes how long the last VDA registration h@Override
-   ave passed as maximum.
-   *
-   * @return time in minutes
-   */
-  long lastVdaAuthenticationDelay();
-
-}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateMobilePhoneSignatureRequestTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateMobilePhoneSignatureRequestTask.java
index 3f2ae1f2..5f242c1b 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateMobilePhoneSignatureRequestTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateMobilePhoneSignatureRequestTask.java
@@ -23,11 +23,11 @@
 
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks;
 
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.mobilesig.EidasCentralAuthConstants;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.mobilesig.EidasCentralAuthCredentialProvider;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.mobilesig.EidasCentralAuthMetadataProvider;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.mobilesig.EidasCentralAuthRequestBuilderConfiguration;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.mobilesig.IAhSpConfiguration;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.idAustriaClient.IdAustriaClientAuthConstants;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.idAustriaClient.IdAustriaClientAuthCredentialProvider;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.idAustriaClient.IdAustriaClientAuthMetadataProvider;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.idAustriaClient.IdAustriaClientAuthRequestBuilderConfiguration;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.idAustriaClient.IAhSpConfiguration;
 import at.gv.egiz.eaaf.core.api.IRequest;
 import at.gv.egiz.eaaf.core.api.data.ExtendedPvpAttributeDefinitions;
 import at.gv.egiz.eaaf.core.api.data.PvpAttributeDefinitions;
@@ -72,9 +72,9 @@ public class GenerateMobilePhoneSignatureRequestTask extends AbstractAuthServlet
   @Autowired
   PvpAuthnRequestBuilder authnReqBuilder;
   @Autowired
-  EidasCentralAuthCredentialProvider credential;
+  IdAustriaClientAuthCredentialProvider credential;
   @Autowired
-  EidasCentralAuthMetadataProvider metadataService;
+  IdAustriaClientAuthMetadataProvider metadataService;
   //  @Autowired
   //  ITransactionStorage transactionStorage;
 
@@ -107,18 +107,18 @@ public class GenerateMobilePhoneSignatureRequestTask extends AbstractAuthServlet
       }
 
       // setup AuthnRequestBuilder configuration
-      final EidasCentralAuthRequestBuilderConfiguration authnReqConfig =
-          new EidasCentralAuthRequestBuilderConfiguration();
+      final IdAustriaClientAuthRequestBuilderConfiguration authnReqConfig =
+          new IdAustriaClientAuthRequestBuilderConfiguration();
       final SecureRandomIdentifierGenerationStrategy gen =
           new SecureRandomIdentifierGenerationStrategy();
       authnReqConfig.setRequestId(gen.generateIdentifier());
       authnReqConfig.setIdpEntity(entityDesc);
       authnReqConfig.setPassive(false);
       authnReqConfig.setSignCred(credential.getMessageSigningCredential());
-      authnReqConfig.setSpEntityID(pendingReq.getAuthUrl() + EidasCentralAuthConstants.ENDPOINT_METADATA);
+      authnReqConfig.setSpEntityID(pendingReq.getAuthUrl() + IdAustriaClientAuthConstants.ENDPOINT_METADATA);
       authnReqConfig.setRequestedLoA(authConfig.getBasicConfiguration(
-          EidasCentralAuthConstants.CONFIG_PROPS_REQUIRED_LOA,
-          EidasCentralAuthConstants.CONFIG_DEFAULT_LOA_EIDAS_LEVEL));
+          IdAustriaClientAuthConstants.CONFIG_PROPS_REQUIRED_LOA,
+          IdAustriaClientAuthConstants.CONFIG_DEFAULT_LOA_EIDAS_LEVEL));
 
       authnReqConfig.setScopeRequesterId(
           pendingReq.getServiceProviderConfiguration(IAhSpConfiguration.class)
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml
index dd0e1345..c6d69c5d 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml
@@ -135,13 +135,13 @@
         scope="prototype" />
 
   <bean id="eidasCentralAuthCredentialProvider"
-        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.mobilesig.EidasCentralAuthCredentialProvider" />
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.idAustriaClient.IdAustriaClientAuthCredentialProvider" />
 
   <bean id="eidasCentralAuthMetadataProvider"
-        class=" at.asitplus.eidas.specific.modules.auth.eidas.v2.mobilesig.EidasCentralAuthMetadataProvider" />
+        class=" at.asitplus.eidas.specific.modules.auth.eidas.v2.idAustriaClient.IdAustriaClientAuthMetadataProvider" />
 
   <bean id="eidasCentralAuthMetadataController"
-        class=" at.asitplus.eidas.specific.modules.auth.eidas.v2.mobilesig.EidasCentralAuthMetadataController" />
+        class=" at.asitplus.eidas.specific.modules.auth.eidas.v2.idAustriaClient.IdAustriaClientAuthMetadataController" />
 
 
 </beans>
\ No newline at end of file
-- 
cgit v1.2.3


From 17ed45c5d47d8b23a36c0088c2922c0f0fefe234 Mon Sep 17 00:00:00 2001
From: Alexander Marsalek <amarsalek@iaik.tugraz.at>
Date: Fri, 29 Jan 2021 09:37:44 +0100
Subject: fixed package name, added JCE

---
 .../AhExtendedPvpAttributeDefinitions.java         |  24 --
 .../v2/idAustriaClient/AuthHandlerConstants.java   | 141 ------
 .../v2/idAustriaClient/IAhSpConfiguration.java     | 151 -------
 .../IdAustriaClientAuthConstants.java              | 166 --------
 .../IdAustriaClientAuthCredentialProvider.java     | 130 ------
 .../IdAustriaClientAuthMetadataConfiguration.java  | 471 ---------------------
 .../IdAustriaClientAuthMetadataController.java     | 149 -------
 .../IdAustriaClientAuthMetadataProvider.java       | 169 --------
 ...striaClientAuthRequestBuilderConfiguration.java | 300 -------------
 .../AhAuthProcessDataConstants.java                |   9 +
 .../idaustriaclient/AhAuthProcessDataWrapper.java  | 224 ++++++++++
 .../AhExtendedPvpAttributeDefinitions.java         |  24 ++
 .../v2/idaustriaclient/AuthHandlerConstants.java   | 141 ++++++
 .../idaustriaclient/EidasAuthEventConstants.java   |  10 +
 .../v2/idaustriaclient/IAhAuthProcessData.java     | 190 +++++++++
 .../v2/idaustriaclient/IAhSpConfiguration.java     | 151 +++++++
 .../eidas/v2/idaustriaclient/IRawMandateDao.java   |  32 ++
 .../eidas/v2/idaustriaclient/ISignedMandate.java   |  19 +
 .../IdAustriaClientAuthConstants.java              | 166 ++++++++
 .../IdAustriaClientAuthCredentialProvider.java     | 130 ++++++
 .../IdAustriaClientAuthMetadataConfiguration.java  | 471 +++++++++++++++++++++
 .../IdAustriaClientAuthMetadataController.java     | 149 +++++++
 .../IdAustriaClientAuthMetadataProvider.java       | 169 ++++++++
 ...striaClientAuthRequestBuilderConfiguration.java | 300 +++++++++++++
 .../eidas/v2/idaustriaclient/MisException.java     |  17 +
 .../GenerateMobilePhoneSignatureRequestTask.java   |  16 +-
 ...eSignatureResponseAndSearchInRegistersTask.java | 342 +++++++++++++++
 .../src/main/resources/eidas_v2_auth.beans.xml     |   6 +-
 28 files changed, 2552 insertions(+), 1715 deletions(-)
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idAustriaClient/AhExtendedPvpAttributeDefinitions.java
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idAustriaClient/AuthHandlerConstants.java
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idAustriaClient/IAhSpConfiguration.java
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idAustriaClient/IdAustriaClientAuthConstants.java
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idAustriaClient/IdAustriaClientAuthCredentialProvider.java
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idAustriaClient/IdAustriaClientAuthMetadataConfiguration.java
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idAustriaClient/IdAustriaClientAuthMetadataController.java
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idAustriaClient/IdAustriaClientAuthMetadataProvider.java
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idAustriaClient/IdAustriaClientAuthRequestBuilderConfiguration.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/AhAuthProcessDataConstants.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/AhAuthProcessDataWrapper.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/AhExtendedPvpAttributeDefinitions.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/AuthHandlerConstants.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/EidasAuthEventConstants.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IAhAuthProcessData.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IAhSpConfiguration.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IRawMandateDao.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/ISignedMandate.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthConstants.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthCredentialProvider.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthMetadataConfiguration.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthMetadataController.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthMetadataProvider.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthRequestBuilderConfiguration.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/MisException.java

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idAustriaClient/AhExtendedPvpAttributeDefinitions.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idAustriaClient/AhExtendedPvpAttributeDefinitions.java
deleted file mode 100644
index 8dea6df3..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idAustriaClient/AhExtendedPvpAttributeDefinitions.java
+++ /dev/null
@@ -1,24 +0,0 @@
-package at.asitplus.eidas.specific.modules.auth.eidas.v2.idAustriaClient;
-
-import at.gv.egiz.eaaf.core.api.data.ExtendedPvpAttributeDefinitions;
-
-import org.slf4j.Logger;
-import org.slf4j.LoggerFactory;
-
-public class AhExtendedPvpAttributeDefinitions implements ExtendedPvpAttributeDefinitions {
-  private static final Logger log =
-      LoggerFactory.getLogger(AhExtendedPvpAttributeDefinitions.class);
-
-  private AhExtendedPvpAttributeDefinitions() {
-    log.trace("Instance class: {} for SonarQube",
-        AhExtendedPvpAttributeDefinitions.class.getName());
-
-  }
-
-  public static final String EID_BCBIND_NAME = "urn:eidgvat:attributes.bcbind";
-  public static final String EID_BCBIND_FRIENDLY_NAME = "bcBind";
-
-  public static final String EID_BINDING_PUBKEY_NAME = "urn:eidgvat:attributes.binding.pubkey";
-  public static final String EID_BINDING_PUBKEY_FRIENDLY_NAME = "BindingPubKey";
-
-}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idAustriaClient/AuthHandlerConstants.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idAustriaClient/AuthHandlerConstants.java
deleted file mode 100644
index 9c6929c2..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idAustriaClient/AuthHandlerConstants.java
+++ /dev/null
@@ -1,141 +0,0 @@
-package at.asitplus.eidas.specific.modules.auth.eidas.v2.idAustriaClient;
-
-
-public class AuthHandlerConstants {
-
-  private AuthHandlerConstants() {
-
-  }
-
-  // TODO: maybe update to another target
-  public static final String DEFAULT_INTERNAL_BPK_TARGET = "urn:publicid:gv.at:cdid+ZP-MH";
-
-  // configuration parameters
-  public static final String PROP_CONFIG_APPLICATION_PREFIX = "authhandler.";
-  public static final String PROP_CONFIG_APPLICATION_PUBLIC_URL_PREFIX = "core.context.url.prefix";
-  public static final String PROP_CONFIG_APPLICATION_PUBLIC_URL_REQUEST_VALIDATION =
-      "core.context.url.request.validation";
-  public static final String PROP_CONFIG_LEGACY_ALLOW = "core.legacy.allowLegacyMode";
-
-  public static final String PROP_CONFIG_WEBCONTENT_STATIC_PATH =
-      "core.webcontent.static.directory";
-  public static final String PROP_CONFIG_WEBCONTENT_TEMPLATES_PATH = "core.webcontent.templates";
-  public static final String PROP_CONFIG_WEBCONTENT_PROPERTIES_PATH = "core.webcontent.properties";
-
-  public static final String PROP_CONFIG_CACHE_TRANSACTIONS_NAME = "core.cache.transaction.name";
-  public static final String PROP_CONFIG_CACHE_TRANSACTIONS_ENC_ENABLED =
-      "core.cache.transaction.encryption.enabled";
-  public static final String PROP_CONFIG_CACHE_TRANSACTIONS_ENC_KEY_TYPE =
-      "core.cache.transaction.encryption.type";
-  public static final String PROP_CONFIG_CACHE_TRANSACTIONS_ENC_PASSPHRASE =
-      "core.cache.transaction.encryption.passphrase";
-  public static final String PROP_CONFIG_CACHE_TRANSACTIONS_ENC_SALT =
-      "core.cache.transaction.encryption.salt";
-  public static final String PROP_CONFIG_CACHE_TRANSACTIONS_ENC_KEYSTORE_NAME =
-      "core.cache.transaction.encryption.keystore.name";
-  public static final String PROP_CONFIG_CACHE_TRANSACTIONS_ENC_KEY_ALIAS =
-      "core.cache.transaction.encryption.key.alias";
-
-  public static final String PROP_CONFIG_CACHE_ATTRIBUTEPROXY_NAME =
-      "core.cache.attributeproxy.name";
-
-  public static final String PROP_CONFIG_BACKEND_ENDPOINT_GETALLSUPPORTEDATTRIBUTES =
-      "backend.endpoints.getallsupportedattributes";
-  public static final String PROP_CONFIG_BACKEND_ENDPOINT_GETAPPLICATIONCONFIGURATION =
-      "backend.endpoints.getapplicationconfiguration";
-
-  public static final String PROP_CONFIG_INTERNAL_BPK_TARGET = "core.internal.bpk.target";
-
-  public static final String PROP_CONFIG_INTERNAL_FRONTEND_ONLY_MODE = "core.internal.frontend.only.mode";
-  public static final boolean PROP_DEFAULT_CONFIG_INTERNAL_FRONTEND_ONLY_MODE = false;
-
-  // Servlet End-Points
-  public static final String ENDPOINT_PROCESSENGINE_CONTROLLER = "/api/process";
-  public static final String ENDPOINT_ERROR_IFRAME_HOPPING = "/error/parenthop";
-
-
-  // GUI template directories
-  public static final String CLASSPATH_TEMPLATE_DIR = "/templates/";
-  public static final String FILESYSTEM_TEMPLATE_DIR = "./templates/";
-  public static final String TEMPLATE_HTML_ERROR = "error_message.html";
-
-  // GUI template defaultfiles
-  public static final String TEMPLATE_AUTHPROCESS_SELECTION_VDA_FULLFRAME = "authSelection.html";
-  public static final String TEMPLATE_AUTHPROCESS_SELECTION_VDA_IFRAME = "authSelection_iframe.html";
-  public static final String TEMPLATE_USER_CONSENT_REQUEST = "userConsent.html";
-  public static final String TEMPLATE_IFRAME_TO_PARENT_HOPE = "iframe_parent_hope.html";
-  public static final String TEMPLATE_MANDATE_SELECTION = "mandateSelection.html";
-  public static final String TEMPLATE_PROF_REP_MANDATE_SELECTION = "profRepMandateSelection.html";
-  public static final String TEMPLATE_MANDATE_SELECTION_DUMMY = "mandateSelection_dummy.html";
-
-
-
-  // http request parameters
-  public static final String HTTP_PARAM_APPLICATION_ID = "appId";
-  public static final String HTTP_PARAM_STOP_PROCESS = "stopAuthProcess";
-  public static final String HTTP_PARAM_EIDAS_PROCESS = "useeIDAS";
-  public static final String HTTP_PARAM_EID_PROCESS = "useeID";
-  public static final String HTTP_PARAM_EID_BINDING_AUTH_PROCESS = "useBindingAuth";
-  public static final String HTTP_PARAM_USE_MANDATES = "useMandate";
-  public static final String HTTP_PARAM_AUTHMETHOD = "authMethod";
-  public static final String HTTP_PARAM_CONSENT_RELEASE_ATTRIBUTES = "releaseAttributes";
-  public static final String HTTP_PARAM_CONSENT_STORE_CONSENT = "storeConsent";
-
-  @Deprecated
-  public static final String HTTP_PARAM_EIDMIGRATIONPILOT_PROCESS = "pilotMigration";
-  @Deprecated
-  public static final String HTTP_PARAM_EIDMIGRATIONPILOT_SHOW_INFO_PAGE = "pilotMigrationInfoPage";
-  @Deprecated
-  public static final String HTTP_PARAM_MOBILESIGNATURE_PROCESS = "usemobileSig";
-
-  // UI options
-  public static final String UI_PARAM_USE_MANDATES = HTTP_PARAM_USE_MANDATES;
-  public static final String UI_PARAM_USE_ONLY_MANDATES = "useOnlyMandate";
-  public static final String UI_PARAM_USE_EIDAS = HTTP_PARAM_EIDAS_PROCESS;
-  public static final String UI_PARAM_DSGVO_SHORT_INFO = "dsgvoShortText";
-  public static final String UI_PARAM_DSGVO_SP_PRIVACY_STATEMENT_URL = "dsgvoPrivacyStatementUrl";
-  public static final String UI_PARAM_DSGVO_SP_SERVICE_URL = "dsgvoServiceUrl";
-  public static final String UI_PARAM_DSGVO_SP_LOGO = "dsgvoSpLogo";
-  public static final String UI_PARAM_DSGVO_SP_LOGO_SET = "dsgvoSpLogoSet";
-  public static final String UI_PARAM_DSGVO_SP_LOGO_SET_DATAURL = "dataUrl";
-  public static final String UI_PARAM_DSGVO_SP_LOGO_SET_THEME = "theme";
-  public static final String UI_PARAM_DSGVO_SP_LOGO_SET_RESOLUTION = "resolution";
-  public static final String UI_PARAM_DSGVO_SP_LOGO_SET_TYPE = "type";
-
-  public enum LogoType { SVG, PNG, UNKNOWN }
-
-  public enum AuthBlockType {
-    CADES("CAdES"), JWS("JWS"), NONE("none");
-
-    private final String internalType;
-
-    AuthBlockType(final String type) {
-      this.internalType = type;
-
-    }
-
-    /**
-     * Get Type identifier for this AuthBlock.
-     *
-     * @return
-     */
-    public String getAuthBlockType() {
-      return this.internalType;
-    }
-
-    @Override
-    public String toString() {
-      return getAuthBlockType();
-
-    }
-  }
-
-  // process context parameters
-  public static final String PROCESSCONTEXT_USERCONSENT_NEEDED = "userConsentNeeded";
-  public static final String PROCESSCONTEXT_AUTHPROCESSSELECTION_DONE = "authProcSelectDone";
-  public static final String PROCESSCONTEXT_SWITCH_LANGUAGE = "changeLanguage";
-  public static final String PROCESSCONTEXT_IFRAME_PARENT_NEEDED = "iframeParentNeeded";
-
-  public static final String PROCESSCONTEXT_WAS_EID_PROCESS = "wasEidProcess";
-
-}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idAustriaClient/IAhSpConfiguration.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idAustriaClient/IAhSpConfiguration.java
deleted file mode 100644
index 2a54f541..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idAustriaClient/IAhSpConfiguration.java
+++ /dev/null
@@ -1,151 +0,0 @@
-package at.asitplus.eidas.specific.modules.auth.eidas.v2.idAustriaClient;
-
-import java.util.List;
-
-import javax.annotation.Nonnull;
-import javax.annotation.Nullable;
-
-import at.gv.egiz.eaaf.core.api.idp.ISpConfiguration;
-import at.gv.egiz.eaaf.core.impl.data.Pair;
-
-public interface IAhSpConfiguration extends ISpConfiguration {
-
-
-  /**
-   * Flag if this Service Provider is enabled.
-   *
-   * @return true if the SP is enabled, otherwise false
-   */
-  boolean isEnabled();
-
-  /**
-   * Get unique identifier that is used in Application-Register from BM.I.
-   *
-   * <p>If no BM.I specific identifier is available then this method returns
-   * the same identifier as <code>getUniqueIdentifier()</code></p>
-   *
-   * @return unique identifier from BM.I AppReg, or generic uniqueId of no specific exists
-   */
-  String getUniqueApplicationRegisterIdentifier();
-
-  /**
-   * Flag that marks this Service-Provider as <i>public</i> or <i>private</i>.
-   *
-   * <p><b>Default:</b> If it is not set or has an unknown value, its <i>private</i> by default</p>
-   *
-   * @return <code>true</code> if it is from <i>public</i>, otherwise <code>false</code>
-   */
-  boolean isPublicServiceProvider();
-
-  /**
-   * Enable test identities for this Service Provider.
-   *
-   * @return true if test identities are allowed, otherwise false
-   */
-  boolean isTestCredentialEnabled();
-
-  /**
-   * Get a List of OID's that refine the set of allowed test identities.
-   *
-   * @return @link {@link List} of test-identity OID's
-   */
-  @Nullable
-  List<String> getTestCredentialOids();
-
-
-  /**
-   * Get a List of unique attribute URI's that are required by this SP.
-   *
-   * @return {@link List} of attribute URI's / parameter {@link Pair}s
-   */
-  List<Pair<String, String>> getRequiredAttributes();
-
-
-  /**
-   * Get the CountryCode for this service. <br>
-   * <br>
-   * <b>Default:</b> AT
-   *
-   * @return
-   */
-  String getCountryCode();
-
-  /**
-   * Set the CountryCode for this service. If not countryCode is set, AT is used as default.
-   *
-   * @param cc Service-Provider country-code
-   */
-  void setCountryCode(String cc);
-
-  /**
-   * Enable mandates for this service provider.
-   *
-   * @return <code>true</code> if mandates are enabled, otherwise <code>false</code>
-   */
-  boolean isMandateEnabled();
-
-  /**
-   * Enables multi-mandates for this service-provider.
-   *
-   * @return <code>true</code> if multi-mandates are enabled, otherwise <code>false</code>
-   */
-  boolean isMultiMandateEnabled();
-
-  /**
-   * Only mandates are allowed for this service provider.
-   *
-   * @return <code>true</code> if only mandates are allowed, otherwise <code>false</code>
-   */
-  boolean isOnlyMandateEnabled();
-
-  /**
-   * Get a {@link List} of mandate profiles that are supported by this Service provider.
-   *
-   * @return
-   */
-  @Nonnull List<String> getMandateProfiles();
-
-
-  /**
-   * eIDAS authentication allowed flag.
-   *
-   * @return <code>true</code> if eIDAS authentication is enabled, otherwise <code>false</code>
-   */
-  boolean isEidasEnabled();
-
-  /**
-   * Get a List of targets for additional bPKs that are required by this service provider.
-   *
-   * @return List of prefixed bPK targets
-   */
-  @Nonnull List<String> getAdditionalBpkTargets();
-
-  /**
-   * Get a list of foreign bPK targets that are required by this service provider.
-   *
-   * @return List of pairs with prefixed bPK targets as first element and VKZ as second element
-   */
-  @Nonnull List<Pair<String, String>> getAdditionalForeignBpkTargets();
-
-  /**
-   * Flag that indicates that service-provider as restricted or unrestricted.
-   *
-   * <p>A restricted service-provider can only used by test-identities that contains a
-   * valid application-restriction in User-Certificate Pinning</p>
-   *
-   * <p><b>Default:</b> true</p>
-   *
-   * @return <code>true</code> if it is restricted, otherwise <code>false</code>
-   */
-  boolean isRestrictedServiceProvider();
-
-
-  /**
-   * Defines the time in minutes how long the last VDA registration h@Override
-   ave passed as maximum.
-   *
-   * @return time in minutes
-   */
-  long lastVdaAuthenticationDelay();
-
-}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idAustriaClient/IdAustriaClientAuthConstants.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idAustriaClient/IdAustriaClientAuthConstants.java
deleted file mode 100644
index 22910614..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idAustriaClient/IdAustriaClientAuthConstants.java
+++ /dev/null
@@ -1,166 +0,0 @@
-package at.asitplus.eidas.specific.modules.auth.eidas.v2.idAustriaClient;
-
-
-import at.gv.egiz.eaaf.core.api.data.EaafConstants;
-import at.gv.egiz.eaaf.core.api.data.ExtendedPvpAttributeDefinitions;
-import at.gv.egiz.eaaf.core.api.data.PvpAttributeDefinitions;
-import at.gv.egiz.eaaf.core.impl.data.Triple;
-
-import java.util.ArrayList;
-import java.util.Collections;
-import java.util.List;
-
-
-public class IdAustriaClientAuthConstants {
-
-  private IdAustriaClientAuthConstants() {
-
-  }
-
-  public static final String SAML2_STATUSCODE_USERSTOP = "1005";
-
-  public static final String MODULE_NAME_FOR_LOGGING = "ID Austria Client";
-
-  public static final int METADATA_VALIDUNTIL_IN_HOURS = 24;
-
-  //  public static final String HTTP_PARAM_CENTRAL_EIDAS_AUTH_SELECTION =
-  //      AuthHandlerConstants.HTTP_PARAM_EIDAS_PROCESS;
-
-  public static final String ENDPOINT_POST = "/idAustriaSp/post";
-  public static final String ENDPOINT_REDIRECT = "/idAustriaSp/redirect";
-  public static final String ENDPOINT_METADATA = "/idAustriaSp/metadata";
-
-  public static final String CONFIG_PROPS_PREFIX = "modules.idaustriaclient.";
-  public static final String CONFIG_PROPS_KEYSTORE_TYPE = CONFIG_PROPS_PREFIX + "keystore.type";
-  public static final String CONFIG_PROPS_KEYSTORE_NAME = CONFIG_PROPS_PREFIX + "keystore.name";
-  public static final String CONFIG_PROPS_KEYSTORE_PATH = CONFIG_PROPS_PREFIX + "keystore.path";
-  public static final String CONFIG_PROPS_KEYSTORE_PASSWORD = CONFIG_PROPS_PREFIX + "keystore.password";
-  public static final String CONFIG_PROPS_SIGN_METADATA_KEY_PASSWORD = CONFIG_PROPS_PREFIX
-      + "metadata.sign.password";
-  public static final String CONFIG_PROPS_SIGN_METADATA_ALIAS = CONFIG_PROPS_PREFIX
-      + "metadata.sign.alias";
-  public static final String CONFIG_PROPS_SIGN_SIGNING_KEY_PASSWORD = CONFIG_PROPS_PREFIX
-      + "request.sign.password";
-  public static final String CONFIG_PROPS_SIGN_SIGNING_ALIAS = CONFIG_PROPS_PREFIX
-      + "request.sign.alias";
-  public static final String CONFIG_PROPS_ENCRYPTION_KEY_PASSWORD = CONFIG_PROPS_PREFIX
-      + "response.encryption.password";
-  public static final String CONFIG_PROPS_ENCRYPTION_ALIAS = CONFIG_PROPS_PREFIX
-      + "response.encryption.alias";
-
-  public static final String CONFIG_PROPS_TRUSTSTORE_TYPE = CONFIG_PROPS_PREFIX + "truststore.type";
-  public static final String CONFIG_PROPS_TRUSTSTORE_NAME = CONFIG_PROPS_PREFIX + "truststore.name";
-  public static final String CONFIG_PROPS_TRUSTSTORE_PATH = CONFIG_PROPS_PREFIX + "truststore.path";
-  public static final String CONFIG_PROPS_TRUSTSTORE_PASSWORD = CONFIG_PROPS_PREFIX + "truststore.password";
-
-  public static final String CONFIG_PROPS_REQUIRED_PVP_ATTRIBUTES_LIST = CONFIG_PROPS_PREFIX
-      + "required.additional.attributes";
-  public static final String CONFIG_PROPS_REQUIRED_LOA = CONFIG_PROPS_PREFIX
-      + "required.loa";
-  public static final String CONFIG_PROPS_NODE_ENTITYID = CONFIG_PROPS_PREFIX + "node.entityId";
-  public static final String CONFIG_PROPS_NODE_METADATAURL = CONFIG_PROPS_PREFIX + "node.metadataUrl";
-  public static final String CONFIG_PROPS_NODE_TRUSTPROFILEID = CONFIG_PROPS_PREFIX + "node.trustprofileID";
-
-
-  public static final String CONFIG_PROPS_METADATA_CONTACT_GIVENNAME =
-      CONFIG_PROPS_PREFIX + "metadata.contact.givenname";
-  public static final String CONFIG_PROPS_METADATA_CONTACT_SURNAME =
-      CONFIG_PROPS_PREFIX + "metadata.contact.surname";
-  public static final String CONFIG_PROPS_METADATA_CONTACT_EMAIL =
-      CONFIG_PROPS_PREFIX + "metadata.contact.email";
-  public static final String CONFIG_PROPS_METADATA_ORGANISATION_NAME =
-      CONFIG_PROPS_PREFIX + "metadata.organisation.name";
-  public static final String CONFIG_PROPS_METADATA_ORGANISATION_FRIENDLYNAME =
-      CONFIG_PROPS_PREFIX + "metadata.organisation.friendyname";
-  public static final String CONFIG_PROPS_METADATA_ORGANISATION_URL =
-      CONFIG_PROPS_PREFIX + "metadata.organisation.url";
-
-  public static final String CONFIG_PROPS_APPSPECIFIC_EIDAS_NODE_URL = "auth.eidas.node.entityId";
-
-  public static final String CONFIG_PROPS_SEMPER_MANDATES_ACTIVE = CONFIG_PROPS_PREFIX
-      + "semper.mandates.active";
-  public static final String CONFIG_PROPS_SEMPER_MANDATES_MS_PROXY_LIST = CONFIG_PROPS_PREFIX
-      + "semper.msproxy.list";
-
-  public static final String CONFIG_DEFAULT_LOA_EIDAS_LEVEL = EaafConstants.EIDAS_LOA_HIGH;
-
-  @Deprecated
-  public static final List<Triple<String, String, Boolean>> DEFAULT_REQUIRED_PVP_ATTRIBUTES_WITHOUT_EID =
-      Collections.unmodifiableList(new ArrayList<Triple<String, String, Boolean>>() {
-        private static final long serialVersionUID = 1L;
-        {
-          // add PVP Version attribute
-          add(Triple.newInstance(PvpAttributeDefinitions.PVP_VERSION_NAME,
-              PvpAttributeDefinitions.PVP_VERSION_FRIENDLY_NAME, true));
-
-          // request entity information
-          add(Triple.newInstance(PvpAttributeDefinitions.EID_SECTOR_FOR_IDENTIFIER_NAME,
-              PvpAttributeDefinitions.EID_SECTOR_FOR_IDENTIFIER_FRIENDLY_NAME, false));
-          add(Triple.newInstance(PvpAttributeDefinitions.EID_CITIZEN_EIDAS_QAA_LEVEL_NAME,
-              PvpAttributeDefinitions.EID_CITIZEN_EIDAS_QAA_LEVEL_FRIENDLY_NAME, true));
-          add(Triple.newInstance(PvpAttributeDefinitions.EID_ISSUING_NATION_NAME,
-              PvpAttributeDefinitions.EID_ISSUING_NATION_FRIENDLY_NAME, true));
-
-          // entity eID information
-          add(Triple.newInstance(AhExtendedPvpAttributeDefinitions.EID_EIDBIND_NAME,
-              AhExtendedPvpAttributeDefinitions.EID_EIDBIND_FRIENDLY_NAME, false));
-          add(Triple.newInstance(AhExtendedPvpAttributeDefinitions.EID_AUTHBLOCK_SIGNED_NAME,
-              AhExtendedPvpAttributeDefinitions.EID_AUTHBLOCK_SIGNED_FRIENDLY_NAME, false));
-
-          // Deprecated information
-          add(Triple.newInstance(PvpAttributeDefinitions.GIVEN_NAME_NAME,
-              PvpAttributeDefinitions.GIVEN_NAME_FRIENDLY_NAME, false));
-          add(Triple.newInstance(PvpAttributeDefinitions.PRINCIPAL_NAME_NAME,
-              PvpAttributeDefinitions.PRINCIPAL_NAME_FRIENDLY_NAME, false));
-          add(Triple.newInstance(PvpAttributeDefinitions.BIRTHDATE_NAME,
-              PvpAttributeDefinitions.BIRTHDATE_FRIENDLY_NAME, false));
-          add(Triple.newInstance(PvpAttributeDefinitions.BPK_NAME, PvpAttributeDefinitions.BPK_FRIENDLY_NAME,
-              false));
-          add(Triple.newInstance(PvpAttributeDefinitions.EID_IDENTITY_LINK_NAME,
-              PvpAttributeDefinitions.EID_IDENTITY_LINK_FRIENDLY_NAME, false));
-
-          //request pII transactionId from MS-Connector
-          add(Triple.newInstance(ExtendedPvpAttributeDefinitions.EID_PII_TRANSACTION_ID_NAME,
-              ExtendedPvpAttributeDefinitions.EID_PII_TRANSACTION_ID_FRIENDLY_NAME, false));
-
-        }
-      });
-
-  public static final List<Triple<String, String, Boolean>> DEFAULT_REQUIRED_PVP_ATTRIBUTES =
-      Collections.unmodifiableList(new ArrayList<Triple<String, String, Boolean>>() {
-        private static final long serialVersionUID = 1L;
-        {
-          // add PVP Version attribute
-          add(Triple.newInstance(PvpAttributeDefinitions.PVP_VERSION_NAME,
-              PvpAttributeDefinitions.PVP_VERSION_FRIENDLY_NAME, true));
-
-          // entity metadata information
-          add(Triple.newInstance(PvpAttributeDefinitions.EID_CITIZEN_EIDAS_QAA_LEVEL_NAME,
-              PvpAttributeDefinitions.EID_CITIZEN_EIDAS_QAA_LEVEL_FRIENDLY_NAME, true));
-          add(Triple.newInstance(PvpAttributeDefinitions.EID_ISSUING_NATION_NAME,
-              PvpAttributeDefinitions.EID_ISSUING_NATION_FRIENDLY_NAME, true));
-
-          // entity eID information
-          add(Triple.newInstance(AhExtendedPvpAttributeDefinitions.EID_EIDBIND_NAME,
-              AhExtendedPvpAttributeDefinitions.EID_EIDBIND_FRIENDLY_NAME, true));
-          add(Triple.newInstance(AhExtendedPvpAttributeDefinitions.EID_AUTHBLOCK_SIGNED_NAME,
-              AhExtendedPvpAttributeDefinitions.EID_AUTHBLOCK_SIGNED_FRIENDLY_NAME, true));
-
-          //request pII transactionId from MS-Connector
-          add(Triple.newInstance(ExtendedPvpAttributeDefinitions.EID_PII_TRANSACTION_ID_NAME,
-              ExtendedPvpAttributeDefinitions.EID_PII_TRANSACTION_ID_FRIENDLY_NAME, false));
-
-        }
-      });
-
-  public static final List<String> DEFAULT_REQUIRED_PVP_ATTRIBUTE_NAMES =
-      Collections.unmodifiableList(new ArrayList<String>() {
-        private static final long serialVersionUID = 1L;
-        {
-          for (final Triple<String, String, Boolean> el : DEFAULT_REQUIRED_PVP_ATTRIBUTES) {
-            add(el.getFirst());
-          }
-        }
-      });
-
-}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idAustriaClient/IdAustriaClientAuthCredentialProvider.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idAustriaClient/IdAustriaClientAuthCredentialProvider.java
deleted file mode 100644
index 1aa85e71..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idAustriaClient/IdAustriaClientAuthCredentialProvider.java
+++ /dev/null
@@ -1,130 +0,0 @@
-package at.asitplus.eidas.specific.modules.auth.eidas.v2.idAustriaClient;
-
-import at.gv.egiz.eaaf.core.api.idp.IConfiguration;
-import at.gv.egiz.eaaf.core.exceptions.EaafConfigurationException;
-import at.gv.egiz.eaaf.core.impl.credential.KeyStoreConfiguration;
-import at.gv.egiz.eaaf.core.impl.credential.KeyStoreConfiguration.KeyStoreType;
-import at.gv.egiz.eaaf.modules.pvp2.impl.utils.AbstractCredentialProvider;
-
-import org.springframework.beans.factory.annotation.Autowired;
-
-/**
- * Credential provider for eIDAS PVP S-Profile client.
- *
- * @author tlenz
- *
- */
-public class IdAustriaClientAuthCredentialProvider extends AbstractCredentialProvider {
-
-  @Autowired
-  IConfiguration authConfig;
-
-  private static final String FRIENDLYNAME = "eIDAS centrial authentication";
-
-  @Override
-  public KeyStoreConfiguration getBasicKeyStoreConfig() throws EaafConfigurationException {
-    final KeyStoreConfiguration keyStoreConfig = new KeyStoreConfiguration();
-    keyStoreConfig.setFriendlyName(FRIENDLYNAME);
-    keyStoreConfig.setKeyStoreType(
-        authConfig.getBasicConfiguration(IdAustriaClientAuthConstants.CONFIG_PROPS_KEYSTORE_TYPE,
-            KeyStoreType.PKCS12.getKeyStoreType()));
-    keyStoreConfig.setKeyStoreName(
-        authConfig.getBasicConfiguration(IdAustriaClientAuthConstants.CONFIG_PROPS_KEYSTORE_NAME));
-    keyStoreConfig.setSoftKeyStoreFilePath(getKeyStoreFilePath());
-    keyStoreConfig.setSoftKeyStorePassword(
-        authConfig.getBasicConfiguration(IdAustriaClientAuthConstants.CONFIG_PROPS_KEYSTORE_PASSWORD));
-
-    return keyStoreConfig;
-
-  }
-
-  private String getKeyStoreFilePath() throws EaafConfigurationException {
-    final String path = authConfig.getBasicConfiguration(
-        IdAustriaClientAuthConstants.CONFIG_PROPS_KEYSTORE_PATH);
-    if (path == null) {
-      throw new EaafConfigurationException("module.eidasauth.00",
-          new Object[] { IdAustriaClientAuthConstants.CONFIG_PROPS_KEYSTORE_PATH });
-
-    }
-    return path;
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see
-   * at.gv.egovernment.moa.id.protocols.pvp2x.signer.AbstractCredentialProvider#
-   * getMetadataKeyAlias()
-   */
-  @Override
-  public String getMetadataKeyAlias() {
-    return authConfig.getBasicConfiguration(
-        IdAustriaClientAuthConstants.CONFIG_PROPS_SIGN_METADATA_ALIAS);
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see
-   * at.gv.egovernment.moa.id.protocols.pvp2x.signer.AbstractCredentialProvider#
-   * getMetadataKeyPassword()
-   */
-  @Override
-  public String getMetadataKeyPassword() {
-    return authConfig.getBasicConfiguration(
-        IdAustriaClientAuthConstants.CONFIG_PROPS_SIGN_METADATA_KEY_PASSWORD);
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see
-   * at.gv.egovernment.moa.id.protocols.pvp2x.signer.AbstractCredentialProvider#
-   * getSignatureKeyAlias()
-   */
-  @Override
-  public String getSignatureKeyAlias() {
-    return authConfig.getBasicConfiguration(
-        IdAustriaClientAuthConstants.CONFIG_PROPS_SIGN_SIGNING_ALIAS);
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see
-   * at.gv.egovernment.moa.id.protocols.pvp2x.signer.AbstractCredentialProvider#
-   * getSignatureKeyPassword()
-   */
-  @Override
-  public String getSignatureKeyPassword() {
-    return authConfig.getBasicConfiguration(
-        IdAustriaClientAuthConstants.CONFIG_PROPS_SIGN_SIGNING_KEY_PASSWORD);
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see
-   * at.gv.egovernment.moa.id.protocols.pvp2x.signer.AbstractCredentialProvider#
-   * getEncryptionKeyAlias()
-   */
-  @Override
-  public String getEncryptionKeyAlias() {
-    return authConfig.getBasicConfiguration(
-        IdAustriaClientAuthConstants.CONFIG_PROPS_ENCRYPTION_ALIAS);
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see
-   * at.gv.egovernment.moa.id.protocols.pvp2x.signer.AbstractCredentialProvider#
-   * getEncryptionKeyPassword()
-   */
-  @Override
-  public String getEncryptionKeyPassword() {
-    return authConfig.getBasicConfiguration(
-        IdAustriaClientAuthConstants.CONFIG_PROPS_ENCRYPTION_KEY_PASSWORD);
-  }
-
-}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idAustriaClient/IdAustriaClientAuthMetadataConfiguration.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idAustriaClient/IdAustriaClientAuthMetadataConfiguration.java
deleted file mode 100644
index 4b5861e9..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idAustriaClient/IdAustriaClientAuthMetadataConfiguration.java
+++ /dev/null
@@ -1,471 +0,0 @@
-package at.asitplus.eidas.specific.modules.auth.eidas.v2.idAustriaClient;
-
-
-import java.util.ArrayList;
-import java.util.Arrays;
-import java.util.Collection;
-import java.util.HashMap;
-import java.util.List;
-import java.util.Map;
-
-import at.gv.egiz.eaaf.core.exceptions.EaafException;
-import at.gv.egiz.eaaf.core.impl.data.Pair;
-import at.gv.egiz.eaaf.core.impl.data.Triple;
-import at.gv.egiz.eaaf.modules.pvp2.api.IPvp2BasicConfiguration;
-import at.gv.egiz.eaaf.modules.pvp2.api.credential.EaafX509Credential;
-import at.gv.egiz.eaaf.modules.pvp2.api.metadata.IPvpMetadataBuilderConfiguration;
-import at.gv.egiz.eaaf.modules.pvp2.exception.CredentialsNotAvailableException;
-import at.gv.egiz.eaaf.modules.pvp2.impl.builder.PvpAttributeBuilder;
-
-import org.opensaml.saml.saml2.core.Attribute;
-import org.opensaml.saml.saml2.core.NameIDType;
-import org.opensaml.saml.saml2.metadata.ContactPerson;
-import org.opensaml.saml.saml2.metadata.Organization;
-import org.opensaml.saml.saml2.metadata.RequestedAttribute;
-import org.opensaml.security.credential.Credential;
-
-import lombok.extern.slf4j.Slf4j;
-
-/**
- * Configuration object to generate PVP S-Profile metadata for SAML2 client.
- *
- * @author tlenz
- *
- */
-@Slf4j
-public class IdAustriaClientAuthMetadataConfiguration implements IPvpMetadataBuilderConfiguration {
-
-  private Collection<RequestedAttribute> additionalAttributes = null;
-
-  private final String authUrl;
-  private final IdAustriaClientAuthCredentialProvider credentialProvider;
-  private final IPvp2BasicConfiguration pvpConfiguration;
-
-  /**
-   * Configuration object to create PVP2 S-Profile metadata information.
-   *
-   * @param authUrl            Public URL prefix of the application
-   * @param credentialProvider Credentials used by PVP2 S-Profile end-point
-   * @param pvpConfiguration   Basic PVP2 S-Profile end-point configuration
-   */
-  public IdAustriaClientAuthMetadataConfiguration(String authUrl,
-                                                  IdAustriaClientAuthCredentialProvider credentialProvider,
-                                                  IPvp2BasicConfiguration pvpConfiguration) {
-    this.authUrl = authUrl;
-    this.credentialProvider = credentialProvider;
-    this.pvpConfiguration = pvpConfiguration;
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see
-   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
-   * getMetadataValidUntil()
-   */
-  @Override
-  public int getMetadataValidUntil() {
-    return IdAustriaClientAuthConstants.METADATA_VALIDUNTIL_IN_HOURS;
-
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see
-   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
-   * buildEntitiesDescriptorAsRootElement()
-   */
-  @Override
-  public boolean buildEntitiesDescriptorAsRootElement() {
-    return false;
-
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see
-   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
-   * buildIDPSSODescriptor()
-   */
-  @Override
-  public boolean buildIdpSsoDescriptor() {
-    return false;
-
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see
-   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
-   * buildSPSSODescriptor()
-   */
-  @Override
-  public boolean buildSpSsoDescriptor() {
-    return true;
-
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see
-   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
-   * getEntityIDPostfix()
-   */
-  @Override
-  public String getEntityID() {
-    return authUrl + IdAustriaClientAuthConstants.ENDPOINT_METADATA;
-
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see
-   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
-   * getEntityFriendlyName()
-   */
-  @Override
-  public String getEntityFriendlyName() {
-    return null;
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see
-   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
-   * getContactPersonInformation()
-   */
-  @Override
-  public List<ContactPerson> getContactPersonInformation() {
-    try {
-      return pvpConfiguration.getIdpContacts();
-
-    } catch (final EaafException e) {
-      log.warn("Can not load Metadata entry: Contect Person", e);
-      return null;
-
-    }
-
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see
-   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
-   * getOrgansiationInformation()
-   */
-  @Override
-  public Organization getOrgansiationInformation() {
-    try {
-      return pvpConfiguration.getIdpOrganisation();
-
-    } catch (final EaafException e) {
-      log.warn("Can not load Metadata entry: Organisation", e);
-      return null;
-
-    }
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see
-   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
-   * getMetadataSigningCredentials()
-   */
-  @Override
-  public EaafX509Credential getMetadataSigningCredentials() throws CredentialsNotAvailableException {
-    return credentialProvider.getMetaDataSigningCredential();
-
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see
-   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
-   * getRequestorResponseSigningCredentials()
-   */
-  @Override
-  public Credential getRequestorResponseSigningCredentials() throws CredentialsNotAvailableException {
-    return credentialProvider.getMessageSigningCredential();
-
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see
-   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
-   * getEncryptionCredentials()
-   */
-  @Override
-  public Credential getEncryptionCredentials() throws CredentialsNotAvailableException {
-    return credentialProvider.getMessageEncryptionCredential();
-
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see
-   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
-   * getIDPWebSSOPostBindingURL()
-   */
-  @Override
-  public String getIdpWebSsoPostBindingUrl() {
-    return null;
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see
-   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
-   * getIDPWebSSORedirectBindingURL()
-   */
-  @Override
-  public String getIdpWebSsoRedirectBindingUrl() {
-    return null;
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see
-   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
-   * getIDPSLOPostBindingURL()
-   */
-  @Override
-  public String getIdpSloPostBindingUrl() {
-    return null;
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see
-   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
-   * getIDPSLORedirectBindingURL()
-   */
-  @Override
-  public String getIdpSloRedirectBindingUrl() {
-    return null;
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see
-   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
-   * getSPAssertionConsumerServicePostBindingURL()
-   */
-  @Override
-  public String getSpAssertionConsumerServicePostBindingUrl() {
-    return authUrl + IdAustriaClientAuthConstants.ENDPOINT_POST;
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see
-   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
-   * getSPAssertionConsumerServiceRedirectBindingURL()
-   */
-  @Override
-  public String getSpAssertionConsumerServiceRedirectBindingUrl() {
-    return authUrl + IdAustriaClientAuthConstants.ENDPOINT_REDIRECT;
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see
-   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
-   * getSPSLOPostBindingURL()
-   */
-  @Override
-  public String getSpSloPostBindingUrl() {
-    return null;
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see
-   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
-   * getSPSLORedirectBindingURL()
-   */
-  @Override
-  public String getSpSloRedirectBindingUrl() {
-    return null;
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see
-   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
-   * getSPSLOSOAPBindingURL()
-   */
-  @Override
-  public String getSpSloSoapBindingUrl() {
-    return null;
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see
-   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
-   * getIDPPossibleAttributes()
-   */
-  @Override
-  public List<Attribute> getIdpPossibleAttributes() {
-    return null;
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see
-   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
-   * getIDPPossibleNameITTypes()
-   */
-  @Override
-  public List<String> getIdpPossibleNameIdTypes() {
-    return null;
-  }
-
-
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see
-   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
-   * getSPRequiredAttributes()
-   */
-  @Override
-  public Collection<RequestedAttribute> getSpRequiredAttributes() {
-    final Map<String, RequestedAttribute> requestedAttributes = new HashMap<>();
-
-    if (pvpConfiguration.getBasicConfiguration().getBasicConfigurationBoolean(
-        AuthHandlerConstants.PROP_CONFIG_LEGACY_ALLOW, false)) {
-      log.trace("Build required attributes for legacy operaton ... ");
-      injectDefinedAttributes(requestedAttributes,
-          IdAustriaClientAuthConstants.DEFAULT_REQUIRED_PVP_ATTRIBUTES_WITHOUT_EID);
-
-    } else {
-      log.trace("Build required attributes for E-ID operaton ... ");
-      injectDefinedAttributes(requestedAttributes,
-          IdAustriaClientAuthConstants.DEFAULT_REQUIRED_PVP_ATTRIBUTES);
-
-    }
-
-    if (additionalAttributes != null) {
-      log.trace("Add additional PVP attributes into metadata ... ");
-      for (final RequestedAttribute el : additionalAttributes) {
-        if (requestedAttributes.containsKey(el.getName())) {
-          log.debug("Attribute " + el.getName()
-              + " is already added by default configuration. Overwrite it by user configuration");
-        }
-
-        requestedAttributes.put(el.getName(), el);
-
-      }
-    }
-
-    return requestedAttributes.values();
-
-  }
-
-
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see
-   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
-   * getSPAllowedNameITTypes()
-   */
-  @Override
-  public List<String> getSpAllowedNameIdTypes() {
-    return Arrays.asList(NameIDType.PERSISTENT);
-
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
-   * IPVPMetadataBuilderConfiguration#getSPNameForLogging()
-   */
-  @Override
-  public String getSpNameForLogging() {
-    return IdAustriaClientAuthConstants.MODULE_NAME_FOR_LOGGING;
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
-   * IPVPMetadataBuilderConfiguration#wantAssertionSigned()
-   */
-  @Override
-  public boolean wantAssertionSigned() {
-    return false;
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
-   * IPVPMetadataBuilderConfiguration#wantAuthnRequestSigned()
-   */
-  @Override
-  public boolean wantAuthnRequestSigned() {
-    return true;
-  }
-
-  /**
-   * Add additonal PVP attributes that are required by this deployment.
-   *
-   * @param additionalAttr List of PVP attribute name and isRequired flag
-   */
-  public void setAdditionalRequiredAttributes(List<Pair<String, Boolean>> additionalAttr) {
-    if (additionalAttr != null && !additionalAttr.isEmpty()) {
-      additionalAttributes = new ArrayList<>();
-      for (final Pair<String, Boolean> el : additionalAttr) {
-        final Attribute attributBuilder = PvpAttributeBuilder.buildEmptyAttribute(el.getFirst());
-        if (attributBuilder != null) {
-          additionalAttributes.add(
-              PvpAttributeBuilder.buildReqAttribute(
-                  attributBuilder.getName(),
-                  attributBuilder.getFriendlyName(),
-                  el.getSecond()));
-
-        } else {
-          log.info("NO PVP attribute with name: " + el.getFirst());
-        }
-
-      }
-    }
-  }
-
-  private void injectDefinedAttributes(Map<String, RequestedAttribute> requestedAttributes,
-                                       List<Triple<String, String, Boolean>> attributes) {
-    for (final Triple<String, String, Boolean> el : attributes) {
-      requestedAttributes.put(el.getFirst(), PvpAttributeBuilder.buildReqAttribute(el.getFirst(), el
-          .getSecond(), el.getThird()));
-
-    }
-  }
-
-}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idAustriaClient/IdAustriaClientAuthMetadataController.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idAustriaClient/IdAustriaClientAuthMetadataController.java
deleted file mode 100644
index 87886397..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idAustriaClient/IdAustriaClientAuthMetadataController.java
+++ /dev/null
@@ -1,149 +0,0 @@
-package at.asitplus.eidas.specific.modules.auth.eidas.v2.idAustriaClient;
-
-
-import java.io.IOException;
-import java.net.MalformedURLException;
-import java.net.URL;
-import java.util.ArrayList;
-import java.util.List;
-import java.util.Map;
-
-import javax.servlet.http.HttpServletRequest;
-import javax.servlet.http.HttpServletResponse;
-
-import at.gv.egiz.eaaf.core.exceptions.EaafAuthenticationException;
-import at.gv.egiz.eaaf.core.exceptions.EaafException;
-import at.gv.egiz.eaaf.core.impl.data.Pair;
-import at.gv.egiz.eaaf.core.impl.http.HttpUtils;
-import at.gv.egiz.eaaf.core.impl.idp.controller.AbstractController;
-import at.gv.egiz.eaaf.core.impl.utils.KeyValueUtils;
-import at.gv.egiz.eaaf.modules.pvp2.api.IPvp2BasicConfiguration;
-import at.gv.egiz.eaaf.modules.pvp2.impl.builder.PvpMetadataBuilder;
-
-import org.apache.commons.lang3.StringUtils;
-import org.springframework.beans.factory.annotation.Autowired;
-import org.springframework.stereotype.Controller;
-import org.springframework.web.bind.annotation.RequestMapping;
-import org.springframework.web.bind.annotation.RequestMethod;
-
-import com.google.common.net.MediaType;
-import lombok.extern.slf4j.Slf4j;
-
-/**
- * Controller that generates SAML2 metadata for eIDAS authentication client.
- *
- * @author tlenz
- *
- */
-@Slf4j
-@Controller
-public class IdAustriaClientAuthMetadataController extends AbstractController {
-
-  private static final String ERROR_CODE_INTERNAL_00 = "eaaf.core.00";
-
-  @Autowired
-  PvpMetadataBuilder metadatabuilder;
-  @Autowired
-  IdAustriaClientAuthCredentialProvider credentialProvider;
-  @Autowired
-  IPvp2BasicConfiguration pvpConfiguration;
-
-  /**
-   * Default construction with logging.
-   *
-   */
-  public IdAustriaClientAuthMetadataController() {
-    super();
-    log.debug("Registering servlet " + getClass().getName()
-        + " with mappings '" + IdAustriaClientAuthConstants.ENDPOINT_METADATA
-        + "'.");
-
-  }
-
-  /**
-   * End-point that produce PVP2 metadata for eIDAS authentication client.
-   *
-   * @param req  http Request
-   * @param resp http Response
-   * @throws IOException   In case of an I/O error
-   * @throws EaafException In case of a metadata generation error
-   */
-  @RequestMapping(value = IdAustriaClientAuthConstants.ENDPOINT_METADATA,
-      method = { RequestMethod.GET })
-  public void getSpMetadata(HttpServletRequest req, HttpServletResponse resp) throws IOException,
-      EaafException {
-    // check PublicURL prefix
-    try {
-      final String authUrl = getAuthUrlFromHttpContext(req);
-
-      // initialize metadata builder configuration
-      final IdAustriaClientAuthMetadataConfiguration metadataConfig =
-          new IdAustriaClientAuthMetadataConfiguration(authUrl, credentialProvider, pvpConfiguration);
-      metadataConfig.setAdditionalRequiredAttributes(getAdditonalRequiredAttributes());
-
-      // build metadata
-      final String xmlMetadata = metadatabuilder.buildPvpMetadata(metadataConfig);
-
-      // write response
-      final byte[] content = xmlMetadata.getBytes("UTF-8");
-      resp.setStatus(HttpServletResponse.SC_OK);
-      resp.setContentLength(content.length);
-      resp.setContentType(MediaType.XML_UTF_8.toString());
-      resp.getOutputStream().write(content);
-
-    } catch (final Exception e) {
-      log.warn("Build federated-authentication PVP metadata FAILED.", e);
-      protAuthService.handleErrorNoRedirect(e, req, resp, false);
-
-    }
-
-  }
-
-  private String getAuthUrlFromHttpContext(HttpServletRequest req) throws EaafException {
-    // check if End-Point is valid
-    final String authUrlString = HttpUtils.extractAuthUrlFromRequest(req);
-    URL authReqUrl;
-    try {
-      authReqUrl = new URL(authUrlString);
-
-    } catch (final MalformedURLException e) {
-      log.warn("Requested URL: {} is not a valid URL.", authUrlString);
-      throw new EaafAuthenticationException(ERROR_CODE_INTERNAL_00, new Object[] { authUrlString }, e);
-
-    }
-
-    final String idpAuthUrl = authConfig.validateIdpUrl(authReqUrl);
-    if (idpAuthUrl == null) {
-      log.warn("Requested URL: {} is NOT found in configuration.", authReqUrl);
-      throw new EaafAuthenticationException(ERROR_CODE_INTERNAL_00, new Object[] { authUrlString });
-
-    }
-
-    return idpAuthUrl;
-  }
-
-  private List<Pair<String, Boolean>> getAdditonalRequiredAttributes() {
-    final List<Pair<String, Boolean>> result = new ArrayList<>();
-
-    // load attributes from configuration
-    final Map<String, String> addReqAttributes = authConfig.getBasicConfigurationWithPrefix(
-        IdAustriaClientAuthConstants.CONFIG_PROPS_REQUIRED_PVP_ATTRIBUTES_LIST);
-    for (final String el : addReqAttributes.values()) {
-      if (StringUtils.isNotEmpty(el)) {
-        log.trace("Parse additional attr. definition: " + el);
-        final List<String> attr = KeyValueUtils.getListOfCsvValues(el.trim());
-        if (attr.size() == 2) {
-          result.add(Pair.newInstance(attr.get(0), Boolean.parseBoolean(attr.get(1))));
-
-        } else {
-          log.info("IGNORE additional attr. definition: " + el
-              + " Reason: Format not valid");
-        }
-      }
-    }
-
-    return result;
-
-  }
-
-}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idAustriaClient/IdAustriaClientAuthMetadataProvider.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idAustriaClient/IdAustriaClientAuthMetadataProvider.java
deleted file mode 100644
index c0bfa290..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idAustriaClient/IdAustriaClientAuthMetadataProvider.java
+++ /dev/null
@@ -1,169 +0,0 @@
-package at.asitplus.eidas.specific.modules.auth.eidas.v2.idAustriaClient;
-
-import java.io.IOException;
-import java.security.KeyStore;
-import java.security.Provider;
-import java.security.cert.CertificateException;
-import java.text.MessageFormat;
-import java.util.ArrayList;
-import java.util.Collections;
-import java.util.List;
-
-import javax.annotation.PostConstruct;
-
-import at.gv.egiz.eaaf.core.api.idp.IConfiguration;
-import at.gv.egiz.eaaf.core.exceptions.EaafConfigurationException;
-import at.gv.egiz.eaaf.core.exceptions.EaafException;
-import at.gv.egiz.eaaf.core.impl.credential.EaafKeyStoreFactory;
-import at.gv.egiz.eaaf.core.impl.credential.KeyStoreConfiguration;
-import at.gv.egiz.eaaf.core.impl.credential.KeyStoreConfiguration.KeyStoreType;
-import at.gv.egiz.eaaf.core.impl.data.Pair;
-import at.gv.egiz.eaaf.core.impl.http.IHttpClientFactory;
-import at.gv.egiz.eaaf.modules.pvp2.exception.Pvp2MetadataException;
-import at.gv.egiz.eaaf.modules.pvp2.impl.metadata.AbstractChainingMetadataProvider;
-import at.gv.egiz.eaaf.modules.pvp2.impl.metadata.PvpMetadataResolverFactory;
-import at.gv.egiz.eaaf.modules.pvp2.impl.validation.metadata.SchemaValidationFilter;
-import at.gv.egiz.eaaf.modules.pvp2.impl.validation.metadata.SimpleMetadataSignatureVerificationFilter;
-
-import org.apache.commons.lang3.StringUtils;
-import org.opensaml.saml.metadata.resolver.MetadataResolver;
-import org.opensaml.saml.metadata.resolver.filter.MetadataFilter;
-import org.opensaml.saml.metadata.resolver.filter.MetadataFilterChain;
-import org.springframework.beans.factory.annotation.Autowired;
-
-import lombok.extern.slf4j.Slf4j;
-
-/**
- * SAML2 metadata-provider implementation for eIDAS client.
- *
- * @author tlenz
- *
- */
-@Slf4j
-public class IdAustriaClientAuthMetadataProvider extends AbstractChainingMetadataProvider {
-
-  private static final String FRIENDLYNAME_METADATA_TRUSTSTORE = "'eIDAS_client metadata truststore'";
-  private static final String PROVIDER_ID_PATTERN = "eIDAS resolver: {0}";
-  public static final String PROVIDER_ID = "'eIDAS_client metadata provider'";
-
-  @Autowired
-  private IConfiguration basicConfig;
-
-  @Autowired
-  private PvpMetadataResolverFactory metadataProviderFactory;
-  @Autowired
-  private IHttpClientFactory httpClientFactory;
-
-  @Autowired
-  private EaafKeyStoreFactory keyStoreFactory;
-
-  private Pair<KeyStore, Provider> metadataSigningTrustStore;
-
-  @Override
-  protected String getMetadataUrl(String entityId) throws EaafConfigurationException {
-    log.trace("eIDAS Auth. uses SAML2 well-known location approach. EntityId is Metadata-URL");
-    return entityId;
-
-  }
-
-  @Override
-  protected MetadataResolver createNewMetadataProvider(String entityId) throws EaafConfigurationException,
-      IOException, CertificateException {
-    final List<MetadataFilter> filterList = new ArrayList<>();
-    filterList.add(new SchemaValidationFilter(true));
-    filterList.add(new SimpleMetadataSignatureVerificationFilter(
-        metadataSigningTrustStore.getFirst(), entityId));
-
-    final MetadataFilterChain filter = new MetadataFilterChain();
-    filter.setFilters(filterList);
-
-    try {
-      return metadataProviderFactory.createMetadataProvider(getMetadataUrl(entityId),
-          filter,
-          MessageFormat.format(PROVIDER_ID_PATTERN, entityId),
-          httpClientFactory.getHttpClient());
-
-    } catch (final Pvp2MetadataException e) {
-      log.info("Can NOT build metadata provider for entityId: {}", entityId);
-      throw new EaafConfigurationException("module.eidasauth.04",
-          new Object[] { entityId, e.getMessage() }, e);
-
-    }
-  }
-
-  @Override
-  protected List<String> getAllMetadataUrlsFromConfiguration() throws EaafConfigurationException {
-    return Collections.emptyList();
-
-  }
-
-  @Override
-  protected String getMetadataProviderId() {
-    return PROVIDER_ID;
-
-  }
-
-  @Override
-  public void runGarbageCollector() {
-    log.trace("Garbage collection is NOT supported by: {}", getId());
-  }
-
-  @Override
-  public void doDestroy() {
-    super.fullyDestroy();
-
-  }
-
-  @PostConstruct
-  private void initialize() throws EaafException {
-    // initialize truststore to validate metadata signing certificates
-    initializeTrustStore();
-
-    // load metadata with metadataURL, as backup
-    initializeFileSystemMetadata();
-
-  }
-
-  private void initializeFileSystemMetadata() {
-    try {
-      final String metadataUrl = basicConfig.getBasicConfiguration(
-          IdAustriaClientAuthConstants.CONFIG_PROPS_NODE_METADATAURL);
-      if (StringUtils.isNotEmpty(metadataUrl)) {
-        log.info("Use not recommended metadata-provider initialization!"
-            + " SAML2 'Well-Known-Location' is the preferred methode.");
-        log.info("Initialize 'ms-specific eIDAS node' metadata-provider with URL: {}", metadataUrl);
-
-        addMetadataResolverIntoChain(createNewMetadataProvider(metadataUrl));
-      }
-
-    } catch (final EaafConfigurationException | CertificateException | IOException e) {
-      log.warn("Can NOT inject static eIDAS Node metadata-soure.", e);
-      log.warn("eIDAS Node communication can be FAIL.");
-
-    }
-  }
-
-  private void initializeTrustStore() throws EaafException {
-    // set configuration
-    final KeyStoreConfiguration trustStoreConfig = new KeyStoreConfiguration();
-    trustStoreConfig.setFriendlyName(FRIENDLYNAME_METADATA_TRUSTSTORE);
-    trustStoreConfig.setKeyStoreType(basicConfig.getBasicConfiguration(
-        IdAustriaClientAuthConstants.CONFIG_PROPS_TRUSTSTORE_TYPE,
-        KeyStoreType.JKS.getKeyStoreType()));
-    trustStoreConfig.setKeyStoreName(basicConfig.getBasicConfiguration(
-        IdAustriaClientAuthConstants.CONFIG_PROPS_TRUSTSTORE_NAME));
-    trustStoreConfig.setSoftKeyStoreFilePath(basicConfig.getBasicConfiguration(
-        IdAustriaClientAuthConstants.CONFIG_PROPS_TRUSTSTORE_PATH));
-    trustStoreConfig.setSoftKeyStorePassword(basicConfig.getBasicConfiguration(
-        IdAustriaClientAuthConstants.CONFIG_PROPS_TRUSTSTORE_PASSWORD));
-
-    // validate configuration
-    trustStoreConfig.validate();
-
-    // open new TrustStore
-    metadataSigningTrustStore = keyStoreFactory.buildNewKeyStore(trustStoreConfig);
-
-  }
-
-}
-
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idAustriaClient/IdAustriaClientAuthRequestBuilderConfiguration.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idAustriaClient/IdAustriaClientAuthRequestBuilderConfiguration.java
deleted file mode 100644
index ddaf872d..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idAustriaClient/IdAustriaClientAuthRequestBuilderConfiguration.java
+++ /dev/null
@@ -1,300 +0,0 @@
-package at.asitplus.eidas.specific.modules.auth.eidas.v2.idAustriaClient;
-
-import java.util.List;
-
-import at.gv.egiz.eaaf.modules.pvp2.api.credential.EaafX509Credential;
-import at.gv.egiz.eaaf.modules.pvp2.api.reqattr.EaafRequestedAttribute;
-import at.gv.egiz.eaaf.modules.pvp2.sp.api.IPvpAuthnRequestBuilderConfiguruation;
-
-import org.opensaml.saml.saml2.core.AuthnContextComparisonTypeEnumeration;
-import org.opensaml.saml.saml2.core.NameIDType;
-import org.opensaml.saml.saml2.metadata.EntityDescriptor;
-import org.w3c.dom.Element;
-
-public class IdAustriaClientAuthRequestBuilderConfiguration implements IPvpAuthnRequestBuilderConfiguruation {
-
-  private boolean isPassive;
-  private String spEntityId;
-  private String qaaLevel;
-  private EntityDescriptor idpEntity;
-  private EaafX509Credential signCred;
-  private String scopeRequesterId;
-  private String providerName;
-  private List<EaafRequestedAttribute> requestedAttributes;
-  private String reqId;
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
-   * IPVPAuthnRequestBuilderConfiguruation#isPassivRequest()
-   */
-  @Override
-  public Boolean isPassivRequest() {
-    return this.isPassive;
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
-   * IPVPAuthnRequestBuilderConfiguruation#getAssertionConsumerServiceId()
-   */
-  @Override
-  public Integer getAssertionConsumerServiceId() {
-    return 0;
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
-   * IPVPAuthnRequestBuilderConfiguruation#getEntityID()
-   */
-  @Override
-  public String getSpEntityID() {
-    return this.spEntityId;
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
-   * IPVPAuthnRequestBuilderConfiguruation#getNameIDPolicy()
-   */
-  @Override
-  public String getNameIdPolicyFormat() {
-    return NameIDType.PERSISTENT;
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
-   * IPVPAuthnRequestBuilderConfiguruation#getNameIDPolicy()
-   */
-  @Override
-  public boolean getNameIdPolicyAllowCreation() {
-    return true;
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
-   * IPVPAuthnRequestBuilderConfiguruation#getAuthnContextClassRef()
-   */
-  @Override
-  public String getAuthnContextClassRef() {
-    return this.qaaLevel;
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
-   * IPVPAuthnRequestBuilderConfiguruation#getAuthnContextComparison()
-   */
-  @Override
-  public AuthnContextComparisonTypeEnumeration getAuthnContextComparison() {
-    return AuthnContextComparisonTypeEnumeration.MINIMUM;
-  }
-
-  /**
-   * Set isPassive flag in SAML2 request.
-   *
-   * @param isPassive the isPassive to set.
-   */
-  public void setPassive(boolean isPassive) {
-    this.isPassive = isPassive;
-  }
-
-  /**
-   * Set the requester EntityId.
-   *
-   * @param spEntityId EntityId of SP
-   */
-  public void setSpEntityID(String spEntityId) {
-    this.spEntityId = spEntityId;
-  }
-
-  /**
-   * Set required LoA.
-   *
-   * @param loa the LoA to set.
-   */
-  public void setRequestedLoA(String loa) {
-    qaaLevel = loa;
-  }
-
-  /**
-   * Set EntityId of IDP.
-   *
-   * @param idpEntity the idpEntity to set.
-   */
-  public void setIdpEntity(EntityDescriptor idpEntity) {
-    this.idpEntity = idpEntity;
-  }
-
-  /**
-   * Set message signing credentials.
-   *
-   * @param signCred the signCred to set.
-   */
-  public void setSignCred(EaafX509Credential signCred) {
-    this.signCred = signCred;
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
-   * IPVPAuthnRequestBuilderConfiguruation#getAuthnRequestSigningCredential()
-   */
-  @Override
-  public EaafX509Credential getAuthnRequestSigningCredential() {
-    return this.signCred;
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
-   * IPVPAuthnRequestBuilderConfiguruation#getIDPEntityDescriptor()
-   */
-  @Override
-  public EntityDescriptor getIdpEntityDescriptor() {
-    return this.idpEntity;
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
-   * IPVPAuthnRequestBuilderConfiguruation#getSubjectNameID()
-   */
-  @Override
-  public String getSubjectNameID() {
-    return null;
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
-   * IPVPAuthnRequestBuilderConfiguruation#getSPNameForLogging()
-   */
-  @Override
-  public String getSpNameForLogging() {
-    return IdAustriaClientAuthConstants.MODULE_NAME_FOR_LOGGING;
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
-   * IPVPAuthnRequestBuilderConfiguruation#getSubjectNameIDFormat()
-   */
-  @Override
-  public String getSubjectNameIdFormat() {
-    return null;
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
-   * IPVPAuthnRequestBuilderConfiguruation#getRequestID()
-   */
-  @Override
-  public String getRequestID() {
-    return this.reqId;
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
-   * IPVPAuthnRequestBuilderConfiguruation#getSubjectNameIDQualifier()
-   */
-  @Override
-  public String getSubjectNameIdQualifier() {
-    return null;
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
-   * IPVPAuthnRequestBuilderConfiguruation#getSubjectConformationMethode()
-   */
-  @Override
-  public String getSubjectConformationMethode() {
-    return null;
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
-   * IPVPAuthnRequestBuilderConfiguruation#getSubjectConformationDate()
-   */
-  @Override
-  public Element getSubjectConformationDate() {
-    return null;
-  }
-
-  @Override
-  public List<EaafRequestedAttribute> getRequestedAttributes() {
-    return this.requestedAttributes;
-
-  }
-
-  @Override
-  public String getProviderName() {
-    return this.providerName;
-  }
-
-  @Override
-  public String getScopeRequesterId() {
-    return this.scopeRequesterId;
-  }
-
-  /**
-   * Set the entityId of the SP that requests the proxy for eIDAS authentication.
-   *
-   * @param scopeRequesterId RequestId in SAML2 Proxy extension
-   */
-  public void setScopeRequesterId(String scopeRequesterId) {
-    this.scopeRequesterId = scopeRequesterId;
-  }
-
-  /**
-   * Set a friendlyName for the SP that requests the proxy for eIDAS
-   * authentication.
-   *
-   * @param providerName SAML2 provider-name attribute-value
-   */
-  public void setProviderName(String providerName) {
-    this.providerName = providerName;
-  }
-
-  /**
-   * Set a Set of PVP attributes that a requested by using requested attributes.
-   *
-   * @param requestedAttributes Requested SAML2 attributes
-   */
-  public void setRequestedAttributes(List<EaafRequestedAttribute> requestedAttributes) {
-    this.requestedAttributes = requestedAttributes;
-  }
-
-  /**
-   * Set a RequestId for this Authn. Request.
-   *
-   * @param reqId SAML2 message requestId
-   */
-  public void setRequestId(String reqId) {
-    this.reqId = reqId;
-  }
-
-}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/AhAuthProcessDataConstants.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/AhAuthProcessDataConstants.java
new file mode 100644
index 00000000..36ea2440
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/AhAuthProcessDataConstants.java
@@ -0,0 +1,9 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient;
+
+import at.gv.egiz.eaaf.core.api.idp.EaafAuthProcessDataConstants;
+
+public interface AhAuthProcessDataConstants extends EaafAuthProcessDataConstants {
+
+
+
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/AhAuthProcessDataWrapper.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/AhAuthProcessDataWrapper.java
new file mode 100644
index 00000000..1b20960b
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/AhAuthProcessDataWrapper.java
@@ -0,0 +1,224 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient;
+
+
+import java.security.cert.CertificateEncodingException;
+import java.security.cert.CertificateException;
+import java.util.Map;
+
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+
+import at.gv.egiz.eaaf.core.impl.idp.auth.data.AuthProcessDataWrapper;
+import iaik.x509.X509Certificate;
+
+public class AhAuthProcessDataWrapper extends AuthProcessDataWrapper
+    implements IAhAuthProcessData, AhAuthProcessDataConstants {
+  private static final Logger log = LoggerFactory.getLogger(AhAuthProcessDataWrapper.class);
+
+  public static final String VALUE_SIGNER_CERT = "direct_signerCert";
+  public static final String VALUE_VDAURL = "direct_bkuUrl";
+
+  public static final String VALUE_MANDATES_REFVALUE = "direct_mis_refvalue";
+
+  public static final String VALUE_EID_QCBIND = "direct_eid_qcBind";
+  public static final String VALUE_EID_VSZ = "direct_eid_vsz";
+  public static final String VALUE_EID_SIGNEDAUTHBLOCK = "direct_eid_authblock";
+  public static final String VALUE_EID_SIGNEDAUTHBLOCK_TYPE = "direct_eid_authblock_type";
+  public static final String VALUE_EID_MIS_MANDATE = "direct_eid_mis_mandate";
+
+  public static final String VALUE_INTERNAL_BPK = "direct_internal_bpk";
+  public static final String VALUE_INTERNAL_BPKYPE = "direct_internal_bpktype";
+
+  public static final String VALUE_INTERNAL_MANDATE_ELGA_PROCESS = "direct_is_elga_mandate_process";
+  public static final String VALUE_INTERNAL_VDA_AUTHENTICATION_PROCESS = "direct_is_vda_auth_process";
+
+  public AhAuthProcessDataWrapper(final Map<String, Object> authProcessData) {
+    super(authProcessData);
+
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see at.gv.egovernment.moa.id.auth.data.IAuthenticationSession#getSignerCertificate()
+   */
+  @Override
+  public X509Certificate getSignerCertificate() {
+    final byte[] encCert = getEncodedSignerCertificate();
+
+    if (encCert != null) {
+      try {
+        return new X509Certificate(encCert);
+      } catch (final CertificateException e) {
+        log.warn("Signer certificate can not be loaded from session database!", e);
+
+      }
+    }
+    return null;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see at.gv.egovernment.moa.id.auth.data.IAuthenticationSession#getEncodedSignerCertificate()
+   */
+  @Override
+  public byte[] getEncodedSignerCertificate() {
+    return wrapStoredObject(VALUE_SIGNER_CERT, null, byte[].class);
+
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see at.gv.egovernment.moa.id.auth.data.IAuthenticationSession#setSignerCertificate(iaik.x509.
+   * X509Certificate)
+   */
+  @Override
+  public void setSignerCertificate(final java.security.cert.X509Certificate signerCertificate) {
+    try {
+      authProcessData.put(VALUE_SIGNER_CERT, signerCertificate.getEncoded());
+
+    } catch (final CertificateEncodingException e) {
+      log.warn("Signer certificate can not be stored to session database!", e);
+    }
+
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see at.gv.egovernment.moa.id.auth.data.IAuthenticationSession#getBkuURL()
+   */
+  @Override
+  public String getVdaUrl() {
+    return wrapStoredObject(VALUE_VDAURL, null, String.class);
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see at.gv.egovernment.moa.id.auth.data.IAuthenticationSession#setBkuURL(java.lang.String)
+   */
+  @Override
+  public void setVdaUrl(final String vdaUrl) {
+    authProcessData.put(VALUE_VDAURL, vdaUrl);
+
+  }
+
+  @Override
+  public String getMandateReferenceValue() {
+    return wrapStoredObject(VALUE_MANDATES_REFVALUE, null, String.class);
+  }
+
+  @Override
+  public void setMandateReferenceValue(final String refValue) {
+    authProcessData.put(VALUE_MANDATES_REFVALUE, refValue);
+
+  }
+
+  @Override
+  public String getQcBind() {
+    return wrapStoredObject(VALUE_EID_QCBIND, null, String.class);
+  }
+
+  @Override
+  public void setQcBind(final String qcBind) {
+    authProcessData.put(VALUE_EID_QCBIND, qcBind);
+
+  }
+
+  @Override
+  public String getVsz() {
+    return wrapStoredObject(VALUE_EID_VSZ, null, String.class);
+  }
+
+  @Override
+  public void setVsz(final String vsz) {
+    authProcessData.put(VALUE_EID_VSZ, vsz);
+
+  }
+
+  @Override
+  public byte[] getSignedAuthBlock() {
+    return wrapStoredObject(VALUE_EID_SIGNEDAUTHBLOCK, null, byte[].class);
+  }
+
+  @Override
+  public void setSignedAuthBlock(final byte[] signedConsent) {
+    authProcessData.put(VALUE_EID_SIGNEDAUTHBLOCK, signedConsent);
+
+  }
+
+  @Override
+  public AuthHandlerConstants.AuthBlockType getSignedAuthBlockType() {
+    return wrapStoredObject(VALUE_EID_SIGNEDAUTHBLOCK_TYPE, AuthHandlerConstants.AuthBlockType.NONE,
+        AuthHandlerConstants.AuthBlockType.class);
+  }
+
+  @Override
+  public void setSignedAuthBlockType(final AuthHandlerConstants.AuthBlockType authBlockType) {
+    authProcessData.put(VALUE_EID_SIGNEDAUTHBLOCK_TYPE, authBlockType);
+
+  }
+
+  @Override
+  public ISignedMandate getMandateDate() {
+    return wrapStoredObject(VALUE_EID_MIS_MANDATE, null, ISignedMandate.class);
+
+  }
+
+  @Override
+  public void setMandateDate(final ISignedMandate mandateDate) {
+    authProcessData.put(VALUE_EID_MIS_MANDATE, mandateDate);
+
+  }
+
+  @Override
+  public String getInternalBpk() {
+    return wrapStoredObject(VALUE_INTERNAL_BPK, null, String.class);
+  }
+
+  @Override
+  public void setInternalBpk(final String bpk) {
+    authProcessData.put(VALUE_INTERNAL_BPK, bpk);
+
+  }
+
+  @Override
+  public String getInternalBpkType() {
+    return wrapStoredObject(VALUE_INTERNAL_BPKYPE, null, String.class);
+
+  }
+
+  @Override
+  public void setInternalBpkType(final String bpkType) {
+    authProcessData.put(VALUE_INTERNAL_BPKYPE, bpkType);
+
+  }
+
+  @Override
+  public boolean isElgaMandateProcess() {
+    return wrapStoredObject(VALUE_INTERNAL_MANDATE_ELGA_PROCESS, false, Boolean.class);
+
+  }
+
+  @Override
+  public void setElgaMandateProcess(boolean flag) {
+    authProcessData.put(VALUE_INTERNAL_MANDATE_ELGA_PROCESS, flag);
+
+  }
+
+  @Override
+  public boolean isVdaAuthentication() {
+    return wrapStoredObject(VALUE_INTERNAL_VDA_AUTHENTICATION_PROCESS, false, Boolean.class);
+
+  }
+
+  @Override
+  public void setVdaAuthentication(boolean flag) {
+    authProcessData.put(VALUE_INTERNAL_VDA_AUTHENTICATION_PROCESS, flag);
+
+  }
+
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/AhExtendedPvpAttributeDefinitions.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/AhExtendedPvpAttributeDefinitions.java
new file mode 100644
index 00000000..b74767de
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/AhExtendedPvpAttributeDefinitions.java
@@ -0,0 +1,24 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient;
+
+import at.gv.egiz.eaaf.core.api.data.ExtendedPvpAttributeDefinitions;
+
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+
+public class AhExtendedPvpAttributeDefinitions implements ExtendedPvpAttributeDefinitions {
+  private static final Logger log =
+      LoggerFactory.getLogger(AhExtendedPvpAttributeDefinitions.class);
+
+  private AhExtendedPvpAttributeDefinitions() {
+    log.trace("Instance class: {} for SonarQube",
+        AhExtendedPvpAttributeDefinitions.class.getName());
+
+  }
+
+  public static final String EID_BCBIND_NAME = "urn:eidgvat:attributes.bcbind";
+  public static final String EID_BCBIND_FRIENDLY_NAME = "bcBind";
+
+  public static final String EID_BINDING_PUBKEY_NAME = "urn:eidgvat:attributes.binding.pubkey";
+  public static final String EID_BINDING_PUBKEY_FRIENDLY_NAME = "BindingPubKey";
+
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/AuthHandlerConstants.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/AuthHandlerConstants.java
new file mode 100644
index 00000000..1bbc31e0
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/AuthHandlerConstants.java
@@ -0,0 +1,141 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient;
+
+
+public class AuthHandlerConstants {
+
+  private AuthHandlerConstants() {
+
+  }
+
+  // TODO: maybe update to another target
+  public static final String DEFAULT_INTERNAL_BPK_TARGET = "urn:publicid:gv.at:cdid+ZP-MH";
+
+  // configuration parameters
+  public static final String PROP_CONFIG_APPLICATION_PREFIX = "authhandler.";
+  public static final String PROP_CONFIG_APPLICATION_PUBLIC_URL_PREFIX = "core.context.url.prefix";
+  public static final String PROP_CONFIG_APPLICATION_PUBLIC_URL_REQUEST_VALIDATION =
+      "core.context.url.request.validation";
+  public static final String PROP_CONFIG_LEGACY_ALLOW = "core.legacy.allowLegacyMode";
+
+  public static final String PROP_CONFIG_WEBCONTENT_STATIC_PATH =
+      "core.webcontent.static.directory";
+  public static final String PROP_CONFIG_WEBCONTENT_TEMPLATES_PATH = "core.webcontent.templates";
+  public static final String PROP_CONFIG_WEBCONTENT_PROPERTIES_PATH = "core.webcontent.properties";
+
+  public static final String PROP_CONFIG_CACHE_TRANSACTIONS_NAME = "core.cache.transaction.name";
+  public static final String PROP_CONFIG_CACHE_TRANSACTIONS_ENC_ENABLED =
+      "core.cache.transaction.encryption.enabled";
+  public static final String PROP_CONFIG_CACHE_TRANSACTIONS_ENC_KEY_TYPE =
+      "core.cache.transaction.encryption.type";
+  public static final String PROP_CONFIG_CACHE_TRANSACTIONS_ENC_PASSPHRASE =
+      "core.cache.transaction.encryption.passphrase";
+  public static final String PROP_CONFIG_CACHE_TRANSACTIONS_ENC_SALT =
+      "core.cache.transaction.encryption.salt";
+  public static final String PROP_CONFIG_CACHE_TRANSACTIONS_ENC_KEYSTORE_NAME =
+      "core.cache.transaction.encryption.keystore.name";
+  public static final String PROP_CONFIG_CACHE_TRANSACTIONS_ENC_KEY_ALIAS =
+      "core.cache.transaction.encryption.key.alias";
+
+  public static final String PROP_CONFIG_CACHE_ATTRIBUTEPROXY_NAME =
+      "core.cache.attributeproxy.name";
+
+  public static final String PROP_CONFIG_BACKEND_ENDPOINT_GETALLSUPPORTEDATTRIBUTES =
+      "backend.endpoints.getallsupportedattributes";
+  public static final String PROP_CONFIG_BACKEND_ENDPOINT_GETAPPLICATIONCONFIGURATION =
+      "backend.endpoints.getapplicationconfiguration";
+
+  public static final String PROP_CONFIG_INTERNAL_BPK_TARGET = "core.internal.bpk.target";
+
+  public static final String PROP_CONFIG_INTERNAL_FRONTEND_ONLY_MODE = "core.internal.frontend.only.mode";
+  public static final boolean PROP_DEFAULT_CONFIG_INTERNAL_FRONTEND_ONLY_MODE = false;
+
+  // Servlet End-Points
+  public static final String ENDPOINT_PROCESSENGINE_CONTROLLER = "/api/process";
+  public static final String ENDPOINT_ERROR_IFRAME_HOPPING = "/error/parenthop";
+
+
+  // GUI template directories
+  public static final String CLASSPATH_TEMPLATE_DIR = "/templates/";
+  public static final String FILESYSTEM_TEMPLATE_DIR = "./templates/";
+  public static final String TEMPLATE_HTML_ERROR = "error_message.html";
+
+  // GUI template defaultfiles
+  public static final String TEMPLATE_AUTHPROCESS_SELECTION_VDA_FULLFRAME = "authSelection.html";
+  public static final String TEMPLATE_AUTHPROCESS_SELECTION_VDA_IFRAME = "authSelection_iframe.html";
+  public static final String TEMPLATE_USER_CONSENT_REQUEST = "userConsent.html";
+  public static final String TEMPLATE_IFRAME_TO_PARENT_HOPE = "iframe_parent_hope.html";
+  public static final String TEMPLATE_MANDATE_SELECTION = "mandateSelection.html";
+  public static final String TEMPLATE_PROF_REP_MANDATE_SELECTION = "profRepMandateSelection.html";
+  public static final String TEMPLATE_MANDATE_SELECTION_DUMMY = "mandateSelection_dummy.html";
+
+
+
+  // http request parameters
+  public static final String HTTP_PARAM_APPLICATION_ID = "appId";
+  public static final String HTTP_PARAM_STOP_PROCESS = "stopAuthProcess";
+  public static final String HTTP_PARAM_EIDAS_PROCESS = "useeIDAS";
+  public static final String HTTP_PARAM_EID_PROCESS = "useeID";
+  public static final String HTTP_PARAM_EID_BINDING_AUTH_PROCESS = "useBindingAuth";
+  public static final String HTTP_PARAM_USE_MANDATES = "useMandate";
+  public static final String HTTP_PARAM_AUTHMETHOD = "authMethod";
+  public static final String HTTP_PARAM_CONSENT_RELEASE_ATTRIBUTES = "releaseAttributes";
+  public static final String HTTP_PARAM_CONSENT_STORE_CONSENT = "storeConsent";
+
+  @Deprecated
+  public static final String HTTP_PARAM_EIDMIGRATIONPILOT_PROCESS = "pilotMigration";
+  @Deprecated
+  public static final String HTTP_PARAM_EIDMIGRATIONPILOT_SHOW_INFO_PAGE = "pilotMigrationInfoPage";
+  @Deprecated
+  public static final String HTTP_PARAM_MOBILESIGNATURE_PROCESS = "usemobileSig";
+
+  // UI options
+  public static final String UI_PARAM_USE_MANDATES = HTTP_PARAM_USE_MANDATES;
+  public static final String UI_PARAM_USE_ONLY_MANDATES = "useOnlyMandate";
+  public static final String UI_PARAM_USE_EIDAS = HTTP_PARAM_EIDAS_PROCESS;
+  public static final String UI_PARAM_DSGVO_SHORT_INFO = "dsgvoShortText";
+  public static final String UI_PARAM_DSGVO_SP_PRIVACY_STATEMENT_URL = "dsgvoPrivacyStatementUrl";
+  public static final String UI_PARAM_DSGVO_SP_SERVICE_URL = "dsgvoServiceUrl";
+  public static final String UI_PARAM_DSGVO_SP_LOGO = "dsgvoSpLogo";
+  public static final String UI_PARAM_DSGVO_SP_LOGO_SET = "dsgvoSpLogoSet";
+  public static final String UI_PARAM_DSGVO_SP_LOGO_SET_DATAURL = "dataUrl";
+  public static final String UI_PARAM_DSGVO_SP_LOGO_SET_THEME = "theme";
+  public static final String UI_PARAM_DSGVO_SP_LOGO_SET_RESOLUTION = "resolution";
+  public static final String UI_PARAM_DSGVO_SP_LOGO_SET_TYPE = "type";
+
+  public enum LogoType { SVG, PNG, UNKNOWN }
+
+  public enum AuthBlockType {
+    CADES("CAdES"), JWS("JWS"), NONE("none");
+
+    private final String internalType;
+
+    AuthBlockType(final String type) {
+      this.internalType = type;
+
+    }
+
+    /**
+     * Get Type identifier for this AuthBlock.
+     *
+     * @return
+     */
+    public String getAuthBlockType() {
+      return this.internalType;
+    }
+
+    @Override
+    public String toString() {
+      return getAuthBlockType();
+
+    }
+  }
+
+  // process context parameters
+  public static final String PROCESSCONTEXT_USERCONSENT_NEEDED = "userConsentNeeded";
+  public static final String PROCESSCONTEXT_AUTHPROCESSSELECTION_DONE = "authProcSelectDone";
+  public static final String PROCESSCONTEXT_SWITCH_LANGUAGE = "changeLanguage";
+  public static final String PROCESSCONTEXT_IFRAME_PARENT_NEEDED = "iframeParentNeeded";
+
+  public static final String PROCESSCONTEXT_WAS_EID_PROCESS = "wasEidProcess";
+
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/EidasAuthEventConstants.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/EidasAuthEventConstants.java
new file mode 100644
index 00000000..bca04369
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/EidasAuthEventConstants.java
@@ -0,0 +1,10 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient;
+
+public class EidasAuthEventConstants {
+
+  public static final int AUTHPROCESS_EIDAS_AT_CONNECTOR_SELECTED = 6200;
+  public static final int AUTHPROCESS_EIDAS_AT_CONNECTOR_REQUESTED = 6201;
+  public static final int AUTHPROCESS_EIDAS_AT_CONNECTOR_RECEIVED = 6202;
+  public static final int AUTHPROCESS_EIDAS_AT_CONNECTOR_RECEIVED_ERROR = 6203;
+  public static final int AUTHPROCESS_EIDAS_AT_CONNECTOR_MDS_VALID = 6204;
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IAhAuthProcessData.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IAhAuthProcessData.java
new file mode 100644
index 00000000..47d3d37c
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IAhAuthProcessData.java
@@ -0,0 +1,190 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient;
+
+import java.security.cert.X509Certificate;
+
+import at.gv.egiz.eaaf.core.api.idp.auth.data.IAuthProcessDataContainer;
+
+public interface IAhAuthProcessData extends IAuthProcessDataContainer {
+
+  /**
+   * Get the certificate that was used to sign the Consent.
+   *
+   * @return {@link X509Certificate}
+   */
+  X509Certificate getSignerCertificate();
+
+  /**
+   * Get the certificate that was used to sign the Consent.
+   *
+   * @return Serialized certificate
+   */
+  byte[] getEncodedSignerCertificate();
+
+  /**
+   * Set the certificate that was used to sign the Consent.
+   *
+   * @param signerCertificate Signer certificate of the user
+   */
+  void setSignerCertificate(X509Certificate signerCertificate);
+
+
+  /**
+   * Get URL to VDA that was used for authentication.
+   *
+   * @return
+   */
+  String getVdaUrl();
+
+  /**
+   * Set URL to VDA that was used for authentication.
+   *
+   * @param vdaUrl URL to VDA that was used for authentication
+   */
+  void setVdaUrl(String vdaUrl);
+
+  /**
+   * Get the reference-value that used to interact with MIS service.
+   *
+   * @return
+   */
+  String getMandateReferenceValue();
+
+  /**
+   * Set the reference-value that used to interact with MIS service.
+   *
+   * @param refValue Mandate reference value
+   */
+  void setMandateReferenceValue(String refValue);
+
+  /**
+   * Get the qcBind of the user that was received by VDA or other storage during authentication.
+   *
+   * @return
+   */
+  String getQcBind();
+
+  /**
+   * Set the qcBind of the user that was received by VDA or other storage during authentication.
+   *
+   * @param qcBind raw qcBind data-structure (serialized JSON)
+   */
+  void setQcBind(String qcBind);
+
+  /**
+   * Get the vSZ of the user.
+   *
+   * @return
+   */
+  String getVsz();
+
+  /**
+   * Set the vSZ of the user.
+   *
+   * @param vsz user's encrypted baseId
+   */
+  void setVsz(String vsz);
+
+  /**
+   * Get the signed AuthBlock of the user.
+   *
+   * @return
+   */
+  byte[] getSignedAuthBlock();
+
+  /**
+   * Set the signed AuthBlock of the user.
+   *
+   * @param authBlock raw signed consent
+   */
+  void setSignedAuthBlock(byte[] authBlock);
+
+  /**
+   * Get a textual type identifier of the AuthBlock.
+   *
+   * @return AuthBlock type
+   */
+  AuthHandlerConstants.AuthBlockType getSignedAuthBlockType();
+
+  /**
+   * Set a textual identifier for the type of the AuthBlock.
+   *
+   * @param authBlockType AuthBlock type
+   */
+  void setSignedAuthBlockType(final AuthHandlerConstants.AuthBlockType authBlockType);
+
+  /**
+   * Get the selected mandate of the user that was issued by MIS.
+   *
+   * @return
+   */
+  ISignedMandate getMandateDate();
+
+  /**
+   * Set the selected mandate of the user that is issued by MIS.
+   *
+   * @param signedMandate Raw mandate structure for E-ID backend
+   */
+  void setMandateDate(ISignedMandate signedMandate);
+
+
+  /**
+   * Get bPK for this entity. <br>
+   * <b>THIS bPK is only for AuthHandler internal usage</b>
+   *
+   * @return bPK, or null if no bPK is set
+   */
+  String getInternalBpk();
+
+  /**
+   * Get bPK type for this entity. <br>
+   * <b>THIS bPK is only for AuthHandler internal usage</b>
+   *
+   * @return bPKType, or null if no bPKType is set
+   */
+  String getInternalBpkType();
+
+  /**
+   * Set the bPK for INTERNAL USAGE of the current entity.
+   *
+   * @param bpk bPK for internal usage
+   */
+  void setInternalBpk(String bpk);
+
+  /**
+   * Set the bPK for INTERNAL USAGE of the current entity.
+   *
+   * @param bpkType bPK for internal usage
+   */
+  void setInternalBpkType(String bpkType);
+
+
+  /**
+   * Indicate if the current process uses ELGA mandates.
+   *
+   * @return <code>true</code> if ELGA mandates are used, otherwise <code>false</code>
+   */
+  boolean isElgaMandateProcess();
+
+  /**
+   * Set flag if the current process is an ELGA mandate process.
+   *
+   * @param flag <code>true</code> if it is an ELGA mandate-process, otherwise <code>false</code>
+   */
+  void setElgaMandateProcess(boolean flag);
+
+
+  /**
+   * Indicate if the current process was authenticated by a VDA.
+   *
+   * @return <code>true</code> if the current process was authenticated by VDA, otherwise <code>false</code>
+   */
+  boolean isVdaAuthentication();
+
+  /**
+   * Set flag that indicates if the current process was authenticated by a VDA.
+   *
+   * @param flag <code>true</code> in case of VDA authentication, otherwise <code>false</code>
+   */
+  void setVdaAuthentication(boolean flag);
+
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IAhSpConfiguration.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IAhSpConfiguration.java
new file mode 100644
index 00000000..081b215a
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IAhSpConfiguration.java
@@ -0,0 +1,151 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient;
+
+import java.util.List;
+
+import javax.annotation.Nonnull;
+import javax.annotation.Nullable;
+
+import at.gv.egiz.eaaf.core.api.idp.ISpConfiguration;
+import at.gv.egiz.eaaf.core.impl.data.Pair;
+
+public interface IAhSpConfiguration extends ISpConfiguration {
+
+
+  /**
+   * Flag if this Service Provider is enabled.
+   *
+   * @return true if the SP is enabled, otherwise false
+   */
+  boolean isEnabled();
+
+  /**
+   * Get unique identifier that is used in Application-Register from BM.I.
+   *
+   * <p>If no BM.I specific identifier is available then this method returns
+   * the same identifier as <code>getUniqueIdentifier()</code></p>
+   *
+   * @return unique identifier from BM.I AppReg, or generic uniqueId of no specific exists
+   */
+  String getUniqueApplicationRegisterIdentifier();
+
+  /**
+   * Flag that marks this Service-Provider as <i>public</i> or <i>private</i>.
+   *
+   * <p><b>Default:</b> If it is not set or has an unknown value, its <i>private</i> by default</p>
+   *
+   * @return <code>true</code> if it is from <i>public</i>, otherwise <code>false</code>
+   */
+  boolean isPublicServiceProvider();
+
+  /**
+   * Enable test identities for this Service Provider.
+   *
+   * @return true if test identities are allowed, otherwise false
+   */
+  boolean isTestCredentialEnabled();
+
+  /**
+   * Get a List of OID's that refine the set of allowed test identities.
+   *
+   * @return @link {@link List} of test-identity OID's
+   */
+  @Nullable
+  List<String> getTestCredentialOids();
+
+
+  /**
+   * Get a List of unique attribute URI's that are required by this SP.
+   *
+   * @return {@link List} of attribute URI's / parameter {@link Pair}s
+   */
+  List<Pair<String, String>> getRequiredAttributes();
+
+
+  /**
+   * Get the CountryCode for this service. <br>
+   * <br>
+   * <b>Default:</b> AT
+   *
+   * @return
+   */
+  String getCountryCode();
+
+  /**
+   * Set the CountryCode for this service. If not countryCode is set, AT is used as default.
+   *
+   * @param cc Service-Provider country-code
+   */
+  void setCountryCode(String cc);
+
+  /**
+   * Enable mandates for this service provider.
+   *
+   * @return <code>true</code> if mandates are enabled, otherwise <code>false</code>
+   */
+  boolean isMandateEnabled();
+
+  /**
+   * Enables multi-mandates for this service-provider.
+   *
+   * @return <code>true</code> if multi-mandates are enabled, otherwise <code>false</code>
+   */
+  boolean isMultiMandateEnabled();
+
+  /**
+   * Only mandates are allowed for this service provider.
+   *
+   * @return <code>true</code> if only mandates are allowed, otherwise <code>false</code>
+   */
+  boolean isOnlyMandateEnabled();
+
+  /**
+   * Get a {@link List} of mandate profiles that are supported by this Service provider.
+   *
+   * @return
+   */
+  @Nonnull List<String> getMandateProfiles();
+
+
+  /**
+   * eIDAS authentication allowed flag.
+   *
+   * @return <code>true</code> if eIDAS authentication is enabled, otherwise <code>false</code>
+   */
+  boolean isEidasEnabled();
+
+  /**
+   * Get a List of targets for additional bPKs that are required by this service provider.
+   *
+   * @return List of prefixed bPK targets
+   */
+  @Nonnull List<String> getAdditionalBpkTargets();
+
+  /**
+   * Get a list of foreign bPK targets that are required by this service provider.
+   *
+   * @return List of pairs with prefixed bPK targets as first element and VKZ as second element
+   */
+  @Nonnull List<Pair<String, String>> getAdditionalForeignBpkTargets();
+
+  /**
+   * Flag that indicates that service-provider as restricted or unrestricted.
+   *
+   * <p>A restricted service-provider can only used by test-identities that contains a
+   * valid application-restriction in User-Certificate Pinning</p>
+   *
+   * <p><b>Default:</b> true</p>
+   *
+   * @return <code>true</code> if it is restricted, otherwise <code>false</code>
+   */
+  boolean isRestrictedServiceProvider();
+
+
+  /**
+   * Defines the time in minutes how long the last VDA registration h@Override
+   ave passed as maximum.
+   *
+   * @return time in minutes
+   */
+  long lastVdaAuthenticationDelay();
+
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IRawMandateDao.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IRawMandateDao.java
new file mode 100644
index 00000000..7e3b2aa1
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IRawMandateDao.java
@@ -0,0 +1,32 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient;
+
+import java.io.Serializable;
+import java.util.Date;
+
+public interface IRawMandateDao extends Serializable {
+
+  boolean isNaturalPerson();
+
+  boolean isProfRepresentation();
+
+  String getIdentifier();
+
+  String getIdentifierType();
+
+  String getGivenName();
+
+  String getFamilyName();
+
+  Date getDateOfBirth();
+
+  String getCommonName();
+
+  String getMandateTypeOid();
+
+  String getMandateAnnotation();
+
+  String getMandateId();
+
+  String getMandateContent();
+
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/ISignedMandate.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/ISignedMandate.java
new file mode 100644
index 00000000..edd167fb
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/ISignedMandate.java
@@ -0,0 +1,19 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient;
+
+public interface ISignedMandate extends IRawMandateDao {
+
+  /**
+   * Get the full signed mandate issued by the MIS component.
+   *
+   * @return serialized JWS that contains the mandate
+   */
+  String getSignedMandate();
+
+  /**
+   * Get formated date-of-birth.
+   *
+   * @return date-of-birth as 'yyyy-MM-dd'
+   */
+  String getDateOfBirthFormated();
+
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthConstants.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthConstants.java
new file mode 100644
index 00000000..7d8b9dc8
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthConstants.java
@@ -0,0 +1,166 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient;
+
+
+import at.gv.egiz.eaaf.core.api.data.EaafConstants;
+import at.gv.egiz.eaaf.core.api.data.ExtendedPvpAttributeDefinitions;
+import at.gv.egiz.eaaf.core.api.data.PvpAttributeDefinitions;
+import at.gv.egiz.eaaf.core.impl.data.Triple;
+
+import java.util.ArrayList;
+import java.util.Collections;
+import java.util.List;
+
+
+public class IdAustriaClientAuthConstants {
+
+  private IdAustriaClientAuthConstants() {
+
+  }
+
+  public static final String SAML2_STATUSCODE_USERSTOP = "1005";
+
+  public static final String MODULE_NAME_FOR_LOGGING = "ID Austria Client";
+
+  public static final int METADATA_VALIDUNTIL_IN_HOURS = 24;
+
+  //  public static final String HTTP_PARAM_CENTRAL_EIDAS_AUTH_SELECTION =
+  //      AuthHandlerConstants.HTTP_PARAM_EIDAS_PROCESS;
+
+  public static final String ENDPOINT_POST = "/idAustriaSp/post";
+  public static final String ENDPOINT_REDIRECT = "/idAustriaSp/redirect";
+  public static final String ENDPOINT_METADATA = "/idAustriaSp/metadata";
+
+  public static final String CONFIG_PROPS_PREFIX = "modules.idaustriaclient.";
+  public static final String CONFIG_PROPS_KEYSTORE_TYPE = CONFIG_PROPS_PREFIX + "keystore.type";
+  public static final String CONFIG_PROPS_KEYSTORE_NAME = CONFIG_PROPS_PREFIX + "keystore.name";
+  public static final String CONFIG_PROPS_KEYSTORE_PATH = CONFIG_PROPS_PREFIX + "keystore.path";
+  public static final String CONFIG_PROPS_KEYSTORE_PASSWORD = CONFIG_PROPS_PREFIX + "keystore.password";
+  public static final String CONFIG_PROPS_SIGN_METADATA_KEY_PASSWORD = CONFIG_PROPS_PREFIX
+      + "metadata.sign.password";
+  public static final String CONFIG_PROPS_SIGN_METADATA_ALIAS = CONFIG_PROPS_PREFIX
+      + "metadata.sign.alias";
+  public static final String CONFIG_PROPS_SIGN_SIGNING_KEY_PASSWORD = CONFIG_PROPS_PREFIX
+      + "request.sign.password";
+  public static final String CONFIG_PROPS_SIGN_SIGNING_ALIAS = CONFIG_PROPS_PREFIX
+      + "request.sign.alias";
+  public static final String CONFIG_PROPS_ENCRYPTION_KEY_PASSWORD = CONFIG_PROPS_PREFIX
+      + "response.encryption.password";
+  public static final String CONFIG_PROPS_ENCRYPTION_ALIAS = CONFIG_PROPS_PREFIX
+      + "response.encryption.alias";
+
+  public static final String CONFIG_PROPS_TRUSTSTORE_TYPE = CONFIG_PROPS_PREFIX + "truststore.type";
+  public static final String CONFIG_PROPS_TRUSTSTORE_NAME = CONFIG_PROPS_PREFIX + "truststore.name";
+  public static final String CONFIG_PROPS_TRUSTSTORE_PATH = CONFIG_PROPS_PREFIX + "truststore.path";
+  public static final String CONFIG_PROPS_TRUSTSTORE_PASSWORD = CONFIG_PROPS_PREFIX + "truststore.password";
+
+  public static final String CONFIG_PROPS_REQUIRED_PVP_ATTRIBUTES_LIST = CONFIG_PROPS_PREFIX
+      + "required.additional.attributes";
+  public static final String CONFIG_PROPS_REQUIRED_LOA = CONFIG_PROPS_PREFIX
+      + "required.loa";
+  public static final String CONFIG_PROPS_NODE_ENTITYID = CONFIG_PROPS_PREFIX + "node.entityId";
+  public static final String CONFIG_PROPS_NODE_METADATAURL = CONFIG_PROPS_PREFIX + "node.metadataUrl";
+  public static final String CONFIG_PROPS_NODE_TRUSTPROFILEID = CONFIG_PROPS_PREFIX + "node.trustprofileID";
+
+
+  public static final String CONFIG_PROPS_METADATA_CONTACT_GIVENNAME =
+      CONFIG_PROPS_PREFIX + "metadata.contact.givenname";
+  public static final String CONFIG_PROPS_METADATA_CONTACT_SURNAME =
+      CONFIG_PROPS_PREFIX + "metadata.contact.surname";
+  public static final String CONFIG_PROPS_METADATA_CONTACT_EMAIL =
+      CONFIG_PROPS_PREFIX + "metadata.contact.email";
+  public static final String CONFIG_PROPS_METADATA_ORGANISATION_NAME =
+      CONFIG_PROPS_PREFIX + "metadata.organisation.name";
+  public static final String CONFIG_PROPS_METADATA_ORGANISATION_FRIENDLYNAME =
+      CONFIG_PROPS_PREFIX + "metadata.organisation.friendyname";
+  public static final String CONFIG_PROPS_METADATA_ORGANISATION_URL =
+      CONFIG_PROPS_PREFIX + "metadata.organisation.url";
+
+  public static final String CONFIG_PROPS_APPSPECIFIC_EIDAS_NODE_URL = "auth.eidas.node.entityId";
+
+  public static final String CONFIG_PROPS_SEMPER_MANDATES_ACTIVE = CONFIG_PROPS_PREFIX
+      + "semper.mandates.active";
+  public static final String CONFIG_PROPS_SEMPER_MANDATES_MS_PROXY_LIST = CONFIG_PROPS_PREFIX
+      + "semper.msproxy.list";
+
+  public static final String CONFIG_DEFAULT_LOA_EIDAS_LEVEL = EaafConstants.EIDAS_LOA_HIGH;
+
+  @Deprecated
+  public static final List<Triple<String, String, Boolean>> DEFAULT_REQUIRED_PVP_ATTRIBUTES_WITHOUT_EID =
+      Collections.unmodifiableList(new ArrayList<Triple<String, String, Boolean>>() {
+        private static final long serialVersionUID = 1L;
+        {
+          // add PVP Version attribute
+          add(Triple.newInstance(PvpAttributeDefinitions.PVP_VERSION_NAME,
+              PvpAttributeDefinitions.PVP_VERSION_FRIENDLY_NAME, true));
+
+          // request entity information
+          add(Triple.newInstance(PvpAttributeDefinitions.EID_SECTOR_FOR_IDENTIFIER_NAME,
+              PvpAttributeDefinitions.EID_SECTOR_FOR_IDENTIFIER_FRIENDLY_NAME, false));
+          add(Triple.newInstance(PvpAttributeDefinitions.EID_CITIZEN_EIDAS_QAA_LEVEL_NAME,
+              PvpAttributeDefinitions.EID_CITIZEN_EIDAS_QAA_LEVEL_FRIENDLY_NAME, true));
+          add(Triple.newInstance(PvpAttributeDefinitions.EID_ISSUING_NATION_NAME,
+              PvpAttributeDefinitions.EID_ISSUING_NATION_FRIENDLY_NAME, true));
+
+          // entity eID information
+          add(Triple.newInstance(AhExtendedPvpAttributeDefinitions.EID_EIDBIND_NAME,
+              AhExtendedPvpAttributeDefinitions.EID_EIDBIND_FRIENDLY_NAME, false));
+          add(Triple.newInstance(AhExtendedPvpAttributeDefinitions.EID_AUTHBLOCK_SIGNED_NAME,
+              AhExtendedPvpAttributeDefinitions.EID_AUTHBLOCK_SIGNED_FRIENDLY_NAME, false));
+
+          // Deprecated information
+          add(Triple.newInstance(PvpAttributeDefinitions.GIVEN_NAME_NAME,
+              PvpAttributeDefinitions.GIVEN_NAME_FRIENDLY_NAME, false));
+          add(Triple.newInstance(PvpAttributeDefinitions.PRINCIPAL_NAME_NAME,
+              PvpAttributeDefinitions.PRINCIPAL_NAME_FRIENDLY_NAME, false));
+          add(Triple.newInstance(PvpAttributeDefinitions.BIRTHDATE_NAME,
+              PvpAttributeDefinitions.BIRTHDATE_FRIENDLY_NAME, false));
+          add(Triple.newInstance(PvpAttributeDefinitions.BPK_NAME, PvpAttributeDefinitions.BPK_FRIENDLY_NAME,
+              false));
+          add(Triple.newInstance(PvpAttributeDefinitions.EID_IDENTITY_LINK_NAME,
+              PvpAttributeDefinitions.EID_IDENTITY_LINK_FRIENDLY_NAME, false));
+
+          //request pII transactionId from MS-Connector
+          add(Triple.newInstance(ExtendedPvpAttributeDefinitions.EID_PII_TRANSACTION_ID_NAME,
+              ExtendedPvpAttributeDefinitions.EID_PII_TRANSACTION_ID_FRIENDLY_NAME, false));
+
+        }
+      });
+
+  public static final List<Triple<String, String, Boolean>> DEFAULT_REQUIRED_PVP_ATTRIBUTES =
+      Collections.unmodifiableList(new ArrayList<Triple<String, String, Boolean>>() {
+        private static final long serialVersionUID = 1L;
+        {
+          // add PVP Version attribute
+          add(Triple.newInstance(PvpAttributeDefinitions.PVP_VERSION_NAME,
+              PvpAttributeDefinitions.PVP_VERSION_FRIENDLY_NAME, true));
+
+          // entity metadata information
+          add(Triple.newInstance(PvpAttributeDefinitions.EID_CITIZEN_EIDAS_QAA_LEVEL_NAME,
+              PvpAttributeDefinitions.EID_CITIZEN_EIDAS_QAA_LEVEL_FRIENDLY_NAME, true));
+          add(Triple.newInstance(PvpAttributeDefinitions.EID_ISSUING_NATION_NAME,
+              PvpAttributeDefinitions.EID_ISSUING_NATION_FRIENDLY_NAME, true));
+
+          // entity eID information
+          add(Triple.newInstance(AhExtendedPvpAttributeDefinitions.EID_EIDBIND_NAME,
+              AhExtendedPvpAttributeDefinitions.EID_EIDBIND_FRIENDLY_NAME, true));
+          add(Triple.newInstance(AhExtendedPvpAttributeDefinitions.EID_AUTHBLOCK_SIGNED_NAME,
+              AhExtendedPvpAttributeDefinitions.EID_AUTHBLOCK_SIGNED_FRIENDLY_NAME, true));
+
+          //request pII transactionId from MS-Connector
+          add(Triple.newInstance(ExtendedPvpAttributeDefinitions.EID_PII_TRANSACTION_ID_NAME,
+              ExtendedPvpAttributeDefinitions.EID_PII_TRANSACTION_ID_FRIENDLY_NAME, false));
+
+        }
+      });
+
+  public static final List<String> DEFAULT_REQUIRED_PVP_ATTRIBUTE_NAMES =
+      Collections.unmodifiableList(new ArrayList<String>() {
+        private static final long serialVersionUID = 1L;
+        {
+          for (final Triple<String, String, Boolean> el : DEFAULT_REQUIRED_PVP_ATTRIBUTES) {
+            add(el.getFirst());
+          }
+        }
+      });
+
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthCredentialProvider.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthCredentialProvider.java
new file mode 100644
index 00000000..69386194
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthCredentialProvider.java
@@ -0,0 +1,130 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient;
+
+import at.gv.egiz.eaaf.core.api.idp.IConfiguration;
+import at.gv.egiz.eaaf.core.exceptions.EaafConfigurationException;
+import at.gv.egiz.eaaf.core.impl.credential.KeyStoreConfiguration;
+import at.gv.egiz.eaaf.core.impl.credential.KeyStoreConfiguration.KeyStoreType;
+import at.gv.egiz.eaaf.modules.pvp2.impl.utils.AbstractCredentialProvider;
+
+import org.springframework.beans.factory.annotation.Autowired;
+
+/**
+ * Credential provider for eIDAS PVP S-Profile client.
+ *
+ * @author tlenz
+ *
+ */
+public class IdAustriaClientAuthCredentialProvider extends AbstractCredentialProvider {
+
+  @Autowired
+  IConfiguration authConfig;
+
+  private static final String FRIENDLYNAME = "eIDAS centrial authentication";
+
+  @Override
+  public KeyStoreConfiguration getBasicKeyStoreConfig() throws EaafConfigurationException {
+    final KeyStoreConfiguration keyStoreConfig = new KeyStoreConfiguration();
+    keyStoreConfig.setFriendlyName(FRIENDLYNAME);
+    keyStoreConfig.setKeyStoreType(
+        authConfig.getBasicConfiguration(IdAustriaClientAuthConstants.CONFIG_PROPS_KEYSTORE_TYPE,
+            KeyStoreType.PKCS12.getKeyStoreType()));
+    keyStoreConfig.setKeyStoreName(
+        authConfig.getBasicConfiguration(IdAustriaClientAuthConstants.CONFIG_PROPS_KEYSTORE_NAME));
+    keyStoreConfig.setSoftKeyStoreFilePath(getKeyStoreFilePath());
+    keyStoreConfig.setSoftKeyStorePassword(
+        authConfig.getBasicConfiguration(IdAustriaClientAuthConstants.CONFIG_PROPS_KEYSTORE_PASSWORD));
+
+    return keyStoreConfig;
+
+  }
+
+  private String getKeyStoreFilePath() throws EaafConfigurationException {
+    final String path = authConfig.getBasicConfiguration(
+        IdAustriaClientAuthConstants.CONFIG_PROPS_KEYSTORE_PATH);
+    if (path == null) {
+      throw new EaafConfigurationException("module.eidasauth.00",
+          new Object[] { IdAustriaClientAuthConstants.CONFIG_PROPS_KEYSTORE_PATH });
+
+    }
+    return path;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.signer.AbstractCredentialProvider#
+   * getMetadataKeyAlias()
+   */
+  @Override
+  public String getMetadataKeyAlias() {
+    return authConfig.getBasicConfiguration(
+        IdAustriaClientAuthConstants.CONFIG_PROPS_SIGN_METADATA_ALIAS);
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.signer.AbstractCredentialProvider#
+   * getMetadataKeyPassword()
+   */
+  @Override
+  public String getMetadataKeyPassword() {
+    return authConfig.getBasicConfiguration(
+        IdAustriaClientAuthConstants.CONFIG_PROPS_SIGN_METADATA_KEY_PASSWORD);
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.signer.AbstractCredentialProvider#
+   * getSignatureKeyAlias()
+   */
+  @Override
+  public String getSignatureKeyAlias() {
+    return authConfig.getBasicConfiguration(
+        IdAustriaClientAuthConstants.CONFIG_PROPS_SIGN_SIGNING_ALIAS);
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.signer.AbstractCredentialProvider#
+   * getSignatureKeyPassword()
+   */
+  @Override
+  public String getSignatureKeyPassword() {
+    return authConfig.getBasicConfiguration(
+        IdAustriaClientAuthConstants.CONFIG_PROPS_SIGN_SIGNING_KEY_PASSWORD);
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.signer.AbstractCredentialProvider#
+   * getEncryptionKeyAlias()
+   */
+  @Override
+  public String getEncryptionKeyAlias() {
+    return authConfig.getBasicConfiguration(
+        IdAustriaClientAuthConstants.CONFIG_PROPS_ENCRYPTION_ALIAS);
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.signer.AbstractCredentialProvider#
+   * getEncryptionKeyPassword()
+   */
+  @Override
+  public String getEncryptionKeyPassword() {
+    return authConfig.getBasicConfiguration(
+        IdAustriaClientAuthConstants.CONFIG_PROPS_ENCRYPTION_KEY_PASSWORD);
+  }
+
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthMetadataConfiguration.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthMetadataConfiguration.java
new file mode 100644
index 00000000..93aefb42
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthMetadataConfiguration.java
@@ -0,0 +1,471 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient;
+
+
+import java.util.ArrayList;
+import java.util.Arrays;
+import java.util.Collection;
+import java.util.HashMap;
+import java.util.List;
+import java.util.Map;
+
+import at.gv.egiz.eaaf.core.exceptions.EaafException;
+import at.gv.egiz.eaaf.core.impl.data.Pair;
+import at.gv.egiz.eaaf.core.impl.data.Triple;
+import at.gv.egiz.eaaf.modules.pvp2.api.IPvp2BasicConfiguration;
+import at.gv.egiz.eaaf.modules.pvp2.api.credential.EaafX509Credential;
+import at.gv.egiz.eaaf.modules.pvp2.api.metadata.IPvpMetadataBuilderConfiguration;
+import at.gv.egiz.eaaf.modules.pvp2.exception.CredentialsNotAvailableException;
+import at.gv.egiz.eaaf.modules.pvp2.impl.builder.PvpAttributeBuilder;
+
+import org.opensaml.saml.saml2.core.Attribute;
+import org.opensaml.saml.saml2.core.NameIDType;
+import org.opensaml.saml.saml2.metadata.ContactPerson;
+import org.opensaml.saml.saml2.metadata.Organization;
+import org.opensaml.saml.saml2.metadata.RequestedAttribute;
+import org.opensaml.security.credential.Credential;
+
+import lombok.extern.slf4j.Slf4j;
+
+/**
+ * Configuration object to generate PVP S-Profile metadata for SAML2 client.
+ *
+ * @author tlenz
+ *
+ */
+@Slf4j
+public class IdAustriaClientAuthMetadataConfiguration implements IPvpMetadataBuilderConfiguration {
+
+  private Collection<RequestedAttribute> additionalAttributes = null;
+
+  private final String authUrl;
+  private final IdAustriaClientAuthCredentialProvider credentialProvider;
+  private final IPvp2BasicConfiguration pvpConfiguration;
+
+  /**
+   * Configuration object to create PVP2 S-Profile metadata information.
+   *
+   * @param authUrl            Public URL prefix of the application
+   * @param credentialProvider Credentials used by PVP2 S-Profile end-point
+   * @param pvpConfiguration   Basic PVP2 S-Profile end-point configuration
+   */
+  public IdAustriaClientAuthMetadataConfiguration(String authUrl,
+                                                  IdAustriaClientAuthCredentialProvider credentialProvider,
+                                                  IPvp2BasicConfiguration pvpConfiguration) {
+    this.authUrl = authUrl;
+    this.credentialProvider = credentialProvider;
+    this.pvpConfiguration = pvpConfiguration;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
+   * getMetadataValidUntil()
+   */
+  @Override
+  public int getMetadataValidUntil() {
+    return IdAustriaClientAuthConstants.METADATA_VALIDUNTIL_IN_HOURS;
+
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
+   * buildEntitiesDescriptorAsRootElement()
+   */
+  @Override
+  public boolean buildEntitiesDescriptorAsRootElement() {
+    return false;
+
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
+   * buildIDPSSODescriptor()
+   */
+  @Override
+  public boolean buildIdpSsoDescriptor() {
+    return false;
+
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
+   * buildSPSSODescriptor()
+   */
+  @Override
+  public boolean buildSpSsoDescriptor() {
+    return true;
+
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
+   * getEntityIDPostfix()
+   */
+  @Override
+  public String getEntityID() {
+    return authUrl + IdAustriaClientAuthConstants.ENDPOINT_METADATA;
+
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
+   * getEntityFriendlyName()
+   */
+  @Override
+  public String getEntityFriendlyName() {
+    return null;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
+   * getContactPersonInformation()
+   */
+  @Override
+  public List<ContactPerson> getContactPersonInformation() {
+    try {
+      return pvpConfiguration.getIdpContacts();
+
+    } catch (final EaafException e) {
+      log.warn("Can not load Metadata entry: Contect Person", e);
+      return null;
+
+    }
+
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
+   * getOrgansiationInformation()
+   */
+  @Override
+  public Organization getOrgansiationInformation() {
+    try {
+      return pvpConfiguration.getIdpOrganisation();
+
+    } catch (final EaafException e) {
+      log.warn("Can not load Metadata entry: Organisation", e);
+      return null;
+
+    }
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
+   * getMetadataSigningCredentials()
+   */
+  @Override
+  public EaafX509Credential getMetadataSigningCredentials() throws CredentialsNotAvailableException {
+    return credentialProvider.getMetaDataSigningCredential();
+
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
+   * getRequestorResponseSigningCredentials()
+   */
+  @Override
+  public Credential getRequestorResponseSigningCredentials() throws CredentialsNotAvailableException {
+    return credentialProvider.getMessageSigningCredential();
+
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
+   * getEncryptionCredentials()
+   */
+  @Override
+  public Credential getEncryptionCredentials() throws CredentialsNotAvailableException {
+    return credentialProvider.getMessageEncryptionCredential();
+
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
+   * getIDPWebSSOPostBindingURL()
+   */
+  @Override
+  public String getIdpWebSsoPostBindingUrl() {
+    return null;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
+   * getIDPWebSSORedirectBindingURL()
+   */
+  @Override
+  public String getIdpWebSsoRedirectBindingUrl() {
+    return null;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
+   * getIDPSLOPostBindingURL()
+   */
+  @Override
+  public String getIdpSloPostBindingUrl() {
+    return null;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
+   * getIDPSLORedirectBindingURL()
+   */
+  @Override
+  public String getIdpSloRedirectBindingUrl() {
+    return null;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
+   * getSPAssertionConsumerServicePostBindingURL()
+   */
+  @Override
+  public String getSpAssertionConsumerServicePostBindingUrl() {
+    return authUrl + IdAustriaClientAuthConstants.ENDPOINT_POST;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
+   * getSPAssertionConsumerServiceRedirectBindingURL()
+   */
+  @Override
+  public String getSpAssertionConsumerServiceRedirectBindingUrl() {
+    return authUrl + IdAustriaClientAuthConstants.ENDPOINT_REDIRECT;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
+   * getSPSLOPostBindingURL()
+   */
+  @Override
+  public String getSpSloPostBindingUrl() {
+    return null;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
+   * getSPSLORedirectBindingURL()
+   */
+  @Override
+  public String getSpSloRedirectBindingUrl() {
+    return null;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
+   * getSPSLOSOAPBindingURL()
+   */
+  @Override
+  public String getSpSloSoapBindingUrl() {
+    return null;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
+   * getIDPPossibleAttributes()
+   */
+  @Override
+  public List<Attribute> getIdpPossibleAttributes() {
+    return null;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
+   * getIDPPossibleNameITTypes()
+   */
+  @Override
+  public List<String> getIdpPossibleNameIdTypes() {
+    return null;
+  }
+
+
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
+   * getSPRequiredAttributes()
+   */
+  @Override
+  public Collection<RequestedAttribute> getSpRequiredAttributes() {
+    final Map<String, RequestedAttribute> requestedAttributes = new HashMap<>();
+
+    if (pvpConfiguration.getBasicConfiguration().getBasicConfigurationBoolean(
+        AuthHandlerConstants.PROP_CONFIG_LEGACY_ALLOW, false)) {
+      log.trace("Build required attributes for legacy operaton ... ");
+      injectDefinedAttributes(requestedAttributes,
+          IdAustriaClientAuthConstants.DEFAULT_REQUIRED_PVP_ATTRIBUTES_WITHOUT_EID);
+
+    } else {
+      log.trace("Build required attributes for E-ID operaton ... ");
+      injectDefinedAttributes(requestedAttributes,
+          IdAustriaClientAuthConstants.DEFAULT_REQUIRED_PVP_ATTRIBUTES);
+
+    }
+
+    if (additionalAttributes != null) {
+      log.trace("Add additional PVP attributes into metadata ... ");
+      for (final RequestedAttribute el : additionalAttributes) {
+        if (requestedAttributes.containsKey(el.getName())) {
+          log.debug("Attribute " + el.getName()
+              + " is already added by default configuration. Overwrite it by user configuration");
+        }
+
+        requestedAttributes.put(el.getName(), el);
+
+      }
+    }
+
+    return requestedAttributes.values();
+
+  }
+
+
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.builder.AbstractPVPMetadataBuilder#
+   * getSPAllowedNameITTypes()
+   */
+  @Override
+  public List<String> getSpAllowedNameIdTypes() {
+    return Arrays.asList(NameIDType.PERSISTENT);
+
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
+   * IPVPMetadataBuilderConfiguration#getSPNameForLogging()
+   */
+  @Override
+  public String getSpNameForLogging() {
+    return IdAustriaClientAuthConstants.MODULE_NAME_FOR_LOGGING;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
+   * IPVPMetadataBuilderConfiguration#wantAssertionSigned()
+   */
+  @Override
+  public boolean wantAssertionSigned() {
+    return false;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
+   * IPVPMetadataBuilderConfiguration#wantAuthnRequestSigned()
+   */
+  @Override
+  public boolean wantAuthnRequestSigned() {
+    return true;
+  }
+
+  /**
+   * Add additonal PVP attributes that are required by this deployment.
+   *
+   * @param additionalAttr List of PVP attribute name and isRequired flag
+   */
+  public void setAdditionalRequiredAttributes(List<Pair<String, Boolean>> additionalAttr) {
+    if (additionalAttr != null && !additionalAttr.isEmpty()) {
+      additionalAttributes = new ArrayList<>();
+      for (final Pair<String, Boolean> el : additionalAttr) {
+        final Attribute attributBuilder = PvpAttributeBuilder.buildEmptyAttribute(el.getFirst());
+        if (attributBuilder != null) {
+          additionalAttributes.add(
+              PvpAttributeBuilder.buildReqAttribute(
+                  attributBuilder.getName(),
+                  attributBuilder.getFriendlyName(),
+                  el.getSecond()));
+
+        } else {
+          log.info("NO PVP attribute with name: " + el.getFirst());
+        }
+
+      }
+    }
+  }
+
+  private void injectDefinedAttributes(Map<String, RequestedAttribute> requestedAttributes,
+                                       List<Triple<String, String, Boolean>> attributes) {
+    for (final Triple<String, String, Boolean> el : attributes) {
+      requestedAttributes.put(el.getFirst(), PvpAttributeBuilder.buildReqAttribute(el.getFirst(), el
+          .getSecond(), el.getThird()));
+
+    }
+  }
+
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthMetadataController.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthMetadataController.java
new file mode 100644
index 00000000..a2966c7e
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthMetadataController.java
@@ -0,0 +1,149 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient;
+
+
+import java.io.IOException;
+import java.net.MalformedURLException;
+import java.net.URL;
+import java.util.ArrayList;
+import java.util.List;
+import java.util.Map;
+
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+
+import at.gv.egiz.eaaf.core.exceptions.EaafAuthenticationException;
+import at.gv.egiz.eaaf.core.exceptions.EaafException;
+import at.gv.egiz.eaaf.core.impl.data.Pair;
+import at.gv.egiz.eaaf.core.impl.http.HttpUtils;
+import at.gv.egiz.eaaf.core.impl.idp.controller.AbstractController;
+import at.gv.egiz.eaaf.core.impl.utils.KeyValueUtils;
+import at.gv.egiz.eaaf.modules.pvp2.api.IPvp2BasicConfiguration;
+import at.gv.egiz.eaaf.modules.pvp2.impl.builder.PvpMetadataBuilder;
+
+import org.apache.commons.lang3.StringUtils;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.stereotype.Controller;
+import org.springframework.web.bind.annotation.RequestMapping;
+import org.springframework.web.bind.annotation.RequestMethod;
+
+import com.google.common.net.MediaType;
+import lombok.extern.slf4j.Slf4j;
+
+/**
+ * Controller that generates SAML2 metadata for eIDAS authentication client.
+ *
+ * @author tlenz
+ *
+ */
+@Slf4j
+@Controller
+public class IdAustriaClientAuthMetadataController extends AbstractController {
+
+  private static final String ERROR_CODE_INTERNAL_00 = "eaaf.core.00";
+
+  @Autowired
+  PvpMetadataBuilder metadatabuilder;
+  @Autowired
+  IdAustriaClientAuthCredentialProvider credentialProvider;
+  @Autowired
+  IPvp2BasicConfiguration pvpConfiguration;
+
+  /**
+   * Default construction with logging.
+   *
+   */
+  public IdAustriaClientAuthMetadataController() {
+    super();
+    log.debug("Registering servlet " + getClass().getName()
+        + " with mappings '" + IdAustriaClientAuthConstants.ENDPOINT_METADATA
+        + "'.");
+
+  }
+
+  /**
+   * End-point that produce PVP2 metadata for eIDAS authentication client.
+   *
+   * @param req  http Request
+   * @param resp http Response
+   * @throws IOException   In case of an I/O error
+   * @throws EaafException In case of a metadata generation error
+   */
+  @RequestMapping(value = IdAustriaClientAuthConstants.ENDPOINT_METADATA,
+      method = { RequestMethod.GET })
+  public void getSpMetadata(HttpServletRequest req, HttpServletResponse resp) throws IOException,
+      EaafException {
+    // check PublicURL prefix
+    try {
+      final String authUrl = getAuthUrlFromHttpContext(req);
+
+      // initialize metadata builder configuration
+      final IdAustriaClientAuthMetadataConfiguration metadataConfig =
+          new IdAustriaClientAuthMetadataConfiguration(authUrl, credentialProvider, pvpConfiguration);
+      metadataConfig.setAdditionalRequiredAttributes(getAdditonalRequiredAttributes());
+
+      // build metadata
+      final String xmlMetadata = metadatabuilder.buildPvpMetadata(metadataConfig);
+
+      // write response
+      final byte[] content = xmlMetadata.getBytes("UTF-8");
+      resp.setStatus(HttpServletResponse.SC_OK);
+      resp.setContentLength(content.length);
+      resp.setContentType(MediaType.XML_UTF_8.toString());
+      resp.getOutputStream().write(content);
+
+    } catch (final Exception e) {
+      log.warn("Build federated-authentication PVP metadata FAILED.", e);
+      protAuthService.handleErrorNoRedirect(e, req, resp, false);
+
+    }
+
+  }
+
+  private String getAuthUrlFromHttpContext(HttpServletRequest req) throws EaafException {
+    // check if End-Point is valid
+    final String authUrlString = HttpUtils.extractAuthUrlFromRequest(req);
+    URL authReqUrl;
+    try {
+      authReqUrl = new URL(authUrlString);
+
+    } catch (final MalformedURLException e) {
+      log.warn("Requested URL: {} is not a valid URL.", authUrlString);
+      throw new EaafAuthenticationException(ERROR_CODE_INTERNAL_00, new Object[] { authUrlString }, e);
+
+    }
+
+    final String idpAuthUrl = authConfig.validateIdpUrl(authReqUrl);
+    if (idpAuthUrl == null) {
+      log.warn("Requested URL: {} is NOT found in configuration.", authReqUrl);
+      throw new EaafAuthenticationException(ERROR_CODE_INTERNAL_00, new Object[] { authUrlString });
+
+    }
+
+    return idpAuthUrl;
+  }
+
+  private List<Pair<String, Boolean>> getAdditonalRequiredAttributes() {
+    final List<Pair<String, Boolean>> result = new ArrayList<>();
+
+    // load attributes from configuration
+    final Map<String, String> addReqAttributes = authConfig.getBasicConfigurationWithPrefix(
+        IdAustriaClientAuthConstants.CONFIG_PROPS_REQUIRED_PVP_ATTRIBUTES_LIST);
+    for (final String el : addReqAttributes.values()) {
+      if (StringUtils.isNotEmpty(el)) {
+        log.trace("Parse additional attr. definition: " + el);
+        final List<String> attr = KeyValueUtils.getListOfCsvValues(el.trim());
+        if (attr.size() == 2) {
+          result.add(Pair.newInstance(attr.get(0), Boolean.parseBoolean(attr.get(1))));
+
+        } else {
+          log.info("IGNORE additional attr. definition: " + el
+              + " Reason: Format not valid");
+        }
+      }
+    }
+
+    return result;
+
+  }
+
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthMetadataProvider.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthMetadataProvider.java
new file mode 100644
index 00000000..46278ad8
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthMetadataProvider.java
@@ -0,0 +1,169 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient;
+
+import java.io.IOException;
+import java.security.KeyStore;
+import java.security.Provider;
+import java.security.cert.CertificateException;
+import java.text.MessageFormat;
+import java.util.ArrayList;
+import java.util.Collections;
+import java.util.List;
+
+import javax.annotation.PostConstruct;
+
+import at.gv.egiz.eaaf.core.api.idp.IConfiguration;
+import at.gv.egiz.eaaf.core.exceptions.EaafConfigurationException;
+import at.gv.egiz.eaaf.core.exceptions.EaafException;
+import at.gv.egiz.eaaf.core.impl.credential.EaafKeyStoreFactory;
+import at.gv.egiz.eaaf.core.impl.credential.KeyStoreConfiguration;
+import at.gv.egiz.eaaf.core.impl.credential.KeyStoreConfiguration.KeyStoreType;
+import at.gv.egiz.eaaf.core.impl.data.Pair;
+import at.gv.egiz.eaaf.core.impl.http.IHttpClientFactory;
+import at.gv.egiz.eaaf.modules.pvp2.exception.Pvp2MetadataException;
+import at.gv.egiz.eaaf.modules.pvp2.impl.metadata.AbstractChainingMetadataProvider;
+import at.gv.egiz.eaaf.modules.pvp2.impl.metadata.PvpMetadataResolverFactory;
+import at.gv.egiz.eaaf.modules.pvp2.impl.validation.metadata.SchemaValidationFilter;
+import at.gv.egiz.eaaf.modules.pvp2.impl.validation.metadata.SimpleMetadataSignatureVerificationFilter;
+
+import org.apache.commons.lang3.StringUtils;
+import org.opensaml.saml.metadata.resolver.MetadataResolver;
+import org.opensaml.saml.metadata.resolver.filter.MetadataFilter;
+import org.opensaml.saml.metadata.resolver.filter.MetadataFilterChain;
+import org.springframework.beans.factory.annotation.Autowired;
+
+import lombok.extern.slf4j.Slf4j;
+
+/**
+ * SAML2 metadata-provider implementation for eIDAS client.
+ *
+ * @author tlenz
+ *
+ */
+@Slf4j
+public class IdAustriaClientAuthMetadataProvider extends AbstractChainingMetadataProvider {
+
+  private static final String FRIENDLYNAME_METADATA_TRUSTSTORE = "'eIDAS_client metadata truststore'";
+  private static final String PROVIDER_ID_PATTERN = "eIDAS resolver: {0}";
+  public static final String PROVIDER_ID = "'eIDAS_client metadata provider'";
+
+  @Autowired
+  private IConfiguration basicConfig;
+
+  @Autowired
+  private PvpMetadataResolverFactory metadataProviderFactory;
+  @Autowired
+  private IHttpClientFactory httpClientFactory;
+
+  @Autowired
+  private EaafKeyStoreFactory keyStoreFactory;
+
+  private Pair<KeyStore, Provider> metadataSigningTrustStore;
+
+  @Override
+  protected String getMetadataUrl(String entityId) throws EaafConfigurationException {
+    log.trace("eIDAS Auth. uses SAML2 well-known location approach. EntityId is Metadata-URL");
+    return entityId;
+
+  }
+
+  @Override
+  protected MetadataResolver createNewMetadataProvider(String entityId) throws EaafConfigurationException,
+      IOException, CertificateException {
+    final List<MetadataFilter> filterList = new ArrayList<>();
+    filterList.add(new SchemaValidationFilter(true));
+    filterList.add(new SimpleMetadataSignatureVerificationFilter(
+        metadataSigningTrustStore.getFirst(), entityId));
+
+    final MetadataFilterChain filter = new MetadataFilterChain();
+    filter.setFilters(filterList);
+
+    try {
+      return metadataProviderFactory.createMetadataProvider(getMetadataUrl(entityId),
+          filter,
+          MessageFormat.format(PROVIDER_ID_PATTERN, entityId),
+          httpClientFactory.getHttpClient());
+
+    } catch (final Pvp2MetadataException e) {
+      log.info("Can NOT build metadata provider for entityId: {}", entityId);
+      throw new EaafConfigurationException("module.eidasauth.04",
+          new Object[] { entityId, e.getMessage() }, e);
+
+    }
+  }
+
+  @Override
+  protected List<String> getAllMetadataUrlsFromConfiguration() throws EaafConfigurationException {
+    return Collections.emptyList();
+
+  }
+
+  @Override
+  protected String getMetadataProviderId() {
+    return PROVIDER_ID;
+
+  }
+
+  @Override
+  public void runGarbageCollector() {
+    log.trace("Garbage collection is NOT supported by: {}", getId());
+  }
+
+  @Override
+  public void doDestroy() {
+    super.fullyDestroy();
+
+  }
+
+  @PostConstruct
+  private void initialize() throws EaafException {
+    // initialize truststore to validate metadata signing certificates
+    initializeTrustStore();
+
+    // load metadata with metadataURL, as backup
+    initializeFileSystemMetadata();
+
+  }
+
+  private void initializeFileSystemMetadata() {
+    try {
+      final String metadataUrl = basicConfig.getBasicConfiguration(
+          IdAustriaClientAuthConstants.CONFIG_PROPS_NODE_METADATAURL);
+      if (StringUtils.isNotEmpty(metadataUrl)) {
+        log.info("Use not recommended metadata-provider initialization!"
+            + " SAML2 'Well-Known-Location' is the preferred methode.");
+        log.info("Initialize 'ms-specific eIDAS node' metadata-provider with URL: {}", metadataUrl);
+
+        addMetadataResolverIntoChain(createNewMetadataProvider(metadataUrl));
+      }
+
+    } catch (final EaafConfigurationException | CertificateException | IOException e) {
+      log.warn("Can NOT inject static eIDAS Node metadata-soure.", e);
+      log.warn("eIDAS Node communication can be FAIL.");
+
+    }
+  }
+
+  private void initializeTrustStore() throws EaafException {
+    // set configuration
+    final KeyStoreConfiguration trustStoreConfig = new KeyStoreConfiguration();
+    trustStoreConfig.setFriendlyName(FRIENDLYNAME_METADATA_TRUSTSTORE);
+    trustStoreConfig.setKeyStoreType(basicConfig.getBasicConfiguration(
+        IdAustriaClientAuthConstants.CONFIG_PROPS_TRUSTSTORE_TYPE,
+        KeyStoreType.JKS.getKeyStoreType()));
+    trustStoreConfig.setKeyStoreName(basicConfig.getBasicConfiguration(
+        IdAustriaClientAuthConstants.CONFIG_PROPS_TRUSTSTORE_NAME));
+    trustStoreConfig.setSoftKeyStoreFilePath(basicConfig.getBasicConfiguration(
+        IdAustriaClientAuthConstants.CONFIG_PROPS_TRUSTSTORE_PATH));
+    trustStoreConfig.setSoftKeyStorePassword(basicConfig.getBasicConfiguration(
+        IdAustriaClientAuthConstants.CONFIG_PROPS_TRUSTSTORE_PASSWORD));
+
+    // validate configuration
+    trustStoreConfig.validate();
+
+    // open new TrustStore
+    metadataSigningTrustStore = keyStoreFactory.buildNewKeyStore(trustStoreConfig);
+
+  }
+
+}
+
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthRequestBuilderConfiguration.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthRequestBuilderConfiguration.java
new file mode 100644
index 00000000..65b6a198
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthRequestBuilderConfiguration.java
@@ -0,0 +1,300 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient;
+
+import java.util.List;
+
+import at.gv.egiz.eaaf.modules.pvp2.api.credential.EaafX509Credential;
+import at.gv.egiz.eaaf.modules.pvp2.api.reqattr.EaafRequestedAttribute;
+import at.gv.egiz.eaaf.modules.pvp2.sp.api.IPvpAuthnRequestBuilderConfiguruation;
+
+import org.opensaml.saml.saml2.core.AuthnContextComparisonTypeEnumeration;
+import org.opensaml.saml.saml2.core.NameIDType;
+import org.opensaml.saml.saml2.metadata.EntityDescriptor;
+import org.w3c.dom.Element;
+
+public class IdAustriaClientAuthRequestBuilderConfiguration implements IPvpAuthnRequestBuilderConfiguruation {
+
+  private boolean isPassive;
+  private String spEntityId;
+  private String qaaLevel;
+  private EntityDescriptor idpEntity;
+  private EaafX509Credential signCred;
+  private String scopeRequesterId;
+  private String providerName;
+  private List<EaafRequestedAttribute> requestedAttributes;
+  private String reqId;
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
+   * IPVPAuthnRequestBuilderConfiguruation#isPassivRequest()
+   */
+  @Override
+  public Boolean isPassivRequest() {
+    return this.isPassive;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
+   * IPVPAuthnRequestBuilderConfiguruation#getAssertionConsumerServiceId()
+   */
+  @Override
+  public Integer getAssertionConsumerServiceId() {
+    return 0;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
+   * IPVPAuthnRequestBuilderConfiguruation#getEntityID()
+   */
+  @Override
+  public String getSpEntityID() {
+    return this.spEntityId;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
+   * IPVPAuthnRequestBuilderConfiguruation#getNameIDPolicy()
+   */
+  @Override
+  public String getNameIdPolicyFormat() {
+    return NameIDType.PERSISTENT;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
+   * IPVPAuthnRequestBuilderConfiguruation#getNameIDPolicy()
+   */
+  @Override
+  public boolean getNameIdPolicyAllowCreation() {
+    return true;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
+   * IPVPAuthnRequestBuilderConfiguruation#getAuthnContextClassRef()
+   */
+  @Override
+  public String getAuthnContextClassRef() {
+    return this.qaaLevel;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
+   * IPVPAuthnRequestBuilderConfiguruation#getAuthnContextComparison()
+   */
+  @Override
+  public AuthnContextComparisonTypeEnumeration getAuthnContextComparison() {
+    return AuthnContextComparisonTypeEnumeration.MINIMUM;
+  }
+
+  /**
+   * Set isPassive flag in SAML2 request.
+   *
+   * @param isPassive the isPassive to set.
+   */
+  public void setPassive(boolean isPassive) {
+    this.isPassive = isPassive;
+  }
+
+  /**
+   * Set the requester EntityId.
+   *
+   * @param spEntityId EntityId of SP
+   */
+  public void setSpEntityID(String spEntityId) {
+    this.spEntityId = spEntityId;
+  }
+
+  /**
+   * Set required LoA.
+   *
+   * @param loa the LoA to set.
+   */
+  public void setRequestedLoA(String loa) {
+    qaaLevel = loa;
+  }
+
+  /**
+   * Set EntityId of IDP.
+   *
+   * @param idpEntity the idpEntity to set.
+   */
+  public void setIdpEntity(EntityDescriptor idpEntity) {
+    this.idpEntity = idpEntity;
+  }
+
+  /**
+   * Set message signing credentials.
+   *
+   * @param signCred the signCred to set.
+   */
+  public void setSignCred(EaafX509Credential signCred) {
+    this.signCred = signCred;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
+   * IPVPAuthnRequestBuilderConfiguruation#getAuthnRequestSigningCredential()
+   */
+  @Override
+  public EaafX509Credential getAuthnRequestSigningCredential() {
+    return this.signCred;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
+   * IPVPAuthnRequestBuilderConfiguruation#getIDPEntityDescriptor()
+   */
+  @Override
+  public EntityDescriptor getIdpEntityDescriptor() {
+    return this.idpEntity;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
+   * IPVPAuthnRequestBuilderConfiguruation#getSubjectNameID()
+   */
+  @Override
+  public String getSubjectNameID() {
+    return null;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
+   * IPVPAuthnRequestBuilderConfiguruation#getSPNameForLogging()
+   */
+  @Override
+  public String getSpNameForLogging() {
+    return IdAustriaClientAuthConstants.MODULE_NAME_FOR_LOGGING;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
+   * IPVPAuthnRequestBuilderConfiguruation#getSubjectNameIDFormat()
+   */
+  @Override
+  public String getSubjectNameIdFormat() {
+    return null;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
+   * IPVPAuthnRequestBuilderConfiguruation#getRequestID()
+   */
+  @Override
+  public String getRequestID() {
+    return this.reqId;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
+   * IPVPAuthnRequestBuilderConfiguruation#getSubjectNameIDQualifier()
+   */
+  @Override
+  public String getSubjectNameIdQualifier() {
+    return null;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
+   * IPVPAuthnRequestBuilderConfiguruation#getSubjectConformationMethode()
+   */
+  @Override
+  public String getSubjectConformationMethode() {
+    return null;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see at.gv.egovernment.moa.id.protocols.pvp2x.config.
+   * IPVPAuthnRequestBuilderConfiguruation#getSubjectConformationDate()
+   */
+  @Override
+  public Element getSubjectConformationDate() {
+    return null;
+  }
+
+  @Override
+  public List<EaafRequestedAttribute> getRequestedAttributes() {
+    return this.requestedAttributes;
+
+  }
+
+  @Override
+  public String getProviderName() {
+    return this.providerName;
+  }
+
+  @Override
+  public String getScopeRequesterId() {
+    return this.scopeRequesterId;
+  }
+
+  /**
+   * Set the entityId of the SP that requests the proxy for eIDAS authentication.
+   *
+   * @param scopeRequesterId RequestId in SAML2 Proxy extension
+   */
+  public void setScopeRequesterId(String scopeRequesterId) {
+    this.scopeRequesterId = scopeRequesterId;
+  }
+
+  /**
+   * Set a friendlyName for the SP that requests the proxy for eIDAS
+   * authentication.
+   *
+   * @param providerName SAML2 provider-name attribute-value
+   */
+  public void setProviderName(String providerName) {
+    this.providerName = providerName;
+  }
+
+  /**
+   * Set a Set of PVP attributes that a requested by using requested attributes.
+   *
+   * @param requestedAttributes Requested SAML2 attributes
+   */
+  public void setRequestedAttributes(List<EaafRequestedAttribute> requestedAttributes) {
+    this.requestedAttributes = requestedAttributes;
+  }
+
+  /**
+   * Set a RequestId for this Authn. Request.
+   *
+   * @param reqId SAML2 message requestId
+   */
+  public void setRequestId(String reqId) {
+    this.reqId = reqId;
+  }
+
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/MisException.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/MisException.java
new file mode 100644
index 00000000..71826d23
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/MisException.java
@@ -0,0 +1,17 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient;
+
+import at.gv.egiz.eaaf.core.exceptions.EaafException;
+
+public class MisException extends EaafException {
+
+  private static final long serialVersionUID = 1L;
+
+  public MisException(final String errorId, final Object[] params) {
+    super(errorId, params);
+  }
+
+  public MisException(final String errorId, final Object[] params, final Throwable e) {
+    super(errorId, params, e);
+  }
+
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateMobilePhoneSignatureRequestTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateMobilePhoneSignatureRequestTask.java
index 5f242c1b..aa8deb2b 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateMobilePhoneSignatureRequestTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateMobilePhoneSignatureRequestTask.java
@@ -23,11 +23,11 @@
 
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks;
 
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.idAustriaClient.IdAustriaClientAuthConstants;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.idAustriaClient.IdAustriaClientAuthCredentialProvider;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.idAustriaClient.IdAustriaClientAuthMetadataProvider;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.idAustriaClient.IdAustriaClientAuthRequestBuilderConfiguration;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.idAustriaClient.IAhSpConfiguration;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthConstants;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthCredentialProvider;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthMetadataProvider;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthRequestBuilderConfiguration;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IAhSpConfiguration;
 import at.gv.egiz.eaaf.core.api.IRequest;
 import at.gv.egiz.eaaf.core.api.data.ExtendedPvpAttributeDefinitions;
 import at.gv.egiz.eaaf.core.api.data.PvpAttributeDefinitions;
@@ -75,9 +75,6 @@ public class GenerateMobilePhoneSignatureRequestTask extends AbstractAuthServlet
   IdAustriaClientAuthCredentialProvider credential;
   @Autowired
   IdAustriaClientAuthMetadataProvider metadataService;
-  //  @Autowired
-  //  ITransactionStorage transactionStorage;
-
 
   @Override
   public void execute(ExecutionContext executionContext, HttpServletRequest request, HttpServletResponse response)
@@ -136,9 +133,6 @@ public class GenerateMobilePhoneSignatureRequestTask extends AbstractAuthServlet
       authnReqBuilder.buildAuthnRequest(pendingReq, authnReqConfig, relayState, response);
 
 
-      //MsEidasNodeConstants.ENDPOINT_PVP_POST
-      //MsEidasNodeConstants.ENDPOINT_PVP_METADATA
-
       //TODO
     } catch (final Exception e) {
       log.error("Initial search FAILED.", e);
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask.java
index b598cb92..9e6aa7cc 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask.java
@@ -29,18 +29,59 @@ import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernp.IErnpClient;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.ManualFixNecessaryException;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.AhAuthProcessDataWrapper;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.AuthHandlerConstants;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.EidasAuthEventConstants;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthConstants;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthCredentialProvider;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthMetadataProvider;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.MisException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.Utils;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.IZmrClient;
+import at.gv.egiz.eaaf.core.api.data.ExtendedPvpAttributeDefinitions;
+import at.gv.egiz.eaaf.core.api.data.PvpAttributeDefinitions;
 import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
+import at.gv.egiz.eaaf.core.exceptions.EaafBuilderException;
+import at.gv.egiz.eaaf.core.exceptions.EaafStorageException;
 import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
+import at.gv.egiz.eaaf.core.impl.data.Pair;
 import at.gv.egiz.eaaf.core.impl.idp.auth.data.AuthProcessDataWrapper;
 import at.gv.egiz.eaaf.core.impl.idp.auth.modules.AbstractAuthServletTask;
+import at.gv.egiz.eaaf.core.impl.idp.controller.protocols.RequestImpl;
+import at.gv.egiz.eaaf.modules.pvp2.api.binding.IDecoder;
+import at.gv.egiz.eaaf.modules.pvp2.exception.CredentialsNotAvailableException;
+import at.gv.egiz.eaaf.modules.pvp2.exception.SamlAssertionValidationExeption;
+import at.gv.egiz.eaaf.modules.pvp2.exception.SamlSigningException;
+import at.gv.egiz.eaaf.modules.pvp2.impl.binding.PostBinding;
+import at.gv.egiz.eaaf.modules.pvp2.impl.binding.RedirectBinding;
+import at.gv.egiz.eaaf.modules.pvp2.impl.message.InboundMessage;
+import at.gv.egiz.eaaf.modules.pvp2.impl.message.PvpSProfileResponse;
+import at.gv.egiz.eaaf.modules.pvp2.impl.utils.Saml2Utils;
+import at.gv.egiz.eaaf.modules.pvp2.impl.validation.EaafUriCompare;
+import at.gv.egiz.eaaf.modules.pvp2.impl.validation.TrustEngineFactory;
+import at.gv.egiz.eaaf.modules.pvp2.impl.verification.SamlVerificationEngine;
+import at.gv.egiz.eaaf.modules.pvp2.sp.exception.AssertionValidationExeption;
+import at.gv.egiz.eaaf.modules.pvp2.sp.exception.AuthnResponseValidationException;
+import at.gv.egiz.eaaf.modules.pvp2.sp.impl.utils.AssertionAttributeExtractor;
 import lombok.extern.slf4j.Slf4j;
+import org.apache.commons.lang3.StringUtils;
+import org.opensaml.core.xml.io.MarshallingException;
+import org.opensaml.messaging.decoder.MessageDecodingException;
+import org.opensaml.saml.saml2.core.Response;
+import org.opensaml.saml.saml2.core.StatusCode;
+import org.opensaml.saml.saml2.metadata.IDPSSODescriptor;
+import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.stereotype.Component;
 
+import javax.naming.ConfigurationException;
 import javax.servlet.http.HttpServletRequest;
 import javax.servlet.http.HttpServletResponse;
+import javax.xml.transform.TransformerException;
+import java.io.IOException;
+import java.util.Arrays;
+import java.util.Base64;
 import java.util.List;
+import java.util.Set;
 
 /**
  * Task that searches ErnB and ZMR before adding person to SZR.
@@ -51,6 +92,31 @@ import java.util.List;
 @Component("ReceiveMobilePhoneSignatureResponseTask")
 public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask extends AbstractAuthServletTask {
 
+  @Autowired
+  private SamlVerificationEngine samlVerificationEngine;
+  @Autowired
+  private IdAustriaClientAuthCredentialProvider credentialProvider;
+  @Autowired(required = true)
+  IdAustriaClientAuthMetadataProvider metadataProvider;
+
+  private static final String ERROR_PVP_03 = "sp.pvp2.03";
+  private static final String ERROR_PVP_05 = "sp.pvp2.05";
+  private static final String ERROR_PVP_06 = "sp.pvp2.06";
+  private static final String ERROR_PVP_08 = "sp.pvp2.08";
+  private static final String ERROR_PVP_10 = "sp.pvp2.10";
+  private static final String ERROR_PVP_11 = "sp.pvp2.11";
+  private static final String ERROR_PVP_12 = "sp.pvp2.12";
+
+  private static final String ERROR_MSG_00 =
+      "Receive INVALID PVP Response from federated IDP";
+  private static final String ERROR_MSG_01 =
+      "Processing PVP response from 'ms-specific eIDAS node' FAILED.";
+  private static final String ERROR_MSG_02 =
+      "PVP response decrytion FAILED. No credential found.";
+  private static final String ERROR_MSG_03 =
+      "PVP response validation FAILED.";
+
+
   private final IErnpClient ernpClient;
   private final IZmrClient zmrClient;
 
@@ -71,6 +137,123 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask extends
       SimpleEidasData eidData = authProcessData.getGenericDataFromSession(Constants.DATA_SIMPLE_EIDAS,
           SimpleEidasData.class);
 
+
+      InboundMessage msg = null;
+
+      try {
+
+        IDecoder decoder = null;
+        EaafUriCompare comperator = null;
+        // select Response Binding
+        if (request.getMethod().equalsIgnoreCase("POST")) {
+          decoder = new PostBinding();
+          comperator = new EaafUriCompare(pendingReq.getAuthUrl() + IdAustriaClientAuthConstants.ENDPOINT_POST);
+          log.trace("Receive PVP Response from 'ID Austria node', by using POST-Binding.");
+
+        } else if (request.getMethod().equalsIgnoreCase("GET")) {
+          decoder = new RedirectBinding();
+          comperator = new EaafUriCompare(pendingReq.getAuthUrl()
+              + IdAustriaClientAuthConstants.ENDPOINT_REDIRECT);
+          log.trace("Receive PVP Response from 'ID Austria node', by using Redirect-Binding.");
+
+        } else {
+          log.warn("Receive PVP Response, but Binding ("
+              + request.getMethod() + ") is not supported.");
+          throw new AuthnResponseValidationException(ERROR_PVP_03, new Object[]{
+              IdAustriaClientAuthConstants.MODULE_NAME_FOR_LOGGING});
+
+        }
+
+        // decode PVP response object
+        msg = (InboundMessage) decoder.decode(
+            request, response, metadataProvider, IDPSSODescriptor.DEFAULT_ELEMENT_NAME,
+            comperator);
+
+        // validate response signature
+        if (!msg.isVerified()) {
+          samlVerificationEngine.verify(msg, TrustEngineFactory.getSignatureKnownKeysTrustEngine(
+              metadataProvider));
+          msg.setVerified(true);
+
+        }
+
+        // validate assertion
+        final Pair<PvpSProfileResponse, Boolean> processedMsg =
+            preProcessAuthResponse((PvpSProfileResponse) msg);
+
+        //check if SAML2 response contains user-stop decision
+        if (processedMsg.getSecond()) {
+          stopProcessFromUserDecision(executionContext, request, response);
+
+        } else {
+          // validate entityId of response
+          final String msNodeEntityID = authConfig.getBasicConfiguration(
+              IdAustriaClientAuthConstants.CONFIG_PROPS_NODE_ENTITYID);
+          final String respEntityId = msg.getEntityID();
+          if (!msNodeEntityID.equals(respEntityId)) {
+            log.warn("Response Issuer is not a 'ms-specific eIDAS node'. Stopping eIDAS authentication ...");
+            throw new AuthnResponseValidationException(ERROR_PVP_08,
+                new Object[]{IdAustriaClientAuthConstants.MODULE_NAME_FOR_LOGGING,
+                    msg.getEntityID()});
+
+          }
+
+          // initialize Attribute extractor
+          final AssertionAttributeExtractor extractor =
+              new AssertionAttributeExtractor(processedMsg.getFirst().getResponse());
+
+          getAuthDataFromInterfederation(extractor);
+
+          // set NeedConsent to false, because user gives consont during authentication
+          pendingReq.setNeedUserConsent(false);
+
+          // store pending-request
+          requestStoreage.storePendingRequest(pendingReq);
+
+          //set E-ID process flag to execution context
+          final AhAuthProcessDataWrapper session = pendingReq.getSessionData(
+              AhAuthProcessDataWrapper.class);
+          executionContext.put(AuthHandlerConstants.PROCESSCONTEXT_WAS_EID_PROCESS, session.isEidProcess());
+          executionContext.put(AuthHandlerConstants.HTTP_PARAM_USE_MANDATES, session.isMandateUsed());
+
+
+          log.info("Receive a valid assertion from IDP " + msg.getEntityID());
+
+        }
+
+      } catch (final AuthnResponseValidationException e) {
+        throw new TaskExecutionException(pendingReq, ERROR_MSG_03, e);
+
+      } catch (MessageDecodingException | SecurityException | SamlSigningException e) {
+        //final String samlRequest = request.getParameter("SAMLRequest");
+        //log.debug("Receive INVALID PVP Response from 'ms-specific eIDAS node': {}",
+        //    samlRequest, null, e);
+        throw new TaskExecutionException(pendingReq, ERROR_MSG_00,
+            new AuthnResponseValidationException(ERROR_PVP_11,
+                new Object[]{IdAustriaClientAuthConstants.MODULE_NAME_FOR_LOGGING}, e));
+
+      } catch (IOException | MarshallingException | TransformerException e) {
+        log.debug("Processing PVP response from 'ms-specific eIDAS node' FAILED.", e);
+        throw new TaskExecutionException(pendingReq, ERROR_MSG_01,
+            new AuthnResponseValidationException(ERROR_PVP_12,
+                new Object[]{IdAustriaClientAuthConstants.MODULE_NAME_FOR_LOGGING, e.getMessage()},
+                e));
+
+      } catch (final CredentialsNotAvailableException e) {
+        log.debug("PVP response decrytion FAILED. No credential found.", e);
+        throw new TaskExecutionException(pendingReq, ERROR_MSG_02,
+            new AuthnResponseValidationException(ERROR_PVP_10,
+                new Object[]{IdAustriaClientAuthConstants.MODULE_NAME_FOR_LOGGING}, e));
+
+      } catch (final Exception e) {
+        log.debug("PVP response validation FAILED. Msg:" + e.getMessage(), e);
+        throw new TaskExecutionException(pendingReq, ERROR_MSG_03,
+            new AuthnResponseValidationException(ERROR_PVP_12,
+                new Object[]{IdAustriaClientAuthConstants.MODULE_NAME_FOR_LOGGING, e.getMessage()}, e));
+
+      }
+
+
       //TODO extract bPK-ZP from response
       String bpkzp = "TODO";
       MergedRegisterSearchResult result = searchInZmrAndErnp(bpkzp);
@@ -93,6 +276,165 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask extends
     }
   }
 
+  private Pair<PvpSProfileResponse, Boolean> preProcessAuthResponse(PvpSProfileResponse msg)
+      throws IOException, MarshallingException, TransformerException,
+      CredentialsNotAvailableException, AuthnResponseValidationException, SamlAssertionValidationExeption {
+    log.debug("Start PVP21 assertion processing... ");
+    final Response samlResp = (Response) msg.getResponse();
+
+    // check SAML2 response status-code
+    if (samlResp.getStatus().getStatusCode().getValue().equals(StatusCode.SUCCESS)) {
+      // validate PVP 2.1 assertion
+      samlVerificationEngine.validateAssertion(samlResp,
+          credentialProvider.getMessageEncryptionCredential(),
+          pendingReq.getAuthUrl() + IdAustriaClientAuthConstants.ENDPOINT_METADATA,
+          IdAustriaClientAuthConstants.MODULE_NAME_FOR_LOGGING);
+
+      msg.setSamlMessage(Saml2Utils.asDomDocument(samlResp).getDocumentElement());
+      revisionsLogger.logEvent(pendingReq,
+          EidasAuthEventConstants.AUTHPROCESS_EIDAS_AT_CONNECTOR_RECEIVED,
+          samlResp.getID());
+      return Pair.newInstance(msg, false);
+
+    } else {
+      log.info("Receive StatusCode " + samlResp.getStatus().getStatusCode().getValue()
+          + " from 'ms-specific eIDAS node'.");
+      StatusCode subStatusCode = getSubStatusCode(samlResp);
+      if (subStatusCode != null
+          && IdAustriaClientAuthConstants.SAML2_STATUSCODE_USERSTOP.equals(subStatusCode.getValue())) {
+        log.info("Find 'User-Stop operation' in SAML2 response. Stopping authentication process ... ");
+        return Pair.newInstance(msg, true);
+
+      }
+
+      revisionsLogger.logEvent(pendingReq,
+          EidasAuthEventConstants.AUTHPROCESS_EIDAS_AT_CONNECTOR_RECEIVED_ERROR);
+      throw new AuthnResponseValidationException(ERROR_PVP_05,
+          new Object[]{IdAustriaClientAuthConstants.MODULE_NAME_FOR_LOGGING,
+              samlResp.getIssuer().getValue(),
+              samlResp.getStatus().getStatusCode().getValue(),
+              samlResp.getStatus().getStatusMessage().getMessage()});
+
+    }
+
+  }
+
+  /**
+   * Get SAML2 Sub-StatusCode if not <code>null</code>.
+   *
+   * @param samlResp SAML2 response
+   * @return Sub-StatusCode or <code>null</code> if it's not set
+   */
+  private StatusCode getSubStatusCode(Response samlResp) {
+    if (samlResp.getStatus().getStatusCode().getStatusCode() != null
+        && StringUtils.isNotEmpty(samlResp.getStatus().getStatusCode().getStatusCode().getValue())) {
+      return samlResp.getStatus().getStatusCode().getStatusCode();
+    }
+    return null;
+  }
+
+  private void getAuthDataFromInterfederation(AssertionAttributeExtractor extractor)
+      throws EaafBuilderException, ConfigurationException {
+
+    List<String> requiredEidasNodeAttributes = IdAustriaClientAuthConstants.DEFAULT_REQUIRED_PVP_ATTRIBUTE_NAMES;
+    if (authConfig.getBasicConfigurationBoolean(
+        AuthHandlerConstants.PROP_CONFIG_LEGACY_ALLOW, false)) {
+      log.trace("Build required attributes for legacy operaton ... ");
+      requiredEidasNodeAttributes = Arrays.asList(
+          PvpAttributeDefinitions.PVP_VERSION_NAME,
+          PvpAttributeDefinitions.EID_CITIZEN_EIDAS_QAA_LEVEL_NAME,
+          PvpAttributeDefinitions.EID_ISSUING_NATION_NAME);
+
+    }
+
+    try {
+      // check if all attributes are include
+      if (!extractor.containsAllRequiredAttributes()
+          || !extractor.containsAllRequiredAttributes(
+          requiredEidasNodeAttributes)) {
+        log.warn("PVP Response from 'ms-specific eIDAS node' contains not all requested attributes.");
+        throw new AssertionValidationExeption(ERROR_PVP_06, new Object[]{
+            IdAustriaClientAuthConstants.MODULE_NAME_FOR_LOGGING});
+
+      }
+
+      // copy attributes into MOASession
+      final AhAuthProcessDataWrapper session = pendingReq.getSessionData(
+          AhAuthProcessDataWrapper.class);
+      final Set<String> includedAttrNames = extractor.getAllIncludeAttributeNames();
+      for (final String attrName : includedAttrNames) {
+        injectAuthInfosIntoSession(session, attrName,
+            extractor.getSingleAttributeValue(attrName));
+
+      }
+
+      //set piiTransactionId from eIDAS Connector
+      String piiTransactionId = extractor.getSingleAttributeValue(
+          ExtendedPvpAttributeDefinitions.EID_PII_TRANSACTION_ID_NAME);
+      if (StringUtils.isNotEmpty(piiTransactionId) && pendingReq instanceof RequestImpl) {
+        log.info("Receive piiTransactionId from Austrian eIDAS Connector. Use this for further processing");
+        ((RequestImpl) pendingReq).setUniquePiiTransactionIdentifier(piiTransactionId);
+
+      } else {
+        log.debug("Receive no piiTransactionId from Austrian eIDAS Connector.");
+
+      }
+
+      // set foreigner flag
+      session.setForeigner(true);
+
+      // set IssuerInstant from Assertion
+      session.setIssueInstant(extractor.getAssertionIssuingDate());
+
+      // set CCE URL
+      if (extractor.getFullAssertion().getIssuer() != null
+          && StringUtils.isNotEmpty(extractor.getFullAssertion().getIssuer().getValue())) {
+        session.setVdaUrl(extractor.getFullAssertion().getIssuer().getValue());
+
+      } else {
+        session.setVdaUrl("eIDAS_Authentication");
+
+      }
+
+    } catch (final EaafStorageException | MisException | AssertionValidationExeption | IOException e) {
+      throw new EaafBuilderException(ERROR_PVP_06, null, e.getMessage(), e);
+
+    }
+  }
+
+  private void injectAuthInfosIntoSession(AhAuthProcessDataWrapper session, String attrName, String attrValue)
+      throws EaafStorageException, MisException, IOException {
+    log.trace("Inject attribute: {} with value: {} into  AuthSession", attrName, attrValue);
+    log.debug("Inject attribute: {} into  AuthSession", attrName);
+
+    if (ExtendedPvpAttributeDefinitions.EID_EIDBIND_NAME.equals(attrName)) {
+      log.debug("Find eidasBind attribute. Switching to E-ID mode ... ");
+      session.setEidProcess(true);
+      session.setQcBind(attrValue);
+      //      session.setVsz(extractVszFromEidasBind(attrValue));
+      //T
+
+    } else if (ExtendedPvpAttributeDefinitions.EID_AUTHBLOCK_SIGNED_NAME.equals(attrName)) {
+      session.setSignedAuthBlock(Base64.getDecoder().decode(attrValue));
+      session.setSignedAuthBlockType(AuthHandlerConstants.AuthBlockType.JWS);
+
+    } else if (PvpAttributeDefinitions.EID_CITIZEN_EIDAS_QAA_LEVEL_NAME.equals(attrName)) {
+      session.setQaaLevel(attrValue);
+
+    //    } else if (ExtendedPvpAttributeDefinitions.EID_MIS_MANDATE_NAME.equals(attrName)
+    //        && authConfig.getBasicConfigurationBoolean(
+    //        IdAustriaClientAuthConstants.CONFIG_PROPS_SEMPER_MANDATES_ACTIVE, false)) {
+    //      session.setMandateDate(new SignedMandateDao(attrValue));
+    //      session.setUseMandates(true);
+    //
+    } else {
+      session.setGenericDataToSession(attrName, attrValue);
+
+    }
+
+  }
+
+
   private MergedRegisterSearchResult searchInZmrAndErnp(String bpkzp) {
     List<RegisterResult> resultsZmr = zmrClient.searchWithBpkZp(bpkzp);
     List<RegisterResult> resultsErnp = ernpClient.searchWithBpkZp(bpkzp);
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml
index c6d69c5d..680ec19c 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml
@@ -135,13 +135,13 @@
         scope="prototype" />
 
   <bean id="eidasCentralAuthCredentialProvider"
-        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.idAustriaClient.IdAustriaClientAuthCredentialProvider" />
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthCredentialProvider" />
 
   <bean id="eidasCentralAuthMetadataProvider"
-        class=" at.asitplus.eidas.specific.modules.auth.eidas.v2.idAustriaClient.IdAustriaClientAuthMetadataProvider" />
+        class=" at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthMetadataProvider" />
 
   <bean id="eidasCentralAuthMetadataController"
-        class=" at.asitplus.eidas.specific.modules.auth.eidas.v2.idAustriaClient.IdAustriaClientAuthMetadataController" />
+        class=" at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthMetadataController" />
 
 
 </beans>
\ No newline at end of file
-- 
cgit v1.2.3


From 4c621edbacbaed95edf4cac3a44a84e9e5c55819 Mon Sep 17 00:00:00 2001
From: Alexander Marsalek <amarsalek@iaik.tugraz.at>
Date: Fri, 29 Jan 2021 17:11:32 +0100
Subject: remove unnecessary classes

---
 .../AhAuthProcessDataConstants.java                |   9 -
 .../idaustriaclient/AhAuthProcessDataWrapper.java  | 224 ----------
 .../AhExtendedPvpAttributeDefinitions.java         |  24 --
 .../v2/idaustriaclient/AuthHandlerConstants.java   | 141 -------
 .../v2/idaustriaclient/IAhAuthProcessData.java     | 190 ---------
 .../v2/idaustriaclient/IAhSpConfiguration.java     | 151 -------
 .../eidas/v2/idaustriaclient/IRawMandateDao.java   |  32 --
 .../eidas/v2/idaustriaclient/ISignedMandate.java   |  19 -
 .../IdAustriaClientAuthConstants.java              |  55 +--
 .../IdAustriaClientAuthMetadataConfiguration.java  |  16 +-
 .../eidas/v2/idaustriaclient/MisException.java     |  17 -
 .../GenerateMobilePhoneSignatureRequestTask.java   |   6 +-
 ...eSignatureResponseAndSearchInRegistersTask.java | 121 +++---
 .../v2/test/tasks/InitialSearchTaskFirstTest.java  | 463 ---------------------
 .../eidas/v2/test/tasks/InitialSearchTaskTest.java | 463 +++++++++++++++++++++
 15 files changed, 526 insertions(+), 1405 deletions(-)
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/AhAuthProcessDataConstants.java
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/AhAuthProcessDataWrapper.java
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/AhExtendedPvpAttributeDefinitions.java
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/AuthHandlerConstants.java
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IAhAuthProcessData.java
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IAhSpConfiguration.java
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IRawMandateDao.java
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/ISignedMandate.java
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/MisException.java
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskTest.java

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/AhAuthProcessDataConstants.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/AhAuthProcessDataConstants.java
deleted file mode 100644
index 36ea2440..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/AhAuthProcessDataConstants.java
+++ /dev/null
@@ -1,9 +0,0 @@
-package at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient;
-
-import at.gv.egiz.eaaf.core.api.idp.EaafAuthProcessDataConstants;
-
-public interface AhAuthProcessDataConstants extends EaafAuthProcessDataConstants {
-
-
-
-}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/AhAuthProcessDataWrapper.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/AhAuthProcessDataWrapper.java
deleted file mode 100644
index 1b20960b..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/AhAuthProcessDataWrapper.java
+++ /dev/null
@@ -1,224 +0,0 @@
-package at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient;
-
-
-import java.security.cert.CertificateEncodingException;
-import java.security.cert.CertificateException;
-import java.util.Map;
-
-import org.slf4j.Logger;
-import org.slf4j.LoggerFactory;
-
-import at.gv.egiz.eaaf.core.impl.idp.auth.data.AuthProcessDataWrapper;
-import iaik.x509.X509Certificate;
-
-public class AhAuthProcessDataWrapper extends AuthProcessDataWrapper
-    implements IAhAuthProcessData, AhAuthProcessDataConstants {
-  private static final Logger log = LoggerFactory.getLogger(AhAuthProcessDataWrapper.class);
-
-  public static final String VALUE_SIGNER_CERT = "direct_signerCert";
-  public static final String VALUE_VDAURL = "direct_bkuUrl";
-
-  public static final String VALUE_MANDATES_REFVALUE = "direct_mis_refvalue";
-
-  public static final String VALUE_EID_QCBIND = "direct_eid_qcBind";
-  public static final String VALUE_EID_VSZ = "direct_eid_vsz";
-  public static final String VALUE_EID_SIGNEDAUTHBLOCK = "direct_eid_authblock";
-  public static final String VALUE_EID_SIGNEDAUTHBLOCK_TYPE = "direct_eid_authblock_type";
-  public static final String VALUE_EID_MIS_MANDATE = "direct_eid_mis_mandate";
-
-  public static final String VALUE_INTERNAL_BPK = "direct_internal_bpk";
-  public static final String VALUE_INTERNAL_BPKYPE = "direct_internal_bpktype";
-
-  public static final String VALUE_INTERNAL_MANDATE_ELGA_PROCESS = "direct_is_elga_mandate_process";
-  public static final String VALUE_INTERNAL_VDA_AUTHENTICATION_PROCESS = "direct_is_vda_auth_process";
-
-  public AhAuthProcessDataWrapper(final Map<String, Object> authProcessData) {
-    super(authProcessData);
-
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see at.gv.egovernment.moa.id.auth.data.IAuthenticationSession#getSignerCertificate()
-   */
-  @Override
-  public X509Certificate getSignerCertificate() {
-    final byte[] encCert = getEncodedSignerCertificate();
-
-    if (encCert != null) {
-      try {
-        return new X509Certificate(encCert);
-      } catch (final CertificateException e) {
-        log.warn("Signer certificate can not be loaded from session database!", e);
-
-      }
-    }
-    return null;
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see at.gv.egovernment.moa.id.auth.data.IAuthenticationSession#getEncodedSignerCertificate()
-   */
-  @Override
-  public byte[] getEncodedSignerCertificate() {
-    return wrapStoredObject(VALUE_SIGNER_CERT, null, byte[].class);
-
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see at.gv.egovernment.moa.id.auth.data.IAuthenticationSession#setSignerCertificate(iaik.x509.
-   * X509Certificate)
-   */
-  @Override
-  public void setSignerCertificate(final java.security.cert.X509Certificate signerCertificate) {
-    try {
-      authProcessData.put(VALUE_SIGNER_CERT, signerCertificate.getEncoded());
-
-    } catch (final CertificateEncodingException e) {
-      log.warn("Signer certificate can not be stored to session database!", e);
-    }
-
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see at.gv.egovernment.moa.id.auth.data.IAuthenticationSession#getBkuURL()
-   */
-  @Override
-  public String getVdaUrl() {
-    return wrapStoredObject(VALUE_VDAURL, null, String.class);
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see at.gv.egovernment.moa.id.auth.data.IAuthenticationSession#setBkuURL(java.lang.String)
-   */
-  @Override
-  public void setVdaUrl(final String vdaUrl) {
-    authProcessData.put(VALUE_VDAURL, vdaUrl);
-
-  }
-
-  @Override
-  public String getMandateReferenceValue() {
-    return wrapStoredObject(VALUE_MANDATES_REFVALUE, null, String.class);
-  }
-
-  @Override
-  public void setMandateReferenceValue(final String refValue) {
-    authProcessData.put(VALUE_MANDATES_REFVALUE, refValue);
-
-  }
-
-  @Override
-  public String getQcBind() {
-    return wrapStoredObject(VALUE_EID_QCBIND, null, String.class);
-  }
-
-  @Override
-  public void setQcBind(final String qcBind) {
-    authProcessData.put(VALUE_EID_QCBIND, qcBind);
-
-  }
-
-  @Override
-  public String getVsz() {
-    return wrapStoredObject(VALUE_EID_VSZ, null, String.class);
-  }
-
-  @Override
-  public void setVsz(final String vsz) {
-    authProcessData.put(VALUE_EID_VSZ, vsz);
-
-  }
-
-  @Override
-  public byte[] getSignedAuthBlock() {
-    return wrapStoredObject(VALUE_EID_SIGNEDAUTHBLOCK, null, byte[].class);
-  }
-
-  @Override
-  public void setSignedAuthBlock(final byte[] signedConsent) {
-    authProcessData.put(VALUE_EID_SIGNEDAUTHBLOCK, signedConsent);
-
-  }
-
-  @Override
-  public AuthHandlerConstants.AuthBlockType getSignedAuthBlockType() {
-    return wrapStoredObject(VALUE_EID_SIGNEDAUTHBLOCK_TYPE, AuthHandlerConstants.AuthBlockType.NONE,
-        AuthHandlerConstants.AuthBlockType.class);
-  }
-
-  @Override
-  public void setSignedAuthBlockType(final AuthHandlerConstants.AuthBlockType authBlockType) {
-    authProcessData.put(VALUE_EID_SIGNEDAUTHBLOCK_TYPE, authBlockType);
-
-  }
-
-  @Override
-  public ISignedMandate getMandateDate() {
-    return wrapStoredObject(VALUE_EID_MIS_MANDATE, null, ISignedMandate.class);
-
-  }
-
-  @Override
-  public void setMandateDate(final ISignedMandate mandateDate) {
-    authProcessData.put(VALUE_EID_MIS_MANDATE, mandateDate);
-
-  }
-
-  @Override
-  public String getInternalBpk() {
-    return wrapStoredObject(VALUE_INTERNAL_BPK, null, String.class);
-  }
-
-  @Override
-  public void setInternalBpk(final String bpk) {
-    authProcessData.put(VALUE_INTERNAL_BPK, bpk);
-
-  }
-
-  @Override
-  public String getInternalBpkType() {
-    return wrapStoredObject(VALUE_INTERNAL_BPKYPE, null, String.class);
-
-  }
-
-  @Override
-  public void setInternalBpkType(final String bpkType) {
-    authProcessData.put(VALUE_INTERNAL_BPKYPE, bpkType);
-
-  }
-
-  @Override
-  public boolean isElgaMandateProcess() {
-    return wrapStoredObject(VALUE_INTERNAL_MANDATE_ELGA_PROCESS, false, Boolean.class);
-
-  }
-
-  @Override
-  public void setElgaMandateProcess(boolean flag) {
-    authProcessData.put(VALUE_INTERNAL_MANDATE_ELGA_PROCESS, flag);
-
-  }
-
-  @Override
-  public boolean isVdaAuthentication() {
-    return wrapStoredObject(VALUE_INTERNAL_VDA_AUTHENTICATION_PROCESS, false, Boolean.class);
-
-  }
-
-  @Override
-  public void setVdaAuthentication(boolean flag) {
-    authProcessData.put(VALUE_INTERNAL_VDA_AUTHENTICATION_PROCESS, flag);
-
-  }
-
-}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/AhExtendedPvpAttributeDefinitions.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/AhExtendedPvpAttributeDefinitions.java
deleted file mode 100644
index b74767de..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/AhExtendedPvpAttributeDefinitions.java
+++ /dev/null
@@ -1,24 +0,0 @@
-package at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient;
-
-import at.gv.egiz.eaaf.core.api.data.ExtendedPvpAttributeDefinitions;
-
-import org.slf4j.Logger;
-import org.slf4j.LoggerFactory;
-
-public class AhExtendedPvpAttributeDefinitions implements ExtendedPvpAttributeDefinitions {
-  private static final Logger log =
-      LoggerFactory.getLogger(AhExtendedPvpAttributeDefinitions.class);
-
-  private AhExtendedPvpAttributeDefinitions() {
-    log.trace("Instance class: {} for SonarQube",
-        AhExtendedPvpAttributeDefinitions.class.getName());
-
-  }
-
-  public static final String EID_BCBIND_NAME = "urn:eidgvat:attributes.bcbind";
-  public static final String EID_BCBIND_FRIENDLY_NAME = "bcBind";
-
-  public static final String EID_BINDING_PUBKEY_NAME = "urn:eidgvat:attributes.binding.pubkey";
-  public static final String EID_BINDING_PUBKEY_FRIENDLY_NAME = "BindingPubKey";
-
-}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/AuthHandlerConstants.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/AuthHandlerConstants.java
deleted file mode 100644
index 1bbc31e0..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/AuthHandlerConstants.java
+++ /dev/null
@@ -1,141 +0,0 @@
-package at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient;
-
-
-public class AuthHandlerConstants {
-
-  private AuthHandlerConstants() {
-
-  }
-
-  // TODO: maybe update to another target
-  public static final String DEFAULT_INTERNAL_BPK_TARGET = "urn:publicid:gv.at:cdid+ZP-MH";
-
-  // configuration parameters
-  public static final String PROP_CONFIG_APPLICATION_PREFIX = "authhandler.";
-  public static final String PROP_CONFIG_APPLICATION_PUBLIC_URL_PREFIX = "core.context.url.prefix";
-  public static final String PROP_CONFIG_APPLICATION_PUBLIC_URL_REQUEST_VALIDATION =
-      "core.context.url.request.validation";
-  public static final String PROP_CONFIG_LEGACY_ALLOW = "core.legacy.allowLegacyMode";
-
-  public static final String PROP_CONFIG_WEBCONTENT_STATIC_PATH =
-      "core.webcontent.static.directory";
-  public static final String PROP_CONFIG_WEBCONTENT_TEMPLATES_PATH = "core.webcontent.templates";
-  public static final String PROP_CONFIG_WEBCONTENT_PROPERTIES_PATH = "core.webcontent.properties";
-
-  public static final String PROP_CONFIG_CACHE_TRANSACTIONS_NAME = "core.cache.transaction.name";
-  public static final String PROP_CONFIG_CACHE_TRANSACTIONS_ENC_ENABLED =
-      "core.cache.transaction.encryption.enabled";
-  public static final String PROP_CONFIG_CACHE_TRANSACTIONS_ENC_KEY_TYPE =
-      "core.cache.transaction.encryption.type";
-  public static final String PROP_CONFIG_CACHE_TRANSACTIONS_ENC_PASSPHRASE =
-      "core.cache.transaction.encryption.passphrase";
-  public static final String PROP_CONFIG_CACHE_TRANSACTIONS_ENC_SALT =
-      "core.cache.transaction.encryption.salt";
-  public static final String PROP_CONFIG_CACHE_TRANSACTIONS_ENC_KEYSTORE_NAME =
-      "core.cache.transaction.encryption.keystore.name";
-  public static final String PROP_CONFIG_CACHE_TRANSACTIONS_ENC_KEY_ALIAS =
-      "core.cache.transaction.encryption.key.alias";
-
-  public static final String PROP_CONFIG_CACHE_ATTRIBUTEPROXY_NAME =
-      "core.cache.attributeproxy.name";
-
-  public static final String PROP_CONFIG_BACKEND_ENDPOINT_GETALLSUPPORTEDATTRIBUTES =
-      "backend.endpoints.getallsupportedattributes";
-  public static final String PROP_CONFIG_BACKEND_ENDPOINT_GETAPPLICATIONCONFIGURATION =
-      "backend.endpoints.getapplicationconfiguration";
-
-  public static final String PROP_CONFIG_INTERNAL_BPK_TARGET = "core.internal.bpk.target";
-
-  public static final String PROP_CONFIG_INTERNAL_FRONTEND_ONLY_MODE = "core.internal.frontend.only.mode";
-  public static final boolean PROP_DEFAULT_CONFIG_INTERNAL_FRONTEND_ONLY_MODE = false;
-
-  // Servlet End-Points
-  public static final String ENDPOINT_PROCESSENGINE_CONTROLLER = "/api/process";
-  public static final String ENDPOINT_ERROR_IFRAME_HOPPING = "/error/parenthop";
-
-
-  // GUI template directories
-  public static final String CLASSPATH_TEMPLATE_DIR = "/templates/";
-  public static final String FILESYSTEM_TEMPLATE_DIR = "./templates/";
-  public static final String TEMPLATE_HTML_ERROR = "error_message.html";
-
-  // GUI template defaultfiles
-  public static final String TEMPLATE_AUTHPROCESS_SELECTION_VDA_FULLFRAME = "authSelection.html";
-  public static final String TEMPLATE_AUTHPROCESS_SELECTION_VDA_IFRAME = "authSelection_iframe.html";
-  public static final String TEMPLATE_USER_CONSENT_REQUEST = "userConsent.html";
-  public static final String TEMPLATE_IFRAME_TO_PARENT_HOPE = "iframe_parent_hope.html";
-  public static final String TEMPLATE_MANDATE_SELECTION = "mandateSelection.html";
-  public static final String TEMPLATE_PROF_REP_MANDATE_SELECTION = "profRepMandateSelection.html";
-  public static final String TEMPLATE_MANDATE_SELECTION_DUMMY = "mandateSelection_dummy.html";
-
-
-
-  // http request parameters
-  public static final String HTTP_PARAM_APPLICATION_ID = "appId";
-  public static final String HTTP_PARAM_STOP_PROCESS = "stopAuthProcess";
-  public static final String HTTP_PARAM_EIDAS_PROCESS = "useeIDAS";
-  public static final String HTTP_PARAM_EID_PROCESS = "useeID";
-  public static final String HTTP_PARAM_EID_BINDING_AUTH_PROCESS = "useBindingAuth";
-  public static final String HTTP_PARAM_USE_MANDATES = "useMandate";
-  public static final String HTTP_PARAM_AUTHMETHOD = "authMethod";
-  public static final String HTTP_PARAM_CONSENT_RELEASE_ATTRIBUTES = "releaseAttributes";
-  public static final String HTTP_PARAM_CONSENT_STORE_CONSENT = "storeConsent";
-
-  @Deprecated
-  public static final String HTTP_PARAM_EIDMIGRATIONPILOT_PROCESS = "pilotMigration";
-  @Deprecated
-  public static final String HTTP_PARAM_EIDMIGRATIONPILOT_SHOW_INFO_PAGE = "pilotMigrationInfoPage";
-  @Deprecated
-  public static final String HTTP_PARAM_MOBILESIGNATURE_PROCESS = "usemobileSig";
-
-  // UI options
-  public static final String UI_PARAM_USE_MANDATES = HTTP_PARAM_USE_MANDATES;
-  public static final String UI_PARAM_USE_ONLY_MANDATES = "useOnlyMandate";
-  public static final String UI_PARAM_USE_EIDAS = HTTP_PARAM_EIDAS_PROCESS;
-  public static final String UI_PARAM_DSGVO_SHORT_INFO = "dsgvoShortText";
-  public static final String UI_PARAM_DSGVO_SP_PRIVACY_STATEMENT_URL = "dsgvoPrivacyStatementUrl";
-  public static final String UI_PARAM_DSGVO_SP_SERVICE_URL = "dsgvoServiceUrl";
-  public static final String UI_PARAM_DSGVO_SP_LOGO = "dsgvoSpLogo";
-  public static final String UI_PARAM_DSGVO_SP_LOGO_SET = "dsgvoSpLogoSet";
-  public static final String UI_PARAM_DSGVO_SP_LOGO_SET_DATAURL = "dataUrl";
-  public static final String UI_PARAM_DSGVO_SP_LOGO_SET_THEME = "theme";
-  public static final String UI_PARAM_DSGVO_SP_LOGO_SET_RESOLUTION = "resolution";
-  public static final String UI_PARAM_DSGVO_SP_LOGO_SET_TYPE = "type";
-
-  public enum LogoType { SVG, PNG, UNKNOWN }
-
-  public enum AuthBlockType {
-    CADES("CAdES"), JWS("JWS"), NONE("none");
-
-    private final String internalType;
-
-    AuthBlockType(final String type) {
-      this.internalType = type;
-
-    }
-
-    /**
-     * Get Type identifier for this AuthBlock.
-     *
-     * @return
-     */
-    public String getAuthBlockType() {
-      return this.internalType;
-    }
-
-    @Override
-    public String toString() {
-      return getAuthBlockType();
-
-    }
-  }
-
-  // process context parameters
-  public static final String PROCESSCONTEXT_USERCONSENT_NEEDED = "userConsentNeeded";
-  public static final String PROCESSCONTEXT_AUTHPROCESSSELECTION_DONE = "authProcSelectDone";
-  public static final String PROCESSCONTEXT_SWITCH_LANGUAGE = "changeLanguage";
-  public static final String PROCESSCONTEXT_IFRAME_PARENT_NEEDED = "iframeParentNeeded";
-
-  public static final String PROCESSCONTEXT_WAS_EID_PROCESS = "wasEidProcess";
-
-}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IAhAuthProcessData.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IAhAuthProcessData.java
deleted file mode 100644
index 47d3d37c..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IAhAuthProcessData.java
+++ /dev/null
@@ -1,190 +0,0 @@
-package at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient;
-
-import java.security.cert.X509Certificate;
-
-import at.gv.egiz.eaaf.core.api.idp.auth.data.IAuthProcessDataContainer;
-
-public interface IAhAuthProcessData extends IAuthProcessDataContainer {
-
-  /**
-   * Get the certificate that was used to sign the Consent.
-   *
-   * @return {@link X509Certificate}
-   */
-  X509Certificate getSignerCertificate();
-
-  /**
-   * Get the certificate that was used to sign the Consent.
-   *
-   * @return Serialized certificate
-   */
-  byte[] getEncodedSignerCertificate();
-
-  /**
-   * Set the certificate that was used to sign the Consent.
-   *
-   * @param signerCertificate Signer certificate of the user
-   */
-  void setSignerCertificate(X509Certificate signerCertificate);
-
-
-  /**
-   * Get URL to VDA that was used for authentication.
-   *
-   * @return
-   */
-  String getVdaUrl();
-
-  /**
-   * Set URL to VDA that was used for authentication.
-   *
-   * @param vdaUrl URL to VDA that was used for authentication
-   */
-  void setVdaUrl(String vdaUrl);
-
-  /**
-   * Get the reference-value that used to interact with MIS service.
-   *
-   * @return
-   */
-  String getMandateReferenceValue();
-
-  /**
-   * Set the reference-value that used to interact with MIS service.
-   *
-   * @param refValue Mandate reference value
-   */
-  void setMandateReferenceValue(String refValue);
-
-  /**
-   * Get the qcBind of the user that was received by VDA or other storage during authentication.
-   *
-   * @return
-   */
-  String getQcBind();
-
-  /**
-   * Set the qcBind of the user that was received by VDA or other storage during authentication.
-   *
-   * @param qcBind raw qcBind data-structure (serialized JSON)
-   */
-  void setQcBind(String qcBind);
-
-  /**
-   * Get the vSZ of the user.
-   *
-   * @return
-   */
-  String getVsz();
-
-  /**
-   * Set the vSZ of the user.
-   *
-   * @param vsz user's encrypted baseId
-   */
-  void setVsz(String vsz);
-
-  /**
-   * Get the signed AuthBlock of the user.
-   *
-   * @return
-   */
-  byte[] getSignedAuthBlock();
-
-  /**
-   * Set the signed AuthBlock of the user.
-   *
-   * @param authBlock raw signed consent
-   */
-  void setSignedAuthBlock(byte[] authBlock);
-
-  /**
-   * Get a textual type identifier of the AuthBlock.
-   *
-   * @return AuthBlock type
-   */
-  AuthHandlerConstants.AuthBlockType getSignedAuthBlockType();
-
-  /**
-   * Set a textual identifier for the type of the AuthBlock.
-   *
-   * @param authBlockType AuthBlock type
-   */
-  void setSignedAuthBlockType(final AuthHandlerConstants.AuthBlockType authBlockType);
-
-  /**
-   * Get the selected mandate of the user that was issued by MIS.
-   *
-   * @return
-   */
-  ISignedMandate getMandateDate();
-
-  /**
-   * Set the selected mandate of the user that is issued by MIS.
-   *
-   * @param signedMandate Raw mandate structure for E-ID backend
-   */
-  void setMandateDate(ISignedMandate signedMandate);
-
-
-  /**
-   * Get bPK for this entity. <br>
-   * <b>THIS bPK is only for AuthHandler internal usage</b>
-   *
-   * @return bPK, or null if no bPK is set
-   */
-  String getInternalBpk();
-
-  /**
-   * Get bPK type for this entity. <br>
-   * <b>THIS bPK is only for AuthHandler internal usage</b>
-   *
-   * @return bPKType, or null if no bPKType is set
-   */
-  String getInternalBpkType();
-
-  /**
-   * Set the bPK for INTERNAL USAGE of the current entity.
-   *
-   * @param bpk bPK for internal usage
-   */
-  void setInternalBpk(String bpk);
-
-  /**
-   * Set the bPK for INTERNAL USAGE of the current entity.
-   *
-   * @param bpkType bPK for internal usage
-   */
-  void setInternalBpkType(String bpkType);
-
-
-  /**
-   * Indicate if the current process uses ELGA mandates.
-   *
-   * @return <code>true</code> if ELGA mandates are used, otherwise <code>false</code>
-   */
-  boolean isElgaMandateProcess();
-
-  /**
-   * Set flag if the current process is an ELGA mandate process.
-   *
-   * @param flag <code>true</code> if it is an ELGA mandate-process, otherwise <code>false</code>
-   */
-  void setElgaMandateProcess(boolean flag);
-
-
-  /**
-   * Indicate if the current process was authenticated by a VDA.
-   *
-   * @return <code>true</code> if the current process was authenticated by VDA, otherwise <code>false</code>
-   */
-  boolean isVdaAuthentication();
-
-  /**
-   * Set flag that indicates if the current process was authenticated by a VDA.
-   *
-   * @param flag <code>true</code> in case of VDA authentication, otherwise <code>false</code>
-   */
-  void setVdaAuthentication(boolean flag);
-
-}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IAhSpConfiguration.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IAhSpConfiguration.java
deleted file mode 100644
index 081b215a..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IAhSpConfiguration.java
+++ /dev/null
@@ -1,151 +0,0 @@
-package at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient;
-
-import java.util.List;
-
-import javax.annotation.Nonnull;
-import javax.annotation.Nullable;
-
-import at.gv.egiz.eaaf.core.api.idp.ISpConfiguration;
-import at.gv.egiz.eaaf.core.impl.data.Pair;
-
-public interface IAhSpConfiguration extends ISpConfiguration {
-
-
-  /**
-   * Flag if this Service Provider is enabled.
-   *
-   * @return true if the SP is enabled, otherwise false
-   */
-  boolean isEnabled();
-
-  /**
-   * Get unique identifier that is used in Application-Register from BM.I.
-   *
-   * <p>If no BM.I specific identifier is available then this method returns
-   * the same identifier as <code>getUniqueIdentifier()</code></p>
-   *
-   * @return unique identifier from BM.I AppReg, or generic uniqueId of no specific exists
-   */
-  String getUniqueApplicationRegisterIdentifier();
-
-  /**
-   * Flag that marks this Service-Provider as <i>public</i> or <i>private</i>.
-   *
-   * <p><b>Default:</b> If it is not set or has an unknown value, its <i>private</i> by default</p>
-   *
-   * @return <code>true</code> if it is from <i>public</i>, otherwise <code>false</code>
-   */
-  boolean isPublicServiceProvider();
-
-  /**
-   * Enable test identities for this Service Provider.
-   *
-   * @return true if test identities are allowed, otherwise false
-   */
-  boolean isTestCredentialEnabled();
-
-  /**
-   * Get a List of OID's that refine the set of allowed test identities.
-   *
-   * @return @link {@link List} of test-identity OID's
-   */
-  @Nullable
-  List<String> getTestCredentialOids();
-
-
-  /**
-   * Get a List of unique attribute URI's that are required by this SP.
-   *
-   * @return {@link List} of attribute URI's / parameter {@link Pair}s
-   */
-  List<Pair<String, String>> getRequiredAttributes();
-
-
-  /**
-   * Get the CountryCode for this service. <br>
-   * <br>
-   * <b>Default:</b> AT
-   *
-   * @return
-   */
-  String getCountryCode();
-
-  /**
-   * Set the CountryCode for this service. If not countryCode is set, AT is used as default.
-   *
-   * @param cc Service-Provider country-code
-   */
-  void setCountryCode(String cc);
-
-  /**
-   * Enable mandates for this service provider.
-   *
-   * @return <code>true</code> if mandates are enabled, otherwise <code>false</code>
-   */
-  boolean isMandateEnabled();
-
-  /**
-   * Enables multi-mandates for this service-provider.
-   *
-   * @return <code>true</code> if multi-mandates are enabled, otherwise <code>false</code>
-   */
-  boolean isMultiMandateEnabled();
-
-  /**
-   * Only mandates are allowed for this service provider.
-   *
-   * @return <code>true</code> if only mandates are allowed, otherwise <code>false</code>
-   */
-  boolean isOnlyMandateEnabled();
-
-  /**
-   * Get a {@link List} of mandate profiles that are supported by this Service provider.
-   *
-   * @return
-   */
-  @Nonnull List<String> getMandateProfiles();
-
-
-  /**
-   * eIDAS authentication allowed flag.
-   *
-   * @return <code>true</code> if eIDAS authentication is enabled, otherwise <code>false</code>
-   */
-  boolean isEidasEnabled();
-
-  /**
-   * Get a List of targets for additional bPKs that are required by this service provider.
-   *
-   * @return List of prefixed bPK targets
-   */
-  @Nonnull List<String> getAdditionalBpkTargets();
-
-  /**
-   * Get a list of foreign bPK targets that are required by this service provider.
-   *
-   * @return List of pairs with prefixed bPK targets as first element and VKZ as second element
-   */
-  @Nonnull List<Pair<String, String>> getAdditionalForeignBpkTargets();
-
-  /**
-   * Flag that indicates that service-provider as restricted or unrestricted.
-   *
-   * <p>A restricted service-provider can only used by test-identities that contains a
-   * valid application-restriction in User-Certificate Pinning</p>
-   *
-   * <p><b>Default:</b> true</p>
-   *
-   * @return <code>true</code> if it is restricted, otherwise <code>false</code>
-   */
-  boolean isRestrictedServiceProvider();
-
-
-  /**
-   * Defines the time in minutes how long the last VDA registration h@Override
-   ave passed as maximum.
-   *
-   * @return time in minutes
-   */
-  long lastVdaAuthenticationDelay();
-
-}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IRawMandateDao.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IRawMandateDao.java
deleted file mode 100644
index 7e3b2aa1..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IRawMandateDao.java
+++ /dev/null
@@ -1,32 +0,0 @@
-package at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient;
-
-import java.io.Serializable;
-import java.util.Date;
-
-public interface IRawMandateDao extends Serializable {
-
-  boolean isNaturalPerson();
-
-  boolean isProfRepresentation();
-
-  String getIdentifier();
-
-  String getIdentifierType();
-
-  String getGivenName();
-
-  String getFamilyName();
-
-  Date getDateOfBirth();
-
-  String getCommonName();
-
-  String getMandateTypeOid();
-
-  String getMandateAnnotation();
-
-  String getMandateId();
-
-  String getMandateContent();
-
-}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/ISignedMandate.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/ISignedMandate.java
deleted file mode 100644
index edd167fb..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/ISignedMandate.java
+++ /dev/null
@@ -1,19 +0,0 @@
-package at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient;
-
-public interface ISignedMandate extends IRawMandateDao {
-
-  /**
-   * Get the full signed mandate issued by the MIS component.
-   *
-   * @return serialized JWS that contains the mandate
-   */
-  String getSignedMandate();
-
-  /**
-   * Get formated date-of-birth.
-   *
-   * @return date-of-birth as 'yyyy-MM-dd'
-   */
-  String getDateOfBirthFormated();
-
-}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthConstants.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthConstants.java
index 7d8b9dc8..1a590aa1 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthConstants.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthConstants.java
@@ -58,6 +58,7 @@ public class IdAustriaClientAuthConstants {
   public static final String CONFIG_PROPS_REQUIRED_LOA = CONFIG_PROPS_PREFIX
       + "required.loa";
   public static final String CONFIG_PROPS_NODE_ENTITYID = CONFIG_PROPS_PREFIX + "node.entityId";
+  public static final String CONFIG_PROPS_SP_ENTITYID = CONFIG_PROPS_PREFIX + "sp.entityId";
   public static final String CONFIG_PROPS_NODE_METADATAURL = CONFIG_PROPS_PREFIX + "node.metadataUrl";
   public static final String CONFIG_PROPS_NODE_TRUSTPROFILEID = CONFIG_PROPS_PREFIX + "node.trustprofileID";
 
@@ -77,55 +78,9 @@ public class IdAustriaClientAuthConstants {
 
   public static final String CONFIG_PROPS_APPSPECIFIC_EIDAS_NODE_URL = "auth.eidas.node.entityId";
 
-  public static final String CONFIG_PROPS_SEMPER_MANDATES_ACTIVE = CONFIG_PROPS_PREFIX
-      + "semper.mandates.active";
-  public static final String CONFIG_PROPS_SEMPER_MANDATES_MS_PROXY_LIST = CONFIG_PROPS_PREFIX
-      + "semper.msproxy.list";
 
   public static final String CONFIG_DEFAULT_LOA_EIDAS_LEVEL = EaafConstants.EIDAS_LOA_HIGH;
 
-  @Deprecated
-  public static final List<Triple<String, String, Boolean>> DEFAULT_REQUIRED_PVP_ATTRIBUTES_WITHOUT_EID =
-      Collections.unmodifiableList(new ArrayList<Triple<String, String, Boolean>>() {
-        private static final long serialVersionUID = 1L;
-        {
-          // add PVP Version attribute
-          add(Triple.newInstance(PvpAttributeDefinitions.PVP_VERSION_NAME,
-              PvpAttributeDefinitions.PVP_VERSION_FRIENDLY_NAME, true));
-
-          // request entity information
-          add(Triple.newInstance(PvpAttributeDefinitions.EID_SECTOR_FOR_IDENTIFIER_NAME,
-              PvpAttributeDefinitions.EID_SECTOR_FOR_IDENTIFIER_FRIENDLY_NAME, false));
-          add(Triple.newInstance(PvpAttributeDefinitions.EID_CITIZEN_EIDAS_QAA_LEVEL_NAME,
-              PvpAttributeDefinitions.EID_CITIZEN_EIDAS_QAA_LEVEL_FRIENDLY_NAME, true));
-          add(Triple.newInstance(PvpAttributeDefinitions.EID_ISSUING_NATION_NAME,
-              PvpAttributeDefinitions.EID_ISSUING_NATION_FRIENDLY_NAME, true));
-
-          // entity eID information
-          add(Triple.newInstance(AhExtendedPvpAttributeDefinitions.EID_EIDBIND_NAME,
-              AhExtendedPvpAttributeDefinitions.EID_EIDBIND_FRIENDLY_NAME, false));
-          add(Triple.newInstance(AhExtendedPvpAttributeDefinitions.EID_AUTHBLOCK_SIGNED_NAME,
-              AhExtendedPvpAttributeDefinitions.EID_AUTHBLOCK_SIGNED_FRIENDLY_NAME, false));
-
-          // Deprecated information
-          add(Triple.newInstance(PvpAttributeDefinitions.GIVEN_NAME_NAME,
-              PvpAttributeDefinitions.GIVEN_NAME_FRIENDLY_NAME, false));
-          add(Triple.newInstance(PvpAttributeDefinitions.PRINCIPAL_NAME_NAME,
-              PvpAttributeDefinitions.PRINCIPAL_NAME_FRIENDLY_NAME, false));
-          add(Triple.newInstance(PvpAttributeDefinitions.BIRTHDATE_NAME,
-              PvpAttributeDefinitions.BIRTHDATE_FRIENDLY_NAME, false));
-          add(Triple.newInstance(PvpAttributeDefinitions.BPK_NAME, PvpAttributeDefinitions.BPK_FRIENDLY_NAME,
-              false));
-          add(Triple.newInstance(PvpAttributeDefinitions.EID_IDENTITY_LINK_NAME,
-              PvpAttributeDefinitions.EID_IDENTITY_LINK_FRIENDLY_NAME, false));
-
-          //request pII transactionId from MS-Connector
-          add(Triple.newInstance(ExtendedPvpAttributeDefinitions.EID_PII_TRANSACTION_ID_NAME,
-              ExtendedPvpAttributeDefinitions.EID_PII_TRANSACTION_ID_FRIENDLY_NAME, false));
-
-        }
-      });
-
   public static final List<Triple<String, String, Boolean>> DEFAULT_REQUIRED_PVP_ATTRIBUTES =
       Collections.unmodifiableList(new ArrayList<Triple<String, String, Boolean>>() {
         private static final long serialVersionUID = 1L;
@@ -141,10 +96,10 @@ public class IdAustriaClientAuthConstants {
               PvpAttributeDefinitions.EID_ISSUING_NATION_FRIENDLY_NAME, true));
 
           // entity eID information
-          add(Triple.newInstance(AhExtendedPvpAttributeDefinitions.EID_EIDBIND_NAME,
-              AhExtendedPvpAttributeDefinitions.EID_EIDBIND_FRIENDLY_NAME, true));
-          add(Triple.newInstance(AhExtendedPvpAttributeDefinitions.EID_AUTHBLOCK_SIGNED_NAME,
-              AhExtendedPvpAttributeDefinitions.EID_AUTHBLOCK_SIGNED_FRIENDLY_NAME, true));
+          add(Triple.newInstance(ExtendedPvpAttributeDefinitions.EID_EIDBIND_NAME,
+              ExtendedPvpAttributeDefinitions.EID_EIDBIND_FRIENDLY_NAME, true));
+          add(Triple.newInstance(ExtendedPvpAttributeDefinitions.EID_AUTHBLOCK_SIGNED_NAME,
+              ExtendedPvpAttributeDefinitions.EID_AUTHBLOCK_SIGNED_FRIENDLY_NAME, true));
 
           //request pII transactionId from MS-Connector
           add(Triple.newInstance(ExtendedPvpAttributeDefinitions.EID_PII_TRANSACTION_ID_NAME,
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthMetadataConfiguration.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthMetadataConfiguration.java
index 93aefb42..4e7f86f1 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthMetadataConfiguration.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthMetadataConfiguration.java
@@ -356,18 +356,12 @@ public class IdAustriaClientAuthMetadataConfiguration implements IPvpMetadataBui
   public Collection<RequestedAttribute> getSpRequiredAttributes() {
     final Map<String, RequestedAttribute> requestedAttributes = new HashMap<>();
 
-    if (pvpConfiguration.getBasicConfiguration().getBasicConfigurationBoolean(
-        AuthHandlerConstants.PROP_CONFIG_LEGACY_ALLOW, false)) {
-      log.trace("Build required attributes for legacy operaton ... ");
-      injectDefinedAttributes(requestedAttributes,
-          IdAustriaClientAuthConstants.DEFAULT_REQUIRED_PVP_ATTRIBUTES_WITHOUT_EID);
 
-    } else {
-      log.trace("Build required attributes for E-ID operaton ... ");
-      injectDefinedAttributes(requestedAttributes,
-          IdAustriaClientAuthConstants.DEFAULT_REQUIRED_PVP_ATTRIBUTES);
+    log.trace("Build required attributes for E-ID operaton ... ");
+    injectDefinedAttributes(requestedAttributes,
+        IdAustriaClientAuthConstants.DEFAULT_REQUIRED_PVP_ATTRIBUTES);
+
 
-    }
 
     if (additionalAttributes != null) {
       log.trace("Add additional PVP attributes into metadata ... ");
@@ -376,9 +370,7 @@ public class IdAustriaClientAuthMetadataConfiguration implements IPvpMetadataBui
           log.debug("Attribute " + el.getName()
               + " is already added by default configuration. Overwrite it by user configuration");
         }
-
         requestedAttributes.put(el.getName(), el);
-
       }
     }
 
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/MisException.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/MisException.java
deleted file mode 100644
index 71826d23..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/MisException.java
+++ /dev/null
@@ -1,17 +0,0 @@
-package at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient;
-
-import at.gv.egiz.eaaf.core.exceptions.EaafException;
-
-public class MisException extends EaafException {
-
-  private static final long serialVersionUID = 1L;
-
-  public MisException(final String errorId, final Object[] params) {
-    super(errorId, params);
-  }
-
-  public MisException(final String errorId, final Object[] params, final Throwable e) {
-    super(errorId, params, e);
-  }
-
-}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateMobilePhoneSignatureRequestTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateMobilePhoneSignatureRequestTask.java
index aa8deb2b..546a2039 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateMobilePhoneSignatureRequestTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateMobilePhoneSignatureRequestTask.java
@@ -27,7 +27,6 @@ import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustri
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthCredentialProvider;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthMetadataProvider;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthRequestBuilderConfiguration;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IAhSpConfiguration;
 import at.gv.egiz.eaaf.core.api.IRequest;
 import at.gv.egiz.eaaf.core.api.data.ExtendedPvpAttributeDefinitions;
 import at.gv.egiz.eaaf.core.api.data.PvpAttributeDefinitions;
@@ -117,9 +116,8 @@ public class GenerateMobilePhoneSignatureRequestTask extends AbstractAuthServlet
           IdAustriaClientAuthConstants.CONFIG_PROPS_REQUIRED_LOA,
           IdAustriaClientAuthConstants.CONFIG_DEFAULT_LOA_EIDAS_LEVEL));
 
-      authnReqConfig.setScopeRequesterId(
-          pendingReq.getServiceProviderConfiguration(IAhSpConfiguration.class)
-              .getUniqueApplicationRegisterIdentifier());
+      authnReqConfig.setScopeRequesterId(authConfig.getBasicConfiguration(
+          IdAustriaClientAuthConstants.CONFIG_PROPS_SP_ENTITYID));
       authnReqConfig.setProviderName(pendingReq.getServiceProviderConfiguration().getFriendlyName());
       authnReqConfig.setRequestedAttributes(buildRequestedAttributes(pendingReq));
 
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask.java
index 9e6aa7cc..9d30b581 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask.java
@@ -29,20 +29,15 @@ import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernp.IErnpClient;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.ManualFixNecessaryException;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.AhAuthProcessDataWrapper;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.AuthHandlerConstants;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.EidasAuthEventConstants;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthConstants;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthCredentialProvider;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthMetadataProvider;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.MisException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.Utils;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.IZmrClient;
 import at.gv.egiz.eaaf.core.api.data.ExtendedPvpAttributeDefinitions;
-import at.gv.egiz.eaaf.core.api.data.PvpAttributeDefinitions;
 import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
 import at.gv.egiz.eaaf.core.exceptions.EaafBuilderException;
-import at.gv.egiz.eaaf.core.exceptions.EaafStorageException;
 import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
 import at.gv.egiz.eaaf.core.impl.data.Pair;
 import at.gv.egiz.eaaf.core.impl.idp.auth.data.AuthProcessDataWrapper;
@@ -78,10 +73,7 @@ import javax.servlet.http.HttpServletRequest;
 import javax.servlet.http.HttpServletResponse;
 import javax.xml.transform.TransformerException;
 import java.io.IOException;
-import java.util.Arrays;
-import java.util.Base64;
 import java.util.List;
-import java.util.Set;
 
 /**
  * Task that searches ErnB and ZMR before adding person to SZR.
@@ -211,10 +203,10 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask extends
           requestStoreage.storePendingRequest(pendingReq);
 
           //set E-ID process flag to execution context
-          final AhAuthProcessDataWrapper session = pendingReq.getSessionData(
-              AhAuthProcessDataWrapper.class);
-          executionContext.put(AuthHandlerConstants.PROCESSCONTEXT_WAS_EID_PROCESS, session.isEidProcess());
-          executionContext.put(AuthHandlerConstants.HTTP_PARAM_USE_MANDATES, session.isMandateUsed());
+          //          final AhAuthProcessDataWrapper session = pendingReq.getSessionData(
+          //              AhAuthProcessDataWrapper.class);
+          //          executionContext.put(AuthHandlerConstants.PROCESSCONTEXT_WAS_EID_PROCESS, session.isEidProcess());
+          //          executionContext.put(AuthHandlerConstants.HTTP_PARAM_USE_MANDATES, session.isMandateUsed());
 
 
           log.info("Receive a valid assertion from IDP " + msg.getEntityID());
@@ -337,15 +329,6 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask extends
       throws EaafBuilderException, ConfigurationException {
 
     List<String> requiredEidasNodeAttributes = IdAustriaClientAuthConstants.DEFAULT_REQUIRED_PVP_ATTRIBUTE_NAMES;
-    if (authConfig.getBasicConfigurationBoolean(
-        AuthHandlerConstants.PROP_CONFIG_LEGACY_ALLOW, false)) {
-      log.trace("Build required attributes for legacy operaton ... ");
-      requiredEidasNodeAttributes = Arrays.asList(
-          PvpAttributeDefinitions.PVP_VERSION_NAME,
-          PvpAttributeDefinitions.EID_CITIZEN_EIDAS_QAA_LEVEL_NAME,
-          PvpAttributeDefinitions.EID_ISSUING_NATION_NAME);
-
-    }
 
     try {
       // check if all attributes are include
@@ -359,14 +342,14 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask extends
       }
 
       // copy attributes into MOASession
-      final AhAuthProcessDataWrapper session = pendingReq.getSessionData(
-          AhAuthProcessDataWrapper.class);
-      final Set<String> includedAttrNames = extractor.getAllIncludeAttributeNames();
-      for (final String attrName : includedAttrNames) {
-        injectAuthInfosIntoSession(session, attrName,
-            extractor.getSingleAttributeValue(attrName));
-
-      }
+      //      final AhAuthProcessDataWrapper session = pendingReq.getSessionData(
+      //          AhAuthProcessDataWrapper.class);
+      //      final Set<String> includedAttrNames = extractor.getAllIncludeAttributeNames();
+      //      for (final String attrName : includedAttrNames) {
+      //        injectAuthInfosIntoSession(session, attrName,
+      //            extractor.getSingleAttributeValue(attrName));
+      //
+      //      }
 
       //set piiTransactionId from eIDAS Connector
       String piiTransactionId = extractor.getSingleAttributeValue(
@@ -381,58 +364,58 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask extends
       }
 
       // set foreigner flag
-      session.setForeigner(true);
+      //      session.setForeigner(true);
 
       // set IssuerInstant from Assertion
-      session.setIssueInstant(extractor.getAssertionIssuingDate());
+      //      session.setIssueInstant(extractor.getAssertionIssuingDate());
 
       // set CCE URL
-      if (extractor.getFullAssertion().getIssuer() != null
-          && StringUtils.isNotEmpty(extractor.getFullAssertion().getIssuer().getValue())) {
-        session.setVdaUrl(extractor.getFullAssertion().getIssuer().getValue());
+      //if (extractor.getFullAssertion().getIssuer() != null
+      //&& StringUtils.isNotEmpty(extractor.getFullAssertion().getIssuer().getValue())) {
+      //        session.setVdaUrl(extractor.getFullAssertion().getIssuer().getValue());
 
-      } else {
-        session.setVdaUrl("eIDAS_Authentication");
+      //} //else {
+      //        session.setVdaUrl("eIDAS_Authentication");
 
-      }
+      //}
 
-    } catch (final EaafStorageException | MisException | AssertionValidationExeption | IOException e) {
+    } catch (final AssertionValidationExeption e) {
       throw new EaafBuilderException(ERROR_PVP_06, null, e.getMessage(), e);
 
     }
   }
 
-  private void injectAuthInfosIntoSession(AhAuthProcessDataWrapper session, String attrName, String attrValue)
-      throws EaafStorageException, MisException, IOException {
-    log.trace("Inject attribute: {} with value: {} into  AuthSession", attrName, attrValue);
-    log.debug("Inject attribute: {} into  AuthSession", attrName);
-
-    if (ExtendedPvpAttributeDefinitions.EID_EIDBIND_NAME.equals(attrName)) {
-      log.debug("Find eidasBind attribute. Switching to E-ID mode ... ");
-      session.setEidProcess(true);
-      session.setQcBind(attrValue);
-      //      session.setVsz(extractVszFromEidasBind(attrValue));
-      //T
-
-    } else if (ExtendedPvpAttributeDefinitions.EID_AUTHBLOCK_SIGNED_NAME.equals(attrName)) {
-      session.setSignedAuthBlock(Base64.getDecoder().decode(attrValue));
-      session.setSignedAuthBlockType(AuthHandlerConstants.AuthBlockType.JWS);
-
-    } else if (PvpAttributeDefinitions.EID_CITIZEN_EIDAS_QAA_LEVEL_NAME.equals(attrName)) {
-      session.setQaaLevel(attrValue);
-
-    //    } else if (ExtendedPvpAttributeDefinitions.EID_MIS_MANDATE_NAME.equals(attrName)
-    //        && authConfig.getBasicConfigurationBoolean(
-    //        IdAustriaClientAuthConstants.CONFIG_PROPS_SEMPER_MANDATES_ACTIVE, false)) {
-    //      session.setMandateDate(new SignedMandateDao(attrValue));
-    //      session.setUseMandates(true);
-    //
-    } else {
-      session.setGenericDataToSession(attrName, attrValue);
-
-    }
-
-  }
+  //  private void injectAuthInfosIntoSession(AhAuthProcessDataWrapper session, String attrName, String attrValue)
+  //      throws EaafStorageException, MisException, IOException {
+  //    log.trace("Inject attribute: {} with value: {} into  AuthSession", attrName, attrValue);
+  //    log.debug("Inject attribute: {} into  AuthSession", attrName);
+  //
+  //    if (ExtendedPvpAttributeDefinitions.EID_EIDBIND_NAME.equals(attrName)) {
+  //      log.debug("Find eidasBind attribute. Switching to E-ID mode ... ");
+  //      session.setEidProcess(true);
+  //      session.setQcBind(attrValue);
+  //      //      session.setVsz(extractVszFromEidasBind(attrValue));
+  //      //T
+  //
+  //    } else if (ExtendedPvpAttributeDefinitions.EID_AUTHBLOCK_SIGNED_NAME.equals(attrName)) {
+  //      session.setSignedAuthBlock(Base64.getDecoder().decode(attrValue));
+  //      session.setSignedAuthBlockType(AuthHandlerConstants.AuthBlockType.JWS);
+  //
+  //    } else if (PvpAttributeDefinitions.EID_CITIZEN_EIDAS_QAA_LEVEL_NAME.equals(attrName)) {
+  //      session.setQaaLevel(attrValue);
+  //
+  //    //    } else if (ExtendedPvpAttributeDefinitions.EID_MIS_MANDATE_NAME.equals(attrName)
+  //    //        && authConfig.getBasicConfigurationBoolean(
+  //    //        IdAustriaClientAuthConstants.CONFIG_PROPS_SEMPER_MANDATES_ACTIVE, false)) {
+  //    //      session.setMandateDate(new SignedMandateDao(attrValue));
+  //    //      session.setUseMandates(true);
+  //    //
+  //    } else {
+  //      session.setGenericDataToSession(attrName, attrValue);
+  //
+  //    }
+  //
+  //  }
 
 
   private MergedRegisterSearchResult searchInZmrAndErnp(String bpkzp) {
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
deleted file mode 100644
index f2dc6d55..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskFirstTest.java
+++ /dev/null
@@ -1,463 +0,0 @@
-/*
- * Copyright 2020 A-SIT Plus GmbH
- * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
- * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
- *
- * Licensed under the EUPL, Version 1.2 or - as soon they will be approved by
- * the European Commission - subsequent versions of the EUPL (the "License");
- * You may not use this work except in compliance with the License.
- * You may obtain a copy of the License at:
- * https://joinup.ec.europa.eu/news/understanding-eupl-v12
- *
- * Unless required by applicable law or agreed to in writing, software
- * distributed under the License is distributed on an "AS IS" basis,
- * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
- * See the License for the specific language governing permissions and
- * limitations under the License.
- *
- * This product combines work with different licenses. See the "NOTICE" text
- * file for details on the various modules and licenses.
- * The "NOTICE" text file is part of the distribution. Any derivative works
- * that you distribute must include a readable copy of the "NOTICE" text file.
- */
-
-package at.asitplus.eidas.specific.modules.auth.eidas.v2.test.tasks;
-
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernp.IErnpClient;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.ManualFixNecessaryException;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.DeSpecificDetailSearchProcessor;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.ItSpecificDetailSearchProcessor;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.InitialSearchTask;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.IZmrClient;
-import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
-import at.gv.egiz.eaaf.core.exceptions.EaafStorageException;
-import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
-import at.gv.egiz.eaaf.core.impl.idp.auth.data.AuthProcessDataWrapper;
-import at.gv.egiz.eaaf.core.impl.idp.module.test.TestRequestImpl;
-import at.gv.egiz.eaaf.core.impl.idp.process.ExecutionContextImpl;
-import eu.eidas.auth.commons.attribute.AttributeDefinition;
-import eu.eidas.auth.commons.attribute.ImmutableAttributeMap;
-import eu.eidas.auth.commons.attribute.PersonType;
-import eu.eidas.auth.commons.protocol.impl.AuthenticationResponse;
-import lombok.val;
-import org.apache.commons.lang3.RandomStringUtils;
-import org.jetbrains.annotations.NotNull;
-import org.junit.Assert;
-import org.junit.Before;
-import org.junit.BeforeClass;
-import org.junit.Test;
-import org.junit.runner.RunWith;
-import org.mockito.Mock;
-import org.mockito.Mockito;
-import org.mockito.MockitoAnnotations;
-import org.springframework.mock.web.MockHttpServletRequest;
-import org.springframework.mock.web.MockHttpServletResponse;
-import org.springframework.test.annotation.DirtiesContext;
-import org.springframework.test.annotation.DirtiesContext.ClassMode;
-import org.springframework.test.context.ContextConfiguration;
-import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
-import org.springframework.web.context.request.RequestContextHolder;
-import org.springframework.web.context.request.ServletRequestAttributes;
-
-import javax.xml.namespace.QName;
-import java.io.IOException;
-import java.net.URI;
-import java.net.URISyntaxException;
-import java.util.ArrayList;
-import java.util.Collections;
-import java.util.Random;
-
-import static org.junit.Assert.assertThrows;
-
-@RunWith(SpringJUnit4ClassRunner.class)
-@ContextConfiguration(locations = {
-    "/SpringTest-context_tasks_test.xml",
-    "/SpringTest-context_basic_mapConfig.xml"
-})
-@DirtiesContext(classMode = ClassMode.BEFORE_CLASS)
-public class InitialSearchTaskFirstTest {
-
-  private static final String DE_ST = "de/st/";
-  private static final String IT_ST = "it/st/";
-
-  private InitialSearchTask task;
-  @Mock
-  private IZmrClient zmrClient;
-  @Mock
-  private IErnpClient ernpClient;
-
-  final ExecutionContext executionContext = new ExecutionContextImpl();
-  private TestRequestImpl pendingReq;
-  private final String randomBpk = RandomStringUtils.randomNumeric(6);
-  private final String randomIdentifier = RandomStringUtils.randomNumeric(10);
-  private final String randomPseudonym = DE_ST + randomIdentifier;
-  private final String randomFamilyName = RandomStringUtils.randomAlphabetic(10);
-  private final String randomGivenName = RandomStringUtils.randomAlphabetic(10);
-  private final String randomPlaceOfBirth = RandomStringUtils.randomAlphabetic(10);
-  private final String randomBirthName = RandomStringUtils.randomAlphabetic(10);
-  private final String randomDate = "2011-01-" + (10 + new Random().nextInt(18));
-
-//  /**
-//   * jUnit class initializer.
-//   *
-//   * @throws IOException In case of an error
-//   */
-//  @BeforeClass
-//  public static void classInitializer() throws IOException {
-//    final String current = new java.io.File(".").toURI().toString();
-//    System.setProperty("eidas.ms.configuration", current
-//        + "src/test/resources/config/junit_config_1.properties");
-//  }
-
-  /**
-   * jUnit test set-up.
-   */
-  @Before
-  public void setUp() throws URISyntaxException, EaafStorageException {
-    MockitoAnnotations.initMocks(this);
-    task = new InitialSearchTask(new ArrayList<>(), ernpClient, zmrClient);
-
-    MockHttpServletRequest httpReq = new MockHttpServletRequest("POST", "https://localhost/authhandler");
-    MockHttpServletResponse httpResp = new MockHttpServletResponse();
-    RequestContextHolder.resetRequestAttributes();
-    RequestContextHolder.setRequestAttributes(new ServletRequestAttributes(httpReq, httpResp));
-
-    final AuthenticationResponse response = buildDummyAuthResponseRandomPerson();
-    pendingReq = new TestRequestImpl();
-    pendingReq.getSessionData(AuthProcessDataWrapper.class)
-        .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
-  }
-
-  /**
-   * One match, but register update needed
-   */
-  @Test
-  @DirtiesContext
-  public void testNode100_UserIdentifiedUpdateNecessary_a() throws Exception {
-    String newFirstName = RandomStringUtils.randomAlphabetic(10);
-    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.singletonList(
-        new RegisterResult(randomBpk, randomIdentifier, newFirstName, randomFamilyName, randomDate)));
-    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
-
-    task.execute(pendingReq, executionContext);
-    String bPk = (String)
-        pendingReq.getSessionData(AuthProcessDataWrapper.class)
-            .getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
-
-    Assert.assertEquals("Wrong bpk", bPk, randomBpk);
-  }
-
-  /**
-   * One match, but register update needed
-   */
-  @Test
-  @DirtiesContext
-  public void testNode100_UserIdentifiedUpdateNecessary_b() throws TaskExecutionException {
-    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
-    String newRandomGivenName = RandomStringUtils.randomAlphabetic(10);
-    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.singletonList(
-        new RegisterResult(randomBpk, randomIdentifier, newRandomGivenName, randomFamilyName, randomDate)));
-
-    task.execute(pendingReq, executionContext);
-    String bPk = (String)
-        pendingReq.getSessionData(AuthProcessDataWrapper.class)
-            .getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
-
-    Assert.assertEquals("Wrong bpk", bPk, randomBpk);
-  }
-
-  /**
-   * Two matches found in ZMR
-   */
-  @Test
-  @DirtiesContext
-  public void testNode101_ManualFixNecessary_a() {
-    ArrayList<RegisterResult> zmrResult = new ArrayList<>();
-    zmrResult.add(new RegisterResult(randomBpk, randomIdentifier, randomGivenName, randomFamilyName, randomDate));
-    String newRandomGivenName = randomGivenName + RandomStringUtils.randomAlphabetic(2);
-    zmrResult.add(new RegisterResult(randomBpk, randomIdentifier, newRandomGivenName, randomFamilyName, randomDate));
-    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResult);
-    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
-
-    TaskExecutionException exception = assertThrows(TaskExecutionException.class,
-        () -> task.execute(pendingReq, executionContext));
-
-    Throwable origE = exception.getOriginalException();
-    Assert.assertTrue("Wrong exception", (origE.getCause() instanceof ManualFixNecessaryException));
-  }
-
-
-  /**
-   * Two matches found in ErnP
-   */
-  @Test
-  @DirtiesContext
-  public void testNode101_ManualFixNecessary_b() {
-    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
-    ArrayList<RegisterResult> ernpResult = new ArrayList<>();
-    ernpResult.add(new RegisterResult(randomBpk, randomPseudonym, randomGivenName, randomFamilyName, randomDate));
-    String newRandomGivenName = randomGivenName + RandomStringUtils.randomAlphabetic(2);
-    ernpResult.add(
-        new RegisterResult(randomBpk, randomIdentifier, newRandomGivenName, randomFamilyName, randomDate));
-    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(ernpResult);
-
-    TaskExecutionException exception = assertThrows(TaskExecutionException.class,
-        () -> task.execute(pendingReq, executionContext));
-
-    Throwable origE = exception.getOriginalException();
-    Assert.assertTrue("Wrong exception", (origE.getCause() instanceof ManualFixNecessaryException));
-  }
-
-  /**
-   * One match, no register update needed
-   */
-  @Test
-  @DirtiesContext
-  public void testNode102_UserIdentified_a() throws Exception {
-    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
-    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.singletonList(
-        new RegisterResult(randomBpk, randomIdentifier, randomGivenName, randomFamilyName, randomDate)));
-
-    task.execute(pendingReq, executionContext);
-    String bPk = (String)
-        pendingReq.getSessionData(AuthProcessDataWrapper.class)
-            .getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
-    Assert.assertEquals("Wrong bpk", bPk, randomBpk);
-  }
-
-  /**
-   * One match, no register update needed
-   */
-  @Test
-  @DirtiesContext
-  public void testNode102_UserIdentified_b() throws Exception {
-    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.singletonList(
-        new RegisterResult(randomBpk, randomIdentifier, randomGivenName, randomFamilyName, randomDate)));
-    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
-
-    task.execute(pendingReq, executionContext);
-
-    String bPk = (String)
-        pendingReq.getSessionData(AuthProcessDataWrapper.class)
-            .getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
-    Assert.assertEquals("Wrong bpk", bPk, randomBpk);
-  }
-
-  /**
-   * One match found in ZMR and ErnP with detail search
-   */
-  @Test
-  @DirtiesContext
-  public void testNode103_UserIdentified_IT() throws Exception {
-    String taxNumber = RandomStringUtils.randomNumeric(14);
-    final AuthenticationResponse response = buildDummyAuthResponseRandomPersonIT_Tax(taxNumber);
-    TestRequestImpl pendingReq1 = new TestRequestImpl();
-    pendingReq1.getSessionData(AuthProcessDataWrapper.class)
-        .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
-    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
-    String newRandomIdentifier = randomIdentifier + RandomStringUtils.randomNumeric(2);
-    Mockito.when(zmrClient.searchItSpecific(taxNumber)).thenReturn(Collections.singletonList(
-        new RegisterResult(randomBpk, newRandomIdentifier, randomGivenName, randomFamilyName,
-            randomDate, null, null, taxNumber, null)));
-    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
-    task = new InitialSearchTask(
-        Collections.singletonList(new ItSpecificDetailSearchProcessor(ernpClient, zmrClient)),
-        ernpClient, zmrClient);
-
-    task.execute(pendingReq1, executionContext);
-
-    String bPk = (String)
-        pendingReq1.getSessionData(AuthProcessDataWrapper.class)
-            .getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
-    Assert.assertEquals("Wrong bpk", bPk, randomBpk);
-  }
-
-  /**
-   * Multiple matches found in ZMR and ErnP with detail search
-   */
-  @Test
-  @DirtiesContext
-  public void testNode103_UserIdentified_DE() throws Exception {
-    final AuthenticationResponse response = buildDummyAuthResponseDE(randomGivenName, randomFamilyName,
-        randomPseudonym,
-        randomDate, randomPlaceOfBirth, randomBirthName);
-    TestRequestImpl pendingReq1 = new TestRequestImpl();
-    pendingReq1.getSessionData(AuthProcessDataWrapper.class)
-        .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
-    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
-    Mockito.when(zmrClient.searchDeSpecific(randomGivenName, randomFamilyName, randomDate, randomPlaceOfBirth,
-        randomBirthName))
-        .thenReturn(Collections.singletonList(new RegisterResult(randomBpk, randomIdentifier, randomGivenName,
-            randomFamilyName, randomDate, randomPlaceOfBirth, randomBirthName, null, null)));
-    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
-    task = new InitialSearchTask(
-        Collections.singletonList(new DeSpecificDetailSearchProcessor(ernpClient, zmrClient)),
-        ernpClient, zmrClient);
-
-    task.execute(pendingReq1, executionContext);
-
-    String resultBpk = (String)
-        pendingReq1.getSessionData(AuthProcessDataWrapper.class)
-            .getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
-    Assert.assertEquals("Wrong bpk", resultBpk, randomBpk);
-  }
-
-  /**
-   * Multiple matches found in ZMR and ErnP with detail search
-   */
-  @Test
-  @DirtiesContext
-  public void testNode104_ManualFixNecessary_DE() throws Exception {
-    String newRandomPseudonym = randomPseudonym + RandomStringUtils.randomNumeric(2);
-    String newRandomBpk = randomBpk + RandomStringUtils.randomNumeric(6);
-    final AuthenticationResponse response = buildDummyAuthResponseDE(randomGivenName, randomFamilyName,
-        randomPseudonym,
-        randomDate, randomPlaceOfBirth, randomBirthName);
-    TestRequestImpl pendingReq1 = new TestRequestImpl();
-    pendingReq1.getSessionData(AuthProcessDataWrapper.class)
-        .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
-    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
-    ArrayList<RegisterResult> zmrResultSpecific = new ArrayList<>();
-    zmrResultSpecific.add(
-        new RegisterResult(randomBpk, randomIdentifier, randomGivenName, randomFamilyName, randomDate,
-            randomPlaceOfBirth, randomBirthName, null, null));
-    zmrResultSpecific.add(new RegisterResult(newRandomBpk, newRandomPseudonym, randomGivenName, randomFamilyName, randomDate,
-        randomPlaceOfBirth, randomBirthName, null, null));
-    Mockito.when(zmrClient.searchDeSpecific(randomGivenName, randomFamilyName, randomDate, randomPlaceOfBirth,
-        randomBirthName)).thenReturn(zmrResultSpecific);
-    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
-    task = new InitialSearchTask(
-        Collections.singletonList(new DeSpecificDetailSearchProcessor(ernpClient, zmrClient)),
-        ernpClient, zmrClient);
-
-    TaskExecutionException exception = assertThrows(TaskExecutionException.class,
-        () -> task.execute(pendingReq1, executionContext));
-
-    Throwable origE = exception.getOriginalException();
-    Assert.assertTrue("Wrong exception", (origE.getCause() instanceof ManualFixNecessaryException));
-  }
-
-  /**
-   * Multiple matches found in ZMR and ErnP with detail search
-   */
-  @Test
-  @DirtiesContext
-  public void testNode104_ManualFixNecessary_IT() throws Exception {
-    String randomTaxNumber = RandomStringUtils.randomNumeric(14);
-    final AuthenticationResponse response = buildDummyAuthResponseRandomPersonIT_Tax(randomTaxNumber);
-    TestRequestImpl pendingReq1 = new TestRequestImpl();
-    pendingReq1.getSessionData(AuthProcessDataWrapper.class)
-        .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
-    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
-    ArrayList<RegisterResult> zmrResultSpecific = new ArrayList<>();
-    String randomPseudonym = IT_ST + randomIdentifier + "4";
-    zmrResultSpecific.add(new RegisterResult(randomBpk, randomPseudonym, randomGivenName,
-        randomFamilyName, randomDate, null, null, randomTaxNumber, null));
-    String newRandomPseudonym = IT_ST + randomIdentifier + "5";
-    String newRandomBpk = RandomStringUtils.randomNumeric(6);
-    zmrResultSpecific.add(new RegisterResult(newRandomBpk, newRandomPseudonym, randomGivenName,
-        randomFamilyName, randomDate, null, null, randomTaxNumber, null));
-    Mockito.when(zmrClient.searchItSpecific(randomTaxNumber)).thenReturn(zmrResultSpecific);
-    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
-    task = new InitialSearchTask(
-        Collections.singletonList(new ItSpecificDetailSearchProcessor(ernpClient, zmrClient)),
-        ernpClient, zmrClient);
-
-    TaskExecutionException exception = assertThrows(TaskExecutionException.class,
-        () -> task.execute(pendingReq1, executionContext));
-
-    Throwable origE = exception.getOriginalException();
-    Assert.assertTrue("Wrong exception", (origE.getCause() instanceof ManualFixNecessaryException));
-  }
-
-  /**
-   * NO match found in ZMR and ErnP with Initial search
-   */
-  @Test
-  @DirtiesContext
-  public void testNode105_TemporaryEnd() throws TaskExecutionException {
-    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
-    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
-
-    task.execute(pendingReq, executionContext);
-
-    String bPk = (String)
-        pendingReq.getSessionData(AuthProcessDataWrapper.class)
-            .getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
-    Assert.assertEquals("Wrong bpk", "TODO-Temporary-Endnode-105", bPk);
-  }
-
-
-  @NotNull
-  private AuthenticationResponse buildDummyAuthResponseRandomPerson() throws URISyntaxException {
-    return buildDummyAuthResponse(randomGivenName, randomFamilyName, DE_ST + randomIdentifier, randomDate);
-  }
-
-  private AuthenticationResponse buildDummyAuthResponseRandomPersonIT_Tax(String taxNumber)
-      throws URISyntaxException {
-    return buildDummyAuthResponse(randomGivenName, randomFamilyName, IT_ST + randomIdentifier, randomDate,
-        taxNumber, null, null);
-  }
-
-  @NotNull
-  private AuthenticationResponse buildDummyAuthResponse(String givenName, String familyName, String identifier,
-                                                        String dateOfBirth) throws URISyntaxException {
-    return buildDummyAuthResponse(givenName, familyName, identifier, dateOfBirth, null, null, null);
-  }
-
-  @NotNull
-  private AuthenticationResponse buildDummyAuthResponseDE(String givenName, String familyName, String identifier,
-                                                          String dateOfBirth, String placeOfBirth,
-                                                          String birthName) throws URISyntaxException {
-    return buildDummyAuthResponse(givenName, familyName, identifier, dateOfBirth, null, placeOfBirth, birthName);
-  }
-
-  @NotNull
-  private AuthenticationResponse buildDummyAuthResponse(String givenName, String familyName, String identifier,
-                                                        String dateOfBirth, String taxNumber, String placeOfBirth,
-                                                        String birthName) throws URISyntaxException {
-    ImmutableAttributeMap.Builder builder = ImmutableAttributeMap.builder()
-        .put(generateStringAttribute(Constants.eIDAS_ATTR_PERSONALIDENTIFIER, "ff", "af"), identifier)
-        .put(generateStringAttribute(Constants.eIDAS_ATTR_CURRENTFAMILYNAME, "fff", "aff"), familyName)
-        .put(generateStringAttribute(Constants.eIDAS_ATTR_CURRENTGIVENNAME, "ffff", "afff"), givenName)
-        .put(generateDateTimeAttribute(Constants.eIDAS_ATTR_DATEOFBIRTH, "fffff", "affff"), dateOfBirth);
-    if (taxNumber != null) {
-      builder.put(generateStringAttribute(Constants.eIDAS_ATTR_TAXREFERENCE, "ffffff", "afffff"), taxNumber);
-    }
-    if (birthName != null) {
-      builder.put(generateStringAttribute(Constants.eIDAS_ATTR_BIRTHNAME, "fffffff", "affffff"), birthName);
-    }
-    if (placeOfBirth != null) {
-      builder.put(generateStringAttribute(Constants.eIDAS_ATTR_PLACEOFBIRTH, "ffffffff", "afffffff"),
-          placeOfBirth);
-    }
-    final ImmutableAttributeMap attributeMap = builder.build();
-
-    val b = new AuthenticationResponse.Builder();
-    return b.id("aasdf").issuer("asd").subject("asf").statusCode("200").inResponseTo("asdf").subjectNameIdFormat(
-        "afaf").attributes(attributeMap).build();
-  }
-
-  private AttributeDefinition<Object> generateStringAttribute(String friendlyName, String fragment, String prefix)
-      throws URISyntaxException {
-    return generateAttribute(friendlyName, fragment, prefix, "eu.eidas.auth.commons.attribute.impl" +
-        ".LiteralStringAttributeValueMarshaller");
-  }
-
-  private AttributeDefinition<Object> generateDateTimeAttribute(String friendlyName, String fragment, String prefix)
-      throws URISyntaxException {
-    return generateAttribute(friendlyName, fragment, prefix, "eu.eidas.auth.commons.attribute.impl" +
-        ".DateTimeAttributeValueMarshaller");
-  }
-
-  private AttributeDefinition<Object> generateAttribute(String friendlyName, String fragment, String prefix,
-                                                        String marshaller) throws URISyntaxException {
-    return AttributeDefinition.builder()
-        .friendlyName(friendlyName).nameUri(new URI("ad", "sd", fragment))
-        .personType(PersonType.LEGAL_PERSON).xmlType(new QName("http://saf", "as", prefix))
-        .attributeValueMarshaller(marshaller).build();
-  }
-
-}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskTest.java
new file mode 100644
index 00000000..ac188cda
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskTest.java
@@ -0,0 +1,463 @@
+/*
+ * Copyright 2020 A-SIT Plus GmbH
+ * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
+ * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
+ *
+ * Licensed under the EUPL, Version 1.2 or - as soon they will be approved by
+ * the European Commission - subsequent versions of the EUPL (the "License");
+ * You may not use this work except in compliance with the License.
+ * You may obtain a copy of the License at:
+ * https://joinup.ec.europa.eu/news/understanding-eupl-v12
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" basis,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ *
+ * This product combines work with different licenses. See the "NOTICE" text
+ * file for details on the various modules and licenses.
+ * The "NOTICE" text file is part of the distribution. Any derivative works
+ * that you distribute must include a readable copy of the "NOTICE" text file.
+ */
+
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.test.tasks;
+
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernp.IErnpClient;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.ManualFixNecessaryException;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.DeSpecificDetailSearchProcessor;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.ItSpecificDetailSearchProcessor;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.InitialSearchTask;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.IZmrClient;
+import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
+import at.gv.egiz.eaaf.core.exceptions.EaafStorageException;
+import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
+import at.gv.egiz.eaaf.core.impl.idp.auth.data.AuthProcessDataWrapper;
+import at.gv.egiz.eaaf.core.impl.idp.module.test.TestRequestImpl;
+import at.gv.egiz.eaaf.core.impl.idp.process.ExecutionContextImpl;
+import eu.eidas.auth.commons.attribute.AttributeDefinition;
+import eu.eidas.auth.commons.attribute.ImmutableAttributeMap;
+import eu.eidas.auth.commons.attribute.PersonType;
+import eu.eidas.auth.commons.protocol.impl.AuthenticationResponse;
+import lombok.val;
+import org.apache.commons.lang3.RandomStringUtils;
+import org.jetbrains.annotations.NotNull;
+import org.junit.Assert;
+import org.junit.Before;
+import org.junit.BeforeClass;
+import org.junit.Test;
+import org.junit.runner.RunWith;
+import org.mockito.Mock;
+import org.mockito.Mockito;
+import org.mockito.MockitoAnnotations;
+import org.springframework.mock.web.MockHttpServletRequest;
+import org.springframework.mock.web.MockHttpServletResponse;
+import org.springframework.test.annotation.DirtiesContext;
+import org.springframework.test.annotation.DirtiesContext.ClassMode;
+import org.springframework.test.context.ContextConfiguration;
+import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
+import org.springframework.web.context.request.RequestContextHolder;
+import org.springframework.web.context.request.ServletRequestAttributes;
+
+import javax.xml.namespace.QName;
+import java.io.IOException;
+import java.net.URI;
+import java.net.URISyntaxException;
+import java.util.ArrayList;
+import java.util.Collections;
+import java.util.Random;
+
+import static org.junit.Assert.assertThrows;
+
+@RunWith(SpringJUnit4ClassRunner.class)
+@ContextConfiguration(locations = {
+    "/SpringTest-context_tasks_test.xml",
+    "/SpringTest-context_basic_mapConfig.xml"
+})
+@DirtiesContext(classMode = ClassMode.BEFORE_CLASS)
+public class InitialSearchTaskTest {
+
+  private static final String DE_ST = "de/st/";
+  private static final String IT_ST = "it/st/";
+
+  private InitialSearchTask task;
+  @Mock
+  private IZmrClient zmrClient;
+  @Mock
+  private IErnpClient ernpClient;
+
+  final ExecutionContext executionContext = new ExecutionContextImpl();
+  private TestRequestImpl pendingReq;
+  private final String randomBpk = RandomStringUtils.randomNumeric(6);
+  private final String randomIdentifier = RandomStringUtils.randomNumeric(10);
+  private final String randomPseudonym = DE_ST + randomIdentifier;
+  private final String randomFamilyName = RandomStringUtils.randomAlphabetic(10);
+  private final String randomGivenName = RandomStringUtils.randomAlphabetic(10);
+  private final String randomPlaceOfBirth = RandomStringUtils.randomAlphabetic(10);
+  private final String randomBirthName = RandomStringUtils.randomAlphabetic(10);
+  private final String randomDate = "2011-01-" + (10 + new Random().nextInt(18));
+
+//  /**
+//   * jUnit class initializer.
+//   *
+//   * @throws IOException In case of an error
+//   */
+//  @BeforeClass
+//  public static void classInitializer() throws IOException {
+//    final String current = new java.io.File(".").toURI().toString();
+//    System.setProperty("eidas.ms.configuration", current
+//        + "src/test/resources/config/junit_config_1.properties");
+//  }
+
+  /**
+   * jUnit test set-up.
+   */
+  @Before
+  public void setUp() throws URISyntaxException, EaafStorageException {
+    MockitoAnnotations.initMocks(this);
+    task = new InitialSearchTask(new ArrayList<>(), ernpClient, zmrClient);
+
+    MockHttpServletRequest httpReq = new MockHttpServletRequest("POST", "https://localhost/authhandler");
+    MockHttpServletResponse httpResp = new MockHttpServletResponse();
+    RequestContextHolder.resetRequestAttributes();
+    RequestContextHolder.setRequestAttributes(new ServletRequestAttributes(httpReq, httpResp));
+
+    final AuthenticationResponse response = buildDummyAuthResponseRandomPerson();
+    pendingReq = new TestRequestImpl();
+    pendingReq.getSessionData(AuthProcessDataWrapper.class)
+        .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
+  }
+
+  /**
+   * One match, but register update needed
+   */
+  @Test
+  @DirtiesContext
+  public void testNode100_UserIdentifiedUpdateNecessary_a() throws Exception {
+    String newFirstName = RandomStringUtils.randomAlphabetic(10);
+    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.singletonList(
+        new RegisterResult(randomBpk, randomIdentifier, newFirstName, randomFamilyName, randomDate)));
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
+
+    task.execute(pendingReq, executionContext);
+    String bPk = (String)
+        pendingReq.getSessionData(AuthProcessDataWrapper.class)
+            .getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
+
+    Assert.assertEquals("Wrong bpk", bPk, randomBpk);
+  }
+
+  /**
+   * One match, but register update needed
+   */
+  @Test
+  @DirtiesContext
+  public void testNode100_UserIdentifiedUpdateNecessary_b() throws TaskExecutionException {
+    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
+    String newRandomGivenName = RandomStringUtils.randomAlphabetic(10);
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.singletonList(
+        new RegisterResult(randomBpk, randomIdentifier, newRandomGivenName, randomFamilyName, randomDate)));
+
+    task.execute(pendingReq, executionContext);
+    String bPk = (String)
+        pendingReq.getSessionData(AuthProcessDataWrapper.class)
+            .getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
+
+    Assert.assertEquals("Wrong bpk", bPk, randomBpk);
+  }
+
+  /**
+   * Two matches found in ZMR
+   */
+  @Test
+  @DirtiesContext
+  public void testNode101_ManualFixNecessary_a() {
+    ArrayList<RegisterResult> zmrResult = new ArrayList<>();
+    zmrResult.add(new RegisterResult(randomBpk, randomIdentifier, randomGivenName, randomFamilyName, randomDate));
+    String newRandomGivenName = randomGivenName + RandomStringUtils.randomAlphabetic(2);
+    zmrResult.add(new RegisterResult(randomBpk, randomIdentifier, newRandomGivenName, randomFamilyName, randomDate));
+    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResult);
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
+
+    TaskExecutionException exception = assertThrows(TaskExecutionException.class,
+        () -> task.execute(pendingReq, executionContext));
+
+    Throwable origE = exception.getOriginalException();
+    Assert.assertTrue("Wrong exception", (origE.getCause() instanceof ManualFixNecessaryException));
+  }
+
+
+  /**
+   * Two matches found in ErnP
+   */
+  @Test
+  @DirtiesContext
+  public void testNode101_ManualFixNecessary_b() {
+    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
+    ArrayList<RegisterResult> ernpResult = new ArrayList<>();
+    ernpResult.add(new RegisterResult(randomBpk, randomPseudonym, randomGivenName, randomFamilyName, randomDate));
+    String newRandomGivenName = randomGivenName + RandomStringUtils.randomAlphabetic(2);
+    ernpResult.add(
+        new RegisterResult(randomBpk, randomIdentifier, newRandomGivenName, randomFamilyName, randomDate));
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(ernpResult);
+
+    TaskExecutionException exception = assertThrows(TaskExecutionException.class,
+        () -> task.execute(pendingReq, executionContext));
+
+    Throwable origE = exception.getOriginalException();
+    Assert.assertTrue("Wrong exception", (origE.getCause() instanceof ManualFixNecessaryException));
+  }
+
+  /**
+   * One match, no register update needed
+   */
+  @Test
+  @DirtiesContext
+  public void testNode102_UserIdentified_a() throws Exception {
+    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.singletonList(
+        new RegisterResult(randomBpk, randomIdentifier, randomGivenName, randomFamilyName, randomDate)));
+
+    task.execute(pendingReq, executionContext);
+    String bPk = (String)
+        pendingReq.getSessionData(AuthProcessDataWrapper.class)
+            .getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
+    Assert.assertEquals("Wrong bpk", bPk, randomBpk);
+  }
+
+  /**
+   * One match, no register update needed
+   */
+  @Test
+  @DirtiesContext
+  public void testNode102_UserIdentified_b() throws Exception {
+    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.singletonList(
+        new RegisterResult(randomBpk, randomIdentifier, randomGivenName, randomFamilyName, randomDate)));
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
+
+    task.execute(pendingReq, executionContext);
+
+    String bPk = (String)
+        pendingReq.getSessionData(AuthProcessDataWrapper.class)
+            .getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
+    Assert.assertEquals("Wrong bpk", bPk, randomBpk);
+  }
+
+  /**
+   * One match found in ZMR and ErnP with detail search
+   */
+  @Test
+  @DirtiesContext
+  public void testNode103_UserIdentified_IT() throws Exception {
+    String taxNumber = RandomStringUtils.randomNumeric(14);
+    final AuthenticationResponse response = buildDummyAuthResponseRandomPersonIT_Tax(taxNumber);
+    TestRequestImpl pendingReq1 = new TestRequestImpl();
+    pendingReq1.getSessionData(AuthProcessDataWrapper.class)
+        .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
+    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
+    String newRandomIdentifier = randomIdentifier + RandomStringUtils.randomNumeric(2);
+    Mockito.when(zmrClient.searchItSpecific(taxNumber)).thenReturn(Collections.singletonList(
+        new RegisterResult(randomBpk, newRandomIdentifier, randomGivenName, randomFamilyName,
+            randomDate, null, null, taxNumber, null)));
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
+    task = new InitialSearchTask(
+        Collections.singletonList(new ItSpecificDetailSearchProcessor(ernpClient, zmrClient)),
+        ernpClient, zmrClient);
+
+    task.execute(pendingReq1, executionContext);
+
+    String bPk = (String)
+        pendingReq1.getSessionData(AuthProcessDataWrapper.class)
+            .getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
+    Assert.assertEquals("Wrong bpk", bPk, randomBpk);
+  }
+
+  /**
+   * Multiple matches found in ZMR and ErnP with detail search
+   */
+  @Test
+  @DirtiesContext
+  public void testNode103_UserIdentified_DE() throws Exception {
+    final AuthenticationResponse response = buildDummyAuthResponseDE(randomGivenName, randomFamilyName,
+        randomPseudonym,
+        randomDate, randomPlaceOfBirth, randomBirthName);
+    TestRequestImpl pendingReq1 = new TestRequestImpl();
+    pendingReq1.getSessionData(AuthProcessDataWrapper.class)
+        .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
+    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
+    Mockito.when(zmrClient.searchDeSpecific(randomGivenName, randomFamilyName, randomDate, randomPlaceOfBirth,
+        randomBirthName))
+        .thenReturn(Collections.singletonList(new RegisterResult(randomBpk, randomIdentifier, randomGivenName,
+            randomFamilyName, randomDate, randomPlaceOfBirth, randomBirthName, null, null)));
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
+    task = new InitialSearchTask(
+        Collections.singletonList(new DeSpecificDetailSearchProcessor(ernpClient, zmrClient)),
+        ernpClient, zmrClient);
+
+    task.execute(pendingReq1, executionContext);
+
+    String resultBpk = (String)
+        pendingReq1.getSessionData(AuthProcessDataWrapper.class)
+            .getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
+    Assert.assertEquals("Wrong bpk", resultBpk, randomBpk);
+  }
+
+  /**
+   * Multiple matches found in ZMR and ErnP with detail search
+   */
+  @Test
+  @DirtiesContext
+  public void testNode104_ManualFixNecessary_DE() throws Exception {
+    String newRandomPseudonym = randomPseudonym + RandomStringUtils.randomNumeric(2);
+    String newRandomBpk = randomBpk + RandomStringUtils.randomNumeric(6);
+    final AuthenticationResponse response = buildDummyAuthResponseDE(randomGivenName, randomFamilyName,
+        randomPseudonym,
+        randomDate, randomPlaceOfBirth, randomBirthName);
+    TestRequestImpl pendingReq1 = new TestRequestImpl();
+    pendingReq1.getSessionData(AuthProcessDataWrapper.class)
+        .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
+    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
+    ArrayList<RegisterResult> zmrResultSpecific = new ArrayList<>();
+    zmrResultSpecific.add(
+        new RegisterResult(randomBpk, randomIdentifier, randomGivenName, randomFamilyName, randomDate,
+            randomPlaceOfBirth, randomBirthName, null, null));
+    zmrResultSpecific.add(new RegisterResult(newRandomBpk, newRandomPseudonym, randomGivenName, randomFamilyName, randomDate,
+        randomPlaceOfBirth, randomBirthName, null, null));
+    Mockito.when(zmrClient.searchDeSpecific(randomGivenName, randomFamilyName, randomDate, randomPlaceOfBirth,
+        randomBirthName)).thenReturn(zmrResultSpecific);
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
+    task = new InitialSearchTask(
+        Collections.singletonList(new DeSpecificDetailSearchProcessor(ernpClient, zmrClient)),
+        ernpClient, zmrClient);
+
+    TaskExecutionException exception = assertThrows(TaskExecutionException.class,
+        () -> task.execute(pendingReq1, executionContext));
+
+    Throwable origE = exception.getOriginalException();
+    Assert.assertTrue("Wrong exception", (origE.getCause() instanceof ManualFixNecessaryException));
+  }
+
+  /**
+   * Multiple matches found in ZMR and ErnP with detail search
+   */
+  @Test
+  @DirtiesContext
+  public void testNode104_ManualFixNecessary_IT() throws Exception {
+    String randomTaxNumber = RandomStringUtils.randomNumeric(14);
+    final AuthenticationResponse response = buildDummyAuthResponseRandomPersonIT_Tax(randomTaxNumber);
+    TestRequestImpl pendingReq1 = new TestRequestImpl();
+    pendingReq1.getSessionData(AuthProcessDataWrapper.class)
+        .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
+    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
+    ArrayList<RegisterResult> zmrResultSpecific = new ArrayList<>();
+    String randomPseudonym = IT_ST + randomIdentifier + "4";
+    zmrResultSpecific.add(new RegisterResult(randomBpk, randomPseudonym, randomGivenName,
+        randomFamilyName, randomDate, null, null, randomTaxNumber, null));
+    String newRandomPseudonym = IT_ST + randomIdentifier + "5";
+    String newRandomBpk = RandomStringUtils.randomNumeric(6);
+    zmrResultSpecific.add(new RegisterResult(newRandomBpk, newRandomPseudonym, randomGivenName,
+        randomFamilyName, randomDate, null, null, randomTaxNumber, null));
+    Mockito.when(zmrClient.searchItSpecific(randomTaxNumber)).thenReturn(zmrResultSpecific);
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
+    task = new InitialSearchTask(
+        Collections.singletonList(new ItSpecificDetailSearchProcessor(ernpClient, zmrClient)),
+        ernpClient, zmrClient);
+
+    TaskExecutionException exception = assertThrows(TaskExecutionException.class,
+        () -> task.execute(pendingReq1, executionContext));
+
+    Throwable origE = exception.getOriginalException();
+    Assert.assertTrue("Wrong exception", (origE.getCause() instanceof ManualFixNecessaryException));
+  }
+
+  /**
+   * NO match found in ZMR and ErnP with Initial search
+   */
+  @Test
+  @DirtiesContext
+  public void testNode105_TemporaryEnd() throws TaskExecutionException {
+    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
+
+    task.execute(pendingReq, executionContext);
+
+    String bPk = (String)
+        pendingReq.getSessionData(AuthProcessDataWrapper.class)
+            .getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
+    Assert.assertEquals("Wrong bpk", "TODO-Temporary-Endnode-105", bPk);
+  }
+
+
+  @NotNull
+  private AuthenticationResponse buildDummyAuthResponseRandomPerson() throws URISyntaxException {
+    return buildDummyAuthResponse(randomGivenName, randomFamilyName, DE_ST + randomIdentifier, randomDate);
+  }
+
+  private AuthenticationResponse buildDummyAuthResponseRandomPersonIT_Tax(String taxNumber)
+      throws URISyntaxException {
+    return buildDummyAuthResponse(randomGivenName, randomFamilyName, IT_ST + randomIdentifier, randomDate,
+        taxNumber, null, null);
+  }
+
+  @NotNull
+  private AuthenticationResponse buildDummyAuthResponse(String givenName, String familyName, String identifier,
+                                                        String dateOfBirth) throws URISyntaxException {
+    return buildDummyAuthResponse(givenName, familyName, identifier, dateOfBirth, null, null, null);
+  }
+
+  @NotNull
+  private AuthenticationResponse buildDummyAuthResponseDE(String givenName, String familyName, String identifier,
+                                                          String dateOfBirth, String placeOfBirth,
+                                                          String birthName) throws URISyntaxException {
+    return buildDummyAuthResponse(givenName, familyName, identifier, dateOfBirth, null, placeOfBirth, birthName);
+  }
+
+  @NotNull
+  private AuthenticationResponse buildDummyAuthResponse(String givenName, String familyName, String identifier,
+                                                        String dateOfBirth, String taxNumber, String placeOfBirth,
+                                                        String birthName) throws URISyntaxException {
+    ImmutableAttributeMap.Builder builder = ImmutableAttributeMap.builder()
+        .put(generateStringAttribute(Constants.eIDAS_ATTR_PERSONALIDENTIFIER, "ff", "af"), identifier)
+        .put(generateStringAttribute(Constants.eIDAS_ATTR_CURRENTFAMILYNAME, "fff", "aff"), familyName)
+        .put(generateStringAttribute(Constants.eIDAS_ATTR_CURRENTGIVENNAME, "ffff", "afff"), givenName)
+        .put(generateDateTimeAttribute(Constants.eIDAS_ATTR_DATEOFBIRTH, "fffff", "affff"), dateOfBirth);
+    if (taxNumber != null) {
+      builder.put(generateStringAttribute(Constants.eIDAS_ATTR_TAXREFERENCE, "ffffff", "afffff"), taxNumber);
+    }
+    if (birthName != null) {
+      builder.put(generateStringAttribute(Constants.eIDAS_ATTR_BIRTHNAME, "fffffff", "affffff"), birthName);
+    }
+    if (placeOfBirth != null) {
+      builder.put(generateStringAttribute(Constants.eIDAS_ATTR_PLACEOFBIRTH, "ffffffff", "afffffff"),
+          placeOfBirth);
+    }
+    final ImmutableAttributeMap attributeMap = builder.build();
+
+    val b = new AuthenticationResponse.Builder();
+    return b.id("aasdf").issuer("asd").subject("asf").statusCode("200").inResponseTo("asdf").subjectNameIdFormat(
+        "afaf").attributes(attributeMap).build();
+  }
+
+  private AttributeDefinition<Object> generateStringAttribute(String friendlyName, String fragment, String prefix)
+      throws URISyntaxException {
+    return generateAttribute(friendlyName, fragment, prefix, "eu.eidas.auth.commons.attribute.impl" +
+        ".LiteralStringAttributeValueMarshaller");
+  }
+
+  private AttributeDefinition<Object> generateDateTimeAttribute(String friendlyName, String fragment, String prefix)
+      throws URISyntaxException {
+    return generateAttribute(friendlyName, fragment, prefix, "eu.eidas.auth.commons.attribute.impl" +
+        ".DateTimeAttributeValueMarshaller");
+  }
+
+  private AttributeDefinition<Object> generateAttribute(String friendlyName, String fragment, String prefix,
+                                                        String marshaller) throws URISyntaxException {
+    return AttributeDefinition.builder()
+        .friendlyName(friendlyName).nameUri(new URI("ad", "sd", fragment))
+        .personType(PersonType.LEGAL_PERSON).xmlType(new QName("http://saf", "as", prefix))
+        .attributeValueMarshaller(marshaller).build();
+  }
+
+}
-- 
cgit v1.2.3


From de03adfbe79968f65bb711d7b3a583eeb1054140 Mon Sep 17 00:00:00 2001
From: Alexander Marsalek <amarsalek@iaik.tugraz.at>
Date: Mon, 1 Feb 2021 09:42:38 +0100
Subject: more transitions & tests

---
 .../specific/modules/auth/eidas/v2/Constants.java  |   8 +
 .../v2/exception/InvalidUserInputException.java    |  33 +++
 .../IdAustriaAuthPvpConfiguration.java             | 121 ++++++++++
 .../IdAustriaClientAuthCredentialProvider.java     |   2 +-
 .../GenerateMobilePhoneSignatureRequestTask.java   |   3 -
 .../auth/eidas/v2/tasks/InitialSearchTask.java     |   6 +-
 .../ReceiveGuiAustrianResidenceResponseTask.java   |  79 ++++--
 .../eidas/v2/tasks/ReceiveGuiResponseTask.java     |  16 +-
 ...eSignatureResponseAndSearchInRegistersTask.java | 266 ++++++++++-----------
 .../resources/eIDAS.Authentication.process.xml     |   8 +-
 .../src/main/resources/eidas_v2_auth.beans.xml     |  12 +-
 .../IdAustriaClientAuthMetadataControllerTest.java | 169 +++++++++++++
 .../eidas/v2/test/tasks/InitialSearchTaskTest.java | 131 ++++++++--
 .../EidasRequestPreProcessingFirstTest.java        |   7 +-
 .../resources/SpringTest-context_tasks_test.xml    |  27 +++
 .../resources/config/junit_config_1.properties     |  34 ++-
 .../config/junit_config_1_springboot.properties    | 119 +++++++++
 .../src/test/resources/config/keys/junit_test.jks  | Bin 0 -> 8410 bytes
 .../src/test/resources/config/keys/teststore.jks   | Bin 0 -> 2028 bytes
 .../src/test/resources/keystore/junit_test.jks     | Bin 0 -> 8410 bytes
 20 files changed, 835 insertions(+), 206 deletions(-)
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/exception/InvalidUserInputException.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaAuthPvpConfiguration.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/idaustriaclient/IdAustriaClientAuthMetadataControllerTest.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/junit_config_1_springboot.properties
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/keys/junit_test.jks
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/keys/teststore.jks
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/test/resources/keystore/junit_test.jks

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java
index 858637e9..ba57b28e 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java
@@ -180,4 +180,12 @@ public class Constants {
 
   public static final String COUNTRY_CODE_DE = "DE";
   public static final String COUNTRY_CODE_IT = "IT";
+
+  public static final String TRANSITION_TO_CREATE_NEW_ERNB_ENTRY_TASK = "TASK_CreateNewErnpEntryTask";
+  public static final String TRANSITION_TO_CREATE_GENERATE_GUI_TASK = "TASK_GenerateGuiTask";
+  public static final String TRANSITION_TO_GENERATE_GUI_QUERY_AUSTRIAN_RESIDENCE_TASK =
+      "Task_GenerateGuiQueryAustrianResidenceTask";
+  public static final String TRANSITION_TO_GENERATE_MOBILE_PHONE_SIGNATURE_REQUEST_TASK =
+      "TASK_GenerateMobilePhoneSignatureRequestTask";
+  public static final String TRANSITION_TO_GENERATE_EIDAS_LOGIN = "TASK_TODO";
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/exception/InvalidUserInputException.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/exception/InvalidUserInputException.java
new file mode 100644
index 00000000..f28d8afa
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/exception/InvalidUserInputException.java
@@ -0,0 +1,33 @@
+/*
+ * Copyright 2020 A-SIT Plus GmbH
+ * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
+ * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
+ *
+ * Licensed under the EUPL, Version 1.2 or - as soon they will be approved by
+ * the European Commission - subsequent versions of the EUPL (the "License");
+ * You may not use this work except in compliance with the License.
+ * You may obtain a copy of the License at:
+ * https://joinup.ec.europa.eu/news/understanding-eupl-v12
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" basis,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ *
+ * This product combines work with different licenses. See the "NOTICE" text
+ * file for details on the various modules and licenses.
+ * The "NOTICE" text file is part of the distribution. Any derivative works
+ * that you distribute must include a readable copy of the "NOTICE" text file.
+ */
+
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.exception;
+
+public class InvalidUserInputException extends EidasSAuthenticationException {
+  private static final long serialVersionUID = 1L;
+
+  public InvalidUserInputException() {
+    super("eidas.10", null);
+  }
+
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaAuthPvpConfiguration.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaAuthPvpConfiguration.java
new file mode 100644
index 00000000..30c8b65f
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaAuthPvpConfiguration.java
@@ -0,0 +1,121 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient;
+
+import at.gv.egiz.eaaf.core.api.idp.IConfiguration;
+import at.gv.egiz.eaaf.core.exceptions.EaafConfigurationException;
+import at.gv.egiz.eaaf.core.exceptions.EaafException;
+import at.gv.egiz.eaaf.modules.pvp2.api.IPvp2BasicConfiguration;
+import at.gv.egiz.eaaf.modules.pvp2.impl.utils.Saml2Utils;
+import org.apache.commons.lang3.StringUtils;
+import org.opensaml.saml.saml2.metadata.ContactPerson;
+import org.opensaml.saml.saml2.metadata.ContactPersonTypeEnumeration;
+import org.opensaml.saml.saml2.metadata.EmailAddress;
+import org.opensaml.saml.saml2.metadata.GivenName;
+import org.opensaml.saml.saml2.metadata.Organization;
+import org.opensaml.saml.saml2.metadata.OrganizationDisplayName;
+import org.opensaml.saml.saml2.metadata.OrganizationName;
+import org.opensaml.saml.saml2.metadata.OrganizationURL;
+import org.opensaml.saml.saml2.metadata.SurName;
+import org.springframework.beans.factory.annotation.Autowired;
+
+import java.util.Arrays;
+import java.util.List;
+
+public class IdAustriaAuthPvpConfiguration implements IPvp2BasicConfiguration {
+
+  private static final String DEFAULT_XML_LANG = "en";
+
+  @Autowired
+  private IConfiguration basicConfig;
+
+  @Override
+  public String getIdpEntityId(String authUrl) throws EaafException {
+    return authUrl + IdAustriaClientAuthConstants.ENDPOINT_METADATA;
+
+  }
+
+  @Override
+  public String getIdpSsoPostService(String authUrl) throws EaafException {
+    return null;
+
+  }
+
+  @Override
+  public String getIdpSsoRedirectService(String authUrl) throws EaafException {
+    return null;
+
+  }
+
+  @Override
+  public String getIdpSsoSoapService(String extractAuthUrlFromRequest) throws EaafException {
+    return null;
+
+  }
+
+  @Override
+  public List<ContactPerson> getIdpContacts() throws EaafException {
+    final ContactPerson contactPerson = Saml2Utils.createSamlObject(ContactPerson.class);
+    final GivenName givenName = Saml2Utils.createSamlObject(GivenName.class);
+    final SurName surname = Saml2Utils.createSamlObject(SurName.class);
+    final EmailAddress emailAddress = Saml2Utils.createSamlObject(EmailAddress.class);
+
+    givenName.setName(getAndVerifyFromConfiguration(
+        IdAustriaClientAuthConstants.CONFIG_PROPS_METADATA_CONTACT_GIVENNAME));
+    surname.setName(getAndVerifyFromConfiguration(
+        IdAustriaClientAuthConstants.CONFIG_PROPS_METADATA_CONTACT_SURNAME));
+    emailAddress.setAddress(getAndVerifyFromConfiguration(
+        IdAustriaClientAuthConstants.CONFIG_PROPS_METADATA_CONTACT_EMAIL));
+
+    contactPerson.setType(ContactPersonTypeEnumeration.TECHNICAL);
+    contactPerson.setGivenName(givenName);
+    contactPerson.setSurName(surname);
+    contactPerson.getEmailAddresses().add(emailAddress);
+
+    return Arrays.asList(contactPerson);
+
+  }
+
+  @Override
+  public Organization getIdpOrganisation() throws EaafException {
+    final Organization organisation = Saml2Utils.createSamlObject(Organization.class);
+    final OrganizationName orgName = Saml2Utils.createSamlObject(OrganizationName.class);
+    final OrganizationDisplayName orgDisplayName = Saml2Utils.createSamlObject(OrganizationDisplayName.class);
+    final OrganizationURL orgUrl = Saml2Utils.createSamlObject(OrganizationURL.class);
+
+    orgName.setXMLLang(DEFAULT_XML_LANG);
+    orgName.setValue(getAndVerifyFromConfiguration(
+        IdAustriaClientAuthConstants.CONFIG_PROPS_METADATA_ORGANISATION_NAME));
+
+    orgDisplayName.setXMLLang(DEFAULT_XML_LANG);
+    orgDisplayName.setValue(getAndVerifyFromConfiguration(
+        IdAustriaClientAuthConstants.CONFIG_PROPS_METADATA_ORGANISATION_FRIENDLYNAME));
+
+    orgUrl.setXMLLang(DEFAULT_XML_LANG);
+    orgUrl.setValue(getAndVerifyFromConfiguration(
+        IdAustriaClientAuthConstants.CONFIG_PROPS_METADATA_ORGANISATION_URL));
+
+
+    organisation.getOrganizationNames().add(orgName);
+    organisation.getDisplayNames().add(orgDisplayName);
+    organisation.getURLs().add(orgUrl);
+
+    return organisation;
+  }
+
+
+  @Override
+  public IConfiguration getBasicConfiguration() {
+    return basicConfig;
+
+  }
+
+  private String getAndVerifyFromConfiguration(String configKey) throws EaafConfigurationException {
+    final String value = basicConfig.getBasicConfiguration(configKey);
+    if (StringUtils.isEmpty(value)) {
+      throw new EaafConfigurationException("module.eidasauth.00",
+          new Object[]{configKey});
+
+    }
+
+    return value;
+  }
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthCredentialProvider.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthCredentialProvider.java
index 69386194..2608cad1 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthCredentialProvider.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthCredentialProvider.java
@@ -19,7 +19,7 @@ public class IdAustriaClientAuthCredentialProvider extends AbstractCredentialPro
   @Autowired
   IConfiguration authConfig;
 
-  private static final String FRIENDLYNAME = "eIDAS centrial authentication";
+  private static final String FRIENDLYNAME = "ID Austria authentication";
 
   @Override
   public KeyStoreConfiguration getBasicKeyStoreConfig() throws EaafConfigurationException {
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateMobilePhoneSignatureRequestTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateMobilePhoneSignatureRequestTask.java
index 546a2039..af1ef6f7 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateMobilePhoneSignatureRequestTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateMobilePhoneSignatureRequestTask.java
@@ -82,9 +82,6 @@ public class GenerateMobilePhoneSignatureRequestTask extends AbstractAuthServlet
       log.trace("Starting GenerateMobilePhoneSignatureRequestTask");
       //step 15a
 
-      //final IAhSpConfiguration spConfig = pendingReq.getServiceProviderConfiguration(
-      //    IAhSpConfiguration.class);
-
       // get entityID for ms-specific eIDAS node
       final String msNodeEntityID = "TODO";
 
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
index 99da21a1..2e754e14 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
@@ -207,13 +207,13 @@ public class InitialSearchTask extends AbstractAuthServletTask {
 
     MergedRegisterSearchResult mdsSearchResult = new MergedRegisterSearchResult(resultsZmr, resultsErnp);
     if (mdsSearchResult.getResultCount() == 0) {
-      executionContext.put("TASK_CreateNewErnpEntryTask", true);
+      executionContext.put(Constants.TRANSITION_TO_CREATE_NEW_ERNB_ENTRY_TASK, true);
     } else {
-      executionContext.put("TASK_GenerateGuiTask", true);
+      executionContext.put(Constants.TRANSITION_TO_CREATE_GENERATE_GUI_TASK, true);
     }
 
     //TODO implement next phase and return correct value
-    return "TODO-Temporary-Endnode-105";
+    return null;
   }
 
   private MergedRegisterSearchResult searchInZmrAndErnp(String personIdentifier) {
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveGuiAustrianResidenceResponseTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveGuiAustrianResidenceResponseTask.java
index 34fbf507..977262bb 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveGuiAustrianResidenceResponseTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveGuiAustrianResidenceResponseTask.java
@@ -23,7 +23,9 @@
 
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks;
 
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SelectedLoginMethod;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.InvalidUserInputException;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.IZmrClient;
 import at.gv.egiz.eaaf.core.api.data.EaafConstants;
 import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
 import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
@@ -46,33 +48,70 @@ import java.util.Enumeration;
 @Component("ReceiveGuiAustrianResidenceResponseTask")
 public class ReceiveGuiAustrianResidenceResponseTask extends AbstractAuthServletTask {
 
-  final String loginMethod = "loginSelection";
+  final String formerResidenceAvailableParameterName = "formerResidenceAvailable";
+  final String streetParameterName = "street";
+  final String zipCodeParameterName = "zipcode";
+  final String cityParameterName = "city";
+  private final IZmrClient zmrClient;
+
+  public ReceiveGuiAustrianResidenceResponseTask(IZmrClient zmrClient) {
+    this.zmrClient = zmrClient;
+  }
 
   //TODO
   @Override
   public void execute(ExecutionContext executionContext, HttpServletRequest request, HttpServletResponse response)
       throws TaskExecutionException {
-    try {
-      log.trace("Starting ReceiveGuiAustrianResidenceResponseTask");
-      // set parameter execution context
-      final Enumeration<String> reqParamNames = request.getParameterNames();
-      while (reqParamNames.hasMoreElements()) {
-        final String paramName = reqParamNames.nextElement();
-        if (StringUtils.isNotEmpty(paramName)
-            && !EaafConstants.PROCESS_ENGINE_PENDINGREQUESTID.equalsIgnoreCase(paramName)
-            && loginMethod.equalsIgnoreCase(paramName)) {
 
-          String value = StringEscapeUtils.escapeHtml(request.getParameter(paramName));
-          SelectedLoginMethod selection = SelectedLoginMethod.valueOf(value);
-          executionContext.put(loginMethod, selection);
-
-        }
+    log.trace("Starting ReceiveGuiAustrianResidenceResponseTask");
+    // set parameter execution context
+    final Enumeration<String> reqParamNames = request.getParameterNames();
+    String street = null;
+    String city = null;
+    String zipcode = null;
+    Boolean formerResidenceAvailable = false;
+    while (reqParamNames.hasMoreElements()) {
+      final String paramName = reqParamNames.nextElement();
+      if (StringUtils.isNotEmpty(paramName)
+          && !EaafConstants.PROCESS_ENGINE_PENDINGREQUESTID.equalsIgnoreCase(paramName)
+          && formerResidenceAvailableParameterName.equalsIgnoreCase(paramName)) {
+        formerResidenceAvailable =
+            Boolean.parseBoolean(StringEscapeUtils.escapeHtml(request.getParameter(paramName)));
+      }
+      if (StringUtils.isNotEmpty(paramName)
+          && !EaafConstants.PROCESS_ENGINE_PENDINGREQUESTID.equalsIgnoreCase(paramName)
+          && streetParameterName.equalsIgnoreCase(paramName)) {
+        street = StringEscapeUtils.escapeHtml(request.getParameter(paramName));
+      }
+      if (StringUtils.isNotEmpty(paramName)
+          && !EaafConstants.PROCESS_ENGINE_PENDINGREQUESTID.equalsIgnoreCase(paramName)
+          && cityParameterName.equalsIgnoreCase(paramName)) {
+        city = StringEscapeUtils.escapeHtml(request.getParameter(paramName));
+      }
+      if (StringUtils.isNotEmpty(paramName)
+          && !EaafConstants.PROCESS_ENGINE_PENDINGREQUESTID.equalsIgnoreCase(paramName)
+          && zipCodeParameterName.equalsIgnoreCase(paramName)) {
+        zipcode = StringEscapeUtils.escapeHtml(request.getParameter(paramName));
       }
-
-    } catch (final Exception e) {
-      log.error("Parsing selected login method FAILED.", e);
-      throw new TaskExecutionException(pendingReq, "Parsing selected login method FAILED.", e);
     }
+    if (formerResidenceAvailable) {
+      //step 18
+      if (street.isEmpty() || city.isEmpty() || zipcode.isEmpty()) {
+        //form should ensure that mandatory fields are field =>
+        //this can never happen, expect somebody manipulated the response
+        throw new TaskExecutionException(pendingReq, "Invalid user input", new InvalidUserInputException());
+      }
+      step18_RegisterSearch(street, city, zipcode);//TODO also MDS?
+    } else {
+      //step 20 or for now (phase 1) step 9
+      executionContext.put(Constants.TRANSITION_TO_CREATE_NEW_ERNB_ENTRY_TASK, true);
+    }
+
+
+  }
+
+  private void step18_RegisterSearch(String street, String city, String zipcode) {
+    System.out.println(street + city + zipcode + zmrClient);//TODO
   }
 
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveGuiResponseTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveGuiResponseTask.java
index fa787792..f8f22ce2 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveGuiResponseTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveGuiResponseTask.java
@@ -23,7 +23,9 @@
 
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks;
 
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SelectedLoginMethod;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.InvalidUserInputException;
 import at.gv.egiz.eaaf.core.api.data.EaafConstants;
 import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
 import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
@@ -62,7 +64,19 @@ public class ReceiveGuiResponseTask extends AbstractAuthServletTask {
           String value = StringEscapeUtils.escapeHtml(request.getParameter(paramName));
           SelectedLoginMethod selection = SelectedLoginMethod.valueOf(value);
           executionContext.put(loginMethod, selection);
-
+          switch (selection) {
+            case EIDAS_LOGIN:
+              executionContext.put(Constants.TRANSITION_TO_GENERATE_EIDAS_LOGIN, true);
+              break;
+            case MOBILE_PHONE_SIGNATURE_LOGIN:
+              executionContext.put(Constants.TRANSITION_TO_GENERATE_MOBILE_PHONE_SIGNATURE_REQUEST_TASK, true);
+              break;
+            case NO_OTHER_LOGIN:
+              executionContext.put(Constants.TRANSITION_TO_GENERATE_GUI_QUERY_AUSTRIAN_RESIDENCE_TASK, true);
+              break;
+            default:
+              throw new InvalidUserInputException();
+          }
         }
       }
     } catch (final Exception e) {
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask.java
index 9d30b581..8b58f2e1 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask.java
@@ -35,14 +35,13 @@ import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustri
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthMetadataProvider;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.Utils;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.IZmrClient;
-import at.gv.egiz.eaaf.core.api.data.ExtendedPvpAttributeDefinitions;
+import at.gv.egiz.eaaf.core.api.data.PvpAttributeDefinitions;
 import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
 import at.gv.egiz.eaaf.core.exceptions.EaafBuilderException;
 import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
 import at.gv.egiz.eaaf.core.impl.data.Pair;
 import at.gv.egiz.eaaf.core.impl.idp.auth.data.AuthProcessDataWrapper;
 import at.gv.egiz.eaaf.core.impl.idp.auth.modules.AbstractAuthServletTask;
-import at.gv.egiz.eaaf.core.impl.idp.controller.protocols.RequestImpl;
 import at.gv.egiz.eaaf.modules.pvp2.api.binding.IDecoder;
 import at.gv.egiz.eaaf.modules.pvp2.exception.CredentialsNotAvailableException;
 import at.gv.egiz.eaaf.modules.pvp2.exception.SamlAssertionValidationExeption;
@@ -68,12 +67,13 @@ import org.opensaml.saml.saml2.metadata.IDPSSODescriptor;
 import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.stereotype.Component;
 
-import javax.naming.ConfigurationException;
 import javax.servlet.http.HttpServletRequest;
 import javax.servlet.http.HttpServletResponse;
 import javax.xml.transform.TransformerException;
 import java.io.IOException;
+import java.util.HashMap;
 import java.util.List;
+import java.util.Set;
 
 /**
  * Task that searches ErnB and ZMR before adding person to SZR.
@@ -132,140 +132,120 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask extends
 
       InboundMessage msg = null;
 
-      try {
+      IDecoder decoder = null;
+      EaafUriCompare comperator = null;
+      // select Response Binding
+      if (request.getMethod().equalsIgnoreCase("POST")) {
+        decoder = new PostBinding();
+        comperator = new EaafUriCompare(pendingReq.getAuthUrl() + IdAustriaClientAuthConstants.ENDPOINT_POST);
+        log.trace("Receive PVP Response from 'ID Austria node', by using POST-Binding.");
 
-        IDecoder decoder = null;
-        EaafUriCompare comperator = null;
-        // select Response Binding
-        if (request.getMethod().equalsIgnoreCase("POST")) {
-          decoder = new PostBinding();
-          comperator = new EaafUriCompare(pendingReq.getAuthUrl() + IdAustriaClientAuthConstants.ENDPOINT_POST);
-          log.trace("Receive PVP Response from 'ID Austria node', by using POST-Binding.");
+      } else if (request.getMethod().equalsIgnoreCase("GET")) {
+        decoder = new RedirectBinding();
+        comperator = new EaafUriCompare(pendingReq.getAuthUrl()
+            + IdAustriaClientAuthConstants.ENDPOINT_REDIRECT);
+        log.trace("Receive PVP Response from 'ID Austria node', by using Redirect-Binding.");
 
-        } else if (request.getMethod().equalsIgnoreCase("GET")) {
-          decoder = new RedirectBinding();
-          comperator = new EaafUriCompare(pendingReq.getAuthUrl()
-              + IdAustriaClientAuthConstants.ENDPOINT_REDIRECT);
-          log.trace("Receive PVP Response from 'ID Austria node', by using Redirect-Binding.");
-
-        } else {
-          log.warn("Receive PVP Response, but Binding ("
-              + request.getMethod() + ") is not supported.");
-          throw new AuthnResponseValidationException(ERROR_PVP_03, new Object[]{
-              IdAustriaClientAuthConstants.MODULE_NAME_FOR_LOGGING});
-
-        }
-
-        // decode PVP response object
-        msg = (InboundMessage) decoder.decode(
-            request, response, metadataProvider, IDPSSODescriptor.DEFAULT_ELEMENT_NAME,
-            comperator);
-
-        // validate response signature
-        if (!msg.isVerified()) {
-          samlVerificationEngine.verify(msg, TrustEngineFactory.getSignatureKnownKeysTrustEngine(
-              metadataProvider));
-          msg.setVerified(true);
-
-        }
-
-        // validate assertion
-        final Pair<PvpSProfileResponse, Boolean> processedMsg =
-            preProcessAuthResponse((PvpSProfileResponse) msg);
-
-        //check if SAML2 response contains user-stop decision
-        if (processedMsg.getSecond()) {
-          stopProcessFromUserDecision(executionContext, request, response);
-
-        } else {
-          // validate entityId of response
-          final String msNodeEntityID = authConfig.getBasicConfiguration(
-              IdAustriaClientAuthConstants.CONFIG_PROPS_NODE_ENTITYID);
-          final String respEntityId = msg.getEntityID();
-          if (!msNodeEntityID.equals(respEntityId)) {
-            log.warn("Response Issuer is not a 'ms-specific eIDAS node'. Stopping eIDAS authentication ...");
-            throw new AuthnResponseValidationException(ERROR_PVP_08,
-                new Object[]{IdAustriaClientAuthConstants.MODULE_NAME_FOR_LOGGING,
-                    msg.getEntityID()});
-
-          }
+      } else {
+        log.warn("Receive PVP Response, but Binding ("
+            + request.getMethod() + ") is not supported.");
+        throw new AuthnResponseValidationException(ERROR_PVP_03, new Object[]{
+            IdAustriaClientAuthConstants.MODULE_NAME_FOR_LOGGING});
 
-          // initialize Attribute extractor
-          final AssertionAttributeExtractor extractor =
-              new AssertionAttributeExtractor(processedMsg.getFirst().getResponse());
+      }
 
-          getAuthDataFromInterfederation(extractor);
+      // decode PVP response object
+      msg = (InboundMessage) decoder.decode(
+          request, response, metadataProvider, IDPSSODescriptor.DEFAULT_ELEMENT_NAME,
+          comperator);
 
-          // set NeedConsent to false, because user gives consont during authentication
-          pendingReq.setNeedUserConsent(false);
+      // validate response signature
+      if (!msg.isVerified()) {
+        samlVerificationEngine.verify(msg, TrustEngineFactory.getSignatureKnownKeysTrustEngine(
+            metadataProvider));
+        msg.setVerified(true);
 
-          // store pending-request
-          requestStoreage.storePendingRequest(pendingReq);
+      }
 
-          //set E-ID process flag to execution context
-          //          final AhAuthProcessDataWrapper session = pendingReq.getSessionData(
-          //              AhAuthProcessDataWrapper.class);
-          //          executionContext.put(AuthHandlerConstants.PROCESSCONTEXT_WAS_EID_PROCESS, session.isEidProcess());
-          //          executionContext.put(AuthHandlerConstants.HTTP_PARAM_USE_MANDATES, session.isMandateUsed());
+      // validate assertion
+      final Pair<PvpSProfileResponse, Boolean> processedMsg =
+          preProcessAuthResponse((PvpSProfileResponse) msg);
 
+      //check if SAML2 response contains user-stop decision
+      if (processedMsg.getSecond()) {
+        stopProcessFromUserDecision(executionContext, request, response);
 
-          log.info("Receive a valid assertion from IDP " + msg.getEntityID());
+      } else {
+        // validate entityId of response
+        final String msNodeEntityID = authConfig.getBasicConfiguration(
+            IdAustriaClientAuthConstants.CONFIG_PROPS_NODE_ENTITYID);
+        final String respEntityId = msg.getEntityID();
+        if (!msNodeEntityID.equals(respEntityId)) {
+          log.warn("Response Issuer is not a 'ID Austria node'. Stopping eIDAS authentication ...");
+          throw new AuthnResponseValidationException(ERROR_PVP_08,
+              new Object[]{IdAustriaClientAuthConstants.MODULE_NAME_FOR_LOGGING,
+                  msg.getEntityID()});
 
         }
 
-      } catch (final AuthnResponseValidationException e) {
-        throw new TaskExecutionException(pendingReq, ERROR_MSG_03, e);
-
-      } catch (MessageDecodingException | SecurityException | SamlSigningException e) {
-        //final String samlRequest = request.getParameter("SAMLRequest");
-        //log.debug("Receive INVALID PVP Response from 'ms-specific eIDAS node': {}",
-        //    samlRequest, null, e);
-        throw new TaskExecutionException(pendingReq, ERROR_MSG_00,
-            new AuthnResponseValidationException(ERROR_PVP_11,
-                new Object[]{IdAustriaClientAuthConstants.MODULE_NAME_FOR_LOGGING}, e));
-
-      } catch (IOException | MarshallingException | TransformerException e) {
-        log.debug("Processing PVP response from 'ms-specific eIDAS node' FAILED.", e);
-        throw new TaskExecutionException(pendingReq, ERROR_MSG_01,
-            new AuthnResponseValidationException(ERROR_PVP_12,
-                new Object[]{IdAustriaClientAuthConstants.MODULE_NAME_FOR_LOGGING, e.getMessage()},
-                e));
-
-      } catch (final CredentialsNotAvailableException e) {
-        log.debug("PVP response decrytion FAILED. No credential found.", e);
-        throw new TaskExecutionException(pendingReq, ERROR_MSG_02,
-            new AuthnResponseValidationException(ERROR_PVP_10,
-                new Object[]{IdAustriaClientAuthConstants.MODULE_NAME_FOR_LOGGING}, e));
-
-      } catch (final Exception e) {
-        log.debug("PVP response validation FAILED. Msg:" + e.getMessage(), e);
-        throw new TaskExecutionException(pendingReq, ERROR_MSG_03,
-            new AuthnResponseValidationException(ERROR_PVP_12,
-                new Object[]{IdAustriaClientAuthConstants.MODULE_NAME_FOR_LOGGING, e.getMessage()}, e));
+        // initialize Attribute extractor
+        final AssertionAttributeExtractor extractor =
+            new AssertionAttributeExtractor(processedMsg.getFirst().getResponse());
+
+        String bpkzp = getAuthDataFromInterfederation(extractor);
+
+        MergedRegisterSearchResult result = searchInZmrAndErnp(bpkzp);
+        if (result.getResultCount() == 0) {
+          //go to step 16
+          executionContext.put(Constants.TRANSITION_TO_GENERATE_GUI_QUERY_AUSTRIAN_RESIDENCE_TASK, true);
+          return;
+        } else if (result.getResultCount() == 1) {
+          String bpk =
+              Utils.step7aKittProcess(ernpClient, zmrClient, initialSearchResult, result, eidData, pendingReq);
+          authProcessData.setGenericDataToSession(Constants.DATA_RESULT_MATCHING_BPK, bpk);
+          //node 110
+        } else if (result.getResultCount() > 1) {
+          throw new ManualFixNecessaryException("bpkzp:" + bpkzp);// node 108
+        }
 
-      }
+        // set NeedConsent to false, because user gives consont during authentication
+        pendingReq.setNeedUserConsent(false);
 
+        log.info("Receive a valid assertion from IDP " + msg.getEntityID());
 
-      //TODO extract bPK-ZP from response
-      String bpkzp = "TODO";
-      MergedRegisterSearchResult result = searchInZmrAndErnp(bpkzp);
-      if (result.getResultCount() == 0) {
-        //go to step 16
-        //TODO set context variable
-        return;
-      } else if (result.getResultCount() == 1) {
-        String bpk = Utils.step7aKittProcess(ernpClient, zmrClient, initialSearchResult, result, eidData, pendingReq);
-        authProcessData.setGenericDataToSession(Constants.DATA_RESULT_MATCHING_BPK, bpk);
-        //node 110
-        //TODO bpk vs bpkzp???? same?
-      } else if (result.getResultCount() > 1) {
-        throw new ManualFixNecessaryException("bpkzp:" + bpkzp);// node 108
       }
 
+    } catch (final AuthnResponseValidationException e) {
+      throw new TaskExecutionException(pendingReq, ERROR_MSG_03, e);
+
+    } catch (MessageDecodingException | SecurityException | SamlSigningException e) {
+      //final String samlRequest = request.getParameter("SAMLRequest");
+      //log.debug("Receive INVALID PVP Response from 'ms-specific eIDAS node': {}",
+      //    samlRequest, null, e);
+      throw new TaskExecutionException(pendingReq, ERROR_MSG_00,
+          new AuthnResponseValidationException(ERROR_PVP_11,
+              new Object[]{IdAustriaClientAuthConstants.MODULE_NAME_FOR_LOGGING}, e));
+
+    } catch (IOException | MarshallingException | TransformerException e) {
+      log.debug("Processing PVP response from 'ms-specific eIDAS node' FAILED.", e);
+      throw new TaskExecutionException(pendingReq, ERROR_MSG_01,
+          new AuthnResponseValidationException(ERROR_PVP_12,
+              new Object[]{IdAustriaClientAuthConstants.MODULE_NAME_FOR_LOGGING, e.getMessage()},
+              e));
+
+    } catch (final CredentialsNotAvailableException e) {
+      log.debug("PVP response decrytion FAILED. No credential found.", e);
+      throw new TaskExecutionException(pendingReq, ERROR_MSG_02,
+          new AuthnResponseValidationException(ERROR_PVP_10,
+              new Object[]{IdAustriaClientAuthConstants.MODULE_NAME_FOR_LOGGING}, e));
+
     } catch (final Exception e) {
-      log.error("Initial search FAILED.", e);
-      throw new TaskExecutionException(pendingReq, "Initial search FAILED.", e);
+      log.debug("PVP response validation FAILED. Msg:" + e.getMessage(), e);
+      throw new TaskExecutionException(pendingReq, ERROR_MSG_03,
+          new AuthnResponseValidationException(ERROR_PVP_12,
+              new Object[]{IdAustriaClientAuthConstants.MODULE_NAME_FOR_LOGGING, e.getMessage()}, e));
     }
+
   }
 
   private Pair<PvpSProfileResponse, Boolean> preProcessAuthResponse(PvpSProfileResponse msg)
@@ -325,44 +305,47 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask extends
     return null;
   }
 
-  private void getAuthDataFromInterfederation(AssertionAttributeExtractor extractor)
-      throws EaafBuilderException, ConfigurationException {
+  private String getAuthDataFromInterfederation(AssertionAttributeExtractor extractor)
+      throws EaafBuilderException {
 
     List<String> requiredEidasNodeAttributes = IdAustriaClientAuthConstants.DEFAULT_REQUIRED_PVP_ATTRIBUTE_NAMES;
-
+    String bpk = null;
     try {
       // check if all attributes are include
       if (!extractor.containsAllRequiredAttributes()
           || !extractor.containsAllRequiredAttributes(
           requiredEidasNodeAttributes)) {
-        log.warn("PVP Response from 'ms-specific eIDAS node' contains not all requested attributes.");
+        log.warn("PVP Response from 'ID Austria node' contains not all requested attributes.");
         throw new AssertionValidationExeption(ERROR_PVP_06, new Object[]{
             IdAustriaClientAuthConstants.MODULE_NAME_FOR_LOGGING});
 
       }
 
-      // copy attributes into MOASession
-      //      final AhAuthProcessDataWrapper session = pendingReq.getSessionData(
-      //          AhAuthProcessDataWrapper.class);
-      //      final Set<String> includedAttrNames = extractor.getAllIncludeAttributeNames();
-      //      for (final String attrName : includedAttrNames) {
-      //        injectAuthInfosIntoSession(session, attrName,
-      //            extractor.getSingleAttributeValue(attrName));
-      //
-      //      }
-
-      //set piiTransactionId from eIDAS Connector
-      String piiTransactionId = extractor.getSingleAttributeValue(
-          ExtendedPvpAttributeDefinitions.EID_PII_TRANSACTION_ID_NAME);
-      if (StringUtils.isNotEmpty(piiTransactionId) && pendingReq instanceof RequestImpl) {
-        log.info("Receive piiTransactionId from Austrian eIDAS Connector. Use this for further processing");
-        ((RequestImpl) pendingReq).setUniquePiiTransactionIdentifier(piiTransactionId);
+      HashMap<String, String> map = new HashMap<>();
+      final Set<String> includedAttrNames = extractor.getAllIncludeAttributeNames();
+      for (final String attrName : includedAttrNames) {
+        map.put(attrName, extractor.getSingleAttributeValue(attrName));
 
-      } else {
-        log.debug("Receive no piiTransactionId from Austrian eIDAS Connector.");
+        if (PvpAttributeDefinitions.BPK_NAME.equals(attrName)) {
+          bpk = extractor.getSingleAttributeValue(attrName);
+        }
+        //injectAuthInfosIntoSession(session, attrName,
+        //    extractor.getSingleAttributeValue(attrName));
 
       }
 
+      //set piiTransactionId from eIDAS Connector
+      //      String piiTransactionId = extractor.getSingleAttributeValue(
+      //          ExtendedPvpAttributeDefinitions.EID_PII_TRANSACTION_ID_NAME);
+      //      if (StringUtils.isNotEmpty(piiTransactionId) && pendingReq instanceof RequestImpl) {
+      //        log.info("Receive piiTransactionId from Austrian eIDAS Connector. Use this for further processing");
+      //        ((RequestImpl) pendingReq).setUniquePiiTransactionIdentifier(piiTransactionId);
+      //
+      //      } else {
+      //        log.debug("Receive no piiTransactionId from Austrian eIDAS Connector.");
+      //
+      //      }
+
       // set foreigner flag
       //      session.setForeigner(true);
 
@@ -383,6 +366,7 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask extends
       throw new EaafBuilderException(ERROR_PVP_06, null, e.getMessage(), e);
 
     }
+    return bpk;
   }
 
   //  private void injectAuthInfosIntoSession(AhAuthProcessDataWrapper session, String attrName, String attrValue)
@@ -404,7 +388,7 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask extends
   //    } else if (PvpAttributeDefinitions.EID_CITIZEN_EIDAS_QAA_LEVEL_NAME.equals(attrName)) {
   //      session.setQaaLevel(attrValue);
   //
-  //    //    } else if (ExtendedPvpAttributeDefinitions.EID_MIS_MANDATE_NAME.equals(attrName)
+  //    //          } else if (ExtendedPvpAttributeDefinitions.EID_MIS_MANDATE_NAME.equals(attrName)
   //    //        && authConfig.getBasicConfigurationBoolean(
   //    //        IdAustriaClientAuthConstants.CONFIG_PROPS_SEMPER_MANDATES_ACTIVE, false)) {
   //    //      session.setMandateDate(new SignedMandateDao(attrValue));
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eIDAS.Authentication.process.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eIDAS.Authentication.process.xml
index 992ad766..6b67379c 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eIDAS.Authentication.process.xml
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eIDAS.Authentication.process.xml
@@ -49,13 +49,14 @@
                   to="receiveGuiResponseTask" />
   <pd:Transition  from="receiveGuiResponseTask"
                   to="generateMobilePhoneSignatureRequestTask"
-                  conditionExpression="ctx['TASK_TODO']"/>
+                  conditionExpression="ctx['TASK_GenerateMobilePhoneSignatureRequestTask']"/>
   <pd:Transition  from="generateMobilePhoneSignatureRequestTask"
                   to="receiveMobilePhoneSignatureResponseTask" />
   <pd:Transition  from="receiveMobilePhoneSignatureResponseTask"
                   to="createNewErnpEntryTask" />
   <pd:Transition  from="receiveGuiResponseTask"
-                  to="generateGuiQueryAustrianResidenceTask" />
+                  to="generateGuiQueryAustrianResidenceTask"
+                  conditionExpression="ctx['Task_GenerateGuiQueryAustrianResidenceTask']"/>
 
   <pd:Transition  from="generateGuiQueryAustrianResidenceTask"
                   to="receiveGuiAustrianResidenceResponseTask" />
@@ -65,7 +66,8 @@
                   conditionExpression="ctx['TASK_TODO']"/>
 
   <pd:Transition  from="receiveGuiAustrianResidenceResponseTask"
-                  to="createNewErnpEntryTask" />
+                  to="createNewErnpEntryTask"
+                  conditionExpression="ctx['TASK_TODO']"/>
 
 
   <pd:Transition  from="createNewErnpEntryTask"
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml
index 680ec19c..5897fc78 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml
@@ -134,14 +134,16 @@
         class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.ReceiveGuiAustrianResidenceResponseTask"
         scope="prototype" />
 
-  <bean id="eidasCentralAuthCredentialProvider"
+  <bean id="idAustriaClientAuthCredentialProvider"
         class="at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthCredentialProvider" />
 
-  <bean id="eidasCentralAuthMetadataProvider"
-        class=" at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthMetadataProvider" />
+  <bean id="idAustriaClientAuthMetadataProvider"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthMetadataProvider" />
+
+  <bean id="idAustriaClientAuthMetadataController"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthMetadataController" />
+
 
-  <bean id="eidasCentralAuthMetadataController"
-        class=" at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthMetadataController" />
 
 
 </beans>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/idaustriaclient/IdAustriaClientAuthMetadataControllerTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/idaustriaclient/IdAustriaClientAuthMetadataControllerTest.java
new file mode 100644
index 00000000..c99c6e6a
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/idaustriaclient/IdAustriaClientAuthMetadataControllerTest.java
@@ -0,0 +1,169 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.test.idaustriaclient;
+
+import java.io.ByteArrayInputStream;
+import java.io.IOException;
+import java.io.UnsupportedEncodingException;
+import java.security.cert.X509Certificate;
+import java.util.ArrayList;
+import java.util.List;
+
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthConstants;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthCredentialProvider;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthMetadataController;
+import at.gv.egiz.eaaf.core.test.dummy.DummyAuthConfigMap;
+import org.junit.Assert;
+import org.junit.Before;
+import org.junit.BeforeClass;
+import org.junit.Ignore;
+import org.junit.Test;
+import org.junit.runner.RunWith;
+import org.opensaml.core.xml.config.XMLObjectProviderRegistrySupport;
+import org.opensaml.core.xml.io.UnmarshallingException;
+import org.opensaml.core.xml.util.XMLObjectSupport;
+import org.opensaml.saml.common.xml.SAMLConstants;
+import org.opensaml.saml.metadata.resolver.filter.FilterException;
+import org.opensaml.saml.saml2.metadata.EntityDescriptor;
+import org.opensaml.saml.saml2.metadata.SPSSODescriptor;
+import org.opensaml.security.x509.BasicX509Credential;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.mock.web.MockHttpServletRequest;
+import org.springframework.mock.web.MockHttpServletResponse;
+import org.springframework.test.annotation.DirtiesContext;
+import org.springframework.test.context.ContextConfiguration;
+import org.springframework.test.context.TestPropertySource;
+import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
+
+import at.gv.egiz.eaaf.core.api.data.PvpAttributeDefinitions;
+import at.gv.egiz.eaaf.core.exceptions.EaafException;
+import at.gv.egiz.eaaf.modules.pvp2.exception.CredentialsNotAvailableException;
+import at.gv.egiz.eaaf.modules.pvp2.impl.opensaml.initialize.EaafOpenSaml3xInitializer;
+import at.gv.egiz.eaaf.modules.pvp2.impl.validation.metadata.SchemaValidationFilter;
+import at.gv.egiz.eaaf.modules.pvp2.impl.validation.metadata.SimpleMetadataSignatureVerificationFilter;
+import net.shibboleth.utilities.java.support.xml.XMLParserException;
+
+
+@RunWith(SpringJUnit4ClassRunner.class)
+//@TestPropertySource(locations = {"classpath:/config/junit_config_de_attributes.properties"})
+@TestPropertySource(locations = { "classpath:/config/junit_config_1_springboot.properties" })
+@ContextConfiguration(locations = {
+    "/SpringTest-context_tasks_test.xml",
+    "/SpringTest-context_basic_mapConfig.xml"
+})
+@DirtiesContext(classMode = DirtiesContext.ClassMode.AFTER_CLASS)
+@Ignore
+public class IdAustriaClientAuthMetadataControllerTest {
+
+  private MockHttpServletRequest httpReq;
+  private MockHttpServletResponse httpResp;
+
+  @Autowired private IdAustriaClientAuthMetadataController controller;
+  @Autowired private IdAustriaClientAuthCredentialProvider credProvider;
+  @Autowired private DummyAuthConfigMap config;
+
+  /**
+   * JUnit class initializer.
+   *
+   * @throws Exception In case of an OpenSAML3 initialization error
+   */
+  @BeforeClass
+  public static void initialize() throws Exception {
+    EaafOpenSaml3xInitializer.eaafInitialize();
+
+  }
+
+  /**
+   * Single jUnit-test set-up.
+   */
+  @Before
+  public void testSetup() {
+    httpReq = new MockHttpServletRequest("GET", "http://localhost/authhandler");
+    httpReq.setContextPath("/authhandler");
+    httpResp = new MockHttpServletResponse();
+
+    config.removeConfigValue("core.legacy.allowLegacyMode");
+    config.removeConfigValue("modules.eidascentralauth.semper.mandates.active");
+    config.removeConfigValue("modules.eidascentralauth.required.additional.attributes.1");
+    config.removeConfigValue("modules.eidascentralauth.required.additional.attributes.2");
+    config.removeConfigValue("modules.eidascentralauth.required.additional.attributes.3");
+    config.removeConfigValue("modules.eidascentralauth.required.additional.attributes.4");
+    config.removeConfigValue("modules.eidascentralauth.required.additional.attributes.5");
+    config.removeConfigValue("modules.eidascentralauth.required.additional.attributes.6");
+
+  }
+
+  @Test
+  public void buildMetadataValidInEidMode() throws IOException, EaafException,
+      XMLParserException, UnmarshallingException, FilterException {
+    config.putConfigValue("core.legacy.allowLegacyMode", "false");
+    config.putConfigValue("modules.eidascentralauth.semper.mandates.active", "false");
+
+    //build metdata
+    controller.getSpMetadata(httpReq, httpResp);
+
+    //check result
+    validateResponse(6);
+
+  }
+
+  private void validateResponse(int numberOfRequestedAttributes) throws UnsupportedEncodingException,
+      XMLParserException, UnmarshallingException, FilterException, CredentialsNotAvailableException {
+    Assert.assertEquals("HTTP Statuscode", 200, httpResp.getStatus());
+    Assert.assertEquals("ContentType", "text/xml; charset=utf-8", httpResp.getContentType());
+    Assert.assertEquals("ContentEncoding", "UTF-8", httpResp.getCharacterEncoding());
+
+    final String metadataXml = httpResp.getContentAsString();
+    Assert.assertNotNull("XML Metadata", metadataXml);
+
+    final EntityDescriptor metadata = (EntityDescriptor) XMLObjectSupport.unmarshallFromInputStream(
+        XMLObjectProviderRegistrySupport.getParserPool(), new ByteArrayInputStream(metadataXml.getBytes("UTF-8")));
+
+    Assert.assertEquals("EntityId",
+        "http://localhost/authhandler" + IdAustriaClientAuthConstants.ENDPOINT_METADATA,
+        metadata.getEntityID());
+
+    //check XML scheme
+    final SchemaValidationFilter schemaFilter = new SchemaValidationFilter();
+    schemaFilter.filter(metadata);
+
+    //check signature
+    final SimpleMetadataSignatureVerificationFilter sigFilter =
+        new SimpleMetadataSignatureVerificationFilter(credProvider.getKeyStore().getFirst(),
+            metadata.getEntityID());
+    sigFilter.filter(metadata);
+
+    //check content
+    final SPSSODescriptor spSsoDesc = metadata.getSPSSODescriptor(SAMLConstants.SAML20P_NS);
+    Assert.assertNotNull("SPSSODescr.", spSsoDesc);
+
+    Assert.assertFalse("AssertionConsumerServices",
+        spSsoDesc.getAssertionConsumerServices().isEmpty());
+    Assert.assertFalse("ContactPersons",
+        metadata.getContactPersons().isEmpty());
+    Assert.assertNotNull("ContactPersons",
+        metadata.getOrganization());
+
+    Assert.assertFalse("KeyDescriptors",
+        spSsoDesc.getKeyDescriptors().isEmpty());
+    Assert.assertEquals("#KeyDescriptors", 2, spSsoDesc.getKeyDescriptors().size());
+
+    Assert.assertFalse("NameIDFormats",
+        spSsoDesc.getNameIDFormats().isEmpty());
+    Assert.assertEquals("wrong NameIDFormats", "urn:oasis:names:tc:SAML:2.0:nameid-format:persistent",
+        spSsoDesc.getNameIDFormats().get(0).getFormat());
+
+    Assert.assertFalse("AttributeConsumingServices",
+        spSsoDesc.getAttributeConsumingServices().isEmpty());
+    Assert.assertEquals("#RequestAttributes", numberOfRequestedAttributes,
+        spSsoDesc.getAttributeConsumingServices().get(0).getRequestAttributes().size());
+
+  }
+
+  private List<BasicX509Credential> convertX509Certs(List<X509Certificate> certs) {
+    final List<BasicX509Credential> result = new ArrayList<>();
+    for (final X509Certificate cert : certs) {
+      result.add(new BasicX509Credential(cert));
+
+    }
+    return result;
+  }
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskTest.java
index ac188cda..95986c49 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskTest.java
@@ -46,7 +46,6 @@ import org.apache.commons.lang3.RandomStringUtils;
 import org.jetbrains.annotations.NotNull;
 import org.junit.Assert;
 import org.junit.Before;
-import org.junit.BeforeClass;
 import org.junit.Test;
 import org.junit.runner.RunWith;
 import org.mockito.Mock;
@@ -62,7 +61,6 @@ import org.springframework.web.context.request.RequestContextHolder;
 import org.springframework.web.context.request.ServletRequestAttributes;
 
 import javax.xml.namespace.QName;
-import java.io.IOException;
 import java.net.URI;
 import java.net.URISyntaxException;
 import java.util.ArrayList;
@@ -97,7 +95,7 @@ public class InitialSearchTaskTest {
   private final String randomGivenName = RandomStringUtils.randomAlphabetic(10);
   private final String randomPlaceOfBirth = RandomStringUtils.randomAlphabetic(10);
   private final String randomBirthName = RandomStringUtils.randomAlphabetic(10);
-  private final String randomDate = "2011-01-" + (10 + new Random().nextInt(18));
+  private final String randomBirthDate = "2011-01-" + (10 + new Random().nextInt(18));
 
 //  /**
 //   * jUnit class initializer.
@@ -138,7 +136,7 @@ public class InitialSearchTaskTest {
   public void testNode100_UserIdentifiedUpdateNecessary_a() throws Exception {
     String newFirstName = RandomStringUtils.randomAlphabetic(10);
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.singletonList(
-        new RegisterResult(randomBpk, randomIdentifier, newFirstName, randomFamilyName, randomDate)));
+        new RegisterResult(randomBpk, randomIdentifier, newFirstName, randomFamilyName, randomBirthDate)));
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
 
     task.execute(pendingReq, executionContext);
@@ -158,7 +156,7 @@ public class InitialSearchTaskTest {
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
     String newRandomGivenName = RandomStringUtils.randomAlphabetic(10);
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.singletonList(
-        new RegisterResult(randomBpk, randomIdentifier, newRandomGivenName, randomFamilyName, randomDate)));
+        new RegisterResult(randomBpk, randomIdentifier, newRandomGivenName, randomFamilyName, randomBirthDate)));
 
     task.execute(pendingReq, executionContext);
     String bPk = (String)
@@ -175,9 +173,9 @@ public class InitialSearchTaskTest {
   @DirtiesContext
   public void testNode101_ManualFixNecessary_a() {
     ArrayList<RegisterResult> zmrResult = new ArrayList<>();
-    zmrResult.add(new RegisterResult(randomBpk, randomIdentifier, randomGivenName, randomFamilyName, randomDate));
+    zmrResult.add(new RegisterResult(randomBpk, randomIdentifier, randomGivenName, randomFamilyName, randomBirthDate));
     String newRandomGivenName = randomGivenName + RandomStringUtils.randomAlphabetic(2);
-    zmrResult.add(new RegisterResult(randomBpk, randomIdentifier, newRandomGivenName, randomFamilyName, randomDate));
+    zmrResult.add(new RegisterResult(randomBpk, randomIdentifier, newRandomGivenName, randomFamilyName, randomBirthDate));
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResult);
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
 
@@ -197,10 +195,10 @@ public class InitialSearchTaskTest {
   public void testNode101_ManualFixNecessary_b() {
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
     ArrayList<RegisterResult> ernpResult = new ArrayList<>();
-    ernpResult.add(new RegisterResult(randomBpk, randomPseudonym, randomGivenName, randomFamilyName, randomDate));
+    ernpResult.add(new RegisterResult(randomBpk, randomPseudonym, randomGivenName, randomFamilyName, randomBirthDate));
     String newRandomGivenName = randomGivenName + RandomStringUtils.randomAlphabetic(2);
     ernpResult.add(
-        new RegisterResult(randomBpk, randomIdentifier, newRandomGivenName, randomFamilyName, randomDate));
+        new RegisterResult(randomBpk, randomIdentifier, newRandomGivenName, randomFamilyName, randomBirthDate));
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(ernpResult);
 
     TaskExecutionException exception = assertThrows(TaskExecutionException.class,
@@ -218,7 +216,7 @@ public class InitialSearchTaskTest {
   public void testNode102_UserIdentified_a() throws Exception {
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.singletonList(
-        new RegisterResult(randomBpk, randomIdentifier, randomGivenName, randomFamilyName, randomDate)));
+        new RegisterResult(randomBpk, randomIdentifier, randomGivenName, randomFamilyName, randomBirthDate)));
 
     task.execute(pendingReq, executionContext);
     String bPk = (String)
@@ -234,7 +232,7 @@ public class InitialSearchTaskTest {
   @DirtiesContext
   public void testNode102_UserIdentified_b() throws Exception {
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.singletonList(
-        new RegisterResult(randomBpk, randomIdentifier, randomGivenName, randomFamilyName, randomDate)));
+        new RegisterResult(randomBpk, randomIdentifier, randomGivenName, randomFamilyName, randomBirthDate)));
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
 
     task.execute(pendingReq, executionContext);
@@ -260,7 +258,7 @@ public class InitialSearchTaskTest {
     String newRandomIdentifier = randomIdentifier + RandomStringUtils.randomNumeric(2);
     Mockito.when(zmrClient.searchItSpecific(taxNumber)).thenReturn(Collections.singletonList(
         new RegisterResult(randomBpk, newRandomIdentifier, randomGivenName, randomFamilyName,
-            randomDate, null, null, taxNumber, null)));
+            randomBirthDate, null, null, taxNumber, null)));
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
     task = new InitialSearchTask(
         Collections.singletonList(new ItSpecificDetailSearchProcessor(ernpClient, zmrClient)),
@@ -282,15 +280,15 @@ public class InitialSearchTaskTest {
   public void testNode103_UserIdentified_DE() throws Exception {
     final AuthenticationResponse response = buildDummyAuthResponseDE(randomGivenName, randomFamilyName,
         randomPseudonym,
-        randomDate, randomPlaceOfBirth, randomBirthName);
+        randomBirthDate, randomPlaceOfBirth, randomBirthName);
     TestRequestImpl pendingReq1 = new TestRequestImpl();
     pendingReq1.getSessionData(AuthProcessDataWrapper.class)
         .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
-    Mockito.when(zmrClient.searchDeSpecific(randomGivenName, randomFamilyName, randomDate, randomPlaceOfBirth,
+    Mockito.when(zmrClient.searchDeSpecific(randomGivenName, randomFamilyName, randomBirthDate, randomPlaceOfBirth,
         randomBirthName))
         .thenReturn(Collections.singletonList(new RegisterResult(randomBpk, randomIdentifier, randomGivenName,
-            randomFamilyName, randomDate, randomPlaceOfBirth, randomBirthName, null, null)));
+            randomFamilyName, randomBirthDate, randomPlaceOfBirth, randomBirthName, null, null)));
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
     task = new InitialSearchTask(
         Collections.singletonList(new DeSpecificDetailSearchProcessor(ernpClient, zmrClient)),
@@ -314,18 +312,18 @@ public class InitialSearchTaskTest {
     String newRandomBpk = randomBpk + RandomStringUtils.randomNumeric(6);
     final AuthenticationResponse response = buildDummyAuthResponseDE(randomGivenName, randomFamilyName,
         randomPseudonym,
-        randomDate, randomPlaceOfBirth, randomBirthName);
+        randomBirthDate, randomPlaceOfBirth, randomBirthName);
     TestRequestImpl pendingReq1 = new TestRequestImpl();
     pendingReq1.getSessionData(AuthProcessDataWrapper.class)
         .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
     ArrayList<RegisterResult> zmrResultSpecific = new ArrayList<>();
     zmrResultSpecific.add(
-        new RegisterResult(randomBpk, randomIdentifier, randomGivenName, randomFamilyName, randomDate,
+        new RegisterResult(randomBpk, randomIdentifier, randomGivenName, randomFamilyName, randomBirthDate,
             randomPlaceOfBirth, randomBirthName, null, null));
-    zmrResultSpecific.add(new RegisterResult(newRandomBpk, newRandomPseudonym, randomGivenName, randomFamilyName, randomDate,
+    zmrResultSpecific.add(new RegisterResult(newRandomBpk, newRandomPseudonym, randomGivenName, randomFamilyName, randomBirthDate,
         randomPlaceOfBirth, randomBirthName, null, null));
-    Mockito.when(zmrClient.searchDeSpecific(randomGivenName, randomFamilyName, randomDate, randomPlaceOfBirth,
+    Mockito.when(zmrClient.searchDeSpecific(randomGivenName, randomFamilyName, randomBirthDate, randomPlaceOfBirth,
         randomBirthName)).thenReturn(zmrResultSpecific);
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
     task = new InitialSearchTask(
@@ -354,11 +352,11 @@ public class InitialSearchTaskTest {
     ArrayList<RegisterResult> zmrResultSpecific = new ArrayList<>();
     String randomPseudonym = IT_ST + randomIdentifier + "4";
     zmrResultSpecific.add(new RegisterResult(randomBpk, randomPseudonym, randomGivenName,
-        randomFamilyName, randomDate, null, null, randomTaxNumber, null));
+        randomFamilyName, randomBirthDate, null, null, randomTaxNumber, null));
     String newRandomPseudonym = IT_ST + randomIdentifier + "5";
     String newRandomBpk = RandomStringUtils.randomNumeric(6);
     zmrResultSpecific.add(new RegisterResult(newRandomBpk, newRandomPseudonym, randomGivenName,
-        randomFamilyName, randomDate, null, null, randomTaxNumber, null));
+        randomFamilyName, randomBirthDate, null, null, randomTaxNumber, null));
     Mockito.when(zmrClient.searchItSpecific(randomTaxNumber)).thenReturn(zmrResultSpecific);
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
     task = new InitialSearchTask(
@@ -373,11 +371,11 @@ public class InitialSearchTaskTest {
   }
 
   /**
-   * NO match found in ZMR and ErnP with Initial search
+   * NO match found in ZMR and ErnP with Initial and MDS search
    */
   @Test
   @DirtiesContext
-  public void testNode105_TemporaryEnd() throws TaskExecutionException {
+  public void testNode505_TransitionToErnbTask() throws TaskExecutionException {
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
 
@@ -386,18 +384,99 @@ public class InitialSearchTaskTest {
     String bPk = (String)
         pendingReq.getSessionData(AuthProcessDataWrapper.class)
             .getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
-    Assert.assertEquals("Wrong bpk", "TODO-Temporary-Endnode-105", bPk);
+    Assert.assertEquals("Wrong bpk", null, bPk);
+
+    Boolean transitionGUI = (Boolean)executionContext.get(Constants.TRANSITION_TO_CREATE_GENERATE_GUI_TASK);
+    Assert.assertEquals("Wrong transition", null, transitionGUI);
+    Boolean transitionErnb = (Boolean)executionContext.get(Constants.TRANSITION_TO_CREATE_NEW_ERNB_ENTRY_TASK);
+    Assert.assertEquals("Wrong transition", true, transitionErnb);
+  }
+
+  /**
+   * NO match found in ZMR and ErnP with Initial search, one match with MDS search in Ernb
+   */
+  @Test
+  @DirtiesContext
+  public void testNode505_TransitionToGUI_Ernb() throws TaskExecutionException {
+    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
+
+    Mockito.when(ernpClient.searchWithMds(randomGivenName, randomFamilyName, randomBirthDate)).thenReturn(
+        Collections.singletonList(
+        new RegisterResult(randomBpk, randomIdentifier, randomGivenName, randomFamilyName, randomBirthDate)));
+
+    task.execute(pendingReq, executionContext);
+
+    String bPk = (String)
+        pendingReq.getSessionData(AuthProcessDataWrapper.class)
+            .getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
+    Assert.assertEquals("Wrong bpk", null, bPk);
+    Boolean transitionGUI = (Boolean)executionContext.get(Constants.TRANSITION_TO_CREATE_GENERATE_GUI_TASK);
+    Assert.assertEquals("Wrong transition", true, transitionGUI);
+    Boolean transitionErnb = (Boolean)executionContext.get(Constants.TRANSITION_TO_CREATE_NEW_ERNB_ENTRY_TASK);
+    Assert.assertEquals("Wrong transition", null, transitionErnb);
+  }
+
+  /**
+   * NO match found in ZMR and ErnP with Initial search, one match with MDS search in ZMR
+   */
+  @Test
+  @DirtiesContext
+  public void testNode505_TransitionToGUI_Zmr() throws TaskExecutionException {
+    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
+
+    Mockito.when(zmrClient.searchWithMds(randomGivenName, randomFamilyName, randomBirthDate)).thenReturn(
+        Collections.singletonList(
+            new RegisterResult(randomBpk, randomIdentifier, randomGivenName, randomFamilyName, randomBirthDate)));
+
+    task.execute(pendingReq, executionContext);
+
+    String bPk = (String)
+        pendingReq.getSessionData(AuthProcessDataWrapper.class)
+            .getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
+    Assert.assertEquals("Wrong bpk", null, bPk);
+    Boolean transitionGUI = (Boolean)executionContext.get(Constants.TRANSITION_TO_CREATE_GENERATE_GUI_TASK);
+    Assert.assertEquals("Wrong transition", true, transitionGUI);
+    Boolean transitionErnb = (Boolean)executionContext.get(Constants.TRANSITION_TO_CREATE_NEW_ERNB_ENTRY_TASK);
+    Assert.assertEquals("Wrong transition", null, transitionErnb);
   }
 
+  /**
+   * NO match found in ZMR and ErnP with Initial search, multiple matches found with MDS search
+   */
+  @Test
+  @DirtiesContext
+  public void testNode505_TransitionToGUI_Ernb_multi() throws TaskExecutionException {
+    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
+    ArrayList<RegisterResult> ernbResult = new ArrayList<>();
+    ernbResult.add(new RegisterResult(randomBpk, randomIdentifier, randomGivenName, randomFamilyName,
+        randomBirthDate));
+    ernbResult.add(new RegisterResult(randomBpk+"1", randomIdentifier, randomGivenName, randomFamilyName,
+        randomBirthDate));
+    Mockito.when(ernpClient.searchWithMds(randomGivenName, randomFamilyName, randomBirthDate)).thenReturn(ernbResult);
+
+    task.execute(pendingReq, executionContext);
+
+    String bPk = (String)
+        pendingReq.getSessionData(AuthProcessDataWrapper.class)
+            .getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
+    Assert.assertEquals("Wrong bpk", null, bPk);
+    Boolean transitionGUI = (Boolean)executionContext.get(Constants.TRANSITION_TO_CREATE_GENERATE_GUI_TASK);
+    Assert.assertEquals("Wrong transition", true, transitionGUI);
+    Boolean transitionErnb = (Boolean)executionContext.get(Constants.TRANSITION_TO_CREATE_NEW_ERNB_ENTRY_TASK);
+    Assert.assertEquals("Wrong transition", null, transitionErnb);
+  }
 
   @NotNull
   private AuthenticationResponse buildDummyAuthResponseRandomPerson() throws URISyntaxException {
-    return buildDummyAuthResponse(randomGivenName, randomFamilyName, DE_ST + randomIdentifier, randomDate);
+    return buildDummyAuthResponse(randomGivenName, randomFamilyName, DE_ST + randomIdentifier, randomBirthDate);
   }
 
   private AuthenticationResponse buildDummyAuthResponseRandomPersonIT_Tax(String taxNumber)
       throws URISyntaxException {
-    return buildDummyAuthResponse(randomGivenName, randomFamilyName, IT_ST + randomIdentifier, randomDate,
+    return buildDummyAuthResponse(randomGivenName, randomFamilyName, IT_ST + randomIdentifier, randomBirthDate,
         taxNumber, null, null);
   }
 
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/validation/EidasRequestPreProcessingFirstTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/validation/EidasRequestPreProcessingFirstTest.java
index d0ab50f4..35f1a91b 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/validation/EidasRequestPreProcessingFirstTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/validation/EidasRequestPreProcessingFirstTest.java
@@ -54,8 +54,11 @@ import eu.eidas.auth.commons.light.impl.LightRequest.Builder;
 @RunWith(SpringJUnit4ClassRunner.class)
 @ContextConfiguration(locations = {
     "/SpringTest-context_tasks_test.xml",
-    "/SpringTest-context_basic_realConfig.xml"})
-@TestPropertySource(locations = {"classpath:/config/junit_config_de_attributes.properties"})
+    "/SpringTest-context_basic_realConfig.xml",
+    //"/SpringTest-context_basic_mapConfig.xml"
+    })
+@TestPropertySource(locations = {"classpath:/config/junit_config_de_attributes.properties", "classpath:/config" +
+    "/junit_config_1_springboot.properties"})
 @DirtiesContext(classMode = ClassMode.AFTER_CLASS)
 public class EidasRequestPreProcessingFirstTest {
 
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_tasks_test.xml b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_tasks_test.xml
index 5a7f4161..ed636eed 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_tasks_test.xml
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_tasks_test.xml
@@ -102,4 +102,31 @@
         class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask"
         scope="prototype" />
 
+  <bean id="GenerateGuiQueryAustrianResidenceTask"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.GenerateGuiQueryAustrianResidenceTask"
+        scope="prototype" />
+
+  <bean id="ReceiveGuiAustrianResidenceResponseTask"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.ReceiveGuiAustrianResidenceResponseTask"
+        scope="prototype" />
+
+  <bean id="idAustriaClientAuthCredentialProvider"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthCredentialProvider" />
+
+  <bean id="idAustriaClientAuthMetadataProvider"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthMetadataProvider" />
+
+  <bean id="idAustriaClientAuthMetadataController"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthMetadataController" />
+
+  <bean id="idAustriaClientPvpMetadataResolverFactory"
+        class="at.gv.egiz.eaaf.modules.pvp2.impl.metadata.PvpMetadataResolverFactory" />
+
+  <bean id="pvpMetadataBuilder"
+        class="at.gv.egiz.eaaf.modules.pvp2.impl.builder.PvpMetadataBuilder" />
+
+  <bean id="idAustriaAuthPvpConfiguration"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaAuthPvpConfiguration" />
+
+
 </beans>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/junit_config_1.properties b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/junit_config_1.properties
index a662379c..df64b494 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/junit_config_1.properties
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/junit_config_1.properties
@@ -114,4 +114,36 @@ eidas.ms.configuration.sp.disableRegistrationRequirement=
 eidas.ms.configuration.restrictions.baseID.spTransmission=
 eidas.ms.configuration.auth.default.countrycode=
 eidas.ms.configuration.pvp.scheme.validation=
-eidas.ms.configuration.pvp.enable.entitycategories=
\ No newline at end of file
+eidas.ms.configuration.pvp.enable.entitycategories=
+
+
+
+
+## PVP2 S-Profile ID Austria client configuration
+
+eidas.ms.modules.idaustriaclient.keystore.path=../keystore/junit_test.jks
+eidas.ms.modules.idaustriaclient.keystore.password=password
+eidas.ms.modules.idaustriaclient.keystore.type=jks
+
+eidas.ms.modules.idaustriaclient.metadata.sign.alias=meta
+eidas.ms.modules.idaustriaclient.metadata.sign.password=password
+eidas.ms.modules.idaustriaclient.request.sign.alias=sig
+eidas.ms.modules.idaustriaclient.request.sign.password=password
+eidas.ms.modules.idaustriaclient.response.encryption.alias=enc
+eidas.ms.modules.idaustriaclient.response.encryption.password=password
+
+eidas.ms.modules.idaustriaclient.truststore.path=../keystore/junit_test.jks
+eidas.ms.modules.idaustriaclient.truststore.password=password
+eidas.ms.modules.idaustriaclient.truststore.type=jks
+
+eidas.ms.modules.idaustriaclient.node.entityId=
+eidas.ms.modules.idaustriaclient.sp.entityId=
+eidas.ms.modules.idaustriaclient.node.metadataUrl=
+
+eidas.ms.modules.idaustriaclient.metadata.organisation.name=JUnit
+eidas.ms.modules.idaustriaclient.metadata.organisation.friendyname=For testing with jUnit
+eidas.ms.modules.idaustriaclient.metadata.organisation.url=http://junit.test
+eidas.ms.modules.idaustriaclient.metadata.contact.givenname=Max
+eidas.ms.modules.idaustriaclient.metadata.contact.surname=Mustermann
+eidas.ms.modules.idaustriaclient.metadata.contact.email=max@junit.test
+
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/junit_config_1_springboot.properties b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/junit_config_1_springboot.properties
new file mode 100644
index 00000000..fc0c7241
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/junit_config_1_springboot.properties
@@ -0,0 +1,119 @@
+## embbeded Tomcat
+tomcat.workingdir=./target/work
+tomcat.ajp.enabled=true
+tomcat.ajp.port=8009
+tomcat.ajp.networkAddress=127.0.0.1
+tomcat.ajp.additionalAttributes.secretrequired=true
+tomcat.ajp.additionalAttributes.secret=junit
+
+## Basic service configuration
+eidas.ms.context.url.prefix=http://localhost
+eidas.ms.core.configRootDir=file:./src/test/resources/config/
+
+eidas.ms.context.use.clustermode=true
+
+##Monitoring
+eidas.ms.monitoring.eIDASNode.metadata.url=http://localhost:40900/mockup
+
+## extended validation of pending-request Id's
+eidas.ms.core.pendingrequestid.digist.secret=pendingReqIdSecret
+
+## eIDAS Ref. Implementation connector ###
+eidas.ms.auth.eIDAS.node_v2.forward.endpoint=http://eidas.node/junit
+
+eidas.ms.auth.eIDAS.szrclient.useTestService=true
+eidas.ms.auth.eIDAS.szrclient.endpoint.prod=
+eidas.ms.auth.eIDAS.szrclient.endpoint.test=http://localhost:1234/demoszr
+eidas.ms.auth.eIDAS.szrclient.ssl.keyStore.path=keys/junit.jks
+eidas.ms.auth.eIDAS.szrclient.ssl.keyStore.password=password
+eidas.ms.auth.eIDAS.szrclient.ssl.trustStore.path=
+eidas.ms.auth.eIDAS.szrclient.ssl.trustStore.password=
+
+#tech. AuthBlock signing for E-ID process
+eidas.ms.auth.eIDAS.authblock.keystore.password=f/+saJBc3a}*/T^s
+eidas.ms.auth.eIDAS.authblock.keystore.friendlyName=connectorkeypair
+eidas.ms.auth.eIDAS.authblock.keystore.path=keys/teststore.jks
+eidas.ms.auth.eIDAS.authblock.keystore.type=jks
+eidas.ms.auth.eIDAS.authblock.key.alias=connectorkeypair
+eidas.ms.auth.eIDAS.authblock.key.password=f/+saJBc3a}*/T^s
+
+
+#Raw eIDAS Id data storage
+eidas.ms.auth.eIDAS.szrclient.debug.logfullmessages=true
+eidas.ms.auth.eIDAS.szrclient.debug.useDummySolution=false
+
+
+
+## PVP2 S-Profile end-point configuration
+eidas.ms.pvp2.keystore.type=jks
+eidas.ms.pvp2.keystore.path=keys/junit.jks
+eidas.ms.pvp2.keystore.password=password
+eidas.ms.pvp2.key.metadata.alias=meta
+eidas.ms.pvp2.key.metadata.password=password
+eidas.ms.pvp2.key.signing.alias=sig
+eidas.ms.pvp2.key.signing.password=password
+eidas.ms.pvp2.metadata.validity=24
+
+eidas.ms.pvp2.metadata.organisation.name=JUnit
+eidas.ms.pvp2.metadata.organisation.friendyname=For testing with jUnit
+eidas.ms.pvp2.metadata.organisation.url=http://junit.test
+eidas.ms.pvp2.metadata.contact.givenname=Max
+eidas.ms.pvp2.metadata.contact.surname=Mustermann
+eidas.ms.pvp2.metadata.contact.email=max@junit.test
+
+## Service Provider configuration
+eidas.ms.sp.0.uniqueID=https://demo.egiz.gv.at/demoportal_moaid-2.0/sp/eidas/metadata
+eidas.ms.sp.0.pvp2.metadata.truststore=keys/junit.jks
+eidas.ms.sp.0.pvp2.metadata.truststore.password=password
+eidas.ms.sp.0.friendlyName=jUnit test
+eidas.ms.sp.0.newEidMode=true
+
+#eidas.ms.sp.0.pvp2.metadata.url=
+#eidas.ms.sp.0.policy.allowed.requested.targets=.*
+#eidas.ms.sp.0.policy.hasBaseIdTransferRestriction=false
+
+## Service Provider configuration
+eidas.ms.sp.1.uniqueID=https://demo.egiz.gv.at/junit_test
+eidas.ms.sp.1.pvp2.metadata.truststore=keys/junit.jks
+eidas.ms.sp.1.pvp2.metadata.truststore.password=password
+eidas.ms.sp.1.friendlyName=jUnit test
+eidas.ms.sp.1.pvp2.metadata.url=http://junit.test/metadata
+eidas.ms.sp.1.policy.allowed.requested.targets=test
+eidas.ms.sp.1.policy.hasBaseIdTransferRestriction=true
+
+## PVP2 S-Profile client configuration
+#eidas.ms.modules.idaustriaclient.keystore.type=jks
+#eidas.ms.modules.idaustriaclient.keystore.path=keys/junit.jks1
+#eidas.ms.modules.idaustriaclient.keystore.password=password
+#eidas.ms.modules.idaustriaclient.key.metadata.alias=meta
+#eidas.ms.modules.idaustriaclient.key.metadata.password=password
+#eidas.ms.modules.idaustriaclient.key.signing.alias=sig
+#eidas.ms.modules.idaustriaclient.key.signing.password=password
+#eidas.ms.modules.idaustriaclient.metadata.validity=24
+
+eidas.ms.modules.idaustriaclient.keystore.path=keys/junit_test.jks
+eidas.ms.modules.idaustriaclient.keystore.password=password
+eidas.ms.modules.idaustriaclient.keystore.type=jks
+
+eidas.ms.modules.idaustriaclient.metadata.sign.alias=meta
+eidas.ms.modules.idaustriaclient.metadata.sign.password=password
+eidas.ms.modules.idaustriaclient.request.sign.alias=sig
+eidas.ms.modules.idaustriaclient.request.sign.password=password
+eidas.ms.modules.idaustriaclient.response.encryption.alias=enc
+eidas.ms.modules.idaustriaclient.response.encryption.password=password
+
+eidas.ms.modules.idaustriaclient.truststore.path=keys/junit_test.jks
+eidas.ms.modules.idaustriaclient.truststore.password=password
+eidas.ms.modules.idaustriaclient.truststore.type=jks
+
+eidas.ms.modules.idaustriaclient.node.entityId=
+eidas.ms.modules.idaustriaclient.sp.entityId=
+eidas.ms.modules.idaustriaclient.node.metadataUrl=
+
+eidas.ms.modules.idaustriaclient.metadata.organisation.name=JUnit
+eidas.ms.modules.idaustriaclient.metadata.organisation.friendyname=For testing with jUnit
+eidas.ms.modules.idaustriaclient.metadata.organisation.url=http://junit.test
+eidas.ms.modules.idaustriaclient.metadata.contact.givenname=Max
+eidas.ms.modules.idaustriaclient.metadata.contact.surname=Mustermann
+eidas.ms.modules.idaustriaclient.metadata.contact.email=max@junit.test
+
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/keys/junit_test.jks b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/keys/junit_test.jks
new file mode 100644
index 00000000..ee6254a9
Binary files /dev/null and b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/keys/junit_test.jks differ
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/keys/teststore.jks b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/keys/teststore.jks
new file mode 100644
index 00000000..fcc6400c
Binary files /dev/null and b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/keys/teststore.jks differ
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/keystore/junit_test.jks b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/keystore/junit_test.jks
new file mode 100644
index 00000000..ee6254a9
Binary files /dev/null and b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/keystore/junit_test.jks differ
-- 
cgit v1.2.3


From 6e16e4bbddf6dcddf2ed7b25fd55b41adfa4a08c Mon Sep 17 00:00:00 2001
From: Alexander Marsalek <amarsalek@iaik.tugraz.at>
Date: Fri, 5 Feb 2021 11:58:12 +0100
Subject: added test for ReceiveLoginMethodGuiResponse

---
 .../specific/modules/auth/eidas/v2/Constants.java  |   2 +
 .../IdAustriaClientAuthMetadataController.java     |   6 +-
 .../auth/eidas/v2/tasks/GenerateGuiTask.java       |  76 -----------
 .../eidas/v2/tasks/GenerateLoginMethodGuiTask.java |  76 +++++++++++
 .../eidas/v2/tasks/ReceiveGuiResponseTask.java     |  88 -------------
 .../tasks/ReceiveLoginMethodGuiResponseTask.java   |  95 ++++++++++++++
 .../src/main/resources/eidas_v2_auth.beans.xml     |   4 +-
 .../ReceiveLoginMethodGuiResponseTaskTest.java     | 139 +++++++++++++++++++++
 .../resources/SpringTest-context_tasks_test.xml    |   4 +-
 9 files changed, 319 insertions(+), 171 deletions(-)
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateGuiTask.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateLoginMethodGuiTask.java
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveGuiResponseTask.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveLoginMethodGuiResponseTask.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveLoginMethodGuiResponseTaskTest.java

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java
index ba57b28e..b603774b 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java
@@ -188,4 +188,6 @@ public class Constants {
   public static final String TRANSITION_TO_GENERATE_MOBILE_PHONE_SIGNATURE_REQUEST_TASK =
       "TASK_GenerateMobilePhoneSignatureRequestTask";
   public static final String TRANSITION_TO_GENERATE_EIDAS_LOGIN = "TASK_TODO";
+
+  public static final String REQ_SELECTED_LOGIN_METHOD_PARAMETER = "loginSelection";
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthMetadataController.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthMetadataController.java
index a2966c7e..0f3c1281 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthMetadataController.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthMetadataController.java
@@ -79,7 +79,7 @@ public class IdAustriaClientAuthMetadataController extends AbstractController {
       // initialize metadata builder configuration
       final IdAustriaClientAuthMetadataConfiguration metadataConfig =
           new IdAustriaClientAuthMetadataConfiguration(authUrl, credentialProvider, pvpConfiguration);
-      metadataConfig.setAdditionalRequiredAttributes(getAdditonalRequiredAttributes());
+      metadataConfig.setAdditionalRequiredAttributes(getAdditionalRequiredAttributes());
 
       // build metadata
       final String xmlMetadata = metadatabuilder.buildPvpMetadata(metadataConfig);
@@ -111,7 +111,7 @@ public class IdAustriaClientAuthMetadataController extends AbstractController {
       throw new EaafAuthenticationException(ERROR_CODE_INTERNAL_00, new Object[] { authUrlString }, e);
 
     }
-
+    //TODO remove
     final String idpAuthUrl = authConfig.validateIdpUrl(authReqUrl);
     if (idpAuthUrl == null) {
       log.warn("Requested URL: {} is NOT found in configuration.", authReqUrl);
@@ -122,7 +122,7 @@ public class IdAustriaClientAuthMetadataController extends AbstractController {
     return idpAuthUrl;
   }
 
-  private List<Pair<String, Boolean>> getAdditonalRequiredAttributes() {
+  private List<Pair<String, Boolean>> getAdditionalRequiredAttributes() {
     final List<Pair<String, Boolean>> result = new ArrayList<>();
 
     // load attributes from configuration
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateGuiTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateGuiTask.java
deleted file mode 100644
index 3d77f994..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateGuiTask.java
+++ /dev/null
@@ -1,76 +0,0 @@
-/*
- * Copyright 2021 A-SIT Plus GmbH
- * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
- * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
- *
- * Licensed under the EUPL, Version 1.2 or - as soon they will be approved by
- * the European Commission - subsequent versions of the EUPL (the "License");
- * You may not use this work except in compliance with the License.
- * You may obtain a copy of the License at:
- * https://joinup.ec.europa.eu/news/understanding-eupl-v12
- *
- * Unless required by applicable law or agreed to in writing, software
- * distributed under the License is distributed on an "AS IS" basis,
- * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
- * See the License for the specific language governing permissions and
- * limitations under the License.
- *
- * This product combines work with different licenses. See the "NOTICE" text
- * file for details on the various modules and licenses.
- * The "NOTICE" text file is part of the distribution. Any derivative works
- * that you distribute must include a readable copy of the "NOTICE" text file.
- */
-
-package at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks;
-
-import at.asitplus.eidas.specific.connector.MsEidasNodeConstants;
-import at.asitplus.eidas.specific.connector.gui.StaticGuiBuilderConfiguration;
-import at.gv.egiz.eaaf.core.api.gui.IGuiBuilderConfiguration;
-import at.gv.egiz.eaaf.core.api.gui.ISpringMvcGuiFormBuilder;
-import at.gv.egiz.eaaf.core.api.idp.IConfiguration;
-import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
-import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
-import at.gv.egiz.eaaf.core.impl.idp.auth.modules.AbstractAuthServletTask;
-import lombok.extern.slf4j.Slf4j;
-import org.springframework.beans.factory.annotation.Autowired;
-import org.springframework.stereotype.Component;
-
-import javax.servlet.http.HttpServletRequest;
-import javax.servlet.http.HttpServletResponse;
-
-/**
- * Task that searches ErnB and ZMR before adding person to SZR.
- *
- * @author amarsalek
- */
-@Slf4j
-@Component("GenerateGuiTask")
-public class GenerateGuiTask extends AbstractAuthServletTask {
-
-  @Autowired
-  ISpringMvcGuiFormBuilder guiBuilder;
-  @Autowired
-  IConfiguration basicConfig;
-
-  @Override
-  public void execute(ExecutionContext executionContext, HttpServletRequest request, HttpServletResponse response)
-      throws TaskExecutionException {
-    try {
-      final IGuiBuilderConfiguration config = new StaticGuiBuilderConfiguration(
-          basicConfig,
-          pendingReq,
-          basicConfig.getBasicConfiguration(
-              MsEidasNodeConstants.PROP_CONFIG_WEBCONTENT_TEMPLATES_OTHER_LOGIN_METHOD_SELECTION,
-              MsEidasNodeConstants.TEMPLATE_HTML_OTHERLOGINMETHODS),
-          MsEidasNodeConstants.ENDPOINT_OTHERLOGINMETHODSELECTION,
-          resourceLoader);
-
-      guiBuilder.build(request, response, config, "Other login methods selection form");
-
-    } catch (final Exception e) {
-      log.error("Initial search FAILED.", e);
-      throw new TaskExecutionException(pendingReq, "Gui creation FAILED.", e);
-    }
-  }
-
-}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateLoginMethodGuiTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateLoginMethodGuiTask.java
new file mode 100644
index 00000000..9c94b036
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateLoginMethodGuiTask.java
@@ -0,0 +1,76 @@
+/*
+ * Copyright 2021 A-SIT Plus GmbH
+ * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
+ * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
+ *
+ * Licensed under the EUPL, Version 1.2 or - as soon they will be approved by
+ * the European Commission - subsequent versions of the EUPL (the "License");
+ * You may not use this work except in compliance with the License.
+ * You may obtain a copy of the License at:
+ * https://joinup.ec.europa.eu/news/understanding-eupl-v12
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" basis,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ *
+ * This product combines work with different licenses. See the "NOTICE" text
+ * file for details on the various modules and licenses.
+ * The "NOTICE" text file is part of the distribution. Any derivative works
+ * that you distribute must include a readable copy of the "NOTICE" text file.
+ */
+
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks;
+
+import at.asitplus.eidas.specific.connector.MsEidasNodeConstants;
+import at.asitplus.eidas.specific.connector.gui.StaticGuiBuilderConfiguration;
+import at.gv.egiz.eaaf.core.api.gui.IGuiBuilderConfiguration;
+import at.gv.egiz.eaaf.core.api.gui.ISpringMvcGuiFormBuilder;
+import at.gv.egiz.eaaf.core.api.idp.IConfiguration;
+import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
+import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
+import at.gv.egiz.eaaf.core.impl.idp.auth.modules.AbstractAuthServletTask;
+import lombok.extern.slf4j.Slf4j;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.stereotype.Component;
+
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+
+/**
+ * Task that searches ErnB and ZMR before adding person to SZR.
+ *
+ * @author amarsalek
+ */
+@Slf4j
+@Component("GenerateGuiTask")
+public class GenerateLoginMethodGuiTask extends AbstractAuthServletTask {
+
+  @Autowired
+  ISpringMvcGuiFormBuilder guiBuilder;
+  @Autowired
+  IConfiguration basicConfig;
+
+  @Override
+  public void execute(ExecutionContext executionContext, HttpServletRequest request, HttpServletResponse response)
+      throws TaskExecutionException {
+    try {
+      final IGuiBuilderConfiguration config = new StaticGuiBuilderConfiguration(
+          basicConfig,
+          pendingReq,
+          basicConfig.getBasicConfiguration(
+              MsEidasNodeConstants.PROP_CONFIG_WEBCONTENT_TEMPLATES_OTHER_LOGIN_METHOD_SELECTION,
+              MsEidasNodeConstants.TEMPLATE_HTML_OTHERLOGINMETHODS),
+          MsEidasNodeConstants.ENDPOINT_OTHERLOGINMETHODSELECTION,
+          resourceLoader);
+
+      guiBuilder.build(request, response, config, "Other login methods selection form");
+
+    } catch (final Exception e) {
+      log.error("Initial search FAILED.", e);
+      throw new TaskExecutionException(pendingReq, "Gui creation FAILED.", e);
+    }
+  }
+
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveGuiResponseTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveGuiResponseTask.java
deleted file mode 100644
index f8f22ce2..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveGuiResponseTask.java
+++ /dev/null
@@ -1,88 +0,0 @@
-/*
- * Copyright 2021 A-SIT Plus GmbH
- * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
- * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
- *
- * Licensed under the EUPL, Version 1.2 or - as soon they will be approved by
- * the European Commission - subsequent versions of the EUPL (the "License");
- * You may not use this work except in compliance with the License.
- * You may obtain a copy of the License at:
- * https://joinup.ec.europa.eu/news/understanding-eupl-v12
- *
- * Unless required by applicable law or agreed to in writing, software
- * distributed under the License is distributed on an "AS IS" basis,
- * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
- * See the License for the specific language governing permissions and
- * limitations under the License.
- *
- * This product combines work with different licenses. See the "NOTICE" text
- * file for details on the various modules and licenses.
- * The "NOTICE" text file is part of the distribution. Any derivative works
- * that you distribute must include a readable copy of the "NOTICE" text file.
- */
-
-package at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks;
-
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SelectedLoginMethod;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.InvalidUserInputException;
-import at.gv.egiz.eaaf.core.api.data.EaafConstants;
-import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
-import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
-import at.gv.egiz.eaaf.core.impl.idp.auth.modules.AbstractAuthServletTask;
-import lombok.extern.slf4j.Slf4j;
-import org.apache.commons.lang.StringEscapeUtils;
-import org.apache.commons.lang3.StringUtils;
-import org.springframework.stereotype.Component;
-
-import javax.servlet.http.HttpServletRequest;
-import javax.servlet.http.HttpServletResponse;
-import java.util.Enumeration;
-
-/**
- * Task that searches ErnB and ZMR before adding person to SZR.
- *
- * @author amarsalek
- */
-@Slf4j
-@Component("ReceiveGuiResponseTask")
-public class ReceiveGuiResponseTask extends AbstractAuthServletTask {
-
-  final String loginMethod = "loginSelection";
-
-  @Override
-  public void execute(ExecutionContext executionContext, HttpServletRequest request, HttpServletResponse response)
-      throws TaskExecutionException {
-    try {
-      // set parameter execution context
-      final Enumeration<String> reqParamNames = request.getParameterNames();
-      while (reqParamNames.hasMoreElements()) {
-        final String paramName = reqParamNames.nextElement();
-        if (StringUtils.isNotEmpty(paramName)
-            && !EaafConstants.PROCESS_ENGINE_PENDINGREQUESTID.equalsIgnoreCase(paramName)
-            && loginMethod.equalsIgnoreCase(paramName)) {
-          String value = StringEscapeUtils.escapeHtml(request.getParameter(paramName));
-          SelectedLoginMethod selection = SelectedLoginMethod.valueOf(value);
-          executionContext.put(loginMethod, selection);
-          switch (selection) {
-            case EIDAS_LOGIN:
-              executionContext.put(Constants.TRANSITION_TO_GENERATE_EIDAS_LOGIN, true);
-              break;
-            case MOBILE_PHONE_SIGNATURE_LOGIN:
-              executionContext.put(Constants.TRANSITION_TO_GENERATE_MOBILE_PHONE_SIGNATURE_REQUEST_TASK, true);
-              break;
-            case NO_OTHER_LOGIN:
-              executionContext.put(Constants.TRANSITION_TO_GENERATE_GUI_QUERY_AUSTRIAN_RESIDENCE_TASK, true);
-              break;
-            default:
-              throw new InvalidUserInputException();
-          }
-        }
-      }
-    } catch (final Exception e) {
-      log.error("Parsing selected login method FAILED.", e);
-      throw new TaskExecutionException(pendingReq, "Parsing selected login method FAILED.", e);
-    }
-  }
-
-}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveLoginMethodGuiResponseTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveLoginMethodGuiResponseTask.java
new file mode 100644
index 00000000..266198e5
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveLoginMethodGuiResponseTask.java
@@ -0,0 +1,95 @@
+/*
+ * Copyright 2021 A-SIT Plus GmbH
+ * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
+ * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
+ *
+ * Licensed under the EUPL, Version 1.2 or - as soon they will be approved by
+ * the European Commission - subsequent versions of the EUPL (the "License");
+ * You may not use this work except in compliance with the License.
+ * You may obtain a copy of the License at:
+ * https://joinup.ec.europa.eu/news/understanding-eupl-v12
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" basis,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ *
+ * This product combines work with different licenses. See the "NOTICE" text
+ * file for details on the various modules and licenses.
+ * The "NOTICE" text file is part of the distribution. Any derivative works
+ * that you distribute must include a readable copy of the "NOTICE" text file.
+ */
+
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks;
+
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SelectedLoginMethod;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.InvalidUserInputException;
+import at.gv.egiz.eaaf.core.api.data.EaafConstants;
+import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
+import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
+import at.gv.egiz.eaaf.core.impl.idp.auth.modules.AbstractAuthServletTask;
+import lombok.extern.slf4j.Slf4j;
+import org.apache.commons.lang.StringEscapeUtils;
+import org.apache.commons.lang3.StringUtils;
+import org.springframework.stereotype.Component;
+
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+import java.util.Enumeration;
+
+/**
+ * Task that searches ErnB and ZMR before adding person to SZR.
+ *
+ * @author amarsalek
+ */
+@Slf4j
+@Component("ReceiveGuiResponseTask")
+public class ReceiveLoginMethodGuiResponseTask extends AbstractAuthServletTask {
+
+  @Override
+  public void execute(ExecutionContext executionContext, HttpServletRequest request, HttpServletResponse response)
+      throws TaskExecutionException {
+    int found = 0;
+    try {
+      // set parameter execution context
+      final Enumeration<String> reqParamNames = request.getParameterNames();
+      while (reqParamNames.hasMoreElements()) {
+        final String paramName = reqParamNames.nextElement();
+        if (StringUtils.isNotEmpty(paramName)
+            && !EaafConstants.PROCESS_ENGINE_PENDINGREQUESTID.equalsIgnoreCase(paramName)
+            && Constants.REQ_SELECTED_LOGIN_METHOD_PARAMETER.equalsIgnoreCase(paramName)) {
+          String value = StringEscapeUtils.escapeHtml(request.getParameter(paramName));
+          SelectedLoginMethod selection = SelectedLoginMethod.valueOf(value);
+          executionContext.put(Constants.REQ_SELECTED_LOGIN_METHOD_PARAMETER, selection);
+          switch (selection) {
+            case EIDAS_LOGIN:
+              executionContext.put(Constants.TRANSITION_TO_GENERATE_EIDAS_LOGIN, true);
+              found++;
+              break;
+            case MOBILE_PHONE_SIGNATURE_LOGIN:
+              executionContext.put(Constants.TRANSITION_TO_GENERATE_MOBILE_PHONE_SIGNATURE_REQUEST_TASK, true);
+              found++;
+              break;
+            case NO_OTHER_LOGIN:
+              executionContext.put(Constants.TRANSITION_TO_GENERATE_GUI_QUERY_AUSTRIAN_RESIDENCE_TASK, true);
+              found++;
+              break;
+            default:
+              throw new InvalidUserInputException();
+          }
+        }
+      }
+    } catch (final Exception e) {
+      log.error("Parsing selected login method FAILED.", e);
+      throw new TaskExecutionException(pendingReq, "Parsing selected login method FAILED.", e);
+    }
+    if (found != 1) {
+      log.error("Parsing selected login method FAILED.");
+      throw new TaskExecutionException(pendingReq, "Parsing selected login method FAILED.",
+          new InvalidUserInputException());
+    }
+  }
+
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml
index 5897fc78..b5001d77 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml
@@ -111,7 +111,7 @@
         scope="prototype" />
 
   <bean id="GenerateGuiTask"
-        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.GenerateGuiTask"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.GenerateLoginMethodGuiTask"
         scope="prototype" />
 
   <bean id="GenerateMobilePhoneSignatureRequestTask"
@@ -119,7 +119,7 @@
         scope="prototype" />
 
   <bean id="ReceiveGuiResponseTask"
-        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.ReceiveGuiResponseTask"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.ReceiveLoginMethodGuiResponseTask"
         scope="prototype" />
 
   <bean id="ReceiveMobilePhoneSignatureResponseTask"
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveLoginMethodGuiResponseTaskTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveLoginMethodGuiResponseTaskTest.java
new file mode 100644
index 00000000..c6729a03
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveLoginMethodGuiResponseTaskTest.java
@@ -0,0 +1,139 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.test.tasks;
+
+import at.asitplus.eidas.specific.connector.MsEidasNodeConstants;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SelectedLoginMethod;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.InvalidUserInputException;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.ReceiveLoginMethodGuiResponseTask;
+import at.gv.egiz.eaaf.core.api.data.EaafConstants;
+import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
+import at.gv.egiz.eaaf.core.impl.idp.controller.tasks.AbstractLocaleAuthServletTask;
+import at.gv.egiz.eaaf.core.impl.idp.module.test.TestRequestImpl;
+import at.gv.egiz.eaaf.core.impl.idp.process.ExecutionContextImpl;
+import org.apache.commons.lang3.RandomStringUtils;
+import org.junit.Assert;
+import org.junit.Before;
+import org.junit.BeforeClass;
+import org.junit.Test;
+import org.junit.runner.RunWith;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.context.i18n.LocaleContextHolder;
+import org.springframework.mock.web.MockHttpServletRequest;
+import org.springframework.mock.web.MockHttpServletResponse;
+import org.springframework.test.context.ActiveProfiles;
+import org.springframework.test.context.ContextConfiguration;
+import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
+import org.springframework.test.context.web.WebAppConfiguration;
+import org.springframework.web.context.request.RequestContextHolder;
+import org.springframework.web.context.request.ServletRequestAttributes;
+
+import java.io.UnsupportedEncodingException;
+
+@RunWith(SpringJUnit4ClassRunner.class)
+//@ContextConfiguration({
+//    "/applicationContext.xml",
+//    "/specific_eIDAS_connector.beans.xml",
+//    "/eaaf_core.beans.xml",
+//    "/eaaf_pvp.beans.xml",
+//    "/eaaf_pvp_idp.beans.xml",
+//    "/spring/SpringTest-context_simple_storage.xml" })
+@ContextConfiguration(locations = {
+    "/SpringTest-context_tasks_test.xml",
+    "/SpringTest-context_basic_mapConfig.xml"
+})
+@ActiveProfiles(profiles = {"deprecatedConfig"})
+@WebAppConfiguration
+public class ReceiveLoginMethodGuiResponseTaskTest {
+
+  @Autowired private ReceiveLoginMethodGuiResponseTask task;
+  
+  private ExecutionContextImpl executionContext = new ExecutionContextImpl();
+  private TestRequestImpl pendingReq;
+  private MockHttpServletRequest httpReq;
+  private MockHttpServletResponse httpResp;
+  
+  /**
+   * jUnit class initializer.
+   * 
+   */
+  @BeforeClass
+  public static void classInitializer() {
+    final String current = new java.io.File(".").toURI().toString();
+    System.setProperty("eidas.ms.configuration", current + "src/test/resources/config/junit_config_1.properties");
+    
+  }
+  
+  /**
+   * jUnit test set-up.
+   * 
+   */
+  @Before
+  public void initialize() {
+    httpReq = new MockHttpServletRequest("POST", "https://localhost/ms_connector");
+    httpResp = new MockHttpServletResponse();
+    RequestContextHolder.resetRequestAttributes();
+    RequestContextHolder.setRequestAttributes(new ServletRequestAttributes(httpReq, httpResp));
+    
+    pendingReq = new TestRequestImpl();
+    pendingReq.setAuthUrl("https://localhost/ms_connector");
+    pendingReq.setPendingReqId(RandomStringUtils.randomAlphanumeric(10));
+    
+    LocaleContextHolder.resetLocaleContext();
+  }
+  
+  @Test
+  public void withMobileSignatureSelection() throws TaskExecutionException {
+    test(SelectedLoginMethod.MOBILE_PHONE_SIGNATURE_LOGIN);
+  }
+
+  @Test
+  public void withEidasSelection() throws TaskExecutionException {
+    test(SelectedLoginMethod.MOBILE_PHONE_SIGNATURE_LOGIN);
+  }
+
+  @Test
+  public void withNoOtherLoginSelection() throws TaskExecutionException {
+    test(SelectedLoginMethod.NO_OTHER_LOGIN);
+  }
+
+  public void test(SelectedLoginMethod loginMethod) throws TaskExecutionException {
+    String parameterValue = loginMethod.name();
+    httpReq.setParameter(Constants.REQ_SELECTED_LOGIN_METHOD_PARAMETER, parameterValue);
+
+    task.execute(pendingReq, executionContext);
+
+    //result validation
+    Assert.assertFalse("wrong pendingReq auth flag", pendingReq.isAuthenticated());
+    Assert.assertFalse("wrong process-cancelled flag", executionContext.isProcessCancelled());
+
+    Assert.assertNotNull("no login-selection found",
+        executionContext.get(Constants.REQ_SELECTED_LOGIN_METHOD_PARAMETER));
+    Assert.assertEquals("Wrong login-selection found", loginMethod,
+        executionContext.get(Constants.REQ_SELECTED_LOGIN_METHOD_PARAMETER));
+  }
+
+
+  @Test(expected = TaskExecutionException.class)
+  public void withInvalidSelection() throws TaskExecutionException {
+    String parameterValue = RandomStringUtils.randomAlphabetic(2);
+    httpReq.setParameter(Constants.REQ_SELECTED_LOGIN_METHOD_PARAMETER, parameterValue);
+    task.execute(pendingReq, executionContext);
+  }
+
+  @Test(expected = TaskExecutionException.class)
+  public void withNullSelection() throws TaskExecutionException {
+    httpReq.setParameter(Constants.REQ_SELECTED_LOGIN_METHOD_PARAMETER, "null");
+    task.execute(pendingReq, executionContext);
+  }
+
+  @Test(expected = TaskExecutionException.class)
+  public void withEmptySelection() throws TaskExecutionException {
+    httpReq.setParameter(Constants.REQ_SELECTED_LOGIN_METHOD_PARAMETER, "");
+    task.execute(pendingReq, executionContext);
+  }
+
+  @Test(expected = TaskExecutionException.class)
+  public void withoutLoginMethodSelection() throws TaskExecutionException, UnsupportedEncodingException {
+    task.execute(pendingReq, executionContext);
+  }
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_tasks_test.xml b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_tasks_test.xml
index ed636eed..df7ce85f 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_tasks_test.xml
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_tasks_test.xml
@@ -87,7 +87,7 @@
         scope="prototype" />
 
   <bean id="GenerateGuiTask"
-        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.GenerateGuiTask"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.GenerateLoginMethodGuiTask"
         scope="prototype" />
 
   <bean id="GenerateMobilePhoneSignatureRequestTask"
@@ -95,7 +95,7 @@
         scope="prototype" />
 
   <bean id="ReceiveGuiResponseTask"
-        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.ReceiveGuiResponseTask"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.ReceiveLoginMethodGuiResponseTask"
         scope="prototype" />
 
   <bean id="ReceiveMobilePhoneSignatureResponseTask"
-- 
cgit v1.2.3


From 5a07ce3e84615cb088ed844312d726679095ec03 Mon Sep 17 00:00:00 2001
From: Alexander Marsalek <amarsalek@iaik.tugraz.at>
Date: Mon, 8 Feb 2021 13:04:07 +0100
Subject: GenerateMobilePhoneSignatureRequestTaskTest

---
 .../IdAustriaClientAuthMetadataController.java     |  97 ++----
 .../GenerateMobilePhoneSignatureRequestTask.java   |   4 +-
 .../eidas/v2/test/dummy/DummyAuthConfigMap.java    | 144 +++++++++
 .../modules/auth/eidas/v2/test/dummy/DummyOA.java  | 304 ++++++++++++++++++
 .../eidas/v2/test/dummy/IAhSpConfiguration.java    | 152 +++++++++
 ...enerateMobilePhoneSignatureRequestTaskTest.java | 346 +++++++++++++++++++++
 .../SpringTest-context_basic_mapConfig1.xml        |  24 ++
 .../resources/SpringTest-context_basic_test1.xml   |  63 ++++
 .../resources/SpringTest-context_tasks_test1.xml   | 145 +++++++++
 .../resources/config/junit_config_1-.properties    | 252 +++++++++++++++
 .../data/idp_metadata_classpath_entity.xml         | 146 +++++++++
 .../resources/data/pvp_postbinding_template.html   |   3 +
 .../src/test/resources/data/sp_metadata_junit.xml  |  66 ++++
 13 files changed, 1679 insertions(+), 67 deletions(-)
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/dummy/DummyAuthConfigMap.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/dummy/DummyOA.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/dummy/IAhSpConfiguration.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/GenerateMobilePhoneSignatureRequestTaskTest.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_basic_mapConfig1.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_basic_test1.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_tasks_test1.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/junit_config_1-.properties
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/idp_metadata_classpath_entity.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/pvp_postbinding_template.html
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/sp_metadata_junit.xml

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthMetadataController.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthMetadataController.java
index 0f3c1281..b105eb82 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthMetadataController.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthMetadataController.java
@@ -1,33 +1,20 @@
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient;
 
 
-import java.io.IOException;
-import java.net.MalformedURLException;
-import java.net.URL;
-import java.util.ArrayList;
-import java.util.List;
-import java.util.Map;
-
-import javax.servlet.http.HttpServletRequest;
-import javax.servlet.http.HttpServletResponse;
-
-import at.gv.egiz.eaaf.core.exceptions.EaafAuthenticationException;
 import at.gv.egiz.eaaf.core.exceptions.EaafException;
-import at.gv.egiz.eaaf.core.impl.data.Pair;
-import at.gv.egiz.eaaf.core.impl.http.HttpUtils;
 import at.gv.egiz.eaaf.core.impl.idp.controller.AbstractController;
-import at.gv.egiz.eaaf.core.impl.utils.KeyValueUtils;
 import at.gv.egiz.eaaf.modules.pvp2.api.IPvp2BasicConfiguration;
 import at.gv.egiz.eaaf.modules.pvp2.impl.builder.PvpMetadataBuilder;
-
-import org.apache.commons.lang3.StringUtils;
+import com.google.common.net.MediaType;
+import lombok.extern.slf4j.Slf4j;
 import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.stereotype.Controller;
 import org.springframework.web.bind.annotation.RequestMapping;
 import org.springframework.web.bind.annotation.RequestMethod;
 
-import com.google.common.net.MediaType;
-import lombok.extern.slf4j.Slf4j;
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+import java.io.IOException;
 
 /**
  * Controller that generates SAML2 metadata for eIDAS authentication client.
@@ -39,7 +26,7 @@ import lombok.extern.slf4j.Slf4j;
 @Controller
 public class IdAustriaClientAuthMetadataController extends AbstractController {
 
-  private static final String ERROR_CODE_INTERNAL_00 = "eaaf.core.00";
+  //private static final String ERROR_CODE_INTERNAL_00 = "eaaf.core.00";
 
   @Autowired
   PvpMetadataBuilder metadatabuilder;
@@ -74,12 +61,12 @@ public class IdAustriaClientAuthMetadataController extends AbstractController {
       EaafException {
     // check PublicURL prefix
     try {
-      final String authUrl = getAuthUrlFromHttpContext(req);
+      final String authUrl = "https://eid.egiz.gv.at/idp/shibboleth";//TODO load from config
 
       // initialize metadata builder configuration
       final IdAustriaClientAuthMetadataConfiguration metadataConfig =
           new IdAustriaClientAuthMetadataConfiguration(authUrl, credentialProvider, pvpConfiguration);
-      metadataConfig.setAdditionalRequiredAttributes(getAdditionalRequiredAttributes());
+      // metadataConfig.setAdditionalRequiredAttributes(getAdditionalRequiredAttributes());
 
       // build metadata
       final String xmlMetadata = metadatabuilder.buildPvpMetadata(metadataConfig);
@@ -99,51 +86,29 @@ public class IdAustriaClientAuthMetadataController extends AbstractController {
 
   }
 
-  private String getAuthUrlFromHttpContext(HttpServletRequest req) throws EaafException {
-    // check if End-Point is valid
-    final String authUrlString = HttpUtils.extractAuthUrlFromRequest(req);
-    URL authReqUrl;
-    try {
-      authReqUrl = new URL(authUrlString);
-
-    } catch (final MalformedURLException e) {
-      log.warn("Requested URL: {} is not a valid URL.", authUrlString);
-      throw new EaafAuthenticationException(ERROR_CODE_INTERNAL_00, new Object[] { authUrlString }, e);
-
-    }
-    //TODO remove
-    final String idpAuthUrl = authConfig.validateIdpUrl(authReqUrl);
-    if (idpAuthUrl == null) {
-      log.warn("Requested URL: {} is NOT found in configuration.", authReqUrl);
-      throw new EaafAuthenticationException(ERROR_CODE_INTERNAL_00, new Object[] { authUrlString });
-
-    }
 
-    return idpAuthUrl;
-  }
-
-  private List<Pair<String, Boolean>> getAdditionalRequiredAttributes() {
-    final List<Pair<String, Boolean>> result = new ArrayList<>();
-
-    // load attributes from configuration
-    final Map<String, String> addReqAttributes = authConfig.getBasicConfigurationWithPrefix(
-        IdAustriaClientAuthConstants.CONFIG_PROPS_REQUIRED_PVP_ATTRIBUTES_LIST);
-    for (final String el : addReqAttributes.values()) {
-      if (StringUtils.isNotEmpty(el)) {
-        log.trace("Parse additional attr. definition: " + el);
-        final List<String> attr = KeyValueUtils.getListOfCsvValues(el.trim());
-        if (attr.size() == 2) {
-          result.add(Pair.newInstance(attr.get(0), Boolean.parseBoolean(attr.get(1))));
-
-        } else {
-          log.info("IGNORE additional attr. definition: " + el
-              + " Reason: Format not valid");
-        }
-      }
-    }
-
-    return result;
-
-  }
+  //  private List<Pair<String, Boolean>> getAdditionalRequiredAttributes() {
+  //    final List<Pair<String, Boolean>> result = new ArrayList<>();
+  //
+  //    // load attributes from configuration
+  //    final Map<String, String> addReqAttributes = authConfig.getBasicConfigurationWithPrefix(
+  //        IdAustriaClientAuthConstants.CONFIG_PROPS_REQUIRED_PVP_ATTRIBUTES_LIST);
+  //    for (final String el : addReqAttributes.values()) {
+  //      if (StringUtils.isNotEmpty(el)) {
+  //        log.trace("Parse additional attr. definition: " + el);
+  //        final List<String> attr = KeyValueUtils.getListOfCsvValues(el.trim());
+  //        if (attr.size() == 2) {
+  //          result.add(Pair.newInstance(attr.get(0), Boolean.parseBoolean(attr.get(1))));
+  //
+  //        } else {
+  //          log.info("IGNORE additional attr. definition: " + el
+  //              + " Reason: Format not valid");
+  //        }
+  //      }
+  //    }
+  //
+  //    return result;
+  //
+  //  }
 
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateMobilePhoneSignatureRequestTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateMobilePhoneSignatureRequestTask.java
index af1ef6f7..76f78a78 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateMobilePhoneSignatureRequestTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateMobilePhoneSignatureRequestTask.java
@@ -83,7 +83,8 @@ public class GenerateMobilePhoneSignatureRequestTask extends AbstractAuthServlet
       //step 15a
 
       // get entityID for ms-specific eIDAS node
-      final String msNodeEntityID = "TODO";
+      //TODO load from config
+      final String msNodeEntityID = "classpath:/data/idp_metadata_classpath_entity.xml";
 
       if (StringUtils.isEmpty(msNodeEntityID)) {
         log.info("eIDAS authentication not possible -> NO EntityID for central eIDAS node FOUND!");
@@ -130,6 +131,7 @@ public class GenerateMobilePhoneSignatureRequestTask extends AbstractAuthServlet
 
       //TODO
     } catch (final Exception e) {
+      e.printStackTrace();
       log.error("Initial search FAILED.", e);
       throw new TaskExecutionException(pendingReq, "Initial search FAILED.", e);
     }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/dummy/DummyAuthConfigMap.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/dummy/DummyAuthConfigMap.java
new file mode 100644
index 00000000..ba531029
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/dummy/DummyAuthConfigMap.java
@@ -0,0 +1,144 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.test.dummy;
+
+import java.io.IOException;
+import java.io.InputStream;
+import java.net.URI;
+import java.net.URL;
+import java.util.HashMap;
+import java.util.Map;
+import java.util.Properties;
+
+import at.gv.egiz.eaaf.core.api.idp.IConfigurationWithSP;
+import at.gv.egiz.eaaf.core.api.idp.ISpConfiguration;
+import at.gv.egiz.eaaf.core.exceptions.EaafConfigurationException;
+import at.gv.egiz.eaaf.core.exceptions.EaafException;
+import at.gv.egiz.eaaf.core.impl.utils.KeyValueUtils;
+
+import org.apache.commons.lang3.StringUtils;
+
+/**
+ * Dummy Application-configuration implementation for jUnit tests.
+ *
+ * @author tlenz
+ *
+ */
+public class DummyAuthConfigMap implements IConfigurationWithSP {
+
+  private Map<String, String> config = new HashMap<>();
+
+  /**
+   * Empty Dummy Application-configuration.
+   *
+   */
+  public DummyAuthConfigMap() {
+
+  }
+
+  /**
+   * Dummy Application-configuration.
+   *
+   * @param configIs Property based configuration
+   * @throws IOException In case of an configuration read error
+   */
+  public DummyAuthConfigMap(final InputStream configIs) throws IOException {
+
+    final Properties props = new Properties();
+    props.load(configIs);
+
+    config = KeyValueUtils.convertPropertiesToMap(props);
+
+  }
+
+  /**
+   * Dummy Application-configuration.
+   *
+   * @param path Path to property based configuration
+   * @throws IOException In case of an configuration read error
+   */
+  public DummyAuthConfigMap(final String path) throws IOException {
+
+    final Properties props = new Properties();
+    props.load(this.getClass().getResourceAsStream(path));
+
+    config = KeyValueUtils.convertPropertiesToMap(props);
+
+  }
+
+
+  @Override
+  public String getBasicConfiguration(final String key) {
+    return config.get(key);
+
+  }
+
+  @Override
+  public String getBasicConfiguration(final String key, final String defaultValue) {
+    final String value = getBasicConfiguration(key);
+    if (StringUtils.isEmpty(value)) {
+      return defaultValue;
+    } else {
+      return value;
+    }
+
+  }
+
+  @Override
+  public boolean getBasicConfigurationBoolean(final String key) {
+    final String value = getBasicConfiguration(key);
+    if (StringUtils.isEmpty(value)) {
+      return false;
+    } else {
+      return Boolean.valueOf(value);
+    }
+  }
+
+  @Override
+  public boolean getBasicConfigurationBoolean(final String key, final boolean defaultValue) {
+    return Boolean.parseBoolean(getBasicConfiguration(key, String.valueOf(defaultValue)));
+
+  }
+
+  @Override
+  public Map<String, String> getBasicConfigurationWithPrefix(final String prefix) {
+    return KeyValueUtils.getSubSetWithPrefix(config, prefix);
+
+  }
+
+  @Override
+  public ISpConfiguration getServiceProviderConfiguration(final String uniqueID)
+      throws EaafConfigurationException {
+    return null;
+  }
+
+  @Override
+  public <T> T getServiceProviderConfiguration(final String spIdentifier, final Class<T> decorator)
+      throws EaafConfigurationException {
+    return null;
+  }
+
+  @Override
+  public URI getConfigurationRootDirectory() {
+    return new java.io.File(".").toURI();
+
+  }
+
+  @Override
+  public String validateIdpUrl(final URL authReqUrl) throws EaafException {
+    return authReqUrl.toString();
+  }
+
+  public void putConfigValue(final String key, final String value) {
+    config.put(key, value);
+  }
+
+  public void removeConfigValue(final String key) {
+    config.remove(key);
+
+  }
+
+  public void removeAll() {
+    config.clear();
+
+  }
+
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/dummy/DummyOA.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/dummy/DummyOA.java
new file mode 100644
index 00000000..cf879562
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/dummy/DummyOA.java
@@ -0,0 +1,304 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.test.dummy;
+
+import java.util.ArrayList;
+import java.util.Collections;
+import java.util.HashMap;
+import java.util.List;
+import java.util.Map;
+
+import org.apache.commons.lang3.StringUtils;
+
+import at.gv.egiz.eaaf.core.impl.data.Pair;
+import at.gv.egiz.eaaf.core.impl.idp.auth.builder.BpkBuilder;
+import at.gv.egiz.eaaf.core.impl.utils.KeyValueUtils;
+
+import lombok.Getter;
+import lombok.Setter;
+
+public class DummyOA implements IAhSpConfiguration{
+
+  private static final long serialVersionUID = 1L;
+  private String uniqueAppId = null;
+  private String targetIdentifier = null;
+  private String friendlyName = null;
+  private String cc = "AT";
+  private final Map<String, String> config = new HashMap<>();
+  private final List<Pair<String, String>> reqAttributes = new ArrayList<>();
+
+  private boolean mandateEnabled = false;
+  private boolean onlyMandateEnabled = false;
+  private String mandateProfilesCsv;
+
+  private boolean eidasEnabled = false;
+
+  private boolean testCredentialEnabled = true;
+  private String additionalBpkTargetCsv;
+  private List<Pair<String, String>> additionalEncBpkTargets;
+
+  @Setter
+  private boolean restricted = true;
+
+  @Setter
+  private long latestVdaAuthentication = 60 * 365 * 5;
+
+  @Getter
+  @Setter
+  private boolean publicServiceProvider;
+
+  @Getter
+  @Setter
+  private boolean multiMandateEnabled;
+
+  @Setter
+  private String bmiUniqueIdentifier;
+
+  @Override
+  public Map<String, String> getFullConfiguration() {
+    return this.config;
+  }
+
+  @Override
+  public String getConfigurationValue(final String key) {
+    return this.config.get(key);
+  }
+
+  @Override
+  public String getConfigurationValue(final String key, final String defaultValue) {
+    if (StringUtils.isNotEmpty(getConfigurationValue(key))) {
+      return getConfigurationValue(key);
+    } else {
+      return defaultValue;
+    }
+  }
+
+  @Override
+  public boolean isConfigurationValue(final String key) {
+    if (StringUtils.isNotEmpty(getConfigurationValue(key))) {
+      return Boolean.valueOf(getConfigurationValue(key));
+    } else {
+      return false;
+    }
+
+  }
+
+  @Override
+  public boolean isConfigurationValue(final String key, final boolean defaultValue) {
+    return Boolean.parseBoolean(getConfigurationValue(key, String.valueOf(defaultValue)));
+
+  }
+
+  @Override
+  public boolean containsConfigurationKey(final String key) {
+    return this.config.containsKey(key);
+  }
+
+  @Override
+  public String getUniqueIdentifier() {
+    return this.uniqueAppId;
+  }
+
+  @Override
+  public String getUniqueApplicationRegisterIdentifier() {
+    return this.bmiUniqueIdentifier;
+
+  }
+
+  @Override
+  public String getFriendlyName() {
+    return this.friendlyName;
+  }
+
+  @Override
+  public boolean hasBaseIdInternalProcessingRestriction() {
+    // TODO Auto-generated method stub
+    return false;
+  }
+
+  @Override
+  public boolean hasBaseIdTransferRestriction() {
+    // TODO Auto-generated method stub
+    return false;
+  }
+
+  @Override
+  public List<String> getTargetsWithNoBaseIdInternalProcessingRestriction() {
+    // TODO Auto-generated method stub
+    return null;
+  }
+
+  @Override
+  public List<String> getTargetsWithNoBaseIdTransferRestriction() {
+    // TODO Auto-generated method stub
+    return null;
+  }
+
+  @Override
+  public List<String> getRequiredLoA() {
+    // TODO Auto-generated method stub
+    return null;
+  }
+
+  @Override
+  public String getLoAMatchingMode() {
+    // TODO Auto-generated method stub
+    return null;
+  }
+
+  @Override
+  public String getAreaSpecificTargetIdentifier() {
+    return this.targetIdentifier;
+  }
+
+  @Override
+  public boolean isTestCredentialEnabled() {
+    return this.testCredentialEnabled;
+  }
+
+  @Override
+  public List<String> getTestCredentialOids() {
+    // TODO Auto-generated method stub
+    return null;
+  }
+
+  @Override
+  public List<Pair<String, String>> getRequiredAttributes() {
+    return this.reqAttributes;
+
+  }
+
+  public void setUniqueAppId(final String uniqueAppId) {
+    this.uniqueAppId = uniqueAppId;
+  }
+
+  @Override
+  public String getCountryCode() {
+    return cc;
+  }
+
+  @Override
+  public void setCountryCode(final String cc) {
+    this.cc = cc;
+
+  }
+
+  public void setTargetIdentifier(final String targetIdentifier) {
+    this.targetIdentifier = BpkBuilder.normalizeBpkTargetIdentifierToCommonFormat(targetIdentifier);
+
+  }
+
+  public void setFriendlyName(final String friendlyName) {
+    this.friendlyName = friendlyName;
+  }
+
+  public void putGenericConfigurationKey(final String key, final String value) {
+    this.config.put(key, value);
+
+  }
+
+  public void addRequiredAttribute(final String attrUri) {
+    this.reqAttributes.add(Pair.newInstance(attrUri, null));
+
+  }
+
+  public void removeRequiredAttribute(final String attrUri) {
+    for (final Pair<String, String> el : reqAttributes) {
+      if (el.getFirst().equals(attrUri)) {
+        reqAttributes.remove(el);
+        break;
+
+      }
+
+
+    }
+  }
+
+  public void addRequiredAttribute(final String attrUri, String param) {
+    this.reqAttributes.add(Pair.newInstance(attrUri, param));
+
+  }
+
+  @Override
+  public boolean isMandateEnabled() {
+    return this.mandateEnabled;
+  }
+
+  @Override
+  public boolean isOnlyMandateEnabled() {
+    return this.onlyMandateEnabled;
+
+  }
+
+  @Override
+  public List<String> getMandateProfiles() {
+    return KeyValueUtils.getListOfCsvValues(mandateProfilesCsv);
+  }
+
+  @Override
+  public List<String> getAdditionalBpkTargets() {
+    return KeyValueUtils.getListOfCsvValues(additionalBpkTargetCsv);
+
+  }
+
+  @Override
+  public List<Pair<String, String>> getAdditionalForeignBpkTargets() {
+    if (additionalEncBpkTargets == null) {
+      return Collections.emptyList();
+
+    } else {
+      return additionalEncBpkTargets;
+
+    }
+  }
+
+  @Override
+  public long lastVdaAuthenticationDelay() {
+    return latestVdaAuthentication;
+
+  }
+
+  @Override
+  public boolean isRestrictedServiceProvider() {
+    return this.restricted ;
+  }
+
+
+  public void setMandateEnabled(final boolean mandateEnabled) {
+    this.mandateEnabled = mandateEnabled;
+  }
+
+  public void setOnlyMandateEnabled(final boolean onlyMandateEnabled) {
+    this.onlyMandateEnabled = onlyMandateEnabled;
+  }
+
+  public void setMandateProfilesCsv(final String mandateProfilesCsv) {
+    this.mandateProfilesCsv = mandateProfilesCsv;
+  }
+
+  public void setTestCredentialEnabled(final boolean testCredentialEnabled) {
+    this.testCredentialEnabled = testCredentialEnabled;
+  }
+
+  public void setAdditionalBpkTargetCsv(String additionalBpkTargetCsv) {
+    this.additionalBpkTargetCsv = additionalBpkTargetCsv;
+  }
+
+  public void setAdditionalEncBpkTargets(List<Pair<String, String>> additionalEncBpkTargets) {
+    this.additionalEncBpkTargets = additionalEncBpkTargets;
+  }
+
+  @Override
+  public boolean isEnabled() {
+    return true;
+  }
+
+  @Override
+  public boolean isEidasEnabled() {
+    return this.eidasEnabled;
+
+  }
+
+  public void setEidasEnabled(boolean eidasEnabled) {
+    this.eidasEnabled = eidasEnabled;
+  }
+
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/dummy/IAhSpConfiguration.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/dummy/IAhSpConfiguration.java
new file mode 100644
index 00000000..13d61f15
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/dummy/IAhSpConfiguration.java
@@ -0,0 +1,152 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.test.dummy;
+
+import java.util.List;
+
+import javax.annotation.Nonnull;
+import javax.annotation.Nullable;
+
+import at.gv.egiz.eaaf.core.api.idp.ISpConfiguration;
+import at.gv.egiz.eaaf.core.impl.data.Pair;
+
+public interface IAhSpConfiguration extends ISpConfiguration {
+
+
+  /**
+   * Flag if this Service Provider is enabled.
+   *
+   * @return true if the SP is enabled, otherwise false
+   */
+  boolean isEnabled();
+
+  /**
+   * Get unique identifier that is used in Application-Register from BM.I.
+   *
+   * <p>If no BM.I specific identifier is available then this method returns
+   * the same identifier as <code>getUniqueIdentifier()</code></p>
+   *
+   * @return unique identifier from BM.I AppReg, or generic uniqueId of no specific exists
+   */
+  String getUniqueApplicationRegisterIdentifier();
+
+  /**
+   * Flag that marks this Service-Provider as <i>public</i> or <i>private</i>.
+   *
+   * <p><b>Default:</b> If it is not set or has an unknown value, its <i>private</i> by default</p>
+   *
+   * @return <code>true</code> if it is from <i>public</i>, otherwise <code>false</code>
+   */
+  boolean isPublicServiceProvider();
+
+  /**
+   * Enable test identities for this Service Provider.
+   *
+   * @return true if test identities are allowed, otherwise false
+   */
+  boolean isTestCredentialEnabled();
+
+  /**
+   * Get a List of OID's that refine the set of allowed test identities.
+   *
+   * @return @link {@link List} of test-identity OID's
+   */
+  @Nullable
+  List<String> getTestCredentialOids();
+
+
+  /**
+   * Get a List of unique attribute URI's that are required by this SP.
+   *
+   * @return {@link List} of attribute URI's / parameter {@link Pair}s
+   */
+  List<Pair<String, String>> getRequiredAttributes();
+
+
+  /**
+   * Get the CountryCode for this service. <br>
+   * <br>
+   * <b>Default:</b> AT
+   *
+   * @return
+   */
+  String getCountryCode();
+
+  /**
+   * Set the CountryCode for this service. If not countryCode is set, AT is used as default.
+   *
+   * @param cc Service-Provider country-code
+   */
+  void setCountryCode(String cc);
+
+  /**
+   * Enable mandates for this service provider.
+   *
+   * @return <code>true</code> if mandates are enabled, otherwise <code>false</code>
+   */
+  boolean isMandateEnabled();
+
+  /**
+   * Enables multi-mandates for this service-provider.
+   *
+   * @return <code>true</code> if multi-mandates are enabled, otherwise <code>false</code>
+   */
+  boolean isMultiMandateEnabled();
+
+  /**
+   * Only mandates are allowed for this service provider.
+   *
+   * @return <code>true</code> if only mandates are allowed, otherwise <code>false</code>
+   */
+  boolean isOnlyMandateEnabled();
+
+  /**
+   * Get a {@link List} of mandate profiles that are supported by this Service provider.
+   *
+   * @return
+   */
+  @Nonnull List<String> getMandateProfiles();
+
+
+  /**
+   * eIDAS authentication allowed flag.
+   *
+   * @return <code>true</code> if eIDAS authentication is enabled, otherwise <code>false</code>
+   */
+  boolean isEidasEnabled();
+
+  /**
+   * Get a List of targets for additional bPKs that are required by this service provider.
+   *
+   * @return List of prefixed bPK targets
+   */
+  @Nonnull List<String> getAdditionalBpkTargets();
+
+  /**
+   * Get a list of foreign bPK targets that are required by this service provider.
+   *
+   * @return List of pairs with prefixed bPK targets as first element and VKZ as second element
+   */
+  @Nonnull List<Pair<String, String>> getAdditionalForeignBpkTargets();
+
+  /**
+   * Flag that indicates that service-provider as restricted or unrestricted.
+   *
+   * <p>A restricted service-provider can only used by test-identities that contains a
+   * valid application-restriction in User-Certificate Pinning</p>
+   *
+   * <p><b>Default:</b> true</p>
+   *
+   * @return <code>true</code> if it is restricted, otherwise <code>false</code>
+   */
+  boolean isRestrictedServiceProvider();
+
+
+/**
+ * Defines the time in minutes how long the last VDA registration h@Override
+ ave passed as maximum.
+ *
+ * @return time in minutes
+ */
+long lastVdaAuthenticationDelay();
+
+}
+
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/GenerateMobilePhoneSignatureRequestTaskTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/GenerateMobilePhoneSignatureRequestTaskTest.java
new file mode 100644
index 00000000..379f64ee
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/GenerateMobilePhoneSignatureRequestTaskTest.java
@@ -0,0 +1,346 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.test.tasks;
+
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthConstants;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthMetadataProvider;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.GenerateMobilePhoneSignatureRequestTask;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.test.dummy.DummyAuthConfigMap;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.test.dummy.DummyOA;
+import at.gv.egiz.eaaf.core.api.data.EaafConstants;
+import at.gv.egiz.eaaf.core.api.gui.IVelocityGuiBuilderConfiguration;
+import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
+import at.gv.egiz.eaaf.core.exceptions.EaafConfigurationException;
+import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
+import at.gv.egiz.eaaf.core.impl.idp.module.gui.DummyGuiBuilderConfigurationFactory;
+import at.gv.egiz.eaaf.core.impl.idp.module.test.TestRequestImpl;
+import at.gv.egiz.eaaf.core.impl.idp.process.ExecutionContextImpl;
+import at.gv.egiz.eaaf.modules.pvp2.api.reqattr.EaafRequestedAttribute;
+import at.gv.egiz.eaaf.modules.pvp2.api.reqattr.EaafRequestedAttributes;
+import at.gv.egiz.eaaf.modules.pvp2.exception.CredentialsNotAvailableException;
+import at.gv.egiz.eaaf.modules.pvp2.exception.Pvp2InternalErrorException;
+import at.gv.egiz.eaaf.modules.pvp2.exception.Pvp2MetadataException;
+import at.gv.egiz.eaaf.modules.pvp2.impl.message.PvpSProfileRequest;
+import at.gv.egiz.eaaf.modules.pvp2.impl.metadata.PvpMetadataResolverFactory;
+import at.gv.egiz.eaaf.modules.pvp2.impl.opensaml.initialize.EaafOpenSaml3xInitializer;
+import at.gv.egiz.eaaf.modules.pvp2.impl.utils.Saml2Utils;
+import org.apache.commons.lang3.RandomStringUtils;
+import org.apache.commons.lang3.StringUtils;
+import org.junit.Assert;
+import org.junit.Before;
+import org.junit.BeforeClass;
+import org.junit.Test;
+import org.junit.runner.RunWith;
+import org.opensaml.core.xml.config.XMLObjectProviderRegistrySupport;
+import org.opensaml.core.xml.schema.XSString;
+import org.opensaml.core.xml.util.XMLObjectSupport;
+import org.opensaml.saml.common.xml.SAMLConstants;
+import org.opensaml.saml.saml2.core.AuthnRequest;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.context.ApplicationContext;
+import org.springframework.mock.web.MockHttpServletRequest;
+import org.springframework.mock.web.MockHttpServletResponse;
+import org.springframework.test.context.ContextConfiguration;
+import org.springframework.test.context.TestPropertySource;
+import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
+import org.springframework.web.context.request.RequestContextHolder;
+import org.springframework.web.context.request.ServletRequestAttributes;
+
+import java.io.ByteArrayInputStream;
+import java.io.InputStream;
+import java.util.Base64;
+import java.util.Map;
+
+@RunWith(SpringJUnit4ClassRunner.class)
+@TestPropertySource(locations = {"classpath:/config/junit_config_1-.properties" })
+//@ContextConfiguration({"/spring/SpringTest-context_mapConfig_full.xml", "classpath:/spring/test_eaaf_core.beans.xml"})
+//@TestPropertySource(locations = { "classpath:/config/junit_config_1_springboot.properties" })
+@ContextConfiguration(locations = {
+    "/SpringTest-context_tasks_test1.xml",
+    "/SpringTest-context_basic_mapConfig1.xml"
+})
+
+public class GenerateMobilePhoneSignatureRequestTaskTest {
+
+  private static final String METADATA_PATH = "classpath:/data/idp_metadata_classpath_entity.xml";
+  private static final String METADATA_SP_PATH = "classpath:/data/sp_metadata_junit.xml";
+
+  @Autowired(required = true)
+  private ApplicationContext context;
+  @Autowired(required = true)
+  protected DummyAuthConfigMap authConfig;
+  @Autowired
+  private IdAustriaClientAuthMetadataProvider metadataProvider;
+  @Autowired
+  private PvpMetadataResolverFactory metadataFactory;
+  @Autowired
+  private DummyGuiBuilderConfigurationFactory guiBuilderConfigFactory;
+//  @Autowired
+//  private SamlVerificationEngine samlVerifyEngine;
+//  @Autowired
+//  private ITransactionStorage transactionStorage;
+
+  final ExecutionContext executionContext = new ExecutionContextImpl();
+  private MockHttpServletRequest httpReq;
+  private MockHttpServletResponse httpResp;
+  private TestRequestImpl pendingReq;
+  private DummyOA oaParam;
+
+  private GenerateMobilePhoneSignatureRequestTask task;
+
+  /**
+   * JUnit class initializer.
+   *
+   * @throws Exception In case of an OpenSAML3 initialization error
+   */
+  @BeforeClass
+  public static void initialize() throws Exception {
+    EaafOpenSaml3xInitializer.eaafInitialize();
+
+  }
+
+  /**
+   * jUnit test set-up.
+   *
+   * @throws Exception In case of an set-up error
+   */
+  @Before
+  public void setUp() throws Exception {
+    task = (GenerateMobilePhoneSignatureRequestTask) context.getBean("GenerateMobilePhoneSignatureRequestTask");
+
+    httpReq = new MockHttpServletRequest("POST", "https://localhost/authhandler");
+    httpResp = new MockHttpServletResponse();
+    RequestContextHolder.resetRequestAttributes();
+    RequestContextHolder.setRequestAttributes(new ServletRequestAttributes(httpReq, httpResp));
+
+    authConfig.putConfigValue("modules.idaustriaclient.request.sign.alias", "sig");
+
+    oaParam = new DummyOA();
+    oaParam.setUniqueAppId("http://test.com/test");
+    oaParam.setBmiUniqueIdentifier(oaParam.getUniqueIdentifier() + "#" + RandomStringUtils.randomAlphanumeric(5));
+    oaParam.setTargetIdentifier(
+        EaafConstants.URN_PREFIX_CDID + RandomStringUtils.randomAlphabetic(2));
+    oaParam.setEidasEnabled(true);
+    oaParam.putGenericConfigurationKey(
+        IdAustriaClientAuthConstants.CONFIG_PROPS_APPSPECIFIC_EIDAS_NODE_URL, null);
+    //    oaParam.setMandateProfilesCsv(
+    //        RandomStringUtils.randomAlphabetic(5)
+    //            + "," + RandomStringUtils.randomAlphabetic(5)
+    //            + "," + RandomStringUtils.randomAlphabetic(5));
+
+    pendingReq = new TestRequestImpl();
+    pendingReq.setPendingReqId(RandomStringUtils.randomAlphanumeric(10));
+    pendingReq.setSpConfig(oaParam);
+    pendingReq.setAuthUrl("https://localhost/authhandler");
+
+    metadataProvider.fullyDestroy();
+    guiBuilderConfigFactory.setVelocityBuilderConfig(createDummyGuiConfig());
+
+  }
+
+  @Test
+  public void noMetadataAvailableOnGlobalConfig() {
+    authConfig.putConfigValue(IdAustriaClientAuthConstants.CONFIG_PROPS_NODE_ENTITYID,
+        RandomStringUtils.randomAlphabetic(10));
+
+    try {
+      task.execute(pendingReq, executionContext);
+      Assert.fail();
+
+    } catch (final TaskExecutionException e) {
+      Assert.assertNotNull(e.getPendingRequestID());
+      Assert.assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
+      Assert.assertNotNull(e.getOriginalException());
+      org.springframework.util.Assert.isInstanceOf(EaafConfigurationException.class,
+          e.getOriginalException());
+      Assert.assertEquals("module.eidasauth.02",
+          ((EaafConfigurationException) e.getOriginalException()).getErrorId());
+
+    }
+  }
+
+  @Test
+  public void noMetadataAvailableOnSpConfig() {
+    oaParam.putGenericConfigurationKey(IdAustriaClientAuthConstants.CONFIG_PROPS_APPSPECIFIC_EIDAS_NODE_URL,
+        RandomStringUtils.randomAlphabetic(10));
+
+    try {
+      task.execute(pendingReq, executionContext);
+      Assert.fail();
+
+    } catch (final TaskExecutionException e) {
+      Assert.assertNotNull(e.getPendingRequestID());
+      Assert.assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
+      Assert.assertNotNull(e.getOriginalException());
+      org.springframework.util.Assert.isInstanceOf(EaafConfigurationException.class,
+          e.getOriginalException());
+      Assert.assertEquals("module.eidasauth.02",
+          ((EaafConfigurationException) e.getOriginalException()).getErrorId());
+
+    }
+  }
+
+  @Test
+  public void noMetadataSigningKeyStore() throws Pvp2MetadataException {
+    oaParam.putGenericConfigurationKey(IdAustriaClientAuthConstants.CONFIG_PROPS_APPSPECIFIC_EIDAS_NODE_URL,
+        METADATA_PATH);
+
+    authConfig.removeConfigValue("modules.idaustriaclient.request.sign.alias");
+
+    metadataProvider.addMetadataResolverIntoChain(
+        metadataFactory.createMetadataProvider(METADATA_PATH, null, "jUnitTest", null));
+
+    try {
+      task.execute(pendingReq, executionContext);
+      Assert.fail();
+
+    } catch (final TaskExecutionException e) {
+      Assert.assertNotNull(e.getPendingRequestID());
+      Assert.assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
+      Assert.assertNotNull(e.getOriginalException());
+      org.springframework.util.Assert.isInstanceOf(CredentialsNotAvailableException.class,
+          e.getOriginalException());
+      Assert.assertEquals("internal.pvp.01",
+          ((CredentialsNotAvailableException) e.getOriginalException()).getErrorId());
+
+    }
+  }
+
+  @Test
+  public void success() throws Exception {
+    oaParam.putGenericConfigurationKey(IdAustriaClientAuthConstants.CONFIG_PROPS_APPSPECIFIC_EIDAS_NODE_URL,
+        METADATA_PATH);
+    metadataProvider.addMetadataResolverIntoChain(
+        metadataFactory.createMetadataProvider(METADATA_PATH, null, "jUnitTest", null));
+    pendingReq.setTransactionId(RandomStringUtils.randomAlphanumeric(10));
+
+    task.execute(pendingReq, executionContext);
+
+    final EaafRequestedAttributes reqAttr = validate();
+    Assert.assertEquals("#Req Attribute", 2, reqAttr.getAttributes().size());
+
+    Assert.assertEquals("Wrong req attr.", "urn:eidgvat:attributes.transactionId",
+        reqAttr.getAttributes().get(0).getName());
+    Assert.assertNotNull("Req. Attr value element", reqAttr.getAttributes().get(0).getAttributeValues());
+    Assert.assertEquals("#Req. Attr value", 1,
+        reqAttr.getAttributes().get(0).getAttributeValues().size());
+    org.springframework.util.Assert.isInstanceOf(XSString.class,
+        reqAttr.getAttributes().get(0).getAttributeValues().get(0), "Wrong requested Attributes Value type");
+    Assert.assertEquals("Req. Attr. Value", pendingReq.getUniqueTransactionIdentifier(),
+        ((XSString) reqAttr.getAttributes().get(0).getAttributeValues().get(0)).getValue());
+
+    Assert.assertEquals("Wrong req attr.", "urn:oid:1.2.40.0.10.2.1.1.261.34",
+        reqAttr.getAttributes().get(1).getName());
+    Assert.assertNotNull("Req. Attr value element", reqAttr.getAttributes().get(1).getAttributeValues());
+    Assert.assertEquals("#Req. Attr value", 1,
+        reqAttr.getAttributes().get(1).getAttributeValues().size());
+    org.springframework.util.Assert.isInstanceOf(XSString.class,
+        reqAttr.getAttributes().get(1).getAttributeValues().get(0), "Wrong requested Attributes Value type");
+    Assert.assertEquals("Req. Attr. Value", oaParam.getAreaSpecificTargetIdentifier(),
+        ((XSString) reqAttr.getAttributes().get(1).getAttributeValues().get(0)).getValue());
+
+  }
+
+  private EaafRequestedAttributes validate() throws Exception {
+    Assert.assertEquals("HTTP Statuscode", 200, httpResp.getStatus());
+    Assert.assertEquals("ContentType", "text/html;charset=UTF-8", httpResp.getContentType());
+    Assert.assertEquals("ContentEncoding", "UTF-8", httpResp.getCharacterEncoding());
+
+    final String html = httpResp.getContentAsString();
+    Assert.assertNotNull("XML Metadata", html);
+
+    final int startIndex = html.indexOf("SAMLRequest=");
+    Assert.assertTrue("No SAMLRequest in html", startIndex >= 0);
+    final String authnXml = html.substring(startIndex + "SAMLRequest=".length());
+    //TODO why do i have to do that?? => remove "} from end
+//    String authnXml2 = authnXml1.substring(0,authnXml1.length()-2);
+
+    //check if relaystate was stored
+    final int startIndexRelayState = html.indexOf("RelayState=");
+    Assert.assertTrue("wrong RelayState in HTML",
+        startIndexRelayState >= 0);
+    String relayState = html.substring(startIndexRelayState + "RelayState=".length(), startIndex);
+//    String storedPendingReqId = transactionStorage.get(relayState, String.class);
+//    Assert.assertEquals("relayStore not map to pendingRequestId",
+//        pendingReq.getPendingRequestId(), storedPendingReqId);
+
+
+    final AuthnRequest authnRequest = (AuthnRequest) XMLObjectSupport.unmarshallFromInputStream(
+        XMLObjectProviderRegistrySupport.getParserPool(), new ByteArrayInputStream(
+            Base64.getDecoder().decode(authnXml)));
+
+    Assert.assertNotNull("AuthnReq", authnRequest);
+    Assert.assertNotNull("Issuer", authnRequest.getIssuer());
+    Assert.assertEquals("EntityId",
+        "https://localhost/authhandler" + IdAustriaClientAuthConstants.ENDPOINT_METADATA,
+        authnRequest.getIssuer().getValue());
+
+    //check XML scheme
+    Saml2Utils.schemeValidation(authnRequest);
+
+
+    //check signature
+    final PvpSProfileRequest msg = new PvpSProfileRequest(
+        authnRequest,
+        SAMLConstants.SAML2_POST_BINDING_URI);
+    msg.setEntityID(authnRequest.getIssuer().getValue());
+    metadataProvider.addMetadataResolverIntoChain(
+        metadataFactory.createMetadataProvider(METADATA_SP_PATH, null, "jUnit SP", null));
+//    samlVerifyEngine.verify(msg, TrustEngineFactory.getSignatureKnownKeysTrustEngine(metadataProvider));
+//TODO
+    //check other elements
+//    Assert.assertNotNull("Proxy-Scope", authnRequest.getScoping());
+//    Assert.assertNotNull("RequesterIds", authnRequest.getScoping().getRequesterIDs());
+//    Assert.assertEquals("#RequesterIds", 1, authnRequest.getScoping().getRequesterIDs().size());
+//    Assert.assertEquals("RequesterId", oaParam.getUniqueApplicationRegisterIdentifier(),
+//        authnRequest.getScoping().getRequesterIDs().get(0).getRequesterID());
+
+    Assert.assertNotNull("RequestedAuthnContext", authnRequest.getRequestedAuthnContext());
+    Assert.assertNotNull("AuthnContextClassRef",
+        authnRequest.getRequestedAuthnContext().getAuthnContextClassRefs());
+    Assert.assertEquals("#AuthnContextClassRef", 1,
+        authnRequest.getRequestedAuthnContext().getAuthnContextClassRefs().size());
+    Assert.assertEquals("LoA", "http://eidas.europa.eu/LoA/high",
+        authnRequest.getRequestedAuthnContext().getAuthnContextClassRefs().get(0).getAuthnContextClassRef());
+
+    Assert.assertNotNull("Extensions", authnRequest.getExtensions());
+    Assert.assertFalse("No Requested attributes",
+        authnRequest.getExtensions().getUnknownXMLObjects().isEmpty());
+
+    Assert.assertEquals("#ReqAttributes", 1, authnRequest.getExtensions().getUnknownXMLObjects().size());
+    org.springframework.util.Assert.isInstanceOf(EaafRequestedAttributes.class,
+        authnRequest.getExtensions().getUnknownXMLObjects().get(0), "No Requested Attributes object");
+
+    return (EaafRequestedAttributes) authnRequest.getExtensions().getUnknownXMLObjects().get(0);
+  }
+
+  private IVelocityGuiBuilderConfiguration createDummyGuiConfig() {
+    return new IVelocityGuiBuilderConfiguration() {
+
+      @Override
+      public Map<String, Object> getViewParameters() {
+        return null;
+      }
+
+      @Override
+      public String getViewName() {
+        return "SAML2 Post-Binding";
+      }
+
+      @Override
+      public String getDefaultContentType() {
+        return null;
+      }
+
+      @Override
+      public InputStream getTemplate(String viewName) {
+        return GenerateMobilePhoneSignatureRequestTaskTest.class.getResourceAsStream("/data/pvp_postbinding_template.html");
+      }
+
+      @Override
+      public String getClasspathTemplateDir() {
+        return null;
+
+      }
+    };
+  }
+
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_basic_mapConfig1.xml b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_basic_mapConfig1.xml
new file mode 100644
index 00000000..56c7ed6e
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_basic_mapConfig1.xml
@@ -0,0 +1,24 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<beans xmlns="http://www.springframework.org/schema/beans"
+  xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+  xmlns:context="http://www.springframework.org/schema/context"
+  xmlns:tx="http://www.springframework.org/schema/tx"
+  xmlns:aop="http://www.springframework.org/schema/aop"
+  xsi:schemaLocation="http://www.springframework.org/schema/aop http://www.springframework.org/schema/aop/spring-aop-3.1.xsd
+    http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans.xsd
+    http://www.springframework.org/schema/context http://www.springframework.org/schema/context/spring-context-3.1.xsd
+    http://www.springframework.org/schema/tx http://www.springframework.org/schema/tx/spring-tx-3.0.xsd">
+
+  <context:annotation-config />
+
+<!--  <bean id="dummyMapBasedConfiguration"-->
+<!--        class="at.asitplus.eidas.specific.connector.test.config.dummy.MsConnectorDummyConfigMap">-->
+<!--    <constructor-arg value="/config/junit_config_1.properties" />-->
+<!--    <property name="configRootDirSufix" value="src/test/resources/config" />-->
+<!--  </bean>-->
+  <bean id="DummyAuthConfigMap"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.test.dummy.DummyAuthConfigMap">
+    <constructor-arg value="/config/junit_config_1-.properties" />
+  </bean>
+
+</beans>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_basic_test1.xml b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_basic_test1.xml
new file mode 100644
index 00000000..8363eb50
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_basic_test1.xml
@@ -0,0 +1,63 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<beans xmlns="http://www.springframework.org/schema/beans"
+  xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+  xmlns:context="http://www.springframework.org/schema/context"
+  xmlns:tx="http://www.springframework.org/schema/tx"
+  xmlns:aop="http://www.springframework.org/schema/aop"
+  xsi:schemaLocation="http://www.springframework.org/schema/aop http://www.springframework.org/schema/aop/spring-aop-3.1.xsd
+    http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans.xsd
+    http://www.springframework.org/schema/context http://www.springframework.org/schema/context/spring-context-3.1.xsd
+    http://www.springframework.org/schema/tx http://www.springframework.org/schema/tx/spring-tx-3.0.xsd">
+
+  <context:annotation-config />
+
+
+  
+<!--  <bean id="SZRClientForeIDAS"-->
+<!--    class="at.asitplus.eidas.specific.modules.auth.eidas.v2.szr.SzrClient" />-->
+
+  <!-- <bean id="eIDASDataStore" class="at.asitplus.eidas.specific.modules.auth.eidas.v2.service.eIDASDataStore" 
+    /> -->
+
+  <bean id="springManagedSpecificConnectorCommunicationService"
+    class="at.asitplus.eidas.specific.modules.auth.eidas.v2.test.dummy.DummySpecificCommunicationService" />
+
+  <bean id="specificConnectorAttributesFileWithPath"
+    class="java.lang.String">
+    <constructor-arg
+      value="src/test/resources/config/eidas-attributes.xml" />
+  </bean>
+
+  <bean id="specificConnectorAdditionalAttributesFileWithPath"
+    class="java.lang.String">
+    <constructor-arg
+      value="src/test/resources/config/additional-attributes.xml" />
+  </bean>
+
+  <bean id="attributeRegistry"
+    class="at.asitplus.eidas.specific.modules.auth.eidas.v2.service.EidasAttributeRegistry">
+    <property name="eidasAttributesFile"
+      ref="specificConnectorAttributesFileWithPath" />
+    <property name="additionalAttributesFile"
+      ref="specificConnectorAdditionalAttributesFileWithPath" />
+  </bean>
+
+  <bean id="EIDPostProcessingService"
+    class="at.asitplus.eidas.specific.modules.auth.eidas.v2.service.CcSpecificEidProcessingService" />
+
+  <bean id="DE-PostProcessor"
+    class="at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.DeEidProcessor">
+    <property name="priority" value="1" />
+  </bean>
+
+ <bean id="eIDASAuthModule"
+    class="at.asitplus.eidas.specific.modules.auth.eidas.v2.EidasAuthenticationModulImpl">
+    <property name="priority" value="2" />
+  </bean>
+
+  <bean id="Default-PostProcessor"
+    class="at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.GenericEidProcessor">
+    <property name="priority" value="0" />
+  </bean>
+
+</beans>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_tasks_test1.xml b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_tasks_test1.xml
new file mode 100644
index 00000000..7a1719d3
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_tasks_test1.xml
@@ -0,0 +1,145 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<beans xmlns="http://www.springframework.org/schema/beans"
+  xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+  xmlns:context="http://www.springframework.org/schema/context"
+  xmlns:tx="http://www.springframework.org/schema/tx"
+  xmlns:aop="http://www.springframework.org/schema/aop"
+  xmlns:mvc="http://www.springframework.org/schema/mvc"
+  xsi:schemaLocation="http://www.springframework.org/schema/aop http://www.springframework.org/schema/aop/spring-aop-3.1.xsd
+    http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans.xsd
+    http://www.springframework.org/schema/context http://www.springframework.org/schema/context/spring-context-3.1.xsd
+    http://www.springframework.org/schema/tx http://www.springframework.org/schema/tx/spring-tx-3.0.xsd 
+    http://www.springframework.org/schema/mvc http://www.springframework.org/schema/mvc/spring-mvc.xsd">
+
+  <context:annotation-config />
+  <mvc:annotation-driven />
+  <mvc:default-servlet-handler />
+
+
+  <import resource="SpringTest-context_authManager.xml" />
+  <import resource="SpringTest-context_basic_test1.xml" />
+
+  <bean id="mvcGUIBuilderImpl"
+    class="at.asitplus.eidas.specific.connector.gui.SpringMvcGuiFormBuilderImpl" />
+
+  <bean id="springManagedSpecificConnectorCommunicationService"
+    class="at.asitplus.eidas.specific.modules.auth.eidas.v2.test.dummy.DummySpecificCommunicationService" />
+
+  <bean id="specificConnectorAttributesFileWithPath"
+    class="java.lang.String">
+    <constructor-arg
+      value="src/test/resources/config/eidas-attributes.xml" />
+  </bean>
+
+  <bean id="specificConnectorAdditionalAttributesFileWithPath"
+    class="java.lang.String">
+    <constructor-arg
+      value="src/test/resources/config/additional-attributes.xml" />
+  </bean>
+
+  <bean id="attributeRegistry"
+    class="at.asitplus.eidas.specific.modules.auth.eidas.v2.service.EidasAttributeRegistry">
+    <property name="eidasAttributesFile"
+      ref="specificConnectorAttributesFileWithPath" />
+    <property name="additionalAttributesFile"
+      ref="specificConnectorAdditionalAttributesFileWithPath" />
+  </bean>
+
+  <bean id="authBlockSigningService"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.service.AuthBlockSigningService" />
+
+  <bean id="EidasSignalServlet"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.EidasSignalServlet" />
+
+  <!-- Authentication Process Tasks -->
+  <bean id="ConnecteIDASNodeTask"
+    class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.GenerateAuthnRequestTask"
+    scope="prototype" />
+
+  <bean id="ReceiveResponseFromeIDASNodeTask"
+    class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.ReceiveAuthnResponseTask"
+    scope="prototype" />
+
+  <bean id="CreateIdentityLinkTask"
+    class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.CreateIdentityLinkTask"
+    scope="prototype" />
+
+  <bean id="InitialSearchTask"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.InitialSearchTask"
+        scope="prototype" />
+
+  <bean id="ErnbClientForeIDAS"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.ernp.DummyErnpClient" />
+
+  <bean id="ZmrClientForeIDAS"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.DummyZmrClient" />
+
+  <bean id="DE-Specific-Search"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.DeSpecificDetailSearchProcessor">
+  </bean>
+
+  <bean id="IT-Specific-Search"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.ItSpecificDetailSearchProcessor">
+  </bean>
+
+  <bean id="CreateNewErnpEntryTask"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.CreateNewErnpEntryTask"
+        scope="prototype" />
+
+  <bean id="GenerateGuiTask"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.GenerateLoginMethodGuiTask"
+        scope="prototype" />
+
+  <bean id="GenerateMobilePhoneSignatureRequestTask"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.GenerateMobilePhoneSignatureRequestTask"
+        scope="prototype" />
+
+  <bean id="ReceiveGuiResponseTask"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.ReceiveLoginMethodGuiResponseTask"
+        scope="prototype" />
+
+  <bean id="ReceiveMobilePhoneSignatureResponseTask"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask"
+        scope="prototype" />
+
+  <bean id="GenerateGuiQueryAustrianResidenceTask"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.GenerateGuiQueryAustrianResidenceTask"
+        scope="prototype" />
+
+  <bean id="ReceiveGuiAustrianResidenceResponseTask"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.ReceiveGuiAustrianResidenceResponseTask"
+        scope="prototype" />
+
+  <bean id="idAustriaClientAuthCredentialProvider"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthCredentialProvider" />
+
+  <bean id="idAustriaClientAuthMetadataProvider"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthMetadataProvider" />
+
+  <bean id="idAustriaClientAuthMetadataController"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthMetadataController" />
+
+  <bean id="idAustriaClientPvpMetadataResolverFactory"
+        class="at.gv.egiz.eaaf.modules.pvp2.impl.metadata.PvpMetadataResolverFactory" />
+
+  <bean id="pvpMetadataBuilder"
+        class="at.gv.egiz.eaaf.modules.pvp2.impl.builder.PvpMetadataBuilder" />
+
+  <bean id="idAustriaAuthPvpConfiguration"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaAuthPvpConfiguration" />
+
+  <bean id="PvpAuthnRequestBuilder"
+        class="at.gv.egiz.eaaf.modules.pvp2.sp.impl.PvpAuthnRequestBuilder" />
+
+<!--  <bean id="DummyAuthConfigMap"-->
+<!--        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.test.dummy.DummyAuthConfigMap" />-->
+
+  <bean id="PvpPostBinding"
+        class="at.gv.egiz.eaaf.modules.pvp2.impl.binding.PostBinding" />
+
+  <bean id="IVelocityGuiFormBuilder"
+        class="at.gv.egiz.eaaf.core.impl.idp.module.gui.DummyVelocityGuiFormBuilder" />
+  <bean id="IGuiBuilderConfigurationFactory"
+        class="at.gv.egiz.eaaf.core.impl.idp.module.gui.DummyGuiBuilderConfigurationFactory" />
+
+</beans>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/junit_config_1-.properties b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/junit_config_1-.properties
new file mode 100644
index 00000000..28f1552c
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/junit_config_1-.properties
@@ -0,0 +1,252 @@
+## Basic service configuration
+eidas.ms.context.url.prefix=
+eidas.ms.context.url.request.validation=false
+
+eidas.ms.context.use.clustermode=true
+
+##Monitoring
+eidas.ms.monitoring.eIDASNode.metadata.url=
+
+
+##Specific logger configuration
+eidas.ms.technicallog.write.MDS.into.techlog=true
+eidas.ms.revisionlog.write.MDS.into.revisionlog=true
+eidas.ms.revisionlog.logIPAddressOfUser=true
+
+##Directory for static Web content
+eidas.ms.webcontent.static.directory=webcontent/
+eidas.ms.webcontent.templates=templates/
+eidas.ms.webcontent.properties=properties/messages
+
+## extended validation of pending-request Id's
+eidas.ms.core.pendingrequestid.maxlifetime=300
+eidas.ms.core.pendingrequestid.digist.algorithm=HmacSHA256
+eidas.ms.core.pendingrequestid.digist.secret=pendingReqIdSecret
+
+## eIDAS Ref. Implementation connector ###
+eidas.ms.auth.eIDAS.node_v2.entityId=ownSpecificConnector
+eidas.ms.auth.eIDAS.node_v2.forward.endpoint=
+eidas.ms.auth.eIDAS.node_v2.forward.method=POST
+eidas.ms.auth.eIDAS.node_v2.countrycode=AT
+eidas.ms.auth.eIDAS.node_v2.publicSectorTargets=.*
+eidas.ms.auth.eIDAS.node_v2.workarounds.addAlwaysProviderName=true
+eidas.ms.auth.eIDAS.node_v2.workarounds.useRequestIdAsTransactionIdentifier=true
+eidas.ms.auth.eIDAS.node_v2.workarounds.useStaticProviderNameForPublicSPs=true
+eidas.ms.auth.eIDAS.node_v2.staticProviderNameForPublicSPs=myNode
+
+eidas.ms.auth.eIDAS.node_v2.loa.requested.minimum=http://eidas.europa.eu/LoA/high
+
+eidas.ms.auth.eIDAS.szrclient.useTestService=true
+eidas.ms.auth.eIDAS.szrclient.endpoint.prod=
+eidas.ms.auth.eIDAS.szrclient.endpoint.test=http://localhost:1234/demoszr
+eidas.ms.auth.eIDAS.szrclient.ssl.keyStore.path=keys/.....
+eidas.ms.auth.eIDAS.szrclient.ssl.keyStore.password=
+eidas.ms.auth.eIDAS.szrclient.ssl.trustStore.path=
+eidas.ms.auth.eIDAS.szrclient.ssl.trustStore.password=
+eidas.ms.auth.eIDAS.szrclient.timeout.connection=15
+eidas.ms.auth.eIDAS.szrclient.timeout.response=30
+eidas.ms.auth.eIDAS.szrclient.params.vkz=
+
+eidas.ms.auth.eIDAS.szrclient.params.useSZRForbPKCalculation=false
+
+
+eidas.ms.auth.eIDAS.authblock.keystore.password=f/+saJBc3a}*/T^s
+eidas.ms.auth.eIDAS.authblock.keystore.friendlyName=connectorkeypair
+eidas.ms.auth.eIDAS.authblock.keystore.path=./../keystore/teststore.jks
+eidas.ms.auth.eIDAS.authblock.keystore.type=jks
+eidas.ms.auth.eIDAS.authblock.key.alias=connectorkeypair1
+eidas.ms.auth.eIDAS.authblock.key.password=f/+saJBc3a}*/T^s
+
+
+#Raw eIDAS Id data storage
+eidas.ms.auth.eIDAS.szrclient.workarounds.eidmapping.revisionlog.active=true
+
+eidas.ms.auth.eIDAS.szrclient.params.setPlaceOfBirthIfAvailable=true
+eidas.ms.auth.eIDAS.szrclient.params.setBirthNameIfAvailable=true
+
+eidas.ms.auth.eIDAS.szrclient.debug.logfullmessages=true
+eidas.ms.auth.eIDAS.szrclient.debug.useDummySolution=true
+
+##without mandates
+eidas.ms.auth.eIDAS.node_v2.attributes.requested.onlynatural.0=PersonIdentifier,true
+eidas.ms.auth.eIDAS.node_v2.attributes.requested.onlynatural.1=FamilyName,true
+eidas.ms.auth.eIDAS.node_v2.attributes.requested.onlynatural.2=FirstName,true
+eidas.ms.auth.eIDAS.node_v2.attributes.requested.onlynatural.3=DateOfBirth,true
+
+eidas.ms.auth.eIDAS.node_v2.attributes.requested.de.onlynatural.4=PlaceOfBirth,false
+eidas.ms.auth.eIDAS.node_v2.attributes.requested.de.onlynatural.5=BirthName,false
+eidas.ms.auth.eIDAS.node_v2.attributes.requested.de.onlynatural.6=Gender,false
+eidas.ms.auth.eIDAS.node_v2.attributes.requested.de.onlynatural.7=CurrentAddress,false
+eidas.ms.auth.eIDAS.node_v2.attributes.requested.de.onlynatural.8=testtest,false
+
+##with mandates ---- NOT FULLY SUPPORTED AT THE MOMENT -----
+eidas.ms.auth.eIDAS.node_v2.attributes.requested.representation.0=PersonIdentifier,true
+eidas.ms.auth.eIDAS.node_v2.attributes.requested.representation.1=FamilyName,true
+eidas.ms.auth.eIDAS.node_v2.attributes.requested.representation.2=FirstName,true
+eidas.ms.auth.eIDAS.node_v2.attributes.requested.representation.3=DateOfBirth,true
+eidas.ms.auth.eIDAS.node_v2.attributes.requested.representation.4=LegalPerson,true
+eidas.ms.auth.eIDAS.node_v2.attributes.requested.representation.5=LegalName,true
+
+
+## PVP2 S-Profile end-point configuration
+eidas.ms.pvp2.keystore.path=keys/.....
+eidas.ms.pvp2.keystore.password=
+eidas.ms.pvp2.key.metadata.alias=
+eidas.ms.pvp2.key.metadata.password=
+eidas.ms.pvp2.key.signing.alias=
+eidas.ms.pvp2.key.signing.password=
+eidas.ms.pvp2.metadata.validity=24
+
+## Service Provider configuration
+eidas.ms.sp.0.uniqueID=
+eidas.ms.sp.0.pvp2.metadata.truststore=
+eidas.ms.sp.0.pvp2.metadata.truststore.password=
+eidas.ms.sp.0.newEidMode=true
+
+#eidas.ms.sp.0.friendlyName=
+#eidas.ms.sp.0.pvp2.metadata.url=
+#eidas.ms.sp.0.policy.allowed.requested.targets=.*
+#eidas.ms.sp.0.policy.hasBaseIdTransferRestriction=false
+
+
+##only for advanced config
+eidas.ms.configuration.sp.disableRegistrationRequirement=
+eidas.ms.configuration.restrictions.baseID.spTransmission=
+eidas.ms.configuration.auth.default.countrycode=
+eidas.ms.configuration.pvp.scheme.validation=
+eidas.ms.configuration.pvp.enable.entitycategories=
+
+
+
+
+## PVP2 S-Profile ID Austria client configuration
+
+eidas.ms.modules.idaustriaclient.keystore.path=../keystore/junit_test.jks
+eidas.ms.modules.idaustriaclient.keystore.password=password
+eidas.ms.modules.idaustriaclient.keystore.type=jks
+
+eidas.ms.modules.idaustriaclient.metadata.sign.alias=meta
+eidas.ms.modules.idaustriaclient.metadata.sign.password=password
+eidas.ms.modules.idaustriaclient.request.sign.alias=sig
+eidas.ms.modules.idaustriaclient.request.sign.password=password
+eidas.ms.modules.idaustriaclient.response.encryption.alias=enc
+eidas.ms.modules.idaustriaclient.response.encryption.password=password
+
+eidas.ms.modules.idaustriaclient.truststore.path=../keystore/junit_test.jks
+eidas.ms.modules.idaustriaclient.truststore.password=password
+eidas.ms.modules.idaustriaclient.truststore.type=jks
+
+eidas.ms.modules.idaustriaclient.node.entityId=
+eidas.ms.modules.idaustriaclient.sp.entityId=
+eidas.ms.modules.idaustriaclient.node.metadataUrl=
+
+eidas.ms.modules.idaustriaclient.metadata.organisation.name=JUnit
+eidas.ms.modules.idaustriaclient.metadata.organisation.friendyname=For testing with jUnit
+eidas.ms.modules.idaustriaclient.metadata.organisation.url=http://junit.test
+eidas.ms.modules.idaustriaclient.metadata.contact.givenname=Max
+eidas.ms.modules.idaustriaclient.metadata.contact.surname=Mustermann
+eidas.ms.modules.idaustriaclient.metadata.contact.email=max@junit.test
+
+
+
+
+
+
+auth.eIDAS.authblock.key.alias=connectorkeypair
+auth.eIDAS.authblock.key.password=f/+saJBc3a}*/T^s
+auth.eIDAS.authblock.keystore.friendlyName=connectorkeypair
+auth.eIDAS.authblock.keystore.password=f/+saJBc3a}*/T^s
+auth.eIDAS.authblock.keystore.path=.//src/test/resources/keystore/teststore.jks
+auth.eIDAS.authblock.keystore.type=jks
+auth.eIDAS.node_v2.attributes.requested.de.onlynatural.4=PlaceOfBirth,false
+auth.eIDAS.node_v2.attributes.requested.de.onlynatural.5=BirthName,false
+auth.eIDAS.node_v2.attributes.requested.de.onlynatural.6=Gender,false
+auth.eIDAS.node_v2.attributes.requested.de.onlynatural.7=CurrentAddress,false
+auth.eIDAS.node_v2.attributes.requested.de.onlynatural.8=testtest,false
+auth.eIDAS.node_v2.attributes.requested.onlynatural.0=PersonIdentifier,true
+auth.eIDAS.node_v2.attributes.requested.onlynatural.1=FamilyName,true
+auth.eIDAS.node_v2.attributes.requested.onlynatural.2=FirstName,true
+auth.eIDAS.node_v2.attributes.requested.onlynatural.3=DateOfBirth,true
+auth.eIDAS.node_v2.attributes.requested.representation.0=PersonIdentifier,true
+auth.eIDAS.node_v2.attributes.requested.representation.1=FamilyName,true
+auth.eIDAS.node_v2.attributes.requested.representation.2=FirstName,true
+auth.eIDAS.node_v2.attributes.requested.representation.3=DateOfBirth,true
+auth.eIDAS.node_v2.attributes.requested.representation.4=LegalPerson,true
+auth.eIDAS.node_v2.attributes.requested.representation.5=LegalName,true
+auth.eIDAS.node_v2.countrycode=AT
+auth.eIDAS.node_v2.entityId=ownSpecificConnector
+auth.eIDAS.node_v2.forward.endpoint=
+auth.eIDAS.node_v2.forward.method=POST
+auth.eIDAS.node_v2.loa.requested.minimum=http://eidas.europa.eu/LoA/high
+auth.eIDAS.node_v2.publicSectorTargets=.*
+auth.eIDAS.node_v2.staticProviderNameForPublicSPs=myNode
+auth.eIDAS.node_v2.workarounds.addAlwaysProviderName=true
+auth.eIDAS.node_v2.workarounds.useRequestIdAsTransactionIdentifier=true
+auth.eIDAS.node_v2.workarounds.useStaticProviderNameForPublicSPs=true
+auth.eIDAS.szrclient.debug.logfullmessages=true
+auth.eIDAS.szrclient.debug.useDummySolution=true
+auth.eIDAS.szrclient.endpoint.prod=
+auth.eIDAS.szrclient.endpoint.test=http://localhost:1234/demoszr
+auth.eIDAS.szrclient.params.setBirthNameIfAvailable=true
+auth.eIDAS.szrclient.params.setPlaceOfBirthIfAvailable=true
+auth.eIDAS.szrclient.params.useSZRForbPKCalculation=false
+auth.eIDAS.szrclient.params.vkz=
+auth.eIDAS.szrclient.ssl.keyStore.password=
+auth.eIDAS.szrclient.ssl.keyStore.path=keys/.....
+auth.eIDAS.szrclient.ssl.trustStore.password=
+auth.eIDAS.szrclient.ssl.trustStore.path=
+auth.eIDAS.szrclient.timeout.connection=15
+auth.eIDAS.szrclient.timeout.response=30
+auth.eIDAS.szrclient.useTestService=true
+auth.eIDAS.szrclient.workarounds.eidmapping.revisionlog.active=true
+configuration.auth.default.countrycode=
+configuration.pvp.enable.entitycategories=
+configuration.pvp.scheme.validation=
+configuration.restrictions.baseID.spTransmission=
+configuration.sp.disableRegistrationRequirement=
+context.url.prefix=
+context.url.request.validation=false
+context.use.clustermode=true
+core.pendingrequestid.digist.algorithm=HmacSHA256
+core.pendingrequestid.digist.secret=pendingReqIdSecret
+core.pendingrequestid.maxlifetime=300
+modules.idaustriaclient.keystore.password=password
+modules.idaustriaclient.keystore.path=.//src/test/resources/keystore/junit_test.jks
+modules.idaustriaclient.keystore.type=jks
+modules.idaustriaclient.metadata.contact.email=max@junit.test
+modules.idaustriaclient.metadata.contact.givenname=Max
+modules.idaustriaclient.metadata.contact.surname=Mustermann
+modules.idaustriaclient.metadata.organisation.friendyname=For testing with jUnit
+modules.idaustriaclient.metadata.organisation.name=JUnit
+modules.idaustriaclient.metadata.organisation.url=http://junit.test
+modules.idaustriaclient.metadata.sign.alias=meta
+modules.idaustriaclient.metadata.sign.password=password
+modules.idaustriaclient.node.entityId=
+modules.idaustriaclient.node.metadataUrl=
+modules.idaustriaclient.request.sign.alias=sig
+modules.idaustriaclient.request.sign.password=password
+modules.idaustriaclient.response.encryption.alias=enc
+modules.idaustriaclient.response.encryption.password=password
+modules.idaustriaclient.sp.entityId=
+modules.idaustriaclient.truststore.password=password
+modules.idaustriaclient.truststore.path=./src/test/resources/keystore/junit_test.jks
+modules.idaustriaclient.truststore.type=jks
+monitoring.eIDASNode.metadata.url=
+pvp2.key.metadata.alias=
+pvp2.key.metadata.password=
+pvp2.key.signing.alias=
+pvp2.key.signing.password=
+pvp2.keystore.password=
+pvp2.keystore.path=keys/.....
+pvp2.metadata.validity=24
+revisionlog.logIPAddressOfUser=true
+revisionlog.write.MDS.into.revisionlog=true
+sp.0.newEidMode=true
+sp.0.pvp2.metadata.truststore.password=
+sp.0.pvp2.metadata.truststore=
+sp.0.uniqueID=
+technicallog.write.MDS.into.techlog=true
+webcontent.properties=properties/messages
+webcontent.static.directory=webcontent/
+webcontent.templates=templates/
+
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/idp_metadata_classpath_entity.xml b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/idp_metadata_classpath_entity.xml
new file mode 100644
index 00000000..080a189f
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/idp_metadata_classpath_entity.xml
@@ -0,0 +1,146 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<md:EntityDescriptor
+        xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata"
+        ID="_1a48ec3432f2f3ba6222724a5b06f873"
+        entityID="classpath:/data/idp_metadata_classpath_entity.xml"
+        validUntil="2045-02-06T08:47:26.211Z">
+    <md:IDPSSODescriptor
+            WantAuthnRequestsSigned="true"
+            protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol">
+        <md:KeyDescriptor use="signing">
+            <ds:KeyInfo
+                    xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
+                <ds:X509Data>
+                    <ds:X509Certificate>MIIDMzCCAhsCBFtIcPowDQYJKoZIhvcNAQELBQAwXjELMAkGA1UEBhMCQVQxDTALBgNVBAoMBEVH
+                        SVoxJDAiBgNVBAsMG2NlbnRyYWwgbmF0aW9uYWwgZUlEQVMgbm9kZTEaMBgGA1UEAwwRQXNzZXJ0
+                        aW9uIHNpZ25pbmcwHhcNMTgwNzEzMDkyOTMwWhcNMjEwNDA3MDkyOTMwWjBeMQswCQYDVQQGEwJB
+                        VDENMAsGA1UECgwERUdJWjEkMCIGA1UECwwbY2VudHJhbCBuYXRpb25hbCBlSURBUyBub2RlMRow
+                        GAYDVQQDDBFBc3NlcnRpb24gc2lnbmluZzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB
+                        AJ5zDYxMPRcz6AHaev1tS46Tq8sdgbGFM56uxk6c7LmMDC+HTzNX/3Q5S/YwSzgL3ue5TSw1ltOf
+                        yMXMZ6D0+buWWcsxGEkQ8M3adKRFdQrEwafzwTA7pguq5WiHOkr4qwR7dLMome9z5cc3LRcwdOPP
+                        gq7ahb5jM3hRqc5xkMWIuvql0NFXPzlHrjDLwy5nIWPOhL5abhVt4YsXbpbjXxFSGkDEAZ32K3EU
+                        LNBr9FSUmJfbrVX9AU2T+BKIwiqXP8e/3UJHgPHQ0l5ljWp5P6u5+tvM21o8sUM4eArRa8BkdRsP
+                        C92GVuASSUz2ZJ3JhAK1cSM8bnvaZVLQtTvPMAcCAwEAATANBgkqhkiG9w0BAQsFAAOCAQEAAp7z
+                        TubWXW6YMpyLSvWBdZiiQ3X66XpSZLZJDIAkoPzEY0DSBp8I5YASIx4JTR5XJt+6MI9acgNIAYW8
+                        DhtRwUMVaRWEtuCrfKhGLWm5KSxnhPcD3lzRZhY4ZcA7dUlirjf6hnqo2TFEmJ9fkM+rxwy1GkDD
+                        7j2YDSOFmSq9/Ud9/IbIfSnRu/lO0dh7iRrmg3y0Y/+plPxYmp4AHqehP11OchTz2FGGHVsSC2Vs
+                        IVBQI6ANZYyOlicgfEEFHA06jP9OnA0EwEFr2P+di9caZg8vfibyzxMGeuf6CY0c0eLHokBCn2W8
+                        vkzvWiER3pozRvCmXFjCVZfRjUunaJf2ow==
+                    </ds:X509Certificate>
+                </ds:X509Data>
+                <ds:X509Data>
+                    <ds:X509Certificate>MIIC+DCCAeCgAwIBAgIEXh7TbTANBgkqhkiG9w0BAQsFADA+MQswCQYDVQQGEwJB
+                        VDENMAsGA1UECgwERUdJWjEOMAwGA1UECwwFalVuaXQxEDAOBgNVBAMMB3NpZ25p
+                        bmcwHhcNMjAwMTE1MDg1NTA5WhcNMjkwMTE0MDg1NTA5WjA+MQswCQYDVQQGEwJB
+                        VDENMAsGA1UECgwERUdJWjEOMAwGA1UECwwFalVuaXQxEDAOBgNVBAMMB3NpZ25p
+                        bmcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCUSiRjnDvPafZfhJ+L
+                        1wM86FKJX3VIAV/8TD9qJ6HOBkn5WwYfpheyCfRb6XVDyIGpO8qnMWAgC17Ngbmh
+                        zj8d8HXNQ2l3uppMv24oUTfXyYhQfZWAghx0sTlRIx/ZmlnduJilx2S53Sa7ruJw
+                        lQcBFXj9h9B8dtyegc86Sx6D9BumP1xU7+mEBk8Gv9rR5Khg0Y7qGfZWB0t4aikg
+                        aupWveVwiGifOOSfR8czqIg9qUpMYfZiTEBTSRmN6sPiNWhd4J0GyAI9Rn5C9jz/
+                        sSlQrxpN+4DXzsqSU5F6gzq3yRux6wyOzDlt2birf21VPQ9HIy4YCjZXwgDWG7AO
+                        821pAgMBAAEwDQYJKoZIhvcNAQELBQADggEBADnwdaxUtQU6SIpYwIb2c0ljTmQi
+                        7ryUcUpNHtK0M0E5Mw5Ex8zwrWbNQZ2sUyc4r07M66iOIqHsYZUQlRYvVKHifDpA
+                        r8TCgD7iGGdB3By8Ou0RaNW+03w1fwmi98CufbHCGvpv0o2KxlejoHZminNdQ79i
+                        bN+01nhocezJQATEQlnwHLiQSjilXpZeLYDk8HbrcUXNRxezN4ChdH+uU54vf+Ux
+                        qcj9QHcmBe1+BM8EXfqS1DbTwZl+NTCnh5OYl8fvIFSOHMBxwFrI4pyY0faxg9Uc
+                        rCogn/oQ+mV1gnVUDaDhvvEnVGZQtrlt7heVId2BeNellVgsrcmdW8j4U9U=
+                    </ds:X509Certificate>
+                </ds:X509Data>
+                <ds:X509Data>
+                    <ds:X509Certificate>MIIBbjCCARSgAwIBAgIEXh7TNzAKBggqhkjOPQQDAjA/MQswCQYDVQQGEwJBVDEN
+                        MAsGA1UECgwERUdJWjEOMAwGA1UECwwFalVuaXQxETAPBgNVBAMMCG1ldGFkYXRh
+                        MB4XDTIwMDExNTA4NTQxNVoXDTMwMDExNDA4NTQxNVowPzELMAkGA1UEBhMCQVQx
+                        DTALBgNVBAoMBEVHSVoxDjAMBgNVBAsMBWpVbml0MREwDwYDVQQDDAhtZXRhZGF0
+                        YTBZMBMGByqGSM49AgEGCCqGSM49AwEHA0IABBdBkaxt31p++aZeP3SmlWITj9SY
+                        O4McV2ccXFsH4X4QMHuKAMUvjxPm1kdU01eTOWdiQX0GpDIBspYMZh8ZKcwwCgYI
+                        KoZIzj0EAwIDSAAwRQIhAJ3QKlk9cd90s+i8y62fvmGF6LtfNO+JvkWqDUBeQImn
+                        AiA2KwFtzO7STAp9MEwQGe0vt0F8mO1ttrLE+rr6YxdwGA==
+                    </ds:X509Certificate>
+                </ds:X509Data>
+            </ds:KeyInfo>
+        </md:KeyDescriptor>
+        <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:persistent
+        </md:NameIDFormat>
+        <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient
+        </md:NameIDFormat>
+        <md:NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified
+        </md:NameIDFormat>
+        <md:SingleSignOnService
+                Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST"
+                Location="https://vidp.gv.at/ms_connector/pvp/post" />
+        <md:SingleSignOnService
+                Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect"
+                Location="https://vidp.gv.at/ms_connector/pvp/redirect" />
+        <saml2:Attribute
+                xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion"
+                FriendlyName="BPK" Name="urn:oid:1.2.40.0.10.2.1.1.149"
+                NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" />
+        <saml2:Attribute
+                xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion"
+                FriendlyName="BIRTHDATE" Name="urn:oid:1.2.40.0.10.2.1.1.55"
+                NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" />
+        <saml2:Attribute
+                xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion"
+                FriendlyName="PRINCIPAL-NAME"
+                Name="urn:oid:1.2.40.0.10.2.1.1.261.20"
+                NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" />
+        <saml2:Attribute
+                xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion"
+                FriendlyName="EID-CCS-URL" Name="urn:oid:1.2.40.0.10.2.1.1.261.64"
+                NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" />
+        <saml2:Attribute
+                xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion"
+                FriendlyName="EID-ISSUING-NATION"
+                Name="urn:oid:1.2.40.0.10.2.1.1.261.32"
+                NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" />
+        <saml2:Attribute
+                xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion"
+                FriendlyName="PVP-VERSION" Name="urn:oid:1.2.40.0.10.2.1.1.261.10"
+                NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" />
+        <saml2:Attribute
+                xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion"
+                FriendlyName="EID-SOURCE-PIN"
+                Name="urn:oid:1.2.40.0.10.2.1.1.261.36"
+                NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" />
+        <saml2:Attribute
+                xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion"
+                FriendlyName="GIVEN-NAME" Name="urn:oid:2.5.4.42"
+                NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" />
+        <saml2:Attribute
+                xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion"
+                FriendlyName="EID-SIGNER-CERTIFICATE"
+                Name="urn:oid:1.2.40.0.10.2.1.1.261.66"
+                NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" />
+        <saml2:Attribute
+                xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion"
+                FriendlyName="EID-SECTOR-FOR-IDENTIFIER"
+                Name="urn:oid:1.2.40.0.10.2.1.1.261.34"
+                NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" />
+        <saml2:Attribute
+                xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion"
+                FriendlyName="EID-SOURCE-PIN-TYPE"
+                Name="urn:oid:1.2.40.0.10.2.1.1.261.104"
+                NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" />
+        <saml2:Attribute
+                xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion"
+                FriendlyName="EID-E-ID-TOKEN"
+                Name="urn:oid:1.2.40.0.10.2.1.1.261.39"
+                NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" />
+        <saml2:Attribute
+                xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion"
+                FriendlyName="EID-IDENTITY-LINK"
+                Name="urn:oid:1.2.40.0.10.2.1.1.261.38"
+                NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" />
+        <saml2:Attribute
+                xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion"
+                FriendlyName="EID-CITIZEN-QAA-EIDAS-LEVEL"
+                Name="urn:oid:1.2.40.0.10.2.1.1.261.108"
+                NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" />
+        <saml2:Attribute
+                xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion"
+                FriendlyName="EID-IDENTITY-STATUS-LEVEL"
+                Name="urn:oid:1.2.40.0.10.2.1.1.261.109"
+                NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" />
+    </md:IDPSSODescriptor>
+</md:EntityDescriptor>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/pvp_postbinding_template.html b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/pvp_postbinding_template.html
new file mode 100644
index 00000000..68a797e6
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/pvp_postbinding_template.html
@@ -0,0 +1,3 @@
+#if($RelayState)RelayState=${RelayState}#end
+#if($SAMLRequest)SAMLRequest=${SAMLRequest}#end
+#if($SAMLResponse)SAMLResponse=${SAMLResponse}#end
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/sp_metadata_junit.xml b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/sp_metadata_junit.xml
new file mode 100644
index 00000000..9c62db5d
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/sp_metadata_junit.xml
@@ -0,0 +1,66 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" ID="_1a48ec3432f2f3ba6222724a5b06f873" entityID="https://localhost/authhandler/sp/eidas/metadata" validUntil="2045-02-06T08:47:26.211Z">
+    <md:SPSSODescriptor AuthnRequestsSigned="true" WantAssertionsSigned="false" protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol">
+        <md:KeyDescriptor use="signing">
+            <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
+                <ds:X509Data>
+                    <ds:X509Certificate>MIIC+DCCAeCgAwIBAgIEXh7TbTANBgkqhkiG9w0BAQsFADA+MQswCQYDVQQGEwJBVDENMAsGA1UE
+                        CgwERUdJWjEOMAwGA1UECwwFalVuaXQxEDAOBgNVBAMMB3NpZ25pbmcwHhcNMjAwMTE1MDg1NTA5
+                        WhcNMjkwMTE0MDg1NTA5WjA+MQswCQYDVQQGEwJBVDENMAsGA1UECgwERUdJWjEOMAwGA1UECwwF
+                        alVuaXQxEDAOBgNVBAMMB3NpZ25pbmcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCU
+                        SiRjnDvPafZfhJ+L1wM86FKJX3VIAV/8TD9qJ6HOBkn5WwYfpheyCfRb6XVDyIGpO8qnMWAgC17N
+                        gbmhzj8d8HXNQ2l3uppMv24oUTfXyYhQfZWAghx0sTlRIx/ZmlnduJilx2S53Sa7ruJwlQcBFXj9
+                        h9B8dtyegc86Sx6D9BumP1xU7+mEBk8Gv9rR5Khg0Y7qGfZWB0t4aikgaupWveVwiGifOOSfR8cz
+                        qIg9qUpMYfZiTEBTSRmN6sPiNWhd4J0GyAI9Rn5C9jz/sSlQrxpN+4DXzsqSU5F6gzq3yRux6wyO
+                        zDlt2birf21VPQ9HIy4YCjZXwgDWG7AO821pAgMBAAEwDQYJKoZIhvcNAQELBQADggEBADnwdaxU
+                        tQU6SIpYwIb2c0ljTmQi7ryUcUpNHtK0M0E5Mw5Ex8zwrWbNQZ2sUyc4r07M66iOIqHsYZUQlRYv
+                        VKHifDpAr8TCgD7iGGdB3By8Ou0RaNW+03w1fwmi98CufbHCGvpv0o2KxlejoHZminNdQ79ibN+0
+                        1nhocezJQATEQlnwHLiQSjilXpZeLYDk8HbrcUXNRxezN4ChdH+uU54vf+Uxqcj9QHcmBe1+BM8E
+                        XfqS1DbTwZl+NTCnh5OYl8fvIFSOHMBxwFrI4pyY0faxg9UcrCogn/oQ+mV1gnVUDaDhvvEnVGZQ
+                        trlt7heVId2BeNellVgsrcmdW8j4U9U=</ds:X509Certificate>
+                </ds:X509Data>
+            </ds:KeyInfo>
+        </md:KeyDescriptor>
+        <md:KeyDescriptor use="encryption">
+            <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
+                <ds:X509Data>
+                    <ds:X509Certificate>MIIDKzCCAhMCBFrxKO4wDQYJKoZIhvcNAQELBQAwWjELMAkGA1UEBhMCQVQxDTALBgNVBAoMBEVH
+                        SVoxGDAWBgNVBAsMD2RlbW8uZWdpei5ndi5hdDEiMCAGA1UEAwwZTU9BLUlEIElEUCAoVGVzdC1W
+                        ZXJzaW9uKTAeFw0xODA1MDgwNDM0NTRaFw0yMTAxMzEwNDM0NTRaMFoxCzAJBgNVBAYTAkFUMQ0w
+                        CwYDVQQKDARFR0laMRgwFgYDVQQLDA9kZW1vLmVnaXouZ3YuYXQxIjAgBgNVBAMMGU1PQS1JRCBJ
+                        RFAgKFRlc3QtVmVyc2lvbikwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCaFnqoaYoq
+                        UptenemC6FiVDg5F2hEjpjix8+ow6/6QhUl2cPOS0uwZHaIvwT/RVbJ9CPdil6+11qaCPfZ+FoY+
+                        M+ke7TRd2RS1DqFbe1KC0imEnwemyLQrYe5Pm7DNcaY/kHTTq+k0eeGbYH0U/Iopyi0VuN5OWl4F
+                        Vg45pf7knhXkaimItdjnCXnKcYM91mmltCf6TDgUrz7US7PmgvinnhfBgdITAT4GRr4ehliT+/jt
+                        1OzHEyWRHanBGIpXNeZNqxgnpnGtaDh4JZuYR8qfH+GRK6dtW2ziej6rGIiUElGVCkXsohgxMNzq
+                        nWeD9JT8+yyp1XZlyQf+IxhhESQLAgMBAAEwDQYJKoZIhvcNAQELBQADggEBAIFejAFQepaEl/kC
+                        VLvidMR+MXq5LCGHthUiI6eDTQZ+H7lZdHlj547XwEdX15b6Md3h7eSJ4hwlfV4go/0FaoLPzvVq
+                        itwtYY5htywB3B6ZV34Eyi6C59Gl34XrV8CWxH4KKwLsVAjAy+/p/Xh0q2pzSBkeOChzBMBkjmyc
+                        2Ue4MEKdL9guzp6+Yc/HL/phHAKYapkVyFwvsdqWOgyRzxAHINko8ExImMMB3xB5a52kfqLcui5O
+                        fzEhjwLFJaGBMmFCmFGGOUwtIvl/6ZQ2LLzOE9+giVK9WsIgH11Pu+ejPFAbXf8cf4oWhbAfTkiy
+                        4jpXrp77JXFRSDWddb0yePc=</ds:X509Certificate>
+                </ds:X509Data>
+            </ds:KeyInfo>
+        </md:KeyDescriptor>
+        <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:persistent</md:NameIDFormat>
+        <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://demo.egiz.gv.at/demoportal_moaid-2.0/sp/eidas/post" index="0" isDefault="true"/>
+        <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://demo.egiz.gv.at/demoportal_moaid-2.0/sp/eidas/redirect" index="1"/>
+        <md:AttributeConsumingService index="0" isDefault="true">
+            <md:ServiceName xml:lang="en">Default Service</md:ServiceName>
+            <md:RequestedAttribute FriendlyName="BPK" Name="urn:oid:1.2.40.0.10.2.1.1.149" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
+            <md:RequestedAttribute FriendlyName="PRINCIPAL-NAME" Name="urn:oid:1.2.40.0.10.2.1.1.261.20" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
+            <md:RequestedAttribute FriendlyName="BIRTHDATE" Name="urn:oid:1.2.40.0.10.2.1.1.55" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
+            <md:RequestedAttribute FriendlyName="PVP-VERSION" Name="urn:oid:1.2.40.0.10.2.1.1.261.10" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
+            <md:RequestedAttribute FriendlyName="EID-ISSUING-NATION" Name="urn:oid:1.2.40.0.10.2.1.1.261.32" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
+            <md:RequestedAttribute FriendlyName="MANDATOR-LEGAL-PERSON-SOURCE-PIN-TYPE" Name="urn:oid:1.2.40.0.10.2.1.1.261.76" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="false"/>
+            <md:RequestedAttribute FriendlyName="MANDATOR-LEGAL-PERSON-FULL-NAME" Name="urn:oid:1.2.40.0.10.2.1.1.261.84" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="false"/>
+            <md:RequestedAttribute FriendlyName="MANDATE-TYPE" Name="urn:oid:1.2.40.0.10.2.1.1.261.68" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="false"/>
+            <md:RequestedAttribute FriendlyName="MANDATOR-LEGAL-PERSON-SOURCE-PIN" Name="urn:oid:1.2.40.0.10.2.1.1.261.100" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="false"/>
+            <md:RequestedAttribute FriendlyName="GIVEN-NAME" Name="urn:oid:2.5.4.42" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
+            <md:RequestedAttribute FriendlyName="EID-SECTOR-FOR-IDENTIFIER" Name="urn:oid:1.2.40.0.10.2.1.1.261.34" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
+            <md:RequestedAttribute FriendlyName="MANDATE-TYPE-OID" Name="urn:oid:1.2.40.0.10.2.1.1.261.106" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="false"/>
+            <md:RequestedAttribute FriendlyName="EID-IDENTITY-LINK" Name="urn:oid:1.2.40.0.10.2.1.1.261.38" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="false"/>
+            <md:RequestedAttribute FriendlyName="EID-CITIZEN-QAA-EIDAS-LEVEL" Name="urn:oid:1.2.40.0.10.2.1.1.261.108" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" isRequired="true"/>
+        </md:AttributeConsumingService>
+    </md:SPSSODescriptor>
+</md:EntityDescriptor>
-- 
cgit v1.2.3


From effa0dc13b11d18ef917dcd1f8be3a21d686b735 Mon Sep 17 00:00:00 2001
From: Alexander Marsalek <amarsalek@iaik.tugraz.at>
Date: Mon, 8 Feb 2021 15:09:46 +0100
Subject: added ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest

---
 .../IdAustriaClientAuthConstants.java              |   6 +-
 .../eidas/v2/test/dummy/DummyPendingRequest.java   |   8 +
 ...enerateMobilePhoneSignatureRequestTaskTest.java |   8 +-
 ...natureResponseAndSearchInRegistersTaskTest.java | 775 +++++++++++++++++++++
 .../resources/SpringTest-context_tasks_test1.xml   |   4 +
 .../resources/config/junit_config_1-.properties    |   4 +-
 .../src/test/resources/data/Response_with_EID.xml  |  46 ++
 .../data/Response_with_EID_wrong_data.xml          |  46 ++
 .../test/resources/data/Response_with_legacy.xml   |  55 ++
 .../data/Response_with_legacy_and_EID.xml          |  64 ++
 .../Response_with_wrong_destination_endpoint.xml   |  52 ++
 .../Response_without_sig_classpath_entityid.xml    |  52 ++
 .../data/Response_without_sig_with_error.xml       |  46 ++
 ...sponse_without_sig_with_error_empty_subcode.xml |  46 ++
 .../Response_without_sig_with_error_userstop.xml   |  46 ++
 ...onse_without_sig_with_error_without_subcode.xml |  45 ++
 16 files changed, 1296 insertions(+), 7 deletions(-)
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/dummy/DummyPendingRequest.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_with_EID.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_with_EID_wrong_data.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_with_legacy.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_with_legacy_and_EID.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_with_wrong_destination_endpoint.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_without_sig_classpath_entityid.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_without_sig_with_error.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_without_sig_with_error_empty_subcode.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_without_sig_with_error_userstop.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_without_sig_with_error_without_subcode.xml

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthConstants.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthConstants.java
index 1a590aa1..38b50a0a 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthConstants.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthConstants.java
@@ -84,6 +84,7 @@ public class IdAustriaClientAuthConstants {
   public static final List<Triple<String, String, Boolean>> DEFAULT_REQUIRED_PVP_ATTRIBUTES =
       Collections.unmodifiableList(new ArrayList<Triple<String, String, Boolean>>() {
         private static final long serialVersionUID = 1L;
+
         {
           // add PVP Version attribute
           add(Triple.newInstance(PvpAttributeDefinitions.PVP_VERSION_NAME,
@@ -96,8 +97,8 @@ public class IdAustriaClientAuthConstants {
               PvpAttributeDefinitions.EID_ISSUING_NATION_FRIENDLY_NAME, true));
 
           // entity eID information
-          add(Triple.newInstance(ExtendedPvpAttributeDefinitions.EID_EIDBIND_NAME,
-              ExtendedPvpAttributeDefinitions.EID_EIDBIND_FRIENDLY_NAME, true));
+          //          add(Triple.newInstance(ExtendedPvpAttributeDefinitions.EID_EIDBIND_NAME,
+          //              ExtendedPvpAttributeDefinitions.EID_EIDBIND_FRIENDLY_NAME, true));
           add(Triple.newInstance(ExtendedPvpAttributeDefinitions.EID_AUTHBLOCK_SIGNED_NAME,
               ExtendedPvpAttributeDefinitions.EID_AUTHBLOCK_SIGNED_FRIENDLY_NAME, true));
 
@@ -111,6 +112,7 @@ public class IdAustriaClientAuthConstants {
   public static final List<String> DEFAULT_REQUIRED_PVP_ATTRIBUTE_NAMES =
       Collections.unmodifiableList(new ArrayList<String>() {
         private static final long serialVersionUID = 1L;
+
         {
           for (final Triple<String, String, Boolean> el : DEFAULT_REQUIRED_PVP_ATTRIBUTES) {
             add(el.getFirst());
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/dummy/DummyPendingRequest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/dummy/DummyPendingRequest.java
new file mode 100644
index 00000000..9a91ecbd
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/dummy/DummyPendingRequest.java
@@ -0,0 +1,8 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.test.dummy;
+
+import at.gv.egiz.eaaf.core.impl.idp.controller.protocols.RequestImpl;
+
+public class DummyPendingRequest extends RequestImpl {
+  private static final long serialVersionUID = 8136280395622411505L;
+}
+
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/GenerateMobilePhoneSignatureRequestTaskTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/GenerateMobilePhoneSignatureRequestTaskTest.java
index 379f64ee..2579bb40 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/GenerateMobilePhoneSignatureRequestTaskTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/GenerateMobilePhoneSignatureRequestTaskTest.java
@@ -22,6 +22,8 @@ import at.gv.egiz.eaaf.modules.pvp2.impl.message.PvpSProfileRequest;
 import at.gv.egiz.eaaf.modules.pvp2.impl.metadata.PvpMetadataResolverFactory;
 import at.gv.egiz.eaaf.modules.pvp2.impl.opensaml.initialize.EaafOpenSaml3xInitializer;
 import at.gv.egiz.eaaf.modules.pvp2.impl.utils.Saml2Utils;
+import at.gv.egiz.eaaf.modules.pvp2.impl.validation.TrustEngineFactory;
+import at.gv.egiz.eaaf.modules.pvp2.impl.verification.SamlVerificationEngine;
 import org.apache.commons.lang3.RandomStringUtils;
 import org.apache.commons.lang3.StringUtils;
 import org.junit.Assert;
@@ -73,8 +75,8 @@ public class GenerateMobilePhoneSignatureRequestTaskTest {
   private PvpMetadataResolverFactory metadataFactory;
   @Autowired
   private DummyGuiBuilderConfigurationFactory guiBuilderConfigFactory;
-//  @Autowired
-//  private SamlVerificationEngine samlVerifyEngine;
+  @Autowired
+  private SamlVerificationEngine samlVerifyEngine;
 //  @Autowired
 //  private ITransactionStorage transactionStorage;
 
@@ -284,7 +286,7 @@ public class GenerateMobilePhoneSignatureRequestTaskTest {
     msg.setEntityID(authnRequest.getIssuer().getValue());
     metadataProvider.addMetadataResolverIntoChain(
         metadataFactory.createMetadataProvider(METADATA_SP_PATH, null, "jUnit SP", null));
-//    samlVerifyEngine.verify(msg, TrustEngineFactory.getSignatureKnownKeysTrustEngine(metadataProvider));
+    //samlVerifyEngine.verify(msg, TrustEngineFactory.getSignatureKnownKeysTrustEngine(metadataProvider));
 //TODO
     //check other elements
 //    Assert.assertNotNull("Proxy-Scope", authnRequest.getScoping());
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest.java
new file mode 100644
index 00000000..a07343f9
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest.java
@@ -0,0 +1,775 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.test.tasks;
+
+
+import java.io.IOException;
+import java.util.Base64;
+
+import javax.xml.transform.TransformerException;
+
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthConstants;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthCredentialProvider;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthMetadataProvider;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.test.dummy.DummyAuthConfigMap;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.test.dummy.DummyOA;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.test.dummy.DummyPendingRequest;
+import at.gv.egiz.eaaf.core.impl.idp.auth.data.AuthProcessDataWrapper;
+import org.apache.commons.io.IOUtils;
+import org.apache.commons.lang3.RandomStringUtils;
+import org.joda.time.DateTime;
+import org.junit.Assert;
+import org.junit.Before;
+import org.junit.BeforeClass;
+import org.junit.Test;
+import org.junit.runner.RunWith;
+import org.opensaml.core.xml.config.XMLObjectProviderRegistrySupport;
+import org.opensaml.core.xml.io.MarshallingException;
+import org.opensaml.core.xml.io.UnmarshallingException;
+import org.opensaml.core.xml.util.XMLObjectSupport;
+import org.opensaml.saml.saml2.core.Issuer;
+import org.opensaml.saml.saml2.core.Response;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.context.ApplicationContext;
+import org.springframework.mock.web.MockHttpServletRequest;
+import org.springframework.mock.web.MockHttpServletResponse;
+import org.springframework.test.context.ContextConfiguration;
+import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
+import org.springframework.web.context.request.RequestContextHolder;
+import org.springframework.web.context.request.ServletRequestAttributes;
+
+import at.gv.egiz.eaaf.core.api.data.EaafConstants;
+import at.gv.egiz.eaaf.core.api.data.ExtendedPvpAttributeDefinitions;
+import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
+import at.gv.egiz.eaaf.core.exceptions.EaafException;
+import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
+import at.gv.egiz.eaaf.core.impl.idp.process.ExecutionContextImpl;
+import at.gv.egiz.eaaf.core.impl.utils.DomUtils;
+import at.gv.egiz.eaaf.modules.pvp2.api.credential.EaafX509Credential;
+import at.gv.egiz.eaaf.modules.pvp2.exception.CredentialsNotAvailableException;
+import at.gv.egiz.eaaf.modules.pvp2.exception.Pvp2MetadataException;
+import at.gv.egiz.eaaf.modules.pvp2.exception.SamlSigningException;
+import at.gv.egiz.eaaf.modules.pvp2.impl.metadata.PvpMetadataResolverFactory;
+import at.gv.egiz.eaaf.modules.pvp2.impl.opensaml.initialize.EaafOpenSaml3xInitializer;
+import at.gv.egiz.eaaf.modules.pvp2.impl.utils.Saml2Utils;
+import at.gv.egiz.eaaf.modules.pvp2.sp.exception.AuthnResponseValidationException;
+import net.shibboleth.utilities.java.support.xml.XMLParserException;
+
+@RunWith(SpringJUnit4ClassRunner.class)
+//@ContextConfiguration({"/spring/SpringTest-context_mapConfig_full.xml", "classpath:/spring/test_eaaf_core.beans.xml"})
+@ContextConfiguration(locations = {
+    "/SpringTest-context_tasks_test1.xml",
+    "/SpringTest-context_basic_mapConfig1.xml"
+})
+public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest {
+
+  private static final String METADATA_PATH = "classpath:/data/idp_metadata_classpath_entity.xml";
+  private static final String TEST_SIGNED_AUTHBLOCK = "MIIBbjCCARSgAwIBAgIEXh7TNzAKBggqhkjOPQQDAjA/MQswCQYDVQQG"
+      + "EwJBVDENMAsGA1UECgwERUdJWjEOMAwGA1UECwwFalVuaXQxETAPBgNVBAMMCG1ldGFkYXRhMB4XDTIwMDExNTA4NTQxNVoXDTMw"
+      + "MDExNDA4NTQxNVowPzELMAkGA1UEBhMCQVQxDTALBgNVBAoMBEVHSVoxDjAMBgNVBAsMBWpVbml0MREwDwYDVQQDDAhtZXRhZGF0"
+      + "YTBZMBMGByqGSM49AgEGCCqGSM49AwEHA0IABBdBkaxt31p++aZeP3SmlWITj9SYO4McV2ccXFsH4X4QMHuKAMUvjxPm1kdU01eT"
+      + "OWdiQX0GpDIBspYMZh8ZKcwwCgYIKoZIzj0EAwIDSAAwRQIhAJ3QKlk9cd90s+i8y62fvmGF6LtfNO+JvkWqDUBeQImnAiA2KwFt"
+      + "zO7STAp9MEwQGe0vt0F8mO1ttrLE+rr6YxdwGA==";
+
+  @Autowired(required = true)
+  private ApplicationContext context;
+  @Autowired(required = true)
+  protected DummyAuthConfigMap authConfig;
+  @Autowired private IdAustriaClientAuthMetadataProvider metadataProvider;
+  @Autowired private IdAustriaClientAuthCredentialProvider credentialProvider;
+  @Autowired private PvpMetadataResolverFactory metadataFactory;
+
+  final ExecutionContext executionContext = new ExecutionContextImpl();
+  private MockHttpServletRequest httpReq;
+  private MockHttpServletResponse httpResp;
+  private DummyPendingRequest pendingReq;
+  private DummyOA oaParam;
+
+  private ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask task;
+
+  /**
+   * JUnit class initializer.
+   *
+   * @throws Exception In case of an OpenSAML3 initialization error
+   */
+  @BeforeClass
+  public static void initialize() throws Exception {
+    EaafOpenSaml3xInitializer.eaafInitialize();
+
+  }
+
+  /**
+   * jUnit test set-up.
+   *
+   * @throws Exception In case of an set-up error
+   */
+  @Before
+  public void setUp() throws Exception {
+    task = (ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask) context.getBean("ReceiveMobilePhoneSignatureResponseTask");
+
+    httpReq = new MockHttpServletRequest("POST", "https://localhost/authhandler");
+    httpReq.setScheme("https");
+    httpReq.setServerPort(443);
+    httpReq.setContextPath("/authhandler");
+    httpResp = new MockHttpServletResponse();
+    RequestContextHolder.resetRequestAttributes();
+    RequestContextHolder.setRequestAttributes(new ServletRequestAttributes(httpReq, httpResp));
+
+    authConfig.putConfigValue("modules.eidascentralauth.request.sign.alias", "sig");
+//    authConfig.putConfigValue(AuthHandlerConstants.PROP_CONFIG_LEGACY_ALLOW, "false");
+
+    oaParam = new DummyOA();
+    oaParam.setUniqueAppId("http://test.com/test");
+    oaParam.setTargetIdentifier(
+        EaafConstants.URN_PREFIX_CDID + RandomStringUtils.randomAlphabetic(2));
+    oaParam.setEidasEnabled(true);
+    oaParam.putGenericConfigurationKey(
+        IdAustriaClientAuthConstants.CONFIG_PROPS_APPSPECIFIC_EIDAS_NODE_URL, METADATA_PATH);
+    oaParam.putGenericConfigurationKey(
+        IdAustriaClientAuthConstants.CONFIG_PROPS_APPSPECIFIC_EIDAS_NODE_URL, null);
+    oaParam.setMandateProfilesCsv(
+        RandomStringUtils.randomAlphabetic(5)
+            + "," + RandomStringUtils.randomAlphabetic(5)
+            + "," + RandomStringUtils.randomAlphabetic(5));
+
+    pendingReq = new DummyPendingRequest();
+    pendingReq.initialize(httpReq, authConfig);
+    pendingReq.setPendingRequestId(RandomStringUtils.randomAlphanumeric(10));
+    pendingReq.setOnlineApplicationConfiguration(oaParam);
+    //pendingReq.setAuthUrl("https://localhost/authhandler");
+
+    metadataProvider.fullyDestroy();
+
+  }
+
+  @Test
+  public void unsupportedHttpMethode() {
+    httpReq = new MockHttpServletRequest("PUT", "https://localhost/authhandler");
+    RequestContextHolder.resetRequestAttributes();
+    RequestContextHolder.setRequestAttributes(new ServletRequestAttributes(httpReq, httpResp));
+
+    try {
+      task.execute(pendingReq, executionContext);
+      Assert.fail("Invalid response not detected");
+
+    } catch (final TaskExecutionException e) {
+      Assert.assertNotNull(e.getPendingRequestID());
+      Assert.assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
+      Assert.assertNotNull(e.getOriginalException());
+      org.springframework.util.Assert.isInstanceOf(AuthnResponseValidationException.class,
+          e.getOriginalException());
+      Assert.assertEquals("sp.pvp2.03",
+          ((AuthnResponseValidationException) e.getOriginalException()).getErrorId());
+
+    }
+  }
+
+  @Test
+  public void httpGetNoMessage() {
+    httpReq = new MockHttpServletRequest("GET", "https://localhost/authhandler");
+    RequestContextHolder.resetRequestAttributes();
+    RequestContextHolder.setRequestAttributes(new ServletRequestAttributes(httpReq, httpResp));
+
+    try {
+      task.execute(pendingReq, executionContext);
+      Assert.fail("Invalid response not detected");
+
+    } catch (final TaskExecutionException e) {
+      Assert.assertNotNull(e.getPendingRequestID());
+      Assert.assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
+      Assert.assertNotNull(e.getOriginalException());
+      org.springframework.util.Assert.isInstanceOf(AuthnResponseValidationException.class,
+          e.getOriginalException());
+      Assert.assertEquals("sp.pvp2.12",
+          ((AuthnResponseValidationException) e.getOriginalException()).getErrorId());
+
+    }
+  }
+
+  @Test
+  public void httpPostNoMessage() {
+    try {
+      task.execute(pendingReq, executionContext);
+      Assert.fail("Invalid response not detected");
+
+    } catch (final TaskExecutionException e) {
+      Assert.assertNotNull(e.getPendingRequestID());
+      Assert.assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
+      Assert.assertNotNull(e.getOriginalException());
+      org.springframework.util.Assert.isInstanceOf(AuthnResponseValidationException.class,
+          e.getOriginalException());
+      Assert.assertEquals("sp.pvp2.12",
+          ((AuthnResponseValidationException) e.getOriginalException()).getErrorId());
+
+    }
+  }
+
+  @Test
+  public void httpPostMessageNotSigned() throws IOException {
+
+    httpReq.addParameter("SAMLResponse", Base64.getEncoder().encodeToString(
+        IOUtils.toByteArray(ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask.class.getResourceAsStream(
+            "/data/Response_without_sig_classpath_entityid.xml"))));
+
+    try {
+      task.execute(pendingReq, executionContext);
+      Assert.fail("Invalid response not detected");
+
+    } catch (final TaskExecutionException e) {
+      Assert.assertNotNull(e.getPendingRequestID());
+      Assert.assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
+      Assert.assertNotNull(e.getOriginalException());
+      org.springframework.util.Assert.isInstanceOf(AuthnResponseValidationException.class,
+          e.getOriginalException());
+      Assert.assertEquals("sp.pvp2.12",
+          ((AuthnResponseValidationException) e.getOriginalException()).getErrorId());
+
+    }
+  }
+
+  @Test
+  public void httpPostMessageWrongDestinationEndpoint() throws IOException, SamlSigningException,
+      Pvp2MetadataException, CredentialsNotAvailableException, XMLParserException, UnmarshallingException,
+      TransformerException, MarshallingException {
+
+    final Response response = initializeResponse(
+        "classpath:/data/idp_metadata_classpath_entity.xml",
+        "/data/Response_with_wrong_destination_endpoint.xml",
+        credentialProvider.getMessageSigningCredential(), true);
+    httpReq.addParameter("SAMLResponse", Base64.getEncoder().encodeToString(
+        DomUtils.serializeNode(XMLObjectSupport.getMarshaller(response).marshall(response)).getBytes("UTF-8")));
+
+    try {
+      task.execute(pendingReq, executionContext);
+      Assert.fail("Invalid response not detected");
+
+    } catch (final TaskExecutionException e) {
+      Assert.assertNotNull(e.getPendingRequestID());
+      Assert.assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
+      Assert.assertNotNull(e.getOriginalException());
+      org.springframework.util.Assert.isInstanceOf(AuthnResponseValidationException.class,
+          e.getOriginalException());
+      Assert.assertEquals("sp.pvp2.12",
+          ((AuthnResponseValidationException) e.getOriginalException()).getErrorId());
+
+    }
+  }
+
+  @Test
+  public void httpPostValidSignedNoMetadata() throws IOException, SamlSigningException,
+      Pvp2MetadataException, CredentialsNotAvailableException, XMLParserException, UnmarshallingException,
+      MarshallingException, TransformerException {
+
+    final Response response = initializeResponse(
+        "classpath:/data/idp_metadata_classpath_entity.xml",
+        "/data/Response_without_sig_classpath_entityid.xml",
+        credentialProvider.getMessageSigningCredential(), true);
+    httpReq.addParameter("SAMLResponse", Base64.getEncoder().encodeToString(
+        DomUtils.serializeNode(XMLObjectSupport.getMarshaller(response).marshall(response)).getBytes("UTF-8")));
+
+    try {
+      task.execute(pendingReq, executionContext);
+      Assert.fail("Invalid response not detected");
+
+    } catch (final TaskExecutionException e) {
+      Assert.assertNotNull(e.getPendingRequestID());
+      Assert.assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
+      Assert.assertNotNull(e.getOriginalException());
+      org.springframework.util.Assert.isInstanceOf(AuthnResponseValidationException.class,
+          e.getOriginalException());
+      Assert.assertEquals("sp.pvp2.11",
+          ((EaafException) e.getOriginalException()).getErrorId());
+
+    }
+  }
+
+  @Test
+  public void httpPostValidSignedAssertionOutDated() throws IOException, SamlSigningException,
+      Pvp2MetadataException, CredentialsNotAvailableException, XMLParserException, UnmarshallingException,
+      MarshallingException, TransformerException {
+
+    metadataProvider.addMetadataResolverIntoChain(metadataFactory.createMetadataProvider(
+        METADATA_PATH, null, "jUnit IDP", null));
+
+    final Response response = initializeResponse(
+        "classpath:/data/idp_metadata_classpath_entity.xml",
+        "/data/Response_without_sig_classpath_entityid.xml",
+        credentialProvider.getMessageSigningCredential(), false);
+    httpReq.addParameter("SAMLResponse", Base64.getEncoder().encodeToString(
+        DomUtils.serializeNode(XMLObjectSupport.getMarshaller(response).marshall(response)).getBytes("UTF-8")));
+
+    try {
+      task.execute(pendingReq, executionContext);
+      Assert.fail("Invalid response not detected");
+
+    } catch (final TaskExecutionException e) {
+      Assert.assertNotNull(e.getPendingRequestID());
+      Assert.assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
+      Assert.assertNotNull(e.getOriginalException());
+      org.springframework.util.Assert.isInstanceOf(AuthnResponseValidationException.class,
+          e.getOriginalException());
+      Assert.assertEquals("sp.pvp2.12",
+          ((EaafException) e.getOriginalException()).getErrorId());
+
+    }
+  }
+
+  @Test
+  public void httpPostValidSignedAssertionFromWrongIdp() throws IOException, SamlSigningException,
+      Pvp2MetadataException, CredentialsNotAvailableException, XMLParserException, UnmarshallingException,
+      MarshallingException, TransformerException {
+
+    oaParam.putGenericConfigurationKey(
+        IdAustriaClientAuthConstants.CONFIG_PROPS_APPSPECIFIC_EIDAS_NODE_URL, "http://wrong.idp");
+
+    metadataProvider.addMetadataResolverIntoChain(metadataFactory.createMetadataProvider(
+        METADATA_PATH, null, "jUnit IDP", null));
+
+    final Response response = initializeResponse(
+        "classpath:/data/idp_metadata_classpath_entity.xml",
+        "/data/Response_without_sig_classpath_entityid.xml",
+        credentialProvider.getMessageSigningCredential(),
+        true);
+    httpReq.addParameter("SAMLResponse", Base64.getEncoder().encodeToString(
+        DomUtils.serializeNode(XMLObjectSupport.getMarshaller(response).marshall(response)).getBytes("UTF-8")));
+
+    try {
+      task.execute(pendingReq, executionContext);
+      Assert.fail("Invalid response not detected");
+
+    } catch (final TaskExecutionException e) {
+      Assert.assertNotNull(e.getPendingRequestID());
+      Assert.assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
+      Assert.assertNotNull(e.getOriginalException());
+      org.springframework.util.Assert.isInstanceOf(AuthnResponseValidationException.class,
+          e.getOriginalException());
+      Assert.assertEquals("sp.pvp2.08",
+          ((EaafException) e.getOriginalException()).getErrorId());
+
+    }
+  }
+
+  @Test
+  public void httpPostValidSignedAssertionMissingAttributes() throws IOException, SamlSigningException,
+      Pvp2MetadataException, CredentialsNotAvailableException, XMLParserException, UnmarshallingException,
+      MarshallingException, TransformerException {
+
+    oaParam.putGenericConfigurationKey(
+        IdAustriaClientAuthConstants.CONFIG_PROPS_APPSPECIFIC_EIDAS_NODE_URL, METADATA_PATH);
+
+    metadataProvider.addMetadataResolverIntoChain(metadataFactory.createMetadataProvider(
+        METADATA_PATH, null, "jUnit IDP", null));
+
+    final Response response = initializeResponse(
+        "classpath:/data/idp_metadata_classpath_entity.xml",
+        "/data/Response_without_sig_classpath_entityid.xml",
+        credentialProvider.getMessageSigningCredential(),
+        true);
+    httpReq.addParameter("SAMLResponse", Base64.getEncoder().encodeToString(
+        DomUtils.serializeNode(XMLObjectSupport.getMarshaller(response).marshall(response)).getBytes("UTF-8")));
+
+    try {
+      task.execute(pendingReq, executionContext);
+      Assert.fail("Invalid response not detected");
+
+    } catch (final TaskExecutionException e) {
+      Assert.assertNotNull(e.getPendingRequestID());
+      Assert.assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
+      Assert.assertNotNull(e.getOriginalException());
+      org.springframework.util.Assert.isInstanceOf(AuthnResponseValidationException.class,
+          e.getOriginalException());
+      Assert.assertEquals("sp.pvp2.12",
+          ((EaafException) e.getOriginalException()).getErrorId());
+
+    }
+  }
+
+  @Test
+  public void httpPostValidSignedWithError() throws IOException, SamlSigningException,
+      Pvp2MetadataException, CredentialsNotAvailableException, XMLParserException, UnmarshallingException,
+      MarshallingException, TransformerException {
+
+    oaParam.putGenericConfigurationKey(
+        IdAustriaClientAuthConstants.CONFIG_PROPS_APPSPECIFIC_EIDAS_NODE_URL, METADATA_PATH);
+
+    metadataProvider.addMetadataResolverIntoChain(metadataFactory.createMetadataProvider(
+        METADATA_PATH, null, "jUnit IDP", null));
+
+    final Response response = initializeResponse(
+        "classpath:/data/idp_metadata_classpath_entity.xml",
+        "/data/Response_without_sig_with_error.xml",
+        credentialProvider.getMessageSigningCredential(),
+        true);
+    httpReq.addParameter("SAMLResponse", Base64.getEncoder().encodeToString(
+        DomUtils.serializeNode(XMLObjectSupport.getMarshaller(response).marshall(response)).getBytes("UTF-8")));
+
+    try {
+      task.execute(pendingReq, executionContext);
+      Assert.fail("Invalid response not detected");
+
+    } catch (final TaskExecutionException e) {
+      Assert.assertNotNull(e.getPendingRequestID());
+      Assert.assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
+      Assert.assertNotNull(e.getOriginalException());
+      org.springframework.util.Assert.isInstanceOf(AuthnResponseValidationException.class,
+          e.getOriginalException());
+      Assert.assertEquals("sp.pvp2.05",
+          ((EaafException) e.getOriginalException()).getErrorId());
+
+    }
+  }
+
+  @Test
+  public void httpPostValidSignedWitUserStopErrorCode() throws IOException, SamlSigningException,
+      Pvp2MetadataException, CredentialsNotAvailableException, XMLParserException, UnmarshallingException,
+      MarshallingException, TransformerException, TaskExecutionException {
+
+    oaParam.putGenericConfigurationKey(
+        IdAustriaClientAuthConstants.CONFIG_PROPS_APPSPECIFIC_EIDAS_NODE_URL, METADATA_PATH);
+
+    metadataProvider.addMetadataResolverIntoChain(metadataFactory.createMetadataProvider(
+        METADATA_PATH, null, "jUnit IDP", null));
+
+    final Response response = initializeResponse(
+        "classpath:/data/idp_metadata_classpath_entity.xml",
+        "/data/Response_without_sig_with_error_userstop.xml",
+        credentialProvider.getMessageSigningCredential(),
+        true);
+    httpReq.addParameter("SAMLResponse", Base64.getEncoder().encodeToString(
+        DomUtils.serializeNode(XMLObjectSupport.getMarshaller(response).marshall(response)).getBytes("UTF-8")));
+
+    //perform test
+    task.execute(pendingReq, executionContext);
+
+    //validate state
+    Assert.assertTrue("process not cancelled", executionContext.isProcessCancelled());
+    Assert.assertTrue("process not stopped by user", pendingReq.isAbortedByUser());
+    Assert.assertFalse("should not authenticated", pendingReq.isAuthenticated());
+
+  }
+
+  @Test
+  public void httpPostValidSignedWithErrorAndNoSubCode() throws IOException, SamlSigningException,
+      Pvp2MetadataException, CredentialsNotAvailableException, XMLParserException, UnmarshallingException,
+      MarshallingException, TransformerException {
+
+    oaParam.putGenericConfigurationKey(
+        IdAustriaClientAuthConstants.CONFIG_PROPS_APPSPECIFIC_EIDAS_NODE_URL, METADATA_PATH);
+
+    metadataProvider.addMetadataResolverIntoChain(metadataFactory.createMetadataProvider(
+        METADATA_PATH, null, "jUnit IDP", null));
+
+    final Response response = initializeResponse(
+        "classpath:/data/idp_metadata_classpath_entity.xml",
+        "/data/Response_without_sig_with_error_without_subcode.xml",
+        credentialProvider.getMessageSigningCredential(),
+        true);
+    httpReq.addParameter("SAMLResponse", Base64.getEncoder().encodeToString(
+        DomUtils.serializeNode(XMLObjectSupport.getMarshaller(response).marshall(response)).getBytes("UTF-8")));
+
+    try {
+      task.execute(pendingReq, executionContext);
+      Assert.fail("Invalid response not detected");
+
+    } catch (final TaskExecutionException e) {
+      Assert.assertNotNull(e.getPendingRequestID());
+      Assert.assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
+      Assert.assertNotNull(e.getOriginalException());
+      org.springframework.util.Assert.isInstanceOf(AuthnResponseValidationException.class,
+          e.getOriginalException());
+      Assert.assertEquals("sp.pvp2.05",
+          ((EaafException) e.getOriginalException()).getErrorId());
+
+    }
+  }
+
+  @Test
+  public void httpPostValidSignedWithErrorAndEmptySubCode() throws IOException, SamlSigningException,
+      Pvp2MetadataException, CredentialsNotAvailableException, XMLParserException, UnmarshallingException,
+      MarshallingException, TransformerException {
+
+    oaParam.putGenericConfigurationKey(
+        IdAustriaClientAuthConstants.CONFIG_PROPS_APPSPECIFIC_EIDAS_NODE_URL, METADATA_PATH);
+
+    metadataProvider.addMetadataResolverIntoChain(metadataFactory.createMetadataProvider(
+        METADATA_PATH, null, "jUnit IDP", null));
+
+    final Response response = initializeResponse(
+        "classpath:/data/idp_metadata_classpath_entity.xml",
+        "/data/Response_without_sig_with_error_empty_subcode.xml",
+        credentialProvider.getMessageSigningCredential(),
+        true);
+    httpReq.addParameter("SAMLResponse", Base64.getEncoder().encodeToString(
+        DomUtils.serializeNode(XMLObjectSupport.getMarshaller(response).marshall(response)).getBytes("UTF-8")));
+
+    try {
+      task.execute(pendingReq, executionContext);
+      Assert.fail("Invalid response not detected");
+
+    } catch (final TaskExecutionException e) {
+      Assert.assertNotNull(e.getPendingRequestID());
+      Assert.assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
+      Assert.assertNotNull(e.getOriginalException());
+      org.springframework.util.Assert.isInstanceOf(AuthnResponseValidationException.class,
+          e.getOriginalException());
+      Assert.assertEquals("sp.pvp2.05",
+          ((EaafException) e.getOriginalException()).getErrorId());
+
+    }
+  }
+
+  @Test
+  public void responseWrongEidasBind() throws IOException, SamlSigningException,
+      Pvp2MetadataException, CredentialsNotAvailableException, XMLParserException, UnmarshallingException,
+      MarshallingException, TransformerException {
+
+    oaParam.putGenericConfigurationKey(
+        IdAustriaClientAuthConstants.CONFIG_PROPS_APPSPECIFIC_EIDAS_NODE_URL, METADATA_PATH);
+
+    metadataProvider.addMetadataResolverIntoChain(metadataFactory.createMetadataProvider(
+        METADATA_PATH, null, "jUnit IDP", null));
+
+    final Response response = initializeResponse(
+        "classpath:/data/idp_metadata_classpath_entity.xml",
+        "/data/Response_with_EID_wrong_data.xml",
+        credentialProvider.getMessageSigningCredential(),
+        true);
+    httpReq.addParameter("SAMLResponse", Base64.getEncoder().encodeToString(
+        DomUtils.serializeNode(XMLObjectSupport.getMarshaller(response).marshall(response)).getBytes("UTF-8")));
+
+    try {
+      task.execute(pendingReq, executionContext);
+      Assert.fail("Invalid response not detected");
+
+    } catch (final TaskExecutionException e) {
+      Assert.assertNotNull(e.getPendingRequestID());
+      Assert.assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
+      Assert.assertNotNull(e.getOriginalException());
+      org.springframework.util.Assert.isInstanceOf(AuthnResponseValidationException.class,
+          e.getOriginalException());
+      Assert.assertEquals("sp.pvp2.12",
+          ((EaafException) e.getOriginalException()).getErrorId());
+
+    }
+  }
+
+  @Test
+  public void httpPostValidSignedAssertionEidValid() throws IOException, SamlSigningException,
+      Pvp2MetadataException, CredentialsNotAvailableException, XMLParserException, UnmarshallingException,
+      MarshallingException, TransformerException, TaskExecutionException {
+
+    oaParam.putGenericConfigurationKey(
+        IdAustriaClientAuthConstants.CONFIG_PROPS_APPSPECIFIC_EIDAS_NODE_URL, METADATA_PATH);
+
+    metadataProvider.addMetadataResolverIntoChain(metadataFactory.createMetadataProvider(
+        METADATA_PATH, null, "jUnit IDP", null));
+
+    final Response response = initializeResponse(
+        "classpath:/data/idp_metadata_classpath_entity.xml",
+        "/data/Response_with_EID.xml",
+        credentialProvider.getMessageSigningCredential(),
+        true);
+    httpReq.addParameter("SAMLResponse", Base64.getEncoder().encodeToString(
+        DomUtils.serializeNode(XMLObjectSupport.getMarshaller(response).marshall(response)).getBytes("UTF-8")));
+
+    //perform task
+    task.execute(pendingReq, executionContext);
+
+    //validate state
+//    Assert.assertTrue("Wrong EID-Process flag",
+//        (boolean) executionContext.get(AuthHandlerConstants.PROCESSCONTEXT_WAS_EID_PROCESS));
+//    Assert.assertFalse("Wrong Mandate flag",
+//        (boolean) executionContext.get(AuthHandlerConstants.HTTP_PARAM_USE_MANDATES));
+
+    Assert.assertEquals("piiTransactionId", "piiId_112233445566", pendingReq.getUniquePiiTransactionIdentifier());
+
+    final AuthProcessDataWrapper session = pendingReq.getSessionData(AuthProcessDataWrapper.class);
+
+    Assert.assertTrue("E-ID flag", session.isEidProcess());
+    Assert.assertTrue("Foreign flag", session.isForeigner());
+//    Assert.assertEquals("eidasBind", EIDAS_BIND, session.getQcBind());
+//    Assert.assertEquals("vsz",
+//        "OD/kCGIFbjLTW0po6IZSmoaz3uhPYlO3S5bs9JnK0A5DHtufM3APLuDc3Llp4PeNdEa4NrCmgHr1YUiHT5irT8eDAfGpIbQHJg==",
+//        session.getVsz());
+//    Assert.assertArrayEquals("signedConsent",
+//        Base64.getDecoder().decode(TEST_SIGNED_AUTHBLOCK), session.getSignedAuthBlock());
+//    Assert.assertEquals("AuthBlockType", AuthHandlerConstants.AuthBlockType.JWS, session.getSignedAuthBlockType());
+
+    Assert.assertEquals("LoA", "http://eidas.europa.eu/LoA/low", session.getQaaLevel());
+    Assert.assertEquals("CountryCode", "IT", session.getGenericDataFromSession(
+        ExtendedPvpAttributeDefinitions.EID_ISSUING_NATION_NAME, String.class));
+    Assert.assertEquals("IssueInstant", "2014-03-05T06:39:51Z", session.getIssueInstantString());
+
+//    Assert.assertNull("SigCert", session.getEncodedSignerCertificate());
+
+//    Assert.assertFalse("Mandate flag", session.isMandateUsed());
+//    Assert.assertNull("MandateInfos", session.getMandateDate());
+
+    Assert.assertNull("MandateType", session.getGenericDataFromSession(
+        ExtendedPvpAttributeDefinitions.MANDATE_TYPE_NAME, String.class));
+    Assert.assertNull("Legal Person CommonName", session.getGenericDataFromSession(
+        ExtendedPvpAttributeDefinitions.MANDATE_LEG_PER_FULL_NAME_NAME, String.class));
+    Assert.assertNull("Legal Person SourcePin",session.getGenericDataFromSession(
+        ExtendedPvpAttributeDefinitions.MANDATE_LEG_PER_SOURCE_PIN_NAME, String.class));
+    Assert.assertNull("Legal Person SourcePinType", session.getGenericDataFromSession(
+        ExtendedPvpAttributeDefinitions.MANDATE_LEG_PER_SOURCE_PIN_TYPE_NAME, String.class));
+  }
+
+  @Test
+  public void httpPostValidSignedAssertionLegacyValid() throws IOException, SamlSigningException,
+      Pvp2MetadataException, CredentialsNotAvailableException, XMLParserException, UnmarshallingException,
+      MarshallingException, TransformerException, TaskExecutionException {
+//    authConfig.putConfigValue(AuthHandlerConstants.PROP_CONFIG_LEGACY_ALLOW, "true");
+    oaParam.putGenericConfigurationKey(
+        IdAustriaClientAuthConstants.CONFIG_PROPS_APPSPECIFIC_EIDAS_NODE_URL, METADATA_PATH);
+
+    metadataProvider.addMetadataResolverIntoChain(metadataFactory.createMetadataProvider(
+        METADATA_PATH, null, "jUnit IDP", null));
+
+    final Response response = initializeResponse(
+        "classpath:/data/idp_metadata_classpath_entity.xml",
+        "/data/Response_with_legacy.xml",
+        credentialProvider.getMessageSigningCredential(),
+        true);
+    httpReq.addParameter("SAMLResponse", Base64.getEncoder().encodeToString(
+        DomUtils.serializeNode(XMLObjectSupport.getMarshaller(response).marshall(response)).getBytes("UTF-8")));
+
+    String piiTransId = pendingReq.getUniquePiiTransactionIdentifier();
+
+    //perform task
+    task.execute(pendingReq, executionContext);
+
+    //validate state
+//    Assert.assertFalse("Wrong EID-Process flag",
+//        (boolean) executionContext.get(AuthHandlerConstants.PROCESSCONTEXT_WAS_EID_PROCESS));
+//    Assert.assertFalse("Wrong Mandate flag",
+//        (boolean) executionContext.get(AuthHandlerConstants.HTTP_PARAM_USE_MANDATES));
+
+    Assert.assertEquals("piiTransactionId", piiTransId, pendingReq.getUniquePiiTransactionIdentifier());
+
+    final AuthProcessDataWrapper session = pendingReq.getSessionData(AuthProcessDataWrapper.class);
+
+    Assert.assertFalse("E-ID flag", session.isEidProcess());
+    Assert.assertTrue("Foreign flag", session.isForeigner());
+    Assert.assertEquals("LoA", "http://eidas.europa.eu/LoA/test", session.getQaaLevel());
+    Assert.assertEquals("CountryCode", "AB", session.getGenericDataFromSession(
+        ExtendedPvpAttributeDefinitions.EID_ISSUING_NATION_NAME, String.class));
+    Assert.assertEquals("IssueInstant", "2014-03-05T06:39:51Z", session.getIssueInstantString());
+
+    Assert.assertEquals("FamilyName", "Mustermann", session.getGenericDataFromSession(
+        ExtendedPvpAttributeDefinitions.PRINCIPAL_NAME_NAME, String.class));
+    Assert.assertEquals("Givenname", "Max", session.getGenericDataFromSession(
+        ExtendedPvpAttributeDefinitions.GIVEN_NAME_NAME, String.class));
+    Assert.assertEquals("DateOfBirth", "1940-01-01", session.getGenericDataFromSession(
+        ExtendedPvpAttributeDefinitions.BIRTHDATE_NAME, String.class));
+
+    Assert.assertEquals("bPK", "BF:QVGm48cqcM4UcyhDTNGYmVdrIoY=", session.getGenericDataFromSession(
+        ExtendedPvpAttributeDefinitions.BPK_NAME, String.class));
+    Assert.assertEquals("bPK-Target", "urn:publicid:gv.at:cdid+BF", session.getGenericDataFromSession(
+        ExtendedPvpAttributeDefinitions.EID_SECTOR_FOR_IDENTIFIER_NAME, String.class));
+    Assert.assertEquals("AuthBlock", TEST_SIGNED_AUTHBLOCK, session.getGenericDataFromSession(
+        ExtendedPvpAttributeDefinitions.EID_IDENTITY_LINK_NAME, String.class));
+
+//    Assert.assertNull("SigCert", session.getEncodedSignerCertificate());
+//    Assert.assertNull("eidasBind", session.getQcBind());
+//    Assert.assertNull("signedConsent", session.getSignedAuthBlock());
+//    Assert.assertEquals("signedConsentType", AuthBlockType.NONE, session.getSignedAuthBlockType());
+
+    Assert.assertFalse("Mandate flag", session.isMandateUsed());
+//    Assert.assertNull("MandateInfos", session.getMandateDate());
+
+  }
+
+  @Test
+  public void httpPostValidSignedAssertionWithLegacyAndEid() throws IOException, SamlSigningException,
+      Pvp2MetadataException, CredentialsNotAvailableException, XMLParserException, UnmarshallingException,
+      MarshallingException, TransformerException, TaskExecutionException {
+
+    oaParam.putGenericConfigurationKey(
+        IdAustriaClientAuthConstants.CONFIG_PROPS_APPSPECIFIC_EIDAS_NODE_URL, METADATA_PATH);
+
+    metadataProvider.addMetadataResolverIntoChain(metadataFactory.createMetadataProvider(
+        METADATA_PATH, null, "jUnit IDP", null));
+
+    final Response response = initializeResponse(
+        "classpath:/data/idp_metadata_classpath_entity.xml",
+        "/data/Response_with_legacy_and_EID.xml",
+        credentialProvider.getMessageSigningCredential(),
+        true);
+    httpReq.addParameter("SAMLResponse", Base64.getEncoder().encodeToString(
+        DomUtils.serializeNode(XMLObjectSupport.getMarshaller(response).marshall(response)).getBytes("UTF-8")));
+
+    //perform task
+    task.execute(pendingReq, executionContext);
+
+    //validate state
+//    Assert.assertTrue("Wrong EID-Process flag",
+//        (boolean) executionContext.get(AuthHandlerConstants.PROCESSCONTEXT_WAS_EID_PROCESS));
+    final AuthProcessDataWrapper session = pendingReq.getSessionData(AuthProcessDataWrapper.class);
+//    Assert.assertFalse("Wrong Mandate flag",
+//        (boolean) executionContext.get(AuthHandlerConstants.HTTP_PARAM_USE_MANDATES));
+
+//    Assert.assertTrue("E-ID flag", session.isEidProcess());
+//    Assert.assertTrue("Foreign flag", session.isForeigner());
+    Assert.assertEquals("LoA", "http://eidas.europa.eu/LoA/test", session.getQaaLevel());
+    Assert.assertEquals("CountryCode", "AB", session.getGenericDataFromSession(
+        ExtendedPvpAttributeDefinitions.EID_ISSUING_NATION_NAME, String.class));
+    Assert.assertEquals("IssueInstant", "2014-03-05T06:39:51Z", session.getIssueInstantString());
+
+//    Assert.assertEquals("eidasBind", EIDAS_BIND, session.getQcBind());
+//    Assert.assertArrayEquals("signedConsent",
+//        Base64.getDecoder().decode(TEST_SIGNED_AUTHBLOCK), session.getSignedAuthBlock());
+
+    Assert.assertEquals("FamilyName", "Mustermann", session.getGenericDataFromSession(
+        ExtendedPvpAttributeDefinitions.PRINCIPAL_NAME_NAME, String.class));
+    Assert.assertEquals("Givenname", "Max", session.getGenericDataFromSession(
+        ExtendedPvpAttributeDefinitions.GIVEN_NAME_NAME, String.class));
+    Assert.assertEquals("DateOfBirth", "1940-01-01", session.getGenericDataFromSession(
+        ExtendedPvpAttributeDefinitions.BIRTHDATE_NAME, String.class));
+
+    Assert.assertEquals("FamilyName", "BF:QVGm48cqcM4UcyhDTNGYmVdrIoY=", session.getGenericDataFromSession(
+        ExtendedPvpAttributeDefinitions.BPK_NAME, String.class));
+    Assert.assertEquals("FamilyName", "urn:publicid:gv.at:cdid+BF", session.getGenericDataFromSession(
+        ExtendedPvpAttributeDefinitions.EID_SECTOR_FOR_IDENTIFIER_NAME, String.class));
+    Assert.assertEquals("FamilyName", TEST_SIGNED_AUTHBLOCK, session.getGenericDataFromSession(
+        ExtendedPvpAttributeDefinitions.EID_IDENTITY_LINK_NAME, String.class));
+
+//    Assert.assertNull("SigCert", session.getEncodedSignerCertificate());
+
+    Assert.assertFalse("Mandate flag", session.isMandateUsed());
+//    Assert.assertNull("MandateInfos", session.getMandateDate());
+
+    Assert.assertNull("MandateType", session.getGenericDataFromSession(
+        ExtendedPvpAttributeDefinitions.MANDATE_TYPE_NAME, String.class));
+    Assert.assertNull("Legal Person CommonName", session.getGenericDataFromSession(
+        ExtendedPvpAttributeDefinitions.MANDATE_LEG_PER_FULL_NAME_NAME, String.class));
+    Assert.assertNull("Legal Person SourcePin",session.getGenericDataFromSession(
+        ExtendedPvpAttributeDefinitions.MANDATE_LEG_PER_SOURCE_PIN_NAME, String.class));
+    Assert.assertNull("Legal Person SourcePinType", session.getGenericDataFromSession(
+        ExtendedPvpAttributeDefinitions.MANDATE_LEG_PER_SOURCE_PIN_TYPE_NAME, String.class));
+
+  }
+
+
+
+
+  private Response initializeResponse(String idpEntityId, String responsePath, EaafX509Credential credential,
+                                      boolean validConditions) throws SamlSigningException, XMLParserException, UnmarshallingException,
+      Pvp2MetadataException {
+
+    final Response response = (Response) XMLObjectSupport.unmarshallFromInputStream(
+        XMLObjectProviderRegistrySupport.getParserPool(),
+        ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest.class.getResourceAsStream(responsePath));
+    response.setIssueInstant(DateTime.now());
+    final Issuer issuer = Saml2Utils.createSamlObject(Issuer.class);
+    issuer.setValue(idpEntityId);
+    response.setIssuer(issuer);
+
+    if (validConditions) {
+      response.getAssertions().get(0).getConditions().setNotOnOrAfter(DateTime.now().plusMinutes(5));
+
+    }
+
+    return Saml2Utils.signSamlObject(response, credential, true);
+  }
+
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_tasks_test1.xml b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_tasks_test1.xml
index 7a1719d3..c58eb330 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_tasks_test1.xml
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_tasks_test1.xml
@@ -142,4 +142,8 @@
   <bean id="IGuiBuilderConfigurationFactory"
         class="at.gv.egiz.eaaf.core.impl.idp.module.gui.DummyGuiBuilderConfigurationFactory" />
 
+  <bean id="SAMLVerificationEngine"
+      class="at.gv.egiz.eaaf.modules.pvp2.impl.verification.SamlVerificationEngine" />
+
+
 </beans>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/junit_config_1-.properties b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/junit_config_1-.properties
index 28f1552c..ee4dff39 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/junit_config_1-.properties
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/junit_config_1-.properties
@@ -136,7 +136,7 @@ eidas.ms.modules.idaustriaclient.truststore.path=../keystore/junit_test.jks
 eidas.ms.modules.idaustriaclient.truststore.password=password
 eidas.ms.modules.idaustriaclient.truststore.type=jks
 
-eidas.ms.modules.idaustriaclient.node.entityId=
+eidas.ms.modules.idaustriaclient.node.entityId=classpath:/data/idp_metadata_classpath_entity.xml
 eidas.ms.modules.idaustriaclient.sp.entityId=
 eidas.ms.modules.idaustriaclient.node.metadataUrl=
 
@@ -221,7 +221,7 @@ modules.idaustriaclient.metadata.organisation.name=JUnit
 modules.idaustriaclient.metadata.organisation.url=http://junit.test
 modules.idaustriaclient.metadata.sign.alias=meta
 modules.idaustriaclient.metadata.sign.password=password
-modules.idaustriaclient.node.entityId=
+modules.idaustriaclient.node.entityId=classpath:/data/idp_metadata_classpath_entity.xml
 modules.idaustriaclient.node.metadataUrl=
 modules.idaustriaclient.request.sign.alias=sig
 modules.idaustriaclient.request.sign.password=password
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_with_EID.xml b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_with_EID.xml
new file mode 100644
index 00000000..cd2cceb5
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_with_EID.xml
@@ -0,0 +1,46 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<saml2p:Response xmlns:saml2p="urn:oasis:names:tc:SAML:2.0:protocol" Destination="https://localhost/authhandler/idAustriaSp/post" InResponseTo="_aeebfae3ce681fe3ddcaf213a42f01d3" IssueInstant="2014-03-05T06:39:51.017Z" Version="2.0" xmlns:xs="http://www.w3.org/2001/XMLSchema">
+	<saml2:Issuer xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">classpath:/data/idp_metadata_classpath_entity.xml</saml2:Issuer>
+	<saml2p:Status>
+		<saml2p:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
+	</saml2p:Status>
+	<saml2:Assertion xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" ID="_602c3236bffaf71ac3ac88674e76ff9f" IssueInstant="2014-03-05T06:39:51.017Z" Version="2.0">
+		<saml2:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://demo.egiz.gv.at/demoportal_moaid-2.0/pvp/metadata</saml2:Issuer>
+		<saml2:Subject>
+			<saml2:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:persistent" NameQualifier="urn:publicid:gv.at:cdid+BF">QVGm48cqcM4UcyhDTNGYmVdrIoY=</saml2:NameID>
+			<saml2:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
+				<saml2:SubjectConfirmationData InResponseTo="_aeebfae3ce681fe3ddcaf213a42f01d3" NotOnOrAfter="2014-03-05T06:44:51.017Z" Recipient="https://localhost/authhandler/idAustriaSp/post"/>
+			</saml2:SubjectConfirmation>
+		</saml2:Subject>
+		<saml2:Conditions NotBefore="2014-03-05T06:39:51.017Z" NotOnOrAfter="2014-03-05T06:44:51.017Z">
+			<saml2:AudienceRestriction>
+				<saml2:Audience>https://localhost/authhandler/idAustriaSp/metadata</saml2:Audience>
+			</saml2:AudienceRestriction>
+		</saml2:Conditions>
+		<saml2:AuthnStatement AuthnInstant="2014-03-05T06:39:51.017Z" SessionIndex="_c0c683509a8ff6ac372a9cf9c5c5a406">
+			<saml2:AuthnContext>
+				<saml2:AuthnContextClassRef>http://eidas.europa.eu/LoA/high</saml2:AuthnContextClassRef>
+			</saml2:AuthnContext>
+		</saml2:AuthnStatement>
+		<saml2:AttributeStatement>
+            <saml2:Attribute FriendlyName="piiTransactionId" Name="urn:eidgvat:attributes.piiTransactionId" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+                <saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">piiId_112233445566</saml2:AttributeValue>
+            </saml2:Attribute>
+			<saml2:Attribute FriendlyName="PVP-VERSION" Name="urn:oid:1.2.40.0.10.2.1.1.261.10" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+				<saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">2.1</saml2:AttributeValue>
+			</saml2:Attribute>
+			<saml2:Attribute FriendlyName="EID-CITIZEN-QAA- EIDAS-LEVEL" Name="urn:oid:1.2.40.0.10.2.1.1.261.108" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+				<saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">http://eidas.europa.eu/LoA/low</saml2:AttributeValue>
+			</saml2:Attribute>
+			<saml2:Attribute FriendlyName="EID-ISSUING-NATION" Name="urn:oid:1.2.40.0.10.2.1.1.261.32" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+				<saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">IT</saml2:AttributeValue>
+			</saml2:Attribute>
+			<saml2:Attribute FriendlyName="eidBind" Name="urn:eidgvat:attributes.eidbind" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+				<saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">eyJhbGciOiJQUzI1NiIsInVybjphdC5ndi5laWQ6YmluZHR5cGUiOiJ1cm46YXQuZ3YuZWlkOmJjQmluZCIsIng1dCNTMjU2IjoidmZDUTQ1eE9ndEhqWGFTQ0FDbVpPRzFVem9kSFpLaFVDZ1pxek50SU45SSJ9.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.M83-8edNj64SBXV7BEZUTAgqFULZTmvFFmIdJ-GKCdJIWw-AXlfOCzCdvFYg1Y9_yfjWHuPWFJmh8RXzXN6yRqv8LjtxsK8qBmT3Xsg3puMrpTSiImoM1iSHTaVXZlSV74vj9Fdr9EXrTIZFA7Uj-JBFRQ_mkYdCdWnrIwwm3ojxnq_wrSepO_uYOOQ0w7lTveTyn_iXKVAk3f8N0gibODXXUiTnCuOr6CqZwKwiwuwgDNZEItkpR7r_qpZSwwim1OOc7JTQFi05ANRe8lP4YRLfGatp6FX-Tu4krT0xsgrd0bTKSYOaP11mOhftLAp-wOB-04zkfs0b7yYw6CGVHg</saml2:AttributeValue>
+			</saml2:Attribute>
+            <saml2:Attribute FriendlyName="userAuthBlock" Name="urn:eidgvat:attributes.authblock.signed" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+              <saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">MIIBbjCCARSgAwIBAgIEXh7TNzAKBggqhkjOPQQDAjA/MQswCQYDVQQGEwJBVDENMAsGA1UECgwERUdJWjEOMAwGA1UECwwFalVuaXQxETAPBgNVBAMMCG1ldGFkYXRhMB4XDTIwMDExNTA4NTQxNVoXDTMwMDExNDA4NTQxNVowPzELMAkGA1UEBhMCQVQxDTALBgNVBAoMBEVHSVoxDjAMBgNVBAsMBWpVbml0MREwDwYDVQQDDAhtZXRhZGF0YTBZMBMGByqGSM49AgEGCCqGSM49AwEHA0IABBdBkaxt31p++aZeP3SmlWITj9SYO4McV2ccXFsH4X4QMHuKAMUvjxPm1kdU01eTOWdiQX0GpDIBspYMZh8ZKcwwCgYIKoZIzj0EAwIDSAAwRQIhAJ3QKlk9cd90s+i8y62fvmGF6LtfNO+JvkWqDUBeQImnAiA2KwFtzO7STAp9MEwQGe0vt0F8mO1ttrLE+rr6YxdwGA==</saml2:AttributeValue>
+            </saml2:Attribute>
+		</saml2:AttributeStatement>
+	</saml2:Assertion>
+</saml2p:Response>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_with_EID_wrong_data.xml b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_with_EID_wrong_data.xml
new file mode 100644
index 00000000..50d434e3
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_with_EID_wrong_data.xml
@@ -0,0 +1,46 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<saml2p:Response xmlns:saml2p="urn:oasis:names:tc:SAML:2.0:protocol" Destination="https://localhost/authhandler/idAustriaSp/post" InResponseTo="_aeebfae3ce681fe3ddcaf213a42f01d3" IssueInstant="2014-03-05T06:39:51.017Z" Version="2.0" xmlns:xs="http://www.w3.org/2001/XMLSchema">
+	<saml2:Issuer xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">classpath:/data/idp_metadata_classpath_entity.xml</saml2:Issuer>
+	<saml2p:Status>
+		<saml2p:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
+	</saml2p:Status>
+	<saml2:Assertion xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" ID="_602c3236bffaf71ac3ac88674e76ff9f" IssueInstant="2014-03-05T06:39:51.017Z" Version="2.0">
+		<saml2:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://demo.egiz.gv.at/demoportal_moaid-2.0/pvp/metadata</saml2:Issuer>
+		<saml2:Subject>
+			<saml2:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:persistent" NameQualifier="urn:publicid:gv.at:cdid+BF">QVGm48cqcM4UcyhDTNGYmVdrIoY=</saml2:NameID>
+			<saml2:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
+				<saml2:SubjectConfirmationData InResponseTo="_aeebfae3ce681fe3ddcaf213a42f01d3" NotOnOrAfter="2014-03-05T06:44:51.017Z" Recipient="https://localhost/authhandler/idAustriaSp/post"/>
+			</saml2:SubjectConfirmation>
+		</saml2:Subject>
+		<saml2:Conditions NotBefore="2014-03-05T06:39:51.017Z" NotOnOrAfter="2014-03-05T06:44:51.017Z">
+			<saml2:AudienceRestriction>
+				<saml2:Audience>https://localhost/authhandler/idAustriaSp/metadata</saml2:Audience>
+			</saml2:AudienceRestriction>
+		</saml2:Conditions>
+		<saml2:AuthnStatement AuthnInstant="2014-03-05T06:39:51.017Z" SessionIndex="_c0c683509a8ff6ac372a9cf9c5c5a406">
+			<saml2:AuthnContext>
+				<saml2:AuthnContextClassRef>http://eidas.europa.eu/LoA/high</saml2:AuthnContextClassRef>
+			</saml2:AuthnContext>
+		</saml2:AuthnStatement>
+		<saml2:AttributeStatement>
+            <saml2:Attribute FriendlyName="piiTransactionId" Name="urn:eidgvat:attributes.piiTransactionId" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+                <saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">piiId_112233445566</saml2:AttributeValue>
+            </saml2:Attribute>
+			<saml2:Attribute FriendlyName="PVP-VERSION" Name="urn:oid:1.2.40.0.10.2.1.1.261.10" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+				<saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">2.1</saml2:AttributeValue>
+			</saml2:Attribute>
+			<saml2:Attribute FriendlyName="EID-CITIZEN-QAA- EIDAS-LEVEL" Name="urn:oid:1.2.40.0.10.2.1.1.261.108" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+				<saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">http://eidas.europa.eu/LoA/low</saml2:AttributeValue>
+			</saml2:Attribute>
+			<saml2:Attribute FriendlyName="EID-ISSUING-NATION" Name="urn:oid:1.2.40.0.10.2.1.1.261.32" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+				<saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">IT</saml2:AttributeValue>
+			</saml2:Attribute>
+			<saml2:Attribute FriendlyName="eidBind" Name="urn:eidgvat:attributes.eidbind" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+				<saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">aabbccddeeffgghh</saml2:AttributeValue>
+			</saml2:Attribute>
+            <saml2:Attribute FriendlyName="userAuthBlock" Name="urn:eidgvat:attributes.authblock.signed" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+              <saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">MIIBbjCCARSgAwIBAgIEXh7TNzAKBggqhkjOPQQDAjA/MQswCQYDVQQGEwJBVDENMAsGA1UECgwERUdJWjEOMAwGA1UECwwFalVuaXQxETAPBgNVBAMMCG1ldGFkYXRhMB4XDTIwMDExNTA4NTQxNVoXDTMwMDExNDA4NTQxNVowPzELMAkGA1UEBhMCQVQxDTALBgNVBAoMBEVHSVoxDjAMBgNVBAsMBWpVbml0MREwDwYDVQQDDAhtZXRhZGF0YTBZMBMGByqGSM49AgEGCCqGSM49AwEHA0IABBdBkaxt31p++aZeP3SmlWITj9SYO4McV2ccXFsH4X4QMHuKAMUvjxPm1kdU01eTOWdiQX0GpDIBspYMZh8ZKcwwCgYIKoZIzj0EAwIDSAAwRQIhAJ3QKlk9cd90s+i8y62fvmGF6LtfNO+JvkWqDUBeQImnAiA2KwFtzO7STAp9MEwQGe0vt0F8mO1ttrLE+rr6YxdwGA==</saml2:AttributeValue>
+            </saml2:Attribute>
+		</saml2:AttributeStatement>
+	</saml2:Assertion>
+</saml2p:Response>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_with_legacy.xml b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_with_legacy.xml
new file mode 100644
index 00000000..357b873d
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_with_legacy.xml
@@ -0,0 +1,55 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<saml2p:Response xmlns:saml2p="urn:oasis:names:tc:SAML:2.0:protocol" Destination="https://localhost/authhandler/idAustriaSp/post" InResponseTo="_aeebfae3ce681fe3ddcaf213a42f01d3" IssueInstant="2014-03-05T06:39:51.017Z" Version="2.0" xmlns:xs="http://www.w3.org/2001/XMLSchema">
+	<saml2:Issuer xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">classpath:/data/idp_metadata_classpath_entity.xml</saml2:Issuer>
+	<saml2p:Status>
+		<saml2p:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
+	</saml2p:Status>
+	<saml2:Assertion xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" ID="_602c3236bffaf71ac3ac88674e76ff9f" IssueInstant="2014-03-05T06:39:51.017Z" Version="2.0">
+		<saml2:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://demo.egiz.gv.at/demoportal_moaid-2.0/pvp/metadata</saml2:Issuer>
+		<saml2:Subject>
+			<saml2:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:persistent" NameQualifier="urn:publicid:gv.at:cdid+BF">QVGm48cqcM4UcyhDTNGYmVdrIoY=</saml2:NameID>
+			<saml2:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
+				<saml2:SubjectConfirmationData InResponseTo="_aeebfae3ce681fe3ddcaf213a42f01d3" NotOnOrAfter="2014-03-05T06:44:51.017Z" Recipient="https://localhost/authhandler/idAustriaSp/post"/>
+			</saml2:SubjectConfirmation>
+		</saml2:Subject>
+		<saml2:Conditions NotBefore="2014-03-05T06:39:51.017Z" NotOnOrAfter="2014-03-05T06:44:51.017Z">
+			<saml2:AudienceRestriction>
+				<saml2:Audience>https://localhost/authhandler/idAustriaSp/metadata</saml2:Audience>
+			</saml2:AudienceRestriction>
+		</saml2:Conditions>
+		<saml2:AuthnStatement AuthnInstant="2014-03-05T06:39:51.017Z" SessionIndex="_c0c683509a8ff6ac372a9cf9c5c5a406">
+			<saml2:AuthnContext>
+				<saml2:AuthnContextClassRef>http://eidas.europa.eu/LoA/high</saml2:AuthnContextClassRef>
+			</saml2:AuthnContext>
+		</saml2:AuthnStatement>
+		<saml2:AttributeStatement>
+			<saml2:Attribute FriendlyName="PVP-VERSION" Name="urn:oid:1.2.40.0.10.2.1.1.261.10" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+				<saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">2.1</saml2:AttributeValue>
+			</saml2:Attribute>
+			<saml2:Attribute FriendlyName="EID-CITIZEN-QAA- EIDAS-LEVEL" Name="urn:oid:1.2.40.0.10.2.1.1.261.108" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+				<saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">http://eidas.europa.eu/LoA/test</saml2:AttributeValue>
+			</saml2:Attribute>
+			<saml2:Attribute FriendlyName="EID-ISSUING-NATION" Name="urn:oid:1.2.40.0.10.2.1.1.261.32" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+				<saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">AB</saml2:AttributeValue>
+			</saml2:Attribute>
+            <saml2:Attribute FriendlyName="PRINCIPAL-NAME" Name="urn:oid:1.2.40.0.10.2.1.1.261.20" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+          <saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">Mustermann</saml2:AttributeValue>
+          </saml2:Attribute>
+          <saml2:Attribute FriendlyName="GIVEN-NAME" Name="urn:oid:2.5.4.42" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+            <saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">Max</saml2:AttributeValue>
+          </saml2:Attribute>
+          <saml2:Attribute FriendlyName="BIRTHDATE" Name="urn:oid:1.2.40.0.10.2.1.1.55" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+            <saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">1940-01-01</saml2:AttributeValue>
+          </saml2:Attribute>
+          <saml2:Attribute FriendlyName="BPK" Name="urn:oid:1.2.40.0.10.2.1.1.149" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+            <saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">BF:QVGm48cqcM4UcyhDTNGYmVdrIoY=</saml2:AttributeValue>
+          </saml2:Attribute>
+          <saml2:Attribute FriendlyName="EID-SECTOR-FOR-IDENTIFIER" Name="urn:oid:1.2.40.0.10.2.1.1.261.34" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+            <saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">urn:publicid:gv.at:cdid+BF</saml2:AttributeValue>
+          </saml2:Attribute>
+          <saml2:Attribute FriendlyName="EID-IDENTITY-LINK" Name="urn:oid:1.2.40.0.10.2.1.1.261.38" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+            <saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">MIIBbjCCARSgAwIBAgIEXh7TNzAKBggqhkjOPQQDAjA/MQswCQYDVQQGEwJBVDENMAsGA1UECgwERUdJWjEOMAwGA1UECwwFalVuaXQxETAPBgNVBAMMCG1ldGFkYXRhMB4XDTIwMDExNTA4NTQxNVoXDTMwMDExNDA4NTQxNVowPzELMAkGA1UEBhMCQVQxDTALBgNVBAoMBEVHSVoxDjAMBgNVBAsMBWpVbml0MREwDwYDVQQDDAhtZXRhZGF0YTBZMBMGByqGSM49AgEGCCqGSM49AwEHA0IABBdBkaxt31p++aZeP3SmlWITj9SYO4McV2ccXFsH4X4QMHuKAMUvjxPm1kdU01eTOWdiQX0GpDIBspYMZh8ZKcwwCgYIKoZIzj0EAwIDSAAwRQIhAJ3QKlk9cd90s+i8y62fvmGF6LtfNO+JvkWqDUBeQImnAiA2KwFtzO7STAp9MEwQGe0vt0F8mO1ttrLE+rr6YxdwGA==</saml2:AttributeValue>
+          </saml2:Attribute>
+		</saml2:AttributeStatement>
+	</saml2:Assertion>
+</saml2p:Response>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_with_legacy_and_EID.xml b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_with_legacy_and_EID.xml
new file mode 100644
index 00000000..a2aec0d0
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_with_legacy_and_EID.xml
@@ -0,0 +1,64 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<saml2p:Response xmlns:saml2p="urn:oasis:names:tc:SAML:2.0:protocol" Destination="https://localhost/authhandler/idAustriaSp/post" InResponseTo="_aeebfae3ce681fe3ddcaf213a42f01d3" IssueInstant="2014-03-05T06:39:51.017Z" Version="2.0" xmlns:xs="http://www.w3.org/2001/XMLSchema">
+	<saml2:Issuer xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">classpath:/data/idp_metadata_classpath_entity.xml</saml2:Issuer>
+	<saml2p:Status>
+		<saml2p:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
+	</saml2p:Status>
+	<saml2:Assertion xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" ID="_602c3236bffaf71ac3ac88674e76ff9f" IssueInstant="2014-03-05T06:39:51.017Z" Version="2.0">
+		<saml2:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://demo.egiz.gv.at/demoportal_moaid-2.0/pvp/metadata</saml2:Issuer>
+		<saml2:Subject>
+			<saml2:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:persistent" NameQualifier="urn:publicid:gv.at:cdid+BF">QVGm48cqcM4UcyhDTNGYmVdrIoY=</saml2:NameID>
+			<saml2:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
+				<saml2:SubjectConfirmationData InResponseTo="_aeebfae3ce681fe3ddcaf213a42f01d3" NotOnOrAfter="2014-03-05T06:44:51.017Z" Recipient="https://localhost/authhandler/idAustriaSp/post"/>
+			</saml2:SubjectConfirmation>
+		</saml2:Subject>
+		<saml2:Conditions NotBefore="2014-03-05T06:39:51.017Z" NotOnOrAfter="2014-03-05T06:44:51.017Z">
+			<saml2:AudienceRestriction>
+				<saml2:Audience>https://localhost/authhandler/idAustriaSp/metadata</saml2:Audience>
+			</saml2:AudienceRestriction>
+		</saml2:Conditions>
+		<saml2:AuthnStatement AuthnInstant="2014-03-05T06:39:51.017Z" SessionIndex="_c0c683509a8ff6ac372a9cf9c5c5a406">
+			<saml2:AuthnContext>
+				<saml2:AuthnContextClassRef>http://eidas.europa.eu/LoA/high</saml2:AuthnContextClassRef>
+			</saml2:AuthnContext>
+		</saml2:AuthnStatement>
+		<saml2:AttributeStatement>
+			<saml2:Attribute FriendlyName="PVP-VERSION" Name="urn:oid:1.2.40.0.10.2.1.1.261.10" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+				<saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">2.1</saml2:AttributeValue>
+			</saml2:Attribute>
+			<saml2:Attribute FriendlyName="EID-CITIZEN-QAA- EIDAS-LEVEL" Name="urn:oid:1.2.40.0.10.2.1.1.261.108" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+				<saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">http://eidas.europa.eu/LoA/test</saml2:AttributeValue>
+			</saml2:Attribute>
+			<saml2:Attribute FriendlyName="EID-ISSUING-NATION" Name="urn:oid:1.2.40.0.10.2.1.1.261.32" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+				<saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">AB</saml2:AttributeValue>
+			</saml2:Attribute>
+            <saml2:Attribute FriendlyName="PRINCIPAL-NAME" Name="urn:oid:1.2.40.0.10.2.1.1.261.20" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+          <saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">Mustermann</saml2:AttributeValue>
+          </saml2:Attribute>
+          <saml2:Attribute FriendlyName="GIVEN-NAME" Name="urn:oid:2.5.4.42" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+            <saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">Max</saml2:AttributeValue>
+          </saml2:Attribute>
+          <saml2:Attribute FriendlyName="BIRTHDATE" Name="urn:oid:1.2.40.0.10.2.1.1.55" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+            <saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">1940-01-01</saml2:AttributeValue>
+          </saml2:Attribute>
+          <saml2:Attribute FriendlyName="BPK" Name="urn:oid:1.2.40.0.10.2.1.1.149" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+            <saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">BF:QVGm48cqcM4UcyhDTNGYmVdrIoY=</saml2:AttributeValue>
+          </saml2:Attribute>
+          <saml2:Attribute FriendlyName="EID-SECTOR-FOR-IDENTIFIER" Name="urn:oid:1.2.40.0.10.2.1.1.261.34" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+            <saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">urn:publicid:gv.at:cdid+BF</saml2:AttributeValue>
+          </saml2:Attribute>
+          <saml2:Attribute FriendlyName="EID-IDENTITY-LINK" Name="urn:oid:1.2.40.0.10.2.1.1.261.38" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+            <saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">MIIBbjCCARSgAwIBAgIEXh7TNzAKBggqhkjOPQQDAjA/MQswCQYDVQQGEwJBVDENMAsGA1UECgwERUdJWjEOMAwGA1UECwwFalVuaXQxETAPBgNVBAMMCG1ldGFkYXRhMB4XDTIwMDExNTA4NTQxNVoXDTMwMDExNDA4NTQxNVowPzELMAkGA1UEBhMCQVQxDTALBgNVBAoMBEVHSVoxDjAMBgNVBAsMBWpVbml0MREwDwYDVQQDDAhtZXRhZGF0YTBZMBMGByqGSM49AgEGCCqGSM49AwEHA0IABBdBkaxt31p++aZeP3SmlWITj9SYO4McV2ccXFsH4X4QMHuKAMUvjxPm1kdU01eTOWdiQX0GpDIBspYMZh8ZKcwwCgYIKoZIzj0EAwIDSAAwRQIhAJ3QKlk9cd90s+i8y62fvmGF6LtfNO+JvkWqDUBeQImnAiA2KwFtzO7STAp9MEwQGe0vt0F8mO1ttrLE+rr6YxdwGA==</saml2:AttributeValue>
+          </saml2:Attribute>
+          <saml2:Attribute FriendlyName="eidBind" Name="urn:eidgvat:attributes.eidbind" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+           <saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">eyJhbGciOiJQUzI1NiIsInVybjphdC5ndi5laWQ6YmluZHR5cGUiOiJ1cm46YXQuZ3YuZWlkOmJjQmluZCIsIng1dCNTMjU2IjoidmZDUTQ1eE9ndEhqWGFTQ0FDbVpPRzFVem9kSFpLaFVDZ1pxek50SU45SSJ9.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.M83-8edNj64SBXV7BEZUTAgqFULZTmvFFmIdJ-GKCdJIWw-AXlfOCzCdvFYg1Y9_yfjWHuPWFJmh8RXzXN6yRqv8LjtxsK8qBmT3Xsg3puMrpTSiImoM1iSHTaVXZlSV74vj9Fdr9EXrTIZFA7Uj-JBFRQ_mkYdCdWnrIwwm3ojxnq_wrSepO_uYOOQ0w7lTveTyn_iXKVAk3f8N0gibODXXUiTnCuOr6CqZwKwiwuwgDNZEItkpR7r_qpZSwwim1OOc7JTQFi05ANRe8lP4YRLfGatp6FX-Tu4krT0xsgrd0bTKSYOaP11mOhftLAp-wOB-04zkfs0b7yYw6CGVHg</saml2:AttributeValue>
+          </saml2:Attribute>
+          <saml2:Attribute FriendlyName="userAuthBlock" Name="urn:eidgvat:attributes.authblock.signed" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+            <saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">MIIBbjCCARSgAwIBAgIEXh7TNzAKBggqhkjOPQQDAjA/MQswCQYDVQQGEwJBVDENMAsGA1UECgwERUdJWjEOMAwGA1UECwwFalVuaXQxETAPBgNVBAMMCG1ldGFkYXRhMB4XDTIwMDExNTA4NTQxNVoXDTMwMDExNDA4NTQxNVowPzELMAkGA1UEBhMCQVQxDTALBgNVBAoMBEVHSVoxDjAMBgNVBAsMBWpVbml0MREwDwYDVQQDDAhtZXRhZGF0YTBZMBMGByqGSM49AgEGCCqGSM49AwEHA0IABBdBkaxt31p++aZeP3SmlWITj9SYO4McV2ccXFsH4X4QMHuKAMUvjxPm1kdU01eTOWdiQX0GpDIBspYMZh8ZKcwwCgYIKoZIzj0EAwIDSAAwRQIhAJ3QKlk9cd90s+i8y62fvmGF6LtfNO+JvkWqDUBeQImnAiA2KwFtzO7STAp9MEwQGe0vt0F8mO1ttrLE+rr6YxdwGA==</saml2:AttributeValue>
+          </saml2:Attribute>
+          <saml2:Attribute FriendlyName="piiTransactionId" Name="urn:eidgvat:attributes.piiTransactionId" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+            <saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">piiTrans_11223344556677</saml2:AttributeValue>
+          </saml2:Attribute>          
+		</saml2:AttributeStatement>
+	</saml2:Assertion>
+</saml2p:Response>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_with_wrong_destination_endpoint.xml b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_with_wrong_destination_endpoint.xml
new file mode 100644
index 00000000..cac4c867
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_with_wrong_destination_endpoint.xml
@@ -0,0 +1,52 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<saml2p:Response xmlns:saml2p="urn:oasis:names:tc:SAML:2.0:protocol" Destination="https://localhost/authhandler/idAustriaSp/post" InResponseTo="_aeebfae3ce681fe3ddcaf213a42f01d3" IssueInstant="2014-03-05T06:39:51.017Z" Version="2.0" xmlns:xs="http://www.w3.org/2001/XMLSchema">
+	<saml2:Issuer xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">classpath:/data/idp_metadata_classpath_entity.xml</saml2:Issuer>
+	<saml2p:Status>
+		<saml2p:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
+	</saml2p:Status>
+	<saml2:Assertion xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" ID="_602c3236bffaf71ac3ac88674e76ff9f" IssueInstant="2014-03-05T06:39:51.017Z" Version="2.0">
+		<saml2:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://demo.egiz.gv.at/demoportal_moaid-2.0/pvp/metadata</saml2:Issuer>
+		<saml2:Subject>
+			<saml2:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:persistent" NameQualifier="urn:publicid:gv.at:cdid+BF">QVGm48cqcM4UcyhDTNGYmVdrIoY=</saml2:NameID>
+			<saml2:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
+				<saml2:SubjectConfirmationData InResponseTo="_aeebfae3ce681fe3ddcaf213a42f01d3" NotOnOrAfter="2014-03-05T06:44:51.017Z" Recipient="https://localhost/authhandler/idAustriaSp/post"/>
+			</saml2:SubjectConfirmation>
+		</saml2:Subject>
+		<saml2:Conditions NotBefore="2014-03-05T06:39:51.017Z" NotOnOrAfter="2014-03-05T06:44:51.017Z">
+			<saml2:AudienceRestriction>
+				<saml2:Audience>https://demo.egiz.gv.at/demoportal_demologin/</saml2:Audience>
+			</saml2:AudienceRestriction>
+		</saml2:Conditions>
+		<saml2:AuthnStatement AuthnInstant="2014-03-05T06:39:51.017Z" SessionIndex="_c0c683509a8ff6ac372a9cf9c5c5a406">
+			<saml2:AuthnContext>
+				<saml2:AuthnContextClassRef>http://www.stork.gov.eu/1.0/citizenQAALevel/4</saml2:AuthnContextClassRef>
+			</saml2:AuthnContext>
+		</saml2:AuthnStatement>
+		<saml2:AttributeStatement>
+			<saml2:Attribute FriendlyName="PVP-VERSION" Name="urn:oid:1.2.40.0.10.2.1.1.261.10" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+				<saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">2.1</saml2:AttributeValue>
+			</saml2:Attribute>
+			<saml2:Attribute FriendlyName="PRINCIPAL-NAME" Name="urn:oid:1.2.40.0.10.2.1.1.261.20" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+				<saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">Mustermann</saml2:AttributeValue>
+			</saml2:Attribute>
+			<saml2:Attribute FriendlyName="GIVEN-NAME" Name="urn:oid:2.5.4.42" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+				<saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">Max</saml2:AttributeValue>
+			</saml2:Attribute>
+			<saml2:Attribute FriendlyName="BIRTHDATE" Name="urn:oid:1.2.40.0.10.2.1.1.55" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+				<saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">1940-01-01</saml2:AttributeValue>
+			</saml2:Attribute>
+			<saml2:Attribute FriendlyName="BPK" Name="urn:oid:1.2.40.0.10.2.1.1.149" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+				<saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">BF:QVGm48cqcM4UcyhDTNGYmVdrIoY=</saml2:AttributeValue>
+			</saml2:Attribute>
+			<saml2:Attribute FriendlyName="EID-CITIZEN-QAA-LEVEL" Name="urn:oid:1.2.40.0.10.2.1.1.261.94" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+				<saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:integer">4</saml2:AttributeValue>
+			</saml2:Attribute>
+			<saml2:Attribute FriendlyName="EID-ISSUING-NATION" Name="urn:oid:1.2.40.0.10.2.1.1.261.32" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+				<saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">AT</saml2:AttributeValue>
+			</saml2:Attribute>
+			<saml2:Attribute FriendlyName="EID-SECTOR-FOR-IDENTIFIER" Name="urn:oid:1.2.40.0.10.2.1.1.261.34" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+				<saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">urn:publicid:gv.at:cdid+BF</saml2:AttributeValue>
+			</saml2:Attribute>
+		</saml2:AttributeStatement>
+	</saml2:Assertion>
+</saml2p:Response>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_without_sig_classpath_entityid.xml b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_without_sig_classpath_entityid.xml
new file mode 100644
index 00000000..2eeeeb17
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_without_sig_classpath_entityid.xml
@@ -0,0 +1,52 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<saml2p:Response xmlns:saml2p="urn:oasis:names:tc:SAML:2.0:protocol" Destination="https://localhost/authhandler/idAustriaSp/post" InResponseTo="_aeebfae3ce681fe3ddcaf213a42f01d3" IssueInstant="2014-03-05T06:39:51.017Z" Version="2.0" xmlns:xs="http://www.w3.org/2001/XMLSchema">
+	<saml2:Issuer xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">classpath:/data/idp_metadata_classpath_entity.xml</saml2:Issuer>
+	<saml2p:Status>
+		<saml2p:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
+	</saml2p:Status>
+	<saml2:Assertion xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" ID="_602c3236bffaf71ac3ac88674e76ff9f" IssueInstant="2014-03-05T06:39:51.017Z" Version="2.0">
+		<saml2:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://demo.egiz.gv.at/demoportal_moaid-2.0/pvp/metadata</saml2:Issuer>
+		<saml2:Subject>
+			<saml2:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:persistent" NameQualifier="urn:publicid:gv.at:cdid+BF">QVGm48cqcM4UcyhDTNGYmVdrIoY=</saml2:NameID>
+			<saml2:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
+				<saml2:SubjectConfirmationData InResponseTo="_aeebfae3ce681fe3ddcaf213a42f01d3" NotOnOrAfter="2014-03-05T06:44:51.017Z" Recipient="https://localhost/authhandler/idAustriaSp/post"/>
+			</saml2:SubjectConfirmation>
+		</saml2:Subject>
+		<saml2:Conditions NotBefore="2014-03-05T06:39:51.017Z" NotOnOrAfter="2014-03-05T06:44:51.017Z">
+			<saml2:AudienceRestriction>
+				<saml2:Audience>https://localhost/authhandler/idAustriaSp/metadata</saml2:Audience>
+			</saml2:AudienceRestriction>
+		</saml2:Conditions>
+		<saml2:AuthnStatement AuthnInstant="2014-03-05T06:39:51.017Z" SessionIndex="_c0c683509a8ff6ac372a9cf9c5c5a406">
+			<saml2:AuthnContext>
+				<saml2:AuthnContextClassRef>http://eidas.europa.eu/LoA/high</saml2:AuthnContextClassRef>
+			</saml2:AuthnContext>
+		</saml2:AuthnStatement>
+		<saml2:AttributeStatement>
+			<saml2:Attribute FriendlyName="PVP-VERSION" Name="urn:oid:1.2.40.0.10.2.1.1.261.10" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+				<saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">2.1</saml2:AttributeValue>
+			</saml2:Attribute>
+			<saml2:Attribute FriendlyName="PRINCIPAL-NAME" Name="urn:oid:1.2.40.0.10.2.1.1.261.20" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+				<saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">Mustermann</saml2:AttributeValue>
+			</saml2:Attribute>
+			<saml2:Attribute FriendlyName="GIVEN-NAME" Name="urn:oid:2.5.4.42" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+				<saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">Max</saml2:AttributeValue>
+			</saml2:Attribute>
+			<saml2:Attribute FriendlyName="BIRTHDATE" Name="urn:oid:1.2.40.0.10.2.1.1.55" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+				<saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">1940-01-01</saml2:AttributeValue>
+			</saml2:Attribute>
+			<saml2:Attribute FriendlyName="BPK" Name="urn:oid:1.2.40.0.10.2.1.1.149" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+				<saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">BF:QVGm48cqcM4UcyhDTNGYmVdrIoY=</saml2:AttributeValue>
+			</saml2:Attribute>
+			<saml2:Attribute FriendlyName="EID-CITIZEN-QAA- EIDAS-LEVEL" Name="urn:oid:1.2.40.0.10.2.1.1.261.108" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+				<saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">http://eidas.europa.eu/LoA/high</saml2:AttributeValue>
+			</saml2:Attribute>
+			<saml2:Attribute FriendlyName="EID-ISSUING-NATION" Name="urn:oid:1.2.40.0.10.2.1.1.261.32" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+				<saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">IT</saml2:AttributeValue>
+			</saml2:Attribute>
+			<saml2:Attribute FriendlyName="EID-SECTOR-FOR-IDENTIFIER" Name="urn:oid:1.2.40.0.10.2.1.1.261.34" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+				<saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">urn:publicid:gv.at:cdid+BF</saml2:AttributeValue>
+			</saml2:Attribute>
+		</saml2:AttributeStatement>
+	</saml2:Assertion>
+</saml2p:Response>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_without_sig_with_error.xml b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_without_sig_with_error.xml
new file mode 100644
index 00000000..28dd9d92
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_without_sig_with_error.xml
@@ -0,0 +1,46 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<saml2p:Response xmlns:saml2p="urn:oasis:names:tc:SAML:2.0:protocol" Destination="https://localhost/authhandler/idAustriaSp/post" InResponseTo="_aeebfae3ce681fe3ddcaf213a42f01d3" IssueInstant="2014-03-05T06:39:51.017Z" Version="2.0" xmlns:xs="http://www.w3.org/2001/XMLSchema">
+	<saml2:Issuer xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">classpath:/data/idp_metadata_classpath_entity.xml</saml2:Issuer>
+	<saml2p:Status>
+		<saml2p:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Responder">
+          <saml2p:StatusCode Value="9199"/>
+        </saml2p:StatusCode>
+        <saml2p:StatusMessage>Der Anmeldevorgang wurde durch den Benutzer abgebrochen.</saml2p:StatusMessage>
+	</saml2p:Status>
+	<saml2:Assertion xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" ID="_602c3236bffaf71ac3ac88674e76ff9f" IssueInstant="2014-03-05T06:39:51.017Z" Version="2.0">
+		<saml2:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://demo.egiz.gv.at/demoportal_moaid-2.0/pvp/metadata</saml2:Issuer>
+		<saml2:Subject>
+			<saml2:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:persistent" NameQualifier="urn:publicid:gv.at:cdid+BF">QVGm48cqcM4UcyhDTNGYmVdrIoY=</saml2:NameID>
+			<saml2:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
+				<saml2:SubjectConfirmationData InResponseTo="_aeebfae3ce681fe3ddcaf213a42f01d3" NotOnOrAfter="2014-03-05T06:44:51.017Z" Recipient="https://localhost/authhandler/idAustriaSp/post"/>
+			</saml2:SubjectConfirmation>
+		</saml2:Subject>
+		<saml2:Conditions NotBefore="2014-03-05T06:39:51.017Z" NotOnOrAfter="2014-03-05T06:44:51.017Z">
+			<saml2:AudienceRestriction>
+				<saml2:Audience>https://localhost/authhandler/idAustriaSp/metadata</saml2:Audience>
+			</saml2:AudienceRestriction>
+		</saml2:Conditions>
+		<saml2:AuthnStatement AuthnInstant="2014-03-05T06:39:51.017Z" SessionIndex="_c0c683509a8ff6ac372a9cf9c5c5a406">
+			<saml2:AuthnContext>
+				<saml2:AuthnContextClassRef>http://eidas.europa.eu/LoA/high</saml2:AuthnContextClassRef>
+			</saml2:AuthnContext>
+		</saml2:AuthnStatement>
+		<saml2:AttributeStatement>
+			<saml2:Attribute FriendlyName="PVP-VERSION" Name="urn:oid:1.2.40.0.10.2.1.1.261.10" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+				<saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">2.1</saml2:AttributeValue>
+			</saml2:Attribute>
+			<saml2:Attribute FriendlyName="EID-CITIZEN-QAA- EIDAS-LEVEL" Name="urn:oid:1.2.40.0.10.2.1.1.261.108" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+				<saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">http://eidas.europa.eu/LoA/low</saml2:AttributeValue>
+			</saml2:Attribute>
+			<saml2:Attribute FriendlyName="EID-ISSUING-NATION" Name="urn:oid:1.2.40.0.10.2.1.1.261.32" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+				<saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">IT</saml2:AttributeValue>
+			</saml2:Attribute>
+			<saml2:Attribute FriendlyName="eidBind" Name="urn:eidgvat:attributes.eidbind" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+				<saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">aabbccddeeffgghh</saml2:AttributeValue>
+			</saml2:Attribute>
+            <saml2:Attribute FriendlyName="userConsent" Name="urn:eidgvat:attributes.consent.signed" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+              <saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">MIIBbjCCARSgAwIBAgIEXh7TNzAKBggqhkjOPQQDAjA/MQswCQYDVQQGEwJBVDENMAsGA1UECgwERUdJWjEOMAwGA1UECwwFalVuaXQxETAPBgNVBAMMCG1ldGFkYXRhMB4XDTIwMDExNTA4NTQxNVoXDTMwMDExNDA4NTQxNVowPzELMAkGA1UEBhMCQVQxDTALBgNVBAoMBEVHSVoxDjAMBgNVBAsMBWpVbml0MREwDwYDVQQDDAhtZXRhZGF0YTBZMBMGByqGSM49AgEGCCqGSM49AwEHA0IABBdBkaxt31p++aZeP3SmlWITj9SYO4McV2ccXFsH4X4QMHuKAMUvjxPm1kdU01eTOWdiQX0GpDIBspYMZh8ZKcwwCgYIKoZIzj0EAwIDSAAwRQIhAJ3QKlk9cd90s+i8y62fvmGF6LtfNO+JvkWqDUBeQImnAiA2KwFtzO7STAp9MEwQGe0vt0F8mO1ttrLE+rr6YxdwGA==</saml2:AttributeValue>
+            </saml2:Attribute>
+		</saml2:AttributeStatement>
+	</saml2:Assertion>
+</saml2p:Response>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_without_sig_with_error_empty_subcode.xml b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_without_sig_with_error_empty_subcode.xml
new file mode 100644
index 00000000..4a4566df
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_without_sig_with_error_empty_subcode.xml
@@ -0,0 +1,46 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<saml2p:Response xmlns:saml2p="urn:oasis:names:tc:SAML:2.0:protocol" Destination="https://localhost/authhandler/idAustriaSp/post" InResponseTo="_aeebfae3ce681fe3ddcaf213a42f01d3" IssueInstant="2014-03-05T06:39:51.017Z" Version="2.0" xmlns:xs="http://www.w3.org/2001/XMLSchema">
+	<saml2:Issuer xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">classpath:/data/idp_metadata_classpath_entity.xml</saml2:Issuer>
+	<saml2p:Status>
+		<saml2p:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Responder">
+          <saml2p:StatusCode Value=""/>
+        </saml2p:StatusCode>
+        <saml2p:StatusMessage>Der Anmeldevorgang wurde durch den Benutzer abgebrochen.</saml2p:StatusMessage>
+	</saml2p:Status>
+	<saml2:Assertion xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" ID="_602c3236bffaf71ac3ac88674e76ff9f" IssueInstant="2014-03-05T06:39:51.017Z" Version="2.0">
+		<saml2:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://demo.egiz.gv.at/demoportal_moaid-2.0/pvp/metadata</saml2:Issuer>
+		<saml2:Subject>
+			<saml2:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:persistent" NameQualifier="urn:publicid:gv.at:cdid+BF">QVGm48cqcM4UcyhDTNGYmVdrIoY=</saml2:NameID>
+			<saml2:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
+				<saml2:SubjectConfirmationData InResponseTo="_aeebfae3ce681fe3ddcaf213a42f01d3" NotOnOrAfter="2014-03-05T06:44:51.017Z" Recipient="https://localhost/authhandler/idAustriaSp/post"/>
+			</saml2:SubjectConfirmation>
+		</saml2:Subject>
+		<saml2:Conditions NotBefore="2014-03-05T06:39:51.017Z" NotOnOrAfter="2014-03-05T06:44:51.017Z">
+			<saml2:AudienceRestriction>
+				<saml2:Audience>https://localhost/authhandler/idAustriaSp/metadata</saml2:Audience>
+			</saml2:AudienceRestriction>
+		</saml2:Conditions>
+		<saml2:AuthnStatement AuthnInstant="2014-03-05T06:39:51.017Z" SessionIndex="_c0c683509a8ff6ac372a9cf9c5c5a406">
+			<saml2:AuthnContext>
+				<saml2:AuthnContextClassRef>http://eidas.europa.eu/LoA/high</saml2:AuthnContextClassRef>
+			</saml2:AuthnContext>
+		</saml2:AuthnStatement>
+		<saml2:AttributeStatement>
+			<saml2:Attribute FriendlyName="PVP-VERSION" Name="urn:oid:1.2.40.0.10.2.1.1.261.10" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+				<saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">2.1</saml2:AttributeValue>
+			</saml2:Attribute>
+			<saml2:Attribute FriendlyName="EID-CITIZEN-QAA- EIDAS-LEVEL" Name="urn:oid:1.2.40.0.10.2.1.1.261.108" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+				<saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">http://eidas.europa.eu/LoA/low</saml2:AttributeValue>
+			</saml2:Attribute>
+			<saml2:Attribute FriendlyName="EID-ISSUING-NATION" Name="urn:oid:1.2.40.0.10.2.1.1.261.32" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+				<saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">IT</saml2:AttributeValue>
+			</saml2:Attribute>
+			<saml2:Attribute FriendlyName="eidBind" Name="urn:eidgvat:attributes.eidbind" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+				<saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">aabbccddeeffgghh</saml2:AttributeValue>
+			</saml2:Attribute>
+            <saml2:Attribute FriendlyName="userConsent" Name="urn:eidgvat:attributes.consent.signed" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+              <saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">MIIBbjCCARSgAwIBAgIEXh7TNzAKBggqhkjOPQQDAjA/MQswCQYDVQQGEwJBVDENMAsGA1UECgwERUdJWjEOMAwGA1UECwwFalVuaXQxETAPBgNVBAMMCG1ldGFkYXRhMB4XDTIwMDExNTA4NTQxNVoXDTMwMDExNDA4NTQxNVowPzELMAkGA1UEBhMCQVQxDTALBgNVBAoMBEVHSVoxDjAMBgNVBAsMBWpVbml0MREwDwYDVQQDDAhtZXRhZGF0YTBZMBMGByqGSM49AgEGCCqGSM49AwEHA0IABBdBkaxt31p++aZeP3SmlWITj9SYO4McV2ccXFsH4X4QMHuKAMUvjxPm1kdU01eTOWdiQX0GpDIBspYMZh8ZKcwwCgYIKoZIzj0EAwIDSAAwRQIhAJ3QKlk9cd90s+i8y62fvmGF6LtfNO+JvkWqDUBeQImnAiA2KwFtzO7STAp9MEwQGe0vt0F8mO1ttrLE+rr6YxdwGA==</saml2:AttributeValue>
+            </saml2:Attribute>
+		</saml2:AttributeStatement>
+	</saml2:Assertion>
+</saml2p:Response>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_without_sig_with_error_userstop.xml b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_without_sig_with_error_userstop.xml
new file mode 100644
index 00000000..7ca0f134
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_without_sig_with_error_userstop.xml
@@ -0,0 +1,46 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<saml2p:Response xmlns:saml2p="urn:oasis:names:tc:SAML:2.0:protocol" Destination="https://localhost/authhandler/idAustriaSp/post" InResponseTo="_aeebfae3ce681fe3ddcaf213a42f01d3" IssueInstant="2014-03-05T06:39:51.017Z" Version="2.0" xmlns:xs="http://www.w3.org/2001/XMLSchema">
+	<saml2:Issuer xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">classpath:/data/idp_metadata_classpath_entity.xml</saml2:Issuer>
+	<saml2p:Status>
+		<saml2p:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Responder">
+          <saml2p:StatusCode Value="1005"/>
+        </saml2p:StatusCode>
+        <saml2p:StatusMessage>Der Anmeldevorgang wurde durch den Benutzer abgebrochen.</saml2p:StatusMessage>
+	</saml2p:Status>
+	<saml2:Assertion xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" ID="_602c3236bffaf71ac3ac88674e76ff9f" IssueInstant="2014-03-05T06:39:51.017Z" Version="2.0">
+		<saml2:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://demo.egiz.gv.at/demoportal_moaid-2.0/pvp/metadata</saml2:Issuer>
+		<saml2:Subject>
+			<saml2:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:persistent" NameQualifier="urn:publicid:gv.at:cdid+BF">QVGm48cqcM4UcyhDTNGYmVdrIoY=</saml2:NameID>
+			<saml2:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
+				<saml2:SubjectConfirmationData InResponseTo="_aeebfae3ce681fe3ddcaf213a42f01d3" NotOnOrAfter="2014-03-05T06:44:51.017Z" Recipient="https://localhost/authhandler/idAustriaSp/post"/>
+			</saml2:SubjectConfirmation>
+		</saml2:Subject>
+		<saml2:Conditions NotBefore="2014-03-05T06:39:51.017Z" NotOnOrAfter="2014-03-05T06:44:51.017Z">
+			<saml2:AudienceRestriction>
+				<saml2:Audience>https://localhost/authhandler/idAustriaSp/metadata</saml2:Audience>
+			</saml2:AudienceRestriction>
+		</saml2:Conditions>
+		<saml2:AuthnStatement AuthnInstant="2014-03-05T06:39:51.017Z" SessionIndex="_c0c683509a8ff6ac372a9cf9c5c5a406">
+			<saml2:AuthnContext>
+				<saml2:AuthnContextClassRef>http://eidas.europa.eu/LoA/high</saml2:AuthnContextClassRef>
+			</saml2:AuthnContext>
+		</saml2:AuthnStatement>
+		<saml2:AttributeStatement>
+			<saml2:Attribute FriendlyName="PVP-VERSION" Name="urn:oid:1.2.40.0.10.2.1.1.261.10" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+				<saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">2.1</saml2:AttributeValue>
+			</saml2:Attribute>
+			<saml2:Attribute FriendlyName="EID-CITIZEN-QAA- EIDAS-LEVEL" Name="urn:oid:1.2.40.0.10.2.1.1.261.108" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+				<saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">http://eidas.europa.eu/LoA/low</saml2:AttributeValue>
+			</saml2:Attribute>
+			<saml2:Attribute FriendlyName="EID-ISSUING-NATION" Name="urn:oid:1.2.40.0.10.2.1.1.261.32" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+				<saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">IT</saml2:AttributeValue>
+			</saml2:Attribute>
+			<saml2:Attribute FriendlyName="eidBind" Name="urn:eidgvat:attributes.eidbind" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+				<saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">aabbccddeeffgghh</saml2:AttributeValue>
+			</saml2:Attribute>
+            <saml2:Attribute FriendlyName="userConsent" Name="urn:eidgvat:attributes.consent.signed" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+              <saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">MIIBbjCCARSgAwIBAgIEXh7TNzAKBggqhkjOPQQDAjA/MQswCQYDVQQGEwJBVDENMAsGA1UECgwERUdJWjEOMAwGA1UECwwFalVuaXQxETAPBgNVBAMMCG1ldGFkYXRhMB4XDTIwMDExNTA4NTQxNVoXDTMwMDExNDA4NTQxNVowPzELMAkGA1UEBhMCQVQxDTALBgNVBAoMBEVHSVoxDjAMBgNVBAsMBWpVbml0MREwDwYDVQQDDAhtZXRhZGF0YTBZMBMGByqGSM49AgEGCCqGSM49AwEHA0IABBdBkaxt31p++aZeP3SmlWITj9SYO4McV2ccXFsH4X4QMHuKAMUvjxPm1kdU01eTOWdiQX0GpDIBspYMZh8ZKcwwCgYIKoZIzj0EAwIDSAAwRQIhAJ3QKlk9cd90s+i8y62fvmGF6LtfNO+JvkWqDUBeQImnAiA2KwFtzO7STAp9MEwQGe0vt0F8mO1ttrLE+rr6YxdwGA==</saml2:AttributeValue>
+            </saml2:Attribute>
+		</saml2:AttributeStatement>
+	</saml2:Assertion>
+</saml2p:Response>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_without_sig_with_error_without_subcode.xml b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_without_sig_with_error_without_subcode.xml
new file mode 100644
index 00000000..2a068dbe
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_without_sig_with_error_without_subcode.xml
@@ -0,0 +1,45 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<saml2p:Response xmlns:saml2p="urn:oasis:names:tc:SAML:2.0:protocol" Destination="https://localhost/authhandler/idAustriaSp/post" InResponseTo="_aeebfae3ce681fe3ddcaf213a42f01d3" IssueInstant="2014-03-05T06:39:51.017Z" Version="2.0" xmlns:xs="http://www.w3.org/2001/XMLSchema">
+	<saml2:Issuer xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">classpath:/data/idp_metadata_classpath_entity.xml</saml2:Issuer>
+	<saml2p:Status>
+		<saml2p:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Responder">
+        </saml2p:StatusCode>
+        <saml2p:StatusMessage>Der Anmeldevorgang wurde durch den Benutzer abgebrochen.</saml2p:StatusMessage>
+	</saml2p:Status>
+	<saml2:Assertion xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" ID="_602c3236bffaf71ac3ac88674e76ff9f" IssueInstant="2014-03-05T06:39:51.017Z" Version="2.0">
+		<saml2:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://demo.egiz.gv.at/demoportal_moaid-2.0/pvp/metadata</saml2:Issuer>
+		<saml2:Subject>
+			<saml2:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:persistent" NameQualifier="urn:publicid:gv.at:cdid+BF">QVGm48cqcM4UcyhDTNGYmVdrIoY=</saml2:NameID>
+			<saml2:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
+				<saml2:SubjectConfirmationData InResponseTo="_aeebfae3ce681fe3ddcaf213a42f01d3" NotOnOrAfter="2014-03-05T06:44:51.017Z" Recipient="https://localhost/authhandler/idAustriaSp/post"/>
+			</saml2:SubjectConfirmation>
+		</saml2:Subject>
+		<saml2:Conditions NotBefore="2014-03-05T06:39:51.017Z" NotOnOrAfter="2014-03-05T06:44:51.017Z">
+			<saml2:AudienceRestriction>
+				<saml2:Audience>https://localhost/authhandler/idAustriaSp/metadata</saml2:Audience>
+			</saml2:AudienceRestriction>
+		</saml2:Conditions>
+		<saml2:AuthnStatement AuthnInstant="2014-03-05T06:39:51.017Z" SessionIndex="_c0c683509a8ff6ac372a9cf9c5c5a406">
+			<saml2:AuthnContext>
+				<saml2:AuthnContextClassRef>http://eidas.europa.eu/LoA/high</saml2:AuthnContextClassRef>
+			</saml2:AuthnContext>
+		</saml2:AuthnStatement>
+		<saml2:AttributeStatement>
+			<saml2:Attribute FriendlyName="PVP-VERSION" Name="urn:oid:1.2.40.0.10.2.1.1.261.10" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+				<saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">2.1</saml2:AttributeValue>
+			</saml2:Attribute>
+			<saml2:Attribute FriendlyName="EID-CITIZEN-QAA- EIDAS-LEVEL" Name="urn:oid:1.2.40.0.10.2.1.1.261.108" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+				<saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">http://eidas.europa.eu/LoA/low</saml2:AttributeValue>
+			</saml2:Attribute>
+			<saml2:Attribute FriendlyName="EID-ISSUING-NATION" Name="urn:oid:1.2.40.0.10.2.1.1.261.32" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+				<saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">IT</saml2:AttributeValue>
+			</saml2:Attribute>
+			<saml2:Attribute FriendlyName="eidBind" Name="urn:eidgvat:attributes.eidbind" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+				<saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">aabbccddeeffgghh</saml2:AttributeValue>
+			</saml2:Attribute>
+            <saml2:Attribute FriendlyName="userConsent" Name="urn:eidgvat:attributes.consent.signed" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+              <saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">MIIBbjCCARSgAwIBAgIEXh7TNzAKBggqhkjOPQQDAjA/MQswCQYDVQQGEwJBVDENMAsGA1UECgwERUdJWjEOMAwGA1UECwwFalVuaXQxETAPBgNVBAMMCG1ldGFkYXRhMB4XDTIwMDExNTA4NTQxNVoXDTMwMDExNDA4NTQxNVowPzELMAkGA1UEBhMCQVQxDTALBgNVBAoMBEVHSVoxDjAMBgNVBAsMBWpVbml0MREwDwYDVQQDDAhtZXRhZGF0YTBZMBMGByqGSM49AgEGCCqGSM49AwEHA0IABBdBkaxt31p++aZeP3SmlWITj9SYO4McV2ccXFsH4X4QMHuKAMUvjxPm1kdU01eTOWdiQX0GpDIBspYMZh8ZKcwwCgYIKoZIzj0EAwIDSAAwRQIhAJ3QKlk9cd90s+i8y62fvmGF6LtfNO+JvkWqDUBeQImnAiA2KwFtzO7STAp9MEwQGe0vt0F8mO1ttrLE+rr6YxdwGA==</saml2:AttributeValue>
+            </saml2:Attribute>
+		</saml2:AttributeStatement>
+	</saml2:Assertion>
+</saml2p:Response>
-- 
cgit v1.2.3


From cfb4a314b65e4c0af5cb1be297e131155a2571c9 Mon Sep 17 00:00:00 2001
From: Alexander Marsalek <amarsalek@iaik.tugraz.at>
Date: Tue, 9 Feb 2021 21:09:48 +0100
Subject: extract qaa & IssueInstant

---
 .../IdAustriaClientAuthConstants.java              |   8 +-
 ...eSignatureResponseAndSearchInRegistersTask.java |  18 ++--
 ...natureResponseAndSearchInRegistersTaskTest.java | 109 +++++++--------------
 .../src/test/resources/data/Response_with_EID.xml  |   9 +-
 .../test/resources/data/Response_with_legacy.xml   |   2 +-
 .../data/Response_with_legacy_and_EID.xml          |   8 +-
 .../data/Response_without_sig_with_error.xml       |   2 +-
 ...sponse_without_sig_with_error_empty_subcode.xml |   2 +-
 .../Response_without_sig_with_error_userstop.xml   |   2 +-
 ...onse_without_sig_with_error_without_subcode.xml |   2 +-
 10 files changed, 60 insertions(+), 102 deletions(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthConstants.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthConstants.java
index 38b50a0a..186deaee 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthConstants.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthConstants.java
@@ -99,12 +99,12 @@ public class IdAustriaClientAuthConstants {
           // entity eID information
           //          add(Triple.newInstance(ExtendedPvpAttributeDefinitions.EID_EIDBIND_NAME,
           //              ExtendedPvpAttributeDefinitions.EID_EIDBIND_FRIENDLY_NAME, true));
-          add(Triple.newInstance(ExtendedPvpAttributeDefinitions.EID_AUTHBLOCK_SIGNED_NAME,
-              ExtendedPvpAttributeDefinitions.EID_AUTHBLOCK_SIGNED_FRIENDLY_NAME, true));
+//          add(Triple.newInstance(ExtendedPvpAttributeDefinitions.EID_AUTHBLOCK_SIGNED_NAME,
+//              ExtendedPvpAttributeDefinitions.EID_AUTHBLOCK_SIGNED_FRIENDLY_NAME, true));
 
           //request pII transactionId from MS-Connector
-          add(Triple.newInstance(ExtendedPvpAttributeDefinitions.EID_PII_TRANSACTION_ID_NAME,
-              ExtendedPvpAttributeDefinitions.EID_PII_TRANSACTION_ID_FRIENDLY_NAME, false));
+//          add(Triple.newInstance(ExtendedPvpAttributeDefinitions.EID_PII_TRANSACTION_ID_NAME,
+//              ExtendedPvpAttributeDefinitions.EID_PII_TRANSACTION_ID_FRIENDLY_NAME, false));
 
         }
       });
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask.java
index 8b58f2e1..d919d229 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask.java
@@ -188,11 +188,12 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask extends
 
         }
 
+
         // initialize Attribute extractor
         final AssertionAttributeExtractor extractor =
             new AssertionAttributeExtractor(processedMsg.getFirst().getResponse());
 
-        String bpkzp = getAuthDataFromInterfederation(extractor);
+        String bpkzp = getAuthDataFromInterfederation(extractor, authProcessData);
 
         MergedRegisterSearchResult result = searchInZmrAndErnp(bpkzp);
         if (result.getResultCount() == 0) {
@@ -240,6 +241,7 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask extends
               new Object[]{IdAustriaClientAuthConstants.MODULE_NAME_FOR_LOGGING}, e));
 
     } catch (final Exception e) {
+      e.printStackTrace();
       log.debug("PVP response validation FAILED. Msg:" + e.getMessage(), e);
       throw new TaskExecutionException(pendingReq, ERROR_MSG_03,
           new AuthnResponseValidationException(ERROR_PVP_12,
@@ -305,16 +307,15 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask extends
     return null;
   }
 
-  private String getAuthDataFromInterfederation(AssertionAttributeExtractor extractor)
+  private String getAuthDataFromInterfederation(AssertionAttributeExtractor extractor,
+                                                AuthProcessDataWrapper authProcessData)
       throws EaafBuilderException {
 
-    List<String> requiredEidasNodeAttributes = IdAustriaClientAuthConstants.DEFAULT_REQUIRED_PVP_ATTRIBUTE_NAMES;
+    List<String> requiredAttributes = IdAustriaClientAuthConstants.DEFAULT_REQUIRED_PVP_ATTRIBUTE_NAMES;
     String bpk = null;
     try {
       // check if all attributes are include
-      if (!extractor.containsAllRequiredAttributes()
-          || !extractor.containsAllRequiredAttributes(
-          requiredEidasNodeAttributes)) {
+      if (!extractor.containsAllRequiredAttributes(requiredAttributes)) {
         log.warn("PVP Response from 'ID Austria node' contains not all requested attributes.");
         throw new AssertionValidationExeption(ERROR_PVP_06, new Object[]{
             IdAustriaClientAuthConstants.MODULE_NAME_FOR_LOGGING});
@@ -329,6 +330,9 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask extends
         if (PvpAttributeDefinitions.BPK_NAME.equals(attrName)) {
           bpk = extractor.getSingleAttributeValue(attrName);
         }
+        if (PvpAttributeDefinitions.EID_CITIZEN_EIDAS_QAA_LEVEL_NAME.equals(attrName)) {
+          authProcessData.setQaaLevel(extractor.getSingleAttributeValue(attrName));
+        }
         //injectAuthInfosIntoSession(session, attrName,
         //    extractor.getSingleAttributeValue(attrName));
 
@@ -350,7 +354,7 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask extends
       //      session.setForeigner(true);
 
       // set IssuerInstant from Assertion
-      //      session.setIssueInstant(extractor.getAssertionIssuingDate());
+      authProcessData.setIssueInstant(extractor.getAssertionIssuingDate());
 
       // set CCE URL
       //if (extractor.getFullAssertion().getIssuer() != null
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest.java
index a07343f9..2e3da7bc 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest.java
@@ -325,7 +325,7 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest {
         METADATA_PATH, null, "jUnit IDP", null));
 
     final Response response = initializeResponse(
-        "classpath:/data/idp_metadata_classpath_entity.xml",
+        "classpath:/data/idp_metadata_classpath_entity.xml1",
         "/data/Response_without_sig_classpath_entityid.xml",
         credentialProvider.getMessageSigningCredential(),
         true);
@@ -517,41 +517,6 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest {
     }
   }
 
-  @Test
-  public void responseWrongEidasBind() throws IOException, SamlSigningException,
-      Pvp2MetadataException, CredentialsNotAvailableException, XMLParserException, UnmarshallingException,
-      MarshallingException, TransformerException {
-
-    oaParam.putGenericConfigurationKey(
-        IdAustriaClientAuthConstants.CONFIG_PROPS_APPSPECIFIC_EIDAS_NODE_URL, METADATA_PATH);
-
-    metadataProvider.addMetadataResolverIntoChain(metadataFactory.createMetadataProvider(
-        METADATA_PATH, null, "jUnit IDP", null));
-
-    final Response response = initializeResponse(
-        "classpath:/data/idp_metadata_classpath_entity.xml",
-        "/data/Response_with_EID_wrong_data.xml",
-        credentialProvider.getMessageSigningCredential(),
-        true);
-    httpReq.addParameter("SAMLResponse", Base64.getEncoder().encodeToString(
-        DomUtils.serializeNode(XMLObjectSupport.getMarshaller(response).marshall(response)).getBytes("UTF-8")));
-
-    try {
-      task.execute(pendingReq, executionContext);
-      Assert.fail("Invalid response not detected");
-
-    } catch (final TaskExecutionException e) {
-      Assert.assertNotNull(e.getPendingRequestID());
-      Assert.assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
-      Assert.assertNotNull(e.getOriginalException());
-      org.springframework.util.Assert.isInstanceOf(AuthnResponseValidationException.class,
-          e.getOriginalException());
-      Assert.assertEquals("sp.pvp2.12",
-          ((EaafException) e.getOriginalException()).getErrorId());
-
-    }
-  }
-
   @Test
   public void httpPostValidSignedAssertionEidValid() throws IOException, SamlSigningException,
       Pvp2MetadataException, CredentialsNotAvailableException, XMLParserException, UnmarshallingException,
@@ -580,12 +545,12 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest {
 //    Assert.assertFalse("Wrong Mandate flag",
 //        (boolean) executionContext.get(AuthHandlerConstants.HTTP_PARAM_USE_MANDATES));
 
-    Assert.assertEquals("piiTransactionId", "piiId_112233445566", pendingReq.getUniquePiiTransactionIdentifier());
+//    Assert.assertEquals("piiTransactionId", "piiId_112233445566", pendingReq.getUniquePiiTransactionIdentifier());
 
     final AuthProcessDataWrapper session = pendingReq.getSessionData(AuthProcessDataWrapper.class);
 
-    Assert.assertTrue("E-ID flag", session.isEidProcess());
-    Assert.assertTrue("Foreign flag", session.isForeigner());
+//    Assert.assertTrue("E-ID flag", session.isEidProcess());
+//    Assert.assertTrue("Foreign flag", session.isForeigner());
 //    Assert.assertEquals("eidasBind", EIDAS_BIND, session.getQcBind());
 //    Assert.assertEquals("vsz",
 //        "OD/kCGIFbjLTW0po6IZSmoaz3uhPYlO3S5bs9JnK0A5DHtufM3APLuDc3Llp4PeNdEa4NrCmgHr1YUiHT5irT8eDAfGpIbQHJg==",
@@ -595,8 +560,8 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest {
 //    Assert.assertEquals("AuthBlockType", AuthHandlerConstants.AuthBlockType.JWS, session.getSignedAuthBlockType());
 
     Assert.assertEquals("LoA", "http://eidas.europa.eu/LoA/low", session.getQaaLevel());
-    Assert.assertEquals("CountryCode", "IT", session.getGenericDataFromSession(
-        ExtendedPvpAttributeDefinitions.EID_ISSUING_NATION_NAME, String.class));
+//    Assert.assertEquals("CountryCode", "IT", session.getGenericDataFromSession(
+//        ExtendedPvpAttributeDefinitions.EID_ISSUING_NATION_NAME, String.class));
     Assert.assertEquals("IssueInstant", "2014-03-05T06:39:51Z", session.getIssueInstantString());
 
 //    Assert.assertNull("SigCert", session.getEncodedSignerCertificate());
@@ -649,25 +614,25 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest {
     final AuthProcessDataWrapper session = pendingReq.getSessionData(AuthProcessDataWrapper.class);
 
     Assert.assertFalse("E-ID flag", session.isEidProcess());
-    Assert.assertTrue("Foreign flag", session.isForeigner());
+//    Assert.assertTrue("Foreign flag", session.isForeigner());
     Assert.assertEquals("LoA", "http://eidas.europa.eu/LoA/test", session.getQaaLevel());
-    Assert.assertEquals("CountryCode", "AB", session.getGenericDataFromSession(
-        ExtendedPvpAttributeDefinitions.EID_ISSUING_NATION_NAME, String.class));
+//    Assert.assertEquals("CountryCode", "AB", session.getGenericDataFromSession(
+//        ExtendedPvpAttributeDefinitions.EID_ISSUING_NATION_NAME, String.class));
     Assert.assertEquals("IssueInstant", "2014-03-05T06:39:51Z", session.getIssueInstantString());
 
-    Assert.assertEquals("FamilyName", "Mustermann", session.getGenericDataFromSession(
-        ExtendedPvpAttributeDefinitions.PRINCIPAL_NAME_NAME, String.class));
-    Assert.assertEquals("Givenname", "Max", session.getGenericDataFromSession(
-        ExtendedPvpAttributeDefinitions.GIVEN_NAME_NAME, String.class));
-    Assert.assertEquals("DateOfBirth", "1940-01-01", session.getGenericDataFromSession(
-        ExtendedPvpAttributeDefinitions.BIRTHDATE_NAME, String.class));
-
-    Assert.assertEquals("bPK", "BF:QVGm48cqcM4UcyhDTNGYmVdrIoY=", session.getGenericDataFromSession(
-        ExtendedPvpAttributeDefinitions.BPK_NAME, String.class));
-    Assert.assertEquals("bPK-Target", "urn:publicid:gv.at:cdid+BF", session.getGenericDataFromSession(
-        ExtendedPvpAttributeDefinitions.EID_SECTOR_FOR_IDENTIFIER_NAME, String.class));
-    Assert.assertEquals("AuthBlock", TEST_SIGNED_AUTHBLOCK, session.getGenericDataFromSession(
-        ExtendedPvpAttributeDefinitions.EID_IDENTITY_LINK_NAME, String.class));
+//    Assert.assertEquals("FamilyName", "Mustermann", session.getGenericDataFromSession(
+//        ExtendedPvpAttributeDefinitions.PRINCIPAL_NAME_NAME, String.class));
+//    Assert.assertEquals("Givenname", "Max", session.getGenericDataFromSession(
+//        ExtendedPvpAttributeDefinitions.GIVEN_NAME_NAME, String.class));
+//    Assert.assertEquals("DateOfBirth", "1940-01-01", session.getGenericDataFromSession(
+//        ExtendedPvpAttributeDefinitions.BIRTHDATE_NAME, String.class));
+//
+//    Assert.assertEquals("bPK", "BF:QVGm48cqcM4UcyhDTNGYmVdrIoY=", session.getGenericDataFromSession(
+//        ExtendedPvpAttributeDefinitions.BPK_NAME, String.class));
+//    Assert.assertEquals("bPK-Target", "urn:publicid:gv.at:cdid+BF", session.getGenericDataFromSession(
+//        ExtendedPvpAttributeDefinitions.EID_SECTOR_FOR_IDENTIFIER_NAME, String.class));
+//    Assert.assertEquals("AuthBlock", TEST_SIGNED_AUTHBLOCK, session.getGenericDataFromSession(
+//        ExtendedPvpAttributeDefinitions.EID_IDENTITY_LINK_NAME, String.class));
 
 //    Assert.assertNull("SigCert", session.getEncodedSignerCertificate());
 //    Assert.assertNull("eidasBind", session.getQcBind());
@@ -711,27 +676,27 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest {
 //    Assert.assertTrue("E-ID flag", session.isEidProcess());
 //    Assert.assertTrue("Foreign flag", session.isForeigner());
     Assert.assertEquals("LoA", "http://eidas.europa.eu/LoA/test", session.getQaaLevel());
-    Assert.assertEquals("CountryCode", "AB", session.getGenericDataFromSession(
-        ExtendedPvpAttributeDefinitions.EID_ISSUING_NATION_NAME, String.class));
+//    Assert.assertEquals("CountryCode", "AB", session.getGenericDataFromSession(
+//        ExtendedPvpAttributeDefinitions.EID_ISSUING_NATION_NAME, String.class));
     Assert.assertEquals("IssueInstant", "2014-03-05T06:39:51Z", session.getIssueInstantString());
 
 //    Assert.assertEquals("eidasBind", EIDAS_BIND, session.getQcBind());
 //    Assert.assertArrayEquals("signedConsent",
 //        Base64.getDecoder().decode(TEST_SIGNED_AUTHBLOCK), session.getSignedAuthBlock());
 
-    Assert.assertEquals("FamilyName", "Mustermann", session.getGenericDataFromSession(
-        ExtendedPvpAttributeDefinitions.PRINCIPAL_NAME_NAME, String.class));
-    Assert.assertEquals("Givenname", "Max", session.getGenericDataFromSession(
-        ExtendedPvpAttributeDefinitions.GIVEN_NAME_NAME, String.class));
-    Assert.assertEquals("DateOfBirth", "1940-01-01", session.getGenericDataFromSession(
-        ExtendedPvpAttributeDefinitions.BIRTHDATE_NAME, String.class));
-
-    Assert.assertEquals("FamilyName", "BF:QVGm48cqcM4UcyhDTNGYmVdrIoY=", session.getGenericDataFromSession(
-        ExtendedPvpAttributeDefinitions.BPK_NAME, String.class));
-    Assert.assertEquals("FamilyName", "urn:publicid:gv.at:cdid+BF", session.getGenericDataFromSession(
-        ExtendedPvpAttributeDefinitions.EID_SECTOR_FOR_IDENTIFIER_NAME, String.class));
-    Assert.assertEquals("FamilyName", TEST_SIGNED_AUTHBLOCK, session.getGenericDataFromSession(
-        ExtendedPvpAttributeDefinitions.EID_IDENTITY_LINK_NAME, String.class));
+//    Assert.assertEquals("FamilyName", "Mustermann", session.getGenericDataFromSession(
+//        ExtendedPvpAttributeDefinitions.PRINCIPAL_NAME_NAME, String.class));
+//    Assert.assertEquals("Givenname", "Max", session.getGenericDataFromSession(
+//        ExtendedPvpAttributeDefinitions.GIVEN_NAME_NAME, String.class));
+//    Assert.assertEquals("DateOfBirth", "1940-01-01", session.getGenericDataFromSession(
+//        ExtendedPvpAttributeDefinitions.BIRTHDATE_NAME, String.class));
+//
+//    Assert.assertEquals("FamilyName", "BF:QVGm48cqcM4UcyhDTNGYmVdrIoY=", session.getGenericDataFromSession(
+//        ExtendedPvpAttributeDefinitions.BPK_NAME, String.class));
+//    Assert.assertEquals("FamilyName", "urn:publicid:gv.at:cdid+BF", session.getGenericDataFromSession(
+//        ExtendedPvpAttributeDefinitions.EID_SECTOR_FOR_IDENTIFIER_NAME, String.class));
+//    Assert.assertEquals("FamilyName", TEST_SIGNED_AUTHBLOCK, session.getGenericDataFromSession(
+//        ExtendedPvpAttributeDefinitions.EID_IDENTITY_LINK_NAME, String.class));
 
 //    Assert.assertNull("SigCert", session.getEncodedSignerCertificate());
 
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_with_EID.xml b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_with_EID.xml
index cd2cceb5..327209ef 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_with_EID.xml
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_with_EID.xml
@@ -23,21 +23,16 @@
 			</saml2:AuthnContext>
 		</saml2:AuthnStatement>
 		<saml2:AttributeStatement>
-            <saml2:Attribute FriendlyName="piiTransactionId" Name="urn:eidgvat:attributes.piiTransactionId" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
-                <saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">piiId_112233445566</saml2:AttributeValue>
-            </saml2:Attribute>
 			<saml2:Attribute FriendlyName="PVP-VERSION" Name="urn:oid:1.2.40.0.10.2.1.1.261.10" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
 				<saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">2.1</saml2:AttributeValue>
 			</saml2:Attribute>
-			<saml2:Attribute FriendlyName="EID-CITIZEN-QAA- EIDAS-LEVEL" Name="urn:oid:1.2.40.0.10.2.1.1.261.108" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+			<saml2:Attribute FriendlyName="EID-CITIZEN-QAA-EIDAS-LEVEL" Name="urn:oid:1.2.40.0.10.2.1.1.261.108" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
 				<saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">http://eidas.europa.eu/LoA/low</saml2:AttributeValue>
 			</saml2:Attribute>
 			<saml2:Attribute FriendlyName="EID-ISSUING-NATION" Name="urn:oid:1.2.40.0.10.2.1.1.261.32" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
 				<saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">IT</saml2:AttributeValue>
 			</saml2:Attribute>
-			<saml2:Attribute FriendlyName="eidBind" Name="urn:eidgvat:attributes.eidbind" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
-				<saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">eyJhbGciOiJQUzI1NiIsInVybjphdC5ndi5laWQ6YmluZHR5cGUiOiJ1cm46YXQuZ3YuZWlkOmJjQmluZCIsIng1dCNTMjU2IjoidmZDUTQ1eE9ndEhqWGFTQ0FDbVpPRzFVem9kSFpLaFVDZ1pxek50SU45SSJ9.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.M83-8edNj64SBXV7BEZUTAgqFULZTmvFFmIdJ-GKCdJIWw-AXlfOCzCdvFYg1Y9_yfjWHuPWFJmh8RXzXN6yRqv8LjtxsK8qBmT3Xsg3puMrpTSiImoM1iSHTaVXZlSV74vj9Fdr9EXrTIZFA7Uj-JBFRQ_mkYdCdWnrIwwm3ojxnq_wrSepO_uYOOQ0w7lTveTyn_iXKVAk3f8N0gibODXXUiTnCuOr6CqZwKwiwuwgDNZEItkpR7r_qpZSwwim1OOc7JTQFi05ANRe8lP4YRLfGatp6FX-Tu4krT0xsgrd0bTKSYOaP11mOhftLAp-wOB-04zkfs0b7yYw6CGVHg</saml2:AttributeValue>
-			</saml2:Attribute>
+
             <saml2:Attribute FriendlyName="userAuthBlock" Name="urn:eidgvat:attributes.authblock.signed" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
               <saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">MIIBbjCCARSgAwIBAgIEXh7TNzAKBggqhkjOPQQDAjA/MQswCQYDVQQGEwJBVDENMAsGA1UECgwERUdJWjEOMAwGA1UECwwFalVuaXQxETAPBgNVBAMMCG1ldGFkYXRhMB4XDTIwMDExNTA4NTQxNVoXDTMwMDExNDA4NTQxNVowPzELMAkGA1UEBhMCQVQxDTALBgNVBAoMBEVHSVoxDjAMBgNVBAsMBWpVbml0MREwDwYDVQQDDAhtZXRhZGF0YTBZMBMGByqGSM49AgEGCCqGSM49AwEHA0IABBdBkaxt31p++aZeP3SmlWITj9SYO4McV2ccXFsH4X4QMHuKAMUvjxPm1kdU01eTOWdiQX0GpDIBspYMZh8ZKcwwCgYIKoZIzj0EAwIDSAAwRQIhAJ3QKlk9cd90s+i8y62fvmGF6LtfNO+JvkWqDUBeQImnAiA2KwFtzO7STAp9MEwQGe0vt0F8mO1ttrLE+rr6YxdwGA==</saml2:AttributeValue>
             </saml2:Attribute>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_with_legacy.xml b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_with_legacy.xml
index 357b873d..1bc93fae 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_with_legacy.xml
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_with_legacy.xml
@@ -26,7 +26,7 @@
 			<saml2:Attribute FriendlyName="PVP-VERSION" Name="urn:oid:1.2.40.0.10.2.1.1.261.10" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
 				<saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">2.1</saml2:AttributeValue>
 			</saml2:Attribute>
-			<saml2:Attribute FriendlyName="EID-CITIZEN-QAA- EIDAS-LEVEL" Name="urn:oid:1.2.40.0.10.2.1.1.261.108" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+			<saml2:Attribute FriendlyName="EID-CITIZEN-QAA-EIDAS-LEVEL" Name="urn:oid:1.2.40.0.10.2.1.1.261.108" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
 				<saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">http://eidas.europa.eu/LoA/test</saml2:AttributeValue>
 			</saml2:Attribute>
 			<saml2:Attribute FriendlyName="EID-ISSUING-NATION" Name="urn:oid:1.2.40.0.10.2.1.1.261.32" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_with_legacy_and_EID.xml b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_with_legacy_and_EID.xml
index a2aec0d0..0d465c81 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_with_legacy_and_EID.xml
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_with_legacy_and_EID.xml
@@ -26,7 +26,7 @@
 			<saml2:Attribute FriendlyName="PVP-VERSION" Name="urn:oid:1.2.40.0.10.2.1.1.261.10" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
 				<saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">2.1</saml2:AttributeValue>
 			</saml2:Attribute>
-			<saml2:Attribute FriendlyName="EID-CITIZEN-QAA- EIDAS-LEVEL" Name="urn:oid:1.2.40.0.10.2.1.1.261.108" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+			<saml2:Attribute FriendlyName="EID-CITIZEN-QAA-EIDAS-LEVEL" Name="urn:oid:1.2.40.0.10.2.1.1.261.108" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
 				<saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">http://eidas.europa.eu/LoA/test</saml2:AttributeValue>
 			</saml2:Attribute>
 			<saml2:Attribute FriendlyName="EID-ISSUING-NATION" Name="urn:oid:1.2.40.0.10.2.1.1.261.32" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
@@ -50,15 +50,9 @@
           <saml2:Attribute FriendlyName="EID-IDENTITY-LINK" Name="urn:oid:1.2.40.0.10.2.1.1.261.38" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
             <saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">MIIBbjCCARSgAwIBAgIEXh7TNzAKBggqhkjOPQQDAjA/MQswCQYDVQQGEwJBVDENMAsGA1UECgwERUdJWjEOMAwGA1UECwwFalVuaXQxETAPBgNVBAMMCG1ldGFkYXRhMB4XDTIwMDExNTA4NTQxNVoXDTMwMDExNDA4NTQxNVowPzELMAkGA1UEBhMCQVQxDTALBgNVBAoMBEVHSVoxDjAMBgNVBAsMBWpVbml0MREwDwYDVQQDDAhtZXRhZGF0YTBZMBMGByqGSM49AgEGCCqGSM49AwEHA0IABBdBkaxt31p++aZeP3SmlWITj9SYO4McV2ccXFsH4X4QMHuKAMUvjxPm1kdU01eTOWdiQX0GpDIBspYMZh8ZKcwwCgYIKoZIzj0EAwIDSAAwRQIhAJ3QKlk9cd90s+i8y62fvmGF6LtfNO+JvkWqDUBeQImnAiA2KwFtzO7STAp9MEwQGe0vt0F8mO1ttrLE+rr6YxdwGA==</saml2:AttributeValue>
           </saml2:Attribute>
-          <saml2:Attribute FriendlyName="eidBind" Name="urn:eidgvat:attributes.eidbind" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
-           <saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">eyJhbGciOiJQUzI1NiIsInVybjphdC5ndi5laWQ6YmluZHR5cGUiOiJ1cm46YXQuZ3YuZWlkOmJjQmluZCIsIng1dCNTMjU2IjoidmZDUTQ1eE9ndEhqWGFTQ0FDbVpPRzFVem9kSFpLaFVDZ1pxek50SU45SSJ9.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.M83-8edNj64SBXV7BEZUTAgqFULZTmvFFmIdJ-GKCdJIWw-AXlfOCzCdvFYg1Y9_yfjWHuPWFJmh8RXzXN6yRqv8LjtxsK8qBmT3Xsg3puMrpTSiImoM1iSHTaVXZlSV74vj9Fdr9EXrTIZFA7Uj-JBFRQ_mkYdCdWnrIwwm3ojxnq_wrSepO_uYOOQ0w7lTveTyn_iXKVAk3f8N0gibODXXUiTnCuOr6CqZwKwiwuwgDNZEItkpR7r_qpZSwwim1OOc7JTQFi05ANRe8lP4YRLfGatp6FX-Tu4krT0xsgrd0bTKSYOaP11mOhftLAp-wOB-04zkfs0b7yYw6CGVHg</saml2:AttributeValue>
-          </saml2:Attribute>
           <saml2:Attribute FriendlyName="userAuthBlock" Name="urn:eidgvat:attributes.authblock.signed" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
             <saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">MIIBbjCCARSgAwIBAgIEXh7TNzAKBggqhkjOPQQDAjA/MQswCQYDVQQGEwJBVDENMAsGA1UECgwERUdJWjEOMAwGA1UECwwFalVuaXQxETAPBgNVBAMMCG1ldGFkYXRhMB4XDTIwMDExNTA4NTQxNVoXDTMwMDExNDA4NTQxNVowPzELMAkGA1UEBhMCQVQxDTALBgNVBAoMBEVHSVoxDjAMBgNVBAsMBWpVbml0MREwDwYDVQQDDAhtZXRhZGF0YTBZMBMGByqGSM49AgEGCCqGSM49AwEHA0IABBdBkaxt31p++aZeP3SmlWITj9SYO4McV2ccXFsH4X4QMHuKAMUvjxPm1kdU01eTOWdiQX0GpDIBspYMZh8ZKcwwCgYIKoZIzj0EAwIDSAAwRQIhAJ3QKlk9cd90s+i8y62fvmGF6LtfNO+JvkWqDUBeQImnAiA2KwFtzO7STAp9MEwQGe0vt0F8mO1ttrLE+rr6YxdwGA==</saml2:AttributeValue>
           </saml2:Attribute>
-          <saml2:Attribute FriendlyName="piiTransactionId" Name="urn:eidgvat:attributes.piiTransactionId" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
-            <saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">piiTrans_11223344556677</saml2:AttributeValue>
-          </saml2:Attribute>          
 		</saml2:AttributeStatement>
 	</saml2:Assertion>
 </saml2p:Response>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_without_sig_with_error.xml b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_without_sig_with_error.xml
index 28dd9d92..56b06534 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_without_sig_with_error.xml
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_without_sig_with_error.xml
@@ -29,7 +29,7 @@
 			<saml2:Attribute FriendlyName="PVP-VERSION" Name="urn:oid:1.2.40.0.10.2.1.1.261.10" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
 				<saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">2.1</saml2:AttributeValue>
 			</saml2:Attribute>
-			<saml2:Attribute FriendlyName="EID-CITIZEN-QAA- EIDAS-LEVEL" Name="urn:oid:1.2.40.0.10.2.1.1.261.108" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+			<saml2:Attribute FriendlyName="EID-CITIZEN-QAA-EIDAS-LEVEL" Name="urn:oid:1.2.40.0.10.2.1.1.261.108" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
 				<saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">http://eidas.europa.eu/LoA/low</saml2:AttributeValue>
 			</saml2:Attribute>
 			<saml2:Attribute FriendlyName="EID-ISSUING-NATION" Name="urn:oid:1.2.40.0.10.2.1.1.261.32" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_without_sig_with_error_empty_subcode.xml b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_without_sig_with_error_empty_subcode.xml
index 4a4566df..973491d8 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_without_sig_with_error_empty_subcode.xml
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_without_sig_with_error_empty_subcode.xml
@@ -29,7 +29,7 @@
 			<saml2:Attribute FriendlyName="PVP-VERSION" Name="urn:oid:1.2.40.0.10.2.1.1.261.10" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
 				<saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">2.1</saml2:AttributeValue>
 			</saml2:Attribute>
-			<saml2:Attribute FriendlyName="EID-CITIZEN-QAA- EIDAS-LEVEL" Name="urn:oid:1.2.40.0.10.2.1.1.261.108" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+			<saml2:Attribute FriendlyName="EID-CITIZEN-QAA-EIDAS-LEVEL" Name="urn:oid:1.2.40.0.10.2.1.1.261.108" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
 				<saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">http://eidas.europa.eu/LoA/low</saml2:AttributeValue>
 			</saml2:Attribute>
 			<saml2:Attribute FriendlyName="EID-ISSUING-NATION" Name="urn:oid:1.2.40.0.10.2.1.1.261.32" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_without_sig_with_error_userstop.xml b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_without_sig_with_error_userstop.xml
index 7ca0f134..087bcb1f 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_without_sig_with_error_userstop.xml
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_without_sig_with_error_userstop.xml
@@ -29,7 +29,7 @@
 			<saml2:Attribute FriendlyName="PVP-VERSION" Name="urn:oid:1.2.40.0.10.2.1.1.261.10" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
 				<saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">2.1</saml2:AttributeValue>
 			</saml2:Attribute>
-			<saml2:Attribute FriendlyName="EID-CITIZEN-QAA- EIDAS-LEVEL" Name="urn:oid:1.2.40.0.10.2.1.1.261.108" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+			<saml2:Attribute FriendlyName="EID-CITIZEN-QAA-EIDAS-LEVEL" Name="urn:oid:1.2.40.0.10.2.1.1.261.108" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
 				<saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">http://eidas.europa.eu/LoA/low</saml2:AttributeValue>
 			</saml2:Attribute>
 			<saml2:Attribute FriendlyName="EID-ISSUING-NATION" Name="urn:oid:1.2.40.0.10.2.1.1.261.32" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_without_sig_with_error_without_subcode.xml b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_without_sig_with_error_without_subcode.xml
index 2a068dbe..e449327a 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_without_sig_with_error_without_subcode.xml
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_without_sig_with_error_without_subcode.xml
@@ -28,7 +28,7 @@
 			<saml2:Attribute FriendlyName="PVP-VERSION" Name="urn:oid:1.2.40.0.10.2.1.1.261.10" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
 				<saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">2.1</saml2:AttributeValue>
 			</saml2:Attribute>
-			<saml2:Attribute FriendlyName="EID-CITIZEN-QAA- EIDAS-LEVEL" Name="urn:oid:1.2.40.0.10.2.1.1.261.108" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+			<saml2:Attribute FriendlyName="EID-CITIZEN-QAA-EIDAS-LEVEL" Name="urn:oid:1.2.40.0.10.2.1.1.261.108" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
 				<saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">http://eidas.europa.eu/LoA/low</saml2:AttributeValue>
 			</saml2:Attribute>
 			<saml2:Attribute FriendlyName="EID-ISSUING-NATION" Name="urn:oid:1.2.40.0.10.2.1.1.261.32" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
-- 
cgit v1.2.3


From a22f91cbeb7320bc06d3b50776932de25d9ceecd Mon Sep 17 00:00:00 2001
From: Alexander Marsalek <amarsalek@iaik.tugraz.at>
Date: Tue, 9 Feb 2021 21:55:33 +0100
Subject: added mandatory attributes, all except 2 test work

---
 .../idaustriaclient/IdAustriaClientAuthConstants.java | 19 ++++++++++++++-----
 .../src/test/resources/data/Response_with_EID.xml     | 13 ++++++++++++-
 .../data/Response_without_sig_classpath_entityid.xml  |  4 +---
 3 files changed, 27 insertions(+), 9 deletions(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthConstants.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthConstants.java
index 186deaee..b32b6a2b 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthConstants.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthConstants.java
@@ -2,7 +2,6 @@ package at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient;
 
 
 import at.gv.egiz.eaaf.core.api.data.EaafConstants;
-import at.gv.egiz.eaaf.core.api.data.ExtendedPvpAttributeDefinitions;
 import at.gv.egiz.eaaf.core.api.data.PvpAttributeDefinitions;
 import at.gv.egiz.eaaf.core.impl.data.Triple;
 
@@ -96,20 +95,30 @@ public class IdAustriaClientAuthConstants {
           add(Triple.newInstance(PvpAttributeDefinitions.EID_ISSUING_NATION_NAME,
               PvpAttributeDefinitions.EID_ISSUING_NATION_FRIENDLY_NAME, true));
 
+          add(Triple.newInstance(PvpAttributeDefinitions.PRINCIPAL_NAME_NAME,
+              PvpAttributeDefinitions.PRINCIPAL_NAME_FRIENDLY_NAME, true));
+          add(Triple.newInstance(PvpAttributeDefinitions.GIVEN_NAME_NAME,
+              PvpAttributeDefinitions.GIVEN_NAME_FRIENDLY_NAME, true));
+          add(Triple.newInstance(PvpAttributeDefinitions.BIRTHDATE_NAME,
+              PvpAttributeDefinitions.BIRTHDATE_FRIENDLY_NAME, true));
+          add(Triple.newInstance(PvpAttributeDefinitions.BPK_NAME,
+              PvpAttributeDefinitions.BPK_FRIENDLY_NAME, true));
+
           // entity eID information
           //          add(Triple.newInstance(ExtendedPvpAttributeDefinitions.EID_EIDBIND_NAME,
           //              ExtendedPvpAttributeDefinitions.EID_EIDBIND_FRIENDLY_NAME, true));
-//          add(Triple.newInstance(ExtendedPvpAttributeDefinitions.EID_AUTHBLOCK_SIGNED_NAME,
-//              ExtendedPvpAttributeDefinitions.EID_AUTHBLOCK_SIGNED_FRIENDLY_NAME, true));
+          //          add(Triple.newInstance(ExtendedPvpAttributeDefinitions.EID_AUTHBLOCK_SIGNED_NAME,
+          //              ExtendedPvpAttributeDefinitions.EID_AUTHBLOCK_SIGNED_FRIENDLY_NAME, true));
 
           //request pII transactionId from MS-Connector
-//          add(Triple.newInstance(ExtendedPvpAttributeDefinitions.EID_PII_TRANSACTION_ID_NAME,
-//              ExtendedPvpAttributeDefinitions.EID_PII_TRANSACTION_ID_FRIENDLY_NAME, false));
+          //          add(Triple.newInstance(ExtendedPvpAttributeDefinitions.EID_PII_TRANSACTION_ID_NAME,
+          //              ExtendedPvpAttributeDefinitions.EID_PII_TRANSACTION_ID_FRIENDLY_NAME, false));
 
         }
       });
 
   public static final List<String> DEFAULT_REQUIRED_PVP_ATTRIBUTE_NAMES =
+
       Collections.unmodifiableList(new ArrayList<String>() {
         private static final long serialVersionUID = 1L;
 
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_with_EID.xml b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_with_EID.xml
index 327209ef..7b802fc0 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_with_EID.xml
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_with_EID.xml
@@ -23,6 +23,9 @@
 			</saml2:AuthnContext>
 		</saml2:AuthnStatement>
 		<saml2:AttributeStatement>
+			<saml2:Attribute FriendlyName="PRINCIPAL-NAME" Name="urn:oid:1.2.40.0.10.2.1.1.261.20" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+				<saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">Mustermann</saml2:AttributeValue>
+			</saml2:Attribute>
 			<saml2:Attribute FriendlyName="PVP-VERSION" Name="urn:oid:1.2.40.0.10.2.1.1.261.10" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
 				<saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">2.1</saml2:AttributeValue>
 			</saml2:Attribute>
@@ -32,7 +35,15 @@
 			<saml2:Attribute FriendlyName="EID-ISSUING-NATION" Name="urn:oid:1.2.40.0.10.2.1.1.261.32" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
 				<saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">IT</saml2:AttributeValue>
 			</saml2:Attribute>
-
+			<saml2:Attribute FriendlyName="GIVEN-NAME" Name="urn:oid:2.5.4.42" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+				<saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">Max</saml2:AttributeValue>
+			</saml2:Attribute>
+			<saml2:Attribute FriendlyName="BIRTHDATE" Name="urn:oid:1.2.40.0.10.2.1.1.55" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+				<saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">1940-01-01</saml2:AttributeValue>
+			</saml2:Attribute>
+			<saml2:Attribute FriendlyName="BPK" Name="urn:oid:1.2.40.0.10.2.1.1.149" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
+				<saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">BF:QVGm48cqcM4UcyhDTNGYmVdrIoY=</saml2:AttributeValue>
+			</saml2:Attribute>
             <saml2:Attribute FriendlyName="userAuthBlock" Name="urn:eidgvat:attributes.authblock.signed" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
               <saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">MIIBbjCCARSgAwIBAgIEXh7TNzAKBggqhkjOPQQDAjA/MQswCQYDVQQGEwJBVDENMAsGA1UECgwERUdJWjEOMAwGA1UECwwFalVuaXQxETAPBgNVBAMMCG1ldGFkYXRhMB4XDTIwMDExNTA4NTQxNVoXDTMwMDExNDA4NTQxNVowPzELMAkGA1UEBhMCQVQxDTALBgNVBAoMBEVHSVoxDjAMBgNVBAsMBWpVbml0MREwDwYDVQQDDAhtZXRhZGF0YTBZMBMGByqGSM49AgEGCCqGSM49AwEHA0IABBdBkaxt31p++aZeP3SmlWITj9SYO4McV2ccXFsH4X4QMHuKAMUvjxPm1kdU01eTOWdiQX0GpDIBspYMZh8ZKcwwCgYIKoZIzj0EAwIDSAAwRQIhAJ3QKlk9cd90s+i8y62fvmGF6LtfNO+JvkWqDUBeQImnAiA2KwFtzO7STAp9MEwQGe0vt0F8mO1ttrLE+rr6YxdwGA==</saml2:AttributeValue>
             </saml2:Attribute>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_without_sig_classpath_entityid.xml b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_without_sig_classpath_entityid.xml
index 2eeeeb17..f1065961 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_without_sig_classpath_entityid.xml
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_without_sig_classpath_entityid.xml
@@ -35,9 +35,7 @@
 			<saml2:Attribute FriendlyName="BIRTHDATE" Name="urn:oid:1.2.40.0.10.2.1.1.55" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
 				<saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">1940-01-01</saml2:AttributeValue>
 			</saml2:Attribute>
-			<saml2:Attribute FriendlyName="BPK" Name="urn:oid:1.2.40.0.10.2.1.1.149" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
-				<saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">BF:QVGm48cqcM4UcyhDTNGYmVdrIoY=</saml2:AttributeValue>
-			</saml2:Attribute>
+
 			<saml2:Attribute FriendlyName="EID-CITIZEN-QAA- EIDAS-LEVEL" Name="urn:oid:1.2.40.0.10.2.1.1.261.108" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
 				<saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">http://eidas.europa.eu/LoA/high</saml2:AttributeValue>
 			</saml2:Attribute>
-- 
cgit v1.2.3


From f681c2e66c4913a37505788b270e70b85ed1111e Mon Sep 17 00:00:00 2001
From: Alexander Marsalek <amarsalek@iaik.tugraz.at>
Date: Fri, 12 Feb 2021 11:08:57 +0100
Subject: compare eiddata with mobile phone signature data

---
 .../eidas/v2/dao/SimpleMobileSignatureData.java    | 66 ++++++++++++++++++
 ...eSignatureResponseAndSearchInRegistersTask.java | 31 ++++++---
 ...natureResponseAndSearchInRegistersTaskTest.java | 78 +++++++++++++++++++++-
 3 files changed, 164 insertions(+), 11 deletions(-)
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleMobileSignatureData.java

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleMobileSignatureData.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleMobileSignatureData.java
new file mode 100644
index 00000000..254b8c70
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleMobileSignatureData.java
@@ -0,0 +1,66 @@
+/*
+ * Copyright 2020 A-SIT Plus GmbH
+ * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
+ * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
+ *
+ * Licensed under the EUPL, Version 1.2 or - as soon they will be approved by
+ * the European Commission - subsequent versions of the EUPL (the "License");
+ * You may not use this work except in compliance with the License.
+ * You may obtain a copy of the License at:
+ * https://joinup.ec.europa.eu/news/understanding-eupl-v12
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" basis,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ *
+ * This product combines work with different licenses. See the "NOTICE" text
+ * file for details on the various modules and licenses.
+ * The "NOTICE" text file is part of the distribution. Any derivative works
+ * that you distribute must include a readable copy of the "NOTICE" text file.
+ */
+
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.dao;
+
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.WorkflowException;
+import at.gv.e_government.reference.namespace.persondata._20020228.PostalAddressType;
+import lombok.Data;
+
+@Data
+public class SimpleMobileSignatureData {
+
+  private String citizenCountryCode;
+
+  private String bpk;
+  private String givenName;
+  private String familyName;
+  private String dateOfBirth;
+
+
+  public boolean equalsSimpleEidasData(SimpleEidasData result) {
+    if (!result.getGivenName().equals(givenName)) {
+      return false;
+    }
+    if (!result.getFamilyName().equals(familyName)) {
+      return false;
+    }
+    if (!result.getDateOfBirth().equals(dateOfBirth)) {
+      return false;
+    }
+    return true;
+  }
+
+  private boolean equals(String a, String b) {
+    if (a == null && b == null) {
+      return true;
+    }
+    if (a == null) {
+      return false;
+    }
+    if (b == null) {
+      return false;
+    }
+    return a.equals(b);
+  }
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask.java
index d919d229..101e7c29 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask.java
@@ -27,7 +27,9 @@ import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.MergedRegisterSearchResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleMobileSignatureData;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernp.IErnpClient;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.InvalidUserInputException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.ManualFixNecessaryException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.EidasAuthEventConstants;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthConstants;
@@ -35,6 +37,7 @@ import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustri
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthMetadataProvider;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.Utils;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.IZmrClient;
+import at.gv.egiz.eaaf.core.api.data.ExtendedPvpAttributeDefinitions;
 import at.gv.egiz.eaaf.core.api.data.PvpAttributeDefinitions;
 import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
 import at.gv.egiz.eaaf.core.exceptions.EaafBuilderException;
@@ -188,12 +191,16 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask extends
 
         }
 
-
         // initialize Attribute extractor
         final AssertionAttributeExtractor extractor =
             new AssertionAttributeExtractor(processedMsg.getFirst().getResponse());
 
-        String bpkzp = getAuthDataFromInterfederation(extractor, authProcessData);
+        SimpleMobileSignatureData simpleMobileSignatureData = getAuthDataFromInterfederation(extractor, authProcessData);
+        if(!simpleMobileSignatureData.equalsSimpleEidasData(eidData)) {
+          //User cheated?
+          throw new InvalidUserInputException();//TODO
+        }
+        String bpkzp = simpleMobileSignatureData.getBpk();
 
         MergedRegisterSearchResult result = searchInZmrAndErnp(bpkzp);
         if (result.getResultCount() == 0) {
@@ -307,11 +314,12 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask extends
     return null;
   }
 
-  private String getAuthDataFromInterfederation(AssertionAttributeExtractor extractor,
-                                                AuthProcessDataWrapper authProcessData)
+  private SimpleMobileSignatureData getAuthDataFromInterfederation(AssertionAttributeExtractor extractor,
+                                                                   AuthProcessDataWrapper authProcessData)
       throws EaafBuilderException {
 
     List<String> requiredAttributes = IdAustriaClientAuthConstants.DEFAULT_REQUIRED_PVP_ATTRIBUTE_NAMES;
+    SimpleMobileSignatureData simpleMobileSignatureData = new SimpleMobileSignatureData();
     String bpk = null;
     try {
       // check if all attributes are include
@@ -328,13 +336,20 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask extends
         map.put(attrName, extractor.getSingleAttributeValue(attrName));
 
         if (PvpAttributeDefinitions.BPK_NAME.equals(attrName)) {
-          bpk = extractor.getSingleAttributeValue(attrName);
+          simpleMobileSignatureData.setBpk(extractor.getSingleAttributeValue(attrName));
+        }
+        if (PvpAttributeDefinitions.GIVEN_NAME_NAME.equals(attrName)) {
+          simpleMobileSignatureData.setGivenName(extractor.getSingleAttributeValue(attrName));
+        }
+        if (PvpAttributeDefinitions.PRINCIPAL_NAME_NAME.equals(attrName)) {
+          simpleMobileSignatureData.setFamilyName(extractor.getSingleAttributeValue(attrName));
+        }
+        if (PvpAttributeDefinitions.BIRTHDATE_NAME.equals(attrName)) {
+          simpleMobileSignatureData.setDateOfBirth(extractor.getSingleAttributeValue(attrName));
         }
         if (PvpAttributeDefinitions.EID_CITIZEN_EIDAS_QAA_LEVEL_NAME.equals(attrName)) {
           authProcessData.setQaaLevel(extractor.getSingleAttributeValue(attrName));
         }
-        //injectAuthInfosIntoSession(session, attrName,
-        //    extractor.getSingleAttributeValue(attrName));
 
       }
 
@@ -370,7 +385,7 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask extends
       throw new EaafBuilderException(ERROR_PVP_06, null, e.getMessage(), e);
 
     }
-    return bpk;
+    return simpleMobileSignatureData;
   }
 
   //  private void injectAuthInfosIntoSession(AhAuthProcessDataWrapper session, String attrName, String attrValue)
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest.java
index 2e3da7bc..fbf011b1 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest.java
@@ -6,6 +6,10 @@ import java.util.Base64;
 
 import javax.xml.transform.TransformerException;
 
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.MergedRegisterSearchResult;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.InvalidUserInputException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthConstants;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthCredentialProvider;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthMetadataProvider;
@@ -13,6 +17,7 @@ import at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.ReceiveMobilePhone
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.test.dummy.DummyAuthConfigMap;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.test.dummy.DummyOA;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.test.dummy.DummyPendingRequest;
+import at.gv.egiz.eaaf.core.exceptions.EaafStorageException;
 import at.gv.egiz.eaaf.core.impl.idp.auth.data.AuthProcessDataWrapper;
 import org.apache.commons.io.IOUtils;
 import org.apache.commons.lang3.RandomStringUtils;
@@ -520,7 +525,7 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest {
   @Test
   public void httpPostValidSignedAssertionEidValid() throws IOException, SamlSigningException,
       Pvp2MetadataException, CredentialsNotAvailableException, XMLParserException, UnmarshallingException,
-      MarshallingException, TransformerException, TaskExecutionException {
+      MarshallingException, TransformerException, TaskExecutionException, EaafStorageException {
 
     oaParam.putGenericConfigurationKey(
         IdAustriaClientAuthConstants.CONFIG_PROPS_APPSPECIFIC_EIDAS_NODE_URL, METADATA_PATH);
@@ -536,6 +541,14 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest {
     httpReq.addParameter("SAMLResponse", Base64.getEncoder().encodeToString(
         DomUtils.serializeNode(XMLObjectSupport.getMarshaller(response).marshall(response)).getBytes("UTF-8")));
 
+    //put SimpleEidasData in session
+    final AuthProcessDataWrapper authProcessData = pendingReq.getSessionData(AuthProcessDataWrapper.class);
+    SimpleEidasData eidData = new SimpleEidasData();
+    eidData.setFamilyName("Mustermann");
+    eidData.setGivenName("Max");
+    eidData.setDateOfBirth("1940-01-01");
+    authProcessData.setGenericDataToSession(Constants.DATA_SIMPLE_EIDAS, eidData);
+
     //perform task
     task.execute(pendingReq, executionContext);
 
@@ -579,10 +592,53 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest {
         ExtendedPvpAttributeDefinitions.MANDATE_LEG_PER_SOURCE_PIN_TYPE_NAME, String.class));
   }
 
+  @Test
+  public void httpPostValidSignedAssertionEidValidButNameMissmatch() throws IOException, SamlSigningException,
+      Pvp2MetadataException, CredentialsNotAvailableException, XMLParserException, UnmarshallingException,
+      MarshallingException, TransformerException, TaskExecutionException, EaafStorageException {
+
+    oaParam.putGenericConfigurationKey(
+        IdAustriaClientAuthConstants.CONFIG_PROPS_APPSPECIFIC_EIDAS_NODE_URL, METADATA_PATH);
+
+    metadataProvider.addMetadataResolverIntoChain(metadataFactory.createMetadataProvider(
+        METADATA_PATH, null, "jUnit IDP", null));
+
+    final Response response = initializeResponse(
+        "classpath:/data/idp_metadata_classpath_entity.xml",
+        "/data/Response_with_EID.xml",
+        credentialProvider.getMessageSigningCredential(),
+        true);
+    httpReq.addParameter("SAMLResponse", Base64.getEncoder().encodeToString(
+        DomUtils.serializeNode(XMLObjectSupport.getMarshaller(response).marshall(response)).getBytes("UTF-8")));
+
+    //put SimpleEidasData in session
+    final AuthProcessDataWrapper authProcessData = pendingReq.getSessionData(AuthProcessDataWrapper.class);
+    SimpleEidasData eidData = new SimpleEidasData();
+    eidData.setFamilyName("Mustermann1");
+    eidData.setGivenName("Max");
+    eidData.setDateOfBirth("1940-01-01");
+    authProcessData.setGenericDataToSession(Constants.DATA_SIMPLE_EIDAS, eidData);
+
+    //perform task
+    try {
+      task.execute(pendingReq, executionContext);
+      Assert.fail("Invalid response not detected");
+
+    } catch (final TaskExecutionException e) {
+      Assert.assertNotNull(e.getPendingRequestID());
+      Assert.assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
+      Assert.assertNotNull(e.getOriginalException());
+      org.springframework.util.Assert.isInstanceOf(AuthnResponseValidationException.class,
+          e.getOriginalException());
+      Assert.assertTrue(e.getOriginalException().getCause() instanceof InvalidUserInputException);
+      }
+
+  }
+
   @Test
   public void httpPostValidSignedAssertionLegacyValid() throws IOException, SamlSigningException,
       Pvp2MetadataException, CredentialsNotAvailableException, XMLParserException, UnmarshallingException,
-      MarshallingException, TransformerException, TaskExecutionException {
+      MarshallingException, TransformerException, TaskExecutionException, EaafStorageException {
 //    authConfig.putConfigValue(AuthHandlerConstants.PROP_CONFIG_LEGACY_ALLOW, "true");
     oaParam.putGenericConfigurationKey(
         IdAustriaClientAuthConstants.CONFIG_PROPS_APPSPECIFIC_EIDAS_NODE_URL, METADATA_PATH);
@@ -590,6 +646,14 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest {
     metadataProvider.addMetadataResolverIntoChain(metadataFactory.createMetadataProvider(
         METADATA_PATH, null, "jUnit IDP", null));
 
+    //put SimpleEidasData in session
+    final AuthProcessDataWrapper authProcessData = pendingReq.getSessionData(AuthProcessDataWrapper.class);
+    SimpleEidasData eidData = new SimpleEidasData();
+    eidData.setFamilyName("Mustermann");
+    eidData.setGivenName("Max");
+    eidData.setDateOfBirth("1940-01-01");
+    authProcessData.setGenericDataToSession(Constants.DATA_SIMPLE_EIDAS, eidData);
+
     final Response response = initializeResponse(
         "classpath:/data/idp_metadata_classpath_entity.xml",
         "/data/Response_with_legacy.xml",
@@ -647,7 +711,7 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest {
   @Test
   public void httpPostValidSignedAssertionWithLegacyAndEid() throws IOException, SamlSigningException,
       Pvp2MetadataException, CredentialsNotAvailableException, XMLParserException, UnmarshallingException,
-      MarshallingException, TransformerException, TaskExecutionException {
+      MarshallingException, TransformerException, TaskExecutionException, EaafStorageException {
 
     oaParam.putGenericConfigurationKey(
         IdAustriaClientAuthConstants.CONFIG_PROPS_APPSPECIFIC_EIDAS_NODE_URL, METADATA_PATH);
@@ -655,6 +719,14 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest {
     metadataProvider.addMetadataResolverIntoChain(metadataFactory.createMetadataProvider(
         METADATA_PATH, null, "jUnit IDP", null));
 
+    //put SimpleEidasData in session
+    final AuthProcessDataWrapper authProcessData = pendingReq.getSessionData(AuthProcessDataWrapper.class);
+    SimpleEidasData eidData = new SimpleEidasData();
+    eidData.setFamilyName("Mustermann");
+    eidData.setGivenName("Max");
+    eidData.setDateOfBirth("1940-01-01");
+    authProcessData.setGenericDataToSession(Constants.DATA_SIMPLE_EIDAS, eidData);
+
     final Response response = initializeResponse(
         "classpath:/data/idp_metadata_classpath_entity.xml",
         "/data/Response_with_legacy_and_EID.xml",
-- 
cgit v1.2.3


From eeecdd8e6063298bb6414b9f6a8b0bc4cee2eba4 Mon Sep 17 00:00:00 2001
From: Alexander Marsalek <amarsalek@iaik.tugraz.at>
Date: Fri, 12 Feb 2021 14:31:04 +0100
Subject: tests working, added IdAustriaClientAuthSignalController

---
 .../eidas/v2/dao/SimpleMobileSignatureData.java    |  29 ++--
 .../idaustriaclient/EidasAuthEventConstants.java   |  10 --
 .../IdAustriaClientAuthEventConstants.java         |   7 +
 .../IdAustriaClientAuthSignalController.java       |  95 ++++++++++++++
 ...eSignatureResponseAndSearchInRegistersTask.java |  13 +-
 .../src/main/resources/eidas_v2_auth.beans.xml     |   3 +
 ...natureResponseAndSearchInRegistersTaskTest.java |   5 +-
 .../resources/SpringTest-context_tasks_test.xml    |   2 +
 .../Response_with_wrong_destination_endpoint.xml   |   8 +-
 .../data/idp_metadata_classpath_entity1.xml        | 146 +++++++++++++++++++++
 10 files changed, 278 insertions(+), 40 deletions(-)
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/EidasAuthEventConstants.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthEventConstants.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthSignalController.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/idp_metadata_classpath_entity1.xml

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleMobileSignatureData.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleMobileSignatureData.java
index 254b8c70..2a7beb3b 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleMobileSignatureData.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleMobileSignatureData.java
@@ -23,8 +23,6 @@
 
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.dao;
 
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.WorkflowException;
-import at.gv.e_government.reference.namespace.persondata._20020228.PostalAddressType;
 import lombok.Data;
 
 @Data
@@ -37,30 +35,21 @@ public class SimpleMobileSignatureData {
   private String familyName;
   private String dateOfBirth;
 
-
-  public boolean equalsSimpleEidasData(SimpleEidasData result) {
-    if (!result.getGivenName().equals(givenName)) {
+  /**
+   * Compares the received authentication data from the mobile phone signature with the eid data received via eIDAS.
+   * @param simpleEidasData The extracted eIDAS data
+   * @return Returns true, if the eIDAS data matches the mobile phone signature data and false otherwise.
+   */
+  public boolean equalsSimpleEidasData(SimpleEidasData simpleEidasData) {
+    if (!simpleEidasData.getGivenName().equals(givenName)) {
       return false;
     }
-    if (!result.getFamilyName().equals(familyName)) {
+    if (!simpleEidasData.getFamilyName().equals(familyName)) {
       return false;
     }
-    if (!result.getDateOfBirth().equals(dateOfBirth)) {
+    if (!simpleEidasData.getDateOfBirth().equals(dateOfBirth)) {
       return false;
     }
     return true;
   }
-
-  private boolean equals(String a, String b) {
-    if (a == null && b == null) {
-      return true;
-    }
-    if (a == null) {
-      return false;
-    }
-    if (b == null) {
-      return false;
-    }
-    return a.equals(b);
-  }
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/EidasAuthEventConstants.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/EidasAuthEventConstants.java
deleted file mode 100644
index bca04369..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/EidasAuthEventConstants.java
+++ /dev/null
@@ -1,10 +0,0 @@
-package at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient;
-
-public class EidasAuthEventConstants {
-
-  public static final int AUTHPROCESS_EIDAS_AT_CONNECTOR_SELECTED = 6200;
-  public static final int AUTHPROCESS_EIDAS_AT_CONNECTOR_REQUESTED = 6201;
-  public static final int AUTHPROCESS_EIDAS_AT_CONNECTOR_RECEIVED = 6202;
-  public static final int AUTHPROCESS_EIDAS_AT_CONNECTOR_RECEIVED_ERROR = 6203;
-  public static final int AUTHPROCESS_EIDAS_AT_CONNECTOR_MDS_VALID = 6204;
-}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthEventConstants.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthEventConstants.java
new file mode 100644
index 00000000..03e570fc
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthEventConstants.java
@@ -0,0 +1,7 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient;
+
+public class IdAustriaClientAuthEventConstants {
+
+  public static final int AUTHPROCESS_ID_AUSTRIA_RESPONSE_RECEIVED = 6202;
+  public static final int AUTHPROCESS_ID_AUSTRIA_RESPONSE_RECEIVED_ERROR = 6203;
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthSignalController.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthSignalController.java
new file mode 100644
index 00000000..5906c7b9
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthSignalController.java
@@ -0,0 +1,95 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient;
+
+
+import java.io.IOException;
+
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+
+import org.apache.commons.lang3.StringUtils;
+import org.apache.commons.text.StringEscapeUtils;
+import org.springframework.stereotype.Controller;
+import org.springframework.web.bind.annotation.RequestMapping;
+import org.springframework.web.bind.annotation.RequestMethod;
+
+import at.gv.egiz.eaaf.core.exceptions.EaafException;
+import at.gv.egiz.eaaf.core.impl.idp.controller.AbstractProcessEngineSignalController;
+import lombok.extern.slf4j.Slf4j;
+
+/**
+ * IdAustria client controller that receives the response from national
+ * IdAustria node.
+ *
+ * @author tlenz
+ *
+ */
+@Slf4j
+@Controller
+public class IdAustriaClientAuthSignalController extends AbstractProcessEngineSignalController {
+
+  public static final String HTTP_PARAM_RELAYSTATE = "RelayState";
+
+  /**
+   * Default constructor with logging.
+   *
+   */
+  public IdAustriaClientAuthSignalController() {
+    super();
+    log.debug("Registering servlet " + getClass().getName()
+        + " with mappings '" + IdAustriaClientAuthConstants.ENDPOINT_POST
+        + "' and '" + IdAustriaClientAuthConstants.ENDPOINT_REDIRECT + "'.");
+
+  }
+
+  /**
+   * HTTP end-point for incoming SAML2 Response from ID Austria node.
+   *
+   * @param req HTTP request
+   * @param resp HTTP response
+   * @throws IOException In case of a HTTP communication error
+   * @throws EaafException In case of a state-validation problem
+   */
+  @RequestMapping(value = { IdAustriaClientAuthConstants.ENDPOINT_POST,
+      IdAustriaClientAuthConstants.ENDPOINT_REDIRECT },
+      method = { RequestMethod.POST, RequestMethod.GET })
+  public void performAuthentication(HttpServletRequest req, HttpServletResponse resp)
+      throws IOException, EaafException {
+    signalProcessManagement(req, resp);
+
+  }
+
+  /**
+   * Read the PendingRequestId from SAML2 RelayState parameter.
+   */
+  @Override
+  public String getPendingRequestId(HttpServletRequest request) {
+    String relayState = StringEscapeUtils.escapeHtml4(request.getParameter(HTTP_PARAM_RELAYSTATE));
+    if (StringUtils.isNotEmpty(relayState)) {
+      try {
+        String pendingReqId = transactionStorage.get(relayState, String.class);
+        if (StringUtils.isNotEmpty(pendingReqId)) {
+
+          return pendingReqId;
+
+        } else {
+          log.info("SAML2 RelayState from request is unknown. Can NOT restore session ... ");
+
+        }
+
+      } catch (EaafException e) {
+        log.error("Can NOT map SAML2 RelayState to pendingRequestId", e);
+
+      } finally {
+        transactionStorage.remove(relayState);
+
+      }
+
+    } else {
+      log.info("No SAML2 relaystate. Can NOT restore session ... ");
+
+    }
+
+    return null;
+
+  }
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask.java
index 101e7c29..1dc8befd 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask.java
@@ -31,13 +31,12 @@ import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleMobileSignatur
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernp.IErnpClient;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.InvalidUserInputException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.ManualFixNecessaryException;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.EidasAuthEventConstants;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthEventConstants;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthConstants;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthCredentialProvider;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthMetadataProvider;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.Utils;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.IZmrClient;
-import at.gv.egiz.eaaf.core.api.data.ExtendedPvpAttributeDefinitions;
 import at.gv.egiz.eaaf.core.api.data.PvpAttributeDefinitions;
 import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
 import at.gv.egiz.eaaf.core.exceptions.EaafBuilderException;
@@ -195,8 +194,9 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask extends
         final AssertionAttributeExtractor extractor =
             new AssertionAttributeExtractor(processedMsg.getFirst().getResponse());
 
-        SimpleMobileSignatureData simpleMobileSignatureData = getAuthDataFromInterfederation(extractor, authProcessData);
-        if(!simpleMobileSignatureData.equalsSimpleEidasData(eidData)) {
+        SimpleMobileSignatureData simpleMobileSignatureData =
+            getAuthDataFromInterfederation(extractor, authProcessData);
+        if (!simpleMobileSignatureData.equalsSimpleEidasData(eidData)) {
           //User cheated?
           throw new InvalidUserInputException();//TODO
         }
@@ -273,7 +273,7 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask extends
 
       msg.setSamlMessage(Saml2Utils.asDomDocument(samlResp).getDocumentElement());
       revisionsLogger.logEvent(pendingReq,
-          EidasAuthEventConstants.AUTHPROCESS_EIDAS_AT_CONNECTOR_RECEIVED,
+          IdAustriaClientAuthEventConstants.AUTHPROCESS_ID_AUSTRIA_RESPONSE_RECEIVED,
           samlResp.getID());
       return Pair.newInstance(msg, false);
 
@@ -289,7 +289,7 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask extends
       }
 
       revisionsLogger.logEvent(pendingReq,
-          EidasAuthEventConstants.AUTHPROCESS_EIDAS_AT_CONNECTOR_RECEIVED_ERROR);
+          IdAustriaClientAuthEventConstants.AUTHPROCESS_ID_AUSTRIA_RESPONSE_RECEIVED_ERROR);
       throw new AuthnResponseValidationException(ERROR_PVP_05,
           new Object[]{IdAustriaClientAuthConstants.MODULE_NAME_FOR_LOGGING,
               samlResp.getIssuer().getValue(),
@@ -320,7 +320,6 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask extends
 
     List<String> requiredAttributes = IdAustriaClientAuthConstants.DEFAULT_REQUIRED_PVP_ATTRIBUTE_NAMES;
     SimpleMobileSignatureData simpleMobileSignatureData = new SimpleMobileSignatureData();
-    String bpk = null;
     try {
       // check if all attributes are include
       if (!extractor.containsAllRequiredAttributes(requiredAttributes)) {
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml
index b5001d77..019cb03c 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml
@@ -143,6 +143,9 @@
   <bean id="idAustriaClientAuthMetadataController"
         class="at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthMetadataController" />
 
+  <bean id="idAustriaClientAuthSignalController"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthSignalController" />
+
 
 
 
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest.java
index fbf011b1..550c2f13 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest.java
@@ -68,6 +68,7 @@ import net.shibboleth.utilities.java.support.xml.XMLParserException;
 public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest {
 
   private static final String METADATA_PATH = "classpath:/data/idp_metadata_classpath_entity.xml";
+  private static final String METADATA_PATH1 = "classpath:/data/idp_metadata_classpath_entity1.xml";
   private static final String TEST_SIGNED_AUTHBLOCK = "MIIBbjCCARSgAwIBAgIEXh7TNzAKBggqhkjOPQQDAjA/MQswCQYDVQQG"
       + "EwJBVDENMAsGA1UECgwERUdJWjEOMAwGA1UECwwFalVuaXQxETAPBgNVBAMMCG1ldGFkYXRhMB4XDTIwMDExNTA4NTQxNVoXDTMw"
       + "MDExNDA4NTQxNVowPzELMAkGA1UEBhMCQVQxDTALBgNVBAoMBEVHSVoxDjAMBgNVBAsMBWpVbml0MREwDwYDVQQDDAhtZXRhZGF0"
@@ -328,9 +329,11 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest {
 
     metadataProvider.addMetadataResolverIntoChain(metadataFactory.createMetadataProvider(
         METADATA_PATH, null, "jUnit IDP", null));
+    metadataProvider.addMetadataResolverIntoChain(metadataFactory.createMetadataProvider(
+        METADATA_PATH1, null, "jUnit IDP", null));
 
     final Response response = initializeResponse(
-        "classpath:/data/idp_metadata_classpath_entity.xml1",
+        "classpath:/data/idp_metadata_classpath_entity1.xml",
         "/data/Response_without_sig_classpath_entityid.xml",
         credentialProvider.getMessageSigningCredential(),
         true);
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_tasks_test.xml b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_tasks_test.xml
index df7ce85f..da64d25d 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_tasks_test.xml
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_tasks_test.xml
@@ -128,5 +128,7 @@
   <bean id="idAustriaAuthPvpConfiguration"
         class="at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaAuthPvpConfiguration" />
 
+  <bean id="idAustriaClientAuthSignalController"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthSignalController" />
 
 </beans>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_with_wrong_destination_endpoint.xml b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_with_wrong_destination_endpoint.xml
index cac4c867..c21381d9 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_with_wrong_destination_endpoint.xml
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_with_wrong_destination_endpoint.xml
@@ -1,5 +1,7 @@
 <?xml version="1.0" encoding="UTF-8"?>
-<saml2p:Response xmlns:saml2p="urn:oasis:names:tc:SAML:2.0:protocol" Destination="https://localhost/authhandler/idAustriaSp/post" InResponseTo="_aeebfae3ce681fe3ddcaf213a42f01d3" IssueInstant="2014-03-05T06:39:51.017Z" Version="2.0" xmlns:xs="http://www.w3.org/2001/XMLSchema">
+<saml2p:Response xmlns:saml2p="urn:oasis:names:tc:SAML:2.0:protocol"
+				 Destination="https://localhost/authhandler/idAustriaSp1/post"
+				 InResponseTo="_aeebfae3ce681fe3ddcaf213a42f01d3" IssueInstant="2014-03-05T06:39:51.017Z" Version="2.0" xmlns:xs="http://www.w3.org/2001/XMLSchema">
 	<saml2:Issuer xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">classpath:/data/idp_metadata_classpath_entity.xml</saml2:Issuer>
 	<saml2p:Status>
 		<saml2p:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
@@ -9,7 +11,9 @@
 		<saml2:Subject>
 			<saml2:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:persistent" NameQualifier="urn:publicid:gv.at:cdid+BF">QVGm48cqcM4UcyhDTNGYmVdrIoY=</saml2:NameID>
 			<saml2:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
-				<saml2:SubjectConfirmationData InResponseTo="_aeebfae3ce681fe3ddcaf213a42f01d3" NotOnOrAfter="2014-03-05T06:44:51.017Z" Recipient="https://localhost/authhandler/idAustriaSp/post"/>
+				<saml2:SubjectConfirmationData InResponseTo="_aeebfae3ce681fe3ddcaf213a42f01d3"
+											   NotOnOrAfter="2014-03-05T06:44:51.017Z"
+											   Recipient="https://localhost/authhandler/idAustriaSp1/post"/>
 			</saml2:SubjectConfirmation>
 		</saml2:Subject>
 		<saml2:Conditions NotBefore="2014-03-05T06:39:51.017Z" NotOnOrAfter="2014-03-05T06:44:51.017Z">
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/idp_metadata_classpath_entity1.xml b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/idp_metadata_classpath_entity1.xml
new file mode 100644
index 00000000..cde66c78
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/idp_metadata_classpath_entity1.xml
@@ -0,0 +1,146 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<md:EntityDescriptor
+        xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata"
+        ID="_1a48ec3432f2f3ba6222724a5b06f873"
+        entityID="classpath:/data/idp_metadata_classpath_entity1.xml"
+        validUntil="2045-02-06T08:47:26.211Z">
+    <md:IDPSSODescriptor
+            WantAuthnRequestsSigned="true"
+            protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol">
+        <md:KeyDescriptor use="signing">
+            <ds:KeyInfo
+                    xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
+                <ds:X509Data>
+                    <ds:X509Certificate>MIIDMzCCAhsCBFtIcPowDQYJKoZIhvcNAQELBQAwXjELMAkGA1UEBhMCQVQxDTALBgNVBAoMBEVH
+                        SVoxJDAiBgNVBAsMG2NlbnRyYWwgbmF0aW9uYWwgZUlEQVMgbm9kZTEaMBgGA1UEAwwRQXNzZXJ0
+                        aW9uIHNpZ25pbmcwHhcNMTgwNzEzMDkyOTMwWhcNMjEwNDA3MDkyOTMwWjBeMQswCQYDVQQGEwJB
+                        VDENMAsGA1UECgwERUdJWjEkMCIGA1UECwwbY2VudHJhbCBuYXRpb25hbCBlSURBUyBub2RlMRow
+                        GAYDVQQDDBFBc3NlcnRpb24gc2lnbmluZzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB
+                        AJ5zDYxMPRcz6AHaev1tS46Tq8sdgbGFM56uxk6c7LmMDC+HTzNX/3Q5S/YwSzgL3ue5TSw1ltOf
+                        yMXMZ6D0+buWWcsxGEkQ8M3adKRFdQrEwafzwTA7pguq5WiHOkr4qwR7dLMome9z5cc3LRcwdOPP
+                        gq7ahb5jM3hRqc5xkMWIuvql0NFXPzlHrjDLwy5nIWPOhL5abhVt4YsXbpbjXxFSGkDEAZ32K3EU
+                        LNBr9FSUmJfbrVX9AU2T+BKIwiqXP8e/3UJHgPHQ0l5ljWp5P6u5+tvM21o8sUM4eArRa8BkdRsP
+                        C92GVuASSUz2ZJ3JhAK1cSM8bnvaZVLQtTvPMAcCAwEAATANBgkqhkiG9w0BAQsFAAOCAQEAAp7z
+                        TubWXW6YMpyLSvWBdZiiQ3X66XpSZLZJDIAkoPzEY0DSBp8I5YASIx4JTR5XJt+6MI9acgNIAYW8
+                        DhtRwUMVaRWEtuCrfKhGLWm5KSxnhPcD3lzRZhY4ZcA7dUlirjf6hnqo2TFEmJ9fkM+rxwy1GkDD
+                        7j2YDSOFmSq9/Ud9/IbIfSnRu/lO0dh7iRrmg3y0Y/+plPxYmp4AHqehP11OchTz2FGGHVsSC2Vs
+                        IVBQI6ANZYyOlicgfEEFHA06jP9OnA0EwEFr2P+di9caZg8vfibyzxMGeuf6CY0c0eLHokBCn2W8
+                        vkzvWiER3pozRvCmXFjCVZfRjUunaJf2ow==
+                    </ds:X509Certificate>
+                </ds:X509Data>
+                <ds:X509Data>
+                    <ds:X509Certificate>MIIC+DCCAeCgAwIBAgIEXh7TbTANBgkqhkiG9w0BAQsFADA+MQswCQYDVQQGEwJB
+                        VDENMAsGA1UECgwERUdJWjEOMAwGA1UECwwFalVuaXQxEDAOBgNVBAMMB3NpZ25p
+                        bmcwHhcNMjAwMTE1MDg1NTA5WhcNMjkwMTE0MDg1NTA5WjA+MQswCQYDVQQGEwJB
+                        VDENMAsGA1UECgwERUdJWjEOMAwGA1UECwwFalVuaXQxEDAOBgNVBAMMB3NpZ25p
+                        bmcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCUSiRjnDvPafZfhJ+L
+                        1wM86FKJX3VIAV/8TD9qJ6HOBkn5WwYfpheyCfRb6XVDyIGpO8qnMWAgC17Ngbmh
+                        zj8d8HXNQ2l3uppMv24oUTfXyYhQfZWAghx0sTlRIx/ZmlnduJilx2S53Sa7ruJw
+                        lQcBFXj9h9B8dtyegc86Sx6D9BumP1xU7+mEBk8Gv9rR5Khg0Y7qGfZWB0t4aikg
+                        aupWveVwiGifOOSfR8czqIg9qUpMYfZiTEBTSRmN6sPiNWhd4J0GyAI9Rn5C9jz/
+                        sSlQrxpN+4DXzsqSU5F6gzq3yRux6wyOzDlt2birf21VPQ9HIy4YCjZXwgDWG7AO
+                        821pAgMBAAEwDQYJKoZIhvcNAQELBQADggEBADnwdaxUtQU6SIpYwIb2c0ljTmQi
+                        7ryUcUpNHtK0M0E5Mw5Ex8zwrWbNQZ2sUyc4r07M66iOIqHsYZUQlRYvVKHifDpA
+                        r8TCgD7iGGdB3By8Ou0RaNW+03w1fwmi98CufbHCGvpv0o2KxlejoHZminNdQ79i
+                        bN+01nhocezJQATEQlnwHLiQSjilXpZeLYDk8HbrcUXNRxezN4ChdH+uU54vf+Ux
+                        qcj9QHcmBe1+BM8EXfqS1DbTwZl+NTCnh5OYl8fvIFSOHMBxwFrI4pyY0faxg9Uc
+                        rCogn/oQ+mV1gnVUDaDhvvEnVGZQtrlt7heVId2BeNellVgsrcmdW8j4U9U=
+                    </ds:X509Certificate>
+                </ds:X509Data>
+                <ds:X509Data>
+                    <ds:X509Certificate>MIIBbjCCARSgAwIBAgIEXh7TNzAKBggqhkjOPQQDAjA/MQswCQYDVQQGEwJBVDEN
+                        MAsGA1UECgwERUdJWjEOMAwGA1UECwwFalVuaXQxETAPBgNVBAMMCG1ldGFkYXRh
+                        MB4XDTIwMDExNTA4NTQxNVoXDTMwMDExNDA4NTQxNVowPzELMAkGA1UEBhMCQVQx
+                        DTALBgNVBAoMBEVHSVoxDjAMBgNVBAsMBWpVbml0MREwDwYDVQQDDAhtZXRhZGF0
+                        YTBZMBMGByqGSM49AgEGCCqGSM49AwEHA0IABBdBkaxt31p++aZeP3SmlWITj9SY
+                        O4McV2ccXFsH4X4QMHuKAMUvjxPm1kdU01eTOWdiQX0GpDIBspYMZh8ZKcwwCgYI
+                        KoZIzj0EAwIDSAAwRQIhAJ3QKlk9cd90s+i8y62fvmGF6LtfNO+JvkWqDUBeQImn
+                        AiA2KwFtzO7STAp9MEwQGe0vt0F8mO1ttrLE+rr6YxdwGA==
+                    </ds:X509Certificate>
+                </ds:X509Data>
+            </ds:KeyInfo>
+        </md:KeyDescriptor>
+        <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:persistent
+        </md:NameIDFormat>
+        <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient
+        </md:NameIDFormat>
+        <md:NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified
+        </md:NameIDFormat>
+        <md:SingleSignOnService
+                Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST"
+                Location="https://vidp.gv.at/ms_connector1/pvp/post" />
+        <md:SingleSignOnService
+                Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect"
+                Location="https://vidp.gv.at/ms_connector1/pvp/redirect" />
+        <saml2:Attribute
+                xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion"
+                FriendlyName="BPK" Name="urn:oid:1.2.40.0.10.2.1.1.149"
+                NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" />
+        <saml2:Attribute
+                xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion"
+                FriendlyName="BIRTHDATE" Name="urn:oid:1.2.40.0.10.2.1.1.55"
+                NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" />
+        <saml2:Attribute
+                xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion"
+                FriendlyName="PRINCIPAL-NAME"
+                Name="urn:oid:1.2.40.0.10.2.1.1.261.20"
+                NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" />
+        <saml2:Attribute
+                xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion"
+                FriendlyName="EID-CCS-URL" Name="urn:oid:1.2.40.0.10.2.1.1.261.64"
+                NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" />
+        <saml2:Attribute
+                xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion"
+                FriendlyName="EID-ISSUING-NATION"
+                Name="urn:oid:1.2.40.0.10.2.1.1.261.32"
+                NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" />
+        <saml2:Attribute
+                xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion"
+                FriendlyName="PVP-VERSION" Name="urn:oid:1.2.40.0.10.2.1.1.261.10"
+                NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" />
+        <saml2:Attribute
+                xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion"
+                FriendlyName="EID-SOURCE-PIN"
+                Name="urn:oid:1.2.40.0.10.2.1.1.261.36"
+                NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" />
+        <saml2:Attribute
+                xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion"
+                FriendlyName="GIVEN-NAME" Name="urn:oid:2.5.4.42"
+                NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" />
+        <saml2:Attribute
+                xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion"
+                FriendlyName="EID-SIGNER-CERTIFICATE"
+                Name="urn:oid:1.2.40.0.10.2.1.1.261.66"
+                NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" />
+        <saml2:Attribute
+                xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion"
+                FriendlyName="EID-SECTOR-FOR-IDENTIFIER"
+                Name="urn:oid:1.2.40.0.10.2.1.1.261.34"
+                NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" />
+        <saml2:Attribute
+                xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion"
+                FriendlyName="EID-SOURCE-PIN-TYPE"
+                Name="urn:oid:1.2.40.0.10.2.1.1.261.104"
+                NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" />
+        <saml2:Attribute
+                xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion"
+                FriendlyName="EID-E-ID-TOKEN"
+                Name="urn:oid:1.2.40.0.10.2.1.1.261.39"
+                NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" />
+        <saml2:Attribute
+                xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion"
+                FriendlyName="EID-IDENTITY-LINK"
+                Name="urn:oid:1.2.40.0.10.2.1.1.261.38"
+                NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" />
+        <saml2:Attribute
+                xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion"
+                FriendlyName="EID-CITIZEN-QAA-EIDAS-LEVEL"
+                Name="urn:oid:1.2.40.0.10.2.1.1.261.108"
+                NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" />
+        <saml2:Attribute
+                xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion"
+                FriendlyName="EID-IDENTITY-STATUS-LEVEL"
+                Name="urn:oid:1.2.40.0.10.2.1.1.261.109"
+                NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" />
+    </md:IDPSSODescriptor>
+</md:EntityDescriptor>
-- 
cgit v1.2.3


From faca8b55b133adb7e01d891df1b45d24b7690111 Mon Sep 17 00:00:00 2001
From: Alexander Marsalek <amarsalek@iaik.tugraz.at>
Date: Mon, 15 Feb 2021 10:38:44 +0100
Subject: Constants for GUI endpoints, load values from config, ID Austria
 signal controller

---
 .../v2/idaustriaclient/IdAustriaClientAuthConstants.java   |  1 +
 .../IdAustriaClientAuthMetadataController.java             |  6 +++++-
 .../IdAustriaClientAuthSignalController.java               |  1 +
 .../v2/tasks/GenerateGuiQueryAustrianResidenceTask.java    |  8 ++++----
 .../v2/tasks/GenerateMobilePhoneSignatureRequestTask.java  | 14 +++++++++++---
 5 files changed, 22 insertions(+), 8 deletions(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthConstants.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthConstants.java
index b32b6a2b..8cbfb5f8 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthConstants.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthConstants.java
@@ -34,6 +34,7 @@ public class IdAustriaClientAuthConstants {
   public static final String CONFIG_PROPS_KEYSTORE_NAME = CONFIG_PROPS_PREFIX + "keystore.name";
   public static final String CONFIG_PROPS_KEYSTORE_PATH = CONFIG_PROPS_PREFIX + "keystore.path";
   public static final String CONFIG_PROPS_KEYSTORE_PASSWORD = CONFIG_PROPS_PREFIX + "keystore.password";
+  public static final String CONFIG_PROPS_AUTH_URL = CONFIG_PROPS_PREFIX + "authurl";
   public static final String CONFIG_PROPS_SIGN_METADATA_KEY_PASSWORD = CONFIG_PROPS_PREFIX
       + "metadata.sign.password";
   public static final String CONFIG_PROPS_SIGN_METADATA_ALIAS = CONFIG_PROPS_PREFIX
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthMetadataController.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthMetadataController.java
index b105eb82..00b742dd 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthMetadataController.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthMetadataController.java
@@ -1,6 +1,7 @@
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient;
 
 
+import at.gv.egiz.eaaf.core.api.idp.IConfiguration;
 import at.gv.egiz.eaaf.core.exceptions.EaafException;
 import at.gv.egiz.eaaf.core.impl.idp.controller.AbstractController;
 import at.gv.egiz.eaaf.modules.pvp2.api.IPvp2BasicConfiguration;
@@ -34,6 +35,8 @@ public class IdAustriaClientAuthMetadataController extends AbstractController {
   IdAustriaClientAuthCredentialProvider credentialProvider;
   @Autowired
   IPvp2BasicConfiguration pvpConfiguration;
+  @Autowired
+  private IConfiguration basicConfig;
 
   /**
    * Default construction with logging.
@@ -61,7 +64,8 @@ public class IdAustriaClientAuthMetadataController extends AbstractController {
       EaafException {
     // check PublicURL prefix
     try {
-      final String authUrl = "https://eid.egiz.gv.at/idp/shibboleth";//TODO load from config
+      final String authUrl = basicConfig.getBasicConfiguration(
+          IdAustriaClientAuthConstants.CONFIG_PROPS_AUTH_URL);
 
       // initialize metadata builder configuration
       final IdAustriaClientAuthMetadataConfiguration metadataConfig =
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthSignalController.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthSignalController.java
index 5906c7b9..1aceb88e 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthSignalController.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthSignalController.java
@@ -28,6 +28,7 @@ import lombok.extern.slf4j.Slf4j;
 public class IdAustriaClientAuthSignalController extends AbstractProcessEngineSignalController {
 
   public static final String HTTP_PARAM_RELAYSTATE = "RelayState";
+  public static final String HTTP_PARAM_PENDINGREQUESTID = "pendingid";
 
   /**
    * Default constructor with logging.
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateGuiQueryAustrianResidenceTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateGuiQueryAustrianResidenceTask.java
index a80b8550..02f8c5b7 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateGuiQueryAustrianResidenceTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateGuiQueryAustrianResidenceTask.java
@@ -61,12 +61,12 @@ public class GenerateGuiQueryAustrianResidenceTask extends AbstractAuthServletTa
           basicConfig,
           pendingReq,
           basicConfig.getBasicConfiguration(//TODO
-              MsEidasNodeConstants.PROP_CONFIG_WEBCONTENT_TEMPLATES_OTHER_LOGIN_METHOD_SELECTION,
-              MsEidasNodeConstants.TEMPLATE_HTML_OTHERLOGINMETHODS),
-          MsEidasNodeConstants.ENDPOINT_OTHERLOGINMETHODSELECTION,
+              MsEidasNodeConstants.PROP_CONFIG_WEBCONTENT_TEMPLATES_RESIDENCY,
+              MsEidasNodeConstants.TEMPLATE_HTML_RESIDENCY),
+          MsEidasNodeConstants.ENDPOINT_RESIDENCY_INPUT,
           resourceLoader);
 
-      guiBuilder.build(request, response, config, "Other login methods selection form");
+      guiBuilder.build(request, response, config, "Query Austrian residency");
 
     } catch (final Exception e) {
       log.error("Initial search FAILED.", e);
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateMobilePhoneSignatureRequestTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateMobilePhoneSignatureRequestTask.java
index 76f78a78..b4fe8bd7 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateMobilePhoneSignatureRequestTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateMobilePhoneSignatureRequestTask.java
@@ -30,7 +30,9 @@ import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustri
 import at.gv.egiz.eaaf.core.api.IRequest;
 import at.gv.egiz.eaaf.core.api.data.ExtendedPvpAttributeDefinitions;
 import at.gv.egiz.eaaf.core.api.data.PvpAttributeDefinitions;
+import at.gv.egiz.eaaf.core.api.idp.IConfiguration;
 import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
+import at.gv.egiz.eaaf.core.api.storage.ITransactionStorage;
 import at.gv.egiz.eaaf.core.exceptions.EaafConfigurationException;
 import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
 import at.gv.egiz.eaaf.core.impl.idp.auth.modules.AbstractAuthServletTask;
@@ -74,6 +76,10 @@ public class GenerateMobilePhoneSignatureRequestTask extends AbstractAuthServlet
   IdAustriaClientAuthCredentialProvider credential;
   @Autowired
   IdAustriaClientAuthMetadataProvider metadataService;
+  @Autowired
+  private IConfiguration basicConfig;
+  @Autowired
+  protected ITransactionStorage transactionStorage;
 
   @Override
   public void execute(ExecutionContext executionContext, HttpServletRequest request, HttpServletResponse response)
@@ -82,9 +88,11 @@ public class GenerateMobilePhoneSignatureRequestTask extends AbstractAuthServlet
       log.trace("Starting GenerateMobilePhoneSignatureRequestTask");
       //step 15a
 
-      // get entityID for ms-specific eIDAS node
+      // get entityID for ms-specific ID Austria node
       //TODO load from config
-      final String msNodeEntityID = "classpath:/data/idp_metadata_classpath_entity.xml";
+      final String msNodeEntityID = basicConfig.getBasicConfiguration(
+          IdAustriaClientAuthConstants.CONFIG_PROPS_NODE_ENTITYID);
+      //      final String msNodeEntityID = "classpath:/data/idp_metadata_classpath_entity.xml";
 
       if (StringUtils.isEmpty(msNodeEntityID)) {
         log.info("eIDAS authentication not possible -> NO EntityID for central eIDAS node FOUND!");
@@ -123,7 +131,7 @@ public class GenerateMobilePhoneSignatureRequestTask extends AbstractAuthServlet
        * but encrypted PendingRequestId is much longer.
        */
       String relayState = Random.nextProcessReferenceValue();
-      //      transactionStorage.put(relayState, pendingReq.getPendingRequestId(), -1);
+      transactionStorage.put(relayState, pendingReq.getPendingRequestId(), -1);
 
       // build and transmit AuthnRequest
       authnReqBuilder.buildAuthnRequest(pendingReq, authnReqConfig, relayState, response);
-- 
cgit v1.2.3


From 6017e30de786ab9defab7eaef53ec8da5f606ee9 Mon Sep 17 00:00:00 2001
From: Thomas <>
Date: Fri, 19 Feb 2021 16:14:31 +0100
Subject: refactoring of ID Austria connection client and add/update of jUnit
 tests

---
 .../specific/modules/auth/eidas/v2/Constants.java  |   2 +
 .../EidasAuthenticationSpringResourceProvider.java |   6 +-
 .../v2/config/EidasConnectorMessageSource.java     |  21 +
 .../IdAustriaAuthPvpConfiguration.java             | 121 -----
 .../IdAustriaClientAuthConstants.java              |  55 +-
 .../IdAustriaClientAuthCredentialProvider.java     | 130 -----
 .../IdAustriaClientAuthMetadataConfiguration.java  |  18 +-
 .../IdAustriaClientAuthMetadataController.java     | 118 -----
 .../IdAustriaClientAuthMetadataProvider.java       | 169 ------
 .../IdAustriaClientAuthSignalController.java       |  96 ----
 .../IdAustriaClientAuthMetadataController.java     | 122 +++++
 .../IdAustriaClientAuthSignalController.java       |  95 ++++
 .../IdAustriaClientAuthCredentialProvider.java     | 132 +++++
 .../provider/IdAustriaClientAuthHealthCheck.java   |  56 ++
 .../IdAustriaClientAuthMetadataProvider.java       | 169 ++++++
 .../GenerateMobilePhoneSignatureRequestTask.java   |  91 +---
 ...eSignatureResponseAndSearchInRegistersTask.java | 154 +++---
 .../src/main/resources/eidas_v2_auth.beans.xml     |  60 +--
 .../eidas_v2_auth_ref_impl_config.beans.xml        |  39 ++
 .../messages/eidas_connector_message.properties    |  15 +
 .../config/EidasConnectorMessageSourceTest.java    |  43 ++
 .../IdAustriaAuthSignalControllerTest.java         | 197 +++++++
 .../IdAustriaClientAuthHealthCheckTest.java        | 128 +++++
 .../IdAustriaClientAuthMetadataControllerTest.java |  44 +-
 ...AustriaClientAuthMetadataProviderFirstTest.java | 238 +++++++++
 ...ustriaClientAuthMetadataProviderSecondTest.java |  66 +++
 .../IdAustriaClientCredentialProviderTest.java     | 414 +++++++++++++++
 ...enerateMobilePhoneSignatureRequestTaskTest.java | 245 ++++-----
 ...natureResponseAndSearchInRegistersTaskTest.java | 564 ++++++---------------
 .../resources/SpringTest-context_basic_lazy.xml    |  24 +
 .../SpringTest-context_basic_mapConfig1.xml        |  24 -
 .../resources/SpringTest-context_basic_test.xml    |   3 +
 .../resources/SpringTest-context_basic_test1.xml   |  63 ---
 .../resources/SpringTest-context_tasks_test.xml    | 104 +---
 .../resources/SpringTest-context_tasks_test1.xml   | 149 ------
 .../resources/config/junit_config_1-.properties    | 252 ---------
 .../resources/config/junit_config_1.properties     |  17 +-
 .../src/test/resources/data/Response_with_EID.xml  |   6 +-
 .../data/Response_with_EID_wrong_data.xml          |  46 --
 .../test/resources/data/Response_with_legacy.xml   |  55 --
 .../data/Response_with_legacy_and_EID.xml          |  58 ---
 .../Response_without_sig_classpath_entityid.xml    |   6 +-
 .../data/Response_without_sig_with_error.xml       |   6 +-
 ...sponse_without_sig_with_error_empty_subcode.xml |   6 +-
 .../Response_without_sig_with_error_userstop.xml   |   6 +-
 ...onse_without_sig_with_error_without_subcode.xml |   6 +-
 .../data/idp_metadata_classpath_entity1.xml        | 146 ------
 .../test/resources/data/idp_metadata_no_sig.xml    |  46 ++
 .../test/resources/data/idp_metadata_no_sig2.xml   |  46 ++
 .../resources/data/idp_metadata_sig_notvalid.xml   |  84 +++
 .../data/idp_metadata_sig_valid_wrong_alg.xml      |  74 +++
 .../src/test/resources/data/sp_metadata_junit.xml  |   2 +-
 .../src/test/resources/keystore/pvp.p12            | Bin 0 -> 5494 bytes
 53 files changed, 2437 insertions(+), 2400 deletions(-)
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/config/EidasConnectorMessageSource.java
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaAuthPvpConfiguration.java
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthCredentialProvider.java
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthMetadataController.java
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthMetadataProvider.java
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthSignalController.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/controller/IdAustriaClientAuthMetadataController.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/controller/IdAustriaClientAuthSignalController.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/provider/IdAustriaClientAuthCredentialProvider.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/provider/IdAustriaClientAuthHealthCheck.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/provider/IdAustriaClientAuthMetadataProvider.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth_ref_impl_config.beans.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/messages/eidas_connector_message.properties
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/config/EidasConnectorMessageSourceTest.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/idaustriaclient/IdAustriaAuthSignalControllerTest.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/idaustriaclient/IdAustriaClientAuthHealthCheckTest.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/idaustriaclient/IdAustriaClientAuthMetadataProviderFirstTest.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/idaustriaclient/IdAustriaClientAuthMetadataProviderSecondTest.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/idaustriaclient/IdAustriaClientCredentialProviderTest.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_basic_lazy.xml
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_basic_mapConfig1.xml
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_basic_test1.xml
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_tasks_test1.xml
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/junit_config_1-.properties
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_with_EID_wrong_data.xml
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_with_legacy.xml
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_with_legacy_and_EID.xml
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/idp_metadata_classpath_entity1.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/idp_metadata_no_sig.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/idp_metadata_no_sig2.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/idp_metadata_sig_notvalid.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/idp_metadata_sig_valid_wrong_alg.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/test/resources/keystore/pvp.p12

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java
index b603774b..e7190ab4 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java
@@ -27,6 +27,8 @@ import at.gv.egiz.eaaf.core.api.data.EaafConstants;
 
 public class Constants {
 
+  public static final String ERRORCODE_00 = "module.eidasauth.00";
+  
   public static final String DATA_REQUESTERID = "req_requesterId";
   public static final String DATA_PROVIDERNAME = "req_providerName";
   public static final String DATA_REQUESTED_LOA_LIST = "req_requestedLoA";
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/EidasAuthenticationSpringResourceProvider.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/EidasAuthenticationSpringResourceProvider.java
index 535e4f97..e5b10185 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/EidasAuthenticationSpringResourceProvider.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/EidasAuthenticationSpringResourceProvider.java
@@ -45,8 +45,10 @@ public class EidasAuthenticationSpringResourceProvider implements SpringResource
   public Resource[] getResourcesToLoad() {
     final ClassPathResource eidasAuthConfig = new ClassPathResource("/eidas_v2_auth.beans.xml",
         EidasAuthenticationSpringResourceProvider.class);
-
-    return new Resource[] { eidasAuthConfig };
+    final ClassPathResource eidasRefImplConfig = new ClassPathResource("/eidas_v2_auth_ref_impl_config.beans.xml",
+        EidasAuthenticationSpringResourceProvider.class);
+           
+    return new Resource[] { eidasRefImplConfig, eidasAuthConfig };
   }
 
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/config/EidasConnectorMessageSource.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/config/EidasConnectorMessageSource.java
new file mode 100644
index 00000000..7a9f472a
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/config/EidasConnectorMessageSource.java
@@ -0,0 +1,21 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.config;
+
+import java.util.Arrays;
+import java.util.List;
+
+import at.gv.egiz.eaaf.core.api.logging.IMessageSourceLocation;
+
+/**
+ * Inject eIDAS Connector specific messages into Spring based message-source.
+ * 
+ * @author tlenz
+ *
+ */
+public class EidasConnectorMessageSource implements IMessageSourceLocation {
+
+  @Override
+  public List<String> getMessageSourceLocation() {
+    return Arrays.asList("classpath:/messages/eidas_connector_message");
+  }
+
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaAuthPvpConfiguration.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaAuthPvpConfiguration.java
deleted file mode 100644
index 30c8b65f..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaAuthPvpConfiguration.java
+++ /dev/null
@@ -1,121 +0,0 @@
-package at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient;
-
-import at.gv.egiz.eaaf.core.api.idp.IConfiguration;
-import at.gv.egiz.eaaf.core.exceptions.EaafConfigurationException;
-import at.gv.egiz.eaaf.core.exceptions.EaafException;
-import at.gv.egiz.eaaf.modules.pvp2.api.IPvp2BasicConfiguration;
-import at.gv.egiz.eaaf.modules.pvp2.impl.utils.Saml2Utils;
-import org.apache.commons.lang3.StringUtils;
-import org.opensaml.saml.saml2.metadata.ContactPerson;
-import org.opensaml.saml.saml2.metadata.ContactPersonTypeEnumeration;
-import org.opensaml.saml.saml2.metadata.EmailAddress;
-import org.opensaml.saml.saml2.metadata.GivenName;
-import org.opensaml.saml.saml2.metadata.Organization;
-import org.opensaml.saml.saml2.metadata.OrganizationDisplayName;
-import org.opensaml.saml.saml2.metadata.OrganizationName;
-import org.opensaml.saml.saml2.metadata.OrganizationURL;
-import org.opensaml.saml.saml2.metadata.SurName;
-import org.springframework.beans.factory.annotation.Autowired;
-
-import java.util.Arrays;
-import java.util.List;
-
-public class IdAustriaAuthPvpConfiguration implements IPvp2BasicConfiguration {
-
-  private static final String DEFAULT_XML_LANG = "en";
-
-  @Autowired
-  private IConfiguration basicConfig;
-
-  @Override
-  public String getIdpEntityId(String authUrl) throws EaafException {
-    return authUrl + IdAustriaClientAuthConstants.ENDPOINT_METADATA;
-
-  }
-
-  @Override
-  public String getIdpSsoPostService(String authUrl) throws EaafException {
-    return null;
-
-  }
-
-  @Override
-  public String getIdpSsoRedirectService(String authUrl) throws EaafException {
-    return null;
-
-  }
-
-  @Override
-  public String getIdpSsoSoapService(String extractAuthUrlFromRequest) throws EaafException {
-    return null;
-
-  }
-
-  @Override
-  public List<ContactPerson> getIdpContacts() throws EaafException {
-    final ContactPerson contactPerson = Saml2Utils.createSamlObject(ContactPerson.class);
-    final GivenName givenName = Saml2Utils.createSamlObject(GivenName.class);
-    final SurName surname = Saml2Utils.createSamlObject(SurName.class);
-    final EmailAddress emailAddress = Saml2Utils.createSamlObject(EmailAddress.class);
-
-    givenName.setName(getAndVerifyFromConfiguration(
-        IdAustriaClientAuthConstants.CONFIG_PROPS_METADATA_CONTACT_GIVENNAME));
-    surname.setName(getAndVerifyFromConfiguration(
-        IdAustriaClientAuthConstants.CONFIG_PROPS_METADATA_CONTACT_SURNAME));
-    emailAddress.setAddress(getAndVerifyFromConfiguration(
-        IdAustriaClientAuthConstants.CONFIG_PROPS_METADATA_CONTACT_EMAIL));
-
-    contactPerson.setType(ContactPersonTypeEnumeration.TECHNICAL);
-    contactPerson.setGivenName(givenName);
-    contactPerson.setSurName(surname);
-    contactPerson.getEmailAddresses().add(emailAddress);
-
-    return Arrays.asList(contactPerson);
-
-  }
-
-  @Override
-  public Organization getIdpOrganisation() throws EaafException {
-    final Organization organisation = Saml2Utils.createSamlObject(Organization.class);
-    final OrganizationName orgName = Saml2Utils.createSamlObject(OrganizationName.class);
-    final OrganizationDisplayName orgDisplayName = Saml2Utils.createSamlObject(OrganizationDisplayName.class);
-    final OrganizationURL orgUrl = Saml2Utils.createSamlObject(OrganizationURL.class);
-
-    orgName.setXMLLang(DEFAULT_XML_LANG);
-    orgName.setValue(getAndVerifyFromConfiguration(
-        IdAustriaClientAuthConstants.CONFIG_PROPS_METADATA_ORGANISATION_NAME));
-
-    orgDisplayName.setXMLLang(DEFAULT_XML_LANG);
-    orgDisplayName.setValue(getAndVerifyFromConfiguration(
-        IdAustriaClientAuthConstants.CONFIG_PROPS_METADATA_ORGANISATION_FRIENDLYNAME));
-
-    orgUrl.setXMLLang(DEFAULT_XML_LANG);
-    orgUrl.setValue(getAndVerifyFromConfiguration(
-        IdAustriaClientAuthConstants.CONFIG_PROPS_METADATA_ORGANISATION_URL));
-
-
-    organisation.getOrganizationNames().add(orgName);
-    organisation.getDisplayNames().add(orgDisplayName);
-    organisation.getURLs().add(orgUrl);
-
-    return organisation;
-  }
-
-
-  @Override
-  public IConfiguration getBasicConfiguration() {
-    return basicConfig;
-
-  }
-
-  private String getAndVerifyFromConfiguration(String configKey) throws EaafConfigurationException {
-    final String value = basicConfig.getBasicConfiguration(configKey);
-    if (StringUtils.isEmpty(value)) {
-      throw new EaafConfigurationException("module.eidasauth.00",
-          new Object[]{configKey});
-
-    }
-
-    return value;
-  }
-}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthConstants.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthConstants.java
index 8cbfb5f8..46d0e77d 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthConstants.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthConstants.java
@@ -1,21 +1,24 @@
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient;
 
 
-import at.gv.egiz.eaaf.core.api.data.EaafConstants;
-import at.gv.egiz.eaaf.core.api.data.PvpAttributeDefinitions;
-import at.gv.egiz.eaaf.core.impl.data.Triple;
-
 import java.util.ArrayList;
 import java.util.Collections;
 import java.util.List;
 
+import at.gv.egiz.eaaf.core.api.data.EaafConstants;
+import at.gv.egiz.eaaf.core.api.data.PvpAttributeDefinitions;
+import at.gv.egiz.eaaf.core.impl.data.Triple;
+
 
 public class IdAustriaClientAuthConstants {
 
   private IdAustriaClientAuthConstants() {
 
   }
-
+  
+  public static final String ERRORCODE_02 = "module.eidasauth.idaustria.02";
+  public static final String ERRORCODE_05 = "module.eidasauth.idaustria.05";  
+  
   public static final String SAML2_STATUSCODE_USERSTOP = "1005";
 
   public static final String MODULE_NAME_FOR_LOGGING = "ID Austria Client";
@@ -25,16 +28,15 @@ public class IdAustriaClientAuthConstants {
   //  public static final String HTTP_PARAM_CENTRAL_EIDAS_AUTH_SELECTION =
   //      AuthHandlerConstants.HTTP_PARAM_EIDAS_PROCESS;
 
-  public static final String ENDPOINT_POST = "/idAustriaSp/post";
-  public static final String ENDPOINT_REDIRECT = "/idAustriaSp/redirect";
-  public static final String ENDPOINT_METADATA = "/idAustriaSp/metadata";
+  public static final String ENDPOINT_POST = "/sp/idaustria/post";
+  public static final String ENDPOINT_REDIRECT = "/sp/idaustria/redirect";
+  public static final String ENDPOINT_METADATA = "/sp/idaustria/metadata";
 
   public static final String CONFIG_PROPS_PREFIX = "modules.idaustriaclient.";
   public static final String CONFIG_PROPS_KEYSTORE_TYPE = CONFIG_PROPS_PREFIX + "keystore.type";
   public static final String CONFIG_PROPS_KEYSTORE_NAME = CONFIG_PROPS_PREFIX + "keystore.name";
   public static final String CONFIG_PROPS_KEYSTORE_PATH = CONFIG_PROPS_PREFIX + "keystore.path";
   public static final String CONFIG_PROPS_KEYSTORE_PASSWORD = CONFIG_PROPS_PREFIX + "keystore.password";
-  public static final String CONFIG_PROPS_AUTH_URL = CONFIG_PROPS_PREFIX + "authurl";
   public static final String CONFIG_PROPS_SIGN_METADATA_KEY_PASSWORD = CONFIG_PROPS_PREFIX
       + "metadata.sign.password";
   public static final String CONFIG_PROPS_SIGN_METADATA_ALIAS = CONFIG_PROPS_PREFIX
@@ -57,28 +59,9 @@ public class IdAustriaClientAuthConstants {
       + "required.additional.attributes";
   public static final String CONFIG_PROPS_REQUIRED_LOA = CONFIG_PROPS_PREFIX
       + "required.loa";
-  public static final String CONFIG_PROPS_NODE_ENTITYID = CONFIG_PROPS_PREFIX + "node.entityId";
-  public static final String CONFIG_PROPS_SP_ENTITYID = CONFIG_PROPS_PREFIX + "sp.entityId";
-  public static final String CONFIG_PROPS_NODE_METADATAURL = CONFIG_PROPS_PREFIX + "node.metadataUrl";
-  public static final String CONFIG_PROPS_NODE_TRUSTPROFILEID = CONFIG_PROPS_PREFIX + "node.trustprofileID";
-
-
-  public static final String CONFIG_PROPS_METADATA_CONTACT_GIVENNAME =
-      CONFIG_PROPS_PREFIX + "metadata.contact.givenname";
-  public static final String CONFIG_PROPS_METADATA_CONTACT_SURNAME =
-      CONFIG_PROPS_PREFIX + "metadata.contact.surname";
-  public static final String CONFIG_PROPS_METADATA_CONTACT_EMAIL =
-      CONFIG_PROPS_PREFIX + "metadata.contact.email";
-  public static final String CONFIG_PROPS_METADATA_ORGANISATION_NAME =
-      CONFIG_PROPS_PREFIX + "metadata.organisation.name";
-  public static final String CONFIG_PROPS_METADATA_ORGANISATION_FRIENDLYNAME =
-      CONFIG_PROPS_PREFIX + "metadata.organisation.friendyname";
-  public static final String CONFIG_PROPS_METADATA_ORGANISATION_URL =
-      CONFIG_PROPS_PREFIX + "metadata.organisation.url";
-
-  public static final String CONFIG_PROPS_APPSPECIFIC_EIDAS_NODE_URL = "auth.eidas.node.entityId";
-
-
+  public static final String CONFIG_PROPS_ID_AUSTRIA_ENTITYID = CONFIG_PROPS_PREFIX + "idaustria.idp.entityId";
+  public static final String CONFIG_PROPS_ID_AUSTRIA_METADATAURL = CONFIG_PROPS_PREFIX + "idaustria.idp.metadataUrl";
+  
   public static final String CONFIG_DEFAULT_LOA_EIDAS_LEVEL = EaafConstants.EIDAS_LOA_HIGH;
 
   public static final List<Triple<String, String, Boolean>> DEFAULT_REQUIRED_PVP_ATTRIBUTES =
@@ -105,16 +88,6 @@ public class IdAustriaClientAuthConstants {
           add(Triple.newInstance(PvpAttributeDefinitions.BPK_NAME,
               PvpAttributeDefinitions.BPK_FRIENDLY_NAME, true));
 
-          // entity eID information
-          //          add(Triple.newInstance(ExtendedPvpAttributeDefinitions.EID_EIDBIND_NAME,
-          //              ExtendedPvpAttributeDefinitions.EID_EIDBIND_FRIENDLY_NAME, true));
-          //          add(Triple.newInstance(ExtendedPvpAttributeDefinitions.EID_AUTHBLOCK_SIGNED_NAME,
-          //              ExtendedPvpAttributeDefinitions.EID_AUTHBLOCK_SIGNED_FRIENDLY_NAME, true));
-
-          //request pII transactionId from MS-Connector
-          //          add(Triple.newInstance(ExtendedPvpAttributeDefinitions.EID_PII_TRANSACTION_ID_NAME,
-          //              ExtendedPvpAttributeDefinitions.EID_PII_TRANSACTION_ID_FRIENDLY_NAME, false));
-
         }
       });
 
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthCredentialProvider.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthCredentialProvider.java
deleted file mode 100644
index 2608cad1..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthCredentialProvider.java
+++ /dev/null
@@ -1,130 +0,0 @@
-package at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient;
-
-import at.gv.egiz.eaaf.core.api.idp.IConfiguration;
-import at.gv.egiz.eaaf.core.exceptions.EaafConfigurationException;
-import at.gv.egiz.eaaf.core.impl.credential.KeyStoreConfiguration;
-import at.gv.egiz.eaaf.core.impl.credential.KeyStoreConfiguration.KeyStoreType;
-import at.gv.egiz.eaaf.modules.pvp2.impl.utils.AbstractCredentialProvider;
-
-import org.springframework.beans.factory.annotation.Autowired;
-
-/**
- * Credential provider for eIDAS PVP S-Profile client.
- *
- * @author tlenz
- *
- */
-public class IdAustriaClientAuthCredentialProvider extends AbstractCredentialProvider {
-
-  @Autowired
-  IConfiguration authConfig;
-
-  private static final String FRIENDLYNAME = "ID Austria authentication";
-
-  @Override
-  public KeyStoreConfiguration getBasicKeyStoreConfig() throws EaafConfigurationException {
-    final KeyStoreConfiguration keyStoreConfig = new KeyStoreConfiguration();
-    keyStoreConfig.setFriendlyName(FRIENDLYNAME);
-    keyStoreConfig.setKeyStoreType(
-        authConfig.getBasicConfiguration(IdAustriaClientAuthConstants.CONFIG_PROPS_KEYSTORE_TYPE,
-            KeyStoreType.PKCS12.getKeyStoreType()));
-    keyStoreConfig.setKeyStoreName(
-        authConfig.getBasicConfiguration(IdAustriaClientAuthConstants.CONFIG_PROPS_KEYSTORE_NAME));
-    keyStoreConfig.setSoftKeyStoreFilePath(getKeyStoreFilePath());
-    keyStoreConfig.setSoftKeyStorePassword(
-        authConfig.getBasicConfiguration(IdAustriaClientAuthConstants.CONFIG_PROPS_KEYSTORE_PASSWORD));
-
-    return keyStoreConfig;
-
-  }
-
-  private String getKeyStoreFilePath() throws EaafConfigurationException {
-    final String path = authConfig.getBasicConfiguration(
-        IdAustriaClientAuthConstants.CONFIG_PROPS_KEYSTORE_PATH);
-    if (path == null) {
-      throw new EaafConfigurationException("module.eidasauth.00",
-          new Object[] { IdAustriaClientAuthConstants.CONFIG_PROPS_KEYSTORE_PATH });
-
-    }
-    return path;
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see
-   * at.gv.egovernment.moa.id.protocols.pvp2x.signer.AbstractCredentialProvider#
-   * getMetadataKeyAlias()
-   */
-  @Override
-  public String getMetadataKeyAlias() {
-    return authConfig.getBasicConfiguration(
-        IdAustriaClientAuthConstants.CONFIG_PROPS_SIGN_METADATA_ALIAS);
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see
-   * at.gv.egovernment.moa.id.protocols.pvp2x.signer.AbstractCredentialProvider#
-   * getMetadataKeyPassword()
-   */
-  @Override
-  public String getMetadataKeyPassword() {
-    return authConfig.getBasicConfiguration(
-        IdAustriaClientAuthConstants.CONFIG_PROPS_SIGN_METADATA_KEY_PASSWORD);
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see
-   * at.gv.egovernment.moa.id.protocols.pvp2x.signer.AbstractCredentialProvider#
-   * getSignatureKeyAlias()
-   */
-  @Override
-  public String getSignatureKeyAlias() {
-    return authConfig.getBasicConfiguration(
-        IdAustriaClientAuthConstants.CONFIG_PROPS_SIGN_SIGNING_ALIAS);
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see
-   * at.gv.egovernment.moa.id.protocols.pvp2x.signer.AbstractCredentialProvider#
-   * getSignatureKeyPassword()
-   */
-  @Override
-  public String getSignatureKeyPassword() {
-    return authConfig.getBasicConfiguration(
-        IdAustriaClientAuthConstants.CONFIG_PROPS_SIGN_SIGNING_KEY_PASSWORD);
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see
-   * at.gv.egovernment.moa.id.protocols.pvp2x.signer.AbstractCredentialProvider#
-   * getEncryptionKeyAlias()
-   */
-  @Override
-  public String getEncryptionKeyAlias() {
-    return authConfig.getBasicConfiguration(
-        IdAustriaClientAuthConstants.CONFIG_PROPS_ENCRYPTION_ALIAS);
-  }
-
-  /*
-   * (non-Javadoc)
-   *
-   * @see
-   * at.gv.egovernment.moa.id.protocols.pvp2x.signer.AbstractCredentialProvider#
-   * getEncryptionKeyPassword()
-   */
-  @Override
-  public String getEncryptionKeyPassword() {
-    return authConfig.getBasicConfiguration(
-        IdAustriaClientAuthConstants.CONFIG_PROPS_ENCRYPTION_KEY_PASSWORD);
-  }
-
-}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthMetadataConfiguration.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthMetadataConfiguration.java
index 4e7f86f1..4527ced4 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthMetadataConfiguration.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthMetadataConfiguration.java
@@ -8,6 +8,14 @@ import java.util.HashMap;
 import java.util.List;
 import java.util.Map;
 
+import org.opensaml.saml.saml2.core.Attribute;
+import org.opensaml.saml.saml2.core.NameIDType;
+import org.opensaml.saml.saml2.metadata.ContactPerson;
+import org.opensaml.saml.saml2.metadata.Organization;
+import org.opensaml.saml.saml2.metadata.RequestedAttribute;
+import org.opensaml.security.credential.Credential;
+
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.provider.IdAustriaClientAuthCredentialProvider;
 import at.gv.egiz.eaaf.core.exceptions.EaafException;
 import at.gv.egiz.eaaf.core.impl.data.Pair;
 import at.gv.egiz.eaaf.core.impl.data.Triple;
@@ -16,14 +24,6 @@ import at.gv.egiz.eaaf.modules.pvp2.api.credential.EaafX509Credential;
 import at.gv.egiz.eaaf.modules.pvp2.api.metadata.IPvpMetadataBuilderConfiguration;
 import at.gv.egiz.eaaf.modules.pvp2.exception.CredentialsNotAvailableException;
 import at.gv.egiz.eaaf.modules.pvp2.impl.builder.PvpAttributeBuilder;
-
-import org.opensaml.saml.saml2.core.Attribute;
-import org.opensaml.saml.saml2.core.NameIDType;
-import org.opensaml.saml.saml2.metadata.ContactPerson;
-import org.opensaml.saml.saml2.metadata.Organization;
-import org.opensaml.saml.saml2.metadata.RequestedAttribute;
-import org.opensaml.security.credential.Credential;
-
 import lombok.extern.slf4j.Slf4j;
 
 /**
@@ -357,7 +357,7 @@ public class IdAustriaClientAuthMetadataConfiguration implements IPvpMetadataBui
     final Map<String, RequestedAttribute> requestedAttributes = new HashMap<>();
 
 
-    log.trace("Build required attributes for E-ID operaton ... ");
+    log.trace("Build required attributes for ID Austria operaton ... ");
     injectDefinedAttributes(requestedAttributes,
         IdAustriaClientAuthConstants.DEFAULT_REQUIRED_PVP_ATTRIBUTES);
 
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthMetadataController.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthMetadataController.java
deleted file mode 100644
index 00b742dd..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthMetadataController.java
+++ /dev/null
@@ -1,118 +0,0 @@
-package at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient;
-
-
-import at.gv.egiz.eaaf.core.api.idp.IConfiguration;
-import at.gv.egiz.eaaf.core.exceptions.EaafException;
-import at.gv.egiz.eaaf.core.impl.idp.controller.AbstractController;
-import at.gv.egiz.eaaf.modules.pvp2.api.IPvp2BasicConfiguration;
-import at.gv.egiz.eaaf.modules.pvp2.impl.builder.PvpMetadataBuilder;
-import com.google.common.net.MediaType;
-import lombok.extern.slf4j.Slf4j;
-import org.springframework.beans.factory.annotation.Autowired;
-import org.springframework.stereotype.Controller;
-import org.springframework.web.bind.annotation.RequestMapping;
-import org.springframework.web.bind.annotation.RequestMethod;
-
-import javax.servlet.http.HttpServletRequest;
-import javax.servlet.http.HttpServletResponse;
-import java.io.IOException;
-
-/**
- * Controller that generates SAML2 metadata for eIDAS authentication client.
- *
- * @author tlenz
- *
- */
-@Slf4j
-@Controller
-public class IdAustriaClientAuthMetadataController extends AbstractController {
-
-  //private static final String ERROR_CODE_INTERNAL_00 = "eaaf.core.00";
-
-  @Autowired
-  PvpMetadataBuilder metadatabuilder;
-  @Autowired
-  IdAustriaClientAuthCredentialProvider credentialProvider;
-  @Autowired
-  IPvp2BasicConfiguration pvpConfiguration;
-  @Autowired
-  private IConfiguration basicConfig;
-
-  /**
-   * Default construction with logging.
-   *
-   */
-  public IdAustriaClientAuthMetadataController() {
-    super();
-    log.debug("Registering servlet " + getClass().getName()
-        + " with mappings '" + IdAustriaClientAuthConstants.ENDPOINT_METADATA
-        + "'.");
-
-  }
-
-  /**
-   * End-point that produce PVP2 metadata for eIDAS authentication client.
-   *
-   * @param req  http Request
-   * @param resp http Response
-   * @throws IOException   In case of an I/O error
-   * @throws EaafException In case of a metadata generation error
-   */
-  @RequestMapping(value = IdAustriaClientAuthConstants.ENDPOINT_METADATA,
-      method = { RequestMethod.GET })
-  public void getSpMetadata(HttpServletRequest req, HttpServletResponse resp) throws IOException,
-      EaafException {
-    // check PublicURL prefix
-    try {
-      final String authUrl = basicConfig.getBasicConfiguration(
-          IdAustriaClientAuthConstants.CONFIG_PROPS_AUTH_URL);
-
-      // initialize metadata builder configuration
-      final IdAustriaClientAuthMetadataConfiguration metadataConfig =
-          new IdAustriaClientAuthMetadataConfiguration(authUrl, credentialProvider, pvpConfiguration);
-      // metadataConfig.setAdditionalRequiredAttributes(getAdditionalRequiredAttributes());
-
-      // build metadata
-      final String xmlMetadata = metadatabuilder.buildPvpMetadata(metadataConfig);
-
-      // write response
-      final byte[] content = xmlMetadata.getBytes("UTF-8");
-      resp.setStatus(HttpServletResponse.SC_OK);
-      resp.setContentLength(content.length);
-      resp.setContentType(MediaType.XML_UTF_8.toString());
-      resp.getOutputStream().write(content);
-
-    } catch (final Exception e) {
-      log.warn("Build federated-authentication PVP metadata FAILED.", e);
-      protAuthService.handleErrorNoRedirect(e, req, resp, false);
-
-    }
-
-  }
-
-
-  //  private List<Pair<String, Boolean>> getAdditionalRequiredAttributes() {
-  //    final List<Pair<String, Boolean>> result = new ArrayList<>();
-  //
-  //    // load attributes from configuration
-  //    final Map<String, String> addReqAttributes = authConfig.getBasicConfigurationWithPrefix(
-  //        IdAustriaClientAuthConstants.CONFIG_PROPS_REQUIRED_PVP_ATTRIBUTES_LIST);
-  //    for (final String el : addReqAttributes.values()) {
-  //      if (StringUtils.isNotEmpty(el)) {
-  //        log.trace("Parse additional attr. definition: " + el);
-  //        final List<String> attr = KeyValueUtils.getListOfCsvValues(el.trim());
-  //        if (attr.size() == 2) {
-  //          result.add(Pair.newInstance(attr.get(0), Boolean.parseBoolean(attr.get(1))));
-  //
-  //        } else {
-  //          log.info("IGNORE additional attr. definition: " + el
-  //              + " Reason: Format not valid");
-  //        }
-  //      }
-  //    }
-  //
-  //    return result;
-  //
-  //  }
-
-}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthMetadataProvider.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthMetadataProvider.java
deleted file mode 100644
index 46278ad8..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthMetadataProvider.java
+++ /dev/null
@@ -1,169 +0,0 @@
-package at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient;
-
-import java.io.IOException;
-import java.security.KeyStore;
-import java.security.Provider;
-import java.security.cert.CertificateException;
-import java.text.MessageFormat;
-import java.util.ArrayList;
-import java.util.Collections;
-import java.util.List;
-
-import javax.annotation.PostConstruct;
-
-import at.gv.egiz.eaaf.core.api.idp.IConfiguration;
-import at.gv.egiz.eaaf.core.exceptions.EaafConfigurationException;
-import at.gv.egiz.eaaf.core.exceptions.EaafException;
-import at.gv.egiz.eaaf.core.impl.credential.EaafKeyStoreFactory;
-import at.gv.egiz.eaaf.core.impl.credential.KeyStoreConfiguration;
-import at.gv.egiz.eaaf.core.impl.credential.KeyStoreConfiguration.KeyStoreType;
-import at.gv.egiz.eaaf.core.impl.data.Pair;
-import at.gv.egiz.eaaf.core.impl.http.IHttpClientFactory;
-import at.gv.egiz.eaaf.modules.pvp2.exception.Pvp2MetadataException;
-import at.gv.egiz.eaaf.modules.pvp2.impl.metadata.AbstractChainingMetadataProvider;
-import at.gv.egiz.eaaf.modules.pvp2.impl.metadata.PvpMetadataResolverFactory;
-import at.gv.egiz.eaaf.modules.pvp2.impl.validation.metadata.SchemaValidationFilter;
-import at.gv.egiz.eaaf.modules.pvp2.impl.validation.metadata.SimpleMetadataSignatureVerificationFilter;
-
-import org.apache.commons.lang3.StringUtils;
-import org.opensaml.saml.metadata.resolver.MetadataResolver;
-import org.opensaml.saml.metadata.resolver.filter.MetadataFilter;
-import org.opensaml.saml.metadata.resolver.filter.MetadataFilterChain;
-import org.springframework.beans.factory.annotation.Autowired;
-
-import lombok.extern.slf4j.Slf4j;
-
-/**
- * SAML2 metadata-provider implementation for eIDAS client.
- *
- * @author tlenz
- *
- */
-@Slf4j
-public class IdAustriaClientAuthMetadataProvider extends AbstractChainingMetadataProvider {
-
-  private static final String FRIENDLYNAME_METADATA_TRUSTSTORE = "'eIDAS_client metadata truststore'";
-  private static final String PROVIDER_ID_PATTERN = "eIDAS resolver: {0}";
-  public static final String PROVIDER_ID = "'eIDAS_client metadata provider'";
-
-  @Autowired
-  private IConfiguration basicConfig;
-
-  @Autowired
-  private PvpMetadataResolverFactory metadataProviderFactory;
-  @Autowired
-  private IHttpClientFactory httpClientFactory;
-
-  @Autowired
-  private EaafKeyStoreFactory keyStoreFactory;
-
-  private Pair<KeyStore, Provider> metadataSigningTrustStore;
-
-  @Override
-  protected String getMetadataUrl(String entityId) throws EaafConfigurationException {
-    log.trace("eIDAS Auth. uses SAML2 well-known location approach. EntityId is Metadata-URL");
-    return entityId;
-
-  }
-
-  @Override
-  protected MetadataResolver createNewMetadataProvider(String entityId) throws EaafConfigurationException,
-      IOException, CertificateException {
-    final List<MetadataFilter> filterList = new ArrayList<>();
-    filterList.add(new SchemaValidationFilter(true));
-    filterList.add(new SimpleMetadataSignatureVerificationFilter(
-        metadataSigningTrustStore.getFirst(), entityId));
-
-    final MetadataFilterChain filter = new MetadataFilterChain();
-    filter.setFilters(filterList);
-
-    try {
-      return metadataProviderFactory.createMetadataProvider(getMetadataUrl(entityId),
-          filter,
-          MessageFormat.format(PROVIDER_ID_PATTERN, entityId),
-          httpClientFactory.getHttpClient());
-
-    } catch (final Pvp2MetadataException e) {
-      log.info("Can NOT build metadata provider for entityId: {}", entityId);
-      throw new EaafConfigurationException("module.eidasauth.04",
-          new Object[] { entityId, e.getMessage() }, e);
-
-    }
-  }
-
-  @Override
-  protected List<String> getAllMetadataUrlsFromConfiguration() throws EaafConfigurationException {
-    return Collections.emptyList();
-
-  }
-
-  @Override
-  protected String getMetadataProviderId() {
-    return PROVIDER_ID;
-
-  }
-
-  @Override
-  public void runGarbageCollector() {
-    log.trace("Garbage collection is NOT supported by: {}", getId());
-  }
-
-  @Override
-  public void doDestroy() {
-    super.fullyDestroy();
-
-  }
-
-  @PostConstruct
-  private void initialize() throws EaafException {
-    // initialize truststore to validate metadata signing certificates
-    initializeTrustStore();
-
-    // load metadata with metadataURL, as backup
-    initializeFileSystemMetadata();
-
-  }
-
-  private void initializeFileSystemMetadata() {
-    try {
-      final String metadataUrl = basicConfig.getBasicConfiguration(
-          IdAustriaClientAuthConstants.CONFIG_PROPS_NODE_METADATAURL);
-      if (StringUtils.isNotEmpty(metadataUrl)) {
-        log.info("Use not recommended metadata-provider initialization!"
-            + " SAML2 'Well-Known-Location' is the preferred methode.");
-        log.info("Initialize 'ms-specific eIDAS node' metadata-provider with URL: {}", metadataUrl);
-
-        addMetadataResolverIntoChain(createNewMetadataProvider(metadataUrl));
-      }
-
-    } catch (final EaafConfigurationException | CertificateException | IOException e) {
-      log.warn("Can NOT inject static eIDAS Node metadata-soure.", e);
-      log.warn("eIDAS Node communication can be FAIL.");
-
-    }
-  }
-
-  private void initializeTrustStore() throws EaafException {
-    // set configuration
-    final KeyStoreConfiguration trustStoreConfig = new KeyStoreConfiguration();
-    trustStoreConfig.setFriendlyName(FRIENDLYNAME_METADATA_TRUSTSTORE);
-    trustStoreConfig.setKeyStoreType(basicConfig.getBasicConfiguration(
-        IdAustriaClientAuthConstants.CONFIG_PROPS_TRUSTSTORE_TYPE,
-        KeyStoreType.JKS.getKeyStoreType()));
-    trustStoreConfig.setKeyStoreName(basicConfig.getBasicConfiguration(
-        IdAustriaClientAuthConstants.CONFIG_PROPS_TRUSTSTORE_NAME));
-    trustStoreConfig.setSoftKeyStoreFilePath(basicConfig.getBasicConfiguration(
-        IdAustriaClientAuthConstants.CONFIG_PROPS_TRUSTSTORE_PATH));
-    trustStoreConfig.setSoftKeyStorePassword(basicConfig.getBasicConfiguration(
-        IdAustriaClientAuthConstants.CONFIG_PROPS_TRUSTSTORE_PASSWORD));
-
-    // validate configuration
-    trustStoreConfig.validate();
-
-    // open new TrustStore
-    metadataSigningTrustStore = keyStoreFactory.buildNewKeyStore(trustStoreConfig);
-
-  }
-
-}
-
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthSignalController.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthSignalController.java
deleted file mode 100644
index 1aceb88e..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/IdAustriaClientAuthSignalController.java
+++ /dev/null
@@ -1,96 +0,0 @@
-package at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient;
-
-
-import java.io.IOException;
-
-import javax.servlet.http.HttpServletRequest;
-import javax.servlet.http.HttpServletResponse;
-
-import org.apache.commons.lang3.StringUtils;
-import org.apache.commons.text.StringEscapeUtils;
-import org.springframework.stereotype.Controller;
-import org.springframework.web.bind.annotation.RequestMapping;
-import org.springframework.web.bind.annotation.RequestMethod;
-
-import at.gv.egiz.eaaf.core.exceptions.EaafException;
-import at.gv.egiz.eaaf.core.impl.idp.controller.AbstractProcessEngineSignalController;
-import lombok.extern.slf4j.Slf4j;
-
-/**
- * IdAustria client controller that receives the response from national
- * IdAustria node.
- *
- * @author tlenz
- *
- */
-@Slf4j
-@Controller
-public class IdAustriaClientAuthSignalController extends AbstractProcessEngineSignalController {
-
-  public static final String HTTP_PARAM_RELAYSTATE = "RelayState";
-  public static final String HTTP_PARAM_PENDINGREQUESTID = "pendingid";
-
-  /**
-   * Default constructor with logging.
-   *
-   */
-  public IdAustriaClientAuthSignalController() {
-    super();
-    log.debug("Registering servlet " + getClass().getName()
-        + " with mappings '" + IdAustriaClientAuthConstants.ENDPOINT_POST
-        + "' and '" + IdAustriaClientAuthConstants.ENDPOINT_REDIRECT + "'.");
-
-  }
-
-  /**
-   * HTTP end-point for incoming SAML2 Response from ID Austria node.
-   *
-   * @param req HTTP request
-   * @param resp HTTP response
-   * @throws IOException In case of a HTTP communication error
-   * @throws EaafException In case of a state-validation problem
-   */
-  @RequestMapping(value = { IdAustriaClientAuthConstants.ENDPOINT_POST,
-      IdAustriaClientAuthConstants.ENDPOINT_REDIRECT },
-      method = { RequestMethod.POST, RequestMethod.GET })
-  public void performAuthentication(HttpServletRequest req, HttpServletResponse resp)
-      throws IOException, EaafException {
-    signalProcessManagement(req, resp);
-
-  }
-
-  /**
-   * Read the PendingRequestId from SAML2 RelayState parameter.
-   */
-  @Override
-  public String getPendingRequestId(HttpServletRequest request) {
-    String relayState = StringEscapeUtils.escapeHtml4(request.getParameter(HTTP_PARAM_RELAYSTATE));
-    if (StringUtils.isNotEmpty(relayState)) {
-      try {
-        String pendingReqId = transactionStorage.get(relayState, String.class);
-        if (StringUtils.isNotEmpty(pendingReqId)) {
-
-          return pendingReqId;
-
-        } else {
-          log.info("SAML2 RelayState from request is unknown. Can NOT restore session ... ");
-
-        }
-
-      } catch (EaafException e) {
-        log.error("Can NOT map SAML2 RelayState to pendingRequestId", e);
-
-      } finally {
-        transactionStorage.remove(relayState);
-
-      }
-
-    } else {
-      log.info("No SAML2 relaystate. Can NOT restore session ... ");
-
-    }
-
-    return null;
-
-  }
-}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/controller/IdAustriaClientAuthMetadataController.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/controller/IdAustriaClientAuthMetadataController.java
new file mode 100644
index 00000000..1e4b27f7
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/controller/IdAustriaClientAuthMetadataController.java
@@ -0,0 +1,122 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.controller;
+
+
+import java.io.IOException;
+import java.net.MalformedURLException;
+import java.net.URL;
+
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.stereotype.Controller;
+import org.springframework.web.bind.annotation.RequestMapping;
+import org.springframework.web.bind.annotation.RequestMethod;
+
+import com.google.common.net.MediaType;
+
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthConstants;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthMetadataConfiguration;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.provider.IdAustriaClientAuthCredentialProvider;
+import at.gv.egiz.eaaf.core.exceptions.EaafAuthenticationException;
+import at.gv.egiz.eaaf.core.exceptions.EaafException;
+import at.gv.egiz.eaaf.core.impl.http.HttpUtils;
+import at.gv.egiz.eaaf.core.impl.idp.controller.AbstractController;
+import at.gv.egiz.eaaf.modules.pvp2.api.IPvp2BasicConfiguration;
+import at.gv.egiz.eaaf.modules.pvp2.impl.builder.PvpMetadataBuilder;
+import lombok.extern.slf4j.Slf4j;
+
+/**
+ * Controller that generates SAML2 metadata for eIDAS authentication client.
+ *
+ * @author tlenz
+ *
+ */
+@Slf4j
+@Controller
+public class IdAustriaClientAuthMetadataController extends AbstractController {
+
+  private static final String ERROR_CODE_INTERNAL_00 = "eaaf.core.00";
+
+  @Autowired
+  PvpMetadataBuilder metadatabuilder;
+  @Autowired
+  IdAustriaClientAuthCredentialProvider credentialProvider;
+  @Autowired
+  IPvp2BasicConfiguration pvpConfiguration;
+
+  /**
+   * Default construction with logging.
+   *
+   */
+  public IdAustriaClientAuthMetadataController() {
+    super();
+    log.debug("Registering servlet " + getClass().getName()
+        + " with mappings '" + IdAustriaClientAuthConstants.ENDPOINT_METADATA
+        + "'.");
+
+  }
+
+  /**
+   * End-point that produce PVP2 metadata for eIDAS authentication client.
+   *
+   * @param req  http Request
+   * @param resp http Response
+   * @throws IOException   In case of an I/O error
+   * @throws EaafException In case of a metadata generation error
+   */
+  @RequestMapping(value = IdAustriaClientAuthConstants.ENDPOINT_METADATA,
+      method = { RequestMethod.GET })
+  public void getSpMetadata(HttpServletRequest req, HttpServletResponse resp) throws IOException,
+      EaafException {
+    // check PublicURL prefix
+    try {
+      final String authUrl = getAuthUrlFromHttpContext(req);
+
+      // initialize metadata builder configuration
+      final IdAustriaClientAuthMetadataConfiguration metadataConfig =
+          new IdAustriaClientAuthMetadataConfiguration(authUrl, credentialProvider, pvpConfiguration);
+      // metadataConfig.setAdditionalRequiredAttributes(getAdditionalRequiredAttributes());
+
+      // build metadata
+      final String xmlMetadata = metadatabuilder.buildPvpMetadata(metadataConfig);
+
+      // write response
+      final byte[] content = xmlMetadata.getBytes("UTF-8");
+      resp.setStatus(HttpServletResponse.SC_OK);
+      resp.setContentLength(content.length);
+      resp.setContentType(MediaType.XML_UTF_8.toString());
+      resp.getOutputStream().write(content);
+
+    } catch (final Exception e) {
+      log.warn("Build federated-authentication PVP metadata FAILED.", e);
+      protAuthService.handleErrorNoRedirect(e, req, resp, false);
+
+    }
+
+  }
+
+  private String getAuthUrlFromHttpContext(HttpServletRequest req) throws EaafException {
+    // check if End-Point is valid
+    final String authUrlString = HttpUtils.extractAuthUrlFromRequest(req);
+    URL authReqUrl;
+    try {
+      authReqUrl = new URL(authUrlString);
+
+    } catch (final MalformedURLException e) {
+      log.warn("Requested URL: {} is not a valid URL.", authUrlString);
+      throw new EaafAuthenticationException(ERROR_CODE_INTERNAL_00, new Object[] { authUrlString }, e);
+
+    }
+
+    final String idpAuthUrl = authConfig.validateIdpUrl(authReqUrl);
+    if (idpAuthUrl == null) {
+      log.warn("Requested URL: {} is NOT found in configuration.", authReqUrl);
+      throw new EaafAuthenticationException(ERROR_CODE_INTERNAL_00, new Object[] { authUrlString });
+
+    }
+
+    return idpAuthUrl;
+  }
+
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/controller/IdAustriaClientAuthSignalController.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/controller/IdAustriaClientAuthSignalController.java
new file mode 100644
index 00000000..eca21683
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/controller/IdAustriaClientAuthSignalController.java
@@ -0,0 +1,95 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.controller;
+
+
+import java.io.IOException;
+
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+
+import org.apache.commons.lang3.StringUtils;
+import org.apache.commons.text.StringEscapeUtils;
+import org.springframework.stereotype.Controller;
+import org.springframework.web.bind.annotation.RequestMapping;
+import org.springframework.web.bind.annotation.RequestMethod;
+
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthConstants;
+import at.gv.egiz.eaaf.core.exceptions.EaafException;
+import at.gv.egiz.eaaf.core.impl.idp.controller.AbstractProcessEngineSignalController;
+import lombok.extern.slf4j.Slf4j;
+
+/**
+ * IdAustria client controller that receives the response from ID Austria system.
+ *
+ * @author tlenz
+ *
+ */
+@Slf4j
+@Controller
+public class IdAustriaClientAuthSignalController extends AbstractProcessEngineSignalController {
+
+  public static final String HTTP_PARAM_RELAYSTATE = "RelayState";
+
+  /**
+   * Default constructor with logging.
+   *
+   */
+  public IdAustriaClientAuthSignalController() {
+    super();
+    log.debug("Registering servlet " + getClass().getName()
+        + " with mappings '" + IdAustriaClientAuthConstants.ENDPOINT_POST
+        + "' and '" + IdAustriaClientAuthConstants.ENDPOINT_REDIRECT + "'.");
+
+  }
+
+  /**
+   * HTTP end-point for incoming SAML2 Response from ID Austria system.
+   *
+   * @param req HTTP request
+   * @param resp HTTP response
+   * @throws IOException In case of a HTTP communication error
+   * @throws EaafException In case of a state-validation problem
+   */
+  @RequestMapping(value = { IdAustriaClientAuthConstants.ENDPOINT_POST,
+      IdAustriaClientAuthConstants.ENDPOINT_REDIRECT },
+      method = { RequestMethod.POST, RequestMethod.GET })
+  public void performAuthentication(HttpServletRequest req, HttpServletResponse resp)
+      throws IOException, EaafException {
+    signalProcessManagement(req, resp);
+
+  }
+
+  /**
+   * Read the PendingRequestId from SAML2 RelayState parameter.
+   */
+  @Override
+  public String getPendingRequestId(HttpServletRequest request) {
+    String relayState = StringEscapeUtils.escapeHtml4(request.getParameter(HTTP_PARAM_RELAYSTATE));
+    if (StringUtils.isNotEmpty(relayState)) {
+      try {
+        String pendingReqId = transactionStorage.get(relayState, String.class);
+        if (StringUtils.isNotEmpty(pendingReqId)) {
+
+          return pendingReqId;
+
+        } else {
+          log.info("SAML2 RelayState from request is unknown. Can NOT restore session ... ");
+
+        }
+
+      } catch (EaafException e) {
+        log.error("Can NOT map SAML2 RelayState to pendingRequestId", e);
+
+      } finally {
+        transactionStorage.remove(relayState);
+
+      }
+
+    } else {
+      log.info("No SAML2 relaystate. Can NOT restore session ... ");
+
+    }
+
+    return null;
+
+  }
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/provider/IdAustriaClientAuthCredentialProvider.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/provider/IdAustriaClientAuthCredentialProvider.java
new file mode 100644
index 00000000..5b6085c1
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/provider/IdAustriaClientAuthCredentialProvider.java
@@ -0,0 +1,132 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.provider;
+
+import org.springframework.beans.factory.annotation.Autowired;
+
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthConstants;
+import at.gv.egiz.eaaf.core.api.idp.IConfiguration;
+import at.gv.egiz.eaaf.core.exceptions.EaafConfigurationException;
+import at.gv.egiz.eaaf.core.impl.credential.KeyStoreConfiguration;
+import at.gv.egiz.eaaf.core.impl.credential.KeyStoreConfiguration.KeyStoreType;
+import at.gv.egiz.eaaf.modules.pvp2.impl.utils.AbstractCredentialProvider;
+
+/**
+ * Credential provider for eIDAS PVP S-Profile client.
+ *
+ * @author tlenz
+ *
+ */
+public class IdAustriaClientAuthCredentialProvider extends AbstractCredentialProvider {
+
+  @Autowired
+  IConfiguration authConfig;
+
+  private static final String FRIENDLYNAME = "ID Austria authentication";
+
+  @Override
+  public KeyStoreConfiguration getBasicKeyStoreConfig() throws EaafConfigurationException {
+    final KeyStoreConfiguration keyStoreConfig = new KeyStoreConfiguration();
+    keyStoreConfig.setFriendlyName(FRIENDLYNAME);
+    keyStoreConfig.setKeyStoreType(
+        authConfig.getBasicConfiguration(IdAustriaClientAuthConstants.CONFIG_PROPS_KEYSTORE_TYPE,
+            KeyStoreType.PKCS12.getKeyStoreType()));
+    keyStoreConfig.setKeyStoreName(
+        authConfig.getBasicConfiguration(IdAustriaClientAuthConstants.CONFIG_PROPS_KEYSTORE_NAME));
+    keyStoreConfig.setSoftKeyStoreFilePath(getKeyStoreFilePath());
+    keyStoreConfig.setSoftKeyStorePassword(
+        authConfig.getBasicConfiguration(IdAustriaClientAuthConstants.CONFIG_PROPS_KEYSTORE_PASSWORD));
+
+    return keyStoreConfig;
+
+  }
+
+  private String getKeyStoreFilePath() throws EaafConfigurationException {
+    final String path = authConfig.getBasicConfiguration(
+        IdAustriaClientAuthConstants.CONFIG_PROPS_KEYSTORE_PATH);
+    if (path == null) {
+      throw new EaafConfigurationException(Constants.ERRORCODE_00,
+          new Object[] { IdAustriaClientAuthConstants.CONFIG_PROPS_KEYSTORE_PATH });
+
+    }
+    return path;
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.signer.AbstractCredentialProvider#
+   * getMetadataKeyAlias()
+   */
+  @Override
+  public String getMetadataKeyAlias() {
+    return authConfig.getBasicConfiguration(
+        IdAustriaClientAuthConstants.CONFIG_PROPS_SIGN_METADATA_ALIAS);
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.signer.AbstractCredentialProvider#
+   * getMetadataKeyPassword()
+   */
+  @Override
+  public String getMetadataKeyPassword() {
+    return authConfig.getBasicConfiguration(
+        IdAustriaClientAuthConstants.CONFIG_PROPS_SIGN_METADATA_KEY_PASSWORD);
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.signer.AbstractCredentialProvider#
+   * getSignatureKeyAlias()
+   */
+  @Override
+  public String getSignatureKeyAlias() {
+    return authConfig.getBasicConfiguration(
+        IdAustriaClientAuthConstants.CONFIG_PROPS_SIGN_SIGNING_ALIAS);
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.signer.AbstractCredentialProvider#
+   * getSignatureKeyPassword()
+   */
+  @Override
+  public String getSignatureKeyPassword() {
+    return authConfig.getBasicConfiguration(
+        IdAustriaClientAuthConstants.CONFIG_PROPS_SIGN_SIGNING_KEY_PASSWORD);
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.signer.AbstractCredentialProvider#
+   * getEncryptionKeyAlias()
+   */
+  @Override
+  public String getEncryptionKeyAlias() {
+    return authConfig.getBasicConfiguration(
+        IdAustriaClientAuthConstants.CONFIG_PROPS_ENCRYPTION_ALIAS);
+  }
+
+  /*
+   * (non-Javadoc)
+   *
+   * @see
+   * at.gv.egovernment.moa.id.protocols.pvp2x.signer.AbstractCredentialProvider#
+   * getEncryptionKeyPassword()
+   */
+  @Override
+  public String getEncryptionKeyPassword() {
+    return authConfig.getBasicConfiguration(
+        IdAustriaClientAuthConstants.CONFIG_PROPS_ENCRYPTION_KEY_PASSWORD);
+  }
+
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/provider/IdAustriaClientAuthHealthCheck.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/provider/IdAustriaClientAuthHealthCheck.java
new file mode 100644
index 00000000..b54b501d
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/provider/IdAustriaClientAuthHealthCheck.java
@@ -0,0 +1,56 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.provider;
+
+import org.apache.commons.lang3.StringUtils;
+import org.opensaml.saml.saml2.metadata.EntityDescriptor;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.boot.actuate.health.Health;
+import org.springframework.boot.actuate.health.HealthIndicator;
+
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthConstants;
+import at.gv.egiz.eaaf.core.api.idp.IConfiguration;
+import lombok.extern.slf4j.Slf4j;
+import net.shibboleth.utilities.java.support.resolver.ResolverException;
+
+/**
+ * Spring Actuator HealthCheck for ID Austria client that evaluates the current status of 
+ * ID Austria SAML2 metadata that are loaded into MS-Connector. 
+ * 
+ * @author tlenz
+ *
+ */
+@Slf4j
+public class IdAustriaClientAuthHealthCheck implements HealthIndicator {
+
+  @Autowired IConfiguration authConfig;
+  @Autowired IdAustriaClientAuthMetadataProvider metadataService;
+  
+  @Override
+  public Health health() {
+    String msNodeEntityID = authConfig.getBasicConfiguration(
+        IdAustriaClientAuthConstants.CONFIG_PROPS_ID_AUSTRIA_ENTITYID);
+    
+    if (StringUtils.isEmpty(msNodeEntityID)) {
+      log.trace("No ID Austria EntityId in configuration. Skipping tests ... ");
+      return Health.unknown().build();
+
+    }
+    
+    try {
+      EntityDescriptor connectorMetadata = 
+          metadataService.getEntityDescriptor(msNodeEntityID);
+      if (connectorMetadata != null) {
+        return Health.up().build();
+        
+      } else {
+        return Health.outOfService().withDetail("Reason", "No SAML2 metadata").build();
+        
+      }
+            
+    } catch (ResolverException e) {
+      return Health.down(e).build();
+      
+    }
+    
+  }
+  
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/provider/IdAustriaClientAuthMetadataProvider.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/provider/IdAustriaClientAuthMetadataProvider.java
new file mode 100644
index 00000000..7c87548f
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/idaustriaclient/provider/IdAustriaClientAuthMetadataProvider.java
@@ -0,0 +1,169 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.provider;
+
+import java.io.IOException;
+import java.security.KeyStore;
+import java.security.Provider;
+import java.security.cert.CertificateException;
+import java.text.MessageFormat;
+import java.util.ArrayList;
+import java.util.Collections;
+import java.util.List;
+
+import javax.annotation.PostConstruct;
+
+import org.apache.commons.lang3.StringUtils;
+import org.opensaml.saml.metadata.resolver.MetadataResolver;
+import org.opensaml.saml.metadata.resolver.filter.MetadataFilter;
+import org.opensaml.saml.metadata.resolver.filter.MetadataFilterChain;
+import org.springframework.beans.factory.annotation.Autowired;
+
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthConstants;
+import at.gv.egiz.eaaf.core.api.idp.IConfiguration;
+import at.gv.egiz.eaaf.core.exceptions.EaafConfigurationException;
+import at.gv.egiz.eaaf.core.exceptions.EaafException;
+import at.gv.egiz.eaaf.core.impl.credential.EaafKeyStoreFactory;
+import at.gv.egiz.eaaf.core.impl.credential.KeyStoreConfiguration;
+import at.gv.egiz.eaaf.core.impl.credential.KeyStoreConfiguration.KeyStoreType;
+import at.gv.egiz.eaaf.core.impl.data.Pair;
+import at.gv.egiz.eaaf.core.impl.http.IHttpClientFactory;
+import at.gv.egiz.eaaf.modules.pvp2.exception.Pvp2MetadataException;
+import at.gv.egiz.eaaf.modules.pvp2.impl.metadata.AbstractChainingMetadataProvider;
+import at.gv.egiz.eaaf.modules.pvp2.impl.metadata.PvpMetadataResolverFactory;
+import at.gv.egiz.eaaf.modules.pvp2.impl.validation.metadata.SchemaValidationFilter;
+import at.gv.egiz.eaaf.modules.pvp2.impl.validation.metadata.SimpleMetadataSignatureVerificationFilter;
+import lombok.extern.slf4j.Slf4j;
+
+/**
+ * SAML2 metadata-provider implementation for ID Austria client.
+ *
+ * @author tlenz
+ *
+ */
+@Slf4j
+public class IdAustriaClientAuthMetadataProvider extends AbstractChainingMetadataProvider {
+
+  private static final String FRIENDLYNAME_METADATA_TRUSTSTORE = "'ID Austria client metadata truststore'";
+  private static final String PROVIDER_ID_PATTERN = "eIDAS resolver: {0}";
+  public static final String PROVIDER_ID = "'ID Austria client metadata-provider'";
+
+  @Autowired
+  private IConfiguration basicConfig;
+
+  @Autowired
+  private PvpMetadataResolverFactory metadataProviderFactory;
+  @Autowired
+  private IHttpClientFactory httpClientFactory;
+
+  @Autowired
+  private EaafKeyStoreFactory keyStoreFactory;
+
+  private Pair<KeyStore, Provider> metadataSigningTrustStore;
+
+  @Override
+  protected String getMetadataUrl(String entityId) throws EaafConfigurationException {
+    log.trace("ID Austria. uses SAML2 well-known location approach. EntityId is Metadata-URL");
+    return entityId;
+
+  }
+
+  @Override
+  protected MetadataResolver createNewMetadataProvider(String entityId) throws EaafConfigurationException,
+      IOException, CertificateException {
+    final List<MetadataFilter> filterList = new ArrayList<>();
+    filterList.add(new SchemaValidationFilter(true));
+    filterList.add(new SimpleMetadataSignatureVerificationFilter(
+        metadataSigningTrustStore.getFirst(), entityId));
+
+    final MetadataFilterChain filter = new MetadataFilterChain();
+    filter.setFilters(filterList);
+
+    try {
+      return metadataProviderFactory.createMetadataProvider(getMetadataUrl(entityId),
+          filter,
+          MessageFormat.format(PROVIDER_ID_PATTERN, entityId),
+          httpClientFactory.getHttpClient());
+
+    } catch (final Pvp2MetadataException e) {
+      log.info("Can NOT build metadata provider for entityId: {}", entityId);
+      throw new EaafConfigurationException(IdAustriaClientAuthConstants.ERRORCODE_05,
+          new Object[] { entityId, e.getMessage() }, e);
+
+    }
+  }
+
+  @Override
+  protected List<String> getAllMetadataUrlsFromConfiguration() throws EaafConfigurationException {
+    return Collections.emptyList();
+
+  }
+
+  @Override
+  protected String getMetadataProviderId() {
+    return PROVIDER_ID;
+
+  }
+
+  @Override
+  public void runGarbageCollector() {
+    log.trace("Garbage collection is NOT supported by: {}", getId());
+  }
+
+  @Override
+  public void doDestroy() {
+    super.fullyDestroy();
+
+  }
+
+  @PostConstruct
+  private void initialize() throws EaafException {
+    // initialize truststore to validate metadata signing certificates
+    initializeTrustStore();
+
+    // load metadata with metadataURL, as backup
+    initializeFileSystemMetadata();
+
+  }
+
+  private void initializeFileSystemMetadata() {
+    try {
+      final String metadataUrl = basicConfig.getBasicConfiguration(
+          IdAustriaClientAuthConstants.CONFIG_PROPS_ID_AUSTRIA_METADATAURL);
+      if (StringUtils.isNotEmpty(metadataUrl)) {
+        log.info("Use not recommended metadata-provider initialization!"
+            + " SAML2 'Well-Known-Location' is the preferred methode.");
+        log.info("Initialize 'ms-specific eIDAS node' metadata-provider with URL: {}", metadataUrl);
+
+        addMetadataResolverIntoChain(createNewMetadataProvider(metadataUrl));
+      }
+
+    } catch (final EaafConfigurationException | CertificateException | IOException e) {
+      log.warn("Can NOT inject static eIDAS Node metadata-soure.", e);
+      log.warn("eIDAS Node communication can be FAIL.");
+
+    }
+  }
+
+  private void initializeTrustStore() throws EaafException {
+    // set configuration
+    final KeyStoreConfiguration trustStoreConfig = new KeyStoreConfiguration();
+    trustStoreConfig.setFriendlyName(FRIENDLYNAME_METADATA_TRUSTSTORE);
+    trustStoreConfig.setKeyStoreType(basicConfig.getBasicConfiguration(
+        IdAustriaClientAuthConstants.CONFIG_PROPS_TRUSTSTORE_TYPE,
+        KeyStoreType.JKS.getKeyStoreType()));
+    trustStoreConfig.setKeyStoreName(basicConfig.getBasicConfiguration(
+        IdAustriaClientAuthConstants.CONFIG_PROPS_TRUSTSTORE_NAME));
+    trustStoreConfig.setSoftKeyStoreFilePath(basicConfig.getBasicConfiguration(
+        IdAustriaClientAuthConstants.CONFIG_PROPS_TRUSTSTORE_PATH));
+    trustStoreConfig.setSoftKeyStorePassword(basicConfig.getBasicConfiguration(
+        IdAustriaClientAuthConstants.CONFIG_PROPS_TRUSTSTORE_PASSWORD));
+
+    // validate configuration
+    trustStoreConfig.validate();
+
+    // open new TrustStore
+    metadataSigningTrustStore = keyStoreFactory.buildNewKeyStore(trustStoreConfig);
+
+  }
+
+}
+
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateMobilePhoneSignatureRequestTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateMobilePhoneSignatureRequestTask.java
index b4fe8bd7..4d305c7d 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateMobilePhoneSignatureRequestTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateMobilePhoneSignatureRequestTask.java
@@ -23,13 +23,21 @@
 
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks;
 
+import java.text.MessageFormat;
+
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+
+import org.apache.commons.lang3.StringUtils;
+import org.opensaml.saml.saml2.metadata.EntityDescriptor;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.stereotype.Component;
+
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthConstants;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthCredentialProvider;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthMetadataProvider;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthRequestBuilderConfiguration;
-import at.gv.egiz.eaaf.core.api.IRequest;
-import at.gv.egiz.eaaf.core.api.data.ExtendedPvpAttributeDefinitions;
-import at.gv.egiz.eaaf.core.api.data.PvpAttributeDefinitions;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.provider.IdAustriaClientAuthCredentialProvider;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.provider.IdAustriaClientAuthMetadataProvider;
 import at.gv.egiz.eaaf.core.api.idp.IConfiguration;
 import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
 import at.gv.egiz.eaaf.core.api.storage.ITransactionStorage;
@@ -37,36 +45,19 @@ import at.gv.egiz.eaaf.core.exceptions.EaafConfigurationException;
 import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
 import at.gv.egiz.eaaf.core.impl.idp.auth.modules.AbstractAuthServletTask;
 import at.gv.egiz.eaaf.core.impl.utils.Random;
-import at.gv.egiz.eaaf.modules.pvp2.api.reqattr.EaafRequestedAttribute;
-import at.gv.egiz.eaaf.modules.pvp2.impl.builder.PvpAttributeBuilder;
-import at.gv.egiz.eaaf.modules.pvp2.impl.utils.Saml2Utils;
 import at.gv.egiz.eaaf.modules.pvp2.sp.impl.PvpAuthnRequestBuilder;
 import lombok.extern.slf4j.Slf4j;
 import net.shibboleth.utilities.java.support.security.SecureRandomIdentifierGenerationStrategy;
-import org.apache.commons.lang3.StringUtils;
-import org.opensaml.saml.saml2.core.Attribute;
-import org.opensaml.saml.saml2.metadata.EntityDescriptor;
-import org.springframework.beans.factory.annotation.Autowired;
-import org.springframework.stereotype.Component;
-
-import javax.servlet.http.HttpServletRequest;
-import javax.servlet.http.HttpServletResponse;
-import java.text.MessageFormat;
-import java.util.ArrayList;
-import java.util.List;
 
 /**
- * Task that searches ErnB and ZMR before adding person to SZR.
+ * Generate a SAML2 AuthnRequest to authenticate the user at ID Austria system.
  *
- * @author amarsalek
+ * @author tlenz
  */
 @Slf4j
 @Component("GenerateMobilePhoneSignatureRequestTask")
 public class GenerateMobilePhoneSignatureRequestTask extends AbstractAuthServletTask {
 
-
-  private static final String ERROR_CODE_02 = "module.eidasauth.02";
-
   private static final String ERROR_MSG_1 =
       "Requested 'ms-specific eIDAS node' {0} has no valid metadata or metadata is not found";
 
@@ -89,21 +80,20 @@ public class GenerateMobilePhoneSignatureRequestTask extends AbstractAuthServlet
       //step 15a
 
       // get entityID for ms-specific ID Austria node
-      //TODO load from config
       final String msNodeEntityID = basicConfig.getBasicConfiguration(
-          IdAustriaClientAuthConstants.CONFIG_PROPS_NODE_ENTITYID);
-      //      final String msNodeEntityID = "classpath:/data/idp_metadata_classpath_entity.xml";
+          IdAustriaClientAuthConstants.CONFIG_PROPS_ID_AUSTRIA_ENTITYID);
 
       if (StringUtils.isEmpty(msNodeEntityID)) {
-        log.info("eIDAS authentication not possible -> NO EntityID for central eIDAS node FOUND!");
-        throw new TaskExecutionException(pendingReq, "", null);
+        log.warn("ID Austria authentication not possible -> NO EntityID for ID Austria System FOUND!");        
+        throw new EaafConfigurationException(Constants.ERRORCODE_00,
+            new Object[]{IdAustriaClientAuthConstants.CONFIG_PROPS_ID_AUSTRIA_ENTITYID});        
 
       }
 
       // load IDP SAML2 entitydescriptor
       final EntityDescriptor entityDesc = metadataService.getEntityDescriptor(msNodeEntityID);
       if (entityDesc == null) {
-        throw new EaafConfigurationException(ERROR_CODE_02,
+        throw new EaafConfigurationException(IdAustriaClientAuthConstants.ERRORCODE_02,
             new Object[]{MessageFormat.format(ERROR_MSG_1, msNodeEntityID)});
 
       }
@@ -117,16 +107,12 @@ public class GenerateMobilePhoneSignatureRequestTask extends AbstractAuthServlet
       authnReqConfig.setIdpEntity(entityDesc);
       authnReqConfig.setPassive(false);
       authnReqConfig.setSignCred(credential.getMessageSigningCredential());
-      authnReqConfig.setSpEntityID(pendingReq.getAuthUrl() + IdAustriaClientAuthConstants.ENDPOINT_METADATA);
+      authnReqConfig.setSpEntityID(
+          pendingReq.getAuthUrlWithOutSlash() + IdAustriaClientAuthConstants.ENDPOINT_METADATA);
       authnReqConfig.setRequestedLoA(authConfig.getBasicConfiguration(
           IdAustriaClientAuthConstants.CONFIG_PROPS_REQUIRED_LOA,
           IdAustriaClientAuthConstants.CONFIG_DEFAULT_LOA_EIDAS_LEVEL));
 
-      authnReqConfig.setScopeRequesterId(authConfig.getBasicConfiguration(
-          IdAustriaClientAuthConstants.CONFIG_PROPS_SP_ENTITYID));
-      authnReqConfig.setProviderName(pendingReq.getServiceProviderConfiguration().getFriendlyName());
-      authnReqConfig.setRequestedAttributes(buildRequestedAttributes(pendingReq));
-
       /*build relayState for session synchronization, because SAML2 only allows RelayState with 80 characters
        * but encrypted PendingRequestId is much longer.
        */
@@ -136,37 +122,10 @@ public class GenerateMobilePhoneSignatureRequestTask extends AbstractAuthServlet
       // build and transmit AuthnRequest
       authnReqBuilder.buildAuthnRequest(pendingReq, authnReqConfig, relayState, response);
 
-
-      //TODO
     } catch (final Exception e) {
-      e.printStackTrace();
-      log.error("Initial search FAILED.", e);
-      throw new TaskExecutionException(pendingReq, "Initial search FAILED.", e);
+      throw new TaskExecutionException(pendingReq, 
+          "Generation of SAML2 AuthnRequest to ID Austria System FAILED", e);
+      
     }
   }
-
-  private List<EaafRequestedAttribute> buildRequestedAttributes(IRequest pendingReq) {
-    final List<EaafRequestedAttribute> attributes = new ArrayList<>();
-
-    //build TransactionId attribute
-    final Attribute attrTransId = PvpAttributeBuilder.buildEmptyAttribute(
-        ExtendedPvpAttributeDefinitions.EID_TRANSACTION_ID_NAME);
-    final EaafRequestedAttribute attrTransIdReqAttr = Saml2Utils.generateReqAuthnAttributeSimple(
-        attrTransId,
-        true,
-        pendingReq.getUniqueTransactionIdentifier());
-    attributes.add(attrTransIdReqAttr);
-
-    // build EID sector for identification attribute
-    final Attribute attr = PvpAttributeBuilder.buildEmptyAttribute(
-        PvpAttributeDefinitions.EID_SECTOR_FOR_IDENTIFIER_NAME);
-    final EaafRequestedAttribute bpkTargetReqAttr = Saml2Utils.generateReqAuthnAttributeSimple(
-        attr,
-        true,
-        pendingReq.getServiceProviderConfiguration().getAreaSpecificTargetIdentifier());
-    attributes.add(bpkTargetReqAttr);
-
-    return attributes;
-  }
-
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask.java
index 1dc8befd..44e13d78 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask.java
@@ -23,6 +23,24 @@
 
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks;
 
+import java.io.IOException;
+import java.util.HashMap;
+import java.util.List;
+import java.util.Set;
+
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+import javax.xml.transform.TransformerException;
+
+import org.apache.commons.lang3.StringUtils;
+import org.opensaml.core.xml.io.MarshallingException;
+import org.opensaml.messaging.decoder.MessageDecodingException;
+import org.opensaml.saml.saml2.core.Response;
+import org.opensaml.saml.saml2.core.StatusCode;
+import org.opensaml.saml.saml2.metadata.IDPSSODescriptor;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.stereotype.Component;
+
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.MergedRegisterSearchResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
@@ -31,10 +49,10 @@ import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleMobileSignatur
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernp.IErnpClient;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.InvalidUserInputException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.ManualFixNecessaryException;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthEventConstants;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthConstants;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthCredentialProvider;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthMetadataProvider;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthEventConstants;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.provider.IdAustriaClientAuthCredentialProvider;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.provider.IdAustriaClientAuthMetadataProvider;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.Utils;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.IZmrClient;
 import at.gv.egiz.eaaf.core.api.data.PvpAttributeDefinitions;
@@ -60,27 +78,11 @@ import at.gv.egiz.eaaf.modules.pvp2.sp.exception.AssertionValidationExeption;
 import at.gv.egiz.eaaf.modules.pvp2.sp.exception.AuthnResponseValidationException;
 import at.gv.egiz.eaaf.modules.pvp2.sp.impl.utils.AssertionAttributeExtractor;
 import lombok.extern.slf4j.Slf4j;
-import org.apache.commons.lang3.StringUtils;
-import org.opensaml.core.xml.io.MarshallingException;
-import org.opensaml.messaging.decoder.MessageDecodingException;
-import org.opensaml.saml.saml2.core.Response;
-import org.opensaml.saml.saml2.core.StatusCode;
-import org.opensaml.saml.saml2.metadata.IDPSSODescriptor;
-import org.springframework.beans.factory.annotation.Autowired;
-import org.springframework.stereotype.Component;
-
-import javax.servlet.http.HttpServletRequest;
-import javax.servlet.http.HttpServletResponse;
-import javax.xml.transform.TransformerException;
-import java.io.IOException;
-import java.util.HashMap;
-import java.util.List;
-import java.util.Set;
 
 /**
- * Task that searches ErnB and ZMR before adding person to SZR.
+ * Task that receives the SAML2 response from ID Austria system. 
  *
- * @author amarsalek
+ * @author tlenz
  */
 @Slf4j
 @Component("ReceiveMobilePhoneSignatureResponseTask")
@@ -102,9 +104,9 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask extends
   private static final String ERROR_PVP_12 = "sp.pvp2.12";
 
   private static final String ERROR_MSG_00 =
-      "Receive INVALID PVP Response from federated IDP";
+      "Receive INVALID PVP Response from ID Austria system";
   private static final String ERROR_MSG_01 =
-      "Processing PVP response from 'ms-specific eIDAS node' FAILED.";
+      "Processing PVP response from 'ID Austria system' FAILED.";
   private static final String ERROR_MSG_02 =
       "PVP response decrytion FAILED. No credential found.";
   private static final String ERROR_MSG_03 =
@@ -124,29 +126,21 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask extends
       throws TaskExecutionException {
     try {
       log.trace("Starting ReceiveMobilePhoneSignatureResponseTask");//Node 15
-      final AuthProcessDataWrapper authProcessData = pendingReq.getSessionData(AuthProcessDataWrapper.class);
-      MergedRegisterSearchResult initialSearchResult =
-          authProcessData.getGenericDataFromSession(Constants.DATA_INITIAL_REGISTER_RESULT,
-              MergedRegisterSearchResult.class);
-      SimpleEidasData eidData = authProcessData.getGenericDataFromSession(Constants.DATA_SIMPLE_EIDAS,
-          SimpleEidasData.class);
-
-
       InboundMessage msg = null;
-
       IDecoder decoder = null;
       EaafUriCompare comperator = null;
+      
       // select Response Binding
       if (request.getMethod().equalsIgnoreCase("POST")) {
         decoder = new PostBinding();
         comperator = new EaafUriCompare(pendingReq.getAuthUrl() + IdAustriaClientAuthConstants.ENDPOINT_POST);
-        log.trace("Receive PVP Response from 'ID Austria node', by using POST-Binding.");
+        log.trace("Receive PVP Response from 'ID Austria system', by using POST-Binding.");
 
       } else if (request.getMethod().equalsIgnoreCase("GET")) {
         decoder = new RedirectBinding();
         comperator = new EaafUriCompare(pendingReq.getAuthUrl()
             + IdAustriaClientAuthConstants.ENDPOINT_REDIRECT);
-        log.trace("Receive PVP Response from 'ID Austria node', by using Redirect-Binding.");
+        log.trace("Receive PVP Response from 'ID Austria system', by using Redirect-Binding.");
 
       } else {
         log.warn("Receive PVP Response, but Binding ("
@@ -180,10 +174,10 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask extends
       } else {
         // validate entityId of response
         final String msNodeEntityID = authConfig.getBasicConfiguration(
-            IdAustriaClientAuthConstants.CONFIG_PROPS_NODE_ENTITYID);
+            IdAustriaClientAuthConstants.CONFIG_PROPS_ID_AUSTRIA_ENTITYID);
         final String respEntityId = msg.getEntityID();
         if (!msNodeEntityID.equals(respEntityId)) {
-          log.warn("Response Issuer is not a 'ID Austria node'. Stopping eIDAS authentication ...");
+          log.warn("Response Issuer is not from valid 'ID Austria IDP'. Stopping ID Austria authentication ...");
           throw new AuthnResponseValidationException(ERROR_PVP_08,
               new Object[]{IdAustriaClientAuthConstants.MODULE_NAME_FOR_LOGGING,
                   msg.getEntityID()});
@@ -194,6 +188,29 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask extends
         final AssertionAttributeExtractor extractor =
             new AssertionAttributeExtractor(processedMsg.getFirst().getResponse());
 
+        
+        
+        
+        /*
+         * SAML2 response ist bereits vollständig validiert und die Attribute können aus dem 
+         * <AssertionAttributeExtractor extractor> ausgelesen werden.
+         * Die AttributeNamen sind entsprechend PVP Spezifikation, z.B. PvpAttributeDefinitions.GIVEN_NAME_NAME
+         * 
+         * ---------------------------------------------------------------------------------------------
+         * 
+         * TODO: ab hier müssen wir wohl was anpassen
+         * 
+         */
+        
+        //load additional search-data from pendingRequest
+        final AuthProcessDataWrapper authProcessData = pendingReq.getSessionData(AuthProcessDataWrapper.class);
+        MergedRegisterSearchResult initialSearchResult =
+            authProcessData.getGenericDataFromSession(Constants.DATA_INITIAL_REGISTER_RESULT,
+                MergedRegisterSearchResult.class);
+        SimpleEidasData eidData = authProcessData.getGenericDataFromSession(Constants.DATA_SIMPLE_EIDAS,
+            SimpleEidasData.class);
+
+        
         SimpleMobileSignatureData simpleMobileSignatureData =
             getAuthDataFromInterfederation(extractor, authProcessData);
         if (!simpleMobileSignatureData.equalsSimpleEidasData(eidData)) {
@@ -278,8 +295,8 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask extends
       return Pair.newInstance(msg, false);
 
     } else {
-      log.info("Receive StatusCode " + samlResp.getStatus().getStatusCode().getValue()
-          + " from 'ms-specific eIDAS node'.");
+      log.info("Receive StatusCode {} from 'ms-specific eIDAS node'.", 
+          samlResp.getStatus().getStatusCode().getValue());
       StatusCode subStatusCode = getSubStatusCode(samlResp);
       if (subStatusCode != null
           && IdAustriaClientAuthConstants.SAML2_STATUSCODE_USERSTOP.equals(subStatusCode.getValue())) {
@@ -311,6 +328,7 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask extends
         && StringUtils.isNotEmpty(samlResp.getStatus().getStatusCode().getStatusCode().getValue())) {
       return samlResp.getStatus().getStatusCode().getStatusCode();
     }
+    
     return null;
   }
 
@@ -352,34 +370,8 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask extends
 
       }
 
-      //set piiTransactionId from eIDAS Connector
-      //      String piiTransactionId = extractor.getSingleAttributeValue(
-      //          ExtendedPvpAttributeDefinitions.EID_PII_TRANSACTION_ID_NAME);
-      //      if (StringUtils.isNotEmpty(piiTransactionId) && pendingReq instanceof RequestImpl) {
-      //        log.info("Receive piiTransactionId from Austrian eIDAS Connector. Use this for further processing");
-      //        ((RequestImpl) pendingReq).setUniquePiiTransactionIdentifier(piiTransactionId);
-      //
-      //      } else {
-      //        log.debug("Receive no piiTransactionId from Austrian eIDAS Connector.");
-      //
-      //      }
-
-      // set foreigner flag
-      //      session.setForeigner(true);
-
-      // set IssuerInstant from Assertion
       authProcessData.setIssueInstant(extractor.getAssertionIssuingDate());
 
-      // set CCE URL
-      //if (extractor.getFullAssertion().getIssuer() != null
-      //&& StringUtils.isNotEmpty(extractor.getFullAssertion().getIssuer().getValue())) {
-      //        session.setVdaUrl(extractor.getFullAssertion().getIssuer().getValue());
-
-      //} //else {
-      //        session.setVdaUrl("eIDAS_Authentication");
-
-      //}
-
     } catch (final AssertionValidationExeption e) {
       throw new EaafBuilderException(ERROR_PVP_06, null, e.getMessage(), e);
 
@@ -387,39 +379,7 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask extends
     return simpleMobileSignatureData;
   }
 
-  //  private void injectAuthInfosIntoSession(AhAuthProcessDataWrapper session, String attrName, String attrValue)
-  //      throws EaafStorageException, MisException, IOException {
-  //    log.trace("Inject attribute: {} with value: {} into  AuthSession", attrName, attrValue);
-  //    log.debug("Inject attribute: {} into  AuthSession", attrName);
-  //
-  //    if (ExtendedPvpAttributeDefinitions.EID_EIDBIND_NAME.equals(attrName)) {
-  //      log.debug("Find eidasBind attribute. Switching to E-ID mode ... ");
-  //      session.setEidProcess(true);
-  //      session.setQcBind(attrValue);
-  //      //      session.setVsz(extractVszFromEidasBind(attrValue));
-  //      //T
-  //
-  //    } else if (ExtendedPvpAttributeDefinitions.EID_AUTHBLOCK_SIGNED_NAME.equals(attrName)) {
-  //      session.setSignedAuthBlock(Base64.getDecoder().decode(attrValue));
-  //      session.setSignedAuthBlockType(AuthHandlerConstants.AuthBlockType.JWS);
-  //
-  //    } else if (PvpAttributeDefinitions.EID_CITIZEN_EIDAS_QAA_LEVEL_NAME.equals(attrName)) {
-  //      session.setQaaLevel(attrValue);
-  //
-  //    //          } else if (ExtendedPvpAttributeDefinitions.EID_MIS_MANDATE_NAME.equals(attrName)
-  //    //        && authConfig.getBasicConfigurationBoolean(
-  //    //        IdAustriaClientAuthConstants.CONFIG_PROPS_SEMPER_MANDATES_ACTIVE, false)) {
-  //    //      session.setMandateDate(new SignedMandateDao(attrValue));
-  //    //      session.setUseMandates(true);
-  //    //
-  //    } else {
-  //      session.setGenericDataToSession(attrName, attrValue);
-  //
-  //    }
-  //
-  //  }
-
-
+  
   private MergedRegisterSearchResult searchInZmrAndErnp(String bpkzp) {
     List<RegisterResult> resultsZmr = zmrClient.searchWithBpkZp(bpkzp);
     List<RegisterResult> resultsErnp = ernpClient.searchWithBpkZp(bpkzp);
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml
index 019cb03c..a720c1f8 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml
@@ -11,8 +11,8 @@
 
   <context:annotation-config />
 
-  <import
-    resource="classpath:specificCommunicationDefinitionApplicationContext.xml" />
+  <bean id="eidasConnectorMessageSource"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.config.EidasConnectorMessageSource"/>
 
   <bean id="SZRClientForeIDAS"
     class="at.asitplus.eidas.specific.modules.auth.eidas.v2.szr.SzrClient" />
@@ -22,29 +22,7 @@
 
   <bean id="ZmrClientForeIDAS"
         class="at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.DummyZmrClient" />
-
-  <bean id="specificConnectorAttributesFile"
-    class="java.lang.String">
-    <constructor-arg value="eidas-attributes.xml" />
-  </bean>
-
-  <bean id="specificAdditionalAttributesFile"
-    class="java.lang.String">
-    <constructor-arg value="additional-attributes.xml" />
-  </bean>
-
-  <bean id="specificConnectorAttributesFileWithPath"
-    class="java.lang.String">
-    <constructor-arg
-      value="#{specificConnectorConfigRepository}#{specificConnectorAttributesFile}" />
-  </bean>
-
-  <bean id="specificConnectorAdditionalAttributesFileWithPath"
-    class="java.lang.String">
-    <constructor-arg
-      value="#{specificConnectorConfigRepository}#{specificAdditionalAttributesFile}" />
-  </bean>
-
+        
   <bean id="eIDASAuthModule"
     class="at.asitplus.eidas.specific.modules.auth.eidas.v2.EidasAuthenticationModulImpl">
     <property name="priority" value="2" />
@@ -88,6 +66,24 @@
         class="at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.ItSpecificDetailSearchProcessor">
   </bean>
 
+
+  <!-- ID Austria client specific services -->
+  <bean id="idAustriaClientAuthCredentialProvider"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.provider.IdAustriaClientAuthCredentialProvider" />
+
+  <bean id="idAustriaClientAuthMetadataProvider"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.provider.IdAustriaClientAuthMetadataProvider" />
+
+  <bean id="idAustriaClientMetadataHealthCheck"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.provider.IdAustriaClientAuthHealthCheck" />
+
+  <bean id="idAustriaClientAuthMetadataController"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.controller.IdAustriaClientAuthMetadataController" />
+
+  <bean id="idAustriaClientAuthSignalController"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.controller.IdAustriaClientAuthSignalController" />
+
+
   <!-- Authentication Process Tasks -->
   <bean id="ConnecteIDASNodeTask"
     class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.GenerateAuthnRequestTask"
@@ -134,19 +130,5 @@
         class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.ReceiveGuiAustrianResidenceResponseTask"
         scope="prototype" />
 
-  <bean id="idAustriaClientAuthCredentialProvider"
-        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthCredentialProvider" />
-
-  <bean id="idAustriaClientAuthMetadataProvider"
-        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthMetadataProvider" />
-
-  <bean id="idAustriaClientAuthMetadataController"
-        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthMetadataController" />
-
-  <bean id="idAustriaClientAuthSignalController"
-        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthSignalController" />
-
-
-
 
 </beans>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth_ref_impl_config.beans.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth_ref_impl_config.beans.xml
new file mode 100644
index 00000000..cde9687e
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth_ref_impl_config.beans.xml
@@ -0,0 +1,39 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<beans xmlns="http://www.springframework.org/schema/beans"
+  xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+  xmlns:context="http://www.springframework.org/schema/context"
+  xmlns:tx="http://www.springframework.org/schema/tx"
+  xmlns:aop="http://www.springframework.org/schema/aop"
+  xsi:schemaLocation="http://www.springframework.org/schema/aop http://www.springframework.org/schema/aop/spring-aop-3.1.xsd
+    http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans.xsd
+    http://www.springframework.org/schema/context http://www.springframework.org/schema/context/spring-context-3.1.xsd
+    http://www.springframework.org/schema/tx http://www.springframework.org/schema/tx/spring-tx-3.0.xsd">
+
+  <context:annotation-config />
+
+  <import
+    resource="classpath:specificCommunicationDefinitionApplicationContext.xml" />
+
+  <bean id="specificConnectorAttributesFile"
+    class="java.lang.String">
+    <constructor-arg value="eidas-attributes.xml" />
+  </bean>
+
+  <bean id="specificAdditionalAttributesFile"
+    class="java.lang.String">
+    <constructor-arg value="additional-attributes.xml" />
+  </bean>
+
+  <bean id="specificConnectorAttributesFileWithPath"
+    class="java.lang.String">
+    <constructor-arg
+      value="#{specificConnectorConfigRepository}#{specificConnectorAttributesFile}" />
+  </bean>
+
+  <bean id="specificConnectorAdditionalAttributesFileWithPath"
+    class="java.lang.String">
+    <constructor-arg
+      value="#{specificConnectorConfigRepository}#{specificAdditionalAttributesFile}" />
+  </bean>
+
+</beans>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/messages/eidas_connector_message.properties b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/messages/eidas_connector_message.properties
new file mode 100644
index 00000000..a2437ce6
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/messages/eidas_connector_message.properties
@@ -0,0 +1,15 @@
+module.eidasauth.00=Wrong configuration. Missing property: {0}
+
+module.eidasauth.idaustria.02=eIDAS module has an error in configuration. Reason: {0}
+module.eidasauth.idaustria.05=eIDAS module can not initialize SAML2 metadata provider for entityId: {0}. Reason: {1}
+
+
+module.eidasauth.01=eIDAS module has an error in configuration: {0}. Reason: {1}
+
+module.eidasauth.03=eIDAS module has a general error during request pre-processing. Reason: {0}
+module.eidasauth.04=eIDAS module has a general error during response post-processing.
+module.eidasauth.06=eIDAS module was selected, but eIDAS is NOT enabled for SP: {0}
+
+
+module.eidasauth.98=eIDAS module has an internal error. Reason: {0}
+module.eidasauth.99=eIDAS module has an generic internal error.
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/config/EidasConnectorMessageSourceTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/config/EidasConnectorMessageSourceTest.java
new file mode 100644
index 00000000..1f96b25c
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/config/EidasConnectorMessageSourceTest.java
@@ -0,0 +1,43 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.test.config;
+
+import java.util.List;
+
+import org.junit.Assert;
+import org.junit.Test;
+import org.junit.runner.RunWith;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.core.io.Resource;
+import org.springframework.core.io.ResourceLoader;
+import org.springframework.test.annotation.DirtiesContext;
+import org.springframework.test.context.ContextConfiguration;
+import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
+
+import at.gv.egiz.eaaf.core.api.logging.IMessageSourceLocation;
+
+@RunWith(SpringJUnit4ClassRunner.class)
+@ContextConfiguration(locations = {
+    "/SpringTest-context_tasks_test.xml",
+    "/SpringTest-context_basic_mapConfig.xml"})
+@DirtiesContext
+public class EidasConnectorMessageSourceTest {
+
+  @Autowired
+  private ResourceLoader loader;
+  @Autowired(required = false)
+  private List<IMessageSourceLocation> messageSources;
+
+  @Test
+  public void checkMessageSources() {
+    Assert.assertNotNull("No messageSource", messageSources);
+
+    for (final IMessageSourceLocation messageSource : messageSources) {
+      Assert.assertNotNull("No sourcePath", messageSource.getMessageSourceLocation());
+
+      for (final String el : messageSource.getMessageSourceLocation()) {
+        final Resource messages = loader.getResource(el + ".properties");
+        Assert.assertTrue("Source not exist", messages.exists());
+
+      }
+    }
+  }
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/idaustriaclient/IdAustriaAuthSignalControllerTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/idaustriaclient/IdAustriaAuthSignalControllerTest.java
new file mode 100644
index 00000000..cddcd11c
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/idaustriaclient/IdAustriaAuthSignalControllerTest.java
@@ -0,0 +1,197 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.test.idaustriaclient;
+
+import java.io.IOException;
+import java.util.HashMap;
+import java.util.Map;
+
+import org.apache.commons.lang3.RandomStringUtils;
+import org.junit.Assert;
+import org.junit.Test;
+import org.junit.runner.RunWith;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.mock.web.MockHttpServletRequest;
+import org.springframework.mock.web.MockHttpServletResponse;
+import org.springframework.test.context.ContextConfiguration;
+import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
+import org.springframework.util.SerializationUtils;
+
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.controller.IdAustriaClientAuthSignalController;
+import at.gv.egiz.eaaf.core.api.IRequestStorage;
+import at.gv.egiz.eaaf.core.api.data.EaafConfigConstants;
+import at.gv.egiz.eaaf.core.api.data.ExceptionContainer;
+import at.gv.egiz.eaaf.core.api.idp.IConfiguration;
+import at.gv.egiz.eaaf.core.api.storage.ITransactionStorage;
+import at.gv.egiz.eaaf.core.api.utils.IPendingRequestIdGenerationStrategy;
+import at.gv.egiz.eaaf.core.exceptions.EaafException;
+import at.gv.egiz.eaaf.core.impl.idp.module.test.DummyProtocolAuthService;
+import at.gv.egiz.eaaf.core.impl.idp.module.test.DummySpConfiguration;
+import at.gv.egiz.eaaf.core.impl.idp.module.test.TestRequestImpl;
+import at.gv.egiz.eaaf.core.impl.idp.process.spring.test.DummyTransactionStorage.DummyDbEntry;
+
+@RunWith(SpringJUnit4ClassRunner.class)
+@ContextConfiguration(locations = {
+    "/SpringTest-context_tasks_test.xml",
+    "/SpringTest-context_basic_mapConfig.xml"
+})
+public class IdAustriaAuthSignalControllerTest {
+
+  @Autowired(required = true)
+  private IdAustriaClientAuthSignalController controller;
+  @Autowired(required = true)
+  private ITransactionStorage cache;
+  @Autowired(required = true)
+  private IPendingRequestIdGenerationStrategy pendingReqGeneration;
+  @Autowired(required = true)
+  private IRequestStorage reqStorage;
+  @Autowired(required = true)
+  private IConfiguration basicConfig;
+  @Autowired private ITransactionStorage transactionStorage;
+  
+  @Autowired private DummyProtocolAuthService protAuthService;
+
+  @Test
+  public void noRelayState() throws IOException, EaafException {
+    final MockHttpServletRequest httpReq =
+        new MockHttpServletRequest("POST", "https://localhost/authhandler");
+    final MockHttpServletResponse httpResp = new MockHttpServletResponse();
+
+    controller.performAuthentication(httpReq, httpResp);
+    Assert.assertEquals("httpStausCode", 200, httpResp.getStatus());
+
+    final String errorId = protAuthService.getErrorKey();
+    final Object error = cache.get(errorId);
+    Assert.assertNotNull("Error is null", error);
+    org.springframework.util.Assert.isInstanceOf(byte[].class,
+        ((DummyDbEntry) error).getObj());
+    final Object errorObj = SerializationUtils.deserialize((byte[]) ((DummyDbEntry) error).getObj());
+    org.springframework.util.Assert.isInstanceOf(ExceptionContainer.class, errorObj);
+    org.springframework.util.Assert.isInstanceOf(EaafException.class,
+        ((ExceptionContainer) errorObj).getExceptionThrown());
+
+  }
+
+  @Test
+  public void validRelayStateNoPendingReqId() throws EaafException, IOException {
+    final String pendingReqId = pendingReqGeneration.generateExternalPendingRequestId();
+    final MockHttpServletRequest httpReq =
+        new MockHttpServletRequest("POST", "https://localhost/authhandler");
+    httpReq.addParameter(IdAustriaClientAuthSignalController.HTTP_PARAM_RELAYSTATE, pendingReqId);
+    final MockHttpServletResponse httpResp = new MockHttpServletResponse();
+
+    controller.performAuthentication(httpReq, httpResp);
+    Assert.assertEquals("httpStausCode", 200, httpResp.getStatus());
+
+    final String errorId = protAuthService.getErrorKey();
+    final Object error = cache.get(errorId);
+    Assert.assertNotNull("Error is null", error);
+    org.springframework.util.Assert.isInstanceOf(byte[].class,
+        ((DummyDbEntry) error).getObj());
+    final Object errorObj = SerializationUtils.deserialize((byte[]) ((DummyDbEntry) error).getObj());
+    org.springframework.util.Assert.isInstanceOf(ExceptionContainer.class, errorObj);
+    org.springframework.util.Assert.isInstanceOf(EaafException.class,
+        ((ExceptionContainer) errorObj).getExceptionThrown());
+    //TODO:
+    Assert.assertEquals("ErrorCode not match", "auth.26",
+        ((EaafException) ((ExceptionContainer) errorObj).getExceptionThrown()).getErrorId());
+
+  }
+
+  @Test
+  public void validRelayStateSuspectPendingReqId() throws EaafException, IOException {
+    String relayState = RandomStringUtils.randomAlphanumeric(10);    
+    transactionStorage.put(relayState, false, -1);
+    
+    final MockHttpServletRequest httpReq =
+        new MockHttpServletRequest("POST", "https://localhost/authhandler");
+    httpReq.addParameter(IdAustriaClientAuthSignalController.HTTP_PARAM_RELAYSTATE, relayState);
+    final MockHttpServletResponse httpResp = new MockHttpServletResponse();
+
+    controller.performAuthentication(httpReq, httpResp);
+    Assert.assertEquals("httpStausCode", 200, httpResp.getStatus());
+
+    final String errorId = protAuthService.getErrorKey();
+    final Object error = cache.get(errorId);
+    Assert.assertNotNull("Error is null", error);
+    org.springframework.util.Assert.isInstanceOf(byte[].class,
+        ((DummyDbEntry) error).getObj());
+    final Object errorObj = SerializationUtils.deserialize((byte[]) ((DummyDbEntry) error).getObj());
+    org.springframework.util.Assert.isInstanceOf(ExceptionContainer.class, errorObj);
+    org.springframework.util.Assert.isInstanceOf(EaafException.class,
+        ((ExceptionContainer) errorObj).getExceptionThrown());
+    //TODO:
+    Assert.assertEquals("ErrorCode not match", "auth.26",
+        ((EaafException) ((ExceptionContainer) errorObj).getExceptionThrown()).getErrorId());
+    
+    Assert.assertNull("RelayState was not removed", transactionStorage.get(relayState));
+
+  }
+  
+  @Test
+  public void validRelayStateNoPendingReq() throws EaafException, IOException {
+    final String pendingReqId = pendingReqGeneration.generateExternalPendingRequestId();
+    String relayState = RandomStringUtils.randomAlphanumeric(10);    
+    transactionStorage.put(relayState, pendingReqId, -1);
+    
+    final MockHttpServletRequest httpReq =
+        new MockHttpServletRequest("POST", "https://localhost/authhandler");
+    httpReq.addParameter(IdAustriaClientAuthSignalController.HTTP_PARAM_RELAYSTATE, relayState);
+    final MockHttpServletResponse httpResp = new MockHttpServletResponse();
+
+    controller.performAuthentication(httpReq, httpResp);
+    Assert.assertEquals("httpStausCode", 200, httpResp.getStatus());
+
+    final String errorId = protAuthService.getErrorKey();
+    final Object error = cache.get(errorId);
+    Assert.assertNotNull("Error is null", error);
+    org.springframework.util.Assert.isInstanceOf(byte[].class,
+        ((DummyDbEntry) error).getObj());
+    final Object errorObj = SerializationUtils.deserialize((byte[]) ((DummyDbEntry) error).getObj());
+    org.springframework.util.Assert.isInstanceOf(ExceptionContainer.class, errorObj);
+    org.springframework.util.Assert.isInstanceOf(EaafException.class,
+        ((ExceptionContainer) errorObj).getExceptionThrown());
+    Assert.assertEquals("ErrorCode not match", "auth.28",
+        ((EaafException) ((ExceptionContainer) errorObj).getExceptionThrown()).getErrorId());
+
+    Assert.assertNull("RelayState was not removed", transactionStorage.get(relayState));
+    
+  }
+  
+  @Test
+  public void validRelayStateWithPendingReq() throws EaafException, IOException {
+    final String pendingReqId = pendingReqGeneration.generateExternalPendingRequestId();
+
+    String relayState = RandomStringUtils.randomAlphanumeric(10);    
+    transactionStorage.put(relayState, pendingReqId, -1);
+    
+    final TestRequestImpl pendingReq = new TestRequestImpl();
+    pendingReq.setPendingReqId(pendingReqId);
+    pendingReq.setAuthUrl("http://localhost/idp");
+    final Map<String, String> spConfigMap = new HashMap<>();
+    spConfigMap.put(EaafConfigConstants.SERVICE_UNIQUEIDENTIFIER, "http://test.sp");
+    final DummySpConfiguration spConfig = new DummySpConfiguration(spConfigMap, basicConfig);
+    pendingReq.setSpConfig(spConfig);
+    reqStorage.storePendingRequest(pendingReq);
+
+    final MockHttpServletRequest httpReq =
+        new MockHttpServletRequest("POST", "https://localhost/authhandler");
+    httpReq.addParameter(IdAustriaClientAuthSignalController.HTTP_PARAM_RELAYSTATE, relayState);
+    final MockHttpServletResponse httpResp = new MockHttpServletResponse();
+
+    controller.performAuthentication(httpReq, httpResp);
+
+    Assert.assertEquals("httpStausCode", 200, httpResp.getStatus());
+
+    final String errorId = protAuthService.getErrorKey();
+    final Object error = cache.get(errorId);
+    Assert.assertNotNull("Error is null", error);
+    org.springframework.util.Assert.isInstanceOf(byte[].class,
+        ((DummyDbEntry) error).getObj());
+    final Object errorObj = SerializationUtils.deserialize((byte[]) ((DummyDbEntry) error).getObj());
+    org.springframework.util.Assert.isInstanceOf(ExceptionContainer.class, errorObj);
+    org.springframework.util.Assert.isInstanceOf(EaafException.class,
+        ((ExceptionContainer) errorObj).getExceptionThrown());
+    Assert.assertEquals("ErrorCode not match",
+        "PendingRequest object is not of type 'RequestImpl.class'",
+        ((EaafException) ((ExceptionContainer) errorObj).getExceptionThrown()).getErrorId());
+  }
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/idaustriaclient/IdAustriaClientAuthHealthCheckTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/idaustriaclient/IdAustriaClientAuthHealthCheckTest.java
new file mode 100644
index 00000000..a583ab2a
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/idaustriaclient/IdAustriaClientAuthHealthCheckTest.java
@@ -0,0 +1,128 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.test.idaustriaclient;
+
+import org.joda.time.DateTime;
+import org.junit.Assert;
+import org.junit.BeforeClass;
+import org.junit.Test;
+import org.junit.runner.RunWith;
+import org.opensaml.core.xml.config.XMLObjectProviderRegistrySupport;
+import org.opensaml.core.xml.io.MarshallingException;
+import org.opensaml.core.xml.io.UnmarshallingException;
+import org.opensaml.core.xml.util.XMLObjectSupport;
+import org.opensaml.saml.saml2.metadata.EntityDescriptor;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.boot.actuate.health.Health;
+import org.springframework.test.context.ContextConfiguration;
+import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
+import org.w3c.dom.Element;
+
+import at.asitplus.eidas.specific.connector.test.config.dummy.MsConnectorDummyConfigMap;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthConstants;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.provider.IdAustriaClientAuthHealthCheck;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.provider.IdAustriaClientAuthMetadataProvider;
+import at.gv.egiz.eaaf.modules.pvp2.api.utils.IPvp2CredentialProvider;
+import at.gv.egiz.eaaf.modules.pvp2.exception.CredentialsNotAvailableException;
+import at.gv.egiz.eaaf.modules.pvp2.exception.SamlSigningException;
+import at.gv.egiz.eaaf.modules.pvp2.impl.opensaml.initialize.EaafOpenSaml3xInitializer;
+import at.gv.egiz.eaaf.modules.pvp2.impl.utils.Saml2Utils;
+import net.shibboleth.utilities.java.support.resolver.ResolverException;
+import net.shibboleth.utilities.java.support.xml.SerializeSupport;
+import net.shibboleth.utilities.java.support.xml.XMLParserException;
+import okhttp3.HttpUrl;
+import okhttp3.mockwebserver.MockResponse;
+import okhttp3.mockwebserver.MockWebServer;
+
+@RunWith(SpringJUnit4ClassRunner.class)
+@ContextConfiguration(locations = {
+    "/SpringTest-context_tasks_test.xml",
+    "/SpringTest-context_basic_mapConfig.xml"
+})
+public class IdAustriaClientAuthHealthCheckTest {
+
+  @Autowired private IdAustriaClientAuthHealthCheck toCheck;
+  @Autowired protected MsConnectorDummyConfigMap config;
+  @Autowired private IPvp2CredentialProvider credentialProvider;
+  @Autowired IdAustriaClientAuthMetadataProvider provider;
+  
+  private static MockWebServer mockWebServer;
+  private static HttpUrl mockServerUrl;
+  
+  /**
+   * JUnit class initializer.
+   *
+   * @throws Exception In case of an OpenSAML3 initialization error
+   */
+  @BeforeClass
+  public static void classInitializer() throws Exception {
+    EaafOpenSaml3xInitializer.eaafInitialize();
+
+    mockWebServer = new MockWebServer();
+    mockServerUrl = mockWebServer.url("/sp/metadata");
+
+  }
+ 
+  @Test
+  public void notActive() {
+    //set-up test
+    config.putConfigValue(IdAustriaClientAuthConstants.CONFIG_PROPS_ID_AUSTRIA_ENTITYID, 
+        null);
+    
+    //perform check
+    Health status = toCheck.health();
+    
+    //evaluate status
+    Assert.assertEquals("wrong status", Health.unknown().build().getStatus(), status.getStatus());
+    
+  }
+  
+  @Test
+  public void success() throws SamlSigningException, CredentialsNotAvailableException, 
+      XMLParserException, UnmarshallingException, MarshallingException {
+
+    //set-up test
+    config.putConfigValue(IdAustriaClientAuthConstants.CONFIG_PROPS_ID_AUSTRIA_ENTITYID, 
+        mockServerUrl.url().toString());
+    injectValidHttpMetadata(mockServerUrl.url().toString());
+    
+    //perform check
+    Health status = toCheck.health();
+    
+    //evaluate status
+    Assert.assertEquals("wrong status", Health.up().build().getStatus(), status.getStatus());
+        
+  }
+  
+  @Test
+  public void invalid() throws SamlSigningException, CredentialsNotAvailableException, 
+      XMLParserException, UnmarshallingException, MarshallingException, ResolverException {
+    //set-up test
+    provider.clear();
+    config.putConfigValue(IdAustriaClientAuthConstants.CONFIG_PROPS_ID_AUSTRIA_ENTITYID, 
+        "http://localhost:1234/junit/metadata");
+        
+    //perform check
+    Health status = toCheck.health();
+    
+    //evaluate status
+    Assert.assertEquals("wrong status", Health.outOfService().build().getStatus(), status.getStatus());
+    
+  }
+  
+  private String injectValidHttpMetadata(String dynEntityId) throws XMLParserException,
+      UnmarshallingException, MarshallingException, SamlSigningException, CredentialsNotAvailableException {
+    final EntityDescriptor metadata = (EntityDescriptor) XMLObjectSupport.unmarshallFromInputStream(
+    XMLObjectProviderRegistrySupport.getParserPool(),
+    IdAustriaClientAuthHealthCheckTest.class.getResourceAsStream("/data/idp_metadata_no_sig.xml"));
+    metadata.setValidUntil(DateTime.now().plusDays(1));
+    metadata.setSignature(null);
+    metadata.setEntityID(dynEntityId);
+    Saml2Utils.signSamlObject(metadata, credentialProvider.getMetaDataSigningCredential(), true);
+    final Element metadataElement = XMLObjectSupport.marshall(metadata);
+    mockWebServer.enqueue(new MockResponse().setResponseCode(200)
+        .setBody(SerializeSupport.nodeToString(metadataElement))
+        .setHeader("Content-Type", "text/html;charset=utf-8"));
+    return dynEntityId;
+
+}
+  
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/idaustriaclient/IdAustriaClientAuthMetadataControllerTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/idaustriaclient/IdAustriaClientAuthMetadataControllerTest.java
index c99c6e6a..4671684f 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/idaustriaclient/IdAustriaClientAuthMetadataControllerTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/idaustriaclient/IdAustriaClientAuthMetadataControllerTest.java
@@ -3,18 +3,10 @@ package at.asitplus.eidas.specific.modules.auth.eidas.v2.test.idaustriaclient;
 import java.io.ByteArrayInputStream;
 import java.io.IOException;
 import java.io.UnsupportedEncodingException;
-import java.security.cert.X509Certificate;
-import java.util.ArrayList;
-import java.util.List;
 
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthConstants;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthCredentialProvider;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthMetadataController;
-import at.gv.egiz.eaaf.core.test.dummy.DummyAuthConfigMap;
 import org.junit.Assert;
 import org.junit.Before;
 import org.junit.BeforeClass;
-import org.junit.Ignore;
 import org.junit.Test;
 import org.junit.runner.RunWith;
 import org.opensaml.core.xml.config.XMLObjectProviderRegistrySupport;
@@ -24,16 +16,16 @@ import org.opensaml.saml.common.xml.SAMLConstants;
 import org.opensaml.saml.metadata.resolver.filter.FilterException;
 import org.opensaml.saml.saml2.metadata.EntityDescriptor;
 import org.opensaml.saml.saml2.metadata.SPSSODescriptor;
-import org.opensaml.security.x509.BasicX509Credential;
 import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.mock.web.MockHttpServletRequest;
 import org.springframework.mock.web.MockHttpServletResponse;
 import org.springframework.test.annotation.DirtiesContext;
 import org.springframework.test.context.ContextConfiguration;
-import org.springframework.test.context.TestPropertySource;
 import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
 
-import at.gv.egiz.eaaf.core.api.data.PvpAttributeDefinitions;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthConstants;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.controller.IdAustriaClientAuthMetadataController;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.provider.IdAustriaClientAuthCredentialProvider;
 import at.gv.egiz.eaaf.core.exceptions.EaafException;
 import at.gv.egiz.eaaf.modules.pvp2.exception.CredentialsNotAvailableException;
 import at.gv.egiz.eaaf.modules.pvp2.impl.opensaml.initialize.EaafOpenSaml3xInitializer;
@@ -43,14 +35,11 @@ import net.shibboleth.utilities.java.support.xml.XMLParserException;
 
 
 @RunWith(SpringJUnit4ClassRunner.class)
-//@TestPropertySource(locations = {"classpath:/config/junit_config_de_attributes.properties"})
-@TestPropertySource(locations = { "classpath:/config/junit_config_1_springboot.properties" })
 @ContextConfiguration(locations = {
     "/SpringTest-context_tasks_test.xml",
     "/SpringTest-context_basic_mapConfig.xml"
 })
 @DirtiesContext(classMode = DirtiesContext.ClassMode.AFTER_CLASS)
-@Ignore
 public class IdAustriaClientAuthMetadataControllerTest {
 
   private MockHttpServletRequest httpReq;
@@ -58,7 +47,6 @@ public class IdAustriaClientAuthMetadataControllerTest {
 
   @Autowired private IdAustriaClientAuthMetadataController controller;
   @Autowired private IdAustriaClientAuthCredentialProvider credProvider;
-  @Autowired private DummyAuthConfigMap config;
 
   /**
    * JUnit class initializer.
@@ -80,28 +68,17 @@ public class IdAustriaClientAuthMetadataControllerTest {
     httpReq.setContextPath("/authhandler");
     httpResp = new MockHttpServletResponse();
 
-    config.removeConfigValue("core.legacy.allowLegacyMode");
-    config.removeConfigValue("modules.eidascentralauth.semper.mandates.active");
-    config.removeConfigValue("modules.eidascentralauth.required.additional.attributes.1");
-    config.removeConfigValue("modules.eidascentralauth.required.additional.attributes.2");
-    config.removeConfigValue("modules.eidascentralauth.required.additional.attributes.3");
-    config.removeConfigValue("modules.eidascentralauth.required.additional.attributes.4");
-    config.removeConfigValue("modules.eidascentralauth.required.additional.attributes.5");
-    config.removeConfigValue("modules.eidascentralauth.required.additional.attributes.6");
-
   }
 
   @Test
   public void buildMetadataValidInEidMode() throws IOException, EaafException,
       XMLParserException, UnmarshallingException, FilterException {
-    config.putConfigValue("core.legacy.allowLegacyMode", "false");
-    config.putConfigValue("modules.eidascentralauth.semper.mandates.active", "false");
 
     //build metdata
     controller.getSpMetadata(httpReq, httpResp);
 
     //check result
-    validateResponse(6);
+    validateResponse(7);
 
   }
 
@@ -137,10 +114,6 @@ public class IdAustriaClientAuthMetadataControllerTest {
 
     Assert.assertFalse("AssertionConsumerServices",
         spSsoDesc.getAssertionConsumerServices().isEmpty());
-    Assert.assertFalse("ContactPersons",
-        metadata.getContactPersons().isEmpty());
-    Assert.assertNotNull("ContactPersons",
-        metadata.getOrganization());
 
     Assert.assertFalse("KeyDescriptors",
         spSsoDesc.getKeyDescriptors().isEmpty());
@@ -157,13 +130,4 @@ public class IdAustriaClientAuthMetadataControllerTest {
         spSsoDesc.getAttributeConsumingServices().get(0).getRequestAttributes().size());
 
   }
-
-  private List<BasicX509Credential> convertX509Certs(List<X509Certificate> certs) {
-    final List<BasicX509Credential> result = new ArrayList<>();
-    for (final X509Certificate cert : certs) {
-      result.add(new BasicX509Credential(cert));
-
-    }
-    return result;
-  }
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/idaustriaclient/IdAustriaClientAuthMetadataProviderFirstTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/idaustriaclient/IdAustriaClientAuthMetadataProviderFirstTest.java
new file mode 100644
index 00000000..da10fc54
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/idaustriaclient/IdAustriaClientAuthMetadataProviderFirstTest.java
@@ -0,0 +1,238 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.test.idaustriaclient;
+
+import java.io.IOException;
+
+import org.apache.commons.lang3.RandomStringUtils;
+import org.joda.time.DateTime;
+import org.junit.Assert;
+import org.junit.Before;
+import org.junit.BeforeClass;
+import org.junit.Test;
+import org.junit.runner.RunWith;
+import org.opensaml.core.criterion.EntityIdCriterion;
+import org.opensaml.core.xml.config.XMLObjectProviderRegistrySupport;
+import org.opensaml.core.xml.io.MarshallingException;
+import org.opensaml.core.xml.io.UnmarshallingException;
+import org.opensaml.core.xml.util.XMLObjectSupport;
+import org.opensaml.saml.saml2.metadata.EntityDescriptor;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.test.context.ContextConfiguration;
+import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
+import org.w3c.dom.Element;
+
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.provider.IdAustriaClientAuthMetadataProvider;
+import at.gv.egiz.eaaf.modules.pvp2.api.metadata.IPvp2MetadataProvider;
+import at.gv.egiz.eaaf.modules.pvp2.api.utils.IPvp2CredentialProvider;
+import at.gv.egiz.eaaf.modules.pvp2.exception.CredentialsNotAvailableException;
+import at.gv.egiz.eaaf.modules.pvp2.exception.Pvp2MetadataException;
+import at.gv.egiz.eaaf.modules.pvp2.exception.SamlSigningException;
+import at.gv.egiz.eaaf.modules.pvp2.impl.metadata.PvpMetadataResolverFactory;
+import at.gv.egiz.eaaf.modules.pvp2.impl.opensaml.initialize.EaafOpenSaml3xInitializer;
+import at.gv.egiz.eaaf.modules.pvp2.impl.utils.Saml2Utils;
+import at.gv.egiz.eaaf.modules.pvp2.test.metadata.MetadataResolverTest;
+import net.shibboleth.utilities.java.support.resolver.CriteriaSet;
+import net.shibboleth.utilities.java.support.resolver.ResolverException;
+import net.shibboleth.utilities.java.support.xml.SerializeSupport;
+import net.shibboleth.utilities.java.support.xml.XMLParserException;
+import okhttp3.HttpUrl;
+import okhttp3.mockwebserver.MockResponse;
+import okhttp3.mockwebserver.MockWebServer;
+
+@RunWith(SpringJUnit4ClassRunner.class)
+@ContextConfiguration(locations = {
+    "/SpringTest-context_tasks_test.xml",
+    "/SpringTest-context_basic_mapConfig.xml"
+})
+public class IdAustriaClientAuthMetadataProviderFirstTest {
+
+  @Autowired
+  IPvp2CredentialProvider credentialProvider;
+  @Autowired
+  IdAustriaClientAuthMetadataProvider provider;
+  @Autowired
+  PvpMetadataResolverFactory resolverFactory;
+
+  private static MockWebServer mockWebServer;
+  private static HttpUrl mockServerUrl;
+
+  /**
+   * JUnit class initializer.
+   *
+   * @throws Exception In case of an OpenSAML3 initialization error
+   */
+  @BeforeClass
+  public static void classInitializer() throws Exception {
+    EaafOpenSaml3xInitializer.eaafInitialize();
+
+    mockWebServer = new MockWebServer();
+    mockServerUrl = mockWebServer.url("/sp/metadata");
+
+  }
+
+  /**
+   * jUnit test set-up.
+   * 
+   * @throws ResolverException
+   *
+   */
+  @Before
+  public void testSetup() {
+    provider.fullyDestroy();
+
+  }
+
+  @Test
+  public void simpleManuelAddingTest() throws Pvp2MetadataException, ResolverException {
+    final IPvp2MetadataProvider resolver1 = resolverFactory.createMetadataProvider(
+        "classpath:/data/idp_metadata_sig_notvalid.xml",
+        null, "junit", null);
+    Assert.assertNotNull("Resolver 1 is null", resolver1);
+    provider.addMetadataResolverIntoChain(resolver1);
+
+    final IPvp2MetadataProvider resolver2 = resolverFactory.createMetadataProvider(
+        "classpath:/data/idp_metadata_sig_valid_wrong_alg.xml",
+        null, "junit", null);
+    Assert.assertNotNull("Resolver 2 is null", resolver2);
+    provider.addMetadataResolverIntoChain(resolver2);
+
+    final EntityDescriptor entity1 = provider.getEntityDescriptor("https://localEntity");
+    Assert.assertNotNull("Entity 1 not found", entity1);
+
+    final EntityDescriptor entity2 = provider.getEntityDescriptor(
+        "https://vidp.gv.at/ms_connector/pvp/metadata");
+    Assert.assertNotNull("Entity 2 not found", entity2);
+
+    final EntityDescriptor entity3 = provider.getEntityDescriptor("https://egiz.gv.at/abababa");
+    Assert.assertNull("Entity 3 found", entity3);
+
+  }
+
+  @Test
+  public void dynamicLoadingNoValidSignature() throws ResolverException {
+    final EntityDescriptor entity = provider.getEntityDescriptor("classpath:/data/idp_metadata_no_sig2.xml");
+    Assert.assertNull("Entity found", entity);
+
+  }
+
+  @Test
+  public void dynamicLoadingValidSignature() throws XMLParserException, UnmarshallingException,
+      SamlSigningException, CredentialsNotAvailableException, MarshallingException, ResolverException {
+
+    final String entityId = injectValidHttpMetadata();
+    final EntityDescriptor entity = provider.getEntityDescriptor(entityId);
+    Assert.assertNotNull("Entity not found", entity);
+
+  }
+
+  @Test
+  public void reloadNotPossible() throws XMLParserException, UnmarshallingException,
+      SamlSigningException, CredentialsNotAvailableException, MarshallingException, ResolverException {
+
+    final String entityId = injectValidHttpMetadata();
+    final EntityDescriptor entity = provider.getEntityDescriptor(entityId);
+    Assert.assertNotNull("Entity not found", entity);
+    Assert.assertNotNull("Entity not found",
+        provider.resolveSingle(generateEntityIdCreteria(entityId)));
+
+    Assert.assertFalse("Refresh should not be possible",
+        provider.refreshMetadataProvider(entityId));
+
+    final EntityDescriptor entity2 = provider.getEntityDescriptor(entityId);
+    Assert.assertNull("Entity not found", entity2);
+    Assert.assertNull("Entity not found",
+        provider.resolveSingle(generateEntityIdCreteria(entityId)));
+
+    Assert.assertFalse("Last refresh", provider.wasLastRefreshSuccess());
+
+  }
+
+  @Test
+  public void refeshTest() throws Pvp2MetadataException, ResolverException {
+    Assert.assertFalse("Last refresh", provider.wasLastRefreshSuccess());
+    Assert.assertNull("LastRefresh", provider.getLastRefresh());
+    Assert.assertNull("LastSuccessfulRefresh", provider.getLastSuccessfulRefresh());
+    Assert.assertNull("LastUpdate", provider.getLastUpdate());
+
+    final IPvp2MetadataProvider resolver1 = resolverFactory.createMetadataProvider(
+        "classpath:/data/idp_metadata_sig_notvalid.xml",
+        null, "junit", null);
+    Assert.assertNotNull("Resolver 1 is null", resolver1);
+    provider.addMetadataResolverIntoChain(resolver1);
+
+    final IPvp2MetadataProvider resolver2 = resolverFactory.createMetadataProvider(
+        "classpath:/data/idp_metadata_sig_valid_wrong_alg.xml",
+        null, "junit", null);
+    Assert.assertNotNull("Resolver 2 is null", resolver2);
+    provider.addMetadataResolverIntoChain(resolver2);
+
+    provider.refresh();
+
+    Assert.assertTrue("Last refresh", provider.wasLastRefreshSuccess());
+    Assert.assertNotNull("LastRefresh", provider.getLastRefresh());
+    Assert.assertNotNull("LastSuccessfulRefresh", provider.getLastSuccessfulRefresh());
+    Assert.assertNotNull("LastUpdate", provider.getLastUpdate());
+
+  }
+
+  @Test
+  public void reloadPossible() throws XMLParserException, UnmarshallingException,
+      SamlSigningException, CredentialsNotAvailableException, MarshallingException, ResolverException,
+      IOException {
+
+    mockWebServer.shutdown();
+    mockWebServer = new MockWebServer();
+    mockServerUrl = mockWebServer.url("/sp/metadata");
+
+    final String entityId = injectValidHttpMetadata();
+    final EntityDescriptor entity = provider.getEntityDescriptor(entityId);
+    Assert.assertNotNull("Entity not found", entity);
+    Assert.assertNotNull("Entity not found",
+        provider.resolveSingle(generateEntityIdCreteria(entityId)));
+
+    Assert.assertFalse("Last refresh", provider.wasLastRefreshSuccess());
+
+    injectValidHttpMetadata(entityId);
+    Assert.assertTrue("Refresh should not be possible",
+        provider.refreshMetadataProvider(entityId));
+
+    final EntityDescriptor entity2 = provider.getEntityDescriptor(entityId);
+    Assert.assertNotNull("Entity not found", entity2);
+    Assert.assertNotNull("Entity not found",
+        provider.resolveSingle(generateEntityIdCreteria(entityId)));
+
+    Assert.assertFalse("Last refresh", provider.wasLastRefreshSuccess());
+
+  }
+
+  private String injectValidHttpMetadata() throws SamlSigningException, CredentialsNotAvailableException,
+      XMLParserException, UnmarshallingException, MarshallingException {
+    return injectValidHttpMetadata(mockServerUrl.url().toString()
+        + "/" + RandomStringUtils.randomAlphabetic(5));
+  }
+
+  private String injectValidHttpMetadata(String dynEntityId) throws XMLParserException,
+      UnmarshallingException,
+      MarshallingException, SamlSigningException, CredentialsNotAvailableException {
+    final EntityDescriptor metadata = (EntityDescriptor) XMLObjectSupport.unmarshallFromInputStream(
+        XMLObjectProviderRegistrySupport.getParserPool(),
+        MetadataResolverTest.class.getResourceAsStream("/data/idp_metadata_no_sig.xml"));
+    metadata.setValidUntil(DateTime.now().plusDays(1));
+    metadata.setSignature(null);
+    metadata.setEntityID(dynEntityId);
+    Saml2Utils.signSamlObject(metadata, credentialProvider.getMetaDataSigningCredential(), true);
+    final Element metadataElement = XMLObjectSupport.marshall(metadata);
+    mockWebServer.enqueue(new MockResponse().setResponseCode(200)
+        .setBody(SerializeSupport.nodeToString(metadataElement))
+        .setHeader("Content-Type", "text/html;charset=utf-8"));
+
+    return dynEntityId;
+
+  }
+
+  private CriteriaSet generateEntityIdCreteria(String entityId) {
+    final CriteriaSet result = new CriteriaSet();
+    result.add(new EntityIdCriterion(entityId));
+    return result;
+
+  }
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/idaustriaclient/IdAustriaClientAuthMetadataProviderSecondTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/idaustriaclient/IdAustriaClientAuthMetadataProviderSecondTest.java
new file mode 100644
index 00000000..3ee6ddcd
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/idaustriaclient/IdAustriaClientAuthMetadataProviderSecondTest.java
@@ -0,0 +1,66 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.test.idaustriaclient;
+
+import org.junit.Assert;
+import org.junit.Before;
+import org.junit.BeforeClass;
+import org.junit.Test;
+import org.junit.runner.RunWith;
+import org.opensaml.saml.saml2.metadata.EntityDescriptor;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.test.context.ContextConfiguration;
+import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
+
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.provider.IdAustriaClientAuthMetadataProvider;
+import at.gv.egiz.eaaf.modules.pvp2.impl.opensaml.initialize.EaafOpenSaml3xInitializer;
+import net.shibboleth.utilities.java.support.resolver.ResolverException;
+
+@RunWith(SpringJUnit4ClassRunner.class)
+@ContextConfiguration(locations = {
+    "/SpringTest-context_tasks_test.xml",
+    "/SpringTest-context_basic_mapConfig.xml"
+})
+public class IdAustriaClientAuthMetadataProviderSecondTest {
+
+  @Autowired
+  IdAustriaClientAuthMetadataProvider provider;
+
+  /**
+   * JUnit class initializer.
+   *
+   * @throws Exception In case of an OpenSAML3 initialization error
+   */
+  @BeforeClass
+  public static void classInitializer() throws Exception {
+    EaafOpenSaml3xInitializer.eaafInitialize();
+
+  }
+
+  /**
+   * jUnit test set-up.
+   *
+   * @throws ResolverException
+   *
+   */
+  @Before
+  public void testSetup() {
+    provider.fullyDestroy();
+
+  }
+
+  @Test
+  public void notTrustedX509CertsInTrustStore() throws ResolverException {
+    final EntityDescriptor entity = provider.getEntityDescriptor("classpath:/data/idp_metadata_no_sig2.xml");
+    Assert.assertNull("Entity found", entity);
+
+  }
+
+  @Test
+  public void readStaticInfos() {
+    Assert.assertEquals("wrong providerId",
+        IdAustriaClientAuthMetadataProvider.PROVIDER_ID, provider.getId());
+
+    provider.runGarbageCollector();
+
+  }
+
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/idaustriaclient/IdAustriaClientCredentialProviderTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/idaustriaclient/IdAustriaClientCredentialProviderTest.java
new file mode 100644
index 00000000..3e37e1a6
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/idaustriaclient/IdAustriaClientCredentialProviderTest.java
@@ -0,0 +1,414 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.test.idaustriaclient;
+
+import org.apache.commons.lang3.RandomStringUtils;
+import org.junit.Assert;
+import org.junit.Before;
+import org.junit.Test;
+import org.junit.runner.RunWith;
+import org.springframework.beans.BeansException;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.context.ApplicationContext;
+import org.springframework.test.annotation.DirtiesContext;
+import org.springframework.test.context.ContextConfiguration;
+import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
+
+import com.google.common.base.Optional;
+import com.google.common.base.Predicates;
+import com.google.common.base.Throwables;
+import com.google.common.collect.FluentIterable;
+
+import at.asitplus.eidas.specific.connector.test.config.dummy.MsConnectorDummyConfigMap;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthConstants;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.provider.IdAustriaClientAuthCredentialProvider;
+import at.gv.egiz.eaaf.core.exceptions.EaafConfigurationException;
+import at.gv.egiz.eaaf.core.exceptions.EaafException;
+import at.gv.egiz.eaaf.core.exceptions.EaafFactoryException;
+import at.gv.egiz.eaaf.modules.pvp2.api.credential.EaafX509Credential;
+import at.gv.egiz.eaaf.modules.pvp2.exception.CredentialsNotAvailableException;
+
+@RunWith(SpringJUnit4ClassRunner.class)
+@ContextConfiguration(locations = {
+    "/SpringTest-context_basic_lazy.xml",
+    "/SpringTest-context_basic_mapConfig.xml"
+})
+@DirtiesContext
+public class IdAustriaClientCredentialProviderTest {
+
+  private static final String PATH_JKS = "../keystore/junit_test.jks";
+  private static final String ALIAS_METADATA = "meta";
+  private static final String ALIAS_SIGN = "sig";
+  private static final String ALIAS_ENC = "enc";
+  private static final String PASSWORD = "password";
+
+  @Autowired
+  private ApplicationContext context;
+  @Autowired(required = true)
+  protected MsConnectorDummyConfigMap config;
+
+  /**
+   * jUnit test initializer.
+   */
+  @Before
+  public void initialize() {
+    config.putConfigValue(IdAustriaClientAuthConstants.CONFIG_PROPS_KEYSTORE_PATH, PATH_JKS);
+    config.putConfigValue(IdAustriaClientAuthConstants.CONFIG_PROPS_KEYSTORE_PASSWORD, PASSWORD);
+
+    config.removeConfigValue(IdAustriaClientAuthConstants.CONFIG_PROPS_SIGN_METADATA_ALIAS);
+    config.removeConfigValue(IdAustriaClientAuthConstants.CONFIG_PROPS_SIGN_METADATA_KEY_PASSWORD);
+
+    config.removeConfigValue(IdAustriaClientAuthConstants.CONFIG_PROPS_SIGN_SIGNING_ALIAS);
+    config.removeConfigValue(IdAustriaClientAuthConstants.CONFIG_PROPS_SIGN_SIGNING_KEY_PASSWORD);
+
+    config.removeConfigValue(IdAustriaClientAuthConstants.CONFIG_PROPS_ENCRYPTION_ALIAS);
+    config.removeConfigValue(IdAustriaClientAuthConstants.CONFIG_PROPS_ENCRYPTION_KEY_PASSWORD);
+
+  }
+
+  @Test
+  @DirtiesContext
+  public void noKeyStoreUrl() {
+    config.removeConfigValue(IdAustriaClientAuthConstants.CONFIG_PROPS_KEYSTORE_PATH);
+    try {
+      context.getBean(IdAustriaClientAuthCredentialProvider.class);
+      Assert.fail("No KeyStore not detected");
+
+    } catch (final BeansException e) {
+      org.springframework.util.Assert.isInstanceOf(EaafConfigurationException.class,
+          e.getCause(), "Wrong exception");
+    }
+
+  }
+
+  @Test
+  @DirtiesContext
+  public void noKeyStore() {
+    config.putConfigValue(IdAustriaClientAuthConstants.CONFIG_PROPS_KEYSTORE_PATH,
+        "src/test/resources/config/notExist.p12");
+    try {
+      context.getBean(IdAustriaClientAuthCredentialProvider.class);
+      Assert.fail("No KeyStore not detected");
+
+    } catch (final BeansException e) {
+      final Optional<Throwable> eaafException = FluentIterable.from(
+          Throwables.getCausalChain(e)).filter(
+              Predicates.instanceOf(EaafConfigurationException.class)).first();
+      Assert.assertTrue("Wrong exception", eaafException.isPresent());
+      Assert.assertEquals("Wrong errorId", "internal.keystore.06",
+          ((EaafException) eaafException.get()).getErrorId());
+
+    }
+
+  }
+
+  @Test
+  @DirtiesContext
+  public void noWrongKeyStorePassword() {
+    config.putConfigValue(IdAustriaClientAuthConstants.CONFIG_PROPS_KEYSTORE_PASSWORD, "test");
+    try {
+      context.getBean(IdAustriaClientAuthCredentialProvider.class);
+      Assert.fail("No KeyStore not detected");
+
+    } catch (final BeansException e) {
+      final Optional<Throwable> eaafException = FluentIterable.from(
+          Throwables.getCausalChain(e)).filter(
+              Predicates.instanceOf(EaafFactoryException.class)).first();
+      Assert.assertTrue("Wrong exception", eaafException.isPresent());
+      Assert.assertEquals("Wrong errorId", "internal.keystore.06",
+          ((EaafException) eaafException.get()).getErrorId());
+
+    }
+
+  }
+
+  @Test
+  @DirtiesContext
+  public void notKeyConfigurationWrongAlias() {
+    final IdAustriaClientAuthCredentialProvider credential = context.getBean(
+        IdAustriaClientAuthCredentialProvider.class);
+
+    Assert.assertNotNull("Credetialprovider", credential);
+    Assert.assertNotNull("Friendlyname", credential.getFriendlyName());
+
+    try {
+      config.putConfigValue(IdAustriaClientAuthConstants.CONFIG_PROPS_SIGN_METADATA_ALIAS,
+          RandomStringUtils.randomAlphabetic(5));
+      credential.getMetaDataSigningCredential();
+      Assert.fail("No Metadata signing credentials not detected");
+
+    } catch (final CredentialsNotAvailableException e) {
+      Assert.assertTrue("Wrong errorCode", e.getMessage().contains("internal.pvp.01"));
+
+    }
+
+    try {
+      config.putConfigValue(IdAustriaClientAuthConstants.CONFIG_PROPS_SIGN_SIGNING_ALIAS,
+          RandomStringUtils.randomAlphabetic(5));
+      credential.getMessageSigningCredential();
+      Assert.fail("No Metadata signing credentials not detected");
+
+    } catch (final CredentialsNotAvailableException e) {
+      Assert.assertTrue("Wrong errorCode", e.getMessage().contains("internal.pvp.01"));
+
+    }
+
+    try {
+      config.putConfigValue(IdAustriaClientAuthConstants.CONFIG_PROPS_ENCRYPTION_ALIAS,
+          RandomStringUtils.randomAlphabetic(5));
+      credential.getMessageEncryptionCredential();
+      Assert.fail("No Metadata signing credentials not detected");
+
+    } catch (final CredentialsNotAvailableException e) {
+      Assert.assertTrue("Wrong errorCode", e.getMessage().contains("internal.pvp.01"));
+
+    }
+
+  }
+
+  @Test
+  @DirtiesContext
+  public void notKeyConfigurationWrongPassword() {
+    final IdAustriaClientAuthCredentialProvider credential = context.getBean(
+        IdAustriaClientAuthCredentialProvider.class);
+
+    Assert.assertNotNull("Credetialprovider", credential);
+    Assert.assertNotNull("Friendlyname", credential.getFriendlyName());
+
+    try {
+      config.putConfigValue(IdAustriaClientAuthConstants.CONFIG_PROPS_SIGN_METADATA_KEY_PASSWORD,
+          RandomStringUtils.randomAlphabetic(5));
+      credential.getMetaDataSigningCredential();
+      Assert.fail("No Metadata signing credentials not detected");
+
+    } catch (final CredentialsNotAvailableException e) {
+      Assert.assertTrue("Wrong errorCode", e.getMessage().contains("internal.pvp.01"));
+
+    }
+
+    try {
+      config.putConfigValue(IdAustriaClientAuthConstants.CONFIG_PROPS_SIGN_SIGNING_KEY_PASSWORD,
+          RandomStringUtils.randomAlphabetic(5));
+      credential.getMessageSigningCredential();
+      Assert.fail("No message signing credentials not detected");
+
+    } catch (final CredentialsNotAvailableException e) {
+      Assert.assertTrue("Wrong errorCode", e.getMessage().contains("internal.pvp.01"));
+
+    }
+
+    try {
+      config.putConfigValue(IdAustriaClientAuthConstants.CONFIG_PROPS_ENCRYPTION_KEY_PASSWORD,
+          RandomStringUtils.randomAlphabetic(5));
+      final EaafX509Credential encCred = credential.getMessageEncryptionCredential();
+      Assert.assertNull("No encryption signing credentials not detected", encCred);
+
+    } catch (final CredentialsNotAvailableException e) {
+      Assert.assertTrue("Wrong errorCode", e.getMessage().contains("internal.pvp.01"));
+
+    }
+
+  }
+
+  @Test
+  @DirtiesContext
+  public void notKeyConfigurationValidAliasWrongPassword() {
+    final IdAustriaClientAuthCredentialProvider credential = context.getBean(
+        IdAustriaClientAuthCredentialProvider.class);
+
+    Assert.assertNotNull("Credetialprovider", credential);
+    Assert.assertNotNull("Friendlyname", credential.getFriendlyName());
+
+    try {
+      config.putConfigValue(IdAustriaClientAuthConstants.CONFIG_PROPS_SIGN_METADATA_ALIAS,
+          ALIAS_METADATA);
+      config.putConfigValue(IdAustriaClientAuthConstants.CONFIG_PROPS_SIGN_METADATA_KEY_PASSWORD,
+          RandomStringUtils.randomAlphabetic(5));
+      credential.getMetaDataSigningCredential();
+      Assert.fail("No Metadata signing credentials not detected");
+
+    } catch (final CredentialsNotAvailableException e) {
+      Assert.assertTrue("Wrong errorCode", e.getMessage().contains("internal.pvp.01"));
+
+    }
+
+    try {
+      config.putConfigValue(IdAustriaClientAuthConstants.CONFIG_PROPS_SIGN_SIGNING_ALIAS,
+          ALIAS_SIGN);
+      config.putConfigValue(IdAustriaClientAuthConstants.CONFIG_PROPS_SIGN_SIGNING_KEY_PASSWORD,
+          RandomStringUtils.randomAlphabetic(5));
+      credential.getMessageSigningCredential();
+      Assert.fail("No Metadata signing credentials not detected");
+
+    } catch (final CredentialsNotAvailableException e) {
+      Assert.assertTrue("Wrong errorCode", e.getMessage().contains("internal.pvp.01"));
+
+    }
+
+    try {
+      config.putConfigValue(IdAustriaClientAuthConstants.CONFIG_PROPS_ENCRYPTION_ALIAS,
+          ALIAS_ENC);
+      config.putConfigValue(IdAustriaClientAuthConstants.CONFIG_PROPS_ENCRYPTION_KEY_PASSWORD,
+          RandomStringUtils.randomAlphabetic(5));
+      credential.getMessageEncryptionCredential();
+      Assert.fail("No Metadata signing credentials not detected");
+
+    } catch (final CredentialsNotAvailableException e) {
+      Assert.assertTrue("Wrong errorCode", e.getMessage().contains("internal.pvp.01"));
+
+    }
+  }
+
+  @Test
+  @DirtiesContext
+  public void notKeyConfigurationWrongAliasValidPassword() {
+    final IdAustriaClientAuthCredentialProvider credential = context.getBean(
+        IdAustriaClientAuthCredentialProvider.class);
+
+    Assert.assertNotNull("Credetialprovider", credential);
+    Assert.assertNotNull("Friendlyname", credential.getFriendlyName());
+
+    try {
+      config.putConfigValue(IdAustriaClientAuthConstants.CONFIG_PROPS_SIGN_METADATA_ALIAS,
+          RandomStringUtils.randomAlphabetic(5));
+      config.putConfigValue(IdAustriaClientAuthConstants.CONFIG_PROPS_SIGN_METADATA_KEY_PASSWORD,
+          PASSWORD);
+      credential.getMetaDataSigningCredential();
+      Assert.fail("No Metadata signing credentials not detected");
+
+    } catch (final CredentialsNotAvailableException e) {
+      Assert.assertTrue("Wrong errorCode", e.getMessage().contains("internal.pvp.01"));
+
+    }
+
+    try {
+      config.putConfigValue(IdAustriaClientAuthConstants.CONFIG_PROPS_SIGN_SIGNING_ALIAS,
+          RandomStringUtils.randomAlphabetic(5));
+      config.putConfigValue(IdAustriaClientAuthConstants.CONFIG_PROPS_SIGN_SIGNING_KEY_PASSWORD,
+          PASSWORD);
+      credential.getMessageSigningCredential();
+      Assert.fail("No Metadata signing credentials not detected");
+
+    } catch (final CredentialsNotAvailableException e) {
+      Assert.assertTrue("Wrong errorCode", e.getMessage().contains("internal.pvp.01"));
+
+    }
+
+    try {
+      config.putConfigValue(IdAustriaClientAuthConstants.CONFIG_PROPS_ENCRYPTION_ALIAS,
+          RandomStringUtils.randomAlphabetic(5));
+      config.putConfigValue(IdAustriaClientAuthConstants.CONFIG_PROPS_ENCRYPTION_KEY_PASSWORD,
+          PASSWORD);
+      credential.getMessageEncryptionCredential();
+      Assert.fail("No Metadata signing credentials not detected");
+
+    } catch (final CredentialsNotAvailableException e) {
+      Assert.assertTrue("Wrong errorCode", e.getMessage().contains("internal.pvp.01"));
+
+    }
+  }
+
+  @Test
+  @DirtiesContext
+  public void validonfiguration() throws CredentialsNotAvailableException {
+    final IdAustriaClientAuthCredentialProvider credential = context.getBean(
+        IdAustriaClientAuthCredentialProvider.class);
+
+    Assert.assertNotNull("Credetialprovider", credential);
+    Assert.assertNotNull("Friendlyname", credential.getFriendlyName());
+
+    config.putConfigValue(IdAustriaClientAuthConstants.CONFIG_PROPS_SIGN_METADATA_ALIAS,
+        ALIAS_METADATA);
+    config.putConfigValue(IdAustriaClientAuthConstants.CONFIG_PROPS_SIGN_METADATA_KEY_PASSWORD,
+        PASSWORD);
+    credential.getMetaDataSigningCredential();
+
+    config.putConfigValue(IdAustriaClientAuthConstants.CONFIG_PROPS_SIGN_SIGNING_ALIAS,
+        ALIAS_SIGN);
+    config.putConfigValue(IdAustriaClientAuthConstants.CONFIG_PROPS_SIGN_SIGNING_KEY_PASSWORD,
+        PASSWORD);
+    credential.getMessageSigningCredential();
+
+    config.putConfigValue(IdAustriaClientAuthConstants.CONFIG_PROPS_ENCRYPTION_ALIAS,
+        ALIAS_ENC);
+    config.putConfigValue(IdAustriaClientAuthConstants.CONFIG_PROPS_ENCRYPTION_KEY_PASSWORD,
+        PASSWORD);
+    credential.getMessageEncryptionCredential();
+
+  }
+
+  @Test
+  @DirtiesContext
+  public void notKeyConfiguration() {
+    final IdAustriaClientAuthCredentialProvider credential = context.getBean(
+        IdAustriaClientAuthCredentialProvider.class);
+
+    Assert.assertNotNull("Credetialprovider", credential);
+    Assert.assertNotNull("Friendlyname", credential.getFriendlyName());
+
+    try {
+      credential.getMetaDataSigningCredential();
+      Assert.fail("No Metadata signing credentials not detected");
+
+    } catch (final CredentialsNotAvailableException e) {
+      Assert.assertTrue("Wrong errorCode", e.getMessage().contains("internal.pvp.01"));
+
+    }
+
+    try {
+      credential.getMessageSigningCredential();
+      Assert.fail("No message signing credentials not detected");
+
+    } catch (final CredentialsNotAvailableException e) {
+      Assert.assertTrue("Wrong errorCode", e.getMessage().contains("internal.pvp.01"));
+
+    }
+
+    try {
+      final EaafX509Credential encCred = credential.getMessageEncryptionCredential();
+      Assert.assertNull("No encryption signing credentials not detected", encCred);
+
+    } catch (final CredentialsNotAvailableException e) {
+      Assert.assertTrue("Wrong errorCode", e.getMessage().contains("internal.pvp.01"));
+
+    }
+
+  }
+
+  @Test
+  @DirtiesContext
+  public void notKeyConfigurationPkcs12() {
+    config.putConfigValue(IdAustriaClientAuthConstants.CONFIG_PROPS_KEYSTORE_PATH,
+        "../keystore/pvp.p12");
+    final IdAustriaClientAuthCredentialProvider credential = context.getBean(
+        IdAustriaClientAuthCredentialProvider.class);
+
+    Assert.assertNotNull("Credetialprovider", credential);
+    Assert.assertNotNull("Friendlyname", credential.getFriendlyName());
+
+    try {
+      credential.getMetaDataSigningCredential();
+      Assert.fail("No Metadata signing credentials not detected");
+
+    } catch (final CredentialsNotAvailableException e) {
+      Assert.assertTrue("Wrong errorCode", e.getMessage().contains("internal.pvp.01"));
+
+    }
+
+    try {
+      credential.getMessageSigningCredential();
+      Assert.fail("No message signing credentials not detected");
+
+    } catch (final CredentialsNotAvailableException e) {
+      Assert.assertTrue("Wrong errorCode", e.getMessage().contains("internal.pvp.01"));
+
+    }
+
+    try {
+      final EaafX509Credential encCred = credential.getMessageEncryptionCredential();
+      Assert.assertNull("No encryption signing credentials not detected", encCred);
+
+    } catch (final CredentialsNotAvailableException e) {
+      Assert.assertTrue("Wrong errorCode", e.getMessage().contains("internal.pvp.01"));
+
+    }
+  }
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/GenerateMobilePhoneSignatureRequestTaskTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/GenerateMobilePhoneSignatureRequestTaskTest.java
index 2579bb40..4fb05a35 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/GenerateMobilePhoneSignatureRequestTaskTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/GenerateMobilePhoneSignatureRequestTaskTest.java
@@ -1,38 +1,19 @@
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.test.tasks;
 
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthConstants;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthMetadataProvider;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.GenerateMobilePhoneSignatureRequestTask;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.test.dummy.DummyAuthConfigMap;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.test.dummy.DummyOA;
-import at.gv.egiz.eaaf.core.api.data.EaafConstants;
-import at.gv.egiz.eaaf.core.api.gui.IVelocityGuiBuilderConfiguration;
-import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
-import at.gv.egiz.eaaf.core.exceptions.EaafConfigurationException;
-import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
-import at.gv.egiz.eaaf.core.impl.idp.module.gui.DummyGuiBuilderConfigurationFactory;
-import at.gv.egiz.eaaf.core.impl.idp.module.test.TestRequestImpl;
-import at.gv.egiz.eaaf.core.impl.idp.process.ExecutionContextImpl;
-import at.gv.egiz.eaaf.modules.pvp2.api.reqattr.EaafRequestedAttribute;
-import at.gv.egiz.eaaf.modules.pvp2.api.reqattr.EaafRequestedAttributes;
-import at.gv.egiz.eaaf.modules.pvp2.exception.CredentialsNotAvailableException;
-import at.gv.egiz.eaaf.modules.pvp2.exception.Pvp2InternalErrorException;
-import at.gv.egiz.eaaf.modules.pvp2.exception.Pvp2MetadataException;
-import at.gv.egiz.eaaf.modules.pvp2.impl.message.PvpSProfileRequest;
-import at.gv.egiz.eaaf.modules.pvp2.impl.metadata.PvpMetadataResolverFactory;
-import at.gv.egiz.eaaf.modules.pvp2.impl.opensaml.initialize.EaafOpenSaml3xInitializer;
-import at.gv.egiz.eaaf.modules.pvp2.impl.utils.Saml2Utils;
-import at.gv.egiz.eaaf.modules.pvp2.impl.validation.TrustEngineFactory;
-import at.gv.egiz.eaaf.modules.pvp2.impl.verification.SamlVerificationEngine;
+import static org.junit.Assert.assertThrows;
+
+import java.io.ByteArrayInputStream;
+import java.io.InputStream;
+import java.util.Base64;
+import java.util.Map;
+
 import org.apache.commons.lang3.RandomStringUtils;
-import org.apache.commons.lang3.StringUtils;
 import org.junit.Assert;
 import org.junit.Before;
 import org.junit.BeforeClass;
 import org.junit.Test;
 import org.junit.runner.RunWith;
 import org.opensaml.core.xml.config.XMLObjectProviderRegistrySupport;
-import org.opensaml.core.xml.schema.XSString;
 import org.opensaml.core.xml.util.XMLObjectSupport;
 import org.opensaml.saml.common.xml.SAMLConstants;
 import org.opensaml.saml.saml2.core.AuthnRequest;
@@ -41,23 +22,38 @@ import org.springframework.context.ApplicationContext;
 import org.springframework.mock.web.MockHttpServletRequest;
 import org.springframework.mock.web.MockHttpServletResponse;
 import org.springframework.test.context.ContextConfiguration;
-import org.springframework.test.context.TestPropertySource;
 import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
 import org.springframework.web.context.request.RequestContextHolder;
 import org.springframework.web.context.request.ServletRequestAttributes;
 
-import java.io.ByteArrayInputStream;
-import java.io.InputStream;
-import java.util.Base64;
-import java.util.Map;
+import at.asitplus.eidas.specific.connector.test.config.dummy.MsConnectorDummyConfigMap;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthConstants;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.provider.IdAustriaClientAuthMetadataProvider;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.GenerateMobilePhoneSignatureRequestTask;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.test.dummy.DummyOA;
+import at.gv.egiz.eaaf.core.api.data.EaafConstants;
+import at.gv.egiz.eaaf.core.api.gui.IVelocityGuiBuilderConfiguration;
+import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
+import at.gv.egiz.eaaf.core.api.storage.ITransactionStorage;
+import at.gv.egiz.eaaf.core.exceptions.EaafConfigurationException;
+import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
+import at.gv.egiz.eaaf.core.impl.idp.module.gui.DummyGuiBuilderConfigurationFactory;
+import at.gv.egiz.eaaf.core.impl.idp.module.test.TestRequestImpl;
+import at.gv.egiz.eaaf.core.impl.idp.process.ExecutionContextImpl;
+import at.gv.egiz.eaaf.modules.pvp2.exception.CredentialsNotAvailableException;
+import at.gv.egiz.eaaf.modules.pvp2.exception.Pvp2MetadataException;
+import at.gv.egiz.eaaf.modules.pvp2.impl.message.PvpSProfileRequest;
+import at.gv.egiz.eaaf.modules.pvp2.impl.metadata.PvpMetadataResolverFactory;
+import at.gv.egiz.eaaf.modules.pvp2.impl.opensaml.initialize.EaafOpenSaml3xInitializer;
+import at.gv.egiz.eaaf.modules.pvp2.impl.utils.Saml2Utils;
+import at.gv.egiz.eaaf.modules.pvp2.impl.validation.TrustEngineFactory;
+import at.gv.egiz.eaaf.modules.pvp2.impl.verification.SamlVerificationEngine;
 
 @RunWith(SpringJUnit4ClassRunner.class)
-@TestPropertySource(locations = {"classpath:/config/junit_config_1-.properties" })
-//@ContextConfiguration({"/spring/SpringTest-context_mapConfig_full.xml", "classpath:/spring/test_eaaf_core.beans.xml"})
-//@TestPropertySource(locations = { "classpath:/config/junit_config_1_springboot.properties" })
 @ContextConfiguration(locations = {
-    "/SpringTest-context_tasks_test1.xml",
-    "/SpringTest-context_basic_mapConfig1.xml"
+    "/SpringTest-context_tasks_test.xml",
+    "/SpringTest-context_basic_mapConfig.xml",
+    "classpath:/eaaf_pvp_sp.beans.xml"
 })
 
 public class GenerateMobilePhoneSignatureRequestTaskTest {
@@ -68,7 +64,7 @@ public class GenerateMobilePhoneSignatureRequestTaskTest {
   @Autowired(required = true)
   private ApplicationContext context;
   @Autowired(required = true)
-  protected DummyAuthConfigMap authConfig;
+  protected MsConnectorDummyConfigMap authConfig;
   @Autowired
   private IdAustriaClientAuthMetadataProvider metadataProvider;
   @Autowired
@@ -77,8 +73,8 @@ public class GenerateMobilePhoneSignatureRequestTaskTest {
   private DummyGuiBuilderConfigurationFactory guiBuilderConfigFactory;
   @Autowired
   private SamlVerificationEngine samlVerifyEngine;
-//  @Autowired
-//  private ITransactionStorage transactionStorage;
+  @Autowired
+  private ITransactionStorage transactionStorage;
 
   final ExecutionContext executionContext = new ExecutionContextImpl();
   private MockHttpServletRequest httpReq;
@@ -106,27 +102,26 @@ public class GenerateMobilePhoneSignatureRequestTaskTest {
    */
   @Before
   public void setUp() throws Exception {
-    task = (GenerateMobilePhoneSignatureRequestTask) context.getBean("GenerateMobilePhoneSignatureRequestTask");
+    task = (GenerateMobilePhoneSignatureRequestTask) context.getBean(
+        "GenerateMobilePhoneSignatureRequestTask");
 
     httpReq = new MockHttpServletRequest("POST", "https://localhost/authhandler");
     httpResp = new MockHttpServletResponse();
     RequestContextHolder.resetRequestAttributes();
     RequestContextHolder.setRequestAttributes(new ServletRequestAttributes(httpReq, httpResp));
 
-    authConfig.putConfigValue("modules.idaustriaclient.request.sign.alias", "sig");
+    authConfig.putConfigValue(IdAustriaClientAuthConstants.CONFIG_PROPS_ID_AUSTRIA_ENTITYID,
+        METADATA_PATH);
+    authConfig.putConfigValue(IdAustriaClientAuthConstants.CONFIG_PROPS_SIGN_SIGNING_ALIAS,
+        "sig");
 
     oaParam = new DummyOA();
     oaParam.setUniqueAppId("http://test.com/test");
-    oaParam.setBmiUniqueIdentifier(oaParam.getUniqueIdentifier() + "#" + RandomStringUtils.randomAlphanumeric(5));
+    oaParam.setBmiUniqueIdentifier(oaParam.getUniqueIdentifier() + "#" + RandomStringUtils.randomAlphanumeric(
+        5));
     oaParam.setTargetIdentifier(
         EaafConstants.URN_PREFIX_CDID + RandomStringUtils.randomAlphabetic(2));
     oaParam.setEidasEnabled(true);
-    oaParam.putGenericConfigurationKey(
-        IdAustriaClientAuthConstants.CONFIG_PROPS_APPSPECIFIC_EIDAS_NODE_URL, null);
-    //    oaParam.setMandateProfilesCsv(
-    //        RandomStringUtils.randomAlphabetic(5)
-    //            + "," + RandomStringUtils.randomAlphabetic(5)
-    //            + "," + RandomStringUtils.randomAlphabetic(5));
 
     pendingReq = new TestRequestImpl();
     pendingReq.setPendingReqId(RandomStringUtils.randomAlphanumeric(10));
@@ -140,108 +135,69 @@ public class GenerateMobilePhoneSignatureRequestTaskTest {
 
   @Test
   public void noMetadataAvailableOnGlobalConfig() {
-    authConfig.putConfigValue(IdAustriaClientAuthConstants.CONFIG_PROPS_NODE_ENTITYID,
-        RandomStringUtils.randomAlphabetic(10));
-
-    try {
-      task.execute(pendingReq, executionContext);
-      Assert.fail();
-
-    } catch (final TaskExecutionException e) {
-      Assert.assertNotNull(e.getPendingRequestID());
-      Assert.assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
-      Assert.assertNotNull(e.getOriginalException());
-      org.springframework.util.Assert.isInstanceOf(EaafConfigurationException.class,
-          e.getOriginalException());
-      Assert.assertEquals("module.eidasauth.02",
-          ((EaafConfigurationException) e.getOriginalException()).getErrorId());
-
-    }
+    authConfig.removeConfigValue(IdAustriaClientAuthConstants.CONFIG_PROPS_ID_AUSTRIA_ENTITYID);
+
+    final TaskExecutionException e = assertThrows(TaskExecutionException.class,
+        () -> task.execute(pendingReq, executionContext));
+
+    Assert.assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
+    Assert.assertNotNull(e.getOriginalException());
+    org.springframework.util.Assert.isInstanceOf(EaafConfigurationException.class,
+        e.getOriginalException());
+    Assert.assertEquals("module.eidasauth.00",
+        ((EaafConfigurationException) e.getOriginalException()).getErrorId());
+    
   }
 
   @Test
-  public void noMetadataAvailableOnSpConfig() {
-    oaParam.putGenericConfigurationKey(IdAustriaClientAuthConstants.CONFIG_PROPS_APPSPECIFIC_EIDAS_NODE_URL,
-        RandomStringUtils.randomAlphabetic(10));
-
-    try {
-      task.execute(pendingReq, executionContext);
-      Assert.fail();
-
-    } catch (final TaskExecutionException e) {
-      Assert.assertNotNull(e.getPendingRequestID());
-      Assert.assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
-      Assert.assertNotNull(e.getOriginalException());
-      org.springframework.util.Assert.isInstanceOf(EaafConfigurationException.class,
-          e.getOriginalException());
-      Assert.assertEquals("module.eidasauth.02",
-          ((EaafConfigurationException) e.getOriginalException()).getErrorId());
-
-    }
+  public void wrongMetadataAvailableOnGlobalConfig() {
+    authConfig.putConfigValue(IdAustriaClientAuthConstants.CONFIG_PROPS_ID_AUSTRIA_ENTITYID,
+        "http://wrong.path/" + RandomStringUtils.randomAlphabetic(5));
+
+    final TaskExecutionException e = assertThrows(TaskExecutionException.class,
+        () -> task.execute(pendingReq, executionContext));
+    Assert.assertNotNull(e.getPendingRequestID());
+    Assert.assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
+    Assert.assertNotNull(e.getOriginalException());
+    org.springframework.util.Assert.isInstanceOf(EaafConfigurationException.class,
+        e.getOriginalException());
+    Assert.assertEquals("module.eidasauth.idaustria.02",
+        ((EaafConfigurationException) e.getOriginalException()).getErrorId());
+
   }
 
   @Test
   public void noMetadataSigningKeyStore() throws Pvp2MetadataException {
-    oaParam.putGenericConfigurationKey(IdAustriaClientAuthConstants.CONFIG_PROPS_APPSPECIFIC_EIDAS_NODE_URL,
-        METADATA_PATH);
-
-    authConfig.removeConfigValue("modules.idaustriaclient.request.sign.alias");
+    authConfig.removeConfigValue(IdAustriaClientAuthConstants.CONFIG_PROPS_SIGN_SIGNING_ALIAS);
 
     metadataProvider.addMetadataResolverIntoChain(
         metadataFactory.createMetadataProvider(METADATA_PATH, null, "jUnitTest", null));
 
-    try {
-      task.execute(pendingReq, executionContext);
-      Assert.fail();
-
-    } catch (final TaskExecutionException e) {
-      Assert.assertNotNull(e.getPendingRequestID());
-      Assert.assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
-      Assert.assertNotNull(e.getOriginalException());
-      org.springframework.util.Assert.isInstanceOf(CredentialsNotAvailableException.class,
-          e.getOriginalException());
-      Assert.assertEquals("internal.pvp.01",
-          ((CredentialsNotAvailableException) e.getOriginalException()).getErrorId());
+    final TaskExecutionException e = assertThrows(TaskExecutionException.class,
+        () -> task.execute(pendingReq, executionContext));
+    Assert.assertNotNull(e.getPendingRequestID());
+    Assert.assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
+    Assert.assertNotNull(e.getOriginalException());
+    org.springframework.util.Assert.isInstanceOf(CredentialsNotAvailableException.class,
+        e.getOriginalException());
+    Assert.assertEquals("internal.pvp.01",
+        ((CredentialsNotAvailableException) e.getOriginalException()).getErrorId());
 
-    }
   }
 
   @Test
   public void success() throws Exception {
-    oaParam.putGenericConfigurationKey(IdAustriaClientAuthConstants.CONFIG_PROPS_APPSPECIFIC_EIDAS_NODE_URL,
-        METADATA_PATH);
     metadataProvider.addMetadataResolverIntoChain(
         metadataFactory.createMetadataProvider(METADATA_PATH, null, "jUnitTest", null));
     pendingReq.setTransactionId(RandomStringUtils.randomAlphanumeric(10));
 
     task.execute(pendingReq, executionContext);
 
-    final EaafRequestedAttributes reqAttr = validate();
-    Assert.assertEquals("#Req Attribute", 2, reqAttr.getAttributes().size());
-
-    Assert.assertEquals("Wrong req attr.", "urn:eidgvat:attributes.transactionId",
-        reqAttr.getAttributes().get(0).getName());
-    Assert.assertNotNull("Req. Attr value element", reqAttr.getAttributes().get(0).getAttributeValues());
-    Assert.assertEquals("#Req. Attr value", 1,
-        reqAttr.getAttributes().get(0).getAttributeValues().size());
-    org.springframework.util.Assert.isInstanceOf(XSString.class,
-        reqAttr.getAttributes().get(0).getAttributeValues().get(0), "Wrong requested Attributes Value type");
-    Assert.assertEquals("Req. Attr. Value", pendingReq.getUniqueTransactionIdentifier(),
-        ((XSString) reqAttr.getAttributes().get(0).getAttributeValues().get(0)).getValue());
-
-    Assert.assertEquals("Wrong req attr.", "urn:oid:1.2.40.0.10.2.1.1.261.34",
-        reqAttr.getAttributes().get(1).getName());
-    Assert.assertNotNull("Req. Attr value element", reqAttr.getAttributes().get(1).getAttributeValues());
-    Assert.assertEquals("#Req. Attr value", 1,
-        reqAttr.getAttributes().get(1).getAttributeValues().size());
-    org.springframework.util.Assert.isInstanceOf(XSString.class,
-        reqAttr.getAttributes().get(1).getAttributeValues().get(0), "Wrong requested Attributes Value type");
-    Assert.assertEquals("Req. Attr. Value", oaParam.getAreaSpecificTargetIdentifier(),
-        ((XSString) reqAttr.getAttributes().get(1).getAttributeValues().get(0)).getValue());
+    validate();
 
   }
 
-  private EaafRequestedAttributes validate() throws Exception {
+  private void validate() throws Exception {
     Assert.assertEquals("HTTP Statuscode", 200, httpResp.getStatus());
     Assert.assertEquals("ContentType", "text/html;charset=UTF-8", httpResp.getContentType());
     Assert.assertEquals("ContentEncoding", "UTF-8", httpResp.getCharacterEncoding());
@@ -252,18 +208,15 @@ public class GenerateMobilePhoneSignatureRequestTaskTest {
     final int startIndex = html.indexOf("SAMLRequest=");
     Assert.assertTrue("No SAMLRequest in html", startIndex >= 0);
     final String authnXml = html.substring(startIndex + "SAMLRequest=".length());
-    //TODO why do i have to do that?? => remove "} from end
-//    String authnXml2 = authnXml1.substring(0,authnXml1.length()-2);
 
-    //check if relaystate was stored
+    // check if relaystate was stored
     final int startIndexRelayState = html.indexOf("RelayState=");
     Assert.assertTrue("wrong RelayState in HTML",
         startIndexRelayState >= 0);
-    String relayState = html.substring(startIndexRelayState + "RelayState=".length(), startIndex);
-//    String storedPendingReqId = transactionStorage.get(relayState, String.class);
-//    Assert.assertEquals("relayStore not map to pendingRequestId",
-//        pendingReq.getPendingRequestId(), storedPendingReqId);
-
+    final String relayState = html.substring(startIndexRelayState + "RelayState=".length(), startIndex);
+    final String storedPendingReqId = transactionStorage.get(relayState, String.class);
+    Assert.assertEquals("relayStore not map to pendingRequestId",
+        pendingReq.getPendingRequestId(), storedPendingReqId);
 
     final AuthnRequest authnRequest = (AuthnRequest) XMLObjectSupport.unmarshallFromInputStream(
         XMLObjectProviderRegistrySupport.getParserPool(), new ByteArrayInputStream(
@@ -275,25 +228,17 @@ public class GenerateMobilePhoneSignatureRequestTaskTest {
         "https://localhost/authhandler" + IdAustriaClientAuthConstants.ENDPOINT_METADATA,
         authnRequest.getIssuer().getValue());
 
-    //check XML scheme
+    // check XML scheme
     Saml2Utils.schemeValidation(authnRequest);
 
-
-    //check signature
+    // check signature
     final PvpSProfileRequest msg = new PvpSProfileRequest(
         authnRequest,
         SAMLConstants.SAML2_POST_BINDING_URI);
     msg.setEntityID(authnRequest.getIssuer().getValue());
     metadataProvider.addMetadataResolverIntoChain(
         metadataFactory.createMetadataProvider(METADATA_SP_PATH, null, "jUnit SP", null));
-    //samlVerifyEngine.verify(msg, TrustEngineFactory.getSignatureKnownKeysTrustEngine(metadataProvider));
-//TODO
-    //check other elements
-//    Assert.assertNotNull("Proxy-Scope", authnRequest.getScoping());
-//    Assert.assertNotNull("RequesterIds", authnRequest.getScoping().getRequesterIDs());
-//    Assert.assertEquals("#RequesterIds", 1, authnRequest.getScoping().getRequesterIDs().size());
-//    Assert.assertEquals("RequesterId", oaParam.getUniqueApplicationRegisterIdentifier(),
-//        authnRequest.getScoping().getRequesterIDs().get(0).getRequesterID());
+    samlVerifyEngine.verify(msg, TrustEngineFactory.getSignatureKnownKeysTrustEngine(metadataProvider));
 
     Assert.assertNotNull("RequestedAuthnContext", authnRequest.getRequestedAuthnContext());
     Assert.assertNotNull("AuthnContextClassRef",
@@ -303,15 +248,6 @@ public class GenerateMobilePhoneSignatureRequestTaskTest {
     Assert.assertEquals("LoA", "http://eidas.europa.eu/LoA/high",
         authnRequest.getRequestedAuthnContext().getAuthnContextClassRefs().get(0).getAuthnContextClassRef());
 
-    Assert.assertNotNull("Extensions", authnRequest.getExtensions());
-    Assert.assertFalse("No Requested attributes",
-        authnRequest.getExtensions().getUnknownXMLObjects().isEmpty());
-
-    Assert.assertEquals("#ReqAttributes", 1, authnRequest.getExtensions().getUnknownXMLObjects().size());
-    org.springframework.util.Assert.isInstanceOf(EaafRequestedAttributes.class,
-        authnRequest.getExtensions().getUnknownXMLObjects().get(0), "No Requested Attributes object");
-
-    return (EaafRequestedAttributes) authnRequest.getExtensions().getUnknownXMLObjects().get(0);
   }
 
   private IVelocityGuiBuilderConfiguration createDummyGuiConfig() {
@@ -334,7 +270,8 @@ public class GenerateMobilePhoneSignatureRequestTaskTest {
 
       @Override
       public InputStream getTemplate(String viewName) {
-        return GenerateMobilePhoneSignatureRequestTaskTest.class.getResourceAsStream("/data/pvp_postbinding_template.html");
+        return GenerateMobilePhoneSignatureRequestTaskTest.class.getResourceAsStream(
+            "/data/pvp_postbinding_template.html");
       }
 
       @Override
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest.java
index 550c2f13..fb34a2dd 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest.java
@@ -1,24 +1,12 @@
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.test.tasks;
 
+import static org.junit.Assert.assertThrows;
 
 import java.io.IOException;
 import java.util.Base64;
 
 import javax.xml.transform.TransformerException;
 
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.MergedRegisterSearchResult;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.InvalidUserInputException;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthConstants;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthCredentialProvider;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthMetadataProvider;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.test.dummy.DummyAuthConfigMap;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.test.dummy.DummyOA;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.test.dummy.DummyPendingRequest;
-import at.gv.egiz.eaaf.core.exceptions.EaafStorageException;
-import at.gv.egiz.eaaf.core.impl.idp.auth.data.AuthProcessDataWrapper;
 import org.apache.commons.io.IOUtils;
 import org.apache.commons.lang3.RandomStringUtils;
 import org.joda.time.DateTime;
@@ -42,11 +30,22 @@ import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
 import org.springframework.web.context.request.RequestContextHolder;
 import org.springframework.web.context.request.ServletRequestAttributes;
 
+import at.asitplus.eidas.specific.connector.test.config.dummy.MsConnectorDummyConfigMap;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.InvalidUserInputException;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthConstants;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.provider.IdAustriaClientAuthCredentialProvider;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.provider.IdAustriaClientAuthMetadataProvider;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.test.dummy.DummyOA;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.test.dummy.DummyPendingRequest;
 import at.gv.egiz.eaaf.core.api.data.EaafConstants;
-import at.gv.egiz.eaaf.core.api.data.ExtendedPvpAttributeDefinitions;
 import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
 import at.gv.egiz.eaaf.core.exceptions.EaafException;
+import at.gv.egiz.eaaf.core.exceptions.EaafStorageException;
 import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
+import at.gv.egiz.eaaf.core.impl.idp.auth.data.AuthProcessDataWrapper;
 import at.gv.egiz.eaaf.core.impl.idp.process.ExecutionContextImpl;
 import at.gv.egiz.eaaf.core.impl.utils.DomUtils;
 import at.gv.egiz.eaaf.modules.pvp2.api.credential.EaafX509Credential;
@@ -60,29 +59,24 @@ import at.gv.egiz.eaaf.modules.pvp2.sp.exception.AuthnResponseValidationExceptio
 import net.shibboleth.utilities.java.support.xml.XMLParserException;
 
 @RunWith(SpringJUnit4ClassRunner.class)
-//@ContextConfiguration({"/spring/SpringTest-context_mapConfig_full.xml", "classpath:/spring/test_eaaf_core.beans.xml"})
 @ContextConfiguration(locations = {
-    "/SpringTest-context_tasks_test1.xml",
-    "/SpringTest-context_basic_mapConfig1.xml"
+    "/SpringTest-context_tasks_test.xml",
+    "/SpringTest-context_basic_mapConfig.xml"
 })
 public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest {
 
   private static final String METADATA_PATH = "classpath:/data/idp_metadata_classpath_entity.xml";
-  private static final String METADATA_PATH1 = "classpath:/data/idp_metadata_classpath_entity1.xml";
-  private static final String TEST_SIGNED_AUTHBLOCK = "MIIBbjCCARSgAwIBAgIEXh7TNzAKBggqhkjOPQQDAjA/MQswCQYDVQQG"
-      + "EwJBVDENMAsGA1UECgwERUdJWjEOMAwGA1UECwwFalVuaXQxETAPBgNVBAMMCG1ldGFkYXRhMB4XDTIwMDExNTA4NTQxNVoXDTMw"
-      + "MDExNDA4NTQxNVowPzELMAkGA1UEBhMCQVQxDTALBgNVBAoMBEVHSVoxDjAMBgNVBAsMBWpVbml0MREwDwYDVQQDDAhtZXRhZGF0"
-      + "YTBZMBMGByqGSM49AgEGCCqGSM49AwEHA0IABBdBkaxt31p++aZeP3SmlWITj9SYO4McV2ccXFsH4X4QMHuKAMUvjxPm1kdU01eT"
-      + "OWdiQX0GpDIBspYMZh8ZKcwwCgYIKoZIzj0EAwIDSAAwRQIhAJ3QKlk9cd90s+i8y62fvmGF6LtfNO+JvkWqDUBeQImnAiA2KwFt"
-      + "zO7STAp9MEwQGe0vt0F8mO1ttrLE+rr6YxdwGA==";
 
   @Autowired(required = true)
   private ApplicationContext context;
   @Autowired(required = true)
-  protected DummyAuthConfigMap authConfig;
-  @Autowired private IdAustriaClientAuthMetadataProvider metadataProvider;
-  @Autowired private IdAustriaClientAuthCredentialProvider credentialProvider;
-  @Autowired private PvpMetadataResolverFactory metadataFactory;
+  protected MsConnectorDummyConfigMap authConfig;
+  @Autowired
+  private IdAustriaClientAuthMetadataProvider metadataProvider;
+  @Autowired
+  private IdAustriaClientAuthCredentialProvider credentialProvider;
+  @Autowired
+  private PvpMetadataResolverFactory metadataFactory;
 
   final ExecutionContext executionContext = new ExecutionContextImpl();
   private MockHttpServletRequest httpReq;
@@ -110,7 +104,8 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest {
    */
   @Before
   public void setUp() throws Exception {
-    task = (ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask) context.getBean("ReceiveMobilePhoneSignatureResponseTask");
+    task = (ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask) context.getBean(
+        "ReceiveMobilePhoneSignatureResponseTask");
 
     httpReq = new MockHttpServletRequest("POST", "https://localhost/authhandler");
     httpReq.setScheme("https");
@@ -120,28 +115,18 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest {
     RequestContextHolder.resetRequestAttributes();
     RequestContextHolder.setRequestAttributes(new ServletRequestAttributes(httpReq, httpResp));
 
-    authConfig.putConfigValue("modules.eidascentralauth.request.sign.alias", "sig");
-//    authConfig.putConfigValue(AuthHandlerConstants.PROP_CONFIG_LEGACY_ALLOW, "false");
+    authConfig.putConfigValue(IdAustriaClientAuthConstants.CONFIG_PROPS_ID_AUSTRIA_ENTITYID,
+        METADATA_PATH);
 
     oaParam = new DummyOA();
     oaParam.setUniqueAppId("http://test.com/test");
     oaParam.setTargetIdentifier(
         EaafConstants.URN_PREFIX_CDID + RandomStringUtils.randomAlphabetic(2));
-    oaParam.setEidasEnabled(true);
-    oaParam.putGenericConfigurationKey(
-        IdAustriaClientAuthConstants.CONFIG_PROPS_APPSPECIFIC_EIDAS_NODE_URL, METADATA_PATH);
-    oaParam.putGenericConfigurationKey(
-        IdAustriaClientAuthConstants.CONFIG_PROPS_APPSPECIFIC_EIDAS_NODE_URL, null);
-    oaParam.setMandateProfilesCsv(
-        RandomStringUtils.randomAlphabetic(5)
-            + "," + RandomStringUtils.randomAlphabetic(5)
-            + "," + RandomStringUtils.randomAlphabetic(5));
 
     pendingReq = new DummyPendingRequest();
     pendingReq.initialize(httpReq, authConfig);
     pendingReq.setPendingRequestId(RandomStringUtils.randomAlphanumeric(10));
     pendingReq.setOnlineApplicationConfiguration(oaParam);
-    //pendingReq.setAuthUrl("https://localhost/authhandler");
 
     metadataProvider.fullyDestroy();
 
@@ -153,20 +138,17 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest {
     RequestContextHolder.resetRequestAttributes();
     RequestContextHolder.setRequestAttributes(new ServletRequestAttributes(httpReq, httpResp));
 
-    try {
-      task.execute(pendingReq, executionContext);
-      Assert.fail("Invalid response not detected");
+    final TaskExecutionException e = assertThrows(TaskExecutionException.class,
+        () -> task.execute(pendingReq, executionContext));
 
-    } catch (final TaskExecutionException e) {
-      Assert.assertNotNull(e.getPendingRequestID());
-      Assert.assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
-      Assert.assertNotNull(e.getOriginalException());
-      org.springframework.util.Assert.isInstanceOf(AuthnResponseValidationException.class,
-          e.getOriginalException());
-      Assert.assertEquals("sp.pvp2.03",
-          ((AuthnResponseValidationException) e.getOriginalException()).getErrorId());
+    Assert.assertNotNull(e.getPendingRequestID());
+    Assert.assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
+    Assert.assertNotNull(e.getOriginalException());
+    org.springframework.util.Assert.isInstanceOf(AuthnResponseValidationException.class,
+        e.getOriginalException());
+    Assert.assertEquals("sp.pvp2.03",
+        ((AuthnResponseValidationException) e.getOriginalException()).getErrorId());
 
-    }
   }
 
   @Test
@@ -175,61 +157,52 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest {
     RequestContextHolder.resetRequestAttributes();
     RequestContextHolder.setRequestAttributes(new ServletRequestAttributes(httpReq, httpResp));
 
-    try {
-      task.execute(pendingReq, executionContext);
-      Assert.fail("Invalid response not detected");
+    final TaskExecutionException e = assertThrows(TaskExecutionException.class,
+        () -> task.execute(pendingReq, executionContext));
 
-    } catch (final TaskExecutionException e) {
-      Assert.assertNotNull(e.getPendingRequestID());
-      Assert.assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
-      Assert.assertNotNull(e.getOriginalException());
-      org.springframework.util.Assert.isInstanceOf(AuthnResponseValidationException.class,
-          e.getOriginalException());
-      Assert.assertEquals("sp.pvp2.12",
-          ((AuthnResponseValidationException) e.getOriginalException()).getErrorId());
+    Assert.assertNotNull(e.getPendingRequestID());
+    Assert.assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
+    Assert.assertNotNull(e.getOriginalException());
+    org.springframework.util.Assert.isInstanceOf(AuthnResponseValidationException.class,
+        e.getOriginalException());
+    Assert.assertEquals("sp.pvp2.12",
+        ((AuthnResponseValidationException) e.getOriginalException()).getErrorId());
 
-    }
   }
 
   @Test
   public void httpPostNoMessage() {
-    try {
-      task.execute(pendingReq, executionContext);
-      Assert.fail("Invalid response not detected");
+    final TaskExecutionException e = assertThrows(TaskExecutionException.class,
+        () -> task.execute(pendingReq, executionContext));
 
-    } catch (final TaskExecutionException e) {
-      Assert.assertNotNull(e.getPendingRequestID());
-      Assert.assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
-      Assert.assertNotNull(e.getOriginalException());
-      org.springframework.util.Assert.isInstanceOf(AuthnResponseValidationException.class,
-          e.getOriginalException());
-      Assert.assertEquals("sp.pvp2.12",
-          ((AuthnResponseValidationException) e.getOriginalException()).getErrorId());
+    Assert.assertNotNull(e.getPendingRequestID());
+    Assert.assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
+    Assert.assertNotNull(e.getOriginalException());
+    org.springframework.util.Assert.isInstanceOf(AuthnResponseValidationException.class,
+        e.getOriginalException());
+    Assert.assertEquals("sp.pvp2.12",
+        ((AuthnResponseValidationException) e.getOriginalException()).getErrorId());
 
-    }
   }
 
   @Test
   public void httpPostMessageNotSigned() throws IOException {
 
     httpReq.addParameter("SAMLResponse", Base64.getEncoder().encodeToString(
-        IOUtils.toByteArray(ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask.class.getResourceAsStream(
-            "/data/Response_without_sig_classpath_entityid.xml"))));
-
-    try {
-      task.execute(pendingReq, executionContext);
-      Assert.fail("Invalid response not detected");
+        IOUtils.toByteArray(ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask.class
+            .getResourceAsStream(
+                "/data/Response_without_sig_classpath_entityid.xml"))));
+
+    final TaskExecutionException e = assertThrows(TaskExecutionException.class,
+        () -> task.execute(pendingReq, executionContext));
+    Assert.assertNotNull(e.getPendingRequestID());
+    Assert.assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
+    Assert.assertNotNull(e.getOriginalException());
+    org.springframework.util.Assert.isInstanceOf(AuthnResponseValidationException.class,
+        e.getOriginalException());
+    Assert.assertEquals("sp.pvp2.12",
+        ((AuthnResponseValidationException) e.getOriginalException()).getErrorId());
 
-    } catch (final TaskExecutionException e) {
-      Assert.assertNotNull(e.getPendingRequestID());
-      Assert.assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
-      Assert.assertNotNull(e.getOriginalException());
-      org.springframework.util.Assert.isInstanceOf(AuthnResponseValidationException.class,
-          e.getOriginalException());
-      Assert.assertEquals("sp.pvp2.12",
-          ((AuthnResponseValidationException) e.getOriginalException()).getErrorId());
-
-    }
   }
 
   @Test
@@ -242,22 +215,20 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest {
         "/data/Response_with_wrong_destination_endpoint.xml",
         credentialProvider.getMessageSigningCredential(), true);
     httpReq.addParameter("SAMLResponse", Base64.getEncoder().encodeToString(
-        DomUtils.serializeNode(XMLObjectSupport.getMarshaller(response).marshall(response)).getBytes("UTF-8")));
+        DomUtils.serializeNode(XMLObjectSupport.getMarshaller(response).marshall(response)).getBytes(
+            "UTF-8")));
 
-    try {
-      task.execute(pendingReq, executionContext);
-      Assert.fail("Invalid response not detected");
+    final TaskExecutionException e = assertThrows(TaskExecutionException.class,
+        () -> task.execute(pendingReq, executionContext));
 
-    } catch (final TaskExecutionException e) {
-      Assert.assertNotNull(e.getPendingRequestID());
-      Assert.assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
-      Assert.assertNotNull(e.getOriginalException());
-      org.springframework.util.Assert.isInstanceOf(AuthnResponseValidationException.class,
-          e.getOriginalException());
-      Assert.assertEquals("sp.pvp2.12",
-          ((AuthnResponseValidationException) e.getOriginalException()).getErrorId());
+    Assert.assertNotNull(e.getPendingRequestID());
+    Assert.assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
+    Assert.assertNotNull(e.getOriginalException());
+    org.springframework.util.Assert.isInstanceOf(AuthnResponseValidationException.class,
+        e.getOriginalException());
+    Assert.assertEquals("sp.pvp2.12",
+        ((AuthnResponseValidationException) e.getOriginalException()).getErrorId());
 
-    }
   }
 
   @Test
@@ -270,22 +241,19 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest {
         "/data/Response_without_sig_classpath_entityid.xml",
         credentialProvider.getMessageSigningCredential(), true);
     httpReq.addParameter("SAMLResponse", Base64.getEncoder().encodeToString(
-        DomUtils.serializeNode(XMLObjectSupport.getMarshaller(response).marshall(response)).getBytes("UTF-8")));
+        DomUtils.serializeNode(XMLObjectSupport.getMarshaller(response).marshall(response)).getBytes(
+            "UTF-8")));
+
+    final TaskExecutionException e = assertThrows(TaskExecutionException.class,
+        () -> task.execute(pendingReq, executionContext));
+    Assert.assertNotNull(e.getPendingRequestID());
+    Assert.assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
+    Assert.assertNotNull(e.getOriginalException());
+    org.springframework.util.Assert.isInstanceOf(AuthnResponseValidationException.class,
+        e.getOriginalException());
+    Assert.assertEquals("sp.pvp2.11",
+        ((EaafException) e.getOriginalException()).getErrorId());
 
-    try {
-      task.execute(pendingReq, executionContext);
-      Assert.fail("Invalid response not detected");
-
-    } catch (final TaskExecutionException e) {
-      Assert.assertNotNull(e.getPendingRequestID());
-      Assert.assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
-      Assert.assertNotNull(e.getOriginalException());
-      org.springframework.util.Assert.isInstanceOf(AuthnResponseValidationException.class,
-          e.getOriginalException());
-      Assert.assertEquals("sp.pvp2.11",
-          ((EaafException) e.getOriginalException()).getErrorId());
-
-    }
   }
 
   @Test
@@ -301,22 +269,20 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest {
         "/data/Response_without_sig_classpath_entityid.xml",
         credentialProvider.getMessageSigningCredential(), false);
     httpReq.addParameter("SAMLResponse", Base64.getEncoder().encodeToString(
-        DomUtils.serializeNode(XMLObjectSupport.getMarshaller(response).marshall(response)).getBytes("UTF-8")));
+        DomUtils.serializeNode(XMLObjectSupport.getMarshaller(response).marshall(response)).getBytes(
+            "UTF-8")));
 
-    try {
-      task.execute(pendingReq, executionContext);
-      Assert.fail("Invalid response not detected");
+    final TaskExecutionException e = assertThrows(TaskExecutionException.class,
+        () -> task.execute(pendingReq, executionContext));
 
-    } catch (final TaskExecutionException e) {
-      Assert.assertNotNull(e.getPendingRequestID());
-      Assert.assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
-      Assert.assertNotNull(e.getOriginalException());
-      org.springframework.util.Assert.isInstanceOf(AuthnResponseValidationException.class,
-          e.getOriginalException());
-      Assert.assertEquals("sp.pvp2.12",
-          ((EaafException) e.getOriginalException()).getErrorId());
+    Assert.assertNotNull(e.getPendingRequestID());
+    Assert.assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
+    Assert.assertNotNull(e.getOriginalException());
+    org.springframework.util.Assert.isInstanceOf(AuthnResponseValidationException.class,
+        e.getOriginalException());
+    Assert.assertEquals("sp.pvp2.12",
+        ((EaafException) e.getOriginalException()).getErrorId());
 
-    }
   }
 
   @Test
@@ -324,36 +290,32 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest {
       Pvp2MetadataException, CredentialsNotAvailableException, XMLParserException, UnmarshallingException,
       MarshallingException, TransformerException {
 
-    oaParam.putGenericConfigurationKey(
-        IdAustriaClientAuthConstants.CONFIG_PROPS_APPSPECIFIC_EIDAS_NODE_URL, "http://wrong.idp");
-
+    authConfig.putConfigValue(IdAustriaClientAuthConstants.CONFIG_PROPS_ID_AUSTRIA_ENTITYID,
+        "http://wrong.idp/" + RandomStringUtils.randomAlphabetic(5));
+    
     metadataProvider.addMetadataResolverIntoChain(metadataFactory.createMetadataProvider(
         METADATA_PATH, null, "jUnit IDP", null));
-    metadataProvider.addMetadataResolverIntoChain(metadataFactory.createMetadataProvider(
-        METADATA_PATH1, null, "jUnit IDP", null));
 
     final Response response = initializeResponse(
-        "classpath:/data/idp_metadata_classpath_entity1.xml",
+        "classpath:/data/idp_metadata_classpath_entity.xml",
         "/data/Response_without_sig_classpath_entityid.xml",
         credentialProvider.getMessageSigningCredential(),
         true);
     httpReq.addParameter("SAMLResponse", Base64.getEncoder().encodeToString(
-        DomUtils.serializeNode(XMLObjectSupport.getMarshaller(response).marshall(response)).getBytes("UTF-8")));
+        DomUtils.serializeNode(XMLObjectSupport.getMarshaller(response).marshall(response)).getBytes(
+            "UTF-8")));
 
-    try {
-      task.execute(pendingReq, executionContext);
-      Assert.fail("Invalid response not detected");
+    final TaskExecutionException e = assertThrows(TaskExecutionException.class,
+        () -> task.execute(pendingReq, executionContext));
 
-    } catch (final TaskExecutionException e) {
-      Assert.assertNotNull(e.getPendingRequestID());
-      Assert.assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
-      Assert.assertNotNull(e.getOriginalException());
-      org.springframework.util.Assert.isInstanceOf(AuthnResponseValidationException.class,
-          e.getOriginalException());
-      Assert.assertEquals("sp.pvp2.08",
-          ((EaafException) e.getOriginalException()).getErrorId());
+    Assert.assertNotNull(e.getPendingRequestID());
+    Assert.assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
+    Assert.assertNotNull(e.getOriginalException());
+    org.springframework.util.Assert.isInstanceOf(AuthnResponseValidationException.class,
+        e.getOriginalException());
+    Assert.assertEquals("sp.pvp2.08",
+        ((EaafException) e.getOriginalException()).getErrorId());
 
-    }
   }
 
   @Test
@@ -361,9 +323,6 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest {
       Pvp2MetadataException, CredentialsNotAvailableException, XMLParserException, UnmarshallingException,
       MarshallingException, TransformerException {
 
-    oaParam.putGenericConfigurationKey(
-        IdAustriaClientAuthConstants.CONFIG_PROPS_APPSPECIFIC_EIDAS_NODE_URL, METADATA_PATH);
-
     metadataProvider.addMetadataResolverIntoChain(metadataFactory.createMetadataProvider(
         METADATA_PATH, null, "jUnit IDP", null));
 
@@ -373,22 +332,20 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest {
         credentialProvider.getMessageSigningCredential(),
         true);
     httpReq.addParameter("SAMLResponse", Base64.getEncoder().encodeToString(
-        DomUtils.serializeNode(XMLObjectSupport.getMarshaller(response).marshall(response)).getBytes("UTF-8")));
+        DomUtils.serializeNode(XMLObjectSupport.getMarshaller(response).marshall(response)).getBytes(
+            "UTF-8")));
 
-    try {
-      task.execute(pendingReq, executionContext);
-      Assert.fail("Invalid response not detected");
+    final TaskExecutionException e = assertThrows(TaskExecutionException.class,
+        () -> task.execute(pendingReq, executionContext));
 
-    } catch (final TaskExecutionException e) {
-      Assert.assertNotNull(e.getPendingRequestID());
-      Assert.assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
-      Assert.assertNotNull(e.getOriginalException());
-      org.springframework.util.Assert.isInstanceOf(AuthnResponseValidationException.class,
-          e.getOriginalException());
-      Assert.assertEquals("sp.pvp2.12",
-          ((EaafException) e.getOriginalException()).getErrorId());
+    Assert.assertNotNull(e.getPendingRequestID());
+    Assert.assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
+    Assert.assertNotNull(e.getOriginalException());
+    org.springframework.util.Assert.isInstanceOf(AuthnResponseValidationException.class,
+        e.getOriginalException());
+    Assert.assertEquals("sp.pvp2.12",
+        ((EaafException) e.getOriginalException()).getErrorId());
 
-    }
   }
 
   @Test
@@ -396,9 +353,6 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest {
       Pvp2MetadataException, CredentialsNotAvailableException, XMLParserException, UnmarshallingException,
       MarshallingException, TransformerException {
 
-    oaParam.putGenericConfigurationKey(
-        IdAustriaClientAuthConstants.CONFIG_PROPS_APPSPECIFIC_EIDAS_NODE_URL, METADATA_PATH);
-
     metadataProvider.addMetadataResolverIntoChain(metadataFactory.createMetadataProvider(
         METADATA_PATH, null, "jUnit IDP", null));
 
@@ -408,22 +362,20 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest {
         credentialProvider.getMessageSigningCredential(),
         true);
     httpReq.addParameter("SAMLResponse", Base64.getEncoder().encodeToString(
-        DomUtils.serializeNode(XMLObjectSupport.getMarshaller(response).marshall(response)).getBytes("UTF-8")));
+        DomUtils.serializeNode(XMLObjectSupport.getMarshaller(response).marshall(response)).getBytes(
+            "UTF-8")));
 
-    try {
-      task.execute(pendingReq, executionContext);
-      Assert.fail("Invalid response not detected");
+    final TaskExecutionException e = assertThrows(TaskExecutionException.class,
+        () -> task.execute(pendingReq, executionContext));
 
-    } catch (final TaskExecutionException e) {
-      Assert.assertNotNull(e.getPendingRequestID());
-      Assert.assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
-      Assert.assertNotNull(e.getOriginalException());
-      org.springframework.util.Assert.isInstanceOf(AuthnResponseValidationException.class,
-          e.getOriginalException());
-      Assert.assertEquals("sp.pvp2.05",
-          ((EaafException) e.getOriginalException()).getErrorId());
+    Assert.assertNotNull(e.getPendingRequestID());
+    Assert.assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
+    Assert.assertNotNull(e.getOriginalException());
+    org.springframework.util.Assert.isInstanceOf(AuthnResponseValidationException.class,
+        e.getOriginalException());
+    Assert.assertEquals("sp.pvp2.05",
+        ((EaafException) e.getOriginalException()).getErrorId());
 
-    }
   }
 
   @Test
@@ -431,9 +383,6 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest {
       Pvp2MetadataException, CredentialsNotAvailableException, XMLParserException, UnmarshallingException,
       MarshallingException, TransformerException, TaskExecutionException {
 
-    oaParam.putGenericConfigurationKey(
-        IdAustriaClientAuthConstants.CONFIG_PROPS_APPSPECIFIC_EIDAS_NODE_URL, METADATA_PATH);
-
     metadataProvider.addMetadataResolverIntoChain(metadataFactory.createMetadataProvider(
         METADATA_PATH, null, "jUnit IDP", null));
 
@@ -443,12 +392,13 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest {
         credentialProvider.getMessageSigningCredential(),
         true);
     httpReq.addParameter("SAMLResponse", Base64.getEncoder().encodeToString(
-        DomUtils.serializeNode(XMLObjectSupport.getMarshaller(response).marshall(response)).getBytes("UTF-8")));
+        DomUtils.serializeNode(XMLObjectSupport.getMarshaller(response).marshall(response)).getBytes(
+            "UTF-8")));
 
-    //perform test
+    // perform test
     task.execute(pendingReq, executionContext);
 
-    //validate state
+    // validate state
     Assert.assertTrue("process not cancelled", executionContext.isProcessCancelled());
     Assert.assertTrue("process not stopped by user", pendingReq.isAbortedByUser());
     Assert.assertFalse("should not authenticated", pendingReq.isAuthenticated());
@@ -460,9 +410,6 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest {
       Pvp2MetadataException, CredentialsNotAvailableException, XMLParserException, UnmarshallingException,
       MarshallingException, TransformerException {
 
-    oaParam.putGenericConfigurationKey(
-        IdAustriaClientAuthConstants.CONFIG_PROPS_APPSPECIFIC_EIDAS_NODE_URL, METADATA_PATH);
-
     metadataProvider.addMetadataResolverIntoChain(metadataFactory.createMetadataProvider(
         METADATA_PATH, null, "jUnit IDP", null));
 
@@ -472,7 +419,8 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest {
         credentialProvider.getMessageSigningCredential(),
         true);
     httpReq.addParameter("SAMLResponse", Base64.getEncoder().encodeToString(
-        DomUtils.serializeNode(XMLObjectSupport.getMarshaller(response).marshall(response)).getBytes("UTF-8")));
+        DomUtils.serializeNode(XMLObjectSupport.getMarshaller(response).marshall(response)).getBytes(
+            "UTF-8")));
 
     try {
       task.execute(pendingReq, executionContext);
@@ -495,9 +443,6 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest {
       Pvp2MetadataException, CredentialsNotAvailableException, XMLParserException, UnmarshallingException,
       MarshallingException, TransformerException {
 
-    oaParam.putGenericConfigurationKey(
-        IdAustriaClientAuthConstants.CONFIG_PROPS_APPSPECIFIC_EIDAS_NODE_URL, METADATA_PATH);
-
     metadataProvider.addMetadataResolverIntoChain(metadataFactory.createMetadataProvider(
         METADATA_PATH, null, "jUnit IDP", null));
 
@@ -507,7 +452,8 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest {
         credentialProvider.getMessageSigningCredential(),
         true);
     httpReq.addParameter("SAMLResponse", Base64.getEncoder().encodeToString(
-        DomUtils.serializeNode(XMLObjectSupport.getMarshaller(response).marshall(response)).getBytes("UTF-8")));
+        DomUtils.serializeNode(XMLObjectSupport.getMarshaller(response).marshall(response)).getBytes(
+            "UTF-8")));
 
     try {
       task.execute(pendingReq, executionContext);
@@ -530,9 +476,6 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest {
       Pvp2MetadataException, CredentialsNotAvailableException, XMLParserException, UnmarshallingException,
       MarshallingException, TransformerException, TaskExecutionException, EaafStorageException {
 
-    oaParam.putGenericConfigurationKey(
-        IdAustriaClientAuthConstants.CONFIG_PROPS_APPSPECIFIC_EIDAS_NODE_URL, METADATA_PATH);
-
     metadataProvider.addMetadataResolverIntoChain(metadataFactory.createMetadataProvider(
         METADATA_PATH, null, "jUnit IDP", null));
 
@@ -542,57 +485,27 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest {
         credentialProvider.getMessageSigningCredential(),
         true);
     httpReq.addParameter("SAMLResponse", Base64.getEncoder().encodeToString(
-        DomUtils.serializeNode(XMLObjectSupport.getMarshaller(response).marshall(response)).getBytes("UTF-8")));
+        DomUtils.serializeNode(XMLObjectSupport.getMarshaller(response).marshall(response)).getBytes(
+            "UTF-8")));
 
-    //put SimpleEidasData in session
+    // put SimpleEidasData in session
     final AuthProcessDataWrapper authProcessData = pendingReq.getSessionData(AuthProcessDataWrapper.class);
-    SimpleEidasData eidData = new SimpleEidasData();
+    final SimpleEidasData eidData = new SimpleEidasData();
     eidData.setFamilyName("Mustermann");
     eidData.setGivenName("Max");
     eidData.setDateOfBirth("1940-01-01");
     authProcessData.setGenericDataToSession(Constants.DATA_SIMPLE_EIDAS, eidData);
 
-    //perform task
+    // perform task
     task.execute(pendingReq, executionContext);
 
-    //validate state
-//    Assert.assertTrue("Wrong EID-Process flag",
-//        (boolean) executionContext.get(AuthHandlerConstants.PROCESSCONTEXT_WAS_EID_PROCESS));
-//    Assert.assertFalse("Wrong Mandate flag",
-//        (boolean) executionContext.get(AuthHandlerConstants.HTTP_PARAM_USE_MANDATES));
-
-//    Assert.assertEquals("piiTransactionId", "piiId_112233445566", pendingReq.getUniquePiiTransactionIdentifier());
-
+    // validate state
     final AuthProcessDataWrapper session = pendingReq.getSessionData(AuthProcessDataWrapper.class);
-
-//    Assert.assertTrue("E-ID flag", session.isEidProcess());
-//    Assert.assertTrue("Foreign flag", session.isForeigner());
-//    Assert.assertEquals("eidasBind", EIDAS_BIND, session.getQcBind());
-//    Assert.assertEquals("vsz",
-//        "OD/kCGIFbjLTW0po6IZSmoaz3uhPYlO3S5bs9JnK0A5DHtufM3APLuDc3Llp4PeNdEa4NrCmgHr1YUiHT5irT8eDAfGpIbQHJg==",
-//        session.getVsz());
-//    Assert.assertArrayEquals("signedConsent",
-//        Base64.getDecoder().decode(TEST_SIGNED_AUTHBLOCK), session.getSignedAuthBlock());
-//    Assert.assertEquals("AuthBlockType", AuthHandlerConstants.AuthBlockType.JWS, session.getSignedAuthBlockType());
-
     Assert.assertEquals("LoA", "http://eidas.europa.eu/LoA/low", session.getQaaLevel());
-//    Assert.assertEquals("CountryCode", "IT", session.getGenericDataFromSession(
-//        ExtendedPvpAttributeDefinitions.EID_ISSUING_NATION_NAME, String.class));
     Assert.assertEquals("IssueInstant", "2014-03-05T06:39:51Z", session.getIssueInstantString());
 
-//    Assert.assertNull("SigCert", session.getEncodedSignerCertificate());
-
-//    Assert.assertFalse("Mandate flag", session.isMandateUsed());
-//    Assert.assertNull("MandateInfos", session.getMandateDate());
+    //TODO:
 
-    Assert.assertNull("MandateType", session.getGenericDataFromSession(
-        ExtendedPvpAttributeDefinitions.MANDATE_TYPE_NAME, String.class));
-    Assert.assertNull("Legal Person CommonName", session.getGenericDataFromSession(
-        ExtendedPvpAttributeDefinitions.MANDATE_LEG_PER_FULL_NAME_NAME, String.class));
-    Assert.assertNull("Legal Person SourcePin",session.getGenericDataFromSession(
-        ExtendedPvpAttributeDefinitions.MANDATE_LEG_PER_SOURCE_PIN_NAME, String.class));
-    Assert.assertNull("Legal Person SourcePinType", session.getGenericDataFromSession(
-        ExtendedPvpAttributeDefinitions.MANDATE_LEG_PER_SOURCE_PIN_TYPE_NAME, String.class));
   }
 
   @Test
@@ -600,9 +513,6 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest {
       Pvp2MetadataException, CredentialsNotAvailableException, XMLParserException, UnmarshallingException,
       MarshallingException, TransformerException, TaskExecutionException, EaafStorageException {
 
-    oaParam.putGenericConfigurationKey(
-        IdAustriaClientAuthConstants.CONFIG_PROPS_APPSPECIFIC_EIDAS_NODE_URL, METADATA_PATH);
-
     metadataProvider.addMetadataResolverIntoChain(metadataFactory.createMetadataProvider(
         METADATA_PATH, null, "jUnit IDP", null));
 
@@ -612,17 +522,18 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest {
         credentialProvider.getMessageSigningCredential(),
         true);
     httpReq.addParameter("SAMLResponse", Base64.getEncoder().encodeToString(
-        DomUtils.serializeNode(XMLObjectSupport.getMarshaller(response).marshall(response)).getBytes("UTF-8")));
+        DomUtils.serializeNode(XMLObjectSupport.getMarshaller(response).marshall(response)).getBytes(
+            "UTF-8")));
 
-    //put SimpleEidasData in session
+    // put SimpleEidasData in session
     final AuthProcessDataWrapper authProcessData = pendingReq.getSessionData(AuthProcessDataWrapper.class);
-    SimpleEidasData eidData = new SimpleEidasData();
+    final SimpleEidasData eidData = new SimpleEidasData();
     eidData.setFamilyName("Mustermann1");
     eidData.setGivenName("Max");
     eidData.setDateOfBirth("1940-01-01");
     authProcessData.setGenericDataToSession(Constants.DATA_SIMPLE_EIDAS, eidData);
 
-    //perform task
+    // perform task
     try {
       task.execute(pendingReq, executionContext);
       Assert.fail("Invalid response not detected");
@@ -634,171 +545,18 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest {
       org.springframework.util.Assert.isInstanceOf(AuthnResponseValidationException.class,
           e.getOriginalException());
       Assert.assertTrue(e.getOriginalException().getCause() instanceof InvalidUserInputException);
-      }
-
-  }
-
-  @Test
-  public void httpPostValidSignedAssertionLegacyValid() throws IOException, SamlSigningException,
-      Pvp2MetadataException, CredentialsNotAvailableException, XMLParserException, UnmarshallingException,
-      MarshallingException, TransformerException, TaskExecutionException, EaafStorageException {
-//    authConfig.putConfigValue(AuthHandlerConstants.PROP_CONFIG_LEGACY_ALLOW, "true");
-    oaParam.putGenericConfigurationKey(
-        IdAustriaClientAuthConstants.CONFIG_PROPS_APPSPECIFIC_EIDAS_NODE_URL, METADATA_PATH);
-
-    metadataProvider.addMetadataResolverIntoChain(metadataFactory.createMetadataProvider(
-        METADATA_PATH, null, "jUnit IDP", null));
-
-    //put SimpleEidasData in session
-    final AuthProcessDataWrapper authProcessData = pendingReq.getSessionData(AuthProcessDataWrapper.class);
-    SimpleEidasData eidData = new SimpleEidasData();
-    eidData.setFamilyName("Mustermann");
-    eidData.setGivenName("Max");
-    eidData.setDateOfBirth("1940-01-01");
-    authProcessData.setGenericDataToSession(Constants.DATA_SIMPLE_EIDAS, eidData);
-
-    final Response response = initializeResponse(
-        "classpath:/data/idp_metadata_classpath_entity.xml",
-        "/data/Response_with_legacy.xml",
-        credentialProvider.getMessageSigningCredential(),
-        true);
-    httpReq.addParameter("SAMLResponse", Base64.getEncoder().encodeToString(
-        DomUtils.serializeNode(XMLObjectSupport.getMarshaller(response).marshall(response)).getBytes("UTF-8")));
-
-    String piiTransId = pendingReq.getUniquePiiTransactionIdentifier();
-
-    //perform task
-    task.execute(pendingReq, executionContext);
-
-    //validate state
-//    Assert.assertFalse("Wrong EID-Process flag",
-//        (boolean) executionContext.get(AuthHandlerConstants.PROCESSCONTEXT_WAS_EID_PROCESS));
-//    Assert.assertFalse("Wrong Mandate flag",
-//        (boolean) executionContext.get(AuthHandlerConstants.HTTP_PARAM_USE_MANDATES));
-
-    Assert.assertEquals("piiTransactionId", piiTransId, pendingReq.getUniquePiiTransactionIdentifier());
-
-    final AuthProcessDataWrapper session = pendingReq.getSessionData(AuthProcessDataWrapper.class);
-
-    Assert.assertFalse("E-ID flag", session.isEidProcess());
-//    Assert.assertTrue("Foreign flag", session.isForeigner());
-    Assert.assertEquals("LoA", "http://eidas.europa.eu/LoA/test", session.getQaaLevel());
-//    Assert.assertEquals("CountryCode", "AB", session.getGenericDataFromSession(
-//        ExtendedPvpAttributeDefinitions.EID_ISSUING_NATION_NAME, String.class));
-    Assert.assertEquals("IssueInstant", "2014-03-05T06:39:51Z", session.getIssueInstantString());
-
-//    Assert.assertEquals("FamilyName", "Mustermann", session.getGenericDataFromSession(
-//        ExtendedPvpAttributeDefinitions.PRINCIPAL_NAME_NAME, String.class));
-//    Assert.assertEquals("Givenname", "Max", session.getGenericDataFromSession(
-//        ExtendedPvpAttributeDefinitions.GIVEN_NAME_NAME, String.class));
-//    Assert.assertEquals("DateOfBirth", "1940-01-01", session.getGenericDataFromSession(
-//        ExtendedPvpAttributeDefinitions.BIRTHDATE_NAME, String.class));
-//
-//    Assert.assertEquals("bPK", "BF:QVGm48cqcM4UcyhDTNGYmVdrIoY=", session.getGenericDataFromSession(
-//        ExtendedPvpAttributeDefinitions.BPK_NAME, String.class));
-//    Assert.assertEquals("bPK-Target", "urn:publicid:gv.at:cdid+BF", session.getGenericDataFromSession(
-//        ExtendedPvpAttributeDefinitions.EID_SECTOR_FOR_IDENTIFIER_NAME, String.class));
-//    Assert.assertEquals("AuthBlock", TEST_SIGNED_AUTHBLOCK, session.getGenericDataFromSession(
-//        ExtendedPvpAttributeDefinitions.EID_IDENTITY_LINK_NAME, String.class));
-
-//    Assert.assertNull("SigCert", session.getEncodedSignerCertificate());
-//    Assert.assertNull("eidasBind", session.getQcBind());
-//    Assert.assertNull("signedConsent", session.getSignedAuthBlock());
-//    Assert.assertEquals("signedConsentType", AuthBlockType.NONE, session.getSignedAuthBlockType());
-
-    Assert.assertFalse("Mandate flag", session.isMandateUsed());
-//    Assert.assertNull("MandateInfos", session.getMandateDate());
-
-  }
-
-  @Test
-  public void httpPostValidSignedAssertionWithLegacyAndEid() throws IOException, SamlSigningException,
-      Pvp2MetadataException, CredentialsNotAvailableException, XMLParserException, UnmarshallingException,
-      MarshallingException, TransformerException, TaskExecutionException, EaafStorageException {
-
-    oaParam.putGenericConfigurationKey(
-        IdAustriaClientAuthConstants.CONFIG_PROPS_APPSPECIFIC_EIDAS_NODE_URL, METADATA_PATH);
-
-    metadataProvider.addMetadataResolverIntoChain(metadataFactory.createMetadataProvider(
-        METADATA_PATH, null, "jUnit IDP", null));
-
-    //put SimpleEidasData in session
-    final AuthProcessDataWrapper authProcessData = pendingReq.getSessionData(AuthProcessDataWrapper.class);
-    SimpleEidasData eidData = new SimpleEidasData();
-    eidData.setFamilyName("Mustermann");
-    eidData.setGivenName("Max");
-    eidData.setDateOfBirth("1940-01-01");
-    authProcessData.setGenericDataToSession(Constants.DATA_SIMPLE_EIDAS, eidData);
-
-    final Response response = initializeResponse(
-        "classpath:/data/idp_metadata_classpath_entity.xml",
-        "/data/Response_with_legacy_and_EID.xml",
-        credentialProvider.getMessageSigningCredential(),
-        true);
-    httpReq.addParameter("SAMLResponse", Base64.getEncoder().encodeToString(
-        DomUtils.serializeNode(XMLObjectSupport.getMarshaller(response).marshall(response)).getBytes("UTF-8")));
-
-    //perform task
-    task.execute(pendingReq, executionContext);
-
-    //validate state
-//    Assert.assertTrue("Wrong EID-Process flag",
-//        (boolean) executionContext.get(AuthHandlerConstants.PROCESSCONTEXT_WAS_EID_PROCESS));
-    final AuthProcessDataWrapper session = pendingReq.getSessionData(AuthProcessDataWrapper.class);
-//    Assert.assertFalse("Wrong Mandate flag",
-//        (boolean) executionContext.get(AuthHandlerConstants.HTTP_PARAM_USE_MANDATES));
-
-//    Assert.assertTrue("E-ID flag", session.isEidProcess());
-//    Assert.assertTrue("Foreign flag", session.isForeigner());
-    Assert.assertEquals("LoA", "http://eidas.europa.eu/LoA/test", session.getQaaLevel());
-//    Assert.assertEquals("CountryCode", "AB", session.getGenericDataFromSession(
-//        ExtendedPvpAttributeDefinitions.EID_ISSUING_NATION_NAME, String.class));
-    Assert.assertEquals("IssueInstant", "2014-03-05T06:39:51Z", session.getIssueInstantString());
-
-//    Assert.assertEquals("eidasBind", EIDAS_BIND, session.getQcBind());
-//    Assert.assertArrayEquals("signedConsent",
-//        Base64.getDecoder().decode(TEST_SIGNED_AUTHBLOCK), session.getSignedAuthBlock());
-
-//    Assert.assertEquals("FamilyName", "Mustermann", session.getGenericDataFromSession(
-//        ExtendedPvpAttributeDefinitions.PRINCIPAL_NAME_NAME, String.class));
-//    Assert.assertEquals("Givenname", "Max", session.getGenericDataFromSession(
-//        ExtendedPvpAttributeDefinitions.GIVEN_NAME_NAME, String.class));
-//    Assert.assertEquals("DateOfBirth", "1940-01-01", session.getGenericDataFromSession(
-//        ExtendedPvpAttributeDefinitions.BIRTHDATE_NAME, String.class));
-//
-//    Assert.assertEquals("FamilyName", "BF:QVGm48cqcM4UcyhDTNGYmVdrIoY=", session.getGenericDataFromSession(
-//        ExtendedPvpAttributeDefinitions.BPK_NAME, String.class));
-//    Assert.assertEquals("FamilyName", "urn:publicid:gv.at:cdid+BF", session.getGenericDataFromSession(
-//        ExtendedPvpAttributeDefinitions.EID_SECTOR_FOR_IDENTIFIER_NAME, String.class));
-//    Assert.assertEquals("FamilyName", TEST_SIGNED_AUTHBLOCK, session.getGenericDataFromSession(
-//        ExtendedPvpAttributeDefinitions.EID_IDENTITY_LINK_NAME, String.class));
-
-//    Assert.assertNull("SigCert", session.getEncodedSignerCertificate());
-
-    Assert.assertFalse("Mandate flag", session.isMandateUsed());
-//    Assert.assertNull("MandateInfos", session.getMandateDate());
-
-    Assert.assertNull("MandateType", session.getGenericDataFromSession(
-        ExtendedPvpAttributeDefinitions.MANDATE_TYPE_NAME, String.class));
-    Assert.assertNull("Legal Person CommonName", session.getGenericDataFromSession(
-        ExtendedPvpAttributeDefinitions.MANDATE_LEG_PER_FULL_NAME_NAME, String.class));
-    Assert.assertNull("Legal Person SourcePin",session.getGenericDataFromSession(
-        ExtendedPvpAttributeDefinitions.MANDATE_LEG_PER_SOURCE_PIN_NAME, String.class));
-    Assert.assertNull("Legal Person SourcePinType", session.getGenericDataFromSession(
-        ExtendedPvpAttributeDefinitions.MANDATE_LEG_PER_SOURCE_PIN_TYPE_NAME, String.class));
+    }
 
   }
 
-
-
-
   private Response initializeResponse(String idpEntityId, String responsePath, EaafX509Credential credential,
-                                      boolean validConditions) throws SamlSigningException, XMLParserException, UnmarshallingException,
+      boolean validConditions) throws SamlSigningException, XMLParserException, UnmarshallingException,
       Pvp2MetadataException {
 
     final Response response = (Response) XMLObjectSupport.unmarshallFromInputStream(
         XMLObjectProviderRegistrySupport.getParserPool(),
-        ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest.class.getResourceAsStream(responsePath));
+        ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest.class.getResourceAsStream(
+            responsePath));
     response.setIssueInstant(DateTime.now());
     final Issuer issuer = Saml2Utils.createSamlObject(Issuer.class);
     issuer.setValue(idpEntityId);
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_basic_lazy.xml b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_basic_lazy.xml
new file mode 100644
index 00000000..a567ecba
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_basic_lazy.xml
@@ -0,0 +1,24 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<beans xmlns="http://www.springframework.org/schema/beans"
+  xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+  xmlns:context="http://www.springframework.org/schema/context"
+  xmlns:tx="http://www.springframework.org/schema/tx"
+  xmlns:aop="http://www.springframework.org/schema/aop"
+  xsi:schemaLocation="http://www.springframework.org/schema/aop http://www.springframework.org/schema/aop/spring-aop-3.1.xsd
+    http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans.xsd
+    http://www.springframework.org/schema/context http://www.springframework.org/schema/context/spring-context-3.1.xsd
+    http://www.springframework.org/schema/tx http://www.springframework.org/schema/tx/spring-tx-3.0.xsd" >
+
+  <context:annotation-config />
+
+  <import resource="classpath:/spring/eaaf_utils.beans.xml"/>
+
+  <bean id="idAustriaAuthCredentialProvider"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.provider.IdAustriaClientAuthCredentialProvider" 
+        lazy-init="true" />
+
+  <bean id="dummyPvpConfig"
+        class="at.gv.egiz.eaaf.modules.pvp2.idp.test.dummy.DummyPvpConfiguration"
+        lazy-init="true" />
+
+</beans>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_basic_mapConfig1.xml b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_basic_mapConfig1.xml
deleted file mode 100644
index 56c7ed6e..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_basic_mapConfig1.xml
+++ /dev/null
@@ -1,24 +0,0 @@
-<?xml version="1.0" encoding="UTF-8"?>
-<beans xmlns="http://www.springframework.org/schema/beans"
-  xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
-  xmlns:context="http://www.springframework.org/schema/context"
-  xmlns:tx="http://www.springframework.org/schema/tx"
-  xmlns:aop="http://www.springframework.org/schema/aop"
-  xsi:schemaLocation="http://www.springframework.org/schema/aop http://www.springframework.org/schema/aop/spring-aop-3.1.xsd
-    http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans.xsd
-    http://www.springframework.org/schema/context http://www.springframework.org/schema/context/spring-context-3.1.xsd
-    http://www.springframework.org/schema/tx http://www.springframework.org/schema/tx/spring-tx-3.0.xsd">
-
-  <context:annotation-config />
-
-<!--  <bean id="dummyMapBasedConfiguration"-->
-<!--        class="at.asitplus.eidas.specific.connector.test.config.dummy.MsConnectorDummyConfigMap">-->
-<!--    <constructor-arg value="/config/junit_config_1.properties" />-->
-<!--    <property name="configRootDirSufix" value="src/test/resources/config" />-->
-<!--  </bean>-->
-  <bean id="DummyAuthConfigMap"
-        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.test.dummy.DummyAuthConfigMap">
-    <constructor-arg value="/config/junit_config_1-.properties" />
-  </bean>
-
-</beans>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_basic_test.xml b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_basic_test.xml
index 956cfcc9..d4783585 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_basic_test.xml
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_basic_test.xml
@@ -12,6 +12,9 @@
   <context:annotation-config />
 
 
+
+  <bean id="eidasConnectorMessageSource"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.config.EidasConnectorMessageSource"/>
   
   <bean id="SZRClientForeIDAS"
     class="at.asitplus.eidas.specific.modules.auth.eidas.v2.szr.SzrClient" />
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_basic_test1.xml b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_basic_test1.xml
deleted file mode 100644
index 8363eb50..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_basic_test1.xml
+++ /dev/null
@@ -1,63 +0,0 @@
-<?xml version="1.0" encoding="UTF-8"?>
-<beans xmlns="http://www.springframework.org/schema/beans"
-  xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
-  xmlns:context="http://www.springframework.org/schema/context"
-  xmlns:tx="http://www.springframework.org/schema/tx"
-  xmlns:aop="http://www.springframework.org/schema/aop"
-  xsi:schemaLocation="http://www.springframework.org/schema/aop http://www.springframework.org/schema/aop/spring-aop-3.1.xsd
-    http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans.xsd
-    http://www.springframework.org/schema/context http://www.springframework.org/schema/context/spring-context-3.1.xsd
-    http://www.springframework.org/schema/tx http://www.springframework.org/schema/tx/spring-tx-3.0.xsd">
-
-  <context:annotation-config />
-
-
-  
-<!--  <bean id="SZRClientForeIDAS"-->
-<!--    class="at.asitplus.eidas.specific.modules.auth.eidas.v2.szr.SzrClient" />-->
-
-  <!-- <bean id="eIDASDataStore" class="at.asitplus.eidas.specific.modules.auth.eidas.v2.service.eIDASDataStore" 
-    /> -->
-
-  <bean id="springManagedSpecificConnectorCommunicationService"
-    class="at.asitplus.eidas.specific.modules.auth.eidas.v2.test.dummy.DummySpecificCommunicationService" />
-
-  <bean id="specificConnectorAttributesFileWithPath"
-    class="java.lang.String">
-    <constructor-arg
-      value="src/test/resources/config/eidas-attributes.xml" />
-  </bean>
-
-  <bean id="specificConnectorAdditionalAttributesFileWithPath"
-    class="java.lang.String">
-    <constructor-arg
-      value="src/test/resources/config/additional-attributes.xml" />
-  </bean>
-
-  <bean id="attributeRegistry"
-    class="at.asitplus.eidas.specific.modules.auth.eidas.v2.service.EidasAttributeRegistry">
-    <property name="eidasAttributesFile"
-      ref="specificConnectorAttributesFileWithPath" />
-    <property name="additionalAttributesFile"
-      ref="specificConnectorAdditionalAttributesFileWithPath" />
-  </bean>
-
-  <bean id="EIDPostProcessingService"
-    class="at.asitplus.eidas.specific.modules.auth.eidas.v2.service.CcSpecificEidProcessingService" />
-
-  <bean id="DE-PostProcessor"
-    class="at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.DeEidProcessor">
-    <property name="priority" value="1" />
-  </bean>
-
- <bean id="eIDASAuthModule"
-    class="at.asitplus.eidas.specific.modules.auth.eidas.v2.EidasAuthenticationModulImpl">
-    <property name="priority" value="2" />
-  </bean>
-
-  <bean id="Default-PostProcessor"
-    class="at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.GenericEidProcessor">
-    <property name="priority" value="0" />
-  </bean>
-
-</beans>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_tasks_test.xml b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_tasks_test.xml
index da64d25d..f4463a3e 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_tasks_test.xml
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_tasks_test.xml
@@ -18,6 +18,8 @@
 
   <import resource="SpringTest-context_authManager.xml" />
   <import resource="SpringTest-context_basic_test.xml" />  
+  <import resource="classpath:/eidas_v2_auth.beans.xml"/>
+  <import resource="classpath:/eaaf_pvp.beans.xml" />
 
   <bean id="mvcGUIBuilderImpl"
     class="at.asitplus.eidas.specific.connector.gui.SpringMvcGuiFormBuilderImpl" />
@@ -25,6 +27,15 @@
   <bean id="springManagedSpecificConnectorCommunicationService"
     class="at.asitplus.eidas.specific.modules.auth.eidas.v2.test.dummy.DummySpecificCommunicationService" />
 
+  <bean id="dummyPvpConfig"
+        class="at.gv.egiz.eaaf.modules.pvp2.idp.test.dummy.DummyPvpConfiguration" />
+
+  <bean id="dummyGuiConfigFactory"
+        class="at.gv.egiz.eaaf.core.impl.idp.module.gui.DummyGuiBuilderConfigurationFactory" />
+  
+  <bean id="dummyVelocityBuilder"
+        class="at.gv.egiz.eaaf.core.impl.idp.module.gui.DummyVelocityGuiFormBuilder" />
+
   <bean id="specificConnectorAttributesFileWithPath"
     class="java.lang.String">
     <constructor-arg
@@ -37,98 +48,5 @@
       value="src/test/resources/config/additional-attributes.xml" />
   </bean>
 
-  <bean id="attributeRegistry"
-    class="at.asitplus.eidas.specific.modules.auth.eidas.v2.service.EidasAttributeRegistry">
-    <property name="eidasAttributesFile"
-      ref="specificConnectorAttributesFileWithPath" />
-    <property name="additionalAttributesFile"
-      ref="specificConnectorAdditionalAttributesFileWithPath" />
-  </bean>
-
-  <bean id="authBlockSigningService"
-        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.service.AuthBlockSigningService" />
-
-  <bean id="EidasSignalServlet"
-        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.EidasSignalServlet" />
-
-  <!-- Authentication Process Tasks -->
-  <bean id="ConnecteIDASNodeTask"
-    class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.GenerateAuthnRequestTask"
-    scope="prototype" />
-
-  <bean id="ReceiveResponseFromeIDASNodeTask"
-    class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.ReceiveAuthnResponseTask"
-    scope="prototype" />
-
-  <bean id="CreateIdentityLinkTask"
-    class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.CreateIdentityLinkTask"
-    scope="prototype" />
-
-  <bean id="InitialSearchTask"
-        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.InitialSearchTask"
-        scope="prototype" />
-
-  <bean id="ErnbClientForeIDAS"
-        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.ernp.DummyErnpClient" />
-
-  <bean id="ZmrClientForeIDAS"
-        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.DummyZmrClient" />
-
-  <bean id="DE-Specific-Search"
-        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.DeSpecificDetailSearchProcessor">
-  </bean>
-
-  <bean id="IT-Specific-Search"
-        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.ItSpecificDetailSearchProcessor">
-  </bean>
-
-  <bean id="CreateNewErnpEntryTask"
-        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.CreateNewErnpEntryTask"
-        scope="prototype" />
-
-  <bean id="GenerateGuiTask"
-        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.GenerateLoginMethodGuiTask"
-        scope="prototype" />
-
-  <bean id="GenerateMobilePhoneSignatureRequestTask"
-        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.GenerateMobilePhoneSignatureRequestTask"
-        scope="prototype" />
-
-  <bean id="ReceiveGuiResponseTask"
-        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.ReceiveLoginMethodGuiResponseTask"
-        scope="prototype" />
-
-  <bean id="ReceiveMobilePhoneSignatureResponseTask"
-        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask"
-        scope="prototype" />
-
-  <bean id="GenerateGuiQueryAustrianResidenceTask"
-        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.GenerateGuiQueryAustrianResidenceTask"
-        scope="prototype" />
-
-  <bean id="ReceiveGuiAustrianResidenceResponseTask"
-        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.ReceiveGuiAustrianResidenceResponseTask"
-        scope="prototype" />
-
-  <bean id="idAustriaClientAuthCredentialProvider"
-        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthCredentialProvider" />
-
-  <bean id="idAustriaClientAuthMetadataProvider"
-        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthMetadataProvider" />
-
-  <bean id="idAustriaClientAuthMetadataController"
-        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthMetadataController" />
-
-  <bean id="idAustriaClientPvpMetadataResolverFactory"
-        class="at.gv.egiz.eaaf.modules.pvp2.impl.metadata.PvpMetadataResolverFactory" />
-
-  <bean id="pvpMetadataBuilder"
-        class="at.gv.egiz.eaaf.modules.pvp2.impl.builder.PvpMetadataBuilder" />
-
-  <bean id="idAustriaAuthPvpConfiguration"
-        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaAuthPvpConfiguration" />
-
-  <bean id="idAustriaClientAuthSignalController"
-        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthSignalController" />
 
 </beans>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_tasks_test1.xml b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_tasks_test1.xml
deleted file mode 100644
index c58eb330..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/SpringTest-context_tasks_test1.xml
+++ /dev/null
@@ -1,149 +0,0 @@
-<?xml version="1.0" encoding="UTF-8"?>
-<beans xmlns="http://www.springframework.org/schema/beans"
-  xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
-  xmlns:context="http://www.springframework.org/schema/context"
-  xmlns:tx="http://www.springframework.org/schema/tx"
-  xmlns:aop="http://www.springframework.org/schema/aop"
-  xmlns:mvc="http://www.springframework.org/schema/mvc"
-  xsi:schemaLocation="http://www.springframework.org/schema/aop http://www.springframework.org/schema/aop/spring-aop-3.1.xsd
-    http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans.xsd
-    http://www.springframework.org/schema/context http://www.springframework.org/schema/context/spring-context-3.1.xsd
-    http://www.springframework.org/schema/tx http://www.springframework.org/schema/tx/spring-tx-3.0.xsd 
-    http://www.springframework.org/schema/mvc http://www.springframework.org/schema/mvc/spring-mvc.xsd">
-
-  <context:annotation-config />
-  <mvc:annotation-driven />
-  <mvc:default-servlet-handler />
-
-
-  <import resource="SpringTest-context_authManager.xml" />
-  <import resource="SpringTest-context_basic_test1.xml" />
-
-  <bean id="mvcGUIBuilderImpl"
-    class="at.asitplus.eidas.specific.connector.gui.SpringMvcGuiFormBuilderImpl" />
-
-  <bean id="springManagedSpecificConnectorCommunicationService"
-    class="at.asitplus.eidas.specific.modules.auth.eidas.v2.test.dummy.DummySpecificCommunicationService" />
-
-  <bean id="specificConnectorAttributesFileWithPath"
-    class="java.lang.String">
-    <constructor-arg
-      value="src/test/resources/config/eidas-attributes.xml" />
-  </bean>
-
-  <bean id="specificConnectorAdditionalAttributesFileWithPath"
-    class="java.lang.String">
-    <constructor-arg
-      value="src/test/resources/config/additional-attributes.xml" />
-  </bean>
-
-  <bean id="attributeRegistry"
-    class="at.asitplus.eidas.specific.modules.auth.eidas.v2.service.EidasAttributeRegistry">
-    <property name="eidasAttributesFile"
-      ref="specificConnectorAttributesFileWithPath" />
-    <property name="additionalAttributesFile"
-      ref="specificConnectorAdditionalAttributesFileWithPath" />
-  </bean>
-
-  <bean id="authBlockSigningService"
-        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.service.AuthBlockSigningService" />
-
-  <bean id="EidasSignalServlet"
-        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.EidasSignalServlet" />
-
-  <!-- Authentication Process Tasks -->
-  <bean id="ConnecteIDASNodeTask"
-    class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.GenerateAuthnRequestTask"
-    scope="prototype" />
-
-  <bean id="ReceiveResponseFromeIDASNodeTask"
-    class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.ReceiveAuthnResponseTask"
-    scope="prototype" />
-
-  <bean id="CreateIdentityLinkTask"
-    class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.CreateIdentityLinkTask"
-    scope="prototype" />
-
-  <bean id="InitialSearchTask"
-        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.InitialSearchTask"
-        scope="prototype" />
-
-  <bean id="ErnbClientForeIDAS"
-        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.ernp.DummyErnpClient" />
-
-  <bean id="ZmrClientForeIDAS"
-        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.DummyZmrClient" />
-
-  <bean id="DE-Specific-Search"
-        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.DeSpecificDetailSearchProcessor">
-  </bean>
-
-  <bean id="IT-Specific-Search"
-        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.ItSpecificDetailSearchProcessor">
-  </bean>
-
-  <bean id="CreateNewErnpEntryTask"
-        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.CreateNewErnpEntryTask"
-        scope="prototype" />
-
-  <bean id="GenerateGuiTask"
-        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.GenerateLoginMethodGuiTask"
-        scope="prototype" />
-
-  <bean id="GenerateMobilePhoneSignatureRequestTask"
-        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.GenerateMobilePhoneSignatureRequestTask"
-        scope="prototype" />
-
-  <bean id="ReceiveGuiResponseTask"
-        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.ReceiveLoginMethodGuiResponseTask"
-        scope="prototype" />
-
-  <bean id="ReceiveMobilePhoneSignatureResponseTask"
-        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask"
-        scope="prototype" />
-
-  <bean id="GenerateGuiQueryAustrianResidenceTask"
-        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.GenerateGuiQueryAustrianResidenceTask"
-        scope="prototype" />
-
-  <bean id="ReceiveGuiAustrianResidenceResponseTask"
-        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.ReceiveGuiAustrianResidenceResponseTask"
-        scope="prototype" />
-
-  <bean id="idAustriaClientAuthCredentialProvider"
-        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthCredentialProvider" />
-
-  <bean id="idAustriaClientAuthMetadataProvider"
-        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthMetadataProvider" />
-
-  <bean id="idAustriaClientAuthMetadataController"
-        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthMetadataController" />
-
-  <bean id="idAustriaClientPvpMetadataResolverFactory"
-        class="at.gv.egiz.eaaf.modules.pvp2.impl.metadata.PvpMetadataResolverFactory" />
-
-  <bean id="pvpMetadataBuilder"
-        class="at.gv.egiz.eaaf.modules.pvp2.impl.builder.PvpMetadataBuilder" />
-
-  <bean id="idAustriaAuthPvpConfiguration"
-        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaAuthPvpConfiguration" />
-
-  <bean id="PvpAuthnRequestBuilder"
-        class="at.gv.egiz.eaaf.modules.pvp2.sp.impl.PvpAuthnRequestBuilder" />
-
-<!--  <bean id="DummyAuthConfigMap"-->
-<!--        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.test.dummy.DummyAuthConfigMap" />-->
-
-  <bean id="PvpPostBinding"
-        class="at.gv.egiz.eaaf.modules.pvp2.impl.binding.PostBinding" />
-
-  <bean id="IVelocityGuiFormBuilder"
-        class="at.gv.egiz.eaaf.core.impl.idp.module.gui.DummyVelocityGuiFormBuilder" />
-  <bean id="IGuiBuilderConfigurationFactory"
-        class="at.gv.egiz.eaaf.core.impl.idp.module.gui.DummyGuiBuilderConfigurationFactory" />
-
-  <bean id="SAMLVerificationEngine"
-      class="at.gv.egiz.eaaf.modules.pvp2.impl.verification.SamlVerificationEngine" />
-
-
-</beans>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/junit_config_1-.properties b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/junit_config_1-.properties
deleted file mode 100644
index ee4dff39..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/junit_config_1-.properties
+++ /dev/null
@@ -1,252 +0,0 @@
-## Basic service configuration
-eidas.ms.context.url.prefix=
-eidas.ms.context.url.request.validation=false
-
-eidas.ms.context.use.clustermode=true
-
-##Monitoring
-eidas.ms.monitoring.eIDASNode.metadata.url=
-
-
-##Specific logger configuration
-eidas.ms.technicallog.write.MDS.into.techlog=true
-eidas.ms.revisionlog.write.MDS.into.revisionlog=true
-eidas.ms.revisionlog.logIPAddressOfUser=true
-
-##Directory for static Web content
-eidas.ms.webcontent.static.directory=webcontent/
-eidas.ms.webcontent.templates=templates/
-eidas.ms.webcontent.properties=properties/messages
-
-## extended validation of pending-request Id's
-eidas.ms.core.pendingrequestid.maxlifetime=300
-eidas.ms.core.pendingrequestid.digist.algorithm=HmacSHA256
-eidas.ms.core.pendingrequestid.digist.secret=pendingReqIdSecret
-
-## eIDAS Ref. Implementation connector ###
-eidas.ms.auth.eIDAS.node_v2.entityId=ownSpecificConnector
-eidas.ms.auth.eIDAS.node_v2.forward.endpoint=
-eidas.ms.auth.eIDAS.node_v2.forward.method=POST
-eidas.ms.auth.eIDAS.node_v2.countrycode=AT
-eidas.ms.auth.eIDAS.node_v2.publicSectorTargets=.*
-eidas.ms.auth.eIDAS.node_v2.workarounds.addAlwaysProviderName=true
-eidas.ms.auth.eIDAS.node_v2.workarounds.useRequestIdAsTransactionIdentifier=true
-eidas.ms.auth.eIDAS.node_v2.workarounds.useStaticProviderNameForPublicSPs=true
-eidas.ms.auth.eIDAS.node_v2.staticProviderNameForPublicSPs=myNode
-
-eidas.ms.auth.eIDAS.node_v2.loa.requested.minimum=http://eidas.europa.eu/LoA/high
-
-eidas.ms.auth.eIDAS.szrclient.useTestService=true
-eidas.ms.auth.eIDAS.szrclient.endpoint.prod=
-eidas.ms.auth.eIDAS.szrclient.endpoint.test=http://localhost:1234/demoszr
-eidas.ms.auth.eIDAS.szrclient.ssl.keyStore.path=keys/.....
-eidas.ms.auth.eIDAS.szrclient.ssl.keyStore.password=
-eidas.ms.auth.eIDAS.szrclient.ssl.trustStore.path=
-eidas.ms.auth.eIDAS.szrclient.ssl.trustStore.password=
-eidas.ms.auth.eIDAS.szrclient.timeout.connection=15
-eidas.ms.auth.eIDAS.szrclient.timeout.response=30
-eidas.ms.auth.eIDAS.szrclient.params.vkz=
-
-eidas.ms.auth.eIDAS.szrclient.params.useSZRForbPKCalculation=false
-
-
-eidas.ms.auth.eIDAS.authblock.keystore.password=f/+saJBc3a}*/T^s
-eidas.ms.auth.eIDAS.authblock.keystore.friendlyName=connectorkeypair
-eidas.ms.auth.eIDAS.authblock.keystore.path=./../keystore/teststore.jks
-eidas.ms.auth.eIDAS.authblock.keystore.type=jks
-eidas.ms.auth.eIDAS.authblock.key.alias=connectorkeypair1
-eidas.ms.auth.eIDAS.authblock.key.password=f/+saJBc3a}*/T^s
-
-
-#Raw eIDAS Id data storage
-eidas.ms.auth.eIDAS.szrclient.workarounds.eidmapping.revisionlog.active=true
-
-eidas.ms.auth.eIDAS.szrclient.params.setPlaceOfBirthIfAvailable=true
-eidas.ms.auth.eIDAS.szrclient.params.setBirthNameIfAvailable=true
-
-eidas.ms.auth.eIDAS.szrclient.debug.logfullmessages=true
-eidas.ms.auth.eIDAS.szrclient.debug.useDummySolution=true
-
-##without mandates
-eidas.ms.auth.eIDAS.node_v2.attributes.requested.onlynatural.0=PersonIdentifier,true
-eidas.ms.auth.eIDAS.node_v2.attributes.requested.onlynatural.1=FamilyName,true
-eidas.ms.auth.eIDAS.node_v2.attributes.requested.onlynatural.2=FirstName,true
-eidas.ms.auth.eIDAS.node_v2.attributes.requested.onlynatural.3=DateOfBirth,true
-
-eidas.ms.auth.eIDAS.node_v2.attributes.requested.de.onlynatural.4=PlaceOfBirth,false
-eidas.ms.auth.eIDAS.node_v2.attributes.requested.de.onlynatural.5=BirthName,false
-eidas.ms.auth.eIDAS.node_v2.attributes.requested.de.onlynatural.6=Gender,false
-eidas.ms.auth.eIDAS.node_v2.attributes.requested.de.onlynatural.7=CurrentAddress,false
-eidas.ms.auth.eIDAS.node_v2.attributes.requested.de.onlynatural.8=testtest,false
-
-##with mandates ---- NOT FULLY SUPPORTED AT THE MOMENT -----
-eidas.ms.auth.eIDAS.node_v2.attributes.requested.representation.0=PersonIdentifier,true
-eidas.ms.auth.eIDAS.node_v2.attributes.requested.representation.1=FamilyName,true
-eidas.ms.auth.eIDAS.node_v2.attributes.requested.representation.2=FirstName,true
-eidas.ms.auth.eIDAS.node_v2.attributes.requested.representation.3=DateOfBirth,true
-eidas.ms.auth.eIDAS.node_v2.attributes.requested.representation.4=LegalPerson,true
-eidas.ms.auth.eIDAS.node_v2.attributes.requested.representation.5=LegalName,true
-
-
-## PVP2 S-Profile end-point configuration
-eidas.ms.pvp2.keystore.path=keys/.....
-eidas.ms.pvp2.keystore.password=
-eidas.ms.pvp2.key.metadata.alias=
-eidas.ms.pvp2.key.metadata.password=
-eidas.ms.pvp2.key.signing.alias=
-eidas.ms.pvp2.key.signing.password=
-eidas.ms.pvp2.metadata.validity=24
-
-## Service Provider configuration
-eidas.ms.sp.0.uniqueID=
-eidas.ms.sp.0.pvp2.metadata.truststore=
-eidas.ms.sp.0.pvp2.metadata.truststore.password=
-eidas.ms.sp.0.newEidMode=true
-
-#eidas.ms.sp.0.friendlyName=
-#eidas.ms.sp.0.pvp2.metadata.url=
-#eidas.ms.sp.0.policy.allowed.requested.targets=.*
-#eidas.ms.sp.0.policy.hasBaseIdTransferRestriction=false
-
-
-##only for advanced config
-eidas.ms.configuration.sp.disableRegistrationRequirement=
-eidas.ms.configuration.restrictions.baseID.spTransmission=
-eidas.ms.configuration.auth.default.countrycode=
-eidas.ms.configuration.pvp.scheme.validation=
-eidas.ms.configuration.pvp.enable.entitycategories=
-
-
-
-
-## PVP2 S-Profile ID Austria client configuration
-
-eidas.ms.modules.idaustriaclient.keystore.path=../keystore/junit_test.jks
-eidas.ms.modules.idaustriaclient.keystore.password=password
-eidas.ms.modules.idaustriaclient.keystore.type=jks
-
-eidas.ms.modules.idaustriaclient.metadata.sign.alias=meta
-eidas.ms.modules.idaustriaclient.metadata.sign.password=password
-eidas.ms.modules.idaustriaclient.request.sign.alias=sig
-eidas.ms.modules.idaustriaclient.request.sign.password=password
-eidas.ms.modules.idaustriaclient.response.encryption.alias=enc
-eidas.ms.modules.idaustriaclient.response.encryption.password=password
-
-eidas.ms.modules.idaustriaclient.truststore.path=../keystore/junit_test.jks
-eidas.ms.modules.idaustriaclient.truststore.password=password
-eidas.ms.modules.idaustriaclient.truststore.type=jks
-
-eidas.ms.modules.idaustriaclient.node.entityId=classpath:/data/idp_metadata_classpath_entity.xml
-eidas.ms.modules.idaustriaclient.sp.entityId=
-eidas.ms.modules.idaustriaclient.node.metadataUrl=
-
-eidas.ms.modules.idaustriaclient.metadata.organisation.name=JUnit
-eidas.ms.modules.idaustriaclient.metadata.organisation.friendyname=For testing with jUnit
-eidas.ms.modules.idaustriaclient.metadata.organisation.url=http://junit.test
-eidas.ms.modules.idaustriaclient.metadata.contact.givenname=Max
-eidas.ms.modules.idaustriaclient.metadata.contact.surname=Mustermann
-eidas.ms.modules.idaustriaclient.metadata.contact.email=max@junit.test
-
-
-
-
-
-
-auth.eIDAS.authblock.key.alias=connectorkeypair
-auth.eIDAS.authblock.key.password=f/+saJBc3a}*/T^s
-auth.eIDAS.authblock.keystore.friendlyName=connectorkeypair
-auth.eIDAS.authblock.keystore.password=f/+saJBc3a}*/T^s
-auth.eIDAS.authblock.keystore.path=.//src/test/resources/keystore/teststore.jks
-auth.eIDAS.authblock.keystore.type=jks
-auth.eIDAS.node_v2.attributes.requested.de.onlynatural.4=PlaceOfBirth,false
-auth.eIDAS.node_v2.attributes.requested.de.onlynatural.5=BirthName,false
-auth.eIDAS.node_v2.attributes.requested.de.onlynatural.6=Gender,false
-auth.eIDAS.node_v2.attributes.requested.de.onlynatural.7=CurrentAddress,false
-auth.eIDAS.node_v2.attributes.requested.de.onlynatural.8=testtest,false
-auth.eIDAS.node_v2.attributes.requested.onlynatural.0=PersonIdentifier,true
-auth.eIDAS.node_v2.attributes.requested.onlynatural.1=FamilyName,true
-auth.eIDAS.node_v2.attributes.requested.onlynatural.2=FirstName,true
-auth.eIDAS.node_v2.attributes.requested.onlynatural.3=DateOfBirth,true
-auth.eIDAS.node_v2.attributes.requested.representation.0=PersonIdentifier,true
-auth.eIDAS.node_v2.attributes.requested.representation.1=FamilyName,true
-auth.eIDAS.node_v2.attributes.requested.representation.2=FirstName,true
-auth.eIDAS.node_v2.attributes.requested.representation.3=DateOfBirth,true
-auth.eIDAS.node_v2.attributes.requested.representation.4=LegalPerson,true
-auth.eIDAS.node_v2.attributes.requested.representation.5=LegalName,true
-auth.eIDAS.node_v2.countrycode=AT
-auth.eIDAS.node_v2.entityId=ownSpecificConnector
-auth.eIDAS.node_v2.forward.endpoint=
-auth.eIDAS.node_v2.forward.method=POST
-auth.eIDAS.node_v2.loa.requested.minimum=http://eidas.europa.eu/LoA/high
-auth.eIDAS.node_v2.publicSectorTargets=.*
-auth.eIDAS.node_v2.staticProviderNameForPublicSPs=myNode
-auth.eIDAS.node_v2.workarounds.addAlwaysProviderName=true
-auth.eIDAS.node_v2.workarounds.useRequestIdAsTransactionIdentifier=true
-auth.eIDAS.node_v2.workarounds.useStaticProviderNameForPublicSPs=true
-auth.eIDAS.szrclient.debug.logfullmessages=true
-auth.eIDAS.szrclient.debug.useDummySolution=true
-auth.eIDAS.szrclient.endpoint.prod=
-auth.eIDAS.szrclient.endpoint.test=http://localhost:1234/demoszr
-auth.eIDAS.szrclient.params.setBirthNameIfAvailable=true
-auth.eIDAS.szrclient.params.setPlaceOfBirthIfAvailable=true
-auth.eIDAS.szrclient.params.useSZRForbPKCalculation=false
-auth.eIDAS.szrclient.params.vkz=
-auth.eIDAS.szrclient.ssl.keyStore.password=
-auth.eIDAS.szrclient.ssl.keyStore.path=keys/.....
-auth.eIDAS.szrclient.ssl.trustStore.password=
-auth.eIDAS.szrclient.ssl.trustStore.path=
-auth.eIDAS.szrclient.timeout.connection=15
-auth.eIDAS.szrclient.timeout.response=30
-auth.eIDAS.szrclient.useTestService=true
-auth.eIDAS.szrclient.workarounds.eidmapping.revisionlog.active=true
-configuration.auth.default.countrycode=
-configuration.pvp.enable.entitycategories=
-configuration.pvp.scheme.validation=
-configuration.restrictions.baseID.spTransmission=
-configuration.sp.disableRegistrationRequirement=
-context.url.prefix=
-context.url.request.validation=false
-context.use.clustermode=true
-core.pendingrequestid.digist.algorithm=HmacSHA256
-core.pendingrequestid.digist.secret=pendingReqIdSecret
-core.pendingrequestid.maxlifetime=300
-modules.idaustriaclient.keystore.password=password
-modules.idaustriaclient.keystore.path=.//src/test/resources/keystore/junit_test.jks
-modules.idaustriaclient.keystore.type=jks
-modules.idaustriaclient.metadata.contact.email=max@junit.test
-modules.idaustriaclient.metadata.contact.givenname=Max
-modules.idaustriaclient.metadata.contact.surname=Mustermann
-modules.idaustriaclient.metadata.organisation.friendyname=For testing with jUnit
-modules.idaustriaclient.metadata.organisation.name=JUnit
-modules.idaustriaclient.metadata.organisation.url=http://junit.test
-modules.idaustriaclient.metadata.sign.alias=meta
-modules.idaustriaclient.metadata.sign.password=password
-modules.idaustriaclient.node.entityId=classpath:/data/idp_metadata_classpath_entity.xml
-modules.idaustriaclient.node.metadataUrl=
-modules.idaustriaclient.request.sign.alias=sig
-modules.idaustriaclient.request.sign.password=password
-modules.idaustriaclient.response.encryption.alias=enc
-modules.idaustriaclient.response.encryption.password=password
-modules.idaustriaclient.sp.entityId=
-modules.idaustriaclient.truststore.password=password
-modules.idaustriaclient.truststore.path=./src/test/resources/keystore/junit_test.jks
-modules.idaustriaclient.truststore.type=jks
-monitoring.eIDASNode.metadata.url=
-pvp2.key.metadata.alias=
-pvp2.key.metadata.password=
-pvp2.key.signing.alias=
-pvp2.key.signing.password=
-pvp2.keystore.password=
-pvp2.keystore.path=keys/.....
-pvp2.metadata.validity=24
-revisionlog.logIPAddressOfUser=true
-revisionlog.write.MDS.into.revisionlog=true
-sp.0.newEidMode=true
-sp.0.pvp2.metadata.truststore.password=
-sp.0.pvp2.metadata.truststore=
-sp.0.uniqueID=
-technicallog.write.MDS.into.techlog=true
-webcontent.properties=properties/messages
-webcontent.static.directory=webcontent/
-webcontent.templates=templates/
-
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/junit_config_1.properties b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/junit_config_1.properties
index df64b494..e6741c88 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/junit_config_1.properties
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/junit_config_1.properties
@@ -8,6 +8,11 @@ eidas.ms.context.use.clustermode=true
 eidas.ms.monitoring.eIDASNode.metadata.url=
 
 
+eidas.ms.client.http.connection.timeout.socket=1
+eidas.ms.client.http.connection.timeout.connection=1
+eidas.ms.client.http.connection.timeout.request=1
+
+
 ##Specific logger configuration
 eidas.ms.technicallog.write.MDS.into.techlog=true
 eidas.ms.revisionlog.write.MDS.into.revisionlog=true
@@ -136,14 +141,6 @@ eidas.ms.modules.idaustriaclient.truststore.path=../keystore/junit_test.jks
 eidas.ms.modules.idaustriaclient.truststore.password=password
 eidas.ms.modules.idaustriaclient.truststore.type=jks
 
-eidas.ms.modules.idaustriaclient.node.entityId=
-eidas.ms.modules.idaustriaclient.sp.entityId=
-eidas.ms.modules.idaustriaclient.node.metadataUrl=
-
-eidas.ms.modules.idaustriaclient.metadata.organisation.name=JUnit
-eidas.ms.modules.idaustriaclient.metadata.organisation.friendyname=For testing with jUnit
-eidas.ms.modules.idaustriaclient.metadata.organisation.url=http://junit.test
-eidas.ms.modules.idaustriaclient.metadata.contact.givenname=Max
-eidas.ms.modules.idaustriaclient.metadata.contact.surname=Mustermann
-eidas.ms.modules.idaustriaclient.metadata.contact.email=max@junit.test
+eidas.ms.modules.idaustriaclient.idaustria.idp.entityId=
+eidas.ms.modules.idaustriaclient.idaustria.idp.metadataUrl=
 
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_with_EID.xml b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_with_EID.xml
index 7b802fc0..10701c29 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_with_EID.xml
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_with_EID.xml
@@ -1,5 +1,5 @@
 <?xml version="1.0" encoding="UTF-8"?>
-<saml2p:Response xmlns:saml2p="urn:oasis:names:tc:SAML:2.0:protocol" Destination="https://localhost/authhandler/idAustriaSp/post" InResponseTo="_aeebfae3ce681fe3ddcaf213a42f01d3" IssueInstant="2014-03-05T06:39:51.017Z" Version="2.0" xmlns:xs="http://www.w3.org/2001/XMLSchema">
+<saml2p:Response xmlns:saml2p="urn:oasis:names:tc:SAML:2.0:protocol" Destination="https://localhost/authhandler/sp/idaustria/post" InResponseTo="_aeebfae3ce681fe3ddcaf213a42f01d3" IssueInstant="2014-03-05T06:39:51.017Z" Version="2.0" xmlns:xs="http://www.w3.org/2001/XMLSchema">
 	<saml2:Issuer xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">classpath:/data/idp_metadata_classpath_entity.xml</saml2:Issuer>
 	<saml2p:Status>
 		<saml2p:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
@@ -9,12 +9,12 @@
 		<saml2:Subject>
 			<saml2:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:persistent" NameQualifier="urn:publicid:gv.at:cdid+BF">QVGm48cqcM4UcyhDTNGYmVdrIoY=</saml2:NameID>
 			<saml2:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
-				<saml2:SubjectConfirmationData InResponseTo="_aeebfae3ce681fe3ddcaf213a42f01d3" NotOnOrAfter="2014-03-05T06:44:51.017Z" Recipient="https://localhost/authhandler/idAustriaSp/post"/>
+				<saml2:SubjectConfirmationData InResponseTo="_aeebfae3ce681fe3ddcaf213a42f01d3" NotOnOrAfter="2014-03-05T06:44:51.017Z" Recipient="https://localhost/authhandler/sp/idaustria/post"/>
 			</saml2:SubjectConfirmation>
 		</saml2:Subject>
 		<saml2:Conditions NotBefore="2014-03-05T06:39:51.017Z" NotOnOrAfter="2014-03-05T06:44:51.017Z">
 			<saml2:AudienceRestriction>
-				<saml2:Audience>https://localhost/authhandler/idAustriaSp/metadata</saml2:Audience>
+				<saml2:Audience>https://localhost/authhandler/sp/idaustria/metadata</saml2:Audience>
 			</saml2:AudienceRestriction>
 		</saml2:Conditions>
 		<saml2:AuthnStatement AuthnInstant="2014-03-05T06:39:51.017Z" SessionIndex="_c0c683509a8ff6ac372a9cf9c5c5a406">
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_with_EID_wrong_data.xml b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_with_EID_wrong_data.xml
deleted file mode 100644
index 50d434e3..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_with_EID_wrong_data.xml
+++ /dev/null
@@ -1,46 +0,0 @@
-<?xml version="1.0" encoding="UTF-8"?>
-<saml2p:Response xmlns:saml2p="urn:oasis:names:tc:SAML:2.0:protocol" Destination="https://localhost/authhandler/idAustriaSp/post" InResponseTo="_aeebfae3ce681fe3ddcaf213a42f01d3" IssueInstant="2014-03-05T06:39:51.017Z" Version="2.0" xmlns:xs="http://www.w3.org/2001/XMLSchema">
-	<saml2:Issuer xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">classpath:/data/idp_metadata_classpath_entity.xml</saml2:Issuer>
-	<saml2p:Status>
-		<saml2p:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
-	</saml2p:Status>
-	<saml2:Assertion xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" ID="_602c3236bffaf71ac3ac88674e76ff9f" IssueInstant="2014-03-05T06:39:51.017Z" Version="2.0">
-		<saml2:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://demo.egiz.gv.at/demoportal_moaid-2.0/pvp/metadata</saml2:Issuer>
-		<saml2:Subject>
-			<saml2:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:persistent" NameQualifier="urn:publicid:gv.at:cdid+BF">QVGm48cqcM4UcyhDTNGYmVdrIoY=</saml2:NameID>
-			<saml2:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
-				<saml2:SubjectConfirmationData InResponseTo="_aeebfae3ce681fe3ddcaf213a42f01d3" NotOnOrAfter="2014-03-05T06:44:51.017Z" Recipient="https://localhost/authhandler/idAustriaSp/post"/>
-			</saml2:SubjectConfirmation>
-		</saml2:Subject>
-		<saml2:Conditions NotBefore="2014-03-05T06:39:51.017Z" NotOnOrAfter="2014-03-05T06:44:51.017Z">
-			<saml2:AudienceRestriction>
-				<saml2:Audience>https://localhost/authhandler/idAustriaSp/metadata</saml2:Audience>
-			</saml2:AudienceRestriction>
-		</saml2:Conditions>
-		<saml2:AuthnStatement AuthnInstant="2014-03-05T06:39:51.017Z" SessionIndex="_c0c683509a8ff6ac372a9cf9c5c5a406">
-			<saml2:AuthnContext>
-				<saml2:AuthnContextClassRef>http://eidas.europa.eu/LoA/high</saml2:AuthnContextClassRef>
-			</saml2:AuthnContext>
-		</saml2:AuthnStatement>
-		<saml2:AttributeStatement>
-            <saml2:Attribute FriendlyName="piiTransactionId" Name="urn:eidgvat:attributes.piiTransactionId" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
-                <saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">piiId_112233445566</saml2:AttributeValue>
-            </saml2:Attribute>
-			<saml2:Attribute FriendlyName="PVP-VERSION" Name="urn:oid:1.2.40.0.10.2.1.1.261.10" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
-				<saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">2.1</saml2:AttributeValue>
-			</saml2:Attribute>
-			<saml2:Attribute FriendlyName="EID-CITIZEN-QAA- EIDAS-LEVEL" Name="urn:oid:1.2.40.0.10.2.1.1.261.108" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
-				<saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">http://eidas.europa.eu/LoA/low</saml2:AttributeValue>
-			</saml2:Attribute>
-			<saml2:Attribute FriendlyName="EID-ISSUING-NATION" Name="urn:oid:1.2.40.0.10.2.1.1.261.32" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
-				<saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">IT</saml2:AttributeValue>
-			</saml2:Attribute>
-			<saml2:Attribute FriendlyName="eidBind" Name="urn:eidgvat:attributes.eidbind" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
-				<saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">aabbccddeeffgghh</saml2:AttributeValue>
-			</saml2:Attribute>
-            <saml2:Attribute FriendlyName="userAuthBlock" Name="urn:eidgvat:attributes.authblock.signed" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
-              <saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">MIIBbjCCARSgAwIBAgIEXh7TNzAKBggqhkjOPQQDAjA/MQswCQYDVQQGEwJBVDENMAsGA1UECgwERUdJWjEOMAwGA1UECwwFalVuaXQxETAPBgNVBAMMCG1ldGFkYXRhMB4XDTIwMDExNTA4NTQxNVoXDTMwMDExNDA4NTQxNVowPzELMAkGA1UEBhMCQVQxDTALBgNVBAoMBEVHSVoxDjAMBgNVBAsMBWpVbml0MREwDwYDVQQDDAhtZXRhZGF0YTBZMBMGByqGSM49AgEGCCqGSM49AwEHA0IABBdBkaxt31p++aZeP3SmlWITj9SYO4McV2ccXFsH4X4QMHuKAMUvjxPm1kdU01eTOWdiQX0GpDIBspYMZh8ZKcwwCgYIKoZIzj0EAwIDSAAwRQIhAJ3QKlk9cd90s+i8y62fvmGF6LtfNO+JvkWqDUBeQImnAiA2KwFtzO7STAp9MEwQGe0vt0F8mO1ttrLE+rr6YxdwGA==</saml2:AttributeValue>
-            </saml2:Attribute>
-		</saml2:AttributeStatement>
-	</saml2:Assertion>
-</saml2p:Response>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_with_legacy.xml b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_with_legacy.xml
deleted file mode 100644
index 1bc93fae..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_with_legacy.xml
+++ /dev/null
@@ -1,55 +0,0 @@
-<?xml version="1.0" encoding="UTF-8"?>
-<saml2p:Response xmlns:saml2p="urn:oasis:names:tc:SAML:2.0:protocol" Destination="https://localhost/authhandler/idAustriaSp/post" InResponseTo="_aeebfae3ce681fe3ddcaf213a42f01d3" IssueInstant="2014-03-05T06:39:51.017Z" Version="2.0" xmlns:xs="http://www.w3.org/2001/XMLSchema">
-	<saml2:Issuer xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">classpath:/data/idp_metadata_classpath_entity.xml</saml2:Issuer>
-	<saml2p:Status>
-		<saml2p:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
-	</saml2p:Status>
-	<saml2:Assertion xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" ID="_602c3236bffaf71ac3ac88674e76ff9f" IssueInstant="2014-03-05T06:39:51.017Z" Version="2.0">
-		<saml2:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://demo.egiz.gv.at/demoportal_moaid-2.0/pvp/metadata</saml2:Issuer>
-		<saml2:Subject>
-			<saml2:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:persistent" NameQualifier="urn:publicid:gv.at:cdid+BF">QVGm48cqcM4UcyhDTNGYmVdrIoY=</saml2:NameID>
-			<saml2:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
-				<saml2:SubjectConfirmationData InResponseTo="_aeebfae3ce681fe3ddcaf213a42f01d3" NotOnOrAfter="2014-03-05T06:44:51.017Z" Recipient="https://localhost/authhandler/idAustriaSp/post"/>
-			</saml2:SubjectConfirmation>
-		</saml2:Subject>
-		<saml2:Conditions NotBefore="2014-03-05T06:39:51.017Z" NotOnOrAfter="2014-03-05T06:44:51.017Z">
-			<saml2:AudienceRestriction>
-				<saml2:Audience>https://localhost/authhandler/idAustriaSp/metadata</saml2:Audience>
-			</saml2:AudienceRestriction>
-		</saml2:Conditions>
-		<saml2:AuthnStatement AuthnInstant="2014-03-05T06:39:51.017Z" SessionIndex="_c0c683509a8ff6ac372a9cf9c5c5a406">
-			<saml2:AuthnContext>
-				<saml2:AuthnContextClassRef>http://eidas.europa.eu/LoA/high</saml2:AuthnContextClassRef>
-			</saml2:AuthnContext>
-		</saml2:AuthnStatement>
-		<saml2:AttributeStatement>
-			<saml2:Attribute FriendlyName="PVP-VERSION" Name="urn:oid:1.2.40.0.10.2.1.1.261.10" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
-				<saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">2.1</saml2:AttributeValue>
-			</saml2:Attribute>
-			<saml2:Attribute FriendlyName="EID-CITIZEN-QAA-EIDAS-LEVEL" Name="urn:oid:1.2.40.0.10.2.1.1.261.108" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
-				<saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">http://eidas.europa.eu/LoA/test</saml2:AttributeValue>
-			</saml2:Attribute>
-			<saml2:Attribute FriendlyName="EID-ISSUING-NATION" Name="urn:oid:1.2.40.0.10.2.1.1.261.32" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
-				<saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">AB</saml2:AttributeValue>
-			</saml2:Attribute>
-            <saml2:Attribute FriendlyName="PRINCIPAL-NAME" Name="urn:oid:1.2.40.0.10.2.1.1.261.20" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
-          <saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">Mustermann</saml2:AttributeValue>
-          </saml2:Attribute>
-          <saml2:Attribute FriendlyName="GIVEN-NAME" Name="urn:oid:2.5.4.42" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
-            <saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">Max</saml2:AttributeValue>
-          </saml2:Attribute>
-          <saml2:Attribute FriendlyName="BIRTHDATE" Name="urn:oid:1.2.40.0.10.2.1.1.55" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
-            <saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">1940-01-01</saml2:AttributeValue>
-          </saml2:Attribute>
-          <saml2:Attribute FriendlyName="BPK" Name="urn:oid:1.2.40.0.10.2.1.1.149" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
-            <saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">BF:QVGm48cqcM4UcyhDTNGYmVdrIoY=</saml2:AttributeValue>
-          </saml2:Attribute>
-          <saml2:Attribute FriendlyName="EID-SECTOR-FOR-IDENTIFIER" Name="urn:oid:1.2.40.0.10.2.1.1.261.34" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
-            <saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">urn:publicid:gv.at:cdid+BF</saml2:AttributeValue>
-          </saml2:Attribute>
-          <saml2:Attribute FriendlyName="EID-IDENTITY-LINK" Name="urn:oid:1.2.40.0.10.2.1.1.261.38" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
-            <saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">MIIBbjCCARSgAwIBAgIEXh7TNzAKBggqhkjOPQQDAjA/MQswCQYDVQQGEwJBVDENMAsGA1UECgwERUdJWjEOMAwGA1UECwwFalVuaXQxETAPBgNVBAMMCG1ldGFkYXRhMB4XDTIwMDExNTA4NTQxNVoXDTMwMDExNDA4NTQxNVowPzELMAkGA1UEBhMCQVQxDTALBgNVBAoMBEVHSVoxDjAMBgNVBAsMBWpVbml0MREwDwYDVQQDDAhtZXRhZGF0YTBZMBMGByqGSM49AgEGCCqGSM49AwEHA0IABBdBkaxt31p++aZeP3SmlWITj9SYO4McV2ccXFsH4X4QMHuKAMUvjxPm1kdU01eTOWdiQX0GpDIBspYMZh8ZKcwwCgYIKoZIzj0EAwIDSAAwRQIhAJ3QKlk9cd90s+i8y62fvmGF6LtfNO+JvkWqDUBeQImnAiA2KwFtzO7STAp9MEwQGe0vt0F8mO1ttrLE+rr6YxdwGA==</saml2:AttributeValue>
-          </saml2:Attribute>
-		</saml2:AttributeStatement>
-	</saml2:Assertion>
-</saml2p:Response>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_with_legacy_and_EID.xml b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_with_legacy_and_EID.xml
deleted file mode 100644
index 0d465c81..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_with_legacy_and_EID.xml
+++ /dev/null
@@ -1,58 +0,0 @@
-<?xml version="1.0" encoding="UTF-8"?>
-<saml2p:Response xmlns:saml2p="urn:oasis:names:tc:SAML:2.0:protocol" Destination="https://localhost/authhandler/idAustriaSp/post" InResponseTo="_aeebfae3ce681fe3ddcaf213a42f01d3" IssueInstant="2014-03-05T06:39:51.017Z" Version="2.0" xmlns:xs="http://www.w3.org/2001/XMLSchema">
-	<saml2:Issuer xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">classpath:/data/idp_metadata_classpath_entity.xml</saml2:Issuer>
-	<saml2p:Status>
-		<saml2p:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
-	</saml2p:Status>
-	<saml2:Assertion xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" ID="_602c3236bffaf71ac3ac88674e76ff9f" IssueInstant="2014-03-05T06:39:51.017Z" Version="2.0">
-		<saml2:Issuer Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">https://demo.egiz.gv.at/demoportal_moaid-2.0/pvp/metadata</saml2:Issuer>
-		<saml2:Subject>
-			<saml2:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:persistent" NameQualifier="urn:publicid:gv.at:cdid+BF">QVGm48cqcM4UcyhDTNGYmVdrIoY=</saml2:NameID>
-			<saml2:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
-				<saml2:SubjectConfirmationData InResponseTo="_aeebfae3ce681fe3ddcaf213a42f01d3" NotOnOrAfter="2014-03-05T06:44:51.017Z" Recipient="https://localhost/authhandler/idAustriaSp/post"/>
-			</saml2:SubjectConfirmation>
-		</saml2:Subject>
-		<saml2:Conditions NotBefore="2014-03-05T06:39:51.017Z" NotOnOrAfter="2014-03-05T06:44:51.017Z">
-			<saml2:AudienceRestriction>
-				<saml2:Audience>https://localhost/authhandler/idAustriaSp/metadata</saml2:Audience>
-			</saml2:AudienceRestriction>
-		</saml2:Conditions>
-		<saml2:AuthnStatement AuthnInstant="2014-03-05T06:39:51.017Z" SessionIndex="_c0c683509a8ff6ac372a9cf9c5c5a406">
-			<saml2:AuthnContext>
-				<saml2:AuthnContextClassRef>http://eidas.europa.eu/LoA/high</saml2:AuthnContextClassRef>
-			</saml2:AuthnContext>
-		</saml2:AuthnStatement>
-		<saml2:AttributeStatement>
-			<saml2:Attribute FriendlyName="PVP-VERSION" Name="urn:oid:1.2.40.0.10.2.1.1.261.10" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
-				<saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">2.1</saml2:AttributeValue>
-			</saml2:Attribute>
-			<saml2:Attribute FriendlyName="EID-CITIZEN-QAA-EIDAS-LEVEL" Name="urn:oid:1.2.40.0.10.2.1.1.261.108" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
-				<saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">http://eidas.europa.eu/LoA/test</saml2:AttributeValue>
-			</saml2:Attribute>
-			<saml2:Attribute FriendlyName="EID-ISSUING-NATION" Name="urn:oid:1.2.40.0.10.2.1.1.261.32" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
-				<saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">AB</saml2:AttributeValue>
-			</saml2:Attribute>
-            <saml2:Attribute FriendlyName="PRINCIPAL-NAME" Name="urn:oid:1.2.40.0.10.2.1.1.261.20" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
-          <saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">Mustermann</saml2:AttributeValue>
-          </saml2:Attribute>
-          <saml2:Attribute FriendlyName="GIVEN-NAME" Name="urn:oid:2.5.4.42" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
-            <saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">Max</saml2:AttributeValue>
-          </saml2:Attribute>
-          <saml2:Attribute FriendlyName="BIRTHDATE" Name="urn:oid:1.2.40.0.10.2.1.1.55" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
-            <saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">1940-01-01</saml2:AttributeValue>
-          </saml2:Attribute>
-          <saml2:Attribute FriendlyName="BPK" Name="urn:oid:1.2.40.0.10.2.1.1.149" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
-            <saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">BF:QVGm48cqcM4UcyhDTNGYmVdrIoY=</saml2:AttributeValue>
-          </saml2:Attribute>
-          <saml2:Attribute FriendlyName="EID-SECTOR-FOR-IDENTIFIER" Name="urn:oid:1.2.40.0.10.2.1.1.261.34" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
-            <saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">urn:publicid:gv.at:cdid+BF</saml2:AttributeValue>
-          </saml2:Attribute>
-          <saml2:Attribute FriendlyName="EID-IDENTITY-LINK" Name="urn:oid:1.2.40.0.10.2.1.1.261.38" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
-            <saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">MIIBbjCCARSgAwIBAgIEXh7TNzAKBggqhkjOPQQDAjA/MQswCQYDVQQGEwJBVDENMAsGA1UECgwERUdJWjEOMAwGA1UECwwFalVuaXQxETAPBgNVBAMMCG1ldGFkYXRhMB4XDTIwMDExNTA4NTQxNVoXDTMwMDExNDA4NTQxNVowPzELMAkGA1UEBhMCQVQxDTALBgNVBAoMBEVHSVoxDjAMBgNVBAsMBWpVbml0MREwDwYDVQQDDAhtZXRhZGF0YTBZMBMGByqGSM49AgEGCCqGSM49AwEHA0IABBdBkaxt31p++aZeP3SmlWITj9SYO4McV2ccXFsH4X4QMHuKAMUvjxPm1kdU01eTOWdiQX0GpDIBspYMZh8ZKcwwCgYIKoZIzj0EAwIDSAAwRQIhAJ3QKlk9cd90s+i8y62fvmGF6LtfNO+JvkWqDUBeQImnAiA2KwFtzO7STAp9MEwQGe0vt0F8mO1ttrLE+rr6YxdwGA==</saml2:AttributeValue>
-          </saml2:Attribute>
-          <saml2:Attribute FriendlyName="userAuthBlock" Name="urn:eidgvat:attributes.authblock.signed" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri">
-            <saml2:AttributeValue xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="xs:string">MIIBbjCCARSgAwIBAgIEXh7TNzAKBggqhkjOPQQDAjA/MQswCQYDVQQGEwJBVDENMAsGA1UECgwERUdJWjEOMAwGA1UECwwFalVuaXQxETAPBgNVBAMMCG1ldGFkYXRhMB4XDTIwMDExNTA4NTQxNVoXDTMwMDExNDA4NTQxNVowPzELMAkGA1UEBhMCQVQxDTALBgNVBAoMBEVHSVoxDjAMBgNVBAsMBWpVbml0MREwDwYDVQQDDAhtZXRhZGF0YTBZMBMGByqGSM49AgEGCCqGSM49AwEHA0IABBdBkaxt31p++aZeP3SmlWITj9SYO4McV2ccXFsH4X4QMHuKAMUvjxPm1kdU01eTOWdiQX0GpDIBspYMZh8ZKcwwCgYIKoZIzj0EAwIDSAAwRQIhAJ3QKlk9cd90s+i8y62fvmGF6LtfNO+JvkWqDUBeQImnAiA2KwFtzO7STAp9MEwQGe0vt0F8mO1ttrLE+rr6YxdwGA==</saml2:AttributeValue>
-          </saml2:Attribute>
-		</saml2:AttributeStatement>
-	</saml2:Assertion>
-</saml2p:Response>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_without_sig_classpath_entityid.xml b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_without_sig_classpath_entityid.xml
index f1065961..1c3bd357 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_without_sig_classpath_entityid.xml
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_without_sig_classpath_entityid.xml
@@ -1,5 +1,5 @@
 <?xml version="1.0" encoding="UTF-8"?>
-<saml2p:Response xmlns:saml2p="urn:oasis:names:tc:SAML:2.0:protocol" Destination="https://localhost/authhandler/idAustriaSp/post" InResponseTo="_aeebfae3ce681fe3ddcaf213a42f01d3" IssueInstant="2014-03-05T06:39:51.017Z" Version="2.0" xmlns:xs="http://www.w3.org/2001/XMLSchema">
+<saml2p:Response xmlns:saml2p="urn:oasis:names:tc:SAML:2.0:protocol" Destination="https://localhost/authhandler/sp/idaustria/post" InResponseTo="_aeebfae3ce681fe3ddcaf213a42f01d3" IssueInstant="2014-03-05T06:39:51.017Z" Version="2.0" xmlns:xs="http://www.w3.org/2001/XMLSchema">
 	<saml2:Issuer xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">classpath:/data/idp_metadata_classpath_entity.xml</saml2:Issuer>
 	<saml2p:Status>
 		<saml2p:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success"/>
@@ -9,12 +9,12 @@
 		<saml2:Subject>
 			<saml2:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:persistent" NameQualifier="urn:publicid:gv.at:cdid+BF">QVGm48cqcM4UcyhDTNGYmVdrIoY=</saml2:NameID>
 			<saml2:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
-				<saml2:SubjectConfirmationData InResponseTo="_aeebfae3ce681fe3ddcaf213a42f01d3" NotOnOrAfter="2014-03-05T06:44:51.017Z" Recipient="https://localhost/authhandler/idAustriaSp/post"/>
+				<saml2:SubjectConfirmationData InResponseTo="_aeebfae3ce681fe3ddcaf213a42f01d3" NotOnOrAfter="2014-03-05T06:44:51.017Z" Recipient="https://localhost/authhandler/sp/idaustria/post"/>
 			</saml2:SubjectConfirmation>
 		</saml2:Subject>
 		<saml2:Conditions NotBefore="2014-03-05T06:39:51.017Z" NotOnOrAfter="2014-03-05T06:44:51.017Z">
 			<saml2:AudienceRestriction>
-				<saml2:Audience>https://localhost/authhandler/idAustriaSp/metadata</saml2:Audience>
+				<saml2:Audience>https://localhost/authhandler/sp/idaustria/metadata</saml2:Audience>
 			</saml2:AudienceRestriction>
 		</saml2:Conditions>
 		<saml2:AuthnStatement AuthnInstant="2014-03-05T06:39:51.017Z" SessionIndex="_c0c683509a8ff6ac372a9cf9c5c5a406">
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_without_sig_with_error.xml b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_without_sig_with_error.xml
index 56b06534..2d7020ac 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_without_sig_with_error.xml
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_without_sig_with_error.xml
@@ -1,5 +1,5 @@
 <?xml version="1.0" encoding="UTF-8"?>
-<saml2p:Response xmlns:saml2p="urn:oasis:names:tc:SAML:2.0:protocol" Destination="https://localhost/authhandler/idAustriaSp/post" InResponseTo="_aeebfae3ce681fe3ddcaf213a42f01d3" IssueInstant="2014-03-05T06:39:51.017Z" Version="2.0" xmlns:xs="http://www.w3.org/2001/XMLSchema">
+<saml2p:Response xmlns:saml2p="urn:oasis:names:tc:SAML:2.0:protocol" Destination="https://localhost/authhandler/sp/idaustria/post" InResponseTo="_aeebfae3ce681fe3ddcaf213a42f01d3" IssueInstant="2014-03-05T06:39:51.017Z" Version="2.0" xmlns:xs="http://www.w3.org/2001/XMLSchema">
 	<saml2:Issuer xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">classpath:/data/idp_metadata_classpath_entity.xml</saml2:Issuer>
 	<saml2p:Status>
 		<saml2p:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Responder">
@@ -12,12 +12,12 @@
 		<saml2:Subject>
 			<saml2:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:persistent" NameQualifier="urn:publicid:gv.at:cdid+BF">QVGm48cqcM4UcyhDTNGYmVdrIoY=</saml2:NameID>
 			<saml2:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
-				<saml2:SubjectConfirmationData InResponseTo="_aeebfae3ce681fe3ddcaf213a42f01d3" NotOnOrAfter="2014-03-05T06:44:51.017Z" Recipient="https://localhost/authhandler/idAustriaSp/post"/>
+				<saml2:SubjectConfirmationData InResponseTo="_aeebfae3ce681fe3ddcaf213a42f01d3" NotOnOrAfter="2014-03-05T06:44:51.017Z" Recipient="https://localhost/authhandler/sp/idaustria/post"/>
 			</saml2:SubjectConfirmation>
 		</saml2:Subject>
 		<saml2:Conditions NotBefore="2014-03-05T06:39:51.017Z" NotOnOrAfter="2014-03-05T06:44:51.017Z">
 			<saml2:AudienceRestriction>
-				<saml2:Audience>https://localhost/authhandler/idAustriaSp/metadata</saml2:Audience>
+				<saml2:Audience>https://localhost/authhandler/sp/idaustria/metadata</saml2:Audience>
 			</saml2:AudienceRestriction>
 		</saml2:Conditions>
 		<saml2:AuthnStatement AuthnInstant="2014-03-05T06:39:51.017Z" SessionIndex="_c0c683509a8ff6ac372a9cf9c5c5a406">
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_without_sig_with_error_empty_subcode.xml b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_without_sig_with_error_empty_subcode.xml
index 973491d8..36fd9c11 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_without_sig_with_error_empty_subcode.xml
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_without_sig_with_error_empty_subcode.xml
@@ -1,5 +1,5 @@
 <?xml version="1.0" encoding="UTF-8"?>
-<saml2p:Response xmlns:saml2p="urn:oasis:names:tc:SAML:2.0:protocol" Destination="https://localhost/authhandler/idAustriaSp/post" InResponseTo="_aeebfae3ce681fe3ddcaf213a42f01d3" IssueInstant="2014-03-05T06:39:51.017Z" Version="2.0" xmlns:xs="http://www.w3.org/2001/XMLSchema">
+<saml2p:Response xmlns:saml2p="urn:oasis:names:tc:SAML:2.0:protocol" Destination="https://localhost/authhandler/sp/idaustria/post" InResponseTo="_aeebfae3ce681fe3ddcaf213a42f01d3" IssueInstant="2014-03-05T06:39:51.017Z" Version="2.0" xmlns:xs="http://www.w3.org/2001/XMLSchema">
 	<saml2:Issuer xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">classpath:/data/idp_metadata_classpath_entity.xml</saml2:Issuer>
 	<saml2p:Status>
 		<saml2p:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Responder">
@@ -12,12 +12,12 @@
 		<saml2:Subject>
 			<saml2:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:persistent" NameQualifier="urn:publicid:gv.at:cdid+BF">QVGm48cqcM4UcyhDTNGYmVdrIoY=</saml2:NameID>
 			<saml2:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
-				<saml2:SubjectConfirmationData InResponseTo="_aeebfae3ce681fe3ddcaf213a42f01d3" NotOnOrAfter="2014-03-05T06:44:51.017Z" Recipient="https://localhost/authhandler/idAustriaSp/post"/>
+				<saml2:SubjectConfirmationData InResponseTo="_aeebfae3ce681fe3ddcaf213a42f01d3" NotOnOrAfter="2014-03-05T06:44:51.017Z" Recipient="https://localhost/authhandler/sp/idaustria/post"/>
 			</saml2:SubjectConfirmation>
 		</saml2:Subject>
 		<saml2:Conditions NotBefore="2014-03-05T06:39:51.017Z" NotOnOrAfter="2014-03-05T06:44:51.017Z">
 			<saml2:AudienceRestriction>
-				<saml2:Audience>https://localhost/authhandler/idAustriaSp/metadata</saml2:Audience>
+				<saml2:Audience>https://localhost/authhandler/sp/idaustria/metadata</saml2:Audience>
 			</saml2:AudienceRestriction>
 		</saml2:Conditions>
 		<saml2:AuthnStatement AuthnInstant="2014-03-05T06:39:51.017Z" SessionIndex="_c0c683509a8ff6ac372a9cf9c5c5a406">
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_without_sig_with_error_userstop.xml b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_without_sig_with_error_userstop.xml
index 087bcb1f..989d3053 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_without_sig_with_error_userstop.xml
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_without_sig_with_error_userstop.xml
@@ -1,5 +1,5 @@
 <?xml version="1.0" encoding="UTF-8"?>
-<saml2p:Response xmlns:saml2p="urn:oasis:names:tc:SAML:2.0:protocol" Destination="https://localhost/authhandler/idAustriaSp/post" InResponseTo="_aeebfae3ce681fe3ddcaf213a42f01d3" IssueInstant="2014-03-05T06:39:51.017Z" Version="2.0" xmlns:xs="http://www.w3.org/2001/XMLSchema">
+<saml2p:Response xmlns:saml2p="urn:oasis:names:tc:SAML:2.0:protocol" Destination="https://localhost/authhandler/sp/idaustria/post" InResponseTo="_aeebfae3ce681fe3ddcaf213a42f01d3" IssueInstant="2014-03-05T06:39:51.017Z" Version="2.0" xmlns:xs="http://www.w3.org/2001/XMLSchema">
 	<saml2:Issuer xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">classpath:/data/idp_metadata_classpath_entity.xml</saml2:Issuer>
 	<saml2p:Status>
 		<saml2p:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Responder">
@@ -12,12 +12,12 @@
 		<saml2:Subject>
 			<saml2:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:persistent" NameQualifier="urn:publicid:gv.at:cdid+BF">QVGm48cqcM4UcyhDTNGYmVdrIoY=</saml2:NameID>
 			<saml2:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
-				<saml2:SubjectConfirmationData InResponseTo="_aeebfae3ce681fe3ddcaf213a42f01d3" NotOnOrAfter="2014-03-05T06:44:51.017Z" Recipient="https://localhost/authhandler/idAustriaSp/post"/>
+				<saml2:SubjectConfirmationData InResponseTo="_aeebfae3ce681fe3ddcaf213a42f01d3" NotOnOrAfter="2014-03-05T06:44:51.017Z" Recipient="https://localhost/authhandler/sp/idaustria/post"/>
 			</saml2:SubjectConfirmation>
 		</saml2:Subject>
 		<saml2:Conditions NotBefore="2014-03-05T06:39:51.017Z" NotOnOrAfter="2014-03-05T06:44:51.017Z">
 			<saml2:AudienceRestriction>
-				<saml2:Audience>https://localhost/authhandler/idAustriaSp/metadata</saml2:Audience>
+				<saml2:Audience>https://localhost/authhandler/sp/idaustria/metadata</saml2:Audience>
 			</saml2:AudienceRestriction>
 		</saml2:Conditions>
 		<saml2:AuthnStatement AuthnInstant="2014-03-05T06:39:51.017Z" SessionIndex="_c0c683509a8ff6ac372a9cf9c5c5a406">
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_without_sig_with_error_without_subcode.xml b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_without_sig_with_error_without_subcode.xml
index e449327a..c85cb655 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_without_sig_with_error_without_subcode.xml
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/Response_without_sig_with_error_without_subcode.xml
@@ -1,5 +1,5 @@
 <?xml version="1.0" encoding="UTF-8"?>
-<saml2p:Response xmlns:saml2p="urn:oasis:names:tc:SAML:2.0:protocol" Destination="https://localhost/authhandler/idAustriaSp/post" InResponseTo="_aeebfae3ce681fe3ddcaf213a42f01d3" IssueInstant="2014-03-05T06:39:51.017Z" Version="2.0" xmlns:xs="http://www.w3.org/2001/XMLSchema">
+<saml2p:Response xmlns:saml2p="urn:oasis:names:tc:SAML:2.0:protocol" Destination="https://localhost/authhandler/sp/idaustria/post" InResponseTo="_aeebfae3ce681fe3ddcaf213a42f01d3" IssueInstant="2014-03-05T06:39:51.017Z" Version="2.0" xmlns:xs="http://www.w3.org/2001/XMLSchema">
 	<saml2:Issuer xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" Format="urn:oasis:names:tc:SAML:2.0:nameid-format:entity">classpath:/data/idp_metadata_classpath_entity.xml</saml2:Issuer>
 	<saml2p:Status>
 		<saml2p:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Responder">
@@ -11,12 +11,12 @@
 		<saml2:Subject>
 			<saml2:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:persistent" NameQualifier="urn:publicid:gv.at:cdid+BF">QVGm48cqcM4UcyhDTNGYmVdrIoY=</saml2:NameID>
 			<saml2:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
-				<saml2:SubjectConfirmationData InResponseTo="_aeebfae3ce681fe3ddcaf213a42f01d3" NotOnOrAfter="2014-03-05T06:44:51.017Z" Recipient="https://localhost/authhandler/idAustriaSp/post"/>
+				<saml2:SubjectConfirmationData InResponseTo="_aeebfae3ce681fe3ddcaf213a42f01d3" NotOnOrAfter="2014-03-05T06:44:51.017Z" Recipient="https://localhost/authhandler/sp/idaustria/post"/>
 			</saml2:SubjectConfirmation>
 		</saml2:Subject>
 		<saml2:Conditions NotBefore="2014-03-05T06:39:51.017Z" NotOnOrAfter="2014-03-05T06:44:51.017Z">
 			<saml2:AudienceRestriction>
-				<saml2:Audience>https://localhost/authhandler/idAustriaSp/metadata</saml2:Audience>
+				<saml2:Audience>https://localhost/authhandler/sp/idaustria/metadata</saml2:Audience>
 			</saml2:AudienceRestriction>
 		</saml2:Conditions>
 		<saml2:AuthnStatement AuthnInstant="2014-03-05T06:39:51.017Z" SessionIndex="_c0c683509a8ff6ac372a9cf9c5c5a406">
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/idp_metadata_classpath_entity1.xml b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/idp_metadata_classpath_entity1.xml
deleted file mode 100644
index cde66c78..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/idp_metadata_classpath_entity1.xml
+++ /dev/null
@@ -1,146 +0,0 @@
-<?xml version="1.0" encoding="UTF-8"?>
-<md:EntityDescriptor
-        xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata"
-        ID="_1a48ec3432f2f3ba6222724a5b06f873"
-        entityID="classpath:/data/idp_metadata_classpath_entity1.xml"
-        validUntil="2045-02-06T08:47:26.211Z">
-    <md:IDPSSODescriptor
-            WantAuthnRequestsSigned="true"
-            protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol">
-        <md:KeyDescriptor use="signing">
-            <ds:KeyInfo
-                    xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
-                <ds:X509Data>
-                    <ds:X509Certificate>MIIDMzCCAhsCBFtIcPowDQYJKoZIhvcNAQELBQAwXjELMAkGA1UEBhMCQVQxDTALBgNVBAoMBEVH
-                        SVoxJDAiBgNVBAsMG2NlbnRyYWwgbmF0aW9uYWwgZUlEQVMgbm9kZTEaMBgGA1UEAwwRQXNzZXJ0
-                        aW9uIHNpZ25pbmcwHhcNMTgwNzEzMDkyOTMwWhcNMjEwNDA3MDkyOTMwWjBeMQswCQYDVQQGEwJB
-                        VDENMAsGA1UECgwERUdJWjEkMCIGA1UECwwbY2VudHJhbCBuYXRpb25hbCBlSURBUyBub2RlMRow
-                        GAYDVQQDDBFBc3NlcnRpb24gc2lnbmluZzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB
-                        AJ5zDYxMPRcz6AHaev1tS46Tq8sdgbGFM56uxk6c7LmMDC+HTzNX/3Q5S/YwSzgL3ue5TSw1ltOf
-                        yMXMZ6D0+buWWcsxGEkQ8M3adKRFdQrEwafzwTA7pguq5WiHOkr4qwR7dLMome9z5cc3LRcwdOPP
-                        gq7ahb5jM3hRqc5xkMWIuvql0NFXPzlHrjDLwy5nIWPOhL5abhVt4YsXbpbjXxFSGkDEAZ32K3EU
-                        LNBr9FSUmJfbrVX9AU2T+BKIwiqXP8e/3UJHgPHQ0l5ljWp5P6u5+tvM21o8sUM4eArRa8BkdRsP
-                        C92GVuASSUz2ZJ3JhAK1cSM8bnvaZVLQtTvPMAcCAwEAATANBgkqhkiG9w0BAQsFAAOCAQEAAp7z
-                        TubWXW6YMpyLSvWBdZiiQ3X66XpSZLZJDIAkoPzEY0DSBp8I5YASIx4JTR5XJt+6MI9acgNIAYW8
-                        DhtRwUMVaRWEtuCrfKhGLWm5KSxnhPcD3lzRZhY4ZcA7dUlirjf6hnqo2TFEmJ9fkM+rxwy1GkDD
-                        7j2YDSOFmSq9/Ud9/IbIfSnRu/lO0dh7iRrmg3y0Y/+plPxYmp4AHqehP11OchTz2FGGHVsSC2Vs
-                        IVBQI6ANZYyOlicgfEEFHA06jP9OnA0EwEFr2P+di9caZg8vfibyzxMGeuf6CY0c0eLHokBCn2W8
-                        vkzvWiER3pozRvCmXFjCVZfRjUunaJf2ow==
-                    </ds:X509Certificate>
-                </ds:X509Data>
-                <ds:X509Data>
-                    <ds:X509Certificate>MIIC+DCCAeCgAwIBAgIEXh7TbTANBgkqhkiG9w0BAQsFADA+MQswCQYDVQQGEwJB
-                        VDENMAsGA1UECgwERUdJWjEOMAwGA1UECwwFalVuaXQxEDAOBgNVBAMMB3NpZ25p
-                        bmcwHhcNMjAwMTE1MDg1NTA5WhcNMjkwMTE0MDg1NTA5WjA+MQswCQYDVQQGEwJB
-                        VDENMAsGA1UECgwERUdJWjEOMAwGA1UECwwFalVuaXQxEDAOBgNVBAMMB3NpZ25p
-                        bmcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCUSiRjnDvPafZfhJ+L
-                        1wM86FKJX3VIAV/8TD9qJ6HOBkn5WwYfpheyCfRb6XVDyIGpO8qnMWAgC17Ngbmh
-                        zj8d8HXNQ2l3uppMv24oUTfXyYhQfZWAghx0sTlRIx/ZmlnduJilx2S53Sa7ruJw
-                        lQcBFXj9h9B8dtyegc86Sx6D9BumP1xU7+mEBk8Gv9rR5Khg0Y7qGfZWB0t4aikg
-                        aupWveVwiGifOOSfR8czqIg9qUpMYfZiTEBTSRmN6sPiNWhd4J0GyAI9Rn5C9jz/
-                        sSlQrxpN+4DXzsqSU5F6gzq3yRux6wyOzDlt2birf21VPQ9HIy4YCjZXwgDWG7AO
-                        821pAgMBAAEwDQYJKoZIhvcNAQELBQADggEBADnwdaxUtQU6SIpYwIb2c0ljTmQi
-                        7ryUcUpNHtK0M0E5Mw5Ex8zwrWbNQZ2sUyc4r07M66iOIqHsYZUQlRYvVKHifDpA
-                        r8TCgD7iGGdB3By8Ou0RaNW+03w1fwmi98CufbHCGvpv0o2KxlejoHZminNdQ79i
-                        bN+01nhocezJQATEQlnwHLiQSjilXpZeLYDk8HbrcUXNRxezN4ChdH+uU54vf+Ux
-                        qcj9QHcmBe1+BM8EXfqS1DbTwZl+NTCnh5OYl8fvIFSOHMBxwFrI4pyY0faxg9Uc
-                        rCogn/oQ+mV1gnVUDaDhvvEnVGZQtrlt7heVId2BeNellVgsrcmdW8j4U9U=
-                    </ds:X509Certificate>
-                </ds:X509Data>
-                <ds:X509Data>
-                    <ds:X509Certificate>MIIBbjCCARSgAwIBAgIEXh7TNzAKBggqhkjOPQQDAjA/MQswCQYDVQQGEwJBVDEN
-                        MAsGA1UECgwERUdJWjEOMAwGA1UECwwFalVuaXQxETAPBgNVBAMMCG1ldGFkYXRh
-                        MB4XDTIwMDExNTA4NTQxNVoXDTMwMDExNDA4NTQxNVowPzELMAkGA1UEBhMCQVQx
-                        DTALBgNVBAoMBEVHSVoxDjAMBgNVBAsMBWpVbml0MREwDwYDVQQDDAhtZXRhZGF0
-                        YTBZMBMGByqGSM49AgEGCCqGSM49AwEHA0IABBdBkaxt31p++aZeP3SmlWITj9SY
-                        O4McV2ccXFsH4X4QMHuKAMUvjxPm1kdU01eTOWdiQX0GpDIBspYMZh8ZKcwwCgYI
-                        KoZIzj0EAwIDSAAwRQIhAJ3QKlk9cd90s+i8y62fvmGF6LtfNO+JvkWqDUBeQImn
-                        AiA2KwFtzO7STAp9MEwQGe0vt0F8mO1ttrLE+rr6YxdwGA==
-                    </ds:X509Certificate>
-                </ds:X509Data>
-            </ds:KeyInfo>
-        </md:KeyDescriptor>
-        <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:persistent
-        </md:NameIDFormat>
-        <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient
-        </md:NameIDFormat>
-        <md:NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified
-        </md:NameIDFormat>
-        <md:SingleSignOnService
-                Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST"
-                Location="https://vidp.gv.at/ms_connector1/pvp/post" />
-        <md:SingleSignOnService
-                Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect"
-                Location="https://vidp.gv.at/ms_connector1/pvp/redirect" />
-        <saml2:Attribute
-                xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion"
-                FriendlyName="BPK" Name="urn:oid:1.2.40.0.10.2.1.1.149"
-                NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" />
-        <saml2:Attribute
-                xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion"
-                FriendlyName="BIRTHDATE" Name="urn:oid:1.2.40.0.10.2.1.1.55"
-                NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" />
-        <saml2:Attribute
-                xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion"
-                FriendlyName="PRINCIPAL-NAME"
-                Name="urn:oid:1.2.40.0.10.2.1.1.261.20"
-                NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" />
-        <saml2:Attribute
-                xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion"
-                FriendlyName="EID-CCS-URL" Name="urn:oid:1.2.40.0.10.2.1.1.261.64"
-                NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" />
-        <saml2:Attribute
-                xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion"
-                FriendlyName="EID-ISSUING-NATION"
-                Name="urn:oid:1.2.40.0.10.2.1.1.261.32"
-                NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" />
-        <saml2:Attribute
-                xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion"
-                FriendlyName="PVP-VERSION" Name="urn:oid:1.2.40.0.10.2.1.1.261.10"
-                NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" />
-        <saml2:Attribute
-                xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion"
-                FriendlyName="EID-SOURCE-PIN"
-                Name="urn:oid:1.2.40.0.10.2.1.1.261.36"
-                NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" />
-        <saml2:Attribute
-                xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion"
-                FriendlyName="GIVEN-NAME" Name="urn:oid:2.5.4.42"
-                NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" />
-        <saml2:Attribute
-                xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion"
-                FriendlyName="EID-SIGNER-CERTIFICATE"
-                Name="urn:oid:1.2.40.0.10.2.1.1.261.66"
-                NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" />
-        <saml2:Attribute
-                xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion"
-                FriendlyName="EID-SECTOR-FOR-IDENTIFIER"
-                Name="urn:oid:1.2.40.0.10.2.1.1.261.34"
-                NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" />
-        <saml2:Attribute
-                xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion"
-                FriendlyName="EID-SOURCE-PIN-TYPE"
-                Name="urn:oid:1.2.40.0.10.2.1.1.261.104"
-                NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" />
-        <saml2:Attribute
-                xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion"
-                FriendlyName="EID-E-ID-TOKEN"
-                Name="urn:oid:1.2.40.0.10.2.1.1.261.39"
-                NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" />
-        <saml2:Attribute
-                xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion"
-                FriendlyName="EID-IDENTITY-LINK"
-                Name="urn:oid:1.2.40.0.10.2.1.1.261.38"
-                NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" />
-        <saml2:Attribute
-                xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion"
-                FriendlyName="EID-CITIZEN-QAA-EIDAS-LEVEL"
-                Name="urn:oid:1.2.40.0.10.2.1.1.261.108"
-                NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" />
-        <saml2:Attribute
-                xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion"
-                FriendlyName="EID-IDENTITY-STATUS-LEVEL"
-                Name="urn:oid:1.2.40.0.10.2.1.1.261.109"
-                NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri" />
-    </md:IDPSSODescriptor>
-</md:EntityDescriptor>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/idp_metadata_no_sig.xml b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/idp_metadata_no_sig.xml
new file mode 100644
index 00000000..bc55fe62
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/idp_metadata_no_sig.xml
@@ -0,0 +1,46 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" ID="_1a48ec3432f2f3ba6222724a5b06f873" entityID="https://vidp.gv.at/ms_connector/pvp/metadata" validUntil="2045-02-06T08:47:26.211Z">
+	<md:IDPSSODescriptor WantAuthnRequestsSigned="true" protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol">
+		<md:KeyDescriptor use="signing">
+			<ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
+				<ds:X509Data>
+					<ds:X509Certificate>MIIDMzCCAhsCBFtIcPowDQYJKoZIhvcNAQELBQAwXjELMAkGA1UEBhMCQVQxDTALBgNVBAoMBEVH
+SVoxJDAiBgNVBAsMG2NlbnRyYWwgbmF0aW9uYWwgZUlEQVMgbm9kZTEaMBgGA1UEAwwRQXNzZXJ0
+aW9uIHNpZ25pbmcwHhcNMTgwNzEzMDkyOTMwWhcNMjEwNDA3MDkyOTMwWjBeMQswCQYDVQQGEwJB
+VDENMAsGA1UECgwERUdJWjEkMCIGA1UECwwbY2VudHJhbCBuYXRpb25hbCBlSURBUyBub2RlMRow
+GAYDVQQDDBFBc3NlcnRpb24gc2lnbmluZzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB
+AJ5zDYxMPRcz6AHaev1tS46Tq8sdgbGFM56uxk6c7LmMDC+HTzNX/3Q5S/YwSzgL3ue5TSw1ltOf
+yMXMZ6D0+buWWcsxGEkQ8M3adKRFdQrEwafzwTA7pguq5WiHOkr4qwR7dLMome9z5cc3LRcwdOPP
+gq7ahb5jM3hRqc5xkMWIuvql0NFXPzlHrjDLwy5nIWPOhL5abhVt4YsXbpbjXxFSGkDEAZ32K3EU
+LNBr9FSUmJfbrVX9AU2T+BKIwiqXP8e/3UJHgPHQ0l5ljWp5P6u5+tvM21o8sUM4eArRa8BkdRsP
+C92GVuASSUz2ZJ3JhAK1cSM8bnvaZVLQtTvPMAcCAwEAATANBgkqhkiG9w0BAQsFAAOCAQEAAp7z
+TubWXW6YMpyLSvWBdZiiQ3X66XpSZLZJDIAkoPzEY0DSBp8I5YASIx4JTR5XJt+6MI9acgNIAYW8
+DhtRwUMVaRWEtuCrfKhGLWm5KSxnhPcD3lzRZhY4ZcA7dUlirjf6hnqo2TFEmJ9fkM+rxwy1GkDD
+7j2YDSOFmSq9/Ud9/IbIfSnRu/lO0dh7iRrmg3y0Y/+plPxYmp4AHqehP11OchTz2FGGHVsSC2Vs
+IVBQI6ANZYyOlicgfEEFHA06jP9OnA0EwEFr2P+di9caZg8vfibyzxMGeuf6CY0c0eLHokBCn2W8
+vkzvWiER3pozRvCmXFjCVZfRjUunaJf2ow==</ds:X509Certificate>
+				</ds:X509Data>
+			</ds:KeyInfo>
+		</md:KeyDescriptor>
+		<md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:persistent</md:NameIDFormat>
+		<md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat>
+		<md:NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified</md:NameIDFormat>
+		<md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://vidp.gv.at/ms_connector/pvp/post"/>
+		<md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://vidp.gv.at/ms_connector/pvp/redirect"/>
+		<saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="BPK" Name="urn:oid:1.2.40.0.10.2.1.1.149" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"/>
+		<saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="BIRTHDATE" Name="urn:oid:1.2.40.0.10.2.1.1.55" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"/>
+		<saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="PRINCIPAL-NAME" Name="urn:oid:1.2.40.0.10.2.1.1.261.20" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"/>
+		<saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="EID-CCS-URL" Name="urn:oid:1.2.40.0.10.2.1.1.261.64" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"/>
+		<saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="EID-ISSUING-NATION" Name="urn:oid:1.2.40.0.10.2.1.1.261.32" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"/>
+		<saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="PVP-VERSION" Name="urn:oid:1.2.40.0.10.2.1.1.261.10" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"/>
+		<saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="EID-SOURCE-PIN" Name="urn:oid:1.2.40.0.10.2.1.1.261.36" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"/>
+		<saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="GIVEN-NAME" Name="urn:oid:2.5.4.42" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"/>
+		<saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="EID-SIGNER-CERTIFICATE" Name="urn:oid:1.2.40.0.10.2.1.1.261.66" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"/>
+		<saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="EID-SECTOR-FOR-IDENTIFIER" Name="urn:oid:1.2.40.0.10.2.1.1.261.34" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"/>
+		<saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="EID-SOURCE-PIN-TYPE" Name="urn:oid:1.2.40.0.10.2.1.1.261.104" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"/>
+		<saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="EID-E-ID-TOKEN" Name="urn:oid:1.2.40.0.10.2.1.1.261.39" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"/>
+		<saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="EID-IDENTITY-LINK" Name="urn:oid:1.2.40.0.10.2.1.1.261.38" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"/>
+		<saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="EID-CITIZEN-QAA-EIDAS-LEVEL" Name="urn:oid:1.2.40.0.10.2.1.1.261.108" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"/>
+		<saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="EID-IDENTITY-STATUS-LEVEL" Name="urn:oid:1.2.40.0.10.2.1.1.261.109" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"/>
+	</md:IDPSSODescriptor>
+</md:EntityDescriptor>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/idp_metadata_no_sig2.xml b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/idp_metadata_no_sig2.xml
new file mode 100644
index 00000000..bdc176a0
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/idp_metadata_no_sig2.xml
@@ -0,0 +1,46 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" ID="_1a48ec3432f2f3ba6222724a5b06f873" entityID="classpath:/data/idp_metadata_no_sig2.xml" validUntil="2045-02-06T08:47:26.211Z">
+	<md:IDPSSODescriptor WantAuthnRequestsSigned="true" protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol">
+		<md:KeyDescriptor use="signing">
+			<ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
+				<ds:X509Data>
+					<ds:X509Certificate>MIIDMzCCAhsCBFtIcPowDQYJKoZIhvcNAQELBQAwXjELMAkGA1UEBhMCQVQxDTALBgNVBAoMBEVH
+SVoxJDAiBgNVBAsMG2NlbnRyYWwgbmF0aW9uYWwgZUlEQVMgbm9kZTEaMBgGA1UEAwwRQXNzZXJ0
+aW9uIHNpZ25pbmcwHhcNMTgwNzEzMDkyOTMwWhcNMjEwNDA3MDkyOTMwWjBeMQswCQYDVQQGEwJB
+VDENMAsGA1UECgwERUdJWjEkMCIGA1UECwwbY2VudHJhbCBuYXRpb25hbCBlSURBUyBub2RlMRow
+GAYDVQQDDBFBc3NlcnRpb24gc2lnbmluZzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB
+AJ5zDYxMPRcz6AHaev1tS46Tq8sdgbGFM56uxk6c7LmMDC+HTzNX/3Q5S/YwSzgL3ue5TSw1ltOf
+yMXMZ6D0+buWWcsxGEkQ8M3adKRFdQrEwafzwTA7pguq5WiHOkr4qwR7dLMome9z5cc3LRcwdOPP
+gq7ahb5jM3hRqc5xkMWIuvql0NFXPzlHrjDLwy5nIWPOhL5abhVt4YsXbpbjXxFSGkDEAZ32K3EU
+LNBr9FSUmJfbrVX9AU2T+BKIwiqXP8e/3UJHgPHQ0l5ljWp5P6u5+tvM21o8sUM4eArRa8BkdRsP
+C92GVuASSUz2ZJ3JhAK1cSM8bnvaZVLQtTvPMAcCAwEAATANBgkqhkiG9w0BAQsFAAOCAQEAAp7z
+TubWXW6YMpyLSvWBdZiiQ3X66XpSZLZJDIAkoPzEY0DSBp8I5YASIx4JTR5XJt+6MI9acgNIAYW8
+DhtRwUMVaRWEtuCrfKhGLWm5KSxnhPcD3lzRZhY4ZcA7dUlirjf6hnqo2TFEmJ9fkM+rxwy1GkDD
+7j2YDSOFmSq9/Ud9/IbIfSnRu/lO0dh7iRrmg3y0Y/+plPxYmp4AHqehP11OchTz2FGGHVsSC2Vs
+IVBQI6ANZYyOlicgfEEFHA06jP9OnA0EwEFr2P+di9caZg8vfibyzxMGeuf6CY0c0eLHokBCn2W8
+vkzvWiER3pozRvCmXFjCVZfRjUunaJf2ow==</ds:X509Certificate>
+				</ds:X509Data>
+			</ds:KeyInfo>
+		</md:KeyDescriptor>
+		<md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:persistent</md:NameIDFormat>
+		<md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat>
+		<md:NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified</md:NameIDFormat>
+		<md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://vidp.gv.at/ms_connector/pvp/post"/>
+		<md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://vidp.gv.at/ms_connector/pvp/redirect"/>
+		<saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="BPK" Name="urn:oid:1.2.40.0.10.2.1.1.149" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"/>
+		<saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="BIRTHDATE" Name="urn:oid:1.2.40.0.10.2.1.1.55" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"/>
+		<saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="PRINCIPAL-NAME" Name="urn:oid:1.2.40.0.10.2.1.1.261.20" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"/>
+		<saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="EID-CCS-URL" Name="urn:oid:1.2.40.0.10.2.1.1.261.64" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"/>
+		<saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="EID-ISSUING-NATION" Name="urn:oid:1.2.40.0.10.2.1.1.261.32" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"/>
+		<saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="PVP-VERSION" Name="urn:oid:1.2.40.0.10.2.1.1.261.10" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"/>
+		<saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="EID-SOURCE-PIN" Name="urn:oid:1.2.40.0.10.2.1.1.261.36" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"/>
+		<saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="GIVEN-NAME" Name="urn:oid:2.5.4.42" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"/>
+		<saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="EID-SIGNER-CERTIFICATE" Name="urn:oid:1.2.40.0.10.2.1.1.261.66" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"/>
+		<saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="EID-SECTOR-FOR-IDENTIFIER" Name="urn:oid:1.2.40.0.10.2.1.1.261.34" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"/>
+		<saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="EID-SOURCE-PIN-TYPE" Name="urn:oid:1.2.40.0.10.2.1.1.261.104" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"/>
+		<saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="EID-E-ID-TOKEN" Name="urn:oid:1.2.40.0.10.2.1.1.261.39" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"/>
+		<saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="EID-IDENTITY-LINK" Name="urn:oid:1.2.40.0.10.2.1.1.261.38" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"/>
+		<saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="EID-CITIZEN-QAA-EIDAS-LEVEL" Name="urn:oid:1.2.40.0.10.2.1.1.261.108" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"/>
+		<saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="EID-IDENTITY-STATUS-LEVEL" Name="urn:oid:1.2.40.0.10.2.1.1.261.109" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"/>
+	</md:IDPSSODescriptor>
+</md:EntityDescriptor>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/idp_metadata_sig_notvalid.xml b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/idp_metadata_sig_notvalid.xml
new file mode 100644
index 00000000..86665a9c
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/idp_metadata_sig_notvalid.xml
@@ -0,0 +1,84 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" ID="_1a48ec3432f2f3ba6222724a5b06f873" entityID="https://localEntity" validUntil="2045-02-06T08:47:26.211Z">
+  <ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
+    <ds:SignedInfo>
+      <ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
+      <ds:SignatureMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"/>
+      <ds:Reference URI="#_1a48ec3432f2f3ba6222724a5b06f873">
+        <ds:Transforms>
+          <ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/>
+          <ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
+        </ds:Transforms>
+        <ds:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/>
+        <ds:DigestValue>e6DiHa9scuvxJFBUipZ8PQcD4kAkmSIDZgZV+0/7glg=</ds:DigestValue>
+      </ds:Reference>
+    </ds:SignedInfo>
+    <ds:SignatureValue>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</ds:SignatureValue>
+    <ds:KeyInfo>
+      <ds:X509Data>
+        <ds:X509Certificate>MIIEFTCCAn0CBFtIcMwwDQYJKoZIhvcNAQELBQAwTzELMAkGA1UEBhMCQVQxDTALBgNVBAoMBEVH
+SVoxMTAvBgNVBAMMKG5hdGlvbmFsIGNlbnRyYWwgZUlEQVMgbm9kZSAtIHRlc3RzeXN0ZW0wHhcN
+MTgwNzEzMDkyODQ0WhcNMjEwNDA3MDkyODQ0WjBPMQswCQYDVQQGEwJBVDENMAsGA1UECgwERUdJ
+WjExMC8GA1UEAwwobmF0aW9uYWwgY2VudHJhbCBlSURBUyBub2RlIC0gdGVzdHN5c3RlbTCCAaIw
+DQYJKoZIhvcNAQEBBQADggGPADCCAYoCggGBALK4bdf5OremKkj0+xCjU0eN7RUd1A2VqoGnvFUs
+t7xjLQ1PspHiDf9Pm2cwOIJabSnuZ01hYAGz9X+lU3Z3fwhVc+tEsuzsaAml/LPw3i3+ppoSTJDM
+iDvhCoUKTzJ8HBQj2gTvXNlqPljyGneuCJ+uBMr7Okq/XjMTJj2xzvutrHS3qIO+/w+OkY967QLV
+RXh0bdFqYqnyAnlYcWJPIwjanOJtE2difPYqers7ZW1F9djP0+IZRoyaook5rpLYvuQTHuvulgIE
+3zGlTuOx3sk8zMyInMndqi75Eh+ROnndSZE7gN3u5CfFpuO5pxFa2jj1h/AnR39Tg8/sU+Se+AwH
+rNvee3IWhxk5LkelYevfeCQos7Dv2ASE9XMCCs7FoE47w8fDalECh09MFKDiotpklbq3OrPg9NQ4
+D//k0GXlW5jYUKP/Wq/+suAI6mfhSnNkjOGMcMlzNTmwxGD/v7Py6OVA+YcJQsqYalLrqbvT2tXV
+mYBVO3oqafg+kfevfwIDAQABMA0GCSqGSIb3DQEBCwUAA4IBgQCioM8k0EEBFtY4QyxOYFufPDLw
+9PNPct01ltnTVjNEEt/L6/8zYlDwrDeULEkJS7mV9zV3657NPQ5IPT/Ib93Uk/RPi0iOA2CGWIMa
+DQIODN3BUYr+zPUqhbKS6OWOhTgV8GiRCUbxrT1uc1AiacP63pga3TJX8k8WFnfW+Dqm2MfWWlxr
+4X2YB9VUW55X5sBNy035jYhEpp8NCK/fTAhoEQNCG+rm3T9qhT6YyOnbW2kXU747+ZwXT2qA5o4y
+a/9+6dDc+LUlHCEm4X7c6bcGvCfNezB4k56FzbAJlOLf2VDGzvEQBf0hsB+kElezm1VBlEkZ4Mjz
+pBpHBMoR21SwTpcvrbR4ig0Bk1eEHNK44sw0F32K5yww3gnJftMIZtPhjhk8UdG2/H6vs9s/to2V
+j4V6wN4o79RTULoQ8RjL6MPWEWzwOvOZXJAo2XJEECvDivSjIJvNC0lfrK3zI3LH3c1JR6q2EfeC
+Z50wTJMFoChSaqunJQXKo81g6wNhP00=</ds:X509Certificate>
+      </ds:X509Data>
+    </ds:KeyInfo>
+  </ds:Signature>
+  <md:IDPSSODescriptor WantAuthnRequestsSigned="true" protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol">
+    <md:KeyDescriptor use="signing">
+      <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
+        <ds:X509Data>
+          <ds:X509Certificate>MIIDMzCCAhsCBFtIcPowDQYJKoZIhvcNAQELBQAwXjELMAkGA1UEBhMCQVQxDTALBgNVBAoMBEVH
+SVoxJDAiBgNVBAsMG2NlbnRyYWwgbmF0aW9uYWwgZUlEQVMgbm9kZTEaMBgGA1UEAwwRQXNzZXJ0
+aW9uIHNpZ25pbmcwHhcNMTgwNzEzMDkyOTMwWhcNMjEwNDA3MDkyOTMwWjBeMQswCQYDVQQGEwJB
+VDENMAsGA1UECgwERUdJWjEkMCIGA1UECwwbY2VudHJhbCBuYXRpb25hbCBlSURBUyBub2RlMRow
+GAYDVQQDDBFBc3NlcnRpb24gc2lnbmluZzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB
+AJ5zDYxMPRcz6AHaev1tS46Tq8sdgbGFM56uxk6c7LmMDC+HTzNX/3Q5S/YwSzgL3ue5TSw1ltOf
+yMXMZ6D0+buWWcsxGEkQ8M3adKRFdQrEwafzwTA7pguq5WiHOkr4qwR7dLMome9z5cc3LRcwdOPP
+gq7ahb5jM3hRqc5xkMWIuvql0NFXPzlHrjDLwy5nIWPOhL5abhVt4YsXbpbjXxFSGkDEAZ32K3EU
+LNBr9FSUmJfbrVX9AU2T+BKIwiqXP8e/3UJHgPHQ0l5ljWp5P6u5+tvM21o8sUM4eArRa8BkdRsP
+C92GVuASSUz2ZJ3JhAK1cSM8bnvaZVLQtTvPMAcCAwEAATANBgkqhkiG9w0BAQsFAAOCAQEAAp7z
+TubWXW6YMpyLSvWBdZiiQ3X66XpSZLZJDIAkoPzEY0DSBp8I5YASIx4JTR5XJt+6MI9acgNIAYW8
+DhtRwUMVaRWEtuCrfKhGLWm5KSxnhPcD3lzRZhY4ZcA7dUlirjf6hnqo2TFEmJ9fkM+rxwy1GkDD
+7j2YDSOFmSq9/Ud9/IbIfSnRu/lO0dh7iRrmg3y0Y/+plPxYmp4AHqehP11OchTz2FGGHVsSC2Vs
+IVBQI6ANZYyOlicgfEEFHA06jP9OnA0EwEFr2P+di9caZg8vfibyzxMGeuf6CY0c0eLHokBCn2W8
+vkzvWiER3pozRvCmXFjCVZfRjUunaJf2ow==</ds:X509Certificate>
+        </ds:X509Data>
+      </ds:KeyInfo>
+    </md:KeyDescriptor>
+    <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:persistent</md:NameIDFormat>
+    <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat>
+    <md:NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified</md:NameIDFormat>
+    <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://vidp.gv.at/ms_connector/pvp/post"/>
+    <md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://vidp.gv.at/ms_connector/pvp/redirect"/>
+    <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="BPK" Name="urn:oid:1.2.40.0.10.2.1.1.149" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"/>
+    <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="BIRTHDATE" Name="urn:oid:1.2.40.0.10.2.1.1.55" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"/>
+    <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="PRINCIPAL-NAME" Name="urn:oid:1.2.40.0.10.2.1.1.261.20" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"/>
+    <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="EID-CCS-URL" Name="urn:oid:1.2.40.0.10.2.1.1.261.64" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"/>
+    <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="EID-ISSUING-NATION" Name="urn:oid:1.2.40.0.10.2.1.1.261.32" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"/>
+    <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="PVP-VERSION" Name="urn:oid:1.2.40.0.10.2.1.1.261.10" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"/>
+    <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="EID-SOURCE-PIN" Name="urn:oid:1.2.40.0.10.2.1.1.261.36" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"/>
+    <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="GIVEN-NAME" Name="urn:oid:2.5.4.42" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"/>
+    <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="EID-SIGNER-CERTIFICATE" Name="urn:oid:1.2.40.0.10.2.1.1.261.66" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"/>
+    <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="EID-SECTOR-FOR-IDENTIFIER" Name="urn:oid:1.2.40.0.10.2.1.1.261.34" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"/>
+    <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="EID-SOURCE-PIN-TYPE" Name="urn:oid:1.2.40.0.10.2.1.1.261.104" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"/>
+    <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="EID-E-ID-TOKEN" Name="urn:oid:1.2.40.0.10.2.1.1.261.39" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"/>
+    <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="EID-IDENTITY-LINK" Name="urn:oid:1.2.40.0.10.2.1.1.261.38" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"/>
+    <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="EID-CITIZEN-QAA-EIDAS-LEVEL" Name="urn:oid:1.2.40.0.10.2.1.1.261.108" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"/>
+    <saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="EID-IDENTITY-STATUS-LEVEL" Name="urn:oid:1.2.40.0.10.2.1.1.261.109" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"/>
+  </md:IDPSSODescriptor>
+</md:EntityDescriptor>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/idp_metadata_sig_valid_wrong_alg.xml b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/idp_metadata_sig_valid_wrong_alg.xml
new file mode 100644
index 00000000..2187aa5f
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/idp_metadata_sig_valid_wrong_alg.xml
@@ -0,0 +1,74 @@
+<?xml version="1.0" encoding="UTF-8"?><md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" ID="_1a48ec3432f2f3ba6222724a5b06f873" entityID="https://vidp.gv.at/ms_connector/pvp/metadata" validUntil="2045-02-06T08:47:26.211Z">
+	<dsig:Signature xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" Id="signature-1-1"><dsig:SignedInfo><dsig:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/><dsig:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/><dsig:Reference Id="reference-1-1" URI=""><dsig:Transforms><dsig:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/><dsig:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/></dsig:Transforms><dsig:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/><dsig:DigestValue>dhkHkgZ1OOHG0nYWiRXrpZhIAx41103CG6DKDbBra8o=</dsig:DigestValue></dsig:Reference></dsig:SignedInfo><dsig:SignatureValue>AkxnEu9g3QgYC0JwuJXMYFrnNn6UMtrbtVn5YzkKBXxyYqZui4pEi/TRSM9r7Gt+
+4UqHrJVkYMbbuoO2kpiDnluPG+vHYzYFvF0agQ+gfGjpVQNRORN0FU7JPX+KPjpr
+sMU8wVZITSPU0GBBccvzrcpq7DQt0VbV5U7/Vq3KM/fop4ytAkUbTltUj/XxvAd1
+XdhB/zyeTTR2dafJ6Z2CKyM7MMmxwXYD1NrPGciPvTJ9ASHAT0lJM1dxrRNbeAja
+KTrNVj78MhSluRm5g7N1pMZzgMSpqN66AUg8pkSTvcRaNImPzYDcMQzHl2Tr362M
+RudjSgaEljK98TbBdgLFTg==</dsig:SignatureValue><dsig:KeyInfo><dsig:X509Data><dsig:X509Certificate>MIIEqzCCBBSgAwIBAgIHANux81oNezANBgkqhkiG9w0BAQUFADBAMSIwIAYDVQQD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=</dsig:X509Certificate></dsig:X509Data></dsig:KeyInfo></dsig:Signature><md:IDPSSODescriptor WantAuthnRequestsSigned="true" protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol">
+		<md:KeyDescriptor use="signing">
+			<ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
+				<ds:X509Data>
+					<ds:X509Certificate>MIIDMzCCAhsCBFtIcPowDQYJKoZIhvcNAQELBQAwXjELMAkGA1UEBhMCQVQxDTALBgNVBAoMBEVH
+SVoxJDAiBgNVBAsMG2NlbnRyYWwgbmF0aW9uYWwgZUlEQVMgbm9kZTEaMBgGA1UEAwwRQXNzZXJ0
+aW9uIHNpZ25pbmcwHhcNMTgwNzEzMDkyOTMwWhcNMjEwNDA3MDkyOTMwWjBeMQswCQYDVQQGEwJB
+VDENMAsGA1UECgwERUdJWjEkMCIGA1UECwwbY2VudHJhbCBuYXRpb25hbCBlSURBUyBub2RlMRow
+GAYDVQQDDBFBc3NlcnRpb24gc2lnbmluZzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB
+AJ5zDYxMPRcz6AHaev1tS46Tq8sdgbGFM56uxk6c7LmMDC+HTzNX/3Q5S/YwSzgL3ue5TSw1ltOf
+yMXMZ6D0+buWWcsxGEkQ8M3adKRFdQrEwafzwTA7pguq5WiHOkr4qwR7dLMome9z5cc3LRcwdOPP
+gq7ahb5jM3hRqc5xkMWIuvql0NFXPzlHrjDLwy5nIWPOhL5abhVt4YsXbpbjXxFSGkDEAZ32K3EU
+LNBr9FSUmJfbrVX9AU2T+BKIwiqXP8e/3UJHgPHQ0l5ljWp5P6u5+tvM21o8sUM4eArRa8BkdRsP
+C92GVuASSUz2ZJ3JhAK1cSM8bnvaZVLQtTvPMAcCAwEAATANBgkqhkiG9w0BAQsFAAOCAQEAAp7z
+TubWXW6YMpyLSvWBdZiiQ3X66XpSZLZJDIAkoPzEY0DSBp8I5YASIx4JTR5XJt+6MI9acgNIAYW8
+DhtRwUMVaRWEtuCrfKhGLWm5KSxnhPcD3lzRZhY4ZcA7dUlirjf6hnqo2TFEmJ9fkM+rxwy1GkDD
+7j2YDSOFmSq9/Ud9/IbIfSnRu/lO0dh7iRrmg3y0Y/+plPxYmp4AHqehP11OchTz2FGGHVsSC2Vs
+IVBQI6ANZYyOlicgfEEFHA06jP9OnA0EwEFr2P+di9caZg8vfibyzxMGeuf6CY0c0eLHokBCn2W8
+vkzvWiER3pozRvCmXFjCVZfRjUunaJf2ow==</ds:X509Certificate>
+				</ds:X509Data>
+			</ds:KeyInfo>
+		</md:KeyDescriptor>
+		<md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:persistent</md:NameIDFormat>
+		<md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:transient</md:NameIDFormat>
+		<md:NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified</md:NameIDFormat>
+		<md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://vidp.gv.at/ms_connector/pvp/post"/>
+		<md:SingleSignOnService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" Location="https://vidp.gv.at/ms_connector/pvp/redirect"/>
+		<saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="BPK" Name="urn:oid:1.2.40.0.10.2.1.1.149" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"/>
+		<saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="BIRTHDATE" Name="urn:oid:1.2.40.0.10.2.1.1.55" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"/>
+		<saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="PRINCIPAL-NAME" Name="urn:oid:1.2.40.0.10.2.1.1.261.20" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"/>
+		<saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="EID-CCS-URL" Name="urn:oid:1.2.40.0.10.2.1.1.261.64" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"/>
+		<saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="EID-ISSUING-NATION" Name="urn:oid:1.2.40.0.10.2.1.1.261.32" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"/>
+		<saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="PVP-VERSION" Name="urn:oid:1.2.40.0.10.2.1.1.261.10" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"/>
+		<saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="EID-SOURCE-PIN" Name="urn:oid:1.2.40.0.10.2.1.1.261.36" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"/>
+		<saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="GIVEN-NAME" Name="urn:oid:2.5.4.42" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"/>
+		<saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="EID-SIGNER-CERTIFICATE" Name="urn:oid:1.2.40.0.10.2.1.1.261.66" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"/>
+		<saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="EID-SECTOR-FOR-IDENTIFIER" Name="urn:oid:1.2.40.0.10.2.1.1.261.34" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"/>
+		<saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="EID-SOURCE-PIN-TYPE" Name="urn:oid:1.2.40.0.10.2.1.1.261.104" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"/>
+		<saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="EID-E-ID-TOKEN" Name="urn:oid:1.2.40.0.10.2.1.1.261.39" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"/>
+		<saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="EID-IDENTITY-LINK" Name="urn:oid:1.2.40.0.10.2.1.1.261.38" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"/>
+		<saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="EID-CITIZEN-QAA-EIDAS-LEVEL" Name="urn:oid:1.2.40.0.10.2.1.1.261.108" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"/>
+		<saml2:Attribute xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion" FriendlyName="EID-IDENTITY-STATUS-LEVEL" Name="urn:oid:1.2.40.0.10.2.1.1.261.109" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:uri"/>
+	</md:IDPSSODescriptor>
+</md:EntityDescriptor>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/sp_metadata_junit.xml b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/sp_metadata_junit.xml
index 9c62db5d..0e25cce4 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/sp_metadata_junit.xml
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/data/sp_metadata_junit.xml
@@ -1,5 +1,5 @@
 <?xml version="1.0" encoding="UTF-8"?>
-<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" ID="_1a48ec3432f2f3ba6222724a5b06f873" entityID="https://localhost/authhandler/sp/eidas/metadata" validUntil="2045-02-06T08:47:26.211Z">
+<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" ID="_1a48ec3432f2f3ba6222724a5b06f873" entityID="https://localhost/authhandler/sp/idaustria/metadata" validUntil="2045-02-06T08:47:26.211Z">
     <md:SPSSODescriptor AuthnRequestsSigned="true" WantAssertionsSigned="false" protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol">
         <md:KeyDescriptor use="signing">
             <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/keystore/pvp.p12 b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/keystore/pvp.p12
new file mode 100644
index 00000000..183342f7
Binary files /dev/null and b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/keystore/pvp.p12 differ
-- 
cgit v1.2.3


From 84244f4ac1909c20ce36531f110705b24edbad12 Mon Sep 17 00:00:00 2001
From: Christian Kollmann <christian.kollmann@a-sit.at>
Date: Mon, 22 Feb 2021 10:43:57 +0100
Subject: Rename tasks to clarify functionality

---
 .../specific/modules/auth/eidas/v2/Constants.java  |   9 +-
 .../v2/tasks/GenerateAustrianResidenceGuiTask.java |  76 +++++++++++
 .../GenerateGuiQueryAustrianResidenceTask.java     |  77 ------------
 .../eidas/v2/tasks/GenerateLoginMethodGuiTask.java |  76 -----------
 .../v2/tasks/GenerateOtherLoginMethodGuiTask.java  |  77 ++++++++++++
 .../auth/eidas/v2/tasks/InitialSearchTask.java     |   4 +-
 .../ReceiveAustrianResidenceGuiResponseTask.java   | 117 +++++++++++++++++
 .../ReceiveGuiAustrianResidenceResponseTask.java   | 117 -----------------
 .../tasks/ReceiveLoginMethodGuiResponseTask.java   |  95 --------------
 .../ReceiveOtherLoginMethodGuiResponseTask.java    |  95 ++++++++++++++
 .../resources/eIDAS.Authentication.process.xml     |  54 ++++----
 .../src/main/resources/eidas_v2_auth.beans.xml     |  20 +--
 .../eidas/v2/test/tasks/InitialSearchTaskTest.java |   8 +-
 .../ReceiveLoginMethodGuiResponseTaskTest.java     | 139 ---------------------
 ...ReceiveOtherLoginMethodGuiResponseTaskTest.java | 135 ++++++++++++++++++++
 15 files changed, 551 insertions(+), 548 deletions(-)
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateAustrianResidenceGuiTask.java
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateGuiQueryAustrianResidenceTask.java
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateLoginMethodGuiTask.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateOtherLoginMethodGuiTask.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveAustrianResidenceGuiResponseTask.java
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveGuiAustrianResidenceResponseTask.java
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveLoginMethodGuiResponseTask.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveOtherLoginMethodGuiResponseTask.java
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveLoginMethodGuiResponseTaskTest.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveOtherLoginMethodGuiResponseTaskTest.java

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java
index e7190ab4..c6d24e34 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java
@@ -28,7 +28,7 @@ import at.gv.egiz.eaaf.core.api.data.EaafConstants;
 public class Constants {
 
   public static final String ERRORCODE_00 = "module.eidasauth.00";
-  
+
   public static final String DATA_REQUESTERID = "req_requesterId";
   public static final String DATA_PROVIDERNAME = "req_providerName";
   public static final String DATA_REQUESTED_LOA_LIST = "req_requestedLoA";
@@ -151,7 +151,7 @@ public class Constants {
 
   public static final String eIDAS_REQ_PARAM_SECTOR_PUBLIC = "public";
   public static final String eIDAS_REQ_PARAM_SECTOR_PRIVATE = "private";
-  
+
   public static final String POLICY_DEFAULT_ALLOWED_TARGETS =
       EaafConstants.URN_PREFIX_CDID.replaceAll("\\.", "\\\\.").replaceAll("\\+", "\\\\+") + ".*";
 
@@ -184,9 +184,10 @@ public class Constants {
   public static final String COUNTRY_CODE_IT = "IT";
 
   public static final String TRANSITION_TO_CREATE_NEW_ERNB_ENTRY_TASK = "TASK_CreateNewErnpEntryTask";
-  public static final String TRANSITION_TO_CREATE_GENERATE_GUI_TASK = "TASK_GenerateGuiTask";
+  public static final String TRANSITION_TO_GENERATE_OTHER_LOGIN_METHOD_GUI_TASK =
+      "TASK_GenerateOtherLoginMethodGuiTask";
   public static final String TRANSITION_TO_GENERATE_GUI_QUERY_AUSTRIAN_RESIDENCE_TASK =
-      "Task_GenerateGuiQueryAustrianResidenceTask";
+      "TASK_GenerateAustrianResidenceGuiTask";
   public static final String TRANSITION_TO_GENERATE_MOBILE_PHONE_SIGNATURE_REQUEST_TASK =
       "TASK_GenerateMobilePhoneSignatureRequestTask";
   public static final String TRANSITION_TO_GENERATE_EIDAS_LOGIN = "TASK_TODO";
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateAustrianResidenceGuiTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateAustrianResidenceGuiTask.java
new file mode 100644
index 00000000..d8266398
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateAustrianResidenceGuiTask.java
@@ -0,0 +1,76 @@
+/*
+ * Copyright 2021 A-SIT Plus GmbH
+ * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
+ * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
+ *
+ * Licensed under the EUPL, Version 1.2 or - as soon they will be approved by
+ * the European Commission - subsequent versions of the EUPL (the "License");
+ * You may not use this work except in compliance with the License.
+ * You may obtain a copy of the License at:
+ * https://joinup.ec.europa.eu/news/understanding-eupl-v12
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" basis,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ *
+ * This product combines work with different licenses. See the "NOTICE" text
+ * file for details on the various modules and licenses.
+ * The "NOTICE" text file is part of the distribution. Any derivative works
+ * that you distribute must include a readable copy of the "NOTICE" text file.
+ */
+
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks;
+
+import at.asitplus.eidas.specific.connector.MsEidasNodeConstants;
+import at.asitplus.eidas.specific.connector.gui.StaticGuiBuilderConfiguration;
+import at.gv.egiz.eaaf.core.api.gui.IGuiBuilderConfiguration;
+import at.gv.egiz.eaaf.core.api.gui.ISpringMvcGuiFormBuilder;
+import at.gv.egiz.eaaf.core.api.idp.IConfiguration;
+import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
+import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
+import at.gv.egiz.eaaf.core.impl.idp.auth.modules.AbstractAuthServletTask;
+import lombok.extern.slf4j.Slf4j;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.stereotype.Component;
+
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+
+/**
+ * Show GUI where user can provide an Austrian residence address, to provide further input to match the identity.
+ *
+ * @author ckollmann
+ */
+@Slf4j
+@Component("GenerateAustrianResidenceGuiTask")
+public class GenerateAustrianResidenceGuiTask extends AbstractAuthServletTask {
+
+  @Autowired
+  private ISpringMvcGuiFormBuilder guiBuilder;
+  @Autowired
+  private IConfiguration basicConfig;
+
+  @Override
+  public void execute(ExecutionContext executionContext, HttpServletRequest request, HttpServletResponse response)
+      throws TaskExecutionException {
+    try {
+      final IGuiBuilderConfiguration config = new StaticGuiBuilderConfiguration(
+          basicConfig,
+          pendingReq,
+          basicConfig.getBasicConfiguration(//TODO
+              MsEidasNodeConstants.PROP_CONFIG_WEBCONTENT_TEMPLATES_RESIDENCY,
+              MsEidasNodeConstants.TEMPLATE_HTML_RESIDENCY),
+          MsEidasNodeConstants.ENDPOINT_RESIDENCY_INPUT,
+          resourceLoader);
+
+      guiBuilder.build(request, response, config, "Query Austrian residency");
+
+    } catch (final Exception e) {
+      log.error("Initial search FAILED.", e);
+      throw new TaskExecutionException(pendingReq, "Gui creation FAILED.", e);
+    }
+  }
+
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateGuiQueryAustrianResidenceTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateGuiQueryAustrianResidenceTask.java
deleted file mode 100644
index 02f8c5b7..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateGuiQueryAustrianResidenceTask.java
+++ /dev/null
@@ -1,77 +0,0 @@
-/*
- * Copyright 2021 A-SIT Plus GmbH
- * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
- * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
- *
- * Licensed under the EUPL, Version 1.2 or - as soon they will be approved by
- * the European Commission - subsequent versions of the EUPL (the "License");
- * You may not use this work except in compliance with the License.
- * You may obtain a copy of the License at:
- * https://joinup.ec.europa.eu/news/understanding-eupl-v12
- *
- * Unless required by applicable law or agreed to in writing, software
- * distributed under the License is distributed on an "AS IS" basis,
- * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
- * See the License for the specific language governing permissions and
- * limitations under the License.
- *
- * This product combines work with different licenses. See the "NOTICE" text
- * file for details on the various modules and licenses.
- * The "NOTICE" text file is part of the distribution. Any derivative works
- * that you distribute must include a readable copy of the "NOTICE" text file.
- */
-
-package at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks;
-
-import at.asitplus.eidas.specific.connector.MsEidasNodeConstants;
-import at.asitplus.eidas.specific.connector.gui.StaticGuiBuilderConfiguration;
-import at.gv.egiz.eaaf.core.api.gui.IGuiBuilderConfiguration;
-import at.gv.egiz.eaaf.core.api.gui.ISpringMvcGuiFormBuilder;
-import at.gv.egiz.eaaf.core.api.idp.IConfiguration;
-import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
-import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
-import at.gv.egiz.eaaf.core.impl.idp.auth.modules.AbstractAuthServletTask;
-import lombok.extern.slf4j.Slf4j;
-import org.springframework.beans.factory.annotation.Autowired;
-import org.springframework.stereotype.Component;
-
-import javax.servlet.http.HttpServletRequest;
-import javax.servlet.http.HttpServletResponse;
-
-/**
- * Task that generates a GUI that queries whether the user has an addional eidas eID or an Austrian mobile phone
- * signature.
- *
- * @author amarsalek
- */
-@Slf4j
-@Component("GenerateGuiQueryAustrianResidenceTask")
-public class GenerateGuiQueryAustrianResidenceTask extends AbstractAuthServletTask {
-
-  @Autowired
-  ISpringMvcGuiFormBuilder guiBuilder;
-  @Autowired
-  IConfiguration basicConfig;
-
-  @Override
-  public void execute(ExecutionContext executionContext, HttpServletRequest request, HttpServletResponse response)
-      throws TaskExecutionException {
-    try {
-      final IGuiBuilderConfiguration config = new StaticGuiBuilderConfiguration(
-          basicConfig,
-          pendingReq,
-          basicConfig.getBasicConfiguration(//TODO
-              MsEidasNodeConstants.PROP_CONFIG_WEBCONTENT_TEMPLATES_RESIDENCY,
-              MsEidasNodeConstants.TEMPLATE_HTML_RESIDENCY),
-          MsEidasNodeConstants.ENDPOINT_RESIDENCY_INPUT,
-          resourceLoader);
-
-      guiBuilder.build(request, response, config, "Query Austrian residency");
-
-    } catch (final Exception e) {
-      log.error("Initial search FAILED.", e);
-      throw new TaskExecutionException(pendingReq, "Gui creation FAILED.", e);
-    }
-  }
-
-}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateLoginMethodGuiTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateLoginMethodGuiTask.java
deleted file mode 100644
index 9c94b036..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateLoginMethodGuiTask.java
+++ /dev/null
@@ -1,76 +0,0 @@
-/*
- * Copyright 2021 A-SIT Plus GmbH
- * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
- * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
- *
- * Licensed under the EUPL, Version 1.2 or - as soon they will be approved by
- * the European Commission - subsequent versions of the EUPL (the "License");
- * You may not use this work except in compliance with the License.
- * You may obtain a copy of the License at:
- * https://joinup.ec.europa.eu/news/understanding-eupl-v12
- *
- * Unless required by applicable law or agreed to in writing, software
- * distributed under the License is distributed on an "AS IS" basis,
- * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
- * See the License for the specific language governing permissions and
- * limitations under the License.
- *
- * This product combines work with different licenses. See the "NOTICE" text
- * file for details on the various modules and licenses.
- * The "NOTICE" text file is part of the distribution. Any derivative works
- * that you distribute must include a readable copy of the "NOTICE" text file.
- */
-
-package at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks;
-
-import at.asitplus.eidas.specific.connector.MsEidasNodeConstants;
-import at.asitplus.eidas.specific.connector.gui.StaticGuiBuilderConfiguration;
-import at.gv.egiz.eaaf.core.api.gui.IGuiBuilderConfiguration;
-import at.gv.egiz.eaaf.core.api.gui.ISpringMvcGuiFormBuilder;
-import at.gv.egiz.eaaf.core.api.idp.IConfiguration;
-import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
-import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
-import at.gv.egiz.eaaf.core.impl.idp.auth.modules.AbstractAuthServletTask;
-import lombok.extern.slf4j.Slf4j;
-import org.springframework.beans.factory.annotation.Autowired;
-import org.springframework.stereotype.Component;
-
-import javax.servlet.http.HttpServletRequest;
-import javax.servlet.http.HttpServletResponse;
-
-/**
- * Task that searches ErnB and ZMR before adding person to SZR.
- *
- * @author amarsalek
- */
-@Slf4j
-@Component("GenerateGuiTask")
-public class GenerateLoginMethodGuiTask extends AbstractAuthServletTask {
-
-  @Autowired
-  ISpringMvcGuiFormBuilder guiBuilder;
-  @Autowired
-  IConfiguration basicConfig;
-
-  @Override
-  public void execute(ExecutionContext executionContext, HttpServletRequest request, HttpServletResponse response)
-      throws TaskExecutionException {
-    try {
-      final IGuiBuilderConfiguration config = new StaticGuiBuilderConfiguration(
-          basicConfig,
-          pendingReq,
-          basicConfig.getBasicConfiguration(
-              MsEidasNodeConstants.PROP_CONFIG_WEBCONTENT_TEMPLATES_OTHER_LOGIN_METHOD_SELECTION,
-              MsEidasNodeConstants.TEMPLATE_HTML_OTHERLOGINMETHODS),
-          MsEidasNodeConstants.ENDPOINT_OTHERLOGINMETHODSELECTION,
-          resourceLoader);
-
-      guiBuilder.build(request, response, config, "Other login methods selection form");
-
-    } catch (final Exception e) {
-      log.error("Initial search FAILED.", e);
-      throw new TaskExecutionException(pendingReq, "Gui creation FAILED.", e);
-    }
-  }
-
-}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateOtherLoginMethodGuiTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateOtherLoginMethodGuiTask.java
new file mode 100644
index 00000000..0236b9c2
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateOtherLoginMethodGuiTask.java
@@ -0,0 +1,77 @@
+/*
+ * Copyright 2021 A-SIT Plus GmbH
+ * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
+ * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
+ *
+ * Licensed under the EUPL, Version 1.2 or - as soon they will be approved by
+ * the European Commission - subsequent versions of the EUPL (the "License");
+ * You may not use this work except in compliance with the License.
+ * You may obtain a copy of the License at:
+ * https://joinup.ec.europa.eu/news/understanding-eupl-v12
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" basis,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ *
+ * This product combines work with different licenses. See the "NOTICE" text
+ * file for details on the various modules and licenses.
+ * The "NOTICE" text file is part of the distribution. Any derivative works
+ * that you distribute must include a readable copy of the "NOTICE" text file.
+ */
+
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks;
+
+import at.asitplus.eidas.specific.connector.MsEidasNodeConstants;
+import at.asitplus.eidas.specific.connector.gui.StaticGuiBuilderConfiguration;
+import at.gv.egiz.eaaf.core.api.gui.IGuiBuilderConfiguration;
+import at.gv.egiz.eaaf.core.api.gui.ISpringMvcGuiFormBuilder;
+import at.gv.egiz.eaaf.core.api.idp.IConfiguration;
+import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
+import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
+import at.gv.egiz.eaaf.core.impl.idp.auth.modules.AbstractAuthServletTask;
+import lombok.extern.slf4j.Slf4j;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.stereotype.Component;
+
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+
+/**
+ * Task that provides GUI for user to select an alternative login method.
+ * This page is shown when the matching of the eIDAS data to ZMR/ERnP data is ambiguous
+ *
+ * @author ckollmann
+ */
+@Slf4j
+@Component("GenerateOtherLoginMethodGuiTask")
+public class GenerateOtherLoginMethodGuiTask extends AbstractAuthServletTask {
+
+  @Autowired
+  private ISpringMvcGuiFormBuilder guiBuilder;
+  @Autowired
+  private IConfiguration basicConfig;
+
+  @Override
+  public void execute(ExecutionContext executionContext, HttpServletRequest request, HttpServletResponse response)
+      throws TaskExecutionException {
+    try {
+      final IGuiBuilderConfiguration config = new StaticGuiBuilderConfiguration(
+          basicConfig,
+          pendingReq,
+          basicConfig.getBasicConfiguration(
+              MsEidasNodeConstants.PROP_CONFIG_WEBCONTENT_TEMPLATES_OTHER_LOGIN_METHOD_SELECTION,
+              MsEidasNodeConstants.TEMPLATE_HTML_OTHERLOGINMETHODS),
+          MsEidasNodeConstants.ENDPOINT_OTHER_LOGIN_METHOD_SELECTION,
+          resourceLoader);
+
+      guiBuilder.build(request, response, config, "Other login methods selection form");
+
+    } catch (final Exception e) {
+      log.error("Initial search FAILED.", e);
+      throw new TaskExecutionException(pendingReq, "Gui creation FAILED.", e);
+    }
+  }
+
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
index 2e754e14..554c60b6 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
@@ -209,9 +209,9 @@ public class InitialSearchTask extends AbstractAuthServletTask {
     if (mdsSearchResult.getResultCount() == 0) {
       executionContext.put(Constants.TRANSITION_TO_CREATE_NEW_ERNB_ENTRY_TASK, true);
     } else {
-      executionContext.put(Constants.TRANSITION_TO_CREATE_GENERATE_GUI_TASK, true);
+      executionContext.put(Constants.TRANSITION_TO_GENERATE_OTHER_LOGIN_METHOD_GUI_TASK, true);
     }
-
+    // todo das suchergebnis auch noch speichern für später!
     //TODO implement next phase and return correct value
     return null;
   }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveAustrianResidenceGuiResponseTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveAustrianResidenceGuiResponseTask.java
new file mode 100644
index 00000000..2020274a
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveAustrianResidenceGuiResponseTask.java
@@ -0,0 +1,117 @@
+/*
+ * Copyright 2021 A-SIT Plus GmbH
+ * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
+ * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
+ *
+ * Licensed under the EUPL, Version 1.2 or - as soon they will be approved by
+ * the European Commission - subsequent versions of the EUPL (the "License");
+ * You may not use this work except in compliance with the License.
+ * You may obtain a copy of the License at:
+ * https://joinup.ec.europa.eu/news/understanding-eupl-v12
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" basis,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ *
+ * This product combines work with different licenses. See the "NOTICE" text
+ * file for details on the various modules and licenses.
+ * The "NOTICE" text file is part of the distribution. Any derivative works
+ * that you distribute must include a readable copy of the "NOTICE" text file.
+ */
+
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks;
+
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.InvalidUserInputException;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.IZmrClient;
+import at.gv.egiz.eaaf.core.api.data.EaafConstants;
+import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
+import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
+import at.gv.egiz.eaaf.core.impl.idp.auth.modules.AbstractAuthServletTask;
+import lombok.extern.slf4j.Slf4j;
+import org.apache.commons.lang.StringEscapeUtils;
+import org.apache.commons.lang3.StringUtils;
+import org.springframework.stereotype.Component;
+
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+import java.util.Enumeration;
+
+/**
+ * Task receives the response of {@link GenerateAustrianResidenceGuiTask} and handles it.
+ *
+ * @author amarsalek
+ */
+@Slf4j
+@Component("ReceiveAustrianResidenceGuiResponseTask")
+public class ReceiveAustrianResidenceGuiResponseTask extends AbstractAuthServletTask {
+
+  final String formerResidenceAvailableParameterName = "formerResidenceAvailable";
+  final String streetParameterName = "street";
+  final String zipCodeParameterName = "zipcode";
+  final String cityParameterName = "city";
+  private final IZmrClient zmrClient;
+
+  public ReceiveAustrianResidenceGuiResponseTask(IZmrClient zmrClient) {
+    this.zmrClient = zmrClient;
+  }
+
+  //TODO
+  @Override
+  public void execute(ExecutionContext executionContext, HttpServletRequest request, HttpServletResponse response)
+      throws TaskExecutionException {
+
+    log.trace("Starting ReceiveAustrianResidenceGuiResponseTask");
+    // set parameter execution context
+    final Enumeration<String> reqParamNames = request.getParameterNames();
+    String street = null;
+    String city = null;
+    String zipcode = null;
+    Boolean formerResidenceAvailable = false;
+    while (reqParamNames.hasMoreElements()) {
+      final String paramName = reqParamNames.nextElement();
+      if (StringUtils.isNotEmpty(paramName)
+          && !EaafConstants.PROCESS_ENGINE_PENDINGREQUESTID.equalsIgnoreCase(paramName)
+          && formerResidenceAvailableParameterName.equalsIgnoreCase(paramName)) {
+        formerResidenceAvailable =
+            Boolean.parseBoolean(StringEscapeUtils.escapeHtml(request.getParameter(paramName)));
+      }
+      if (StringUtils.isNotEmpty(paramName)
+          && !EaafConstants.PROCESS_ENGINE_PENDINGREQUESTID.equalsIgnoreCase(paramName)
+          && streetParameterName.equalsIgnoreCase(paramName)) {
+        street = StringEscapeUtils.escapeHtml(request.getParameter(paramName));
+      }
+      if (StringUtils.isNotEmpty(paramName)
+          && !EaafConstants.PROCESS_ENGINE_PENDINGREQUESTID.equalsIgnoreCase(paramName)
+          && cityParameterName.equalsIgnoreCase(paramName)) {
+        city = StringEscapeUtils.escapeHtml(request.getParameter(paramName));
+      }
+      if (StringUtils.isNotEmpty(paramName)
+          && !EaafConstants.PROCESS_ENGINE_PENDINGREQUESTID.equalsIgnoreCase(paramName)
+          && zipCodeParameterName.equalsIgnoreCase(paramName)) {
+        zipcode = StringEscapeUtils.escapeHtml(request.getParameter(paramName));
+      }
+    }
+    if (formerResidenceAvailable) {
+      //step 18
+      if (street.isEmpty() || city.isEmpty() || zipcode.isEmpty()) {
+        //form should ensure that mandatory fields are field =>
+        //this can never happen, expect somebody manipulated the response
+        throw new TaskExecutionException(pendingReq, "Invalid user input", new InvalidUserInputException());
+      }
+      step18_RegisterSearch(street, city, zipcode);//TODO also MDS?
+    } else {
+      //step 20 or for now (phase 1) step 9
+      executionContext.put(Constants.TRANSITION_TO_CREATE_NEW_ERNB_ENTRY_TASK, true);
+    }
+
+
+  }
+
+  private void step18_RegisterSearch(String street, String city, String zipcode) {
+    System.out.println(street + city + zipcode + zmrClient);//TODO
+  }
+
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveGuiAustrianResidenceResponseTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveGuiAustrianResidenceResponseTask.java
deleted file mode 100644
index 977262bb..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveGuiAustrianResidenceResponseTask.java
+++ /dev/null
@@ -1,117 +0,0 @@
-/*
- * Copyright 2021 A-SIT Plus GmbH
- * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
- * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
- *
- * Licensed under the EUPL, Version 1.2 or - as soon they will be approved by
- * the European Commission - subsequent versions of the EUPL (the "License");
- * You may not use this work except in compliance with the License.
- * You may obtain a copy of the License at:
- * https://joinup.ec.europa.eu/news/understanding-eupl-v12
- *
- * Unless required by applicable law or agreed to in writing, software
- * distributed under the License is distributed on an "AS IS" basis,
- * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
- * See the License for the specific language governing permissions and
- * limitations under the License.
- *
- * This product combines work with different licenses. See the "NOTICE" text
- * file for details on the various modules and licenses.
- * The "NOTICE" text file is part of the distribution. Any derivative works
- * that you distribute must include a readable copy of the "NOTICE" text file.
- */
-
-package at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks;
-
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.InvalidUserInputException;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.IZmrClient;
-import at.gv.egiz.eaaf.core.api.data.EaafConstants;
-import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
-import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
-import at.gv.egiz.eaaf.core.impl.idp.auth.modules.AbstractAuthServletTask;
-import lombok.extern.slf4j.Slf4j;
-import org.apache.commons.lang.StringEscapeUtils;
-import org.apache.commons.lang3.StringUtils;
-import org.springframework.stereotype.Component;
-
-import javax.servlet.http.HttpServletRequest;
-import javax.servlet.http.HttpServletResponse;
-import java.util.Enumeration;
-
-/**
- * Task receives the response of GenerateGuiQueryAustrianResidenceTask and handles it.
- *
- * @author amarsalek
- */
-@Slf4j
-@Component("ReceiveGuiAustrianResidenceResponseTask")
-public class ReceiveGuiAustrianResidenceResponseTask extends AbstractAuthServletTask {
-
-  final String formerResidenceAvailableParameterName = "formerResidenceAvailable";
-  final String streetParameterName = "street";
-  final String zipCodeParameterName = "zipcode";
-  final String cityParameterName = "city";
-  private final IZmrClient zmrClient;
-
-  public ReceiveGuiAustrianResidenceResponseTask(IZmrClient zmrClient) {
-    this.zmrClient = zmrClient;
-  }
-
-  //TODO
-  @Override
-  public void execute(ExecutionContext executionContext, HttpServletRequest request, HttpServletResponse response)
-      throws TaskExecutionException {
-
-    log.trace("Starting ReceiveGuiAustrianResidenceResponseTask");
-    // set parameter execution context
-    final Enumeration<String> reqParamNames = request.getParameterNames();
-    String street = null;
-    String city = null;
-    String zipcode = null;
-    Boolean formerResidenceAvailable = false;
-    while (reqParamNames.hasMoreElements()) {
-      final String paramName = reqParamNames.nextElement();
-      if (StringUtils.isNotEmpty(paramName)
-          && !EaafConstants.PROCESS_ENGINE_PENDINGREQUESTID.equalsIgnoreCase(paramName)
-          && formerResidenceAvailableParameterName.equalsIgnoreCase(paramName)) {
-        formerResidenceAvailable =
-            Boolean.parseBoolean(StringEscapeUtils.escapeHtml(request.getParameter(paramName)));
-      }
-      if (StringUtils.isNotEmpty(paramName)
-          && !EaafConstants.PROCESS_ENGINE_PENDINGREQUESTID.equalsIgnoreCase(paramName)
-          && streetParameterName.equalsIgnoreCase(paramName)) {
-        street = StringEscapeUtils.escapeHtml(request.getParameter(paramName));
-      }
-      if (StringUtils.isNotEmpty(paramName)
-          && !EaafConstants.PROCESS_ENGINE_PENDINGREQUESTID.equalsIgnoreCase(paramName)
-          && cityParameterName.equalsIgnoreCase(paramName)) {
-        city = StringEscapeUtils.escapeHtml(request.getParameter(paramName));
-      }
-      if (StringUtils.isNotEmpty(paramName)
-          && !EaafConstants.PROCESS_ENGINE_PENDINGREQUESTID.equalsIgnoreCase(paramName)
-          && zipCodeParameterName.equalsIgnoreCase(paramName)) {
-        zipcode = StringEscapeUtils.escapeHtml(request.getParameter(paramName));
-      }
-    }
-    if (formerResidenceAvailable) {
-      //step 18
-      if (street.isEmpty() || city.isEmpty() || zipcode.isEmpty()) {
-        //form should ensure that mandatory fields are field =>
-        //this can never happen, expect somebody manipulated the response
-        throw new TaskExecutionException(pendingReq, "Invalid user input", new InvalidUserInputException());
-      }
-      step18_RegisterSearch(street, city, zipcode);//TODO also MDS?
-    } else {
-      //step 20 or for now (phase 1) step 9
-      executionContext.put(Constants.TRANSITION_TO_CREATE_NEW_ERNB_ENTRY_TASK, true);
-    }
-
-
-  }
-
-  private void step18_RegisterSearch(String street, String city, String zipcode) {
-    System.out.println(street + city + zipcode + zmrClient);//TODO
-  }
-
-}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveLoginMethodGuiResponseTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveLoginMethodGuiResponseTask.java
deleted file mode 100644
index 266198e5..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveLoginMethodGuiResponseTask.java
+++ /dev/null
@@ -1,95 +0,0 @@
-/*
- * Copyright 2021 A-SIT Plus GmbH
- * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
- * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
- *
- * Licensed under the EUPL, Version 1.2 or - as soon they will be approved by
- * the European Commission - subsequent versions of the EUPL (the "License");
- * You may not use this work except in compliance with the License.
- * You may obtain a copy of the License at:
- * https://joinup.ec.europa.eu/news/understanding-eupl-v12
- *
- * Unless required by applicable law or agreed to in writing, software
- * distributed under the License is distributed on an "AS IS" basis,
- * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
- * See the License for the specific language governing permissions and
- * limitations under the License.
- *
- * This product combines work with different licenses. See the "NOTICE" text
- * file for details on the various modules and licenses.
- * The "NOTICE" text file is part of the distribution. Any derivative works
- * that you distribute must include a readable copy of the "NOTICE" text file.
- */
-
-package at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks;
-
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SelectedLoginMethod;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.InvalidUserInputException;
-import at.gv.egiz.eaaf.core.api.data.EaafConstants;
-import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
-import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
-import at.gv.egiz.eaaf.core.impl.idp.auth.modules.AbstractAuthServletTask;
-import lombok.extern.slf4j.Slf4j;
-import org.apache.commons.lang.StringEscapeUtils;
-import org.apache.commons.lang3.StringUtils;
-import org.springframework.stereotype.Component;
-
-import javax.servlet.http.HttpServletRequest;
-import javax.servlet.http.HttpServletResponse;
-import java.util.Enumeration;
-
-/**
- * Task that searches ErnB and ZMR before adding person to SZR.
- *
- * @author amarsalek
- */
-@Slf4j
-@Component("ReceiveGuiResponseTask")
-public class ReceiveLoginMethodGuiResponseTask extends AbstractAuthServletTask {
-
-  @Override
-  public void execute(ExecutionContext executionContext, HttpServletRequest request, HttpServletResponse response)
-      throws TaskExecutionException {
-    int found = 0;
-    try {
-      // set parameter execution context
-      final Enumeration<String> reqParamNames = request.getParameterNames();
-      while (reqParamNames.hasMoreElements()) {
-        final String paramName = reqParamNames.nextElement();
-        if (StringUtils.isNotEmpty(paramName)
-            && !EaafConstants.PROCESS_ENGINE_PENDINGREQUESTID.equalsIgnoreCase(paramName)
-            && Constants.REQ_SELECTED_LOGIN_METHOD_PARAMETER.equalsIgnoreCase(paramName)) {
-          String value = StringEscapeUtils.escapeHtml(request.getParameter(paramName));
-          SelectedLoginMethod selection = SelectedLoginMethod.valueOf(value);
-          executionContext.put(Constants.REQ_SELECTED_LOGIN_METHOD_PARAMETER, selection);
-          switch (selection) {
-            case EIDAS_LOGIN:
-              executionContext.put(Constants.TRANSITION_TO_GENERATE_EIDAS_LOGIN, true);
-              found++;
-              break;
-            case MOBILE_PHONE_SIGNATURE_LOGIN:
-              executionContext.put(Constants.TRANSITION_TO_GENERATE_MOBILE_PHONE_SIGNATURE_REQUEST_TASK, true);
-              found++;
-              break;
-            case NO_OTHER_LOGIN:
-              executionContext.put(Constants.TRANSITION_TO_GENERATE_GUI_QUERY_AUSTRIAN_RESIDENCE_TASK, true);
-              found++;
-              break;
-            default:
-              throw new InvalidUserInputException();
-          }
-        }
-      }
-    } catch (final Exception e) {
-      log.error("Parsing selected login method FAILED.", e);
-      throw new TaskExecutionException(pendingReq, "Parsing selected login method FAILED.", e);
-    }
-    if (found != 1) {
-      log.error("Parsing selected login method FAILED.");
-      throw new TaskExecutionException(pendingReq, "Parsing selected login method FAILED.",
-          new InvalidUserInputException());
-    }
-  }
-
-}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveOtherLoginMethodGuiResponseTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveOtherLoginMethodGuiResponseTask.java
new file mode 100644
index 00000000..d8b80689
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveOtherLoginMethodGuiResponseTask.java
@@ -0,0 +1,95 @@
+/*
+ * Copyright 2021 A-SIT Plus GmbH
+ * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
+ * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
+ *
+ * Licensed under the EUPL, Version 1.2 or - as soon they will be approved by
+ * the European Commission - subsequent versions of the EUPL (the "License");
+ * You may not use this work except in compliance with the License.
+ * You may obtain a copy of the License at:
+ * https://joinup.ec.europa.eu/news/understanding-eupl-v12
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" basis,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ *
+ * This product combines work with different licenses. See the "NOTICE" text
+ * file for details on the various modules and licenses.
+ * The "NOTICE" text file is part of the distribution. Any derivative works
+ * that you distribute must include a readable copy of the "NOTICE" text file.
+ */
+
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks;
+
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SelectedLoginMethod;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.InvalidUserInputException;
+import at.gv.egiz.eaaf.core.api.data.EaafConstants;
+import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
+import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
+import at.gv.egiz.eaaf.core.impl.idp.auth.modules.AbstractAuthServletTask;
+import lombok.extern.slf4j.Slf4j;
+import org.apache.commons.lang.StringEscapeUtils;
+import org.apache.commons.lang3.StringUtils;
+import org.springframework.stereotype.Component;
+
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+import java.util.Enumeration;
+
+/**
+ * Handles user's selection from {@link GenerateOtherLoginMethodGuiTask}.
+ *
+ * @author ckollmann
+ */
+@Slf4j
+@Component("ReceiveOtherLoginMethodGuiResponseTask")
+public class ReceiveOtherLoginMethodGuiResponseTask extends AbstractAuthServletTask {
+
+  @Override
+  public void execute(ExecutionContext executionContext, HttpServletRequest request, HttpServletResponse response)
+      throws TaskExecutionException {
+    int found = 0;
+    try {
+      // set parameter execution context
+      final Enumeration<String> reqParamNames = request.getParameterNames();
+      while (reqParamNames.hasMoreElements()) {
+        final String paramName = reqParamNames.nextElement();
+        if (StringUtils.isNotEmpty(paramName)
+            && !EaafConstants.PROCESS_ENGINE_PENDINGREQUESTID.equalsIgnoreCase(paramName)
+            && Constants.REQ_SELECTED_LOGIN_METHOD_PARAMETER.equalsIgnoreCase(paramName)) {
+          String value = StringEscapeUtils.escapeHtml(request.getParameter(paramName));
+          SelectedLoginMethod selection = SelectedLoginMethod.valueOf(value);
+          executionContext.put(Constants.REQ_SELECTED_LOGIN_METHOD_PARAMETER, selection);
+          switch (selection) {
+            case EIDAS_LOGIN:
+              executionContext.put(Constants.TRANSITION_TO_GENERATE_EIDAS_LOGIN, true);
+              found++;
+              break;
+            case MOBILE_PHONE_SIGNATURE_LOGIN:
+              executionContext.put(Constants.TRANSITION_TO_GENERATE_MOBILE_PHONE_SIGNATURE_REQUEST_TASK, true);
+              found++;
+              break;
+            case NO_OTHER_LOGIN:
+              executionContext.put(Constants.TRANSITION_TO_GENERATE_GUI_QUERY_AUSTRIAN_RESIDENCE_TASK, true);
+              found++;
+              break;
+            default:
+              throw new InvalidUserInputException();
+          }
+        }
+      }
+    } catch (final Exception e) {
+      log.error("Parsing selected login method FAILED.", e);
+      throw new TaskExecutionException(pendingReq, "Parsing selected login method FAILED.", e);
+    }
+    if (found != 1) {
+      log.error("Parsing selected login method FAILED.");
+      throw new TaskExecutionException(pendingReq, "Parsing selected login method FAILED.",
+          new InvalidUserInputException());
+    }
+  }
+
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eIDAS.Authentication.process.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eIDAS.Authentication.process.xml
index 6b67379c..f60bb5f9 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eIDAS.Authentication.process.xml
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eIDAS.Authentication.process.xml
@@ -15,23 +15,23 @@
 
   <pd:Task id="createNewErnpEntryTask"
            class="CreateNewErnpEntryTask" />
-  <pd:Task id="generateGuiTask"
-           class="GenerateGuiTask" />
+  <pd:Task id="generateOtherLoginMethodGuiTask"
+           class="GenerateOtherLoginMethodGuiTask" />
   <pd:Task id="generateMobilePhoneSignatureRequestTask"
            class="GenerateMobilePhoneSignatureRequestTask" />
-  <pd:Task id="receiveGuiResponseTask"
-           class="ReceiveGuiResponseTask" />
+  <pd:Task id="receiveOtherLoginMethodGuiResponseTask"
+           class="ReceiveOtherLoginMethodGuiResponseTask" />
   <pd:Task id="receiveMobilePhoneSignatureResponseTask"
            class="ReceiveMobilePhoneSignatureResponseTask" />
 
-  <pd:Task id="generateGuiQueryAustrianResidenceTask"
-           class="GenerateGuiQueryAustrianResidenceTask" />
-  <pd:Task id="receiveGuiAustrianResidenceResponseTask"
-           class="ReceiveGuiAustrianResidenceResponseTask" />
+  <pd:Task id="generateAustrianResidenceGuiTask"
+           class="GenerateAustrianResidenceGuiTask" />
+  <pd:Task id="receiveAustrianResidenceGuiResponseTask"
+           class="ReceiveAustrianResidenceGuiResponseTask" />
 
   <pd:StartEvent id="start" />
-  
-  <pd:Transition  from="start" 
+
+  <pd:Transition  from="start"
                   to="createAuthnRequest" />
   <pd:Transition  from="createAuthnRequest"
                   to="receiveAuthnResponse" />
@@ -42,30 +42,36 @@
                   to="createNewErnpEntryTask"
                   conditionExpression="ctx['TASK_CreateNewErnpEntryTask']"/>
   <pd:Transition  from="initialRegisterSearch"
-                  to="generateGuiTask"
-                  conditionExpression="ctx['TASK_GenerateGuiTask']"/>
+                  to="generateOtherLoginMethodGuiTask"
+                  conditionExpression="ctx['TASK_GenerateOtherLoginMethodGuiTask']"/>
 
-  <pd:Transition  from="generateGuiTask"
-                  to="receiveGuiResponseTask" />
-  <pd:Transition  from="receiveGuiResponseTask"
+  <pd:Transition  from="generateOtherLoginMethodGuiTask"
+                  to="receiveOtherLoginMethodGuiResponseTask" />
+  <pd:Transition  from="receiveOtherLoginMethodGuiResponseTask"
                   to="generateMobilePhoneSignatureRequestTask"
                   conditionExpression="ctx['TASK_GenerateMobilePhoneSignatureRequestTask']"/>
   <pd:Transition  from="generateMobilePhoneSignatureRequestTask"
                   to="receiveMobilePhoneSignatureResponseTask" />
   <pd:Transition  from="receiveMobilePhoneSignatureResponseTask"
                   to="createNewErnpEntryTask" />
-  <pd:Transition  from="receiveGuiResponseTask"
-                  to="generateGuiQueryAustrianResidenceTask"
-                  conditionExpression="ctx['Task_GenerateGuiQueryAustrianResidenceTask']"/>
 
-  <pd:Transition  from="generateGuiQueryAustrianResidenceTask"
-                  to="receiveGuiAustrianResidenceResponseTask" />
+  <!-- TRANSITION_TO_GENERATE_EIDAS_LOGIN -->
+  <!-- <pd:Transition  from="receiveOtherLoginMethodGuiResponseTask" -->
+  <!--                 to="generateAustrianResidenceGuiTask" -->
+  <!--                 conditionExpression="ctx['TASK_TODO']"/> -->
+
+  <pd:Transition  from="receiveOtherLoginMethodGuiResponseTask"
+                  to="generateAustrianResidenceGuiTask"
+                  conditionExpression="ctx['TASK_GenerateAustrianResidenceGuiTask']"/>
 
-  <pd:Transition  from="receiveGuiAustrianResidenceResponseTask"
+  <pd:Transition  from="generateAustrianResidenceGuiTask"
+                  to="receiveAustrianResidenceGuiResponseTask" />
+
+  <pd:Transition  from="receiveAustrianResidenceGuiResponseTask"
                   to="generateIdentityLink"
                   conditionExpression="ctx['TASK_TODO']"/>
 
-  <pd:Transition  from="receiveGuiAustrianResidenceResponseTask"
+  <pd:Transition  from="receiveAustrianResidenceGuiResponseTask"
                   to="createNewErnpEntryTask"
                   conditionExpression="ctx['TASK_TODO']"/>
 
@@ -76,9 +82,9 @@
 
   <pd:Transition  from="generateIdentityLink"
                   to="finalizeAuthentication" />
-  <pd:Transition  from="finalizeAuthentication" 
+  <pd:Transition  from="finalizeAuthentication"
                   to="end" />
-  
+
   <pd:EndEvent id="end" />
 
 </pd:ProcessDefinition>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml
index a720c1f8..07553c22 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml
@@ -22,7 +22,7 @@
 
   <bean id="ZmrClientForeIDAS"
         class="at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.DummyZmrClient" />
-        
+
   <bean id="eIDASAuthModule"
     class="at.asitplus.eidas.specific.modules.auth.eidas.v2.EidasAuthenticationModulImpl">
     <property name="priority" value="2" />
@@ -39,7 +39,7 @@
       ref="specificConnectorAdditionalAttributesFileWithPath" />
   </bean>
 
-  <!-- <bean id="eIDASDataStore" class="at.asitplus.eidas.specific.modules.auth.eidas.v2.service.eIDASDataStore" 
+  <!-- <bean id="eIDASDataStore" class="at.asitplus.eidas.specific.modules.auth.eidas.v2.service.eIDASDataStore"
     /> -->
 
   <bean id="authBlockSigningService"
@@ -106,28 +106,28 @@
         class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.CreateNewErnpEntryTask"
         scope="prototype" />
 
-  <bean id="GenerateGuiTask"
-        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.GenerateLoginMethodGuiTask"
+  <bean id="GenerateOtherLoginMethodGuiTask"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.GenerateOtherLoginMethodGuiTask"
         scope="prototype" />
 
   <bean id="GenerateMobilePhoneSignatureRequestTask"
         class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.GenerateMobilePhoneSignatureRequestTask"
         scope="prototype" />
 
-  <bean id="ReceiveGuiResponseTask"
-        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.ReceiveLoginMethodGuiResponseTask"
+  <bean id="ReceiveOtherLoginMethodGuiResponseTask"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.ReceiveOtherLoginMethodGuiResponseTask"
         scope="prototype" />
 
   <bean id="ReceiveMobilePhoneSignatureResponseTask"
         class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask"
         scope="prototype" />
 
-  <bean id="GenerateGuiQueryAustrianResidenceTask"
-        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.GenerateGuiQueryAustrianResidenceTask"
+  <bean id="GenerateAustrianResidenceGuiTask"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.GenerateAustrianResidenceGuiTask"
         scope="prototype" />
 
-  <bean id="ReceiveGuiAustrianResidenceResponseTask"
-        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.ReceiveGuiAustrianResidenceResponseTask"
+  <bean id="ReceiveAustrianResidenceGuiResponseTask"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.ReceiveAustrianResidenceGuiResponseTask"
         scope="prototype" />
 
 
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskTest.java
index 95986c49..e0138f62 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskTest.java
@@ -386,7 +386,7 @@ public class InitialSearchTaskTest {
             .getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
     Assert.assertEquals("Wrong bpk", null, bPk);
 
-    Boolean transitionGUI = (Boolean)executionContext.get(Constants.TRANSITION_TO_CREATE_GENERATE_GUI_TASK);
+    Boolean transitionGUI = (Boolean)executionContext.get(Constants.TRANSITION_TO_GENERATE_OTHER_LOGIN_METHOD_GUI_TASK);
     Assert.assertEquals("Wrong transition", null, transitionGUI);
     Boolean transitionErnb = (Boolean)executionContext.get(Constants.TRANSITION_TO_CREATE_NEW_ERNB_ENTRY_TASK);
     Assert.assertEquals("Wrong transition", true, transitionErnb);
@@ -411,7 +411,7 @@ public class InitialSearchTaskTest {
         pendingReq.getSessionData(AuthProcessDataWrapper.class)
             .getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
     Assert.assertEquals("Wrong bpk", null, bPk);
-    Boolean transitionGUI = (Boolean)executionContext.get(Constants.TRANSITION_TO_CREATE_GENERATE_GUI_TASK);
+    Boolean transitionGUI = (Boolean)executionContext.get(Constants.TRANSITION_TO_GENERATE_OTHER_LOGIN_METHOD_GUI_TASK);
     Assert.assertEquals("Wrong transition", true, transitionGUI);
     Boolean transitionErnb = (Boolean)executionContext.get(Constants.TRANSITION_TO_CREATE_NEW_ERNB_ENTRY_TASK);
     Assert.assertEquals("Wrong transition", null, transitionErnb);
@@ -436,7 +436,7 @@ public class InitialSearchTaskTest {
         pendingReq.getSessionData(AuthProcessDataWrapper.class)
             .getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
     Assert.assertEquals("Wrong bpk", null, bPk);
-    Boolean transitionGUI = (Boolean)executionContext.get(Constants.TRANSITION_TO_CREATE_GENERATE_GUI_TASK);
+    Boolean transitionGUI = (Boolean)executionContext.get(Constants.TRANSITION_TO_GENERATE_OTHER_LOGIN_METHOD_GUI_TASK);
     Assert.assertEquals("Wrong transition", true, transitionGUI);
     Boolean transitionErnb = (Boolean)executionContext.get(Constants.TRANSITION_TO_CREATE_NEW_ERNB_ENTRY_TASK);
     Assert.assertEquals("Wrong transition", null, transitionErnb);
@@ -463,7 +463,7 @@ public class InitialSearchTaskTest {
         pendingReq.getSessionData(AuthProcessDataWrapper.class)
             .getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
     Assert.assertEquals("Wrong bpk", null, bPk);
-    Boolean transitionGUI = (Boolean)executionContext.get(Constants.TRANSITION_TO_CREATE_GENERATE_GUI_TASK);
+    Boolean transitionGUI = (Boolean)executionContext.get(Constants.TRANSITION_TO_GENERATE_OTHER_LOGIN_METHOD_GUI_TASK);
     Assert.assertEquals("Wrong transition", true, transitionGUI);
     Boolean transitionErnb = (Boolean)executionContext.get(Constants.TRANSITION_TO_CREATE_NEW_ERNB_ENTRY_TASK);
     Assert.assertEquals("Wrong transition", null, transitionErnb);
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveLoginMethodGuiResponseTaskTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveLoginMethodGuiResponseTaskTest.java
deleted file mode 100644
index c6729a03..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveLoginMethodGuiResponseTaskTest.java
+++ /dev/null
@@ -1,139 +0,0 @@
-package at.asitplus.eidas.specific.modules.auth.eidas.v2.test.tasks;
-
-import at.asitplus.eidas.specific.connector.MsEidasNodeConstants;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SelectedLoginMethod;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.InvalidUserInputException;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.ReceiveLoginMethodGuiResponseTask;
-import at.gv.egiz.eaaf.core.api.data.EaafConstants;
-import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
-import at.gv.egiz.eaaf.core.impl.idp.controller.tasks.AbstractLocaleAuthServletTask;
-import at.gv.egiz.eaaf.core.impl.idp.module.test.TestRequestImpl;
-import at.gv.egiz.eaaf.core.impl.idp.process.ExecutionContextImpl;
-import org.apache.commons.lang3.RandomStringUtils;
-import org.junit.Assert;
-import org.junit.Before;
-import org.junit.BeforeClass;
-import org.junit.Test;
-import org.junit.runner.RunWith;
-import org.springframework.beans.factory.annotation.Autowired;
-import org.springframework.context.i18n.LocaleContextHolder;
-import org.springframework.mock.web.MockHttpServletRequest;
-import org.springframework.mock.web.MockHttpServletResponse;
-import org.springframework.test.context.ActiveProfiles;
-import org.springframework.test.context.ContextConfiguration;
-import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
-import org.springframework.test.context.web.WebAppConfiguration;
-import org.springframework.web.context.request.RequestContextHolder;
-import org.springframework.web.context.request.ServletRequestAttributes;
-
-import java.io.UnsupportedEncodingException;
-
-@RunWith(SpringJUnit4ClassRunner.class)
-//@ContextConfiguration({
-//    "/applicationContext.xml",
-//    "/specific_eIDAS_connector.beans.xml",
-//    "/eaaf_core.beans.xml",
-//    "/eaaf_pvp.beans.xml",
-//    "/eaaf_pvp_idp.beans.xml",
-//    "/spring/SpringTest-context_simple_storage.xml" })
-@ContextConfiguration(locations = {
-    "/SpringTest-context_tasks_test.xml",
-    "/SpringTest-context_basic_mapConfig.xml"
-})
-@ActiveProfiles(profiles = {"deprecatedConfig"})
-@WebAppConfiguration
-public class ReceiveLoginMethodGuiResponseTaskTest {
-
-  @Autowired private ReceiveLoginMethodGuiResponseTask task;
-  
-  private ExecutionContextImpl executionContext = new ExecutionContextImpl();
-  private TestRequestImpl pendingReq;
-  private MockHttpServletRequest httpReq;
-  private MockHttpServletResponse httpResp;
-  
-  /**
-   * jUnit class initializer.
-   * 
-   */
-  @BeforeClass
-  public static void classInitializer() {
-    final String current = new java.io.File(".").toURI().toString();
-    System.setProperty("eidas.ms.configuration", current + "src/test/resources/config/junit_config_1.properties");
-    
-  }
-  
-  /**
-   * jUnit test set-up.
-   * 
-   */
-  @Before
-  public void initialize() {
-    httpReq = new MockHttpServletRequest("POST", "https://localhost/ms_connector");
-    httpResp = new MockHttpServletResponse();
-    RequestContextHolder.resetRequestAttributes();
-    RequestContextHolder.setRequestAttributes(new ServletRequestAttributes(httpReq, httpResp));
-    
-    pendingReq = new TestRequestImpl();
-    pendingReq.setAuthUrl("https://localhost/ms_connector");
-    pendingReq.setPendingReqId(RandomStringUtils.randomAlphanumeric(10));
-    
-    LocaleContextHolder.resetLocaleContext();
-  }
-  
-  @Test
-  public void withMobileSignatureSelection() throws TaskExecutionException {
-    test(SelectedLoginMethod.MOBILE_PHONE_SIGNATURE_LOGIN);
-  }
-
-  @Test
-  public void withEidasSelection() throws TaskExecutionException {
-    test(SelectedLoginMethod.MOBILE_PHONE_SIGNATURE_LOGIN);
-  }
-
-  @Test
-  public void withNoOtherLoginSelection() throws TaskExecutionException {
-    test(SelectedLoginMethod.NO_OTHER_LOGIN);
-  }
-
-  public void test(SelectedLoginMethod loginMethod) throws TaskExecutionException {
-    String parameterValue = loginMethod.name();
-    httpReq.setParameter(Constants.REQ_SELECTED_LOGIN_METHOD_PARAMETER, parameterValue);
-
-    task.execute(pendingReq, executionContext);
-
-    //result validation
-    Assert.assertFalse("wrong pendingReq auth flag", pendingReq.isAuthenticated());
-    Assert.assertFalse("wrong process-cancelled flag", executionContext.isProcessCancelled());
-
-    Assert.assertNotNull("no login-selection found",
-        executionContext.get(Constants.REQ_SELECTED_LOGIN_METHOD_PARAMETER));
-    Assert.assertEquals("Wrong login-selection found", loginMethod,
-        executionContext.get(Constants.REQ_SELECTED_LOGIN_METHOD_PARAMETER));
-  }
-
-
-  @Test(expected = TaskExecutionException.class)
-  public void withInvalidSelection() throws TaskExecutionException {
-    String parameterValue = RandomStringUtils.randomAlphabetic(2);
-    httpReq.setParameter(Constants.REQ_SELECTED_LOGIN_METHOD_PARAMETER, parameterValue);
-    task.execute(pendingReq, executionContext);
-  }
-
-  @Test(expected = TaskExecutionException.class)
-  public void withNullSelection() throws TaskExecutionException {
-    httpReq.setParameter(Constants.REQ_SELECTED_LOGIN_METHOD_PARAMETER, "null");
-    task.execute(pendingReq, executionContext);
-  }
-
-  @Test(expected = TaskExecutionException.class)
-  public void withEmptySelection() throws TaskExecutionException {
-    httpReq.setParameter(Constants.REQ_SELECTED_LOGIN_METHOD_PARAMETER, "");
-    task.execute(pendingReq, executionContext);
-  }
-
-  @Test(expected = TaskExecutionException.class)
-  public void withoutLoginMethodSelection() throws TaskExecutionException, UnsupportedEncodingException {
-    task.execute(pendingReq, executionContext);
-  }
-}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveOtherLoginMethodGuiResponseTaskTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveOtherLoginMethodGuiResponseTaskTest.java
new file mode 100644
index 00000000..ae4b5d8c
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveOtherLoginMethodGuiResponseTaskTest.java
@@ -0,0 +1,135 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.test.tasks;
+
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SelectedLoginMethod;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.ReceiveOtherLoginMethodGuiResponseTask;
+import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
+import at.gv.egiz.eaaf.core.impl.idp.module.test.TestRequestImpl;
+import at.gv.egiz.eaaf.core.impl.idp.process.ExecutionContextImpl;
+import org.apache.commons.lang3.RandomStringUtils;
+import org.junit.Assert;
+import org.junit.Before;
+import org.junit.BeforeClass;
+import org.junit.Test;
+import org.junit.runner.RunWith;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.context.i18n.LocaleContextHolder;
+import org.springframework.mock.web.MockHttpServletRequest;
+import org.springframework.mock.web.MockHttpServletResponse;
+import org.springframework.test.context.ActiveProfiles;
+import org.springframework.test.context.ContextConfiguration;
+import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
+import org.springframework.test.context.web.WebAppConfiguration;
+import org.springframework.web.context.request.RequestContextHolder;
+import org.springframework.web.context.request.ServletRequestAttributes;
+
+import java.io.UnsupportedEncodingException;
+
+@RunWith(SpringJUnit4ClassRunner.class)
+//@ContextConfiguration({
+//    "/applicationContext.xml",
+//    "/specific_eIDAS_connector.beans.xml",
+//    "/eaaf_core.beans.xml",
+//    "/eaaf_pvp.beans.xml",
+//    "/eaaf_pvp_idp.beans.xml",
+//    "/spring/SpringTest-context_simple_storage.xml" })
+@ContextConfiguration(locations = {
+    "/SpringTest-context_tasks_test.xml",
+    "/SpringTest-context_basic_mapConfig.xml"
+})
+@ActiveProfiles(profiles = {"deprecatedConfig"})
+@WebAppConfiguration
+public class ReceiveOtherLoginMethodGuiResponseTaskTest {
+
+  @Autowired private ReceiveOtherLoginMethodGuiResponseTask task;
+
+  private ExecutionContextImpl executionContext = new ExecutionContextImpl();
+  private TestRequestImpl pendingReq;
+  private MockHttpServletRequest httpReq;
+  private MockHttpServletResponse httpResp;
+
+  /**
+   * jUnit class initializer.
+   *
+   */
+  @BeforeClass
+  public static void classInitializer() {
+    final String current = new java.io.File(".").toURI().toString();
+    System.setProperty("eidas.ms.configuration", current + "src/test/resources/config/junit_config_1.properties");
+
+  }
+
+  /**
+   * jUnit test set-up.
+   *
+   */
+  @Before
+  public void initialize() {
+    httpReq = new MockHttpServletRequest("POST", "https://localhost/ms_connector");
+    httpResp = new MockHttpServletResponse();
+    RequestContextHolder.resetRequestAttributes();
+    RequestContextHolder.setRequestAttributes(new ServletRequestAttributes(httpReq, httpResp));
+
+    pendingReq = new TestRequestImpl();
+    pendingReq.setAuthUrl("https://localhost/ms_connector");
+    pendingReq.setPendingReqId(RandomStringUtils.randomAlphanumeric(10));
+
+    LocaleContextHolder.resetLocaleContext();
+  }
+
+  @Test
+  public void withMobileSignatureSelection() throws TaskExecutionException {
+    test(SelectedLoginMethod.MOBILE_PHONE_SIGNATURE_LOGIN);
+  }
+
+  @Test
+  public void withEidasSelection() throws TaskExecutionException {
+    test(SelectedLoginMethod.MOBILE_PHONE_SIGNATURE_LOGIN);
+  }
+
+  @Test
+  public void withNoOtherLoginSelection() throws TaskExecutionException {
+    test(SelectedLoginMethod.NO_OTHER_LOGIN);
+  }
+
+  public void test(SelectedLoginMethod loginMethod) throws TaskExecutionException {
+    String parameterValue = loginMethod.name();
+    httpReq.setParameter(Constants.REQ_SELECTED_LOGIN_METHOD_PARAMETER, parameterValue);
+
+    task.execute(pendingReq, executionContext);
+
+    //result validation
+    Assert.assertFalse("wrong pendingReq auth flag", pendingReq.isAuthenticated());
+    Assert.assertFalse("wrong process-cancelled flag", executionContext.isProcessCancelled());
+
+    Assert.assertNotNull("no login-selection found",
+        executionContext.get(Constants.REQ_SELECTED_LOGIN_METHOD_PARAMETER));
+    Assert.assertEquals("Wrong login-selection found", loginMethod,
+        executionContext.get(Constants.REQ_SELECTED_LOGIN_METHOD_PARAMETER));
+  }
+
+
+  @Test(expected = TaskExecutionException.class)
+  public void withInvalidSelection() throws TaskExecutionException {
+    String parameterValue = RandomStringUtils.randomAlphabetic(2);
+    httpReq.setParameter(Constants.REQ_SELECTED_LOGIN_METHOD_PARAMETER, parameterValue);
+    task.execute(pendingReq, executionContext);
+  }
+
+  @Test(expected = TaskExecutionException.class)
+  public void withNullSelection() throws TaskExecutionException {
+    httpReq.setParameter(Constants.REQ_SELECTED_LOGIN_METHOD_PARAMETER, "null");
+    task.execute(pendingReq, executionContext);
+  }
+
+  @Test(expected = TaskExecutionException.class)
+  public void withEmptySelection() throws TaskExecutionException {
+    httpReq.setParameter(Constants.REQ_SELECTED_LOGIN_METHOD_PARAMETER, "");
+    task.execute(pendingReq, executionContext);
+  }
+
+  @Test(expected = TaskExecutionException.class)
+  public void withoutLoginMethodSelection() throws TaskExecutionException, UnsupportedEncodingException {
+    task.execute(pendingReq, executionContext);
+  }
+}
-- 
cgit v1.2.3


From 3c838c11bc536a7418654989752b94b457d3f52f Mon Sep 17 00:00:00 2001
From: Christian Kollmann <christian.kollmann@a-sit.at>
Date: Mon, 22 Feb 2021 11:36:03 +0100
Subject: Refactor test for InitialSearchTask

---
 .../eidas/v2/test/tasks/InitialSearchTaskTest.java | 104 ++++++++++-----------
 1 file changed, 50 insertions(+), 54 deletions(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskTest.java
index e0138f62..d855c98d 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskTest.java
@@ -41,7 +41,6 @@ import eu.eidas.auth.commons.attribute.AttributeDefinition;
 import eu.eidas.auth.commons.attribute.ImmutableAttributeMap;
 import eu.eidas.auth.commons.attribute.PersonType;
 import eu.eidas.auth.commons.protocol.impl.AuthenticationResponse;
-import lombok.val;
 import org.apache.commons.lang3.RandomStringUtils;
 import org.jetbrains.annotations.NotNull;
 import org.junit.Assert;
@@ -67,6 +66,7 @@ import java.util.ArrayList;
 import java.util.Collections;
 import java.util.Random;
 
+import static org.apache.commons.lang3.RandomStringUtils.randomAlphabetic;
 import static org.junit.Assert.assertThrows;
 
 @RunWith(SpringJUnit4ClassRunner.class)
@@ -91,24 +91,12 @@ public class InitialSearchTaskTest {
   private final String randomBpk = RandomStringUtils.randomNumeric(6);
   private final String randomIdentifier = RandomStringUtils.randomNumeric(10);
   private final String randomPseudonym = DE_ST + randomIdentifier;
-  private final String randomFamilyName = RandomStringUtils.randomAlphabetic(10);
-  private final String randomGivenName = RandomStringUtils.randomAlphabetic(10);
-  private final String randomPlaceOfBirth = RandomStringUtils.randomAlphabetic(10);
-  private final String randomBirthName = RandomStringUtils.randomAlphabetic(10);
+  private final String randomFamilyName = randomAlphabetic(10);
+  private final String randomGivenName = randomAlphabetic(10);
+  private final String randomPlaceOfBirth = randomAlphabetic(10);
+  private final String randomBirthName = randomAlphabetic(10);
   private final String randomBirthDate = "2011-01-" + (10 + new Random().nextInt(18));
 
-//  /**
-//   * jUnit class initializer.
-//   *
-//   * @throws IOException In case of an error
-//   */
-//  @BeforeClass
-//  public static void classInitializer() throws IOException {
-//    final String current = new java.io.File(".").toURI().toString();
-//    System.setProperty("eidas.ms.configuration", current
-//        + "src/test/resources/config/junit_config_1.properties");
-//  }
-
   /**
    * jUnit test set-up.
    */
@@ -134,7 +122,7 @@ public class InitialSearchTaskTest {
   @Test
   @DirtiesContext
   public void testNode100_UserIdentifiedUpdateNecessary_a() throws Exception {
-    String newFirstName = RandomStringUtils.randomAlphabetic(10);
+    String newFirstName = randomAlphabetic(10);
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.singletonList(
         new RegisterResult(randomBpk, randomIdentifier, newFirstName, randomFamilyName, randomBirthDate)));
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
@@ -154,7 +142,7 @@ public class InitialSearchTaskTest {
   @DirtiesContext
   public void testNode100_UserIdentifiedUpdateNecessary_b() throws TaskExecutionException {
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
-    String newRandomGivenName = RandomStringUtils.randomAlphabetic(10);
+    String newRandomGivenName = randomAlphabetic(10);
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.singletonList(
         new RegisterResult(randomBpk, randomIdentifier, newRandomGivenName, randomFamilyName, randomBirthDate)));
 
@@ -174,7 +162,7 @@ public class InitialSearchTaskTest {
   public void testNode101_ManualFixNecessary_a() {
     ArrayList<RegisterResult> zmrResult = new ArrayList<>();
     zmrResult.add(new RegisterResult(randomBpk, randomIdentifier, randomGivenName, randomFamilyName, randomBirthDate));
-    String newRandomGivenName = randomGivenName + RandomStringUtils.randomAlphabetic(2);
+    String newRandomGivenName = randomGivenName + randomAlphabetic(2);
     zmrResult.add(new RegisterResult(randomBpk, randomIdentifier, newRandomGivenName, randomFamilyName, randomBirthDate));
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResult);
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
@@ -196,7 +184,7 @@ public class InitialSearchTaskTest {
     Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
     ArrayList<RegisterResult> ernpResult = new ArrayList<>();
     ernpResult.add(new RegisterResult(randomBpk, randomPseudonym, randomGivenName, randomFamilyName, randomBirthDate));
-    String newRandomGivenName = randomGivenName + RandomStringUtils.randomAlphabetic(2);
+    String newRandomGivenName = randomGivenName + randomAlphabetic(2);
     ernpResult.add(
         new RegisterResult(randomBpk, randomIdentifier, newRandomGivenName, randomFamilyName, randomBirthDate));
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(ernpResult);
@@ -384,12 +372,12 @@ public class InitialSearchTaskTest {
     String bPk = (String)
         pendingReq.getSessionData(AuthProcessDataWrapper.class)
             .getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
-    Assert.assertEquals("Wrong bpk", null, bPk);
+    Assert.assertNull("Wrong bpk", bPk);
 
-    Boolean transitionGUI = (Boolean)executionContext.get(Constants.TRANSITION_TO_GENERATE_OTHER_LOGIN_METHOD_GUI_TASK);
-    Assert.assertEquals("Wrong transition", null, transitionGUI);
-    Boolean transitionErnb = (Boolean)executionContext.get(Constants.TRANSITION_TO_CREATE_NEW_ERNB_ENTRY_TASK);
-    Assert.assertEquals("Wrong transition", true, transitionErnb);
+    Boolean transitionGUI = (Boolean) executionContext.get(Constants.TRANSITION_TO_GENERATE_OTHER_LOGIN_METHOD_GUI_TASK);
+    Assert.assertNull("Wrong transition", transitionGUI);
+    Boolean transitionErnb = (Boolean) executionContext.get(Constants.TRANSITION_TO_CREATE_NEW_ERNB_ENTRY_TASK);
+    Assert.assertTrue("Wrong transition", transitionErnb);
   }
 
   /**
@@ -403,18 +391,18 @@ public class InitialSearchTaskTest {
 
     Mockito.when(ernpClient.searchWithMds(randomGivenName, randomFamilyName, randomBirthDate)).thenReturn(
         Collections.singletonList(
-        new RegisterResult(randomBpk, randomIdentifier, randomGivenName, randomFamilyName, randomBirthDate)));
+            new RegisterResult(randomBpk, randomIdentifier, randomGivenName, randomFamilyName, randomBirthDate)));
 
     task.execute(pendingReq, executionContext);
 
     String bPk = (String)
         pendingReq.getSessionData(AuthProcessDataWrapper.class)
             .getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
-    Assert.assertEquals("Wrong bpk", null, bPk);
-    Boolean transitionGUI = (Boolean)executionContext.get(Constants.TRANSITION_TO_GENERATE_OTHER_LOGIN_METHOD_GUI_TASK);
-    Assert.assertEquals("Wrong transition", true, transitionGUI);
-    Boolean transitionErnb = (Boolean)executionContext.get(Constants.TRANSITION_TO_CREATE_NEW_ERNB_ENTRY_TASK);
-    Assert.assertEquals("Wrong transition", null, transitionErnb);
+    Assert.assertNull("Wrong bpk", bPk);
+    Boolean transitionGUI = (Boolean) executionContext.get(Constants.TRANSITION_TO_GENERATE_OTHER_LOGIN_METHOD_GUI_TASK);
+    Assert.assertTrue("Wrong transition", transitionGUI);
+    Boolean transitionErnb = (Boolean) executionContext.get(Constants.TRANSITION_TO_CREATE_NEW_ERNB_ENTRY_TASK);
+    Assert.assertNull("Wrong transition", transitionErnb);
   }
 
   /**
@@ -435,11 +423,11 @@ public class InitialSearchTaskTest {
     String bPk = (String)
         pendingReq.getSessionData(AuthProcessDataWrapper.class)
             .getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
-    Assert.assertEquals("Wrong bpk", null, bPk);
-    Boolean transitionGUI = (Boolean)executionContext.get(Constants.TRANSITION_TO_GENERATE_OTHER_LOGIN_METHOD_GUI_TASK);
-    Assert.assertEquals("Wrong transition", true, transitionGUI);
-    Boolean transitionErnb = (Boolean)executionContext.get(Constants.TRANSITION_TO_CREATE_NEW_ERNB_ENTRY_TASK);
-    Assert.assertEquals("Wrong transition", null, transitionErnb);
+    Assert.assertNull("Wrong bpk", bPk);
+    Boolean transitionGUI = (Boolean) executionContext.get(Constants.TRANSITION_TO_GENERATE_OTHER_LOGIN_METHOD_GUI_TASK);
+    Assert.assertTrue("Wrong transition", transitionGUI);
+    Boolean transitionErnb = (Boolean) executionContext.get(Constants.TRANSITION_TO_CREATE_NEW_ERNB_ENTRY_TASK);
+    Assert.assertNull("Wrong transition", transitionErnb);
   }
 
   /**
@@ -453,7 +441,7 @@ public class InitialSearchTaskTest {
     ArrayList<RegisterResult> ernbResult = new ArrayList<>();
     ernbResult.add(new RegisterResult(randomBpk, randomIdentifier, randomGivenName, randomFamilyName,
         randomBirthDate));
-    ernbResult.add(new RegisterResult(randomBpk+"1", randomIdentifier, randomGivenName, randomFamilyName,
+    ernbResult.add(new RegisterResult(randomBpk + "1", randomIdentifier, randomGivenName, randomFamilyName,
         randomBirthDate));
     Mockito.when(ernpClient.searchWithMds(randomGivenName, randomFamilyName, randomBirthDate)).thenReturn(ernbResult);
 
@@ -462,11 +450,11 @@ public class InitialSearchTaskTest {
     String bPk = (String)
         pendingReq.getSessionData(AuthProcessDataWrapper.class)
             .getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
-    Assert.assertEquals("Wrong bpk", null, bPk);
-    Boolean transitionGUI = (Boolean)executionContext.get(Constants.TRANSITION_TO_GENERATE_OTHER_LOGIN_METHOD_GUI_TASK);
-    Assert.assertEquals("Wrong transition", true, transitionGUI);
-    Boolean transitionErnb = (Boolean)executionContext.get(Constants.TRANSITION_TO_CREATE_NEW_ERNB_ENTRY_TASK);
-    Assert.assertEquals("Wrong transition", null, transitionErnb);
+    Assert.assertNull("Wrong bpk", bPk);
+    Boolean transitionGUI = (Boolean) executionContext.get(Constants.TRANSITION_TO_GENERATE_OTHER_LOGIN_METHOD_GUI_TASK);
+    Assert.assertTrue("Wrong transition", transitionGUI);
+    Boolean transitionErnb = (Boolean) executionContext.get(Constants.TRANSITION_TO_CREATE_NEW_ERNB_ENTRY_TASK);
+    Assert.assertNull("Wrong transition", transitionErnb);
   }
 
   @NotNull
@@ -498,25 +486,32 @@ public class InitialSearchTaskTest {
                                                         String dateOfBirth, String taxNumber, String placeOfBirth,
                                                         String birthName) throws URISyntaxException {
     ImmutableAttributeMap.Builder builder = ImmutableAttributeMap.builder()
-        .put(generateStringAttribute(Constants.eIDAS_ATTR_PERSONALIDENTIFIER, "ff", "af"), identifier)
-        .put(generateStringAttribute(Constants.eIDAS_ATTR_CURRENTFAMILYNAME, "fff", "aff"), familyName)
-        .put(generateStringAttribute(Constants.eIDAS_ATTR_CURRENTGIVENNAME, "ffff", "afff"), givenName)
-        .put(generateDateTimeAttribute(Constants.eIDAS_ATTR_DATEOFBIRTH, "fffff", "affff"), dateOfBirth);
+        .put(generateStringAttribute(Constants.eIDAS_ATTR_PERSONALIDENTIFIER,
+            randomAlphabetic(2), randomAlphabetic(2)), identifier)
+        .put(generateStringAttribute(Constants.eIDAS_ATTR_CURRENTFAMILYNAME,
+            randomAlphabetic(3), randomAlphabetic(3)), familyName)
+        .put(generateStringAttribute(Constants.eIDAS_ATTR_CURRENTGIVENNAME,
+            randomAlphabetic(4), randomAlphabetic(4)), givenName)
+        .put(generateDateTimeAttribute(Constants.eIDAS_ATTR_DATEOFBIRTH,
+            randomAlphabetic(5), randomAlphabetic(5)), dateOfBirth);
     if (taxNumber != null) {
-      builder.put(generateStringAttribute(Constants.eIDAS_ATTR_TAXREFERENCE, "ffffff", "afffff"), taxNumber);
+      builder.put(generateStringAttribute(Constants.eIDAS_ATTR_TAXREFERENCE,
+          randomAlphabetic(6), randomAlphabetic(6)), taxNumber);
     }
     if (birthName != null) {
-      builder.put(generateStringAttribute(Constants.eIDAS_ATTR_BIRTHNAME, "fffffff", "affffff"), birthName);
+      builder.put(generateStringAttribute(Constants.eIDAS_ATTR_BIRTHNAME,
+          randomAlphabetic(7), randomAlphabetic(7)), birthName);
     }
     if (placeOfBirth != null) {
-      builder.put(generateStringAttribute(Constants.eIDAS_ATTR_PLACEOFBIRTH, "ffffffff", "afffffff"),
-          placeOfBirth);
+      builder.put(generateStringAttribute(Constants.eIDAS_ATTR_PLACEOFBIRTH,
+          randomAlphabetic(8), randomAlphabetic(8)), placeOfBirth);
     }
     final ImmutableAttributeMap attributeMap = builder.build();
 
-    val b = new AuthenticationResponse.Builder();
-    return b.id("aasdf").issuer("asd").subject("asf").statusCode("200").inResponseTo("asdf").subjectNameIdFormat(
-        "afaf").attributes(attributeMap).build();
+    return new AuthenticationResponse.Builder().id(randomAlphabetic(5))
+        .issuer(randomAlphabetic(5)).subject(randomAlphabetic(5)).statusCode("200")
+        .inResponseTo(randomAlphabetic(5)).subjectNameIdFormat(randomAlphabetic(5))
+        .attributes(attributeMap).build();
   }
 
   private AttributeDefinition<Object> generateStringAttribute(String friendlyName, String fragment, String prefix)
@@ -525,6 +520,7 @@ public class InitialSearchTaskTest {
         ".LiteralStringAttributeValueMarshaller");
   }
 
+  @SuppressWarnings("SameParameterValue")
   private AttributeDefinition<Object> generateDateTimeAttribute(String friendlyName, String fragment, String prefix)
       throws URISyntaxException {
     return generateAttribute(friendlyName, fragment, prefix, "eu.eidas.auth.commons.attribute.impl" +
-- 
cgit v1.2.3


From 06b30e1aad923cf5ed034911c5949a294310fe24 Mon Sep 17 00:00:00 2001
From: Christian Kollmann <christian.kollmann@a-sit.at>
Date: Mon, 22 Feb 2021 13:18:16 +0100
Subject: Refactor InitialSearchTask: Pass execution context as parameter

---
 .../auth/eidas/v2/tasks/InitialSearchTask.java     | 52 +++++++++++-----------
 1 file changed, 27 insertions(+), 25 deletions(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
index 554c60b6..3ebb2116 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
@@ -59,9 +59,10 @@ import java.util.List;
 import java.util.Map;
 
 /**
- * Task that searches ErnP and ZMR before adding person to SZR.
+ * Task that searches registers (ERnP and ZMR) before adding person to SZR.
  *
  * @author amarsalek
+ * @author ckollmann
  */
 @Slf4j
 @Component("InitialSearchTask")
@@ -70,27 +71,26 @@ public class InitialSearchTask extends AbstractAuthServletTask {
   private final List<CountrySpecificDetailSearchProcessor> handlers;
   private final IErnpClient ernpClient;
   private final IZmrClient zmrClient;
-  private ExecutionContext executionContext;
 
   /**
    * Constructor.
-   * @param handlers List of countrySpecificSearchProcessors
+   *
+   * @param handlers   List of countrySpecificSearchProcessors
    * @param ernpClient Ernp client
-   * @param zmrClient ZMR client
+   * @param zmrClient  ZMR client
    */
   public InitialSearchTask(List<CountrySpecificDetailSearchProcessor> handlers, IErnpClient ernpClient,
                            IZmrClient zmrClient) {
     this.ernpClient = ernpClient;
     this.zmrClient = zmrClient;
     this.handlers = handlers;
-    log.info("# " + handlers.size() + " country specific detail search services are registered");
+    log.info("Init with {} country specific detail search services", handlers.size());
   }
 
   @Override
   public void execute(ExecutionContext executionContext, HttpServletRequest request, HttpServletResponse response)
       throws TaskExecutionException {
     try {
-      this.executionContext = executionContext;
       final AuthProcessDataWrapper authProcessData = pendingReq.getSessionData(AuthProcessDataWrapper.class);
       final ILightResponse eidasResponse = authProcessData
           .getGenericDataFromSession(Constants.DATA_FULL_EIDAS_RESPONSE, ILightResponse.class);
@@ -98,7 +98,7 @@ public class InitialSearchTask extends AbstractAuthServletTask {
       final SimpleEidasData eidData = convertSimpleMapToSimpleData(convertEidasAttrToSimpleMap(
           eidasResponse.getAttributes().getAttributeMap()));
 
-      String bpK = step2RegisterSearchWithPersonidentifier(eidData, authProcessData);
+      final String bpK = step2RegisterSearchWithPersonidentifier(executionContext, eidData, authProcessData);
       authProcessData.setGenericDataToSession(Constants.DATA_RESULT_MATCHING_BPK, bpK);
       authProcessData.setGenericDataToSession(Constants.DATA_SIMPLE_EIDAS, eidData);
     } catch (final Exception e) {
@@ -107,8 +107,9 @@ public class InitialSearchTask extends AbstractAuthServletTask {
     }
   }
 
-  private String step2RegisterSearchWithPersonidentifier(SimpleEidasData eidData,
-      AuthProcessDataWrapper authProcessData) throws TaskExecutionException {
+  private String step2RegisterSearchWithPersonidentifier(
+      ExecutionContext executionContext, SimpleEidasData eidData, AuthProcessDataWrapper authProcessData)
+      throws TaskExecutionException {
     log.trace("Starting step2RegisterSearchWithPersonidentifier");
     String personIdentifier = eidData.getPseudonym();
     MergedRegisterSearchResult result = searchInZmrAndErnp(personIdentifier);
@@ -116,10 +117,10 @@ public class InitialSearchTask extends AbstractAuthServletTask {
     try {
       authProcessData.setGenericDataToSession(Constants.DATA_INITIAL_REGISTER_RESULT, result);
     } catch (EaafStorageException e) {
-      throw new TaskExecutionException(pendingReq, "Initial search - Kitt Process necessary.",e);
+      throw new TaskExecutionException(pendingReq, "Initial search - Kitt Process necessary.", e);
     }
     if (result.getResultCount() == 0) {
-      return step5CheckAndPerformCountrySpecificSearchIfPossible(result, eidData);
+      return step5CheckAndPerformCountrySpecificSearchIfPossible(executionContext, result, eidData);
     } else if (result.getResultCount() == 1) {
       return step3CheckRegisterUpdateNecessary(result, eidData);
     }
@@ -145,42 +146,43 @@ public class InitialSearchTask extends AbstractAuthServletTask {
   private String step4UpdateRegisterData(MergedRegisterSearchResult result,
                                          SimpleEidasData eidData) throws WorkflowException {
     log.trace("Starting step4UpdateRegisterData");
-    log.debug("Update " + result + " with " + eidData);
+    log.debug("Update {} with {}", result, eidData);
     //TODO wann rechtlich möglich?
 
     return result.getBpk();
   }
 
   private String step5CheckAndPerformCountrySpecificSearchIfPossible(
-      MergedRegisterSearchResult result, SimpleEidasData eidData) throws TaskExecutionException {
+      ExecutionContext executionContext, MergedRegisterSearchResult result, SimpleEidasData eidData)
+      throws TaskExecutionException {
     log.trace("Starting step5CheckAndPerformCountrySpecificSearchIfPossible");
     String citizenCountry = eidData.getCitizenCountryCode();
     CountrySpecificDetailSearchProcessor foundHandler = null;
     for (final CountrySpecificDetailSearchProcessor el : handlers) {
       if (el.canHandle(citizenCountry, eidData)) {
-        log.debug("Found suitable country specific search handler for " + citizenCountry
-            + " by using: " + el.getName());
+        log.debug("Found suitable country specific search handler for {} by using: {}", citizenCountry, el.getName());
         foundHandler = el;
         break;
       }
     }
     if (foundHandler == null) {
-      return step8RegisterSearchWithMds(eidData);
+      return step8RegisterSearchWithMds(executionContext, eidData);
     } else {
-      return step6CountrySpecificSearch(foundHandler, result, eidData);
+      return step6CountrySpecificSearch(executionContext, foundHandler, result, eidData);
     }
   }
 
-  private String step6CountrySpecificSearch(CountrySpecificDetailSearchProcessor countrySpecificDetailSearchProcessor,
-                                            MergedRegisterSearchResult initialSearchResult, SimpleEidasData eidData)
-      throws TaskExecutionException {
+  private String step6CountrySpecificSearch(ExecutionContext executionContext,
+                                            CountrySpecificDetailSearchProcessor countrySpecificDetailSearchProcessor,
+                                            MergedRegisterSearchResult initialSearchResult,
+                                            SimpleEidasData eidData) throws TaskExecutionException {
     log.trace("Starting step6CountrySpecificSearch");
     MergedRegisterSearchResult countrySpecificDetailSearchResult =
         countrySpecificDetailSearchProcessor.search(eidData);
 
     switch (countrySpecificDetailSearchResult.getResultCount()) {
       case 0:
-        return step8RegisterSearchWithMds(eidData);
+        return step8RegisterSearchWithMds(executionContext, eidData);
       case 1:
         return step7aKittProcess(initialSearchResult, countrySpecificDetailSearchResult, eidData);
       default:
@@ -197,7 +199,7 @@ public class InitialSearchTask extends AbstractAuthServletTask {
         eidData, pendingReq);
   }
 
-  private String step8RegisterSearchWithMds(SimpleEidasData eidData) {
+  private String step8RegisterSearchWithMds(ExecutionContext executionContext, SimpleEidasData eidData) {
     log.trace("Starting step8RegisterSearchWithMds");
     List<RegisterResult> resultsZmr =
         zmrClient.searchWithMds(eidData.getGivenName(), eidData.getFamilyName(), eidData.getDateOfBirth());
@@ -272,7 +274,7 @@ public class InitialSearchTask extends AbstractAuthServletTask {
         final DateTime attribute = EidasResponseUtils.translateDateAttribute(el, attributeMap.get(el).asList());
         if (attribute != null) {
           result.put(el.getFriendlyName(), attribute);
-          log.trace("Find attr '" + el.getFriendlyName() + "' with value: " + attribute.toString());
+          log.trace("Find attr '{}' with value: {}", el.getFriendlyName(), attribute.toString());
 
         } else {
           log.info("Ignore empty 'DateTime' attribute");
@@ -282,7 +284,7 @@ public class InitialSearchTask extends AbstractAuthServletTask {
             .translateAddressAttribute(el, attributeMap.get(el).asList());
         if (addressAttribute != null) {
           result.put(el.getFriendlyName(), addressAttribute);
-          log.trace("Find attr '" + el.getFriendlyName() + "' with value: " + addressAttribute.toString());
+          log.trace("Find attr '{}' with value: {}", el.getFriendlyName(), addressAttribute.toString());
 
         } else {
           log.info("Ignore empty 'PostalAddress' attribute");
@@ -293,7 +295,7 @@ public class InitialSearchTask extends AbstractAuthServletTask {
         final String stringAttr = natPersonIdObj.get(0);
         if (StringUtils.isNotEmpty(stringAttr)) {
           result.put(el.getFriendlyName(), stringAttr);
-          log.trace("Find attr '" + el.getFriendlyName() + "' with value: " + stringAttr);
+          log.trace("Find attr '{}' with value: {}", el.getFriendlyName(), stringAttr);
         } else {
           log.info("Ignore empty 'String' attribute");
         }
-- 
cgit v1.2.3


From 8ab6c1a1d82f46d27e5019198c2a1b7926ac6e72 Mon Sep 17 00:00:00 2001
From: Christian Kollmann <christian.kollmann@a-sit.at>
Date: Mon, 22 Feb 2021 13:31:30 +0100
Subject: Add method to parse citizen country code from eIDAS personal
 identifier

---
 .../auth/eidas/v2/utils/EidasResponseUtils.java    | 25 +++++++++++++++++++---
 1 file changed, 22 insertions(+), 3 deletions(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/EidasResponseUtils.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/EidasResponseUtils.java
index 1d47df20..010681a9 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/EidasResponseUtils.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/EidasResponseUtils.java
@@ -47,6 +47,8 @@ import java.util.List;
 import java.util.regex.Matcher;
 import java.util.regex.Pattern;
 
+import static at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants.eIDAS_ATTR_PERSONALIDENTIFIER;
+
 public class EidasResponseUtils {
   private static final Logger log = LoggerFactory.getLogger(EidasResponseUtils.class);
   public static final String PERSONALIDENIFIER_VALIDATION_PATTERN = "^[A-Z,a-z]{2}/[A-Z,a-z]{2}/.*";
@@ -72,13 +74,12 @@ public class EidasResponseUtils {
    * Unique Identifier
    *
    * @param uniqueID eIDAS attribute value of a unique identifier
-   * @return {@link Trible} that contains: <br>
+   * @return {@link Triple} that contains: <br>
    *         First : citizen country <br>
    *         Second: destination country <br>
    *         Third : unique identifier <br>
    *         or null if the attribute value has a wrong format
    */
-
   public static Triple<String, String, String> parseEidasPersonalIdentifier(String uniqueID) {
     if (!validateEidasPersonalIdentifier(uniqueID)) {
       log.error("eIDAS attribute value for {} looks wrong formated. Value: {}",
@@ -87,7 +88,6 @@ public class EidasResponseUtils {
 
     }
     return Triple.newInstance(uniqueID.substring(0, 2), uniqueID.substring(3, 5), uniqueID.substring(6));
-
   }
 
   /**
@@ -335,6 +335,25 @@ public class EidasResponseUtils {
     return eIdentifier.getThird();
   }
 
+  /**
+   * Post-Process the eIDAS pseudonym to citizen country code.
+   *
+   * @param personalIdObj eIDAS PersonalIdentifierAttribute
+   * @return Citizen Country Code
+   * @throws EidasAttributeException if NO attribute is available
+   */
+  public static String processCountryCode(Object personalIdObj) throws EidasAttributeException {
+    if (!(personalIdObj instanceof String)) {
+      throw new EidasAttributeException(Constants.eIDAS_ATTR_PERSONALIDENTIFIER);
+    }
+    final Triple<String, String, String> eIdentifier =
+        EidasResponseUtils.parseEidasPersonalIdentifier((String) personalIdObj);
+    if (eIdentifier == null || eIdentifier.getFirst() == null) {
+      throw new EidasAttributeException("Error processing eIdentifier");
+    }
+    return eIdentifier.getFirst();
+  }
+
   /**
    * Post-Process the eIDAS TaxReference attribute.
    *
-- 
cgit v1.2.3


From af3a2414540852d0b9581a21f02e52f5576be1ea Mon Sep 17 00:00:00 2001
From: Christian Kollmann <christian.kollmann@a-sit.at>
Date: Mon, 22 Feb 2021 13:31:59 +0100
Subject: Refactor InitialSearchTask: Use more static imports

---
 .../auth/eidas/v2/tasks/InitialSearchTask.java     | 67 ++++++++--------------
 1 file changed, 25 insertions(+), 42 deletions(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
index 3ebb2116..c4d067f5 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
@@ -23,7 +23,6 @@
 
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks;
 
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.MergedRegisterSearchResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
@@ -32,7 +31,6 @@ import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidasAttribute
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.ManualFixNecessaryException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.WorkflowException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.CountrySpecificDetailSearchProcessor;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.EidasResponseUtils;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.Utils;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.IZmrClient;
 import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
@@ -58,6 +56,9 @@ import java.util.HashMap;
 import java.util.List;
 import java.util.Map;
 
+import static at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants.*;
+import static at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.EidasResponseUtils.*;
+
 /**
  * Task that searches registers (ERnP and ZMR) before adding person to SZR.
  *
@@ -93,14 +94,14 @@ public class InitialSearchTask extends AbstractAuthServletTask {
     try {
       final AuthProcessDataWrapper authProcessData = pendingReq.getSessionData(AuthProcessDataWrapper.class);
       final ILightResponse eidasResponse = authProcessData
-          .getGenericDataFromSession(Constants.DATA_FULL_EIDAS_RESPONSE, ILightResponse.class);
+          .getGenericDataFromSession(DATA_FULL_EIDAS_RESPONSE, ILightResponse.class);
 
       final SimpleEidasData eidData = convertSimpleMapToSimpleData(convertEidasAttrToSimpleMap(
           eidasResponse.getAttributes().getAttributeMap()));
 
       final String bpK = step2RegisterSearchWithPersonidentifier(executionContext, eidData, authProcessData);
-      authProcessData.setGenericDataToSession(Constants.DATA_RESULT_MATCHING_BPK, bpK);
-      authProcessData.setGenericDataToSession(Constants.DATA_SIMPLE_EIDAS, eidData);
+      authProcessData.setGenericDataToSession(DATA_RESULT_MATCHING_BPK, bpK);
+      authProcessData.setGenericDataToSession(DATA_SIMPLE_EIDAS, eidData);
     } catch (final Exception e) {
       log.error("Initial search FAILED.", e);
       throw new TaskExecutionException(pendingReq, "Initial search FAILED.", e);
@@ -115,7 +116,7 @@ public class InitialSearchTask extends AbstractAuthServletTask {
     MergedRegisterSearchResult result = searchInZmrAndErnp(personIdentifier);
     //store data in session
     try {
-      authProcessData.setGenericDataToSession(Constants.DATA_INITIAL_REGISTER_RESULT, result);
+      authProcessData.setGenericDataToSession(DATA_INITIAL_REGISTER_RESULT, result);
     } catch (EaafStorageException e) {
       throw new TaskExecutionException(pendingReq, "Initial search - Kitt Process necessary.", e);
     }
@@ -209,9 +210,9 @@ public class InitialSearchTask extends AbstractAuthServletTask {
 
     MergedRegisterSearchResult mdsSearchResult = new MergedRegisterSearchResult(resultsZmr, resultsErnp);
     if (mdsSearchResult.getResultCount() == 0) {
-      executionContext.put(Constants.TRANSITION_TO_CREATE_NEW_ERNB_ENTRY_TASK, true);
+      executionContext.put(TRANSITION_TO_CREATE_NEW_ERNB_ENTRY_TASK, true);
     } else {
-      executionContext.put(Constants.TRANSITION_TO_GENERATE_OTHER_LOGIN_METHOD_GUI_TASK, true);
+      executionContext.put(TRANSITION_TO_GENERATE_OTHER_LOGIN_METHOD_GUI_TASK, true);
     }
     // todo das suchergebnis auch noch speichern für später!
     //TODO implement next phase and return correct value
@@ -226,52 +227,36 @@ public class InitialSearchTask extends AbstractAuthServletTask {
 
   private SimpleEidasData convertSimpleMapToSimpleData(Map<String, Object> eidasAttrMap)
       throws EidasAttributeException {
-    SimpleEidasData simpleEidasData = new SimpleEidasData();
+    SimpleEidasData result = new SimpleEidasData();
 
-    final Object eIdentifierObj = eidasAttrMap.get(Constants.eIDAS_ATTR_PERSONALIDENTIFIER);
-    final Triple<String, String, String> eIdentifier =
-        EidasResponseUtils.parseEidasPersonalIdentifier((String) eIdentifierObj);
-    if (eIdentifier == null) {
-      throw new EidasAttributeException("Error processing eIdentifier");
-    }
-    simpleEidasData.setCitizenCountryCode(eIdentifier.getFirst());
+    result.setCitizenCountryCode(processCountryCode(eidasAttrMap.get(eIDAS_ATTR_PERSONALIDENTIFIER)));
 
     // MDS attributes
-    simpleEidasData.setPseudonym(EidasResponseUtils.processPseudonym(
-        eidasAttrMap.get(Constants.eIDAS_ATTR_PERSONALIDENTIFIER)));
-    simpleEidasData.setFamilyName(EidasResponseUtils.processFamilyName(
-        eidasAttrMap.get(Constants.eIDAS_ATTR_CURRENTFAMILYNAME)));
-    simpleEidasData.setGivenName(EidasResponseUtils.processGivenName(
-        eidasAttrMap.get(Constants.eIDAS_ATTR_CURRENTGIVENNAME)));
-    simpleEidasData.setDateOfBirth(EidasResponseUtils.processDateOfBirthToString(
-        eidasAttrMap.get(Constants.eIDAS_ATTR_DATEOFBIRTH)));
+    result.setPseudonym(processPseudonym(eidasAttrMap.get(eIDAS_ATTR_PERSONALIDENTIFIER)));
+    result.setFamilyName(processFamilyName(eidasAttrMap.get(eIDAS_ATTR_CURRENTFAMILYNAME)));
+    result.setGivenName(processGivenName(eidasAttrMap.get(eIDAS_ATTR_CURRENTGIVENNAME)));
+    result.setDateOfBirth(processDateOfBirthToString(eidasAttrMap.get(eIDAS_ATTR_DATEOFBIRTH)));
 
     // additional attributes
-    simpleEidasData.setPlaceOfBirth(EidasResponseUtils.processPlaceOfBirth(
-        eidasAttrMap.get(Constants.eIDAS_ATTR_PLACEOFBIRTH)));
-    simpleEidasData.setBirthName(EidasResponseUtils.processBirthName(
-        eidasAttrMap.get(Constants.eIDAS_ATTR_BIRTHNAME)));
-    simpleEidasData.setAddress(EidasResponseUtils.processAddress(
-        eidasAttrMap.get(Constants.eIDAS_ATTR_CURRENTADDRESS)));
+    result.setPlaceOfBirth(processPlaceOfBirth(eidasAttrMap.get(eIDAS_ATTR_PLACEOFBIRTH)));
+    result.setBirthName(processBirthName(eidasAttrMap.get(eIDAS_ATTR_BIRTHNAME)));
+    result.setAddress(processAddress(eidasAttrMap.get(eIDAS_ATTR_CURRENTADDRESS)));
 
-    if (eidasAttrMap.containsKey(Constants.eIDAS_ATTR_TAXREFERENCE)) {
-      simpleEidasData.setTaxNumber(EidasResponseUtils.processTaxReference(
-          eidasAttrMap.get(Constants.eIDAS_ATTR_TAXREFERENCE)));
+    if (eidasAttrMap.containsKey(eIDAS_ATTR_TAXREFERENCE)) {
+      result.setTaxNumber(processTaxReference(eidasAttrMap.get(eIDAS_ATTR_TAXREFERENCE)));
     }
 
     //TODO other additional attributes
-    return simpleEidasData;
+    return result;
   }
 
   private Map<String, Object> convertEidasAttrToSimpleMap(
       ImmutableMap<AttributeDefinition<?>, ImmutableSet<? extends AttributeValue<?>>> attributeMap) {
     final Map<String, Object> result = new HashMap<>();
-
     for (final AttributeDefinition<?> el : attributeMap.keySet()) {
-
       final Class<?> parameterizedType = el.getParameterizedType();
       if (DateTime.class.equals(parameterizedType)) {
-        final DateTime attribute = EidasResponseUtils.translateDateAttribute(el, attributeMap.get(el).asList());
+        final DateTime attribute = translateDateAttribute(el, attributeMap.get(el).asList());
         if (attribute != null) {
           result.put(el.getFriendlyName(), attribute);
           log.trace("Find attr '{}' with value: {}", el.getFriendlyName(), attribute.toString());
@@ -280,8 +265,7 @@ public class InitialSearchTask extends AbstractAuthServletTask {
           log.info("Ignore empty 'DateTime' attribute");
         }
       } else if (PostalAddress.class.equals(parameterizedType)) {
-        final PostalAddress addressAttribute = EidasResponseUtils
-            .translateAddressAttribute(el, attributeMap.get(el).asList());
+        final PostalAddress addressAttribute = translateAddressAttribute(el, attributeMap.get(el).asList());
         if (addressAttribute != null) {
           result.put(el.getFriendlyName(), addressAttribute);
           log.trace("Find attr '{}' with value: {}", el.getFriendlyName(), addressAttribute.toString());
@@ -290,8 +274,7 @@ public class InitialSearchTask extends AbstractAuthServletTask {
           log.info("Ignore empty 'PostalAddress' attribute");
         }
       } else {
-        final List<String> natPersonIdObj = EidasResponseUtils
-            .translateStringListAttribute(el, attributeMap.get(el));
+        final List<String> natPersonIdObj = translateStringListAttribute(el, attributeMap.get(el));
         final String stringAttr = natPersonIdObj.get(0);
         if (StringUtils.isNotEmpty(stringAttr)) {
           result.put(el.getFriendlyName(), stringAttr);
@@ -301,7 +284,7 @@ public class InitialSearchTask extends AbstractAuthServletTask {
         }
       }
     }
-    log.debug("Receive #" + result.size() + " attributes with names: " + result.keySet().toString());
+    log.debug("Receive #{} attributes with names: {}", result.size(), result.keySet().toString());
     return result;
   }
 }
\ No newline at end of file
-- 
cgit v1.2.3


From 5207fa3eedfaf2d8b6e27ff38c32a716fb25193c Mon Sep 17 00:00:00 2001
From: Christian Kollmann <christian.kollmann@a-sit.at>
Date: Mon, 22 Feb 2021 13:43:29 +0100
Subject: Refactor: Use EqualsBuilder for equality checks

---
 .../modules/auth/eidas/v2/dao/SimpleEidasData.java | 48 +++++-----------------
 1 file changed, 10 insertions(+), 38 deletions(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleEidasData.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleEidasData.java
index 17f2b1ee..84327941 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleEidasData.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleEidasData.java
@@ -26,6 +26,7 @@ package at.asitplus.eidas.specific.modules.auth.eidas.v2.dao;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.WorkflowException;
 import at.gv.e_government.reference.namespace.persondata._20020228.PostalAddressType;
 import lombok.Data;
+import org.apache.commons.lang3.builder.EqualsBuilder;
 
 @Data
 public class SimpleEidasData {
@@ -52,44 +53,15 @@ public class SimpleEidasData {
    * @throws WorkflowException if multiple results have been found
    */
   public boolean equalsRegisterData(MergedRegisterSearchResult result) throws WorkflowException {
-    return equalsRegisterData(result.getResult());
+    return new EqualsBuilder()
+        .append(result.getResult().getPseudonym(), pseudonym)
+        .append(result.getResult().getGivenName(), givenName)
+        .append(result.getResult().getFamilyName(), familyName)
+        .append(result.getResult().getDateOfBirth(), dateOfBirth)
+        .append(result.getResult().getPlaceOfBirth(), placeOfBirth)
+        .append(result.getResult().getBirthName(), birthName)
+        .append(result.getResult().getTaxNumber(), taxNumber)
+        .isEquals();
   }
 
-  private boolean equalsRegisterData(RegisterResult result) {
-    if (!result.getPseudonym().equals(pseudonym)) {
-      return false;
-    }
-    if (!result.getGivenName().equals(givenName)) {
-      return false;
-    }
-    if (!result.getFamilyName().equals(familyName)) {
-      return false;
-    }
-    if (!result.getDateOfBirth().equals(dateOfBirth)) {
-      return false;
-    }
-    if (!equals(result.getPlaceOfBirth(), placeOfBirth)) {
-      return false;
-    }
-    if (!equals(result.getBirthName(), birthName)) {
-      return false;
-    }
-    if (!equals(result.getTaxNumber(), taxNumber)) {
-      return false;
-    }
-    return true;
-  }
-
-  private boolean equals(String a, String b) {
-    if (a == null && b == null) {
-      return true;
-    }
-    if (a == null) {
-      return false;
-    }
-    if (b == null) {
-      return false;
-    }
-    return a.equals(b);
-  }
 }
-- 
cgit v1.2.3


From 39b5e38cc5e3c7c555ae10e0ff0f684c9bcc0966 Mon Sep 17 00:00:00 2001
From: Christian Kollmann <christian.kollmann@a-sit.at>
Date: Mon, 22 Feb 2021 13:57:50 +0100
Subject: Add service to consolidate register search access

---
 .../eidas/v2/service/RegisterSearchService.java    | 57 +++++++++++++++
 .../auth/eidas/v2/tasks/InitialSearchTask.java     | 64 +++++++++--------
 ...eSignatureResponseAndSearchInRegistersTask.java | 84 ++++++++++------------
 .../modules/auth/eidas/v2/utils/Utils.java         | 48 -------------
 .../src/main/resources/eidas_v2_auth.beans.xml     |  2 +
 .../eidas/v2/test/tasks/InitialSearchTaskTest.java | 13 ++--
 6 files changed, 139 insertions(+), 129 deletions(-)
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/service/RegisterSearchService.java
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/Utils.java

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/service/RegisterSearchService.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/service/RegisterSearchService.java
new file mode 100644
index 00000000..75374872
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/service/RegisterSearchService.java
@@ -0,0 +1,57 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.service;
+
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.MergedRegisterSearchResult;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernp.IErnpClient;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.WorkflowException;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.IZmrClient;
+import at.gv.egiz.eaaf.core.api.IRequest;
+import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
+import lombok.extern.slf4j.Slf4j;
+import org.springframework.stereotype.Service;
+
+@Slf4j
+@Service("registerSearchService")
+public class RegisterSearchService {
+
+  private final IZmrClient zmrClient;
+  private final IErnpClient ernpClient;
+
+  public RegisterSearchService(IZmrClient zmrClient, IErnpClient ernpClient) {
+    this.zmrClient = zmrClient;
+    this.ernpClient = ernpClient;
+  }
+
+
+  /**
+   * Automatic process to fix the register entries.
+   *
+   * @param initialSearchResult Result of initial register search
+   * @param specificDetailSearchResult Result of last register search
+   * @param eidData Received eidas data
+   * @param pendingReq Pending request
+   * @return The bpk
+   * @throws TaskExecutionException if an error occurs during the register update
+   */
+  public String step7aKittProcess(MergedRegisterSearchResult initialSearchResult,
+                                  MergedRegisterSearchResult specificDetailSearchResult,
+                                  SimpleEidasData eidData, IRequest pendingReq) throws TaskExecutionException {
+    try {
+      if (initialSearchResult.getResultCount() != 0) {
+        throw new WorkflowException("initialSearchResult.getResultCount() != 0");
+      }
+      if (specificDetailSearchResult.getResultCount() != 1) {
+        throw new WorkflowException("countrySpecificDetailSearchResult.getResultCount() != 1");
+      }
+      if (specificDetailSearchResult.getResultsZmr().size() == 1) {
+        this.zmrClient.update(specificDetailSearchResult.getResultsZmr().get(0), eidData);
+      }
+      if (specificDetailSearchResult.getResultsErnp().size() == 1) {
+        this.ernpClient.update(specificDetailSearchResult.getResultsErnp().get(0), eidData);
+      }
+      return specificDetailSearchResult.getBpk();
+    } catch (WorkflowException e) {
+      throw new TaskExecutionException(pendingReq, "Step7a failed.", e);
+    }
+  }
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
index c4d067f5..7f4526ad 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
@@ -31,12 +31,11 @@ import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidasAttribute
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.ManualFixNecessaryException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.WorkflowException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.CountrySpecificDetailSearchProcessor;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.Utils;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.RegisterSearchService;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.IZmrClient;
 import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
 import at.gv.egiz.eaaf.core.exceptions.EaafStorageException;
 import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
-import at.gv.egiz.eaaf.core.impl.data.Triple;
 import at.gv.egiz.eaaf.core.impl.idp.auth.data.AuthProcessDataWrapper;
 import at.gv.egiz.eaaf.core.impl.idp.auth.modules.AbstractAuthServletTask;
 import com.google.common.collect.ImmutableMap;
@@ -47,6 +46,7 @@ import eu.eidas.auth.commons.light.ILightResponse;
 import eu.eidas.auth.commons.protocol.eidas.impl.PostalAddress;
 import lombok.extern.slf4j.Slf4j;
 import org.apache.commons.lang3.StringUtils;
+import org.jetbrains.annotations.NotNull;
 import org.joda.time.DateTime;
 import org.springframework.stereotype.Component;
 
@@ -72,16 +72,20 @@ public class InitialSearchTask extends AbstractAuthServletTask {
   private final List<CountrySpecificDetailSearchProcessor> handlers;
   private final IErnpClient ernpClient;
   private final IZmrClient zmrClient;
+  private final RegisterSearchService registerSearchService;
 
   /**
    * Constructor.
-   *
-   * @param handlers   List of countrySpecificSearchProcessors
+   *  @param handlers   List of countrySpecificSearchProcessors
+   * @param registerSearchService
    * @param ernpClient Ernp client
    * @param zmrClient  ZMR client
    */
-  public InitialSearchTask(List<CountrySpecificDetailSearchProcessor> handlers, IErnpClient ernpClient,
+  public InitialSearchTask(List<CountrySpecificDetailSearchProcessor> handlers,
+                           RegisterSearchService registerSearchService,
+                           IErnpClient ernpClient,
                            IZmrClient zmrClient) {
+    this.registerSearchService = registerSearchService;
     this.ernpClient = ernpClient;
     this.zmrClient = zmrClient;
     this.handlers = handlers;
@@ -93,27 +97,22 @@ public class InitialSearchTask extends AbstractAuthServletTask {
       throws TaskExecutionException {
     try {
       final AuthProcessDataWrapper authProcessData = pendingReq.getSessionData(AuthProcessDataWrapper.class);
-      final ILightResponse eidasResponse = authProcessData
-          .getGenericDataFromSession(DATA_FULL_EIDAS_RESPONSE, ILightResponse.class);
-
-      final SimpleEidasData eidData = convertSimpleMapToSimpleData(convertEidasAttrToSimpleMap(
-          eidasResponse.getAttributes().getAttributeMap()));
-
-      final String bpK = step2RegisterSearchWithPersonidentifier(executionContext, eidData, authProcessData);
-      authProcessData.setGenericDataToSession(DATA_RESULT_MATCHING_BPK, bpK);
-      authProcessData.setGenericDataToSession(DATA_SIMPLE_EIDAS, eidData);
+      final SimpleEidasData eidasData = convertEidasAttrToSimpleData(authProcessData);
+      final String bpk = step2RegisterSearchWithPersonIdentifier(executionContext, eidasData, authProcessData);
+      authProcessData.setGenericDataToSession(DATA_RESULT_MATCHING_BPK, bpk);
+      authProcessData.setGenericDataToSession(DATA_SIMPLE_EIDAS, eidasData);
     } catch (final Exception e) {
       log.error("Initial search FAILED.", e);
       throw new TaskExecutionException(pendingReq, "Initial search FAILED.", e);
     }
   }
 
-  private String step2RegisterSearchWithPersonidentifier(
+  private String step2RegisterSearchWithPersonIdentifier(
       ExecutionContext executionContext, SimpleEidasData eidData, AuthProcessDataWrapper authProcessData)
       throws TaskExecutionException {
-    log.trace("Starting step2RegisterSearchWithPersonidentifier");
+    log.trace("Starting step2RegisterSearchWithPersonIdentifier");
     String personIdentifier = eidData.getPseudonym();
-    MergedRegisterSearchResult result = searchInZmrAndErnp(personIdentifier);
+    MergedRegisterSearchResult result = searchWithPersonIdentifier(personIdentifier);
     //store data in session
     try {
       authProcessData.setGenericDataToSession(DATA_INITIAL_REGISTER_RESULT, result);
@@ -196,19 +195,13 @@ public class InitialSearchTask extends AbstractAuthServletTask {
                                    MergedRegisterSearchResult countrySpecificDetailSearchResult,
                                    SimpleEidasData eidData) throws TaskExecutionException {
     log.trace("Starting step7aKittProcess");
-    return Utils.step7aKittProcess(ernpClient, zmrClient, initialSearchResult, countrySpecificDetailSearchResult,
+    return registerSearchService.step7aKittProcess(initialSearchResult, countrySpecificDetailSearchResult,
         eidData, pendingReq);
   }
 
   private String step8RegisterSearchWithMds(ExecutionContext executionContext, SimpleEidasData eidData) {
     log.trace("Starting step8RegisterSearchWithMds");
-    List<RegisterResult> resultsZmr =
-        zmrClient.searchWithMds(eidData.getGivenName(), eidData.getFamilyName(), eidData.getDateOfBirth());
-
-    List<RegisterResult> resultsErnp =
-        ernpClient.searchWithMds(eidData.getGivenName(), eidData.getFamilyName(), eidData.getDateOfBirth());
-
-    MergedRegisterSearchResult mdsSearchResult = new MergedRegisterSearchResult(resultsZmr, resultsErnp);
+    MergedRegisterSearchResult mdsSearchResult = searchWithMds(eidData);
     if (mdsSearchResult.getResultCount() == 0) {
       executionContext.put(TRANSITION_TO_CREATE_NEW_ERNB_ENTRY_TASK, true);
     } else {
@@ -219,12 +212,29 @@ public class InitialSearchTask extends AbstractAuthServletTask {
     return null;
   }
 
-  private MergedRegisterSearchResult searchInZmrAndErnp(String personIdentifier) {
+  @NotNull
+  private MergedRegisterSearchResult searchWithMds(SimpleEidasData eidData) {
+    List<RegisterResult> resultsZmr =
+        zmrClient.searchWithMds(eidData.getGivenName(), eidData.getFamilyName(), eidData.getDateOfBirth());
+    List<RegisterResult> resultsErnp =
+        ernpClient.searchWithMds(eidData.getGivenName(), eidData.getFamilyName(), eidData.getDateOfBirth());
+    return new MergedRegisterSearchResult(resultsZmr, resultsErnp);
+  }
+
+  private MergedRegisterSearchResult searchWithPersonIdentifier(String personIdentifier) {
     List<RegisterResult> resultsZmr = zmrClient.searchWithPersonIdentifier(personIdentifier);
     List<RegisterResult> resultsErnp = ernpClient.searchWithPersonIdentifier(personIdentifier);
     return new MergedRegisterSearchResult(resultsZmr, resultsErnp);
   }
 
+  @NotNull
+  private SimpleEidasData convertEidasAttrToSimpleData(AuthProcessDataWrapper authProcessData)
+      throws EidasAttributeException {
+    final ILightResponse eidasResponse = authProcessData
+        .getGenericDataFromSession(DATA_FULL_EIDAS_RESPONSE, ILightResponse.class);
+    return convertSimpleMapToSimpleData(convertEidasAttrToSimpleMap(eidasResponse.getAttributes().getAttributeMap()));
+  }
+
   private SimpleEidasData convertSimpleMapToSimpleData(Map<String, Object> eidasAttrMap)
       throws EidasAttributeException {
     SimpleEidasData result = new SimpleEidasData();
@@ -260,7 +270,6 @@ public class InitialSearchTask extends AbstractAuthServletTask {
         if (attribute != null) {
           result.put(el.getFriendlyName(), attribute);
           log.trace("Find attr '{}' with value: {}", el.getFriendlyName(), attribute.toString());
-
         } else {
           log.info("Ignore empty 'DateTime' attribute");
         }
@@ -269,7 +278,6 @@ public class InitialSearchTask extends AbstractAuthServletTask {
         if (addressAttribute != null) {
           result.put(el.getFriendlyName(), addressAttribute);
           log.trace("Find attr '{}' with value: {}", el.getFriendlyName(), addressAttribute.toString());
-
         } else {
           log.info("Ignore empty 'PostalAddress' attribute");
         }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask.java
index 44e13d78..74af7be4 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask.java
@@ -23,38 +23,18 @@
 
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks;
 
-import java.io.IOException;
-import java.util.HashMap;
-import java.util.List;
-import java.util.Set;
-
-import javax.servlet.http.HttpServletRequest;
-import javax.servlet.http.HttpServletResponse;
-import javax.xml.transform.TransformerException;
-
-import org.apache.commons.lang3.StringUtils;
-import org.opensaml.core.xml.io.MarshallingException;
-import org.opensaml.messaging.decoder.MessageDecodingException;
-import org.opensaml.saml.saml2.core.Response;
-import org.opensaml.saml.saml2.core.StatusCode;
-import org.opensaml.saml.saml2.metadata.IDPSSODescriptor;
-import org.springframework.beans.factory.annotation.Autowired;
-import org.springframework.stereotype.Component;
-
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.MergedRegisterSearchResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleMobileSignatureData;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernp.IErnpClient;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.InvalidUserInputException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.ManualFixNecessaryException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthConstants;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthEventConstants;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.provider.IdAustriaClientAuthCredentialProvider;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.provider.IdAustriaClientAuthMetadataProvider;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.Utils;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.IZmrClient;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.RegisterSearchService;
 import at.gv.egiz.eaaf.core.api.data.PvpAttributeDefinitions;
 import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
 import at.gv.egiz.eaaf.core.exceptions.EaafBuilderException;
@@ -78,9 +58,25 @@ import at.gv.egiz.eaaf.modules.pvp2.sp.exception.AssertionValidationExeption;
 import at.gv.egiz.eaaf.modules.pvp2.sp.exception.AuthnResponseValidationException;
 import at.gv.egiz.eaaf.modules.pvp2.sp.impl.utils.AssertionAttributeExtractor;
 import lombok.extern.slf4j.Slf4j;
+import org.apache.commons.lang3.StringUtils;
+import org.opensaml.core.xml.io.MarshallingException;
+import org.opensaml.messaging.decoder.MessageDecodingException;
+import org.opensaml.saml.saml2.core.Response;
+import org.opensaml.saml.saml2.core.StatusCode;
+import org.opensaml.saml.saml2.metadata.IDPSSODescriptor;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.stereotype.Component;
+
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+import javax.xml.transform.TransformerException;
+import java.io.IOException;
+import java.util.HashMap;
+import java.util.List;
+import java.util.Set;
 
 /**
- * Task that receives the SAML2 response from ID Austria system. 
+ * Task that receives the SAML2 response from ID Austria system.
  *
  * @author tlenz
  */
@@ -91,6 +87,8 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask extends
   @Autowired
   private SamlVerificationEngine samlVerificationEngine;
   @Autowired
+  private RegisterSearchService registerSearchService;
+  @Autowired
   private IdAustriaClientAuthCredentialProvider credentialProvider;
   @Autowired(required = true)
   IdAustriaClientAuthMetadataProvider metadataProvider;
@@ -112,15 +110,6 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask extends
   private static final String ERROR_MSG_03 =
       "PVP response validation FAILED.";
 
-
-  private final IErnpClient ernpClient;
-  private final IZmrClient zmrClient;
-
-  public ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask(IErnpClient ernpClient, IZmrClient zmrClient) {
-    this.ernpClient = ernpClient;
-    this.zmrClient = zmrClient;
-  }
-
   @Override
   public void execute(ExecutionContext executionContext, HttpServletRequest request, HttpServletResponse response)
       throws TaskExecutionException {
@@ -129,7 +118,7 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask extends
       InboundMessage msg = null;
       IDecoder decoder = null;
       EaafUriCompare comperator = null;
-      
+
       // select Response Binding
       if (request.getMethod().equalsIgnoreCase("POST")) {
         decoder = new PostBinding();
@@ -188,20 +177,20 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask extends
         final AssertionAttributeExtractor extractor =
             new AssertionAttributeExtractor(processedMsg.getFirst().getResponse());
 
-        
-        
-        
+
+
+
         /*
-         * SAML2 response ist bereits vollständig validiert und die Attribute können aus dem 
+         * SAML2 response ist bereits vollständig validiert und die Attribute können aus dem
          * <AssertionAttributeExtractor extractor> ausgelesen werden.
          * Die AttributeNamen sind entsprechend PVP Spezifikation, z.B. PvpAttributeDefinitions.GIVEN_NAME_NAME
-         * 
+         *
          * ---------------------------------------------------------------------------------------------
-         * 
+         *
          * TODO: ab hier müssen wir wohl was anpassen
-         * 
+         *
          */
-        
+
         //load additional search-data from pendingRequest
         final AuthProcessDataWrapper authProcessData = pendingReq.getSessionData(AuthProcessDataWrapper.class);
         MergedRegisterSearchResult initialSearchResult =
@@ -210,7 +199,7 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask extends
         SimpleEidasData eidData = authProcessData.getGenericDataFromSession(Constants.DATA_SIMPLE_EIDAS,
             SimpleEidasData.class);
 
-        
+
         SimpleMobileSignatureData simpleMobileSignatureData =
             getAuthDataFromInterfederation(extractor, authProcessData);
         if (!simpleMobileSignatureData.equalsSimpleEidasData(eidData)) {
@@ -219,14 +208,13 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask extends
         }
         String bpkzp = simpleMobileSignatureData.getBpk();
 
-        MergedRegisterSearchResult result = searchInZmrAndErnp(bpkzp);
+        MergedRegisterSearchResult result = searchWithBpkZp(bpkzp);
         if (result.getResultCount() == 0) {
           //go to step 16
           executionContext.put(Constants.TRANSITION_TO_GENERATE_GUI_QUERY_AUSTRIAN_RESIDENCE_TASK, true);
           return;
         } else if (result.getResultCount() == 1) {
-          String bpk =
-              Utils.step7aKittProcess(ernpClient, zmrClient, initialSearchResult, result, eidData, pendingReq);
+          String bpk = registerSearchService.step7aKittProcess(initialSearchResult, result, eidData, pendingReq);
           authProcessData.setGenericDataToSession(Constants.DATA_RESULT_MATCHING_BPK, bpk);
           //node 110
         } else if (result.getResultCount() > 1) {
@@ -295,7 +283,7 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask extends
       return Pair.newInstance(msg, false);
 
     } else {
-      log.info("Receive StatusCode {} from 'ms-specific eIDAS node'.", 
+      log.info("Receive StatusCode {} from 'ms-specific eIDAS node'.",
           samlResp.getStatus().getStatusCode().getValue());
       StatusCode subStatusCode = getSubStatusCode(samlResp);
       if (subStatusCode != null
@@ -328,7 +316,7 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask extends
         && StringUtils.isNotEmpty(samlResp.getStatus().getStatusCode().getStatusCode().getValue())) {
       return samlResp.getStatus().getStatusCode().getStatusCode();
     }
-    
+
     return null;
   }
 
@@ -379,8 +367,8 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask extends
     return simpleMobileSignatureData;
   }
 
-  
-  private MergedRegisterSearchResult searchInZmrAndErnp(String bpkzp) {
+
+  private MergedRegisterSearchResult searchWithBpkZp(String bpkzp) {
     List<RegisterResult> resultsZmr = zmrClient.searchWithBpkZp(bpkzp);
     List<RegisterResult> resultsErnp = ernpClient.searchWithBpkZp(bpkzp);
     return new MergedRegisterSearchResult(resultsZmr, resultsErnp);
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/Utils.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/Utils.java
deleted file mode 100644
index 5612d137..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/Utils.java
+++ /dev/null
@@ -1,48 +0,0 @@
-package at.asitplus.eidas.specific.modules.auth.eidas.v2.utils;
-
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.MergedRegisterSearchResult;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernp.IErnpClient;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.WorkflowException;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.IZmrClient;
-import at.gv.egiz.eaaf.core.api.IRequest;
-import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
-
-public class Utils {
-
-  /**
-   * Automatic process to fix the register entries.
-   *
-   * @param ernpClient ErnP client
-   * @param zmrClient ZMR client
-   * @param initialSearchResult Result of initial register search
-   * @param specificDetailSearchResult Result of last register search
-   * @param eidData Received eidas data
-   * @param pendingReq Pending request
-   * @return The bpk
-   * @throws TaskExecutionException if an error occurs during the register update
-   */
-  public static String step7aKittProcess(IErnpClient ernpClient, IZmrClient zmrClient,
-                                         MergedRegisterSearchResult initialSearchResult,
-                                         MergedRegisterSearchResult specificDetailSearchResult,
-                                         SimpleEidasData eidData, IRequest pendingReq) throws TaskExecutionException {
-    try {
-      if (initialSearchResult.getResultCount() != 0) {
-        throw new WorkflowException("initialSearchResult.getResultCount() != 0");
-      }
-      if (specificDetailSearchResult.getResultCount() != 1) {
-        throw new WorkflowException("countrySpecificDetailSearchResult.getResultCount() != 1");
-      }
-      if (specificDetailSearchResult.getResultsZmr().size() == 1) {
-        zmrClient.update(specificDetailSearchResult.getResultsZmr().get(0), eidData);
-      }
-      if (specificDetailSearchResult.getResultsErnp().size() == 1) {
-        ernpClient.update(specificDetailSearchResult.getResultsErnp().get(0), eidData);
-      }
-      String bpK = specificDetailSearchResult.getBpk();
-      return bpK;
-    } catch (WorkflowException e) {
-      throw new TaskExecutionException(pendingReq, "Step7a failed.", e);
-    }
-  }
-}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml
index 07553c22..82cf7e95 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml
@@ -66,6 +66,8 @@
         class="at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.ItSpecificDetailSearchProcessor">
   </bean>
 
+  <bean id="registerSearchService"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.service.RegisterSearchService" />
 
   <!-- ID Austria client specific services -->
   <bean id="idAustriaClientAuthCredentialProvider"
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskTest.java
index d855c98d..ae2bc93e 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskTest.java
@@ -29,6 +29,7 @@ import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernp.IErnpClient;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.ManualFixNecessaryException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.DeSpecificDetailSearchProcessor;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.ItSpecificDetailSearchProcessor;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.RegisterSearchService;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.InitialSearchTask;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.IZmrClient;
 import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
@@ -85,6 +86,7 @@ public class InitialSearchTaskTest {
   private IZmrClient zmrClient;
   @Mock
   private IErnpClient ernpClient;
+  private RegisterSearchService registerSearchService;
 
   final ExecutionContext executionContext = new ExecutionContextImpl();
   private TestRequestImpl pendingReq;
@@ -103,7 +105,8 @@ public class InitialSearchTaskTest {
   @Before
   public void setUp() throws URISyntaxException, EaafStorageException {
     MockitoAnnotations.initMocks(this);
-    task = new InitialSearchTask(new ArrayList<>(), ernpClient, zmrClient);
+    registerSearchService = new RegisterSearchService(zmrClient, ernpClient);
+    task = new InitialSearchTask(new ArrayList<>(), registerSearchService, ernpClient, zmrClient);
 
     MockHttpServletRequest httpReq = new MockHttpServletRequest("POST", "https://localhost/authhandler");
     MockHttpServletResponse httpResp = new MockHttpServletResponse();
@@ -250,7 +253,7 @@ public class InitialSearchTaskTest {
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
     task = new InitialSearchTask(
         Collections.singletonList(new ItSpecificDetailSearchProcessor(ernpClient, zmrClient)),
-        ernpClient, zmrClient);
+        registerSearchService, ernpClient, zmrClient);
 
     task.execute(pendingReq1, executionContext);
 
@@ -280,7 +283,7 @@ public class InitialSearchTaskTest {
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
     task = new InitialSearchTask(
         Collections.singletonList(new DeSpecificDetailSearchProcessor(ernpClient, zmrClient)),
-        ernpClient, zmrClient);
+        registerSearchService, ernpClient, zmrClient);
 
     task.execute(pendingReq1, executionContext);
 
@@ -316,7 +319,7 @@ public class InitialSearchTaskTest {
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
     task = new InitialSearchTask(
         Collections.singletonList(new DeSpecificDetailSearchProcessor(ernpClient, zmrClient)),
-        ernpClient, zmrClient);
+        registerSearchService, ernpClient, zmrClient);
 
     TaskExecutionException exception = assertThrows(TaskExecutionException.class,
         () -> task.execute(pendingReq1, executionContext));
@@ -349,7 +352,7 @@ public class InitialSearchTaskTest {
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
     task = new InitialSearchTask(
         Collections.singletonList(new ItSpecificDetailSearchProcessor(ernpClient, zmrClient)),
-        ernpClient, zmrClient);
+        registerSearchService, ernpClient, zmrClient);
 
     TaskExecutionException exception = assertThrows(TaskExecutionException.class,
         () -> task.execute(pendingReq1, executionContext));
-- 
cgit v1.2.3


From 5eb83e0ca367958c81a7b0ee2cbd047482dd1974 Mon Sep 17 00:00:00 2001
From: Christian Kollmann <christian.kollmann@a-sit.at>
Date: Mon, 22 Feb 2021 14:06:16 +0100
Subject: Move country specific search in registers into common service

---
 .../CountrySpecificDetailSearchProcessor.java      | 22 ++---------
 .../handler/DeSpecificDetailSearchProcessor.java   | 25 ++++++------
 .../handler/ItSpecificDetailSearchProcessor.java   | 21 ++++++-----
 .../eidas/v2/service/RegisterSearchService.java    | 44 ++++++++++++++++++++--
 .../auth/eidas/v2/tasks/InitialSearchTask.java     | 37 +++---------------
 ...eSignatureResponseAndSearchInRegistersTask.java |  8 +---
 .../src/main/resources/eidas_v2_auth.beans.xml     |  4 +-
 .../eidas/v2/test/tasks/InitialSearchTaskTest.java | 18 ++++-----
 8 files changed, 85 insertions(+), 94 deletions(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/CountrySpecificDetailSearchProcessor.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/CountrySpecificDetailSearchProcessor.java
index c5b3b231..6e8f7fce 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/CountrySpecificDetailSearchProcessor.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/CountrySpecificDetailSearchProcessor.java
@@ -25,27 +25,13 @@ package at.asitplus.eidas.specific.modules.auth.eidas.v2.handler;
 
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.MergedRegisterSearchResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernp.IErnpClient;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.IZmrClient;
 
-public abstract class CountrySpecificDetailSearchProcessor {
-
-  protected IErnpClient ernbClient;
-  protected IZmrClient zmrClient;
-
-  public CountrySpecificDetailSearchProcessor(IErnpClient ernbClient, IZmrClient zmrClient) {
-    this.ernbClient = ernbClient;
-    this.zmrClient = zmrClient;
-  }
+public interface CountrySpecificDetailSearchProcessor {
 
   /**
    * Get a friendlyName of this post-processor implementation.
-   *
-   * @return
    */
-  public String getName() {
-    return this.getClass().getName();
-  }
+  String getName();
 
   /**
    * Check if this postProcessor is sensitive for a specific country.
@@ -54,8 +40,8 @@ public abstract class CountrySpecificDetailSearchProcessor {
    * @param eidData     eID data
    * @return true if this implementation can handle the country, otherwise false
    */
-  public abstract boolean canHandle(String countryCode, SimpleEidasData eidData);
+  boolean canHandle(String countryCode, SimpleEidasData eidData);
 
-  public abstract MergedRegisterSearchResult search(SimpleEidasData eidData);
+  MergedRegisterSearchResult search(SimpleEidasData eidData);
 
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/DeSpecificDetailSearchProcessor.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/DeSpecificDetailSearchProcessor.java
index 544d5b0c..904c41a1 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/DeSpecificDetailSearchProcessor.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/DeSpecificDetailSearchProcessor.java
@@ -25,17 +25,20 @@ package at.asitplus.eidas.specific.modules.auth.eidas.v2.handler;
 
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.MergedRegisterSearchResult;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernp.IErnpClient;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.IZmrClient;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.RegisterSearchService;
 
-import java.util.List;
+public class DeSpecificDetailSearchProcessor implements CountrySpecificDetailSearchProcessor {
 
-public class DeSpecificDetailSearchProcessor extends CountrySpecificDetailSearchProcessor {
+  private final RegisterSearchService registerSearchService;
 
-  public DeSpecificDetailSearchProcessor(IErnpClient ernbClient, IZmrClient zmrClient) {
-    super(ernbClient, zmrClient);
+  public DeSpecificDetailSearchProcessor(RegisterSearchService registerSearchService) {
+    this.registerSearchService = registerSearchService;
+  }
+
+  @Override
+  public String getName() {
+    return this.getClass().getName();
   }
 
   @Override
@@ -54,12 +57,6 @@ public class DeSpecificDetailSearchProcessor extends CountrySpecificDetailSearch
 
   @Override
   public MergedRegisterSearchResult search(SimpleEidasData eidData) {
-    List<RegisterResult> resultsZmr =
-        zmrClient.searchDeSpecific(eidData.getGivenName(), eidData.getFamilyName(), eidData.getDateOfBirth(),
-            eidData.getPlaceOfBirth(), eidData.getBirthName());
-    List<RegisterResult> resultsErnb =
-        ernbClient.searchDeSpecific(eidData.getGivenName(), eidData.getFamilyName(), eidData.getDateOfBirth(),
-            eidData.getPlaceOfBirth(), eidData.getBirthName());
-    return new MergedRegisterSearchResult(resultsZmr, resultsErnb);
+    return registerSearchService.searchDeSpecific(eidData);
   }
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ItSpecificDetailSearchProcessor.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ItSpecificDetailSearchProcessor.java
index 370a111c..7e74a85c 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ItSpecificDetailSearchProcessor.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ItSpecificDetailSearchProcessor.java
@@ -25,17 +25,20 @@ package at.asitplus.eidas.specific.modules.auth.eidas.v2.handler;
 
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.MergedRegisterSearchResult;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernp.IErnpClient;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.IZmrClient;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.RegisterSearchService;
 
-import java.util.List;
+public class ItSpecificDetailSearchProcessor implements CountrySpecificDetailSearchProcessor {
 
-public class ItSpecificDetailSearchProcessor extends CountrySpecificDetailSearchProcessor {
+  private final RegisterSearchService registerSearchService;
 
-  public ItSpecificDetailSearchProcessor(IErnpClient ernbClient, IZmrClient zmrClient) {
-    super(ernbClient, zmrClient);
+  public ItSpecificDetailSearchProcessor(RegisterSearchService registerSearchService) {
+    this.registerSearchService = registerSearchService;
+  }
+
+  @Override
+  public String getName() {
+    return this.getClass().getName();
   }
 
   @Override
@@ -51,8 +54,6 @@ public class ItSpecificDetailSearchProcessor extends CountrySpecificDetailSearch
 
   @Override
   public MergedRegisterSearchResult search(SimpleEidasData eidData) {
-    List<RegisterResult> resultsZmr = zmrClient.searchItSpecific(eidData.getTaxNumber());
-    List<RegisterResult> resultsErnb = ernbClient.searchItSpecific(eidData.getTaxNumber());
-    return new MergedRegisterSearchResult(resultsZmr, resultsErnb);
+    return registerSearchService.searchItSpecific(eidData);
   }
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/service/RegisterSearchService.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/service/RegisterSearchService.java
index 75374872..a3062d0d 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/service/RegisterSearchService.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/service/RegisterSearchService.java
@@ -1,6 +1,7 @@
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.service;
 
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.MergedRegisterSearchResult;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernp.IErnpClient;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.WorkflowException;
@@ -10,6 +11,8 @@ import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
 import lombok.extern.slf4j.Slf4j;
 import org.springframework.stereotype.Service;
 
+import java.util.List;
+
 @Slf4j
 @Service("registerSearchService")
 public class RegisterSearchService {
@@ -22,7 +25,6 @@ public class RegisterSearchService {
     this.ernpClient = ernpClient;
   }
 
-
   /**
    * Automatic process to fix the register entries.
    *
@@ -44,14 +46,50 @@ public class RegisterSearchService {
         throw new WorkflowException("countrySpecificDetailSearchResult.getResultCount() != 1");
       }
       if (specificDetailSearchResult.getResultsZmr().size() == 1) {
-        this.zmrClient.update(specificDetailSearchResult.getResultsZmr().get(0), eidData);
+        zmrClient.update(specificDetailSearchResult.getResultsZmr().get(0), eidData);
       }
       if (specificDetailSearchResult.getResultsErnp().size() == 1) {
-        this.ernpClient.update(specificDetailSearchResult.getResultsErnp().get(0), eidData);
+        ernpClient.update(specificDetailSearchResult.getResultsErnp().get(0), eidData);
       }
       return specificDetailSearchResult.getBpk();
     } catch (WorkflowException e) {
       throw new TaskExecutionException(pendingReq, "Step7a failed.", e);
     }
   }
+
+  public MergedRegisterSearchResult searchWithMds(SimpleEidasData eidData) {
+    List<RegisterResult> resultsZmr =
+        zmrClient.searchWithMds(eidData.getGivenName(), eidData.getFamilyName(), eidData.getDateOfBirth());
+    List<RegisterResult> resultsErnp =
+        ernpClient.searchWithMds(eidData.getGivenName(), eidData.getFamilyName(), eidData.getDateOfBirth());
+    return new MergedRegisterSearchResult(resultsZmr, resultsErnp);
+  }
+
+  public MergedRegisterSearchResult searchWithPersonIdentifier(SimpleEidasData eidData) {
+    List<RegisterResult> resultsZmr = zmrClient.searchWithPersonIdentifier(eidData.getPseudonym());
+    List<RegisterResult> resultsErnp = ernpClient.searchWithPersonIdentifier(eidData.getPseudonym());
+    return new MergedRegisterSearchResult(resultsZmr, resultsErnp);
+  }
+
+  public MergedRegisterSearchResult searchItSpecific(SimpleEidasData eidData) {
+    List<RegisterResult> resultsZmr = zmrClient.searchItSpecific(eidData.getTaxNumber());
+    List<RegisterResult> resultsErnb = ernpClient.searchItSpecific(eidData.getTaxNumber());
+    return new MergedRegisterSearchResult(resultsZmr, resultsErnb);
+  }
+
+  public MergedRegisterSearchResult searchDeSpecific(SimpleEidasData eidData) {
+    List<RegisterResult> resultsZmr =
+        zmrClient.searchDeSpecific(eidData.getGivenName(), eidData.getFamilyName(), eidData.getDateOfBirth(),
+            eidData.getPlaceOfBirth(), eidData.getBirthName());
+    List<RegisterResult> resultsErnb =
+        ernpClient.searchDeSpecific(eidData.getGivenName(), eidData.getFamilyName(), eidData.getDateOfBirth(),
+            eidData.getPlaceOfBirth(), eidData.getBirthName());
+    return new MergedRegisterSearchResult(resultsZmr, resultsErnb);
+  }
+
+  public MergedRegisterSearchResult searchWithBpkZp(String bpkzp) {
+    List<RegisterResult> resultsZmr = zmrClient.searchWithBpkZp(bpkzp);
+    List<RegisterResult> resultsErnp = ernpClient.searchWithBpkZp(bpkzp);
+    return new MergedRegisterSearchResult(resultsZmr, resultsErnp);
+  }
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
index 7f4526ad..4fdf3cd2 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
@@ -24,15 +24,12 @@
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks;
 
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.MergedRegisterSearchResult;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernp.IErnpClient;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidasAttributeException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.ManualFixNecessaryException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.WorkflowException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.CountrySpecificDetailSearchProcessor;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.RegisterSearchService;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.IZmrClient;
 import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
 import at.gv.egiz.eaaf.core.exceptions.EaafStorageException;
 import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
@@ -70,24 +67,17 @@ import static at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.EidasRespon
 public class InitialSearchTask extends AbstractAuthServletTask {
 
   private final List<CountrySpecificDetailSearchProcessor> handlers;
-  private final IErnpClient ernpClient;
-  private final IZmrClient zmrClient;
   private final RegisterSearchService registerSearchService;
 
   /**
    * Constructor.
-   *  @param handlers   List of countrySpecificSearchProcessors
-   * @param registerSearchService
-   * @param ernpClient Ernp client
-   * @param zmrClient  ZMR client
+   *
+   * @param handlers              List of countrySpecificSearchProcessors
+   * @param registerSearchService Service for register search access
    */
   public InitialSearchTask(List<CountrySpecificDetailSearchProcessor> handlers,
-                           RegisterSearchService registerSearchService,
-                           IErnpClient ernpClient,
-                           IZmrClient zmrClient) {
+                           RegisterSearchService registerSearchService) {
     this.registerSearchService = registerSearchService;
-    this.ernpClient = ernpClient;
-    this.zmrClient = zmrClient;
     this.handlers = handlers;
     log.info("Init with {} country specific detail search services", handlers.size());
   }
@@ -112,7 +102,7 @@ public class InitialSearchTask extends AbstractAuthServletTask {
       throws TaskExecutionException {
     log.trace("Starting step2RegisterSearchWithPersonIdentifier");
     String personIdentifier = eidData.getPseudonym();
-    MergedRegisterSearchResult result = searchWithPersonIdentifier(personIdentifier);
+    MergedRegisterSearchResult result = registerSearchService.searchWithPersonIdentifier(eidData);
     //store data in session
     try {
       authProcessData.setGenericDataToSession(DATA_INITIAL_REGISTER_RESULT, result);
@@ -201,7 +191,7 @@ public class InitialSearchTask extends AbstractAuthServletTask {
 
   private String step8RegisterSearchWithMds(ExecutionContext executionContext, SimpleEidasData eidData) {
     log.trace("Starting step8RegisterSearchWithMds");
-    MergedRegisterSearchResult mdsSearchResult = searchWithMds(eidData);
+    MergedRegisterSearchResult mdsSearchResult = registerSearchService.searchWithMds(eidData);
     if (mdsSearchResult.getResultCount() == 0) {
       executionContext.put(TRANSITION_TO_CREATE_NEW_ERNB_ENTRY_TASK, true);
     } else {
@@ -212,21 +202,6 @@ public class InitialSearchTask extends AbstractAuthServletTask {
     return null;
   }
 
-  @NotNull
-  private MergedRegisterSearchResult searchWithMds(SimpleEidasData eidData) {
-    List<RegisterResult> resultsZmr =
-        zmrClient.searchWithMds(eidData.getGivenName(), eidData.getFamilyName(), eidData.getDateOfBirth());
-    List<RegisterResult> resultsErnp =
-        ernpClient.searchWithMds(eidData.getGivenName(), eidData.getFamilyName(), eidData.getDateOfBirth());
-    return new MergedRegisterSearchResult(resultsZmr, resultsErnp);
-  }
-
-  private MergedRegisterSearchResult searchWithPersonIdentifier(String personIdentifier) {
-    List<RegisterResult> resultsZmr = zmrClient.searchWithPersonIdentifier(personIdentifier);
-    List<RegisterResult> resultsErnp = ernpClient.searchWithPersonIdentifier(personIdentifier);
-    return new MergedRegisterSearchResult(resultsZmr, resultsErnp);
-  }
-
   @NotNull
   private SimpleEidasData convertEidasAttrToSimpleData(AuthProcessDataWrapper authProcessData)
       throws EidasAttributeException {
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask.java
index 74af7be4..09f2d54c 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask.java
@@ -25,7 +25,6 @@ package at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks;
 
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.MergedRegisterSearchResult;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleMobileSignatureData;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.InvalidUserInputException;
@@ -208,7 +207,7 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask extends
         }
         String bpkzp = simpleMobileSignatureData.getBpk();
 
-        MergedRegisterSearchResult result = searchWithBpkZp(bpkzp);
+        MergedRegisterSearchResult result = registerSearchService.searchWithBpkZp(bpkzp);
         if (result.getResultCount() == 0) {
           //go to step 16
           executionContext.put(Constants.TRANSITION_TO_GENERATE_GUI_QUERY_AUSTRIAN_RESIDENCE_TASK, true);
@@ -368,9 +367,4 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask extends
   }
 
 
-  private MergedRegisterSearchResult searchWithBpkZp(String bpkzp) {
-    List<RegisterResult> resultsZmr = zmrClient.searchWithBpkZp(bpkzp);
-    List<RegisterResult> resultsErnp = ernpClient.searchWithBpkZp(bpkzp);
-    return new MergedRegisterSearchResult(resultsZmr, resultsErnp);
-  }
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml
index 82cf7e95..34046e55 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml
@@ -58,11 +58,11 @@
     <property name="priority" value="0" />
   </bean>
 
-  <bean id="DE-Specific-Search"
+  <bean id="deSpecificDetailSearchProcessor"
         class="at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.DeSpecificDetailSearchProcessor">
   </bean>
 
-  <bean id="IT-Specific-Search"
+  <bean id="itSpecificDetailSearchProcessor"
         class="at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.ItSpecificDetailSearchProcessor">
   </bean>
 
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskTest.java
index ae2bc93e..4dd6b92e 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskTest.java
@@ -106,7 +106,7 @@ public class InitialSearchTaskTest {
   public void setUp() throws URISyntaxException, EaafStorageException {
     MockitoAnnotations.initMocks(this);
     registerSearchService = new RegisterSearchService(zmrClient, ernpClient);
-    task = new InitialSearchTask(new ArrayList<>(), registerSearchService, ernpClient, zmrClient);
+    task = new InitialSearchTask(new ArrayList<>(), registerSearchService);
 
     MockHttpServletRequest httpReq = new MockHttpServletRequest("POST", "https://localhost/authhandler");
     MockHttpServletResponse httpResp = new MockHttpServletResponse();
@@ -252,8 +252,8 @@ public class InitialSearchTaskTest {
             randomBirthDate, null, null, taxNumber, null)));
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
     task = new InitialSearchTask(
-        Collections.singletonList(new ItSpecificDetailSearchProcessor(ernpClient, zmrClient)),
-        registerSearchService, ernpClient, zmrClient);
+        Collections.singletonList(new ItSpecificDetailSearchProcessor(registerSearchService)),
+        registerSearchService);
 
     task.execute(pendingReq1, executionContext);
 
@@ -282,8 +282,8 @@ public class InitialSearchTaskTest {
             randomFamilyName, randomBirthDate, randomPlaceOfBirth, randomBirthName, null, null)));
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
     task = new InitialSearchTask(
-        Collections.singletonList(new DeSpecificDetailSearchProcessor(ernpClient, zmrClient)),
-        registerSearchService, ernpClient, zmrClient);
+        Collections.singletonList(new DeSpecificDetailSearchProcessor(registerSearchService)),
+        registerSearchService);
 
     task.execute(pendingReq1, executionContext);
 
@@ -318,8 +318,8 @@ public class InitialSearchTaskTest {
         randomBirthName)).thenReturn(zmrResultSpecific);
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
     task = new InitialSearchTask(
-        Collections.singletonList(new DeSpecificDetailSearchProcessor(ernpClient, zmrClient)),
-        registerSearchService, ernpClient, zmrClient);
+        Collections.singletonList(new DeSpecificDetailSearchProcessor(registerSearchService)),
+        registerSearchService);
 
     TaskExecutionException exception = assertThrows(TaskExecutionException.class,
         () -> task.execute(pendingReq1, executionContext));
@@ -351,8 +351,8 @@ public class InitialSearchTaskTest {
     Mockito.when(zmrClient.searchItSpecific(randomTaxNumber)).thenReturn(zmrResultSpecific);
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
     task = new InitialSearchTask(
-        Collections.singletonList(new ItSpecificDetailSearchProcessor(ernpClient, zmrClient)),
-        registerSearchService, ernpClient, zmrClient);
+        Collections.singletonList(new ItSpecificDetailSearchProcessor(registerSearchService)),
+        registerSearchService);
 
     TaskExecutionException exception = assertThrows(TaskExecutionException.class,
         () -> task.execute(pendingReq1, executionContext));
-- 
cgit v1.2.3


From 0725cce166b91725624e4cde694e9fde4e931bc9 Mon Sep 17 00:00:00 2001
From: Christian Kollmann <christian.kollmann@a-sit.at>
Date: Mon, 22 Feb 2021 14:31:47 +0100
Subject: Refactor exception throwing and some names

---
 .../specific/modules/auth/eidas/v2/Constants.java  |   2 +-
 .../eidas/v2/service/RegisterSearchService.java    |  57 +++++----
 .../auth/eidas/v2/tasks/InitialSearchTask.java     | 134 ++++++++++-----------
 .../ReceiveAustrianResidenceGuiResponseTask.java   |   2 +-
 .../eidas/v2/test/tasks/InitialSearchTaskTest.java |  60 ++++-----
 5 files changed, 126 insertions(+), 129 deletions(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java
index c6d24e34..c2fc44b9 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java
@@ -183,7 +183,7 @@ public class Constants {
   public static final String COUNTRY_CODE_DE = "DE";
   public static final String COUNTRY_CODE_IT = "IT";
 
-  public static final String TRANSITION_TO_CREATE_NEW_ERNB_ENTRY_TASK = "TASK_CreateNewErnpEntryTask";
+  public static final String TRANSITION_TO_CREATE_NEW_ERNP_ENTRY_TASK = "TASK_CreateNewErnpEntryTask";
   public static final String TRANSITION_TO_GENERATE_OTHER_LOGIN_METHOD_GUI_TASK =
       "TASK_GenerateOtherLoginMethodGuiTask";
   public static final String TRANSITION_TO_GENERATE_GUI_QUERY_AUSTRIAN_RESIDENCE_TASK =
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/service/RegisterSearchService.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/service/RegisterSearchService.java
index a3062d0d..6a41893b 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/service/RegisterSearchService.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/service/RegisterSearchService.java
@@ -30,14 +30,14 @@ public class RegisterSearchService {
    *
    * @param initialSearchResult Result of initial register search
    * @param specificDetailSearchResult Result of last register search
-   * @param eidData Received eidas data
+   * @param eidasData Received eidas data
    * @param pendingReq Pending request
    * @return The bpk
    * @throws TaskExecutionException if an error occurs during the register update
    */
   public String step7aKittProcess(MergedRegisterSearchResult initialSearchResult,
                                   MergedRegisterSearchResult specificDetailSearchResult,
-                                  SimpleEidasData eidData, IRequest pendingReq) throws TaskExecutionException {
+                                  SimpleEidasData eidasData, IRequest pendingReq) throws TaskExecutionException {
     try {
       if (initialSearchResult.getResultCount() != 0) {
         throw new WorkflowException("initialSearchResult.getResultCount() != 0");
@@ -46,10 +46,10 @@ public class RegisterSearchService {
         throw new WorkflowException("countrySpecificDetailSearchResult.getResultCount() != 1");
       }
       if (specificDetailSearchResult.getResultsZmr().size() == 1) {
-        zmrClient.update(specificDetailSearchResult.getResultsZmr().get(0), eidData);
+        zmrClient.update(specificDetailSearchResult.getResultsZmr().get(0), eidasData);
       }
       if (specificDetailSearchResult.getResultsErnp().size() == 1) {
-        ernpClient.update(specificDetailSearchResult.getResultsErnp().get(0), eidData);
+        ernpClient.update(specificDetailSearchResult.getResultsErnp().get(0), eidasData);
       }
       return specificDetailSearchResult.getBpk();
     } catch (WorkflowException e) {
@@ -57,39 +57,54 @@ public class RegisterSearchService {
     }
   }
 
-  public MergedRegisterSearchResult searchWithMds(SimpleEidasData eidData) {
+  /**
+   * Search with MDS (Given Name, Family Name, Date of Birth) in ZMR and ERnP.
+   */
+  public MergedRegisterSearchResult searchWithMds(SimpleEidasData eidasData) {
     List<RegisterResult> resultsZmr =
-        zmrClient.searchWithMds(eidData.getGivenName(), eidData.getFamilyName(), eidData.getDateOfBirth());
+        zmrClient.searchWithMds(eidasData.getGivenName(), eidasData.getFamilyName(), eidasData.getDateOfBirth());
     List<RegisterResult> resultsErnp =
-        ernpClient.searchWithMds(eidData.getGivenName(), eidData.getFamilyName(), eidData.getDateOfBirth());
+        ernpClient.searchWithMds(eidasData.getGivenName(), eidasData.getFamilyName(), eidasData.getDateOfBirth());
     return new MergedRegisterSearchResult(resultsZmr, resultsErnp);
   }
 
-  public MergedRegisterSearchResult searchWithPersonIdentifier(SimpleEidasData eidData) {
-    List<RegisterResult> resultsZmr = zmrClient.searchWithPersonIdentifier(eidData.getPseudonym());
-    List<RegisterResult> resultsErnp = ernpClient.searchWithPersonIdentifier(eidData.getPseudonym());
+  /**
+   * Search with Person Identifier (eIDAS Pseudonym) in ZMR and ERnP.
+   */
+  public MergedRegisterSearchResult searchWithPersonIdentifier(SimpleEidasData eidasData) {
+    List<RegisterResult> resultsZmr = zmrClient.searchWithPersonIdentifier(eidasData.getPseudonym());
+    List<RegisterResult> resultsErnp = ernpClient.searchWithPersonIdentifier(eidasData.getPseudonym());
     return new MergedRegisterSearchResult(resultsZmr, resultsErnp);
   }
 
-  public MergedRegisterSearchResult searchItSpecific(SimpleEidasData eidData) {
-    List<RegisterResult> resultsZmr = zmrClient.searchItSpecific(eidData.getTaxNumber());
-    List<RegisterResult> resultsErnb = ernpClient.searchItSpecific(eidData.getTaxNumber());
+  /**
+   * Search with Tax Number in ZMR and ERnP.
+   */
+  public MergedRegisterSearchResult searchItSpecific(SimpleEidasData eidasData) {
+    List<RegisterResult> resultsZmr = zmrClient.searchItSpecific(eidasData.getTaxNumber());
+    List<RegisterResult> resultsErnb = ernpClient.searchItSpecific(eidasData.getTaxNumber());
     return new MergedRegisterSearchResult(resultsZmr, resultsErnb);
   }
 
-  public MergedRegisterSearchResult searchDeSpecific(SimpleEidasData eidData) {
+  /**
+   * Search with Given Name, Family Name, Date of Birth, Place of Birth and Birth Name in ZMR and ERnP.
+   */
+  public MergedRegisterSearchResult searchDeSpecific(SimpleEidasData eidasData) {
     List<RegisterResult> resultsZmr =
-        zmrClient.searchDeSpecific(eidData.getGivenName(), eidData.getFamilyName(), eidData.getDateOfBirth(),
-            eidData.getPlaceOfBirth(), eidData.getBirthName());
+        zmrClient.searchDeSpecific(eidasData.getGivenName(), eidasData.getFamilyName(), eidasData.getDateOfBirth(),
+            eidasData.getPlaceOfBirth(), eidasData.getBirthName());
     List<RegisterResult> resultsErnb =
-        ernpClient.searchDeSpecific(eidData.getGivenName(), eidData.getFamilyName(), eidData.getDateOfBirth(),
-            eidData.getPlaceOfBirth(), eidData.getBirthName());
+        ernpClient.searchDeSpecific(eidasData.getGivenName(), eidasData.getFamilyName(), eidasData.getDateOfBirth(),
+            eidasData.getPlaceOfBirth(), eidasData.getBirthName());
     return new MergedRegisterSearchResult(resultsZmr, resultsErnb);
   }
 
-  public MergedRegisterSearchResult searchWithBpkZp(String bpkzp) {
-    List<RegisterResult> resultsZmr = zmrClient.searchWithBpkZp(bpkzp);
-    List<RegisterResult> resultsErnp = ernpClient.searchWithBpkZp(bpkzp);
+  /**
+   * Search with BPK-ZP in BMR and ERnP.
+   */
+  public MergedRegisterSearchResult searchWithBpkZp(String bpkZp) {
+    List<RegisterResult> resultsZmr = zmrClient.searchWithBpkZp(bpkZp);
+    List<RegisterResult> resultsErnp = ernpClient.searchWithBpkZp(bpkZp);
     return new MergedRegisterSearchResult(resultsZmr, resultsErnp);
   }
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
index 4fdf3cd2..8a2cac0d 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
@@ -44,6 +44,7 @@ import eu.eidas.auth.commons.protocol.eidas.impl.PostalAddress;
 import lombok.extern.slf4j.Slf4j;
 import org.apache.commons.lang3.StringUtils;
 import org.jetbrains.annotations.NotNull;
+import org.jetbrains.annotations.Nullable;
 import org.joda.time.DateTime;
 import org.springframework.stereotype.Component;
 
@@ -91,114 +92,115 @@ public class InitialSearchTask extends AbstractAuthServletTask {
       final String bpk = step2RegisterSearchWithPersonIdentifier(executionContext, eidasData, authProcessData);
       authProcessData.setGenericDataToSession(DATA_RESULT_MATCHING_BPK, bpk);
       authProcessData.setGenericDataToSession(DATA_SIMPLE_EIDAS, eidasData);
+    } catch (final TaskExecutionException e) {
+      log.error("Initial search failed", e);
+      throw e;
     } catch (final Exception e) {
-      log.error("Initial search FAILED.", e);
-      throw new TaskExecutionException(pendingReq, "Initial search FAILED.", e);
+      log.error("Initial search failed", e);
+      throw new TaskExecutionException(pendingReq, "Initial search failed", e);
     }
   }
 
   private String step2RegisterSearchWithPersonIdentifier(
-      ExecutionContext executionContext, SimpleEidasData eidData, AuthProcessDataWrapper authProcessData)
-      throws TaskExecutionException {
+      ExecutionContext executionContext, SimpleEidasData eidasData, AuthProcessDataWrapper authProcessData)
+      throws TaskExecutionException, EaafStorageException, ManualFixNecessaryException {
     log.trace("Starting step2RegisterSearchWithPersonIdentifier");
-    String personIdentifier = eidData.getPseudonym();
-    MergedRegisterSearchResult result = registerSearchService.searchWithPersonIdentifier(eidData);
-    //store data in session
-    try {
-      authProcessData.setGenericDataToSession(DATA_INITIAL_REGISTER_RESULT, result);
-    } catch (EaafStorageException e) {
-      throw new TaskExecutionException(pendingReq, "Initial search - Kitt Process necessary.", e);
-    }
-    if (result.getResultCount() == 0) {
-      return step5CheckAndPerformCountrySpecificSearchIfPossible(executionContext, result, eidData);
-    } else if (result.getResultCount() == 1) {
-      return step3CheckRegisterUpdateNecessary(result, eidData);
+    String personIdentifier = eidasData.getPseudonym();
+    MergedRegisterSearchResult registerData = registerSearchService.searchWithPersonIdentifier(eidasData);
+    authProcessData.setGenericDataToSession(DATA_INITIAL_REGISTER_RESULT, registerData);
+    switch (registerData.getResultCount()) {
+      case 0:
+        return step5CheckAndPerformCountrySpecificSearchIfPossible(executionContext, registerData, eidasData);
+      case 1:
+        return step3CheckRegisterUpdateNecessary(registerData, eidasData);
+      default:
+        throw new ManualFixNecessaryException(personIdentifier);
     }
-    throw new TaskExecutionException(pendingReq, "Initial search - Kitt Process necessary.",
-        new ManualFixNecessaryException(personIdentifier));
   }
 
-  private String step3CheckRegisterUpdateNecessary(MergedRegisterSearchResult result, SimpleEidasData eidData)
-      throws TaskExecutionException {
+  private String step3CheckRegisterUpdateNecessary(MergedRegisterSearchResult registerData, SimpleEidasData eidasData)
+      throws ManualFixNecessaryException {
     log.trace("Starting step3CheckRegisterUpdateNecessary");
     try {
-      if (eidData.equalsRegisterData(result)) {
-        //No update necessary, just return bpk
-        return result.getBpk();
+      if (eidasData.equalsRegisterData(registerData)) {
+        return registerData.getBpk();
       } else {
-        return step4UpdateRegisterData(result, eidData);
+        return step4UpdateRegisterData(registerData, eidasData);
       }
     } catch (WorkflowException e) {
-      throw new TaskExecutionException(pendingReq, "Initial search - Kitt Process necessary.", e);
+      throw new ManualFixNecessaryException(eidasData);
     }
   }
 
-  private String step4UpdateRegisterData(MergedRegisterSearchResult result,
-                                         SimpleEidasData eidData) throws WorkflowException {
+  private String step4UpdateRegisterData(MergedRegisterSearchResult registerData, SimpleEidasData eidasData)
+      throws WorkflowException {
     log.trace("Starting step4UpdateRegisterData");
-    log.debug("Update {} with {}", result, eidData);
+    log.debug("Update {} with {}", registerData, eidasData);
     //TODO wann rechtlich möglich?
 
-    return result.getBpk();
+    return registerData.getBpk();
   }
 
   private String step5CheckAndPerformCountrySpecificSearchIfPossible(
-      ExecutionContext executionContext, MergedRegisterSearchResult result, SimpleEidasData eidData)
-      throws TaskExecutionException {
+      ExecutionContext executionContext, MergedRegisterSearchResult registerData, SimpleEidasData eidasData)
+      throws TaskExecutionException, ManualFixNecessaryException {
     log.trace("Starting step5CheckAndPerformCountrySpecificSearchIfPossible");
-    String citizenCountry = eidData.getCitizenCountryCode();
-    CountrySpecificDetailSearchProcessor foundHandler = null;
-    for (final CountrySpecificDetailSearchProcessor el : handlers) {
-      if (el.canHandle(citizenCountry, eidData)) {
-        log.debug("Found suitable country specific search handler for {} by using: {}", citizenCountry, el.getName());
-        foundHandler = el;
-        break;
-      }
-    }
-    if (foundHandler == null) {
-      return step8RegisterSearchWithMds(executionContext, eidData);
+    CountrySpecificDetailSearchProcessor specificHandler = findSpecificProcessor(eidasData);
+    if (specificHandler != null) {
+      return step6CountrySpecificSearch(executionContext, specificHandler, registerData, eidasData);
     } else {
-      return step6CountrySpecificSearch(executionContext, foundHandler, result, eidData);
+      return step8RegisterSearchWithMds(executionContext, eidasData);
     }
   }
 
+  @Nullable
+  private CountrySpecificDetailSearchProcessor findSpecificProcessor(SimpleEidasData eidasData) {
+    final String citizenCountry = eidasData.getCitizenCountryCode();
+    for (final CountrySpecificDetailSearchProcessor processor : handlers) {
+      if (processor.canHandle(citizenCountry, eidasData)) {
+        log.debug("Found suitable search handler for {} by using: {}", citizenCountry, processor.getName());
+        return processor;
+      }
+    }
+    return null;
+  }
+
   private String step6CountrySpecificSearch(ExecutionContext executionContext,
-                                            CountrySpecificDetailSearchProcessor countrySpecificDetailSearchProcessor,
-                                            MergedRegisterSearchResult initialSearchResult,
-                                            SimpleEidasData eidData) throws TaskExecutionException {
+                                            CountrySpecificDetailSearchProcessor processor,
+                                            MergedRegisterSearchResult registerData,
+                                            SimpleEidasData eidasData)
+      throws TaskExecutionException, ManualFixNecessaryException {
     log.trace("Starting step6CountrySpecificSearch");
-    MergedRegisterSearchResult countrySpecificDetailSearchResult =
-        countrySpecificDetailSearchProcessor.search(eidData);
-
-    switch (countrySpecificDetailSearchResult.getResultCount()) {
+    MergedRegisterSearchResult countrySearchResult = processor.search(eidasData);
+    switch (countrySearchResult.getResultCount()) {
       case 0:
-        return step8RegisterSearchWithMds(executionContext, eidData);
+        return step8RegisterSearchWithMds(executionContext, eidasData);
       case 1:
-        return step7aKittProcess(initialSearchResult, countrySpecificDetailSearchResult, eidData);
+        return step7aKittProcess(registerData, countrySearchResult, eidasData);
       default:
-        throw new TaskExecutionException(pendingReq, "Detail search - Kitt Process necessary.",
-            new ManualFixNecessaryException(eidData));
+        throw new ManualFixNecessaryException(eidasData);
     }
   }
 
-  private String step7aKittProcess(MergedRegisterSearchResult initialSearchResult,
+  private String step7aKittProcess(MergedRegisterSearchResult registerData,
                                    MergedRegisterSearchResult countrySpecificDetailSearchResult,
-                                   SimpleEidasData eidData) throws TaskExecutionException {
+                                   SimpleEidasData eidasData) throws TaskExecutionException {
     log.trace("Starting step7aKittProcess");
-    return registerSearchService.step7aKittProcess(initialSearchResult, countrySpecificDetailSearchResult,
-        eidData, pendingReq);
+    return registerSearchService.step7aKittProcess(registerData, countrySpecificDetailSearchResult,
+        eidasData, pendingReq);
   }
 
-  private String step8RegisterSearchWithMds(ExecutionContext executionContext, SimpleEidasData eidData) {
+  private String step8RegisterSearchWithMds(ExecutionContext executionContext, SimpleEidasData eidasData) {
     log.trace("Starting step8RegisterSearchWithMds");
-    MergedRegisterSearchResult mdsSearchResult = registerSearchService.searchWithMds(eidData);
-    if (mdsSearchResult.getResultCount() == 0) {
-      executionContext.put(TRANSITION_TO_CREATE_NEW_ERNB_ENTRY_TASK, true);
+    MergedRegisterSearchResult registerData = registerSearchService.searchWithMds(eidasData);
+    if (registerData.getResultCount() == 0) {
+      executionContext.put(TRANSITION_TO_CREATE_NEW_ERNP_ENTRY_TASK, true);
     } else {
       executionContext.put(TRANSITION_TO_GENERATE_OTHER_LOGIN_METHOD_GUI_TASK, true);
     }
     // todo das suchergebnis auch noch speichern für später!
     //TODO implement next phase and return correct value
+    // TODO what to return?
     return null;
   }
 
@@ -207,30 +209,26 @@ public class InitialSearchTask extends AbstractAuthServletTask {
       throws EidasAttributeException {
     final ILightResponse eidasResponse = authProcessData
         .getGenericDataFromSession(DATA_FULL_EIDAS_RESPONSE, ILightResponse.class);
-    return convertSimpleMapToSimpleData(convertEidasAttrToSimpleMap(eidasResponse.getAttributes().getAttributeMap()));
+    Map<String, Object> simpleMap = convertEidasAttrToSimpleMap(eidasResponse.getAttributes().getAttributeMap());
+    return convertSimpleMapToSimpleData(simpleMap);
   }
 
   private SimpleEidasData convertSimpleMapToSimpleData(Map<String, Object> eidasAttrMap)
       throws EidasAttributeException {
     SimpleEidasData result = new SimpleEidasData();
-
     result.setCitizenCountryCode(processCountryCode(eidasAttrMap.get(eIDAS_ATTR_PERSONALIDENTIFIER)));
-
     // MDS attributes
     result.setPseudonym(processPseudonym(eidasAttrMap.get(eIDAS_ATTR_PERSONALIDENTIFIER)));
     result.setFamilyName(processFamilyName(eidasAttrMap.get(eIDAS_ATTR_CURRENTFAMILYNAME)));
     result.setGivenName(processGivenName(eidasAttrMap.get(eIDAS_ATTR_CURRENTGIVENNAME)));
     result.setDateOfBirth(processDateOfBirthToString(eidasAttrMap.get(eIDAS_ATTR_DATEOFBIRTH)));
-
     // additional attributes
     result.setPlaceOfBirth(processPlaceOfBirth(eidasAttrMap.get(eIDAS_ATTR_PLACEOFBIRTH)));
     result.setBirthName(processBirthName(eidasAttrMap.get(eIDAS_ATTR_BIRTHNAME)));
     result.setAddress(processAddress(eidasAttrMap.get(eIDAS_ATTR_CURRENTADDRESS)));
-
     if (eidasAttrMap.containsKey(eIDAS_ATTR_TAXREFERENCE)) {
       result.setTaxNumber(processTaxReference(eidasAttrMap.get(eIDAS_ATTR_TAXREFERENCE)));
     }
-
     //TODO other additional attributes
     return result;
   }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveAustrianResidenceGuiResponseTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveAustrianResidenceGuiResponseTask.java
index 2020274a..7dcf62ac 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveAustrianResidenceGuiResponseTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveAustrianResidenceGuiResponseTask.java
@@ -104,7 +104,7 @@ public class ReceiveAustrianResidenceGuiResponseTask extends AbstractAuthServlet
       step18_RegisterSearch(street, city, zipcode);//TODO also MDS?
     } else {
       //step 20 or for now (phase 1) step 9
-      executionContext.put(Constants.TRANSITION_TO_CREATE_NEW_ERNB_ENTRY_TASK, true);
+      executionContext.put(Constants.TRANSITION_TO_CREATE_NEW_ERNP_ENTRY_TASK, true);
     }
 
 
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskTest.java
index 4dd6b92e..c9f123dc 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskTest.java
@@ -131,9 +131,7 @@ public class InitialSearchTaskTest {
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
 
     task.execute(pendingReq, executionContext);
-    String bPk = (String)
-        pendingReq.getSessionData(AuthProcessDataWrapper.class)
-            .getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
+    String bPk = readBpkFromSessionData(pendingReq);
 
     Assert.assertEquals("Wrong bpk", bPk, randomBpk);
   }
@@ -150,9 +148,7 @@ public class InitialSearchTaskTest {
         new RegisterResult(randomBpk, randomIdentifier, newRandomGivenName, randomFamilyName, randomBirthDate)));
 
     task.execute(pendingReq, executionContext);
-    String bPk = (String)
-        pendingReq.getSessionData(AuthProcessDataWrapper.class)
-            .getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
+    String bPk = readBpkFromSessionData(pendingReq);
 
     Assert.assertEquals("Wrong bpk", bPk, randomBpk);
   }
@@ -174,7 +170,7 @@ public class InitialSearchTaskTest {
         () -> task.execute(pendingReq, executionContext));
 
     Throwable origE = exception.getOriginalException();
-    Assert.assertTrue("Wrong exception", (origE.getCause() instanceof ManualFixNecessaryException));
+    Assert.assertTrue("Wrong exception", (origE instanceof ManualFixNecessaryException));
   }
 
 
@@ -196,7 +192,7 @@ public class InitialSearchTaskTest {
         () -> task.execute(pendingReq, executionContext));
 
     Throwable origE = exception.getOriginalException();
-    Assert.assertTrue("Wrong exception", (origE.getCause() instanceof ManualFixNecessaryException));
+    Assert.assertTrue("Wrong exception", (origE instanceof ManualFixNecessaryException));
   }
 
   /**
@@ -210,9 +206,7 @@ public class InitialSearchTaskTest {
         new RegisterResult(randomBpk, randomIdentifier, randomGivenName, randomFamilyName, randomBirthDate)));
 
     task.execute(pendingReq, executionContext);
-    String bPk = (String)
-        pendingReq.getSessionData(AuthProcessDataWrapper.class)
-            .getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
+    String bPk = readBpkFromSessionData(pendingReq);
     Assert.assertEquals("Wrong bpk", bPk, randomBpk);
   }
 
@@ -228,9 +222,7 @@ public class InitialSearchTaskTest {
 
     task.execute(pendingReq, executionContext);
 
-    String bPk = (String)
-        pendingReq.getSessionData(AuthProcessDataWrapper.class)
-            .getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
+    String bPk = readBpkFromSessionData(pendingReq);
     Assert.assertEquals("Wrong bpk", bPk, randomBpk);
   }
 
@@ -257,9 +249,7 @@ public class InitialSearchTaskTest {
 
     task.execute(pendingReq1, executionContext);
 
-    String bPk = (String)
-        pendingReq1.getSessionData(AuthProcessDataWrapper.class)
-            .getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
+    String bPk = readBpkFromSessionData(pendingReq1);
     Assert.assertEquals("Wrong bpk", bPk, randomBpk);
   }
 
@@ -287,9 +277,7 @@ public class InitialSearchTaskTest {
 
     task.execute(pendingReq1, executionContext);
 
-    String resultBpk = (String)
-        pendingReq1.getSessionData(AuthProcessDataWrapper.class)
-            .getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
+    String resultBpk = readBpkFromSessionData(pendingReq1);
     Assert.assertEquals("Wrong bpk", resultBpk, randomBpk);
   }
 
@@ -325,7 +313,7 @@ public class InitialSearchTaskTest {
         () -> task.execute(pendingReq1, executionContext));
 
     Throwable origE = exception.getOriginalException();
-    Assert.assertTrue("Wrong exception", (origE.getCause() instanceof ManualFixNecessaryException));
+    Assert.assertTrue("Wrong exception", (origE instanceof ManualFixNecessaryException));
   }
 
   /**
@@ -358,7 +346,7 @@ public class InitialSearchTaskTest {
         () -> task.execute(pendingReq1, executionContext));
 
     Throwable origE = exception.getOriginalException();
-    Assert.assertTrue("Wrong exception", (origE.getCause() instanceof ManualFixNecessaryException));
+    Assert.assertTrue("Wrong exception", (origE instanceof ManualFixNecessaryException));
   }
 
   /**
@@ -372,14 +360,12 @@ public class InitialSearchTaskTest {
 
     task.execute(pendingReq, executionContext);
 
-    String bPk = (String)
-        pendingReq.getSessionData(AuthProcessDataWrapper.class)
-            .getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
+    String bPk = readBpkFromSessionData(pendingReq);
     Assert.assertNull("Wrong bpk", bPk);
 
     Boolean transitionGUI = (Boolean) executionContext.get(Constants.TRANSITION_TO_GENERATE_OTHER_LOGIN_METHOD_GUI_TASK);
     Assert.assertNull("Wrong transition", transitionGUI);
-    Boolean transitionErnb = (Boolean) executionContext.get(Constants.TRANSITION_TO_CREATE_NEW_ERNB_ENTRY_TASK);
+    Boolean transitionErnb = (Boolean) executionContext.get(Constants.TRANSITION_TO_CREATE_NEW_ERNP_ENTRY_TASK);
     Assert.assertTrue("Wrong transition", transitionErnb);
   }
 
@@ -398,13 +384,11 @@ public class InitialSearchTaskTest {
 
     task.execute(pendingReq, executionContext);
 
-    String bPk = (String)
-        pendingReq.getSessionData(AuthProcessDataWrapper.class)
-            .getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
+    String bPk = readBpkFromSessionData(pendingReq);
     Assert.assertNull("Wrong bpk", bPk);
     Boolean transitionGUI = (Boolean) executionContext.get(Constants.TRANSITION_TO_GENERATE_OTHER_LOGIN_METHOD_GUI_TASK);
     Assert.assertTrue("Wrong transition", transitionGUI);
-    Boolean transitionErnb = (Boolean) executionContext.get(Constants.TRANSITION_TO_CREATE_NEW_ERNB_ENTRY_TASK);
+    Boolean transitionErnb = (Boolean) executionContext.get(Constants.TRANSITION_TO_CREATE_NEW_ERNP_ENTRY_TASK);
     Assert.assertNull("Wrong transition", transitionErnb);
   }
 
@@ -423,13 +407,11 @@ public class InitialSearchTaskTest {
 
     task.execute(pendingReq, executionContext);
 
-    String bPk = (String)
-        pendingReq.getSessionData(AuthProcessDataWrapper.class)
-            .getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
+    String bPk = readBpkFromSessionData(pendingReq);
     Assert.assertNull("Wrong bpk", bPk);
     Boolean transitionGUI = (Boolean) executionContext.get(Constants.TRANSITION_TO_GENERATE_OTHER_LOGIN_METHOD_GUI_TASK);
     Assert.assertTrue("Wrong transition", transitionGUI);
-    Boolean transitionErnb = (Boolean) executionContext.get(Constants.TRANSITION_TO_CREATE_NEW_ERNB_ENTRY_TASK);
+    Boolean transitionErnb = (Boolean) executionContext.get(Constants.TRANSITION_TO_CREATE_NEW_ERNP_ENTRY_TASK);
     Assert.assertNull("Wrong transition", transitionErnb);
   }
 
@@ -450,13 +432,11 @@ public class InitialSearchTaskTest {
 
     task.execute(pendingReq, executionContext);
 
-    String bPk = (String)
-        pendingReq.getSessionData(AuthProcessDataWrapper.class)
-            .getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
+    String bPk = readBpkFromSessionData(pendingReq);
     Assert.assertNull("Wrong bpk", bPk);
     Boolean transitionGUI = (Boolean) executionContext.get(Constants.TRANSITION_TO_GENERATE_OTHER_LOGIN_METHOD_GUI_TASK);
     Assert.assertTrue("Wrong transition", transitionGUI);
-    Boolean transitionErnb = (Boolean) executionContext.get(Constants.TRANSITION_TO_CREATE_NEW_ERNB_ENTRY_TASK);
+    Boolean transitionErnb = (Boolean) executionContext.get(Constants.TRANSITION_TO_CREATE_NEW_ERNP_ENTRY_TASK);
     Assert.assertNull("Wrong transition", transitionErnb);
   }
 
@@ -538,4 +518,8 @@ public class InitialSearchTaskTest {
         .attributeValueMarshaller(marshaller).build();
   }
 
+  private String readBpkFromSessionData(TestRequestImpl pendingReq) {
+    return (String) pendingReq.getSessionData(AuthProcessDataWrapper.class)
+        .getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
+  }
 }
-- 
cgit v1.2.3


From 17205492d16f39009414399a2e17347986b50cbc Mon Sep 17 00:00:00 2001
From: Christian Kollmann <christian.kollmann@a-sit.at>
Date: Mon, 22 Feb 2021 15:01:35 +0100
Subject: Refactor storing search results for matching eIDAS data

---
 .../eidas/v2/tasks/CreateNewErnpEntryTask.java     |  13 +-
 .../auth/eidas/v2/tasks/InitialSearchTask.java     | 147 +++++++++++++--------
 .../auth/eidas/v2/utils/EidasResponseUtils.java    |   2 -
 3 files changed, 105 insertions(+), 57 deletions(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateNewErnpEntryTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateNewErnpEntryTask.java
index 09af0e24..bab1945a 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateNewErnpEntryTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateNewErnpEntryTask.java
@@ -23,7 +23,6 @@
 
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks;
 
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernp.IErnpClient;
 import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
@@ -31,11 +30,14 @@ import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
 import at.gv.egiz.eaaf.core.impl.idp.auth.data.AuthProcessDataWrapper;
 import at.gv.egiz.eaaf.core.impl.idp.auth.modules.AbstractAuthServletTask;
 import lombok.extern.slf4j.Slf4j;
+import org.jetbrains.annotations.NotNull;
 import org.springframework.stereotype.Component;
 
 import javax.servlet.http.HttpServletRequest;
 import javax.servlet.http.HttpServletResponse;
 
+import static at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants.DATA_SIMPLE_EIDAS;
+
 /**
  * Task that searches ErnB and ZMR before adding person to SZR.
  *
@@ -59,8 +61,8 @@ public class CreateNewErnpEntryTask extends AbstractAuthServletTask {
   public void execute(ExecutionContext executionContext, HttpServletRequest request, HttpServletResponse response)
       throws TaskExecutionException {
     try {
-      final AuthProcessDataWrapper authProcessData = pendingReq.getSessionData(AuthProcessDataWrapper.class);
-      SimpleEidasData simpleEidasData = authProcessData.getGenericDataFromSession(Constants.DATA_SIMPLE_EIDAS,
+      // TODO really the correct key?
+      SimpleEidasData simpleEidasData = getAuthProcessData().getGenericDataFromSession(DATA_SIMPLE_EIDAS,
           SimpleEidasData.class);
       step9CreateNewErnpEntry(simpleEidasData);
     } catch (final Exception e) {
@@ -69,6 +71,11 @@ public class CreateNewErnpEntryTask extends AbstractAuthServletTask {
     }
   }
 
+  @NotNull
+  private AuthProcessDataWrapper getAuthProcessData() {
+    return pendingReq.getSessionData(AuthProcessDataWrapper.class);
+  }
+
   private void step9CreateNewErnpEntry(SimpleEidasData simpleEidasData) {
 
     //TODO can i get bpk from response?
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
index 8a2cac0d..4d5daa6e 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
@@ -54,8 +54,32 @@ import java.util.HashMap;
 import java.util.List;
 import java.util.Map;
 
-import static at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants.*;
-import static at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.EidasResponseUtils.*;
+import static at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants.DATA_FULL_EIDAS_RESPONSE;
+import static at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants.DATA_INITIAL_REGISTER_RESULT;
+import static at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants.DATA_RESULT_MATCHING_BPK;
+import static at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants.DATA_SIMPLE_EIDAS;
+import static at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants.TRANSITION_TO_CREATE_NEW_ERNP_ENTRY_TASK;
+import static at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants.TRANSITION_TO_GENERATE_OTHER_LOGIN_METHOD_GUI_TASK;
+import static at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants.eIDAS_ATTR_BIRTHNAME;
+import static at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants.eIDAS_ATTR_CURRENTADDRESS;
+import static at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants.eIDAS_ATTR_CURRENTFAMILYNAME;
+import static at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants.eIDAS_ATTR_CURRENTGIVENNAME;
+import static at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants.eIDAS_ATTR_DATEOFBIRTH;
+import static at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants.eIDAS_ATTR_PERSONALIDENTIFIER;
+import static at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants.eIDAS_ATTR_PLACEOFBIRTH;
+import static at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants.eIDAS_ATTR_TAXREFERENCE;
+import static at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.EidasResponseUtils.processAddress;
+import static at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.EidasResponseUtils.processBirthName;
+import static at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.EidasResponseUtils.processCountryCode;
+import static at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.EidasResponseUtils.processDateOfBirthToString;
+import static at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.EidasResponseUtils.processFamilyName;
+import static at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.EidasResponseUtils.processGivenName;
+import static at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.EidasResponseUtils.processPlaceOfBirth;
+import static at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.EidasResponseUtils.processPseudonym;
+import static at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.EidasResponseUtils.processTaxReference;
+import static at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.EidasResponseUtils.translateAddressAttribute;
+import static at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.EidasResponseUtils.translateDateAttribute;
+import static at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.EidasResponseUtils.translateStringListAttribute;
 
 /**
  * Task that searches registers (ERnP and ZMR) before adding person to SZR.
@@ -87,11 +111,9 @@ public class InitialSearchTask extends AbstractAuthServletTask {
   public void execute(ExecutionContext executionContext, HttpServletRequest request, HttpServletResponse response)
       throws TaskExecutionException {
     try {
-      final AuthProcessDataWrapper authProcessData = pendingReq.getSessionData(AuthProcessDataWrapper.class);
-      final SimpleEidasData eidasData = convertEidasAttrToSimpleData(authProcessData);
-      final String bpk = step2RegisterSearchWithPersonIdentifier(executionContext, eidasData, authProcessData);
-      authProcessData.setGenericDataToSession(DATA_RESULT_MATCHING_BPK, bpk);
-      authProcessData.setGenericDataToSession(DATA_SIMPLE_EIDAS, eidasData);
+      final SimpleEidasData eidasData = convertEidasAttrToSimpleData();
+      storeSimpleEidasData(eidasData);
+      step2RegisterSearchWithPersonIdentifier(executionContext, eidasData);
     } catch (final TaskExecutionException e) {
       log.error("Initial search failed", e);
       throw e;
@@ -101,55 +123,58 @@ public class InitialSearchTask extends AbstractAuthServletTask {
     }
   }
 
-  private String step2RegisterSearchWithPersonIdentifier(
-      ExecutionContext executionContext, SimpleEidasData eidasData, AuthProcessDataWrapper authProcessData)
+  private void step2RegisterSearchWithPersonIdentifier(
+      ExecutionContext executionContext, SimpleEidasData eidasData)
       throws TaskExecutionException, EaafStorageException, ManualFixNecessaryException {
     log.trace("Starting step2RegisterSearchWithPersonIdentifier");
     String personIdentifier = eidasData.getPseudonym();
     MergedRegisterSearchResult registerData = registerSearchService.searchWithPersonIdentifier(eidasData);
-    authProcessData.setGenericDataToSession(DATA_INITIAL_REGISTER_RESULT, registerData);
-    switch (registerData.getResultCount()) {
-      case 0:
-        return step5CheckAndPerformCountrySpecificSearchIfPossible(executionContext, registerData, eidasData);
-      case 1:
-        return step3CheckRegisterUpdateNecessary(registerData, eidasData);
-      default:
-        throw new ManualFixNecessaryException(personIdentifier);
+    storeInitialRegisterResult(registerData);
+    int resultCount = registerData.getResultCount();
+    if (resultCount == 0) {
+      step5CheckAndPerformCountrySpecificSearchIfPossible(executionContext, registerData, eidasData);
+    } else if (resultCount == 1) {
+      step3CheckRegisterUpdateNecessary(registerData, eidasData);
+    } else {
+      throw new ManualFixNecessaryException(personIdentifier);
     }
   }
 
-  private String step3CheckRegisterUpdateNecessary(MergedRegisterSearchResult registerData, SimpleEidasData eidasData)
+  private void step3CheckRegisterUpdateNecessary(MergedRegisterSearchResult registerData, SimpleEidasData eidasData)
       throws ManualFixNecessaryException {
     log.trace("Starting step3CheckRegisterUpdateNecessary");
     try {
       if (eidasData.equalsRegisterData(registerData)) {
-        return registerData.getBpk();
+        String bpk = registerData.getBpk();
+        storeMatchingBpk(bpk);
       } else {
-        return step4UpdateRegisterData(registerData, eidasData);
+        step4UpdateRegisterData(registerData, eidasData);
       }
-    } catch (WorkflowException e) {
+    } catch (WorkflowException | EaafStorageException e) {
       throw new ManualFixNecessaryException(eidasData);
     }
   }
 
-  private String step4UpdateRegisterData(MergedRegisterSearchResult registerData, SimpleEidasData eidasData)
-      throws WorkflowException {
+  private void step4UpdateRegisterData(MergedRegisterSearchResult registerData, SimpleEidasData eidasData)
+      throws WorkflowException, EaafStorageException {
     log.trace("Starting step4UpdateRegisterData");
     log.debug("Update {} with {}", registerData, eidasData);
     //TODO wann rechtlich möglich?
 
-    return registerData.getBpk();
+    String bpk = registerData.getBpk();
+    storeMatchingBpk(bpk);
   }
 
-  private String step5CheckAndPerformCountrySpecificSearchIfPossible(
-      ExecutionContext executionContext, MergedRegisterSearchResult registerData, SimpleEidasData eidasData)
-      throws TaskExecutionException, ManualFixNecessaryException {
+  private void step5CheckAndPerformCountrySpecificSearchIfPossible(
+      ExecutionContext executionContext, MergedRegisterSearchResult registerData,
+      SimpleEidasData eidasData)
+      throws TaskExecutionException, ManualFixNecessaryException, EaafStorageException {
     log.trace("Starting step5CheckAndPerformCountrySpecificSearchIfPossible");
     CountrySpecificDetailSearchProcessor specificHandler = findSpecificProcessor(eidasData);
     if (specificHandler != null) {
-      return step6CountrySpecificSearch(executionContext, specificHandler, registerData, eidasData);
+      step6CountrySpecificSearch(executionContext, specificHandler, registerData, eidasData);
     } else {
-      return step8RegisterSearchWithMds(executionContext, eidasData);
+      step8RegisterSearchWithMds(executionContext, eidasData);
     }
   }
 
@@ -165,49 +190,67 @@ public class InitialSearchTask extends AbstractAuthServletTask {
     return null;
   }
 
-  private String step6CountrySpecificSearch(ExecutionContext executionContext,
-                                            CountrySpecificDetailSearchProcessor processor,
-                                            MergedRegisterSearchResult registerData,
-                                            SimpleEidasData eidasData)
-      throws TaskExecutionException, ManualFixNecessaryException {
+  private void step6CountrySpecificSearch(ExecutionContext executionContext,
+                                          CountrySpecificDetailSearchProcessor processor,
+                                          MergedRegisterSearchResult registerData,
+                                          SimpleEidasData eidasData)
+      throws TaskExecutionException, ManualFixNecessaryException, EaafStorageException {
     log.trace("Starting step6CountrySpecificSearch");
     MergedRegisterSearchResult countrySearchResult = processor.search(eidasData);
-    switch (countrySearchResult.getResultCount()) {
-      case 0:
-        return step8RegisterSearchWithMds(executionContext, eidasData);
-      case 1:
-        return step7aKittProcess(registerData, countrySearchResult, eidasData);
-      default:
-        throw new ManualFixNecessaryException(eidasData);
+    int resultCount = countrySearchResult.getResultCount();
+    if (resultCount == 0) {
+      step8RegisterSearchWithMds(executionContext, eidasData);
+    } else if (resultCount == 1) {
+      step7aKittProcess(registerData, countrySearchResult, eidasData);
+    } else {
+      throw new ManualFixNecessaryException(eidasData);
     }
   }
 
-  private String step7aKittProcess(MergedRegisterSearchResult registerData,
-                                   MergedRegisterSearchResult countrySpecificDetailSearchResult,
-                                   SimpleEidasData eidasData) throws TaskExecutionException {
+  private void step7aKittProcess(MergedRegisterSearchResult registerData,
+                                 MergedRegisterSearchResult countrySpecificDetailSearchResult,
+                                 SimpleEidasData eidasData)
+      throws TaskExecutionException, EaafStorageException {
     log.trace("Starting step7aKittProcess");
-    return registerSearchService.step7aKittProcess(registerData, countrySpecificDetailSearchResult,
+    String bpk = registerSearchService.step7aKittProcess(registerData, countrySpecificDetailSearchResult,
         eidasData, pendingReq);
+    storeMatchingBpk(bpk);
   }
 
-  private String step8RegisterSearchWithMds(ExecutionContext executionContext, SimpleEidasData eidasData) {
+  private void step8RegisterSearchWithMds(ExecutionContext executionContext, SimpleEidasData eidasData)
+      throws EaafStorageException {
     log.trace("Starting step8RegisterSearchWithMds");
     MergedRegisterSearchResult registerData = registerSearchService.searchWithMds(eidasData);
     if (registerData.getResultCount() == 0) {
+      // TODO really the correct key to store data?
+      storeSimpleEidasData(eidasData);
       executionContext.put(TRANSITION_TO_CREATE_NEW_ERNP_ENTRY_TASK, true);
     } else {
       executionContext.put(TRANSITION_TO_GENERATE_OTHER_LOGIN_METHOD_GUI_TASK, true);
     }
-    // todo das suchergebnis auch noch speichern für später!
-    //TODO implement next phase and return correct value
-    // TODO what to return?
-    return null;
+  }
+
+  private void storeSimpleEidasData(SimpleEidasData eidasData) throws EaafStorageException {
+    getAuthProcessData().setGenericDataToSession(DATA_SIMPLE_EIDAS, eidasData);
+  }
+
+  private void storeInitialRegisterResult(MergedRegisterSearchResult registerData) throws EaafStorageException {
+    getAuthProcessData().setGenericDataToSession(DATA_INITIAL_REGISTER_RESULT, registerData);
+  }
+
+  private void storeMatchingBpk(String bpk) throws EaafStorageException {
+    getAuthProcessData().setGenericDataToSession(DATA_RESULT_MATCHING_BPK, bpk);
+  }
+
+  @NotNull
+  private AuthProcessDataWrapper getAuthProcessData() {
+    return pendingReq.getSessionData(AuthProcessDataWrapper.class);
   }
 
   @NotNull
-  private SimpleEidasData convertEidasAttrToSimpleData(AuthProcessDataWrapper authProcessData)
+  private SimpleEidasData convertEidasAttrToSimpleData()
       throws EidasAttributeException {
-    final ILightResponse eidasResponse = authProcessData
+    final ILightResponse eidasResponse = getAuthProcessData()
         .getGenericDataFromSession(DATA_FULL_EIDAS_RESPONSE, ILightResponse.class);
     Map<String, Object> simpleMap = convertEidasAttrToSimpleMap(eidasResponse.getAttributes().getAttributeMap());
     return convertSimpleMapToSimpleData(simpleMap);
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/EidasResponseUtils.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/EidasResponseUtils.java
index 010681a9..94b85b7c 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/EidasResponseUtils.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/EidasResponseUtils.java
@@ -47,8 +47,6 @@ import java.util.List;
 import java.util.regex.Matcher;
 import java.util.regex.Pattern;
 
-import static at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants.eIDAS_ATTR_PERSONALIDENTIFIER;
-
 public class EidasResponseUtils {
   private static final Logger log = LoggerFactory.getLogger(EidasResponseUtils.class);
   public static final String PERSONALIDENIFIER_VALIDATION_PATTERN = "^[A-Z,a-z]{2}/[A-Z,a-z]{2}/.*";
-- 
cgit v1.2.3


From 87e5fa9dd9966d427e45e36b9c3530b3c28d1f32 Mon Sep 17 00:00:00 2001
From: Christian Kollmann <christian.kollmann@a-sit.at>
Date: Mon, 22 Feb 2021 15:06:43 +0100
Subject: Refactor: Use less static imports

---
 .../auth/eidas/v2/tasks/InitialSearchTask.java     | 40 +++++++++-------------
 1 file changed, 16 insertions(+), 24 deletions(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
index 4d5daa6e..81035f6d 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
@@ -30,6 +30,7 @@ import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.ManualFixNeces
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.WorkflowException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.CountrySpecificDetailSearchProcessor;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.RegisterSearchService;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.EidasResponseUtils;
 import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
 import at.gv.egiz.eaaf.core.exceptions.EaafStorageException;
 import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
@@ -68,18 +69,6 @@ import static at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants.eIDAS_A
 import static at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants.eIDAS_ATTR_PERSONALIDENTIFIER;
 import static at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants.eIDAS_ATTR_PLACEOFBIRTH;
 import static at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants.eIDAS_ATTR_TAXREFERENCE;
-import static at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.EidasResponseUtils.processAddress;
-import static at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.EidasResponseUtils.processBirthName;
-import static at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.EidasResponseUtils.processCountryCode;
-import static at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.EidasResponseUtils.processDateOfBirthToString;
-import static at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.EidasResponseUtils.processFamilyName;
-import static at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.EidasResponseUtils.processGivenName;
-import static at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.EidasResponseUtils.processPlaceOfBirth;
-import static at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.EidasResponseUtils.processPseudonym;
-import static at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.EidasResponseUtils.processTaxReference;
-import static at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.EidasResponseUtils.translateAddressAttribute;
-import static at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.EidasResponseUtils.translateDateAttribute;
-import static at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.EidasResponseUtils.translateStringListAttribute;
 
 /**
  * Task that searches registers (ERnP and ZMR) before adding person to SZR.
@@ -89,6 +78,7 @@ import static at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.EidasRespon
  */
 @Slf4j
 @Component("InitialSearchTask")
+@SuppressWarnings("PMD.TooManyStaticImports")
 public class InitialSearchTask extends AbstractAuthServletTask {
 
   private final List<CountrySpecificDetailSearchProcessor> handlers;
@@ -259,18 +249,19 @@ public class InitialSearchTask extends AbstractAuthServletTask {
   private SimpleEidasData convertSimpleMapToSimpleData(Map<String, Object> eidasAttrMap)
       throws EidasAttributeException {
     SimpleEidasData result = new SimpleEidasData();
-    result.setCitizenCountryCode(processCountryCode(eidasAttrMap.get(eIDAS_ATTR_PERSONALIDENTIFIER)));
+    result.setCitizenCountryCode(EidasResponseUtils.processCountryCode(
+        eidasAttrMap.get(eIDAS_ATTR_PERSONALIDENTIFIER)));
     // MDS attributes
-    result.setPseudonym(processPseudonym(eidasAttrMap.get(eIDAS_ATTR_PERSONALIDENTIFIER)));
-    result.setFamilyName(processFamilyName(eidasAttrMap.get(eIDAS_ATTR_CURRENTFAMILYNAME)));
-    result.setGivenName(processGivenName(eidasAttrMap.get(eIDAS_ATTR_CURRENTGIVENNAME)));
-    result.setDateOfBirth(processDateOfBirthToString(eidasAttrMap.get(eIDAS_ATTR_DATEOFBIRTH)));
+    result.setPseudonym(EidasResponseUtils.processPseudonym(eidasAttrMap.get(eIDAS_ATTR_PERSONALIDENTIFIER)));
+    result.setFamilyName(EidasResponseUtils.processFamilyName(eidasAttrMap.get(eIDAS_ATTR_CURRENTFAMILYNAME)));
+    result.setGivenName(EidasResponseUtils.processGivenName(eidasAttrMap.get(eIDAS_ATTR_CURRENTGIVENNAME)));
+    result.setDateOfBirth(EidasResponseUtils.processDateOfBirthToString(eidasAttrMap.get(eIDAS_ATTR_DATEOFBIRTH)));
     // additional attributes
-    result.setPlaceOfBirth(processPlaceOfBirth(eidasAttrMap.get(eIDAS_ATTR_PLACEOFBIRTH)));
-    result.setBirthName(processBirthName(eidasAttrMap.get(eIDAS_ATTR_BIRTHNAME)));
-    result.setAddress(processAddress(eidasAttrMap.get(eIDAS_ATTR_CURRENTADDRESS)));
+    result.setPlaceOfBirth(EidasResponseUtils.processPlaceOfBirth(eidasAttrMap.get(eIDAS_ATTR_PLACEOFBIRTH)));
+    result.setBirthName(EidasResponseUtils.processBirthName(eidasAttrMap.get(eIDAS_ATTR_BIRTHNAME)));
+    result.setAddress(EidasResponseUtils.processAddress(eidasAttrMap.get(eIDAS_ATTR_CURRENTADDRESS)));
     if (eidasAttrMap.containsKey(eIDAS_ATTR_TAXREFERENCE)) {
-      result.setTaxNumber(processTaxReference(eidasAttrMap.get(eIDAS_ATTR_TAXREFERENCE)));
+      result.setTaxNumber(EidasResponseUtils.processTaxReference(eidasAttrMap.get(eIDAS_ATTR_TAXREFERENCE)));
     }
     //TODO other additional attributes
     return result;
@@ -282,7 +273,7 @@ public class InitialSearchTask extends AbstractAuthServletTask {
     for (final AttributeDefinition<?> el : attributeMap.keySet()) {
       final Class<?> parameterizedType = el.getParameterizedType();
       if (DateTime.class.equals(parameterizedType)) {
-        final DateTime attribute = translateDateAttribute(el, attributeMap.get(el).asList());
+        final DateTime attribute = EidasResponseUtils.translateDateAttribute(el, attributeMap.get(el).asList());
         if (attribute != null) {
           result.put(el.getFriendlyName(), attribute);
           log.trace("Find attr '{}' with value: {}", el.getFriendlyName(), attribute.toString());
@@ -290,7 +281,8 @@ public class InitialSearchTask extends AbstractAuthServletTask {
           log.info("Ignore empty 'DateTime' attribute");
         }
       } else if (PostalAddress.class.equals(parameterizedType)) {
-        final PostalAddress addressAttribute = translateAddressAttribute(el, attributeMap.get(el).asList());
+        final PostalAddress addressAttribute = EidasResponseUtils
+            .translateAddressAttribute(el, attributeMap.get(el).asList());
         if (addressAttribute != null) {
           result.put(el.getFriendlyName(), addressAttribute);
           log.trace("Find attr '{}' with value: {}", el.getFriendlyName(), addressAttribute.toString());
@@ -298,7 +290,7 @@ public class InitialSearchTask extends AbstractAuthServletTask {
           log.info("Ignore empty 'PostalAddress' attribute");
         }
       } else {
-        final List<String> natPersonIdObj = translateStringListAttribute(el, attributeMap.get(el));
+        final List<String> natPersonIdObj = EidasResponseUtils.translateStringListAttribute(el, attributeMap.get(el));
         final String stringAttr = natPersonIdObj.get(0);
         if (StringUtils.isNotEmpty(stringAttr)) {
           result.put(el.getFriendlyName(), stringAttr);
-- 
cgit v1.2.3


From 3338a3dd00fabf28f1de8579535b1626dbe99908 Mon Sep 17 00:00:00 2001
From: Christian Kollmann <christian.kollmann@a-sit.at>
Date: Mon, 22 Feb 2021 15:46:10 +0100
Subject: Refactor tasks for MobilePhoneSignature login

---
 .../GenerateMobilePhoneSignatureRequestTask.java   | 124 +++++----
 ...eSignatureResponseAndSearchInRegistersTask.java | 307 +++++++++------------
 .../modules/auth/eidas/v2/test/dummy/DummyOA.java  |  18 +-
 ...enerateMobilePhoneSignatureRequestTaskTest.java | 118 ++++----
 ...natureResponseAndSearchInRegistersTaskTest.java | 256 ++++++++---------
 5 files changed, 378 insertions(+), 445 deletions(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateMobilePhoneSignatureRequestTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateMobilePhoneSignatureRequestTask.java
index 4d305c7d..e6484e63 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateMobilePhoneSignatureRequestTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateMobilePhoneSignatureRequestTask.java
@@ -23,16 +23,6 @@
 
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks;
 
-import java.text.MessageFormat;
-
-import javax.servlet.http.HttpServletRequest;
-import javax.servlet.http.HttpServletResponse;
-
-import org.apache.commons.lang3.StringUtils;
-import org.opensaml.saml.saml2.metadata.EntityDescriptor;
-import org.springframework.beans.factory.annotation.Autowired;
-import org.springframework.stereotype.Component;
-
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthConstants;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthRequestBuilderConfiguration;
@@ -42,15 +32,28 @@ import at.gv.egiz.eaaf.core.api.idp.IConfiguration;
 import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
 import at.gv.egiz.eaaf.core.api.storage.ITransactionStorage;
 import at.gv.egiz.eaaf.core.exceptions.EaafConfigurationException;
+import at.gv.egiz.eaaf.core.exceptions.EaafException;
 import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
 import at.gv.egiz.eaaf.core.impl.idp.auth.modules.AbstractAuthServletTask;
 import at.gv.egiz.eaaf.core.impl.utils.Random;
+import at.gv.egiz.eaaf.modules.pvp2.exception.CredentialsNotAvailableException;
 import at.gv.egiz.eaaf.modules.pvp2.sp.impl.PvpAuthnRequestBuilder;
 import lombok.extern.slf4j.Slf4j;
+import net.shibboleth.utilities.java.support.resolver.ResolverException;
 import net.shibboleth.utilities.java.support.security.SecureRandomIdentifierGenerationStrategy;
+import org.apache.commons.lang3.StringUtils;
+import org.jetbrains.annotations.NotNull;
+import org.opensaml.saml.saml2.metadata.EntityDescriptor;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.stereotype.Component;
+
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+import java.text.MessageFormat;
 
 /**
  * Generate a SAML2 AuthnRequest to authenticate the user at ID Austria system.
+ * This corresponds to Step 15A in the eIDAS Matching Concept.
  *
  * @author tlenz
  */
@@ -77,55 +80,66 @@ public class GenerateMobilePhoneSignatureRequestTask extends AbstractAuthServlet
       throws TaskExecutionException {
     try {
       log.trace("Starting GenerateMobilePhoneSignatureRequestTask");
-      //step 15a
-
-      // get entityID for ms-specific ID Austria node
-      final String msNodeEntityID = basicConfig.getBasicConfiguration(
-          IdAustriaClientAuthConstants.CONFIG_PROPS_ID_AUSTRIA_ENTITYID);
-
-      if (StringUtils.isEmpty(msNodeEntityID)) {
-        log.warn("ID Austria authentication not possible -> NO EntityID for ID Austria System FOUND!");        
-        throw new EaafConfigurationException(Constants.ERRORCODE_00,
-            new Object[]{IdAustriaClientAuthConstants.CONFIG_PROPS_ID_AUSTRIA_ENTITYID});        
-
-      }
-
-      // load IDP SAML2 entitydescriptor
-      final EntityDescriptor entityDesc = metadataService.getEntityDescriptor(msNodeEntityID);
-      if (entityDesc == null) {
-        throw new EaafConfigurationException(IdAustriaClientAuthConstants.ERRORCODE_02,
-            new Object[]{MessageFormat.format(ERROR_MSG_1, msNodeEntityID)});
-
-      }
+      final String entityId = loadEntityId();
+      final EntityDescriptor entityDesc = loadEntityDescriptor(entityId);
+      final IdAustriaClientAuthRequestBuilderConfiguration authnReqConfig = buildAuthnRequestConfig(entityDesc);
+      final String relayState = buildRelayState();
+      authnReqBuilder.buildAuthnRequest(pendingReq, authnReqConfig, relayState, response); // also transmits!
+    } catch (final Exception e) {
+      throw new TaskExecutionException(pendingReq, "Generation of SAML2 AuthnRequest to ID Austria System FAILED", e);
+    }
+  }
 
-      // setup AuthnRequestBuilder configuration
-      final IdAustriaClientAuthRequestBuilderConfiguration authnReqConfig =
-          new IdAustriaClientAuthRequestBuilderConfiguration();
-      final SecureRandomIdentifierGenerationStrategy gen =
-          new SecureRandomIdentifierGenerationStrategy();
-      authnReqConfig.setRequestId(gen.generateIdentifier());
-      authnReqConfig.setIdpEntity(entityDesc);
-      authnReqConfig.setPassive(false);
-      authnReqConfig.setSignCred(credential.getMessageSigningCredential());
-      authnReqConfig.setSpEntityID(
-          pendingReq.getAuthUrlWithOutSlash() + IdAustriaClientAuthConstants.ENDPOINT_METADATA);
-      authnReqConfig.setRequestedLoA(authConfig.getBasicConfiguration(
-          IdAustriaClientAuthConstants.CONFIG_PROPS_REQUIRED_LOA,
-          IdAustriaClientAuthConstants.CONFIG_DEFAULT_LOA_EIDAS_LEVEL));
+  @NotNull
+  private String loadEntityId() throws EaafConfigurationException {
+    final String msNodeEntityID = basicConfig.getBasicConfiguration(
+        IdAustriaClientAuthConstants.CONFIG_PROPS_ID_AUSTRIA_ENTITYID);
+    if (StringUtils.isEmpty(msNodeEntityID)) {
+      log.warn("ID Austria authentication not possible -> NO EntityID for ID Austria System FOUND!");
+      throw new EaafConfigurationException(Constants.ERRORCODE_00,
+          new Object[]{IdAustriaClientAuthConstants.CONFIG_PROPS_ID_AUSTRIA_ENTITYID});
+    }
+    return msNodeEntityID;
+  }
 
-      /*build relayState for session synchronization, because SAML2 only allows RelayState with 80 characters
-       * but encrypted PendingRequestId is much longer.
-       */
-      String relayState = Random.nextProcessReferenceValue();
-      transactionStorage.put(relayState, pendingReq.getPendingRequestId(), -1);
+  /**
+   * Build relayState for session synchronization, because SAML2 only allows RelayState with 80 characters
+   * but encrypted PendingRequestId is much longer.
+   */
+  @NotNull
+  private String buildRelayState() throws EaafException {
+    String relayState = Random.nextProcessReferenceValue();
+    transactionStorage.put(relayState, pendingReq.getPendingRequestId(), -1);
+    return relayState;
+  }
 
-      // build and transmit AuthnRequest
-      authnReqBuilder.buildAuthnRequest(pendingReq, authnReqConfig, relayState, response);
+  @NotNull
+  private EntityDescriptor loadEntityDescriptor(String msNodeEntityID)
+      throws ResolverException, EaafConfigurationException {
+    final EntityDescriptor entityDesc = metadataService.getEntityDescriptor(msNodeEntityID);
+    if (entityDesc == null) {
+      throw new EaafConfigurationException(IdAustriaClientAuthConstants.ERRORCODE_02,
+          new Object[]{MessageFormat.format(ERROR_MSG_1, msNodeEntityID)});
 
-    } catch (final Exception e) {
-      throw new TaskExecutionException(pendingReq, 
-          "Generation of SAML2 AuthnRequest to ID Austria System FAILED", e);
-      
     }
+    return entityDesc;
+  }
+
+  @NotNull
+  private IdAustriaClientAuthRequestBuilderConfiguration buildAuthnRequestConfig(EntityDescriptor entityDesc)
+      throws CredentialsNotAvailableException {
+    final IdAustriaClientAuthRequestBuilderConfiguration authnReqConfig =
+        new IdAustriaClientAuthRequestBuilderConfiguration();
+    final SecureRandomIdentifierGenerationStrategy gen = new SecureRandomIdentifierGenerationStrategy();
+    authnReqConfig.setRequestId(gen.generateIdentifier());
+    authnReqConfig.setIdpEntity(entityDesc);
+    authnReqConfig.setPassive(false);
+    authnReqConfig.setSignCred(credential.getMessageSigningCredential());
+    authnReqConfig.setSpEntityID(
+        pendingReq.getAuthUrlWithOutSlash() + IdAustriaClientAuthConstants.ENDPOINT_METADATA);
+    authnReqConfig.setRequestedLoA(authConfig.getBasicConfiguration(
+        IdAustriaClientAuthConstants.CONFIG_PROPS_REQUIRED_LOA,
+        IdAustriaClientAuthConstants.CONFIG_DEFAULT_LOA_EIDAS_LEVEL));
+    return authnReqConfig;
   }
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask.java
index 09f2d54c..81be04b5 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask.java
@@ -58,6 +58,7 @@ import at.gv.egiz.eaaf.modules.pvp2.sp.exception.AuthnResponseValidationExceptio
 import at.gv.egiz.eaaf.modules.pvp2.sp.impl.utils.AssertionAttributeExtractor;
 import lombok.extern.slf4j.Slf4j;
 import org.apache.commons.lang3.StringUtils;
+import org.jetbrains.annotations.NotNull;
 import org.opensaml.core.xml.io.MarshallingException;
 import org.opensaml.messaging.decoder.MessageDecodingException;
 import org.opensaml.saml.saml2.core.Response;
@@ -70,12 +71,16 @@ import javax.servlet.http.HttpServletRequest;
 import javax.servlet.http.HttpServletResponse;
 import javax.xml.transform.TransformerException;
 import java.io.IOException;
-import java.util.HashMap;
 import java.util.List;
 import java.util.Set;
 
+import static at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants.DATA_INITIAL_REGISTER_RESULT;
+import static at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants.DATA_SIMPLE_EIDAS;
+import static at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthConstants.MODULE_NAME_FOR_LOGGING;
+
 /**
  * Task that receives the SAML2 response from ID Austria system.
+ * This corresponds to Step 15 in the eIDAS Matching Concept.
  *
  * @author tlenz
  */
@@ -89,7 +94,7 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask extends
   private RegisterSearchService registerSearchService;
   @Autowired
   private IdAustriaClientAuthCredentialProvider credentialProvider;
-  @Autowired(required = true)
+  @Autowired
   IdAustriaClientAuthMetadataProvider metadataProvider;
 
   private static final String ERROR_PVP_03 = "sp.pvp2.03";
@@ -100,208 +105,177 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask extends
   private static final String ERROR_PVP_11 = "sp.pvp2.11";
   private static final String ERROR_PVP_12 = "sp.pvp2.12";
 
-  private static final String ERROR_MSG_00 =
-      "Receive INVALID PVP Response from ID Austria system";
-  private static final String ERROR_MSG_01 =
-      "Processing PVP response from 'ID Austria system' FAILED.";
-  private static final String ERROR_MSG_02 =
-      "PVP response decrytion FAILED. No credential found.";
-  private static final String ERROR_MSG_03 =
-      "PVP response validation FAILED.";
+  private static final String ERROR_MSG_00 = "Receive INVALID PVP Response from ID Austria system";
+  private static final String ERROR_MSG_01 = "Processing PVP response from 'ID Austria system' FAILED.";
+  private static final String ERROR_MSG_02 = "PVP response decrytion FAILED. No credential found.";
+  private static final String ERROR_MSG_03 = "PVP response validation FAILED.";
 
   @Override
   public void execute(ExecutionContext executionContext, HttpServletRequest request, HttpServletResponse response)
       throws TaskExecutionException {
     try {
-      log.trace("Starting ReceiveMobilePhoneSignatureResponseTask");//Node 15
-      InboundMessage msg = null;
-      IDecoder decoder = null;
-      EaafUriCompare comperator = null;
-
-      // select Response Binding
-      if (request.getMethod().equalsIgnoreCase("POST")) {
-        decoder = new PostBinding();
-        comperator = new EaafUriCompare(pendingReq.getAuthUrl() + IdAustriaClientAuthConstants.ENDPOINT_POST);
-        log.trace("Receive PVP Response from 'ID Austria system', by using POST-Binding.");
-
-      } else if (request.getMethod().equalsIgnoreCase("GET")) {
-        decoder = new RedirectBinding();
-        comperator = new EaafUriCompare(pendingReq.getAuthUrl()
-            + IdAustriaClientAuthConstants.ENDPOINT_REDIRECT);
-        log.trace("Receive PVP Response from 'ID Austria system', by using Redirect-Binding.");
-
-      } else {
-        log.warn("Receive PVP Response, but Binding ("
-            + request.getMethod() + ") is not supported.");
-        throw new AuthnResponseValidationException(ERROR_PVP_03, new Object[]{
-            IdAustriaClientAuthConstants.MODULE_NAME_FOR_LOGGING});
-
-      }
-
-      // decode PVP response object
-      msg = (InboundMessage) decoder.decode(
-          request, response, metadataProvider, IDPSSODescriptor.DEFAULT_ELEMENT_NAME,
-          comperator);
-
-      // validate response signature
-      if (!msg.isVerified()) {
-        samlVerificationEngine.verify(msg, TrustEngineFactory.getSignatureKnownKeysTrustEngine(
-            metadataProvider));
-        msg.setVerified(true);
-
-      }
-
-      // validate assertion
-      final Pair<PvpSProfileResponse, Boolean> processedMsg =
-          preProcessAuthResponse((PvpSProfileResponse) msg);
-
-      //check if SAML2 response contains user-stop decision
+      log.trace("Starting ReceiveMobilePhoneSignatureResponseTask");
+      IDecoder decoder = loadDecoder(request);
+      EaafUriCompare comparator = loadComparator(request);
+      InboundMessage inboundMessage = decodeAndVerifyMessage(request, response, decoder, comparator);
+      final Pair<PvpSProfileResponse, Boolean> processedMsg = validateAssertion((PvpSProfileResponse) inboundMessage);
       if (processedMsg.getSecond()) {
         stopProcessFromUserDecision(executionContext, request, response);
+        return;
+      }
 
-      } else {
-        // validate entityId of response
-        final String msNodeEntityID = authConfig.getBasicConfiguration(
-            IdAustriaClientAuthConstants.CONFIG_PROPS_ID_AUSTRIA_ENTITYID);
-        final String respEntityId = msg.getEntityID();
-        if (!msNodeEntityID.equals(respEntityId)) {
-          log.warn("Response Issuer is not from valid 'ID Austria IDP'. Stopping ID Austria authentication ...");
-          throw new AuthnResponseValidationException(ERROR_PVP_08,
-              new Object[]{IdAustriaClientAuthConstants.MODULE_NAME_FOR_LOGGING,
-                  msg.getEntityID()});
-
-        }
-
-        // initialize Attribute extractor
-        final AssertionAttributeExtractor extractor =
-            new AssertionAttributeExtractor(processedMsg.getFirst().getResponse());
-
-
-
-
-        /*
-         * SAML2 response ist bereits vollständig validiert und die Attribute können aus dem
-         * <AssertionAttributeExtractor extractor> ausgelesen werden.
-         * Die AttributeNamen sind entsprechend PVP Spezifikation, z.B. PvpAttributeDefinitions.GIVEN_NAME_NAME
-         *
-         * ---------------------------------------------------------------------------------------------
-         *
-         * TODO: ab hier müssen wir wohl was anpassen
-         *
-         */
-
-        //load additional search-data from pendingRequest
-        final AuthProcessDataWrapper authProcessData = pendingReq.getSessionData(AuthProcessDataWrapper.class);
-        MergedRegisterSearchResult initialSearchResult =
-            authProcessData.getGenericDataFromSession(Constants.DATA_INITIAL_REGISTER_RESULT,
-                MergedRegisterSearchResult.class);
-        SimpleEidasData eidData = authProcessData.getGenericDataFromSession(Constants.DATA_SIMPLE_EIDAS,
-            SimpleEidasData.class);
-
-
-        SimpleMobileSignatureData simpleMobileSignatureData =
-            getAuthDataFromInterfederation(extractor, authProcessData);
-        if (!simpleMobileSignatureData.equalsSimpleEidasData(eidData)) {
-          //User cheated?
-          throw new InvalidUserInputException();//TODO
-        }
-        String bpkzp = simpleMobileSignatureData.getBpk();
-
-        MergedRegisterSearchResult result = registerSearchService.searchWithBpkZp(bpkzp);
-        if (result.getResultCount() == 0) {
-          //go to step 16
-          executionContext.put(Constants.TRANSITION_TO_GENERATE_GUI_QUERY_AUSTRIAN_RESIDENCE_TASK, true);
-          return;
-        } else if (result.getResultCount() == 1) {
-          String bpk = registerSearchService.step7aKittProcess(initialSearchResult, result, eidData, pendingReq);
-          authProcessData.setGenericDataToSession(Constants.DATA_RESULT_MATCHING_BPK, bpk);
-          //node 110
-        } else if (result.getResultCount() > 1) {
-          throw new ManualFixNecessaryException("bpkzp:" + bpkzp);// node 108
-        }
-
-        // set NeedConsent to false, because user gives consont during authentication
-        pendingReq.setNeedUserConsent(false);
-
-        log.info("Receive a valid assertion from IDP " + msg.getEntityID());
+      validateEntityId(inboundMessage);
+      AssertionAttributeExtractor extractor = new AssertionAttributeExtractor(processedMsg.getFirst().getResponse());
+
+      /*
+       * SAML2 response ist bereits vollständig validiert und die Attribute können aus dem
+       * <AssertionAttributeExtractor extractor> ausgelesen werden.
+       * Die AttributeNamen sind entsprechend PVP Spezifikation, z.B. PvpAttributeDefinitions.GIVEN_NAME_NAME
+       *
+       * ---------------------------------------------------------------------------------------------
+       *
+       * TODO: ab hier müssen wir wohl was anpassen
+       *
+       */
+
+      final AuthProcessDataWrapper authProcessData = pendingReq.getSessionData(AuthProcessDataWrapper.class);
+      MergedRegisterSearchResult initialSearchResult =
+          authProcessData.getGenericDataFromSession(DATA_INITIAL_REGISTER_RESULT, MergedRegisterSearchResult.class);
+      SimpleEidasData eidasData = authProcessData.getGenericDataFromSession(DATA_SIMPLE_EIDAS, SimpleEidasData.class);
+
+      SimpleMobileSignatureData simpleMobileSignatureData = getAuthDataFromInterfederation(extractor, authProcessData);
+      if (!simpleMobileSignatureData.equalsSimpleEidasData(eidasData)) {
+        //TODO User has cheated?
+        throw new InvalidUserInputException();
+      }
 
+      String bpkZp = simpleMobileSignatureData.getBpk();
+      MergedRegisterSearchResult result = registerSearchService.searchWithBpkZp(bpkZp);
+      if (result.getResultCount() == 0) {
+        //go to step 16
+        executionContext.put(Constants.TRANSITION_TO_GENERATE_GUI_QUERY_AUSTRIAN_RESIDENCE_TASK, true);
+        return;
+      } else if (result.getResultCount() == 1) {
+        String bpk = registerSearchService.step7aKittProcess(initialSearchResult, result, eidasData, pendingReq);
+        authProcessData.setGenericDataToSession(Constants.DATA_RESULT_MATCHING_BPK, bpk);
+        return;
+        //node 110
+      } else if (result.getResultCount() > 1) {
+        throw new ManualFixNecessaryException("bpkZp: " + bpkZp);// node 108
       }
 
+      // set NeedConsent to false, because user gives consent during authentication
+      pendingReq.setNeedUserConsent(false);
+      log.info("Receive a valid assertion from IDP " + inboundMessage.getEntityID());
     } catch (final AuthnResponseValidationException e) {
       throw new TaskExecutionException(pendingReq, ERROR_MSG_03, e);
-
     } catch (MessageDecodingException | SecurityException | SamlSigningException e) {
       //final String samlRequest = request.getParameter("SAMLRequest");
       //log.debug("Receive INVALID PVP Response from 'ms-specific eIDAS node': {}",
       //    samlRequest, null, e);
       throw new TaskExecutionException(pendingReq, ERROR_MSG_00,
-          new AuthnResponseValidationException(ERROR_PVP_11,
-              new Object[]{IdAustriaClientAuthConstants.MODULE_NAME_FOR_LOGGING}, e));
-
+          new AuthnResponseValidationException(ERROR_PVP_11, new Object[]{MODULE_NAME_FOR_LOGGING}, e));
     } catch (IOException | MarshallingException | TransformerException e) {
       log.debug("Processing PVP response from 'ms-specific eIDAS node' FAILED.", e);
       throw new TaskExecutionException(pendingReq, ERROR_MSG_01,
-          new AuthnResponseValidationException(ERROR_PVP_12,
-              new Object[]{IdAustriaClientAuthConstants.MODULE_NAME_FOR_LOGGING, e.getMessage()},
-              e));
-
+          new AuthnResponseValidationException(ERROR_PVP_12, new Object[]{MODULE_NAME_FOR_LOGGING, e.getMessage()}, e));
     } catch (final CredentialsNotAvailableException e) {
       log.debug("PVP response decrytion FAILED. No credential found.", e);
       throw new TaskExecutionException(pendingReq, ERROR_MSG_02,
-          new AuthnResponseValidationException(ERROR_PVP_10,
-              new Object[]{IdAustriaClientAuthConstants.MODULE_NAME_FOR_LOGGING}, e));
-
+          new AuthnResponseValidationException(ERROR_PVP_10, new Object[]{MODULE_NAME_FOR_LOGGING}, e));
     } catch (final Exception e) {
       e.printStackTrace();
       log.debug("PVP response validation FAILED. Msg:" + e.getMessage(), e);
       throw new TaskExecutionException(pendingReq, ERROR_MSG_03,
-          new AuthnResponseValidationException(ERROR_PVP_12,
-              new Object[]{IdAustriaClientAuthConstants.MODULE_NAME_FOR_LOGGING, e.getMessage()}, e));
+          new AuthnResponseValidationException(ERROR_PVP_12, new Object[]{MODULE_NAME_FOR_LOGGING, e.getMessage()}, e));
+    }
+  }
+
+  @NotNull
+  private InboundMessage decodeAndVerifyMessage(HttpServletRequest request, HttpServletResponse response,
+                                                IDecoder decoder, EaafUriCompare comparator) throws Exception {
+    InboundMessage inboundMessage = (InboundMessage) decoder.decode(request, response, metadataProvider,
+        IDPSSODescriptor.DEFAULT_ELEMENT_NAME, comparator);
+    if (!inboundMessage.isVerified()) {
+      samlVerificationEngine.verify(inboundMessage, TrustEngineFactory.getSignatureKnownKeysTrustEngine(
+          metadataProvider));
+      inboundMessage.setVerified(true);
+    }
+    return inboundMessage;
+  }
+
+  private void validateEntityId(InboundMessage inboundMessage) throws AuthnResponseValidationException {
+    final String msNodeEntityID = authConfig
+        .getBasicConfiguration(IdAustriaClientAuthConstants.CONFIG_PROPS_ID_AUSTRIA_ENTITYID);
+    final String respEntityId = inboundMessage.getEntityID();
+    if (!msNodeEntityID.equals(respEntityId)) {
+      log.warn("Response Issuer is not from valid 'ID Austria IDP'. Stopping ID Austria authentication ...");
+      throw new AuthnResponseValidationException(ERROR_PVP_08,
+          new Object[]{MODULE_NAME_FOR_LOGGING,
+              inboundMessage.getEntityID()});
+    }
+  }
+
+  @NotNull
+  private EaafUriCompare loadComparator(HttpServletRequest request) throws AuthnResponseValidationException {
+    if (request.getMethod().equalsIgnoreCase("POST")) {
+      log.trace("Receive PVP Response from 'ID Austria system', by using POST-Binding.");
+      return new EaafUriCompare(pendingReq.getAuthUrl() + IdAustriaClientAuthConstants.ENDPOINT_POST);
+    } else if (request.getMethod().equalsIgnoreCase("GET")) {
+      log.trace("Receive PVP Response from 'ID Austria system', by using Redirect-Binding.");
+      return new EaafUriCompare(pendingReq.getAuthUrl() + IdAustriaClientAuthConstants.ENDPOINT_REDIRECT);
+    } else {
+      log.warn("Receive PVP Response from 'ID Austria system', but Binding {} is not supported.", request.getMethod());
+      throw new AuthnResponseValidationException(ERROR_PVP_03, new Object[]{MODULE_NAME_FOR_LOGGING});
     }
+  }
 
+  @NotNull
+  private IDecoder loadDecoder(HttpServletRequest request) throws AuthnResponseValidationException {
+    if (request.getMethod().equalsIgnoreCase("POST")) {
+      log.trace("Receive PVP Response from 'ID Austria system', by using POST-Binding.");
+      return new PostBinding();
+    } else if (request.getMethod().equalsIgnoreCase("GET")) {
+      log.trace("Receive PVP Response from 'ID Austria system', by using Redirect-Binding.");
+      return new RedirectBinding();
+    } else {
+      log.warn("Receive PVP Response from 'ID Austria system', but Binding {} is not supported.", request.getMethod());
+      throw new AuthnResponseValidationException(ERROR_PVP_03, new Object[]{MODULE_NAME_FOR_LOGGING});
+    }
   }
 
-  private Pair<PvpSProfileResponse, Boolean> preProcessAuthResponse(PvpSProfileResponse msg)
+  private Pair<PvpSProfileResponse, Boolean> validateAssertion(PvpSProfileResponse msg)
       throws IOException, MarshallingException, TransformerException,
       CredentialsNotAvailableException, AuthnResponseValidationException, SamlAssertionValidationExeption {
     log.debug("Start PVP21 assertion processing... ");
-    final Response samlResp = (Response) msg.getResponse();
-
-    // check SAML2 response status-code
-    if (samlResp.getStatus().getStatusCode().getValue().equals(StatusCode.SUCCESS)) {
-      // validate PVP 2.1 assertion
-      samlVerificationEngine.validateAssertion(samlResp,
+    final Response response = (Response) msg.getResponse();
+    if (response.getStatus().getStatusCode().getValue().equals(StatusCode.SUCCESS)) {
+      samlVerificationEngine.validateAssertion(response,
           credentialProvider.getMessageEncryptionCredential(),
           pendingReq.getAuthUrl() + IdAustriaClientAuthConstants.ENDPOINT_METADATA,
-          IdAustriaClientAuthConstants.MODULE_NAME_FOR_LOGGING);
-
-      msg.setSamlMessage(Saml2Utils.asDomDocument(samlResp).getDocumentElement());
+          MODULE_NAME_FOR_LOGGING);
+      msg.setSamlMessage(Saml2Utils.asDomDocument(response).getDocumentElement());
       revisionsLogger.logEvent(pendingReq,
           IdAustriaClientAuthEventConstants.AUTHPROCESS_ID_AUSTRIA_RESPONSE_RECEIVED,
-          samlResp.getID());
+          response.getID());
       return Pair.newInstance(msg, false);
-
     } else {
-      log.info("Receive StatusCode {} from 'ms-specific eIDAS node'.",
-          samlResp.getStatus().getStatusCode().getValue());
-      StatusCode subStatusCode = getSubStatusCode(samlResp);
+      log.info("Receive StatusCode {} from 'ms-specific eIDAS node'.", response.getStatus().getStatusCode().getValue());
+      StatusCode subStatusCode = getSubStatusCode(response);
       if (subStatusCode != null
           && IdAustriaClientAuthConstants.SAML2_STATUSCODE_USERSTOP.equals(subStatusCode.getValue())) {
         log.info("Find 'User-Stop operation' in SAML2 response. Stopping authentication process ... ");
         return Pair.newInstance(msg, true);
-
       }
 
       revisionsLogger.logEvent(pendingReq,
           IdAustriaClientAuthEventConstants.AUTHPROCESS_ID_AUSTRIA_RESPONSE_RECEIVED_ERROR);
       throw new AuthnResponseValidationException(ERROR_PVP_05,
-          new Object[]{IdAustriaClientAuthConstants.MODULE_NAME_FOR_LOGGING,
-              samlResp.getIssuer().getValue(),
-              samlResp.getStatus().getStatusCode().getValue(),
-              samlResp.getStatus().getStatusMessage().getMessage()});
-
+          new Object[]{MODULE_NAME_FOR_LOGGING,
+              response.getIssuer().getValue(),
+              response.getStatus().getStatusCode().getValue(),
+              response.getStatus().getStatusMessage().getMessage()});
     }
-
   }
 
   /**
@@ -315,55 +289,42 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask extends
         && StringUtils.isNotEmpty(samlResp.getStatus().getStatusCode().getStatusCode().getValue())) {
       return samlResp.getStatus().getStatusCode().getStatusCode();
     }
-
     return null;
   }
 
   private SimpleMobileSignatureData getAuthDataFromInterfederation(AssertionAttributeExtractor extractor,
                                                                    AuthProcessDataWrapper authProcessData)
       throws EaafBuilderException {
-
     List<String> requiredAttributes = IdAustriaClientAuthConstants.DEFAULT_REQUIRED_PVP_ATTRIBUTE_NAMES;
-    SimpleMobileSignatureData simpleMobileSignatureData = new SimpleMobileSignatureData();
+    SimpleMobileSignatureData result = new SimpleMobileSignatureData();
     try {
-      // check if all attributes are include
       if (!extractor.containsAllRequiredAttributes(requiredAttributes)) {
         log.warn("PVP Response from 'ID Austria node' contains not all requested attributes.");
-        throw new AssertionValidationExeption(ERROR_PVP_06, new Object[]{
-            IdAustriaClientAuthConstants.MODULE_NAME_FOR_LOGGING});
-
+        throw new AssertionValidationExeption(ERROR_PVP_06, new Object[]{MODULE_NAME_FOR_LOGGING});
       }
-
-      HashMap<String, String> map = new HashMap<>();
       final Set<String> includedAttrNames = extractor.getAllIncludeAttributeNames();
       for (final String attrName : includedAttrNames) {
-        map.put(attrName, extractor.getSingleAttributeValue(attrName));
-
         if (PvpAttributeDefinitions.BPK_NAME.equals(attrName)) {
-          simpleMobileSignatureData.setBpk(extractor.getSingleAttributeValue(attrName));
+          result.setBpk(extractor.getSingleAttributeValue(attrName));
         }
         if (PvpAttributeDefinitions.GIVEN_NAME_NAME.equals(attrName)) {
-          simpleMobileSignatureData.setGivenName(extractor.getSingleAttributeValue(attrName));
+          result.setGivenName(extractor.getSingleAttributeValue(attrName));
         }
         if (PvpAttributeDefinitions.PRINCIPAL_NAME_NAME.equals(attrName)) {
-          simpleMobileSignatureData.setFamilyName(extractor.getSingleAttributeValue(attrName));
+          result.setFamilyName(extractor.getSingleAttributeValue(attrName));
         }
         if (PvpAttributeDefinitions.BIRTHDATE_NAME.equals(attrName)) {
-          simpleMobileSignatureData.setDateOfBirth(extractor.getSingleAttributeValue(attrName));
+          result.setDateOfBirth(extractor.getSingleAttributeValue(attrName));
         }
         if (PvpAttributeDefinitions.EID_CITIZEN_EIDAS_QAA_LEVEL_NAME.equals(attrName)) {
           authProcessData.setQaaLevel(extractor.getSingleAttributeValue(attrName));
         }
-
       }
-
       authProcessData.setIssueInstant(extractor.getAssertionIssuingDate());
-
     } catch (final AssertionValidationExeption e) {
       throw new EaafBuilderException(ERROR_PVP_06, null, e.getMessage(), e);
-
     }
-    return simpleMobileSignatureData;
+    return result;
   }
 
 
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/dummy/DummyOA.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/dummy/DummyOA.java
index cf879562..2f7782ae 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/dummy/DummyOA.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/dummy/DummyOA.java
@@ -1,21 +1,15 @@
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.test.dummy;
 
-import java.util.ArrayList;
-import java.util.Collections;
-import java.util.HashMap;
-import java.util.List;
-import java.util.Map;
-
-import org.apache.commons.lang3.StringUtils;
-
 import at.gv.egiz.eaaf.core.impl.data.Pair;
 import at.gv.egiz.eaaf.core.impl.idp.auth.builder.BpkBuilder;
 import at.gv.egiz.eaaf.core.impl.utils.KeyValueUtils;
-
 import lombok.Getter;
 import lombok.Setter;
+import org.apache.commons.lang3.StringUtils;
+
+import java.util.*;
 
-public class DummyOA implements IAhSpConfiguration{
+public class DummyOA implements IAhSpConfiguration {
 
   private static final long serialVersionUID = 1L;
   private String uniqueAppId = null;
@@ -74,7 +68,7 @@ public class DummyOA implements IAhSpConfiguration{
   @Override
   public boolean isConfigurationValue(final String key) {
     if (StringUtils.isNotEmpty(getConfigurationValue(key))) {
-      return Boolean.valueOf(getConfigurationValue(key));
+      return Boolean.parseBoolean(getConfigurationValue(key));
     } else {
       return false;
     }
@@ -258,7 +252,7 @@ public class DummyOA implements IAhSpConfiguration{
 
   @Override
   public boolean isRestrictedServiceProvider() {
-    return this.restricted ;
+    return this.restricted;
   }
 
 
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/GenerateMobilePhoneSignatureRequestTaskTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/GenerateMobilePhoneSignatureRequestTaskTest.java
index 4fb05a35..8e5ecfe1 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/GenerateMobilePhoneSignatureRequestTaskTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/GenerateMobilePhoneSignatureRequestTaskTest.java
@@ -1,31 +1,5 @@
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.test.tasks;
 
-import static org.junit.Assert.assertThrows;
-
-import java.io.ByteArrayInputStream;
-import java.io.InputStream;
-import java.util.Base64;
-import java.util.Map;
-
-import org.apache.commons.lang3.RandomStringUtils;
-import org.junit.Assert;
-import org.junit.Before;
-import org.junit.BeforeClass;
-import org.junit.Test;
-import org.junit.runner.RunWith;
-import org.opensaml.core.xml.config.XMLObjectProviderRegistrySupport;
-import org.opensaml.core.xml.util.XMLObjectSupport;
-import org.opensaml.saml.common.xml.SAMLConstants;
-import org.opensaml.saml.saml2.core.AuthnRequest;
-import org.springframework.beans.factory.annotation.Autowired;
-import org.springframework.context.ApplicationContext;
-import org.springframework.mock.web.MockHttpServletRequest;
-import org.springframework.mock.web.MockHttpServletResponse;
-import org.springframework.test.context.ContextConfiguration;
-import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
-import org.springframework.web.context.request.RequestContextHolder;
-import org.springframework.web.context.request.ServletRequestAttributes;
-
 import at.asitplus.eidas.specific.connector.test.config.dummy.MsConnectorDummyConfigMap;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthConstants;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.provider.IdAustriaClientAuthMetadataProvider;
@@ -48,6 +22,34 @@ import at.gv.egiz.eaaf.modules.pvp2.impl.opensaml.initialize.EaafOpenSaml3xIniti
 import at.gv.egiz.eaaf.modules.pvp2.impl.utils.Saml2Utils;
 import at.gv.egiz.eaaf.modules.pvp2.impl.validation.TrustEngineFactory;
 import at.gv.egiz.eaaf.modules.pvp2.impl.verification.SamlVerificationEngine;
+import org.apache.commons.lang3.RandomStringUtils;
+import org.junit.Before;
+import org.junit.BeforeClass;
+import org.junit.Test;
+import org.junit.runner.RunWith;
+import org.opensaml.core.xml.config.XMLObjectProviderRegistrySupport;
+import org.opensaml.core.xml.util.XMLObjectSupport;
+import org.opensaml.saml.common.xml.SAMLConstants;
+import org.opensaml.saml.saml2.core.AuthnRequest;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.context.ApplicationContext;
+import org.springframework.mock.web.MockHttpServletRequest;
+import org.springframework.mock.web.MockHttpServletResponse;
+import org.springframework.test.context.ContextConfiguration;
+import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
+import org.springframework.web.context.request.RequestContextHolder;
+import org.springframework.web.context.request.ServletRequestAttributes;
+
+import java.io.ByteArrayInputStream;
+import java.io.InputStream;
+import java.util.Base64;
+import java.util.Map;
+
+import static org.junit.Assert.assertEquals;
+import static org.junit.Assert.assertNotNull;
+import static org.junit.Assert.assertThrows;
+import static org.junit.Assert.assertTrue;
+import static org.springframework.util.Assert.isInstanceOf;
 
 @RunWith(SpringJUnit4ClassRunner.class)
 @ContextConfiguration(locations = {
@@ -140,13 +142,10 @@ public class GenerateMobilePhoneSignatureRequestTaskTest {
     final TaskExecutionException e = assertThrows(TaskExecutionException.class,
         () -> task.execute(pendingReq, executionContext));
 
-    Assert.assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
-    Assert.assertNotNull(e.getOriginalException());
-    org.springframework.util.Assert.isInstanceOf(EaafConfigurationException.class,
-        e.getOriginalException());
-    Assert.assertEquals("module.eidasauth.00",
-        ((EaafConfigurationException) e.getOriginalException()).getErrorId());
-    
+    assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
+    assertNotNull(e.getOriginalException());
+    isInstanceOf(EaafConfigurationException.class, e.getOriginalException());
+    assertEquals("module.eidasauth.00", ((EaafConfigurationException) e.getOriginalException()).getErrorId());
   }
 
   @Test
@@ -156,14 +155,12 @@ public class GenerateMobilePhoneSignatureRequestTaskTest {
 
     final TaskExecutionException e = assertThrows(TaskExecutionException.class,
         () -> task.execute(pendingReq, executionContext));
-    Assert.assertNotNull(e.getPendingRequestID());
-    Assert.assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
-    Assert.assertNotNull(e.getOriginalException());
-    org.springframework.util.Assert.isInstanceOf(EaafConfigurationException.class,
-        e.getOriginalException());
-    Assert.assertEquals("module.eidasauth.idaustria.02",
+    assertNotNull(e.getPendingRequestID());
+    assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
+    assertNotNull(e.getOriginalException());
+    isInstanceOf(EaafConfigurationException.class, e.getOriginalException());
+    assertEquals("module.eidasauth.idaustria.02",
         ((EaafConfigurationException) e.getOriginalException()).getErrorId());
-
   }
 
   @Test
@@ -175,14 +172,12 @@ public class GenerateMobilePhoneSignatureRequestTaskTest {
 
     final TaskExecutionException e = assertThrows(TaskExecutionException.class,
         () -> task.execute(pendingReq, executionContext));
-    Assert.assertNotNull(e.getPendingRequestID());
-    Assert.assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
-    Assert.assertNotNull(e.getOriginalException());
-    org.springframework.util.Assert.isInstanceOf(CredentialsNotAvailableException.class,
-        e.getOriginalException());
-    Assert.assertEquals("internal.pvp.01",
+    assertNotNull(e.getPendingRequestID());
+    assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
+    assertNotNull(e.getOriginalException());
+    isInstanceOf(CredentialsNotAvailableException.class, e.getOriginalException());
+    assertEquals("internal.pvp.01",
         ((CredentialsNotAvailableException) e.getOriginalException()).getErrorId());
-
   }
 
   @Test
@@ -198,33 +193,33 @@ public class GenerateMobilePhoneSignatureRequestTaskTest {
   }
 
   private void validate() throws Exception {
-    Assert.assertEquals("HTTP Statuscode", 200, httpResp.getStatus());
-    Assert.assertEquals("ContentType", "text/html;charset=UTF-8", httpResp.getContentType());
-    Assert.assertEquals("ContentEncoding", "UTF-8", httpResp.getCharacterEncoding());
+    assertEquals("HTTP Statuscode", 200, httpResp.getStatus());
+    assertEquals("ContentType", "text/html;charset=UTF-8", httpResp.getContentType());
+    assertEquals("ContentEncoding", "UTF-8", httpResp.getCharacterEncoding());
 
     final String html = httpResp.getContentAsString();
-    Assert.assertNotNull("XML Metadata", html);
+    assertNotNull("XML Metadata", html);
 
     final int startIndex = html.indexOf("SAMLRequest=");
-    Assert.assertTrue("No SAMLRequest in html", startIndex >= 0);
+    assertTrue("No SAMLRequest in html", startIndex >= 0);
     final String authnXml = html.substring(startIndex + "SAMLRequest=".length());
 
     // check if relaystate was stored
     final int startIndexRelayState = html.indexOf("RelayState=");
-    Assert.assertTrue("wrong RelayState in HTML",
+    assertTrue("wrong RelayState in HTML",
         startIndexRelayState >= 0);
     final String relayState = html.substring(startIndexRelayState + "RelayState=".length(), startIndex);
     final String storedPendingReqId = transactionStorage.get(relayState, String.class);
-    Assert.assertEquals("relayStore not map to pendingRequestId",
+    assertEquals("relayStore not map to pendingRequestId",
         pendingReq.getPendingRequestId(), storedPendingReqId);
 
     final AuthnRequest authnRequest = (AuthnRequest) XMLObjectSupport.unmarshallFromInputStream(
         XMLObjectProviderRegistrySupport.getParserPool(), new ByteArrayInputStream(
             Base64.getDecoder().decode(authnXml)));
 
-    Assert.assertNotNull("AuthnReq", authnRequest);
-    Assert.assertNotNull("Issuer", authnRequest.getIssuer());
-    Assert.assertEquals("EntityId",
+    assertNotNull("AuthnReq", authnRequest);
+    assertNotNull("Issuer", authnRequest.getIssuer());
+    assertEquals("EntityId",
         "https://localhost/authhandler" + IdAustriaClientAuthConstants.ENDPOINT_METADATA,
         authnRequest.getIssuer().getValue());
 
@@ -240,12 +235,11 @@ public class GenerateMobilePhoneSignatureRequestTaskTest {
         metadataFactory.createMetadataProvider(METADATA_SP_PATH, null, "jUnit SP", null));
     samlVerifyEngine.verify(msg, TrustEngineFactory.getSignatureKnownKeysTrustEngine(metadataProvider));
 
-    Assert.assertNotNull("RequestedAuthnContext", authnRequest.getRequestedAuthnContext());
-    Assert.assertNotNull("AuthnContextClassRef",
-        authnRequest.getRequestedAuthnContext().getAuthnContextClassRefs());
-    Assert.assertEquals("#AuthnContextClassRef", 1,
+    assertNotNull("RequestedAuthnContext", authnRequest.getRequestedAuthnContext());
+    assertNotNull("AuthnContextClassRef", authnRequest.getRequestedAuthnContext().getAuthnContextClassRefs());
+    assertEquals("#AuthnContextClassRef", 1,
         authnRequest.getRequestedAuthnContext().getAuthnContextClassRefs().size());
-    Assert.assertEquals("LoA", "http://eidas.europa.eu/LoA/high",
+    assertEquals("LoA", "http://eidas.europa.eu/LoA/high",
         authnRequest.getRequestedAuthnContext().getAuthnContextClassRefs().get(0).getAuthnContextClassRef());
 
   }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest.java
index fb34a2dd..42dd3ddc 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest.java
@@ -1,35 +1,5 @@
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.test.tasks;
 
-import static org.junit.Assert.assertThrows;
-
-import java.io.IOException;
-import java.util.Base64;
-
-import javax.xml.transform.TransformerException;
-
-import org.apache.commons.io.IOUtils;
-import org.apache.commons.lang3.RandomStringUtils;
-import org.joda.time.DateTime;
-import org.junit.Assert;
-import org.junit.Before;
-import org.junit.BeforeClass;
-import org.junit.Test;
-import org.junit.runner.RunWith;
-import org.opensaml.core.xml.config.XMLObjectProviderRegistrySupport;
-import org.opensaml.core.xml.io.MarshallingException;
-import org.opensaml.core.xml.io.UnmarshallingException;
-import org.opensaml.core.xml.util.XMLObjectSupport;
-import org.opensaml.saml.saml2.core.Issuer;
-import org.opensaml.saml.saml2.core.Response;
-import org.springframework.beans.factory.annotation.Autowired;
-import org.springframework.context.ApplicationContext;
-import org.springframework.mock.web.MockHttpServletRequest;
-import org.springframework.mock.web.MockHttpServletResponse;
-import org.springframework.test.context.ContextConfiguration;
-import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
-import org.springframework.web.context.request.RequestContextHolder;
-import org.springframework.web.context.request.ServletRequestAttributes;
-
 import at.asitplus.eidas.specific.connector.test.config.dummy.MsConnectorDummyConfigMap;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
@@ -57,6 +27,39 @@ import at.gv.egiz.eaaf.modules.pvp2.impl.opensaml.initialize.EaafOpenSaml3xIniti
 import at.gv.egiz.eaaf.modules.pvp2.impl.utils.Saml2Utils;
 import at.gv.egiz.eaaf.modules.pvp2.sp.exception.AuthnResponseValidationException;
 import net.shibboleth.utilities.java.support.xml.XMLParserException;
+import org.apache.commons.io.IOUtils;
+import org.apache.commons.lang3.RandomStringUtils;
+import org.joda.time.DateTime;
+import org.junit.Before;
+import org.junit.BeforeClass;
+import org.junit.Test;
+import org.junit.runner.RunWith;
+import org.opensaml.core.xml.config.XMLObjectProviderRegistrySupport;
+import org.opensaml.core.xml.io.MarshallingException;
+import org.opensaml.core.xml.io.UnmarshallingException;
+import org.opensaml.core.xml.util.XMLObjectSupport;
+import org.opensaml.saml.saml2.core.Issuer;
+import org.opensaml.saml.saml2.core.Response;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.context.ApplicationContext;
+import org.springframework.mock.web.MockHttpServletRequest;
+import org.springframework.mock.web.MockHttpServletResponse;
+import org.springframework.test.context.ContextConfiguration;
+import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
+import org.springframework.web.context.request.RequestContextHolder;
+import org.springframework.web.context.request.ServletRequestAttributes;
+
+import javax.xml.transform.TransformerException;
+import java.io.IOException;
+import java.util.Base64;
+
+import static org.junit.Assert.assertEquals;
+import static org.junit.Assert.assertFalse;
+import static org.junit.Assert.assertNotNull;
+import static org.junit.Assert.assertThrows;
+import static org.junit.Assert.assertTrue;
+import static org.junit.Assert.fail;
+import static org.springframework.util.Assert.isInstanceOf;
 
 @RunWith(SpringJUnit4ClassRunner.class)
 @ContextConfiguration(locations = {
@@ -67,9 +70,9 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest {
 
   private static final String METADATA_PATH = "classpath:/data/idp_metadata_classpath_entity.xml";
 
-  @Autowired(required = true)
+  @Autowired
   private ApplicationContext context;
-  @Autowired(required = true)
+  @Autowired
   protected MsConnectorDummyConfigMap authConfig;
   @Autowired
   private IdAustriaClientAuthMetadataProvider metadataProvider;
@@ -78,11 +81,10 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest {
   @Autowired
   private PvpMetadataResolverFactory metadataFactory;
 
-  final ExecutionContext executionContext = new ExecutionContextImpl();
+  private final ExecutionContext executionContext = new ExecutionContextImpl();
   private MockHttpServletRequest httpReq;
   private MockHttpServletResponse httpResp;
   private DummyPendingRequest pendingReq;
-  private DummyOA oaParam;
 
   private ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask task;
 
@@ -115,13 +117,11 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest {
     RequestContextHolder.resetRequestAttributes();
     RequestContextHolder.setRequestAttributes(new ServletRequestAttributes(httpReq, httpResp));
 
-    authConfig.putConfigValue(IdAustriaClientAuthConstants.CONFIG_PROPS_ID_AUSTRIA_ENTITYID,
-        METADATA_PATH);
+    authConfig.putConfigValue(IdAustriaClientAuthConstants.CONFIG_PROPS_ID_AUSTRIA_ENTITYID, METADATA_PATH);
 
-    oaParam = new DummyOA();
+    DummyOA oaParam = new DummyOA();
     oaParam.setUniqueAppId("http://test.com/test");
-    oaParam.setTargetIdentifier(
-        EaafConstants.URN_PREFIX_CDID + RandomStringUtils.randomAlphabetic(2));
+    oaParam.setTargetIdentifier(EaafConstants.URN_PREFIX_CDID + RandomStringUtils.randomAlphabetic(2));
 
     pendingReq = new DummyPendingRequest();
     pendingReq.initialize(httpReq, authConfig);
@@ -129,7 +129,6 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest {
     pendingReq.setOnlineApplicationConfiguration(oaParam);
 
     metadataProvider.fullyDestroy();
-
   }
 
   @Test
@@ -141,14 +140,11 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest {
     final TaskExecutionException e = assertThrows(TaskExecutionException.class,
         () -> task.execute(pendingReq, executionContext));
 
-    Assert.assertNotNull(e.getPendingRequestID());
-    Assert.assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
-    Assert.assertNotNull(e.getOriginalException());
-    org.springframework.util.Assert.isInstanceOf(AuthnResponseValidationException.class,
-        e.getOriginalException());
-    Assert.assertEquals("sp.pvp2.03",
-        ((AuthnResponseValidationException) e.getOriginalException()).getErrorId());
-
+    assertNotNull(e.getPendingRequestID());
+    assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
+    assertNotNull(e.getOriginalException());
+    isInstanceOf(AuthnResponseValidationException.class, e.getOriginalException());
+    assertEquals("sp.pvp2.03", ((AuthnResponseValidationException) e.getOriginalException()).getErrorId());
   }
 
   @Test
@@ -160,13 +156,11 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest {
     final TaskExecutionException e = assertThrows(TaskExecutionException.class,
         () -> task.execute(pendingReq, executionContext));
 
-    Assert.assertNotNull(e.getPendingRequestID());
-    Assert.assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
-    Assert.assertNotNull(e.getOriginalException());
-    org.springframework.util.Assert.isInstanceOf(AuthnResponseValidationException.class,
-        e.getOriginalException());
-    Assert.assertEquals("sp.pvp2.12",
-        ((AuthnResponseValidationException) e.getOriginalException()).getErrorId());
+    assertNotNull(e.getPendingRequestID());
+    assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
+    assertNotNull(e.getOriginalException());
+    isInstanceOf(AuthnResponseValidationException.class, e.getOriginalException());
+    assertEquals("sp.pvp2.12", ((AuthnResponseValidationException) e.getOriginalException()).getErrorId());
 
   }
 
@@ -175,14 +169,11 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest {
     final TaskExecutionException e = assertThrows(TaskExecutionException.class,
         () -> task.execute(pendingReq, executionContext));
 
-    Assert.assertNotNull(e.getPendingRequestID());
-    Assert.assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
-    Assert.assertNotNull(e.getOriginalException());
-    org.springframework.util.Assert.isInstanceOf(AuthnResponseValidationException.class,
-        e.getOriginalException());
-    Assert.assertEquals("sp.pvp2.12",
-        ((AuthnResponseValidationException) e.getOriginalException()).getErrorId());
-
+    assertNotNull(e.getPendingRequestID());
+    assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
+    assertNotNull(e.getOriginalException());
+    isInstanceOf(AuthnResponseValidationException.class, e.getOriginalException());
+    assertEquals("sp.pvp2.12", ((AuthnResponseValidationException) e.getOriginalException()).getErrorId());
   }
 
   @Test
@@ -195,13 +186,11 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest {
 
     final TaskExecutionException e = assertThrows(TaskExecutionException.class,
         () -> task.execute(pendingReq, executionContext));
-    Assert.assertNotNull(e.getPendingRequestID());
-    Assert.assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
-    Assert.assertNotNull(e.getOriginalException());
-    org.springframework.util.Assert.isInstanceOf(AuthnResponseValidationException.class,
-        e.getOriginalException());
-    Assert.assertEquals("sp.pvp2.12",
-        ((AuthnResponseValidationException) e.getOriginalException()).getErrorId());
+    assertNotNull(e.getPendingRequestID());
+    assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
+    assertNotNull(e.getOriginalException());
+    isInstanceOf(AuthnResponseValidationException.class, e.getOriginalException());
+    assertEquals("sp.pvp2.12", ((AuthnResponseValidationException) e.getOriginalException()).getErrorId());
 
   }
 
@@ -221,13 +210,11 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest {
     final TaskExecutionException e = assertThrows(TaskExecutionException.class,
         () -> task.execute(pendingReq, executionContext));
 
-    Assert.assertNotNull(e.getPendingRequestID());
-    Assert.assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
-    Assert.assertNotNull(e.getOriginalException());
-    org.springframework.util.Assert.isInstanceOf(AuthnResponseValidationException.class,
-        e.getOriginalException());
-    Assert.assertEquals("sp.pvp2.12",
-        ((AuthnResponseValidationException) e.getOriginalException()).getErrorId());
+    assertNotNull(e.getPendingRequestID());
+    assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
+    assertNotNull(e.getOriginalException());
+    isInstanceOf(AuthnResponseValidationException.class, e.getOriginalException());
+    assertEquals("sp.pvp2.12", ((AuthnResponseValidationException) e.getOriginalException()).getErrorId());
 
   }
 
@@ -246,14 +233,11 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest {
 
     final TaskExecutionException e = assertThrows(TaskExecutionException.class,
         () -> task.execute(pendingReq, executionContext));
-    Assert.assertNotNull(e.getPendingRequestID());
-    Assert.assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
-    Assert.assertNotNull(e.getOriginalException());
-    org.springframework.util.Assert.isInstanceOf(AuthnResponseValidationException.class,
-        e.getOriginalException());
-    Assert.assertEquals("sp.pvp2.11",
-        ((EaafException) e.getOriginalException()).getErrorId());
-
+    assertNotNull(e.getPendingRequestID());
+    assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
+    assertNotNull(e.getOriginalException());
+    isInstanceOf(AuthnResponseValidationException.class, e.getOriginalException());
+    assertEquals("sp.pvp2.11", ((EaafException) e.getOriginalException()).getErrorId());
   }
 
   @Test
@@ -275,13 +259,11 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest {
     final TaskExecutionException e = assertThrows(TaskExecutionException.class,
         () -> task.execute(pendingReq, executionContext));
 
-    Assert.assertNotNull(e.getPendingRequestID());
-    Assert.assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
-    Assert.assertNotNull(e.getOriginalException());
-    org.springframework.util.Assert.isInstanceOf(AuthnResponseValidationException.class,
-        e.getOriginalException());
-    Assert.assertEquals("sp.pvp2.12",
-        ((EaafException) e.getOriginalException()).getErrorId());
+    assertNotNull(e.getPendingRequestID());
+    assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
+    assertNotNull(e.getOriginalException());
+    isInstanceOf(AuthnResponseValidationException.class, e.getOriginalException());
+    assertEquals("sp.pvp2.12", ((EaafException) e.getOriginalException()).getErrorId());
 
   }
 
@@ -292,7 +274,7 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest {
 
     authConfig.putConfigValue(IdAustriaClientAuthConstants.CONFIG_PROPS_ID_AUSTRIA_ENTITYID,
         "http://wrong.idp/" + RandomStringUtils.randomAlphabetic(5));
-    
+
     metadataProvider.addMetadataResolverIntoChain(metadataFactory.createMetadataProvider(
         METADATA_PATH, null, "jUnit IDP", null));
 
@@ -308,13 +290,11 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest {
     final TaskExecutionException e = assertThrows(TaskExecutionException.class,
         () -> task.execute(pendingReq, executionContext));
 
-    Assert.assertNotNull(e.getPendingRequestID());
-    Assert.assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
-    Assert.assertNotNull(e.getOriginalException());
-    org.springframework.util.Assert.isInstanceOf(AuthnResponseValidationException.class,
-        e.getOriginalException());
-    Assert.assertEquals("sp.pvp2.08",
-        ((EaafException) e.getOriginalException()).getErrorId());
+    assertNotNull(e.getPendingRequestID());
+    assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
+    assertNotNull(e.getOriginalException());
+    isInstanceOf(AuthnResponseValidationException.class, e.getOriginalException());
+    assertEquals("sp.pvp2.08", ((EaafException) e.getOriginalException()).getErrorId());
 
   }
 
@@ -338,13 +318,11 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest {
     final TaskExecutionException e = assertThrows(TaskExecutionException.class,
         () -> task.execute(pendingReq, executionContext));
 
-    Assert.assertNotNull(e.getPendingRequestID());
-    Assert.assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
-    Assert.assertNotNull(e.getOriginalException());
-    org.springframework.util.Assert.isInstanceOf(AuthnResponseValidationException.class,
-        e.getOriginalException());
-    Assert.assertEquals("sp.pvp2.12",
-        ((EaafException) e.getOriginalException()).getErrorId());
+    assertNotNull(e.getPendingRequestID());
+    assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
+    assertNotNull(e.getOriginalException());
+    isInstanceOf(AuthnResponseValidationException.class, e.getOriginalException());
+    assertEquals("sp.pvp2.12", ((EaafException) e.getOriginalException()).getErrorId());
 
   }
 
@@ -368,13 +346,11 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest {
     final TaskExecutionException e = assertThrows(TaskExecutionException.class,
         () -> task.execute(pendingReq, executionContext));
 
-    Assert.assertNotNull(e.getPendingRequestID());
-    Assert.assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
-    Assert.assertNotNull(e.getOriginalException());
-    org.springframework.util.Assert.isInstanceOf(AuthnResponseValidationException.class,
-        e.getOriginalException());
-    Assert.assertEquals("sp.pvp2.05",
-        ((EaafException) e.getOriginalException()).getErrorId());
+    assertNotNull(e.getPendingRequestID());
+    assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
+    assertNotNull(e.getOriginalException());
+    isInstanceOf(AuthnResponseValidationException.class, e.getOriginalException());
+    assertEquals("sp.pvp2.05", ((EaafException) e.getOriginalException()).getErrorId());
 
   }
 
@@ -399,9 +375,9 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest {
     task.execute(pendingReq, executionContext);
 
     // validate state
-    Assert.assertTrue("process not cancelled", executionContext.isProcessCancelled());
-    Assert.assertTrue("process not stopped by user", pendingReq.isAbortedByUser());
-    Assert.assertFalse("should not authenticated", pendingReq.isAuthenticated());
+    assertTrue("process not cancelled", executionContext.isProcessCancelled());
+    assertTrue("process not stopped by user", pendingReq.isAbortedByUser());
+    assertFalse("should not authenticated", pendingReq.isAuthenticated());
 
   }
 
@@ -424,17 +400,14 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest {
 
     try {
       task.execute(pendingReq, executionContext);
-      Assert.fail("Invalid response not detected");
+      fail("Invalid response not detected");
 
     } catch (final TaskExecutionException e) {
-      Assert.assertNotNull(e.getPendingRequestID());
-      Assert.assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
-      Assert.assertNotNull(e.getOriginalException());
-      org.springframework.util.Assert.isInstanceOf(AuthnResponseValidationException.class,
-          e.getOriginalException());
-      Assert.assertEquals("sp.pvp2.05",
-          ((EaafException) e.getOriginalException()).getErrorId());
-
+      assertNotNull(e.getPendingRequestID());
+      assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
+      assertNotNull(e.getOriginalException());
+      isInstanceOf(AuthnResponseValidationException.class, e.getOriginalException());
+      assertEquals("sp.pvp2.05", ((EaafException) e.getOriginalException()).getErrorId());
     }
   }
 
@@ -457,16 +430,14 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest {
 
     try {
       task.execute(pendingReq, executionContext);
-      Assert.fail("Invalid response not detected");
+      fail("Invalid response not detected");
 
     } catch (final TaskExecutionException e) {
-      Assert.assertNotNull(e.getPendingRequestID());
-      Assert.assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
-      Assert.assertNotNull(e.getOriginalException());
-      org.springframework.util.Assert.isInstanceOf(AuthnResponseValidationException.class,
-          e.getOriginalException());
-      Assert.assertEquals("sp.pvp2.05",
-          ((EaafException) e.getOriginalException()).getErrorId());
+      assertNotNull(e.getPendingRequestID());
+      assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
+      assertNotNull(e.getOriginalException());
+      isInstanceOf(AuthnResponseValidationException.class, e.getOriginalException());
+      assertEquals("sp.pvp2.05", ((EaafException) e.getOriginalException()).getErrorId());
 
     }
   }
@@ -501,8 +472,8 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest {
 
     // validate state
     final AuthProcessDataWrapper session = pendingReq.getSessionData(AuthProcessDataWrapper.class);
-    Assert.assertEquals("LoA", "http://eidas.europa.eu/LoA/low", session.getQaaLevel());
-    Assert.assertEquals("IssueInstant", "2014-03-05T06:39:51Z", session.getIssueInstantString());
+    assertEquals("LoA", "http://eidas.europa.eu/LoA/low", session.getQaaLevel());
+    assertEquals("IssueInstant", "2014-03-05T06:39:51Z", session.getIssueInstantString());
 
     //TODO:
 
@@ -536,15 +507,14 @@ public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest {
     // perform task
     try {
       task.execute(pendingReq, executionContext);
-      Assert.fail("Invalid response not detected");
+      fail("Invalid response not detected");
 
     } catch (final TaskExecutionException e) {
-      Assert.assertNotNull(e.getPendingRequestID());
-      Assert.assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
-      Assert.assertNotNull(e.getOriginalException());
-      org.springframework.util.Assert.isInstanceOf(AuthnResponseValidationException.class,
-          e.getOriginalException());
-      Assert.assertTrue(e.getOriginalException().getCause() instanceof InvalidUserInputException);
+      assertNotNull(e.getPendingRequestID());
+      assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
+      assertNotNull(e.getOriginalException());
+      isInstanceOf(AuthnResponseValidationException.class, e.getOriginalException());
+      assertTrue(e.getOriginalException().getCause() instanceof InvalidUserInputException);
     }
 
   }
-- 
cgit v1.2.3


From 0c4fe92684a707040fd7536da05945a64b309740 Mon Sep 17 00:00:00 2001
From: Christian Kollmann <christian.kollmann@a-sit.at>
Date: Thu, 25 Feb 2021 07:54:53 +0100
Subject: Refactor tasks for MobilePhoneSignature login and tests

---
 .../eidas/v2/dao/SimpleMobileSignatureData.java    |  18 +-
 ...eSignatureResponseAndSearchInRegistersTask.java | 331 -------------
 .../ReceiveMobilePhoneSignatureResponseTask.java   | 340 +++++++++++++
 .../src/main/resources/eidas_v2_auth.beans.xml     |   2 +-
 ...natureResponseAndSearchInRegistersTaskTest.java | 543 ---------------------
 ...eceiveMobilePhoneSignatureResponseTaskTest.java | 371 ++++++++++++++
 6 files changed, 719 insertions(+), 886 deletions(-)
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseTask.java
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveMobilePhoneSignatureResponseTaskTest.java

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleMobileSignatureData.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleMobileSignatureData.java
index 2a7beb3b..e7a5547a 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleMobileSignatureData.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleMobileSignatureData.java
@@ -24,12 +24,12 @@
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.dao;
 
 import lombok.Data;
+import org.apache.commons.lang3.builder.EqualsBuilder;
 
 @Data
 public class SimpleMobileSignatureData {
 
   private String citizenCountryCode;
-
   private String bpk;
   private String givenName;
   private String familyName;
@@ -37,19 +37,15 @@ public class SimpleMobileSignatureData {
 
   /**
    * Compares the received authentication data from the mobile phone signature with the eid data received via eIDAS.
+   *
    * @param simpleEidasData The extracted eIDAS data
    * @return Returns true, if the eIDAS data matches the mobile phone signature data and false otherwise.
    */
   public boolean equalsSimpleEidasData(SimpleEidasData simpleEidasData) {
-    if (!simpleEidasData.getGivenName().equals(givenName)) {
-      return false;
-    }
-    if (!simpleEidasData.getFamilyName().equals(familyName)) {
-      return false;
-    }
-    if (!simpleEidasData.getDateOfBirth().equals(dateOfBirth)) {
-      return false;
-    }
-    return true;
+    return new EqualsBuilder()
+        .append(simpleEidasData.getGivenName(), givenName)
+        .append(simpleEidasData.getFamilyName(), familyName)
+        .append(simpleEidasData.getDateOfBirth(), dateOfBirth)
+        .isEquals();
   }
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask.java
deleted file mode 100644
index 81be04b5..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask.java
+++ /dev/null
@@ -1,331 +0,0 @@
-/*
- * Copyright 2021 A-SIT Plus GmbH
- * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
- * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
- *
- * Licensed under the EUPL, Version 1.2 or - as soon they will be approved by
- * the European Commission - subsequent versions of the EUPL (the "License");
- * You may not use this work except in compliance with the License.
- * You may obtain a copy of the License at:
- * https://joinup.ec.europa.eu/news/understanding-eupl-v12
- *
- * Unless required by applicable law or agreed to in writing, software
- * distributed under the License is distributed on an "AS IS" basis,
- * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
- * See the License for the specific language governing permissions and
- * limitations under the License.
- *
- * This product combines work with different licenses. See the "NOTICE" text
- * file for details on the various modules and licenses.
- * The "NOTICE" text file is part of the distribution. Any derivative works
- * that you distribute must include a readable copy of the "NOTICE" text file.
- */
-
-package at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks;
-
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.MergedRegisterSearchResult;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleMobileSignatureData;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.InvalidUserInputException;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.ManualFixNecessaryException;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthConstants;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthEventConstants;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.provider.IdAustriaClientAuthCredentialProvider;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.provider.IdAustriaClientAuthMetadataProvider;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.RegisterSearchService;
-import at.gv.egiz.eaaf.core.api.data.PvpAttributeDefinitions;
-import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
-import at.gv.egiz.eaaf.core.exceptions.EaafBuilderException;
-import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
-import at.gv.egiz.eaaf.core.impl.data.Pair;
-import at.gv.egiz.eaaf.core.impl.idp.auth.data.AuthProcessDataWrapper;
-import at.gv.egiz.eaaf.core.impl.idp.auth.modules.AbstractAuthServletTask;
-import at.gv.egiz.eaaf.modules.pvp2.api.binding.IDecoder;
-import at.gv.egiz.eaaf.modules.pvp2.exception.CredentialsNotAvailableException;
-import at.gv.egiz.eaaf.modules.pvp2.exception.SamlAssertionValidationExeption;
-import at.gv.egiz.eaaf.modules.pvp2.exception.SamlSigningException;
-import at.gv.egiz.eaaf.modules.pvp2.impl.binding.PostBinding;
-import at.gv.egiz.eaaf.modules.pvp2.impl.binding.RedirectBinding;
-import at.gv.egiz.eaaf.modules.pvp2.impl.message.InboundMessage;
-import at.gv.egiz.eaaf.modules.pvp2.impl.message.PvpSProfileResponse;
-import at.gv.egiz.eaaf.modules.pvp2.impl.utils.Saml2Utils;
-import at.gv.egiz.eaaf.modules.pvp2.impl.validation.EaafUriCompare;
-import at.gv.egiz.eaaf.modules.pvp2.impl.validation.TrustEngineFactory;
-import at.gv.egiz.eaaf.modules.pvp2.impl.verification.SamlVerificationEngine;
-import at.gv.egiz.eaaf.modules.pvp2.sp.exception.AssertionValidationExeption;
-import at.gv.egiz.eaaf.modules.pvp2.sp.exception.AuthnResponseValidationException;
-import at.gv.egiz.eaaf.modules.pvp2.sp.impl.utils.AssertionAttributeExtractor;
-import lombok.extern.slf4j.Slf4j;
-import org.apache.commons.lang3.StringUtils;
-import org.jetbrains.annotations.NotNull;
-import org.opensaml.core.xml.io.MarshallingException;
-import org.opensaml.messaging.decoder.MessageDecodingException;
-import org.opensaml.saml.saml2.core.Response;
-import org.opensaml.saml.saml2.core.StatusCode;
-import org.opensaml.saml.saml2.metadata.IDPSSODescriptor;
-import org.springframework.beans.factory.annotation.Autowired;
-import org.springframework.stereotype.Component;
-
-import javax.servlet.http.HttpServletRequest;
-import javax.servlet.http.HttpServletResponse;
-import javax.xml.transform.TransformerException;
-import java.io.IOException;
-import java.util.List;
-import java.util.Set;
-
-import static at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants.DATA_INITIAL_REGISTER_RESULT;
-import static at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants.DATA_SIMPLE_EIDAS;
-import static at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthConstants.MODULE_NAME_FOR_LOGGING;
-
-/**
- * Task that receives the SAML2 response from ID Austria system.
- * This corresponds to Step 15 in the eIDAS Matching Concept.
- *
- * @author tlenz
- */
-@Slf4j
-@Component("ReceiveMobilePhoneSignatureResponseTask")
-public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask extends AbstractAuthServletTask {
-
-  @Autowired
-  private SamlVerificationEngine samlVerificationEngine;
-  @Autowired
-  private RegisterSearchService registerSearchService;
-  @Autowired
-  private IdAustriaClientAuthCredentialProvider credentialProvider;
-  @Autowired
-  IdAustriaClientAuthMetadataProvider metadataProvider;
-
-  private static final String ERROR_PVP_03 = "sp.pvp2.03";
-  private static final String ERROR_PVP_05 = "sp.pvp2.05";
-  private static final String ERROR_PVP_06 = "sp.pvp2.06";
-  private static final String ERROR_PVP_08 = "sp.pvp2.08";
-  private static final String ERROR_PVP_10 = "sp.pvp2.10";
-  private static final String ERROR_PVP_11 = "sp.pvp2.11";
-  private static final String ERROR_PVP_12 = "sp.pvp2.12";
-
-  private static final String ERROR_MSG_00 = "Receive INVALID PVP Response from ID Austria system";
-  private static final String ERROR_MSG_01 = "Processing PVP response from 'ID Austria system' FAILED.";
-  private static final String ERROR_MSG_02 = "PVP response decrytion FAILED. No credential found.";
-  private static final String ERROR_MSG_03 = "PVP response validation FAILED.";
-
-  @Override
-  public void execute(ExecutionContext executionContext, HttpServletRequest request, HttpServletResponse response)
-      throws TaskExecutionException {
-    try {
-      log.trace("Starting ReceiveMobilePhoneSignatureResponseTask");
-      IDecoder decoder = loadDecoder(request);
-      EaafUriCompare comparator = loadComparator(request);
-      InboundMessage inboundMessage = decodeAndVerifyMessage(request, response, decoder, comparator);
-      final Pair<PvpSProfileResponse, Boolean> processedMsg = validateAssertion((PvpSProfileResponse) inboundMessage);
-      if (processedMsg.getSecond()) {
-        stopProcessFromUserDecision(executionContext, request, response);
-        return;
-      }
-
-      validateEntityId(inboundMessage);
-      AssertionAttributeExtractor extractor = new AssertionAttributeExtractor(processedMsg.getFirst().getResponse());
-
-      /*
-       * SAML2 response ist bereits vollständig validiert und die Attribute können aus dem
-       * <AssertionAttributeExtractor extractor> ausgelesen werden.
-       * Die AttributeNamen sind entsprechend PVP Spezifikation, z.B. PvpAttributeDefinitions.GIVEN_NAME_NAME
-       *
-       * ---------------------------------------------------------------------------------------------
-       *
-       * TODO: ab hier müssen wir wohl was anpassen
-       *
-       */
-
-      final AuthProcessDataWrapper authProcessData = pendingReq.getSessionData(AuthProcessDataWrapper.class);
-      MergedRegisterSearchResult initialSearchResult =
-          authProcessData.getGenericDataFromSession(DATA_INITIAL_REGISTER_RESULT, MergedRegisterSearchResult.class);
-      SimpleEidasData eidasData = authProcessData.getGenericDataFromSession(DATA_SIMPLE_EIDAS, SimpleEidasData.class);
-
-      SimpleMobileSignatureData simpleMobileSignatureData = getAuthDataFromInterfederation(extractor, authProcessData);
-      if (!simpleMobileSignatureData.equalsSimpleEidasData(eidasData)) {
-        //TODO User has cheated?
-        throw new InvalidUserInputException();
-      }
-
-      String bpkZp = simpleMobileSignatureData.getBpk();
-      MergedRegisterSearchResult result = registerSearchService.searchWithBpkZp(bpkZp);
-      if (result.getResultCount() == 0) {
-        //go to step 16
-        executionContext.put(Constants.TRANSITION_TO_GENERATE_GUI_QUERY_AUSTRIAN_RESIDENCE_TASK, true);
-        return;
-      } else if (result.getResultCount() == 1) {
-        String bpk = registerSearchService.step7aKittProcess(initialSearchResult, result, eidasData, pendingReq);
-        authProcessData.setGenericDataToSession(Constants.DATA_RESULT_MATCHING_BPK, bpk);
-        return;
-        //node 110
-      } else if (result.getResultCount() > 1) {
-        throw new ManualFixNecessaryException("bpkZp: " + bpkZp);// node 108
-      }
-
-      // set NeedConsent to false, because user gives consent during authentication
-      pendingReq.setNeedUserConsent(false);
-      log.info("Receive a valid assertion from IDP " + inboundMessage.getEntityID());
-    } catch (final AuthnResponseValidationException e) {
-      throw new TaskExecutionException(pendingReq, ERROR_MSG_03, e);
-    } catch (MessageDecodingException | SecurityException | SamlSigningException e) {
-      //final String samlRequest = request.getParameter("SAMLRequest");
-      //log.debug("Receive INVALID PVP Response from 'ms-specific eIDAS node': {}",
-      //    samlRequest, null, e);
-      throw new TaskExecutionException(pendingReq, ERROR_MSG_00,
-          new AuthnResponseValidationException(ERROR_PVP_11, new Object[]{MODULE_NAME_FOR_LOGGING}, e));
-    } catch (IOException | MarshallingException | TransformerException e) {
-      log.debug("Processing PVP response from 'ms-specific eIDAS node' FAILED.", e);
-      throw new TaskExecutionException(pendingReq, ERROR_MSG_01,
-          new AuthnResponseValidationException(ERROR_PVP_12, new Object[]{MODULE_NAME_FOR_LOGGING, e.getMessage()}, e));
-    } catch (final CredentialsNotAvailableException e) {
-      log.debug("PVP response decrytion FAILED. No credential found.", e);
-      throw new TaskExecutionException(pendingReq, ERROR_MSG_02,
-          new AuthnResponseValidationException(ERROR_PVP_10, new Object[]{MODULE_NAME_FOR_LOGGING}, e));
-    } catch (final Exception e) {
-      e.printStackTrace();
-      log.debug("PVP response validation FAILED. Msg:" + e.getMessage(), e);
-      throw new TaskExecutionException(pendingReq, ERROR_MSG_03,
-          new AuthnResponseValidationException(ERROR_PVP_12, new Object[]{MODULE_NAME_FOR_LOGGING, e.getMessage()}, e));
-    }
-  }
-
-  @NotNull
-  private InboundMessage decodeAndVerifyMessage(HttpServletRequest request, HttpServletResponse response,
-                                                IDecoder decoder, EaafUriCompare comparator) throws Exception {
-    InboundMessage inboundMessage = (InboundMessage) decoder.decode(request, response, metadataProvider,
-        IDPSSODescriptor.DEFAULT_ELEMENT_NAME, comparator);
-    if (!inboundMessage.isVerified()) {
-      samlVerificationEngine.verify(inboundMessage, TrustEngineFactory.getSignatureKnownKeysTrustEngine(
-          metadataProvider));
-      inboundMessage.setVerified(true);
-    }
-    return inboundMessage;
-  }
-
-  private void validateEntityId(InboundMessage inboundMessage) throws AuthnResponseValidationException {
-    final String msNodeEntityID = authConfig
-        .getBasicConfiguration(IdAustriaClientAuthConstants.CONFIG_PROPS_ID_AUSTRIA_ENTITYID);
-    final String respEntityId = inboundMessage.getEntityID();
-    if (!msNodeEntityID.equals(respEntityId)) {
-      log.warn("Response Issuer is not from valid 'ID Austria IDP'. Stopping ID Austria authentication ...");
-      throw new AuthnResponseValidationException(ERROR_PVP_08,
-          new Object[]{MODULE_NAME_FOR_LOGGING,
-              inboundMessage.getEntityID()});
-    }
-  }
-
-  @NotNull
-  private EaafUriCompare loadComparator(HttpServletRequest request) throws AuthnResponseValidationException {
-    if (request.getMethod().equalsIgnoreCase("POST")) {
-      log.trace("Receive PVP Response from 'ID Austria system', by using POST-Binding.");
-      return new EaafUriCompare(pendingReq.getAuthUrl() + IdAustriaClientAuthConstants.ENDPOINT_POST);
-    } else if (request.getMethod().equalsIgnoreCase("GET")) {
-      log.trace("Receive PVP Response from 'ID Austria system', by using Redirect-Binding.");
-      return new EaafUriCompare(pendingReq.getAuthUrl() + IdAustriaClientAuthConstants.ENDPOINT_REDIRECT);
-    } else {
-      log.warn("Receive PVP Response from 'ID Austria system', but Binding {} is not supported.", request.getMethod());
-      throw new AuthnResponseValidationException(ERROR_PVP_03, new Object[]{MODULE_NAME_FOR_LOGGING});
-    }
-  }
-
-  @NotNull
-  private IDecoder loadDecoder(HttpServletRequest request) throws AuthnResponseValidationException {
-    if (request.getMethod().equalsIgnoreCase("POST")) {
-      log.trace("Receive PVP Response from 'ID Austria system', by using POST-Binding.");
-      return new PostBinding();
-    } else if (request.getMethod().equalsIgnoreCase("GET")) {
-      log.trace("Receive PVP Response from 'ID Austria system', by using Redirect-Binding.");
-      return new RedirectBinding();
-    } else {
-      log.warn("Receive PVP Response from 'ID Austria system', but Binding {} is not supported.", request.getMethod());
-      throw new AuthnResponseValidationException(ERROR_PVP_03, new Object[]{MODULE_NAME_FOR_LOGGING});
-    }
-  }
-
-  private Pair<PvpSProfileResponse, Boolean> validateAssertion(PvpSProfileResponse msg)
-      throws IOException, MarshallingException, TransformerException,
-      CredentialsNotAvailableException, AuthnResponseValidationException, SamlAssertionValidationExeption {
-    log.debug("Start PVP21 assertion processing... ");
-    final Response response = (Response) msg.getResponse();
-    if (response.getStatus().getStatusCode().getValue().equals(StatusCode.SUCCESS)) {
-      samlVerificationEngine.validateAssertion(response,
-          credentialProvider.getMessageEncryptionCredential(),
-          pendingReq.getAuthUrl() + IdAustriaClientAuthConstants.ENDPOINT_METADATA,
-          MODULE_NAME_FOR_LOGGING);
-      msg.setSamlMessage(Saml2Utils.asDomDocument(response).getDocumentElement());
-      revisionsLogger.logEvent(pendingReq,
-          IdAustriaClientAuthEventConstants.AUTHPROCESS_ID_AUSTRIA_RESPONSE_RECEIVED,
-          response.getID());
-      return Pair.newInstance(msg, false);
-    } else {
-      log.info("Receive StatusCode {} from 'ms-specific eIDAS node'.", response.getStatus().getStatusCode().getValue());
-      StatusCode subStatusCode = getSubStatusCode(response);
-      if (subStatusCode != null
-          && IdAustriaClientAuthConstants.SAML2_STATUSCODE_USERSTOP.equals(subStatusCode.getValue())) {
-        log.info("Find 'User-Stop operation' in SAML2 response. Stopping authentication process ... ");
-        return Pair.newInstance(msg, true);
-      }
-
-      revisionsLogger.logEvent(pendingReq,
-          IdAustriaClientAuthEventConstants.AUTHPROCESS_ID_AUSTRIA_RESPONSE_RECEIVED_ERROR);
-      throw new AuthnResponseValidationException(ERROR_PVP_05,
-          new Object[]{MODULE_NAME_FOR_LOGGING,
-              response.getIssuer().getValue(),
-              response.getStatus().getStatusCode().getValue(),
-              response.getStatus().getStatusMessage().getMessage()});
-    }
-  }
-
-  /**
-   * Get SAML2 Sub-StatusCode if not <code>null</code>.
-   *
-   * @param samlResp SAML2 response
-   * @return Sub-StatusCode or <code>null</code> if it's not set
-   */
-  private StatusCode getSubStatusCode(Response samlResp) {
-    if (samlResp.getStatus().getStatusCode().getStatusCode() != null
-        && StringUtils.isNotEmpty(samlResp.getStatus().getStatusCode().getStatusCode().getValue())) {
-      return samlResp.getStatus().getStatusCode().getStatusCode();
-    }
-    return null;
-  }
-
-  private SimpleMobileSignatureData getAuthDataFromInterfederation(AssertionAttributeExtractor extractor,
-                                                                   AuthProcessDataWrapper authProcessData)
-      throws EaafBuilderException {
-    List<String> requiredAttributes = IdAustriaClientAuthConstants.DEFAULT_REQUIRED_PVP_ATTRIBUTE_NAMES;
-    SimpleMobileSignatureData result = new SimpleMobileSignatureData();
-    try {
-      if (!extractor.containsAllRequiredAttributes(requiredAttributes)) {
-        log.warn("PVP Response from 'ID Austria node' contains not all requested attributes.");
-        throw new AssertionValidationExeption(ERROR_PVP_06, new Object[]{MODULE_NAME_FOR_LOGGING});
-      }
-      final Set<String> includedAttrNames = extractor.getAllIncludeAttributeNames();
-      for (final String attrName : includedAttrNames) {
-        if (PvpAttributeDefinitions.BPK_NAME.equals(attrName)) {
-          result.setBpk(extractor.getSingleAttributeValue(attrName));
-        }
-        if (PvpAttributeDefinitions.GIVEN_NAME_NAME.equals(attrName)) {
-          result.setGivenName(extractor.getSingleAttributeValue(attrName));
-        }
-        if (PvpAttributeDefinitions.PRINCIPAL_NAME_NAME.equals(attrName)) {
-          result.setFamilyName(extractor.getSingleAttributeValue(attrName));
-        }
-        if (PvpAttributeDefinitions.BIRTHDATE_NAME.equals(attrName)) {
-          result.setDateOfBirth(extractor.getSingleAttributeValue(attrName));
-        }
-        if (PvpAttributeDefinitions.EID_CITIZEN_EIDAS_QAA_LEVEL_NAME.equals(attrName)) {
-          authProcessData.setQaaLevel(extractor.getSingleAttributeValue(attrName));
-        }
-      }
-      authProcessData.setIssueInstant(extractor.getAssertionIssuingDate());
-    } catch (final AssertionValidationExeption e) {
-      throw new EaafBuilderException(ERROR_PVP_06, null, e.getMessage(), e);
-    }
-    return result;
-  }
-
-
-}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseTask.java
new file mode 100644
index 00000000..0f40b337
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseTask.java
@@ -0,0 +1,340 @@
+/*
+ * Copyright 2021 A-SIT Plus GmbH
+ * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
+ * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
+ *
+ * Licensed under the EUPL, Version 1.2 or - as soon they will be approved by
+ * the European Commission - subsequent versions of the EUPL (the "License");
+ * You may not use this work except in compliance with the License.
+ * You may obtain a copy of the License at:
+ * https://joinup.ec.europa.eu/news/understanding-eupl-v12
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" basis,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ *
+ * This product combines work with different licenses. See the "NOTICE" text
+ * file for details on the various modules and licenses.
+ * The "NOTICE" text file is part of the distribution. Any derivative works
+ * that you distribute must include a readable copy of the "NOTICE" text file.
+ */
+
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks;
+
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.MergedRegisterSearchResult;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleMobileSignatureData;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.InvalidUserInputException;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.ManualFixNecessaryException;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthConstants;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthEventConstants;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.provider.IdAustriaClientAuthCredentialProvider;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.provider.IdAustriaClientAuthMetadataProvider;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.RegisterSearchService;
+import at.gv.egiz.eaaf.core.api.data.PvpAttributeDefinitions;
+import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
+import at.gv.egiz.eaaf.core.exceptions.EaafBuilderException;
+import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
+import at.gv.egiz.eaaf.core.impl.data.Pair;
+import at.gv.egiz.eaaf.core.impl.idp.auth.data.AuthProcessDataWrapper;
+import at.gv.egiz.eaaf.core.impl.idp.auth.modules.AbstractAuthServletTask;
+import at.gv.egiz.eaaf.modules.pvp2.api.binding.IDecoder;
+import at.gv.egiz.eaaf.modules.pvp2.exception.CredentialsNotAvailableException;
+import at.gv.egiz.eaaf.modules.pvp2.exception.SamlAssertionValidationExeption;
+import at.gv.egiz.eaaf.modules.pvp2.exception.SamlSigningException;
+import at.gv.egiz.eaaf.modules.pvp2.impl.binding.PostBinding;
+import at.gv.egiz.eaaf.modules.pvp2.impl.binding.RedirectBinding;
+import at.gv.egiz.eaaf.modules.pvp2.impl.message.InboundMessage;
+import at.gv.egiz.eaaf.modules.pvp2.impl.message.PvpSProfileResponse;
+import at.gv.egiz.eaaf.modules.pvp2.impl.utils.Saml2Utils;
+import at.gv.egiz.eaaf.modules.pvp2.impl.validation.EaafUriCompare;
+import at.gv.egiz.eaaf.modules.pvp2.impl.validation.TrustEngineFactory;
+import at.gv.egiz.eaaf.modules.pvp2.impl.verification.SamlVerificationEngine;
+import at.gv.egiz.eaaf.modules.pvp2.sp.exception.AssertionValidationExeption;
+import at.gv.egiz.eaaf.modules.pvp2.sp.exception.AuthnResponseValidationException;
+import at.gv.egiz.eaaf.modules.pvp2.sp.impl.utils.AssertionAttributeExtractor;
+import lombok.extern.slf4j.Slf4j;
+import org.apache.commons.lang3.StringUtils;
+import org.jetbrains.annotations.NotNull;
+import org.opensaml.core.xml.io.MarshallingException;
+import org.opensaml.messaging.decoder.MessageDecodingException;
+import org.opensaml.saml.saml2.core.Response;
+import org.opensaml.saml.saml2.core.StatusCode;
+import org.opensaml.saml.saml2.metadata.IDPSSODescriptor;
+import org.springframework.stereotype.Component;
+
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+import javax.xml.transform.TransformerException;
+import java.io.IOException;
+import java.util.List;
+import java.util.Set;
+
+import static at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants.DATA_INITIAL_REGISTER_RESULT;
+import static at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants.DATA_SIMPLE_EIDAS;
+import static at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthConstants.MODULE_NAME_FOR_LOGGING;
+
+/**
+ * Task that receives the SAML2 response from ID Austria system.
+ * This corresponds to Step 15 in the eIDAS Matching Concept.
+ *
+ * @author tlenz
+ */
+@Slf4j
+@Component("ReceiveMobilePhoneSignatureResponseTask")
+public class ReceiveMobilePhoneSignatureResponseTask extends AbstractAuthServletTask {
+
+  private final SamlVerificationEngine samlVerificationEngine;
+  private final RegisterSearchService registerSearchService;
+  private final IdAustriaClientAuthCredentialProvider credentialProvider;
+  private final IdAustriaClientAuthMetadataProvider metadataProvider;
+
+  private static final String ERROR_PVP_03 = "sp.pvp2.03";
+  private static final String ERROR_PVP_05 = "sp.pvp2.05";
+  private static final String ERROR_PVP_06 = "sp.pvp2.06";
+  private static final String ERROR_PVP_08 = "sp.pvp2.08";
+  private static final String ERROR_PVP_10 = "sp.pvp2.10";
+  private static final String ERROR_PVP_11 = "sp.pvp2.11";
+  private static final String ERROR_PVP_12 = "sp.pvp2.12";
+
+  private static final String ERROR_MSG_00 = "Receive INVALID PVP Response from ID Austria system";
+  private static final String ERROR_MSG_01 = "Processing PVP response from 'ID Austria system' FAILED.";
+  private static final String ERROR_MSG_02 = "PVP response decryption FAILED. No credential found.";
+  private static final String ERROR_MSG_03 = "PVP response validation FAILED.";
+
+  /**
+   * Creates the new task, with autowired dependencies from Spring.
+   */
+  public ReceiveMobilePhoneSignatureResponseTask(SamlVerificationEngine samlVerificationEngine,
+                                                 RegisterSearchService registerSearchService,
+                                                 IdAustriaClientAuthCredentialProvider credentialProvider,
+                                                 IdAustriaClientAuthMetadataProvider metadataProvider) {
+    this.samlVerificationEngine = samlVerificationEngine;
+    this.registerSearchService = registerSearchService;
+    this.credentialProvider = credentialProvider;
+    this.metadataProvider = metadataProvider;
+  }
+
+  @Override
+  public void execute(ExecutionContext executionContext, HttpServletRequest request, HttpServletResponse response)
+      throws TaskExecutionException {
+    try {
+      log.trace("Starting ReceiveMobilePhoneSignatureResponseTask");
+      IDecoder decoder = loadDecoder(request);
+      EaafUriCompare comparator = loadComparator(request);
+      InboundMessage inboundMessage = decodeAndVerifyMessage(request, response, decoder, comparator);
+      Pair<PvpSProfileResponse, Boolean> processedMsg = validateAssertion((PvpSProfileResponse) inboundMessage);
+      if (processedMsg.getSecond()) {
+        stopProcessFromUserDecision(executionContext, request, response);
+        return;
+      }
+
+      validateEntityId(inboundMessage);
+      AssertionAttributeExtractor extractor = new AssertionAttributeExtractor(processedMsg.getFirst().getResponse());
+
+      /*
+       * SAML2 response ist bereits vollständig validiert und die Attribute können aus dem
+       * <AssertionAttributeExtractor extractor> ausgelesen werden.
+       * Die AttributeNamen sind entsprechend PVP Spezifikation, z.B. PvpAttributeDefinitions.GIVEN_NAME_NAME
+       *
+       * ---------------------------------------------------------------------------------------------
+       *
+       * TODO: ab hier müssen wir wohl was anpassen
+       *
+       */
+
+      AuthProcessDataWrapper authProcessData = pendingReq.getSessionData(AuthProcessDataWrapper.class);
+      MergedRegisterSearchResult initialSearchResult =
+          authProcessData.getGenericDataFromSession(DATA_INITIAL_REGISTER_RESULT, MergedRegisterSearchResult.class);
+      SimpleEidasData eidasData = authProcessData.getGenericDataFromSession(DATA_SIMPLE_EIDAS, SimpleEidasData.class);
+      String bpkZp = extractBpkZp(extractor, authProcessData, eidasData);
+
+      MergedRegisterSearchResult result = registerSearchService.searchWithBpkZp(bpkZp);
+      if (result.getResultCount() == 0) {
+        executionContext.put(Constants.TRANSITION_TO_GENERATE_GUI_QUERY_AUSTRIAN_RESIDENCE_TASK, true);
+        return;
+      } else if (result.getResultCount() == 1) {
+        String bpk = registerSearchService.step7aKittProcess(initialSearchResult, result, eidasData, pendingReq);
+        authProcessData.setGenericDataToSession(Constants.DATA_RESULT_MATCHING_BPK, bpk);
+        return;
+      } else if (result.getResultCount() > 1) {
+        throw new ManualFixNecessaryException("bpkZp: " + bpkZp);
+      }
+
+      // set NeedConsent to false, because user gives consent during authentication
+      pendingReq.setNeedUserConsent(false);
+      log.info("Receive a valid assertion from IDP " + inboundMessage.getEntityID());
+    } catch (final AuthnResponseValidationException e) {
+      throw new TaskExecutionException(pendingReq, ERROR_MSG_03, e);
+    } catch (MessageDecodingException | SecurityException | SamlSigningException e) {
+      //final String samlRequest = request.getParameter("SAMLRequest");
+      //log.debug("Receive INVALID PVP Response from 'ms-specific eIDAS node': {}",
+      //    samlRequest, null, e);
+      throw new TaskExecutionException(pendingReq, ERROR_MSG_00,
+          new AuthnResponseValidationException(ERROR_PVP_11, new Object[]{MODULE_NAME_FOR_LOGGING}, e));
+    } catch (IOException | MarshallingException | TransformerException e) {
+      log.debug("Processing PVP response from 'ms-specific eIDAS node' FAILED.", e);
+      throw new TaskExecutionException(pendingReq, ERROR_MSG_01,
+          new AuthnResponseValidationException(ERROR_PVP_12, new Object[]{MODULE_NAME_FOR_LOGGING, e.getMessage()}, e));
+    } catch (final CredentialsNotAvailableException e) {
+      log.debug("PVP response decryption FAILED. No credential found.", e);
+      throw new TaskExecutionException(pendingReq, ERROR_MSG_02,
+          new AuthnResponseValidationException(ERROR_PVP_10, new Object[]{MODULE_NAME_FOR_LOGGING}, e));
+    } catch (final Exception e) {
+      e.printStackTrace();
+      log.debug("PVP response validation FAILED. Msg:" + e.getMessage(), e);
+      throw new TaskExecutionException(pendingReq, ERROR_MSG_03,
+          new AuthnResponseValidationException(ERROR_PVP_12, new Object[]{MODULE_NAME_FOR_LOGGING, e.getMessage()}, e));
+    }
+  }
+
+  private String extractBpkZp(AssertionAttributeExtractor extractor,
+                              AuthProcessDataWrapper authProcessData,
+                              SimpleEidasData eidasData) throws EaafBuilderException, InvalidUserInputException {
+    SimpleMobileSignatureData simpleMobileSignatureData = getAuthDataFromInterfederation(extractor, authProcessData);
+    if (!simpleMobileSignatureData.equalsSimpleEidasData(eidasData)) {
+      //TODO User has cheated?
+      throw new InvalidUserInputException();
+    }
+    return simpleMobileSignatureData.getBpk();
+  }
+
+  @NotNull
+  private InboundMessage decodeAndVerifyMessage(HttpServletRequest request, HttpServletResponse response,
+                                                IDecoder decoder, EaafUriCompare comparator) throws Exception {
+    InboundMessage inboundMessage = (InboundMessage) decoder.decode(request, response, metadataProvider,
+        IDPSSODescriptor.DEFAULT_ELEMENT_NAME, comparator);
+    if (!inboundMessage.isVerified()) {
+      samlVerificationEngine.verify(inboundMessage, TrustEngineFactory.getSignatureKnownKeysTrustEngine(
+          metadataProvider));
+      inboundMessage.setVerified(true);
+    }
+    return inboundMessage;
+  }
+
+  private void validateEntityId(InboundMessage inboundMessage) throws AuthnResponseValidationException {
+    final String msNodeEntityID = authConfig
+        .getBasicConfiguration(IdAustriaClientAuthConstants.CONFIG_PROPS_ID_AUSTRIA_ENTITYID);
+    final String respEntityId = inboundMessage.getEntityID();
+    if (!msNodeEntityID.equals(respEntityId)) {
+      log.warn("Response Issuer is not from valid 'ID Austria IDP'. Stopping ID Austria authentication ...");
+      throw new AuthnResponseValidationException(ERROR_PVP_08,
+          new Object[]{MODULE_NAME_FOR_LOGGING,
+              inboundMessage.getEntityID()});
+    }
+  }
+
+  @NotNull
+  private EaafUriCompare loadComparator(HttpServletRequest request) throws AuthnResponseValidationException {
+    if (request.getMethod().equalsIgnoreCase("POST")) {
+      log.trace("Receive PVP Response from 'ID Austria system', by using POST-Binding.");
+      return new EaafUriCompare(pendingReq.getAuthUrl() + IdAustriaClientAuthConstants.ENDPOINT_POST);
+    } else if (request.getMethod().equalsIgnoreCase("GET")) {
+      log.trace("Receive PVP Response from 'ID Austria system', by using Redirect-Binding.");
+      return new EaafUriCompare(pendingReq.getAuthUrl() + IdAustriaClientAuthConstants.ENDPOINT_REDIRECT);
+    } else {
+      log.warn("Receive PVP Response from 'ID Austria system', but Binding {} is not supported.", request.getMethod());
+      throw new AuthnResponseValidationException(ERROR_PVP_03, new Object[]{MODULE_NAME_FOR_LOGGING});
+    }
+  }
+
+  @NotNull
+  private IDecoder loadDecoder(HttpServletRequest request) throws AuthnResponseValidationException {
+    if (request.getMethod().equalsIgnoreCase("POST")) {
+      log.trace("Receive PVP Response from 'ID Austria system', by using POST-Binding.");
+      return new PostBinding();
+    } else if (request.getMethod().equalsIgnoreCase("GET")) {
+      log.trace("Receive PVP Response from 'ID Austria system', by using Redirect-Binding.");
+      return new RedirectBinding();
+    } else {
+      log.warn("Receive PVP Response from 'ID Austria system', but Binding {} is not supported.", request.getMethod());
+      throw new AuthnResponseValidationException(ERROR_PVP_03, new Object[]{MODULE_NAME_FOR_LOGGING});
+    }
+  }
+
+  private Pair<PvpSProfileResponse, Boolean> validateAssertion(PvpSProfileResponse msg)
+      throws IOException, MarshallingException, TransformerException,
+      CredentialsNotAvailableException, AuthnResponseValidationException, SamlAssertionValidationExeption {
+    log.debug("Start PVP21 assertion processing... ");
+    final Response response = (Response) msg.getResponse();
+    if (response.getStatus().getStatusCode().getValue().equals(StatusCode.SUCCESS)) {
+      samlVerificationEngine.validateAssertion(response,
+          credentialProvider.getMessageEncryptionCredential(),
+          pendingReq.getAuthUrl() + IdAustriaClientAuthConstants.ENDPOINT_METADATA,
+          MODULE_NAME_FOR_LOGGING);
+      msg.setSamlMessage(Saml2Utils.asDomDocument(response).getDocumentElement());
+      revisionsLogger.logEvent(pendingReq,
+          IdAustriaClientAuthEventConstants.AUTHPROCESS_ID_AUSTRIA_RESPONSE_RECEIVED,
+          response.getID());
+      return Pair.newInstance(msg, false);
+    } else {
+      log.info("Receive StatusCode {} from 'ms-specific eIDAS node'.", response.getStatus().getStatusCode().getValue());
+      StatusCode subStatusCode = getSubStatusCode(response);
+      if (subStatusCode != null
+          && IdAustriaClientAuthConstants.SAML2_STATUSCODE_USERSTOP.equals(subStatusCode.getValue())) {
+        log.info("Find 'User-Stop operation' in SAML2 response. Stopping authentication process ... ");
+        return Pair.newInstance(msg, true);
+      }
+
+      revisionsLogger.logEvent(pendingReq,
+          IdAustriaClientAuthEventConstants.AUTHPROCESS_ID_AUSTRIA_RESPONSE_RECEIVED_ERROR);
+      throw new AuthnResponseValidationException(ERROR_PVP_05,
+          new Object[]{MODULE_NAME_FOR_LOGGING,
+              response.getIssuer().getValue(),
+              response.getStatus().getStatusCode().getValue(),
+              response.getStatus().getStatusMessage().getMessage()});
+    }
+  }
+
+  /**
+   * Get SAML2 Sub-StatusCode if not <code>null</code>.
+   *
+   * @param samlResp SAML2 response
+   * @return Sub-StatusCode or <code>null</code> if it's not set
+   */
+  private StatusCode getSubStatusCode(Response samlResp) {
+    if (samlResp.getStatus().getStatusCode().getStatusCode() != null
+        && StringUtils.isNotEmpty(samlResp.getStatus().getStatusCode().getStatusCode().getValue())) {
+      return samlResp.getStatus().getStatusCode().getStatusCode();
+    }
+    return null;
+  }
+
+  private SimpleMobileSignatureData getAuthDataFromInterfederation(AssertionAttributeExtractor extractor,
+                                                                   AuthProcessDataWrapper authProcessData)
+      throws EaafBuilderException {
+    List<String> requiredAttributes = IdAustriaClientAuthConstants.DEFAULT_REQUIRED_PVP_ATTRIBUTE_NAMES;
+    SimpleMobileSignatureData result = new SimpleMobileSignatureData();
+    if (!extractor.containsAllRequiredAttributes(requiredAttributes)) {
+      log.warn("PVP Response from 'ID Austria node' contains not all requested attributes.");
+      AssertionValidationExeption e = new AssertionValidationExeption(ERROR_PVP_06,
+          new Object[]{MODULE_NAME_FOR_LOGGING});
+      throw new EaafBuilderException(ERROR_PVP_06, null, e.getMessage(), e);
+    }
+    final Set<String> includedAttrNames = extractor.getAllIncludeAttributeNames();
+    for (final String attrName : includedAttrNames) {
+      if (PvpAttributeDefinitions.BPK_NAME.equals(attrName)) {
+        result.setBpk(extractor.getSingleAttributeValue(attrName));
+      }
+      if (PvpAttributeDefinitions.GIVEN_NAME_NAME.equals(attrName)) {
+        result.setGivenName(extractor.getSingleAttributeValue(attrName));
+      }
+      if (PvpAttributeDefinitions.PRINCIPAL_NAME_NAME.equals(attrName)) {
+        result.setFamilyName(extractor.getSingleAttributeValue(attrName));
+      }
+      if (PvpAttributeDefinitions.BIRTHDATE_NAME.equals(attrName)) {
+        result.setDateOfBirth(extractor.getSingleAttributeValue(attrName));
+      }
+      if (PvpAttributeDefinitions.EID_CITIZEN_EIDAS_QAA_LEVEL_NAME.equals(attrName)) {
+        authProcessData.setQaaLevel(extractor.getSingleAttributeValue(attrName));
+      }
+    }
+    authProcessData.setIssueInstant(extractor.getAssertionIssuingDate());
+    return result;
+  }
+
+
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml
index 34046e55..ed086493 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml
@@ -121,7 +121,7 @@
         scope="prototype" />
 
   <bean id="ReceiveMobilePhoneSignatureResponseTask"
-        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.ReceiveMobilePhoneSignatureResponseTask"
         scope="prototype" />
 
   <bean id="GenerateAustrianResidenceGuiTask"
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest.java
deleted file mode 100644
index 42dd3ddc..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest.java
+++ /dev/null
@@ -1,543 +0,0 @@
-package at.asitplus.eidas.specific.modules.auth.eidas.v2.test.tasks;
-
-import at.asitplus.eidas.specific.connector.test.config.dummy.MsConnectorDummyConfigMap;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.InvalidUserInputException;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthConstants;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.provider.IdAustriaClientAuthCredentialProvider;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.provider.IdAustriaClientAuthMetadataProvider;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.test.dummy.DummyOA;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.test.dummy.DummyPendingRequest;
-import at.gv.egiz.eaaf.core.api.data.EaafConstants;
-import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
-import at.gv.egiz.eaaf.core.exceptions.EaafException;
-import at.gv.egiz.eaaf.core.exceptions.EaafStorageException;
-import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
-import at.gv.egiz.eaaf.core.impl.idp.auth.data.AuthProcessDataWrapper;
-import at.gv.egiz.eaaf.core.impl.idp.process.ExecutionContextImpl;
-import at.gv.egiz.eaaf.core.impl.utils.DomUtils;
-import at.gv.egiz.eaaf.modules.pvp2.api.credential.EaafX509Credential;
-import at.gv.egiz.eaaf.modules.pvp2.exception.CredentialsNotAvailableException;
-import at.gv.egiz.eaaf.modules.pvp2.exception.Pvp2MetadataException;
-import at.gv.egiz.eaaf.modules.pvp2.exception.SamlSigningException;
-import at.gv.egiz.eaaf.modules.pvp2.impl.metadata.PvpMetadataResolverFactory;
-import at.gv.egiz.eaaf.modules.pvp2.impl.opensaml.initialize.EaafOpenSaml3xInitializer;
-import at.gv.egiz.eaaf.modules.pvp2.impl.utils.Saml2Utils;
-import at.gv.egiz.eaaf.modules.pvp2.sp.exception.AuthnResponseValidationException;
-import net.shibboleth.utilities.java.support.xml.XMLParserException;
-import org.apache.commons.io.IOUtils;
-import org.apache.commons.lang3.RandomStringUtils;
-import org.joda.time.DateTime;
-import org.junit.Before;
-import org.junit.BeforeClass;
-import org.junit.Test;
-import org.junit.runner.RunWith;
-import org.opensaml.core.xml.config.XMLObjectProviderRegistrySupport;
-import org.opensaml.core.xml.io.MarshallingException;
-import org.opensaml.core.xml.io.UnmarshallingException;
-import org.opensaml.core.xml.util.XMLObjectSupport;
-import org.opensaml.saml.saml2.core.Issuer;
-import org.opensaml.saml.saml2.core.Response;
-import org.springframework.beans.factory.annotation.Autowired;
-import org.springframework.context.ApplicationContext;
-import org.springframework.mock.web.MockHttpServletRequest;
-import org.springframework.mock.web.MockHttpServletResponse;
-import org.springframework.test.context.ContextConfiguration;
-import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
-import org.springframework.web.context.request.RequestContextHolder;
-import org.springframework.web.context.request.ServletRequestAttributes;
-
-import javax.xml.transform.TransformerException;
-import java.io.IOException;
-import java.util.Base64;
-
-import static org.junit.Assert.assertEquals;
-import static org.junit.Assert.assertFalse;
-import static org.junit.Assert.assertNotNull;
-import static org.junit.Assert.assertThrows;
-import static org.junit.Assert.assertTrue;
-import static org.junit.Assert.fail;
-import static org.springframework.util.Assert.isInstanceOf;
-
-@RunWith(SpringJUnit4ClassRunner.class)
-@ContextConfiguration(locations = {
-    "/SpringTest-context_tasks_test.xml",
-    "/SpringTest-context_basic_mapConfig.xml"
-})
-public class ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest {
-
-  private static final String METADATA_PATH = "classpath:/data/idp_metadata_classpath_entity.xml";
-
-  @Autowired
-  private ApplicationContext context;
-  @Autowired
-  protected MsConnectorDummyConfigMap authConfig;
-  @Autowired
-  private IdAustriaClientAuthMetadataProvider metadataProvider;
-  @Autowired
-  private IdAustriaClientAuthCredentialProvider credentialProvider;
-  @Autowired
-  private PvpMetadataResolverFactory metadataFactory;
-
-  private final ExecutionContext executionContext = new ExecutionContextImpl();
-  private MockHttpServletRequest httpReq;
-  private MockHttpServletResponse httpResp;
-  private DummyPendingRequest pendingReq;
-
-  private ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask task;
-
-  /**
-   * JUnit class initializer.
-   *
-   * @throws Exception In case of an OpenSAML3 initialization error
-   */
-  @BeforeClass
-  public static void initialize() throws Exception {
-    EaafOpenSaml3xInitializer.eaafInitialize();
-
-  }
-
-  /**
-   * jUnit test set-up.
-   *
-   * @throws Exception In case of an set-up error
-   */
-  @Before
-  public void setUp() throws Exception {
-    task = (ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask) context.getBean(
-        "ReceiveMobilePhoneSignatureResponseTask");
-
-    httpReq = new MockHttpServletRequest("POST", "https://localhost/authhandler");
-    httpReq.setScheme("https");
-    httpReq.setServerPort(443);
-    httpReq.setContextPath("/authhandler");
-    httpResp = new MockHttpServletResponse();
-    RequestContextHolder.resetRequestAttributes();
-    RequestContextHolder.setRequestAttributes(new ServletRequestAttributes(httpReq, httpResp));
-
-    authConfig.putConfigValue(IdAustriaClientAuthConstants.CONFIG_PROPS_ID_AUSTRIA_ENTITYID, METADATA_PATH);
-
-    DummyOA oaParam = new DummyOA();
-    oaParam.setUniqueAppId("http://test.com/test");
-    oaParam.setTargetIdentifier(EaafConstants.URN_PREFIX_CDID + RandomStringUtils.randomAlphabetic(2));
-
-    pendingReq = new DummyPendingRequest();
-    pendingReq.initialize(httpReq, authConfig);
-    pendingReq.setPendingRequestId(RandomStringUtils.randomAlphanumeric(10));
-    pendingReq.setOnlineApplicationConfiguration(oaParam);
-
-    metadataProvider.fullyDestroy();
-  }
-
-  @Test
-  public void unsupportedHttpMethode() {
-    httpReq = new MockHttpServletRequest("PUT", "https://localhost/authhandler");
-    RequestContextHolder.resetRequestAttributes();
-    RequestContextHolder.setRequestAttributes(new ServletRequestAttributes(httpReq, httpResp));
-
-    final TaskExecutionException e = assertThrows(TaskExecutionException.class,
-        () -> task.execute(pendingReq, executionContext));
-
-    assertNotNull(e.getPendingRequestID());
-    assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
-    assertNotNull(e.getOriginalException());
-    isInstanceOf(AuthnResponseValidationException.class, e.getOriginalException());
-    assertEquals("sp.pvp2.03", ((AuthnResponseValidationException) e.getOriginalException()).getErrorId());
-  }
-
-  @Test
-  public void httpGetNoMessage() {
-    httpReq = new MockHttpServletRequest("GET", "https://localhost/authhandler");
-    RequestContextHolder.resetRequestAttributes();
-    RequestContextHolder.setRequestAttributes(new ServletRequestAttributes(httpReq, httpResp));
-
-    final TaskExecutionException e = assertThrows(TaskExecutionException.class,
-        () -> task.execute(pendingReq, executionContext));
-
-    assertNotNull(e.getPendingRequestID());
-    assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
-    assertNotNull(e.getOriginalException());
-    isInstanceOf(AuthnResponseValidationException.class, e.getOriginalException());
-    assertEquals("sp.pvp2.12", ((AuthnResponseValidationException) e.getOriginalException()).getErrorId());
-
-  }
-
-  @Test
-  public void httpPostNoMessage() {
-    final TaskExecutionException e = assertThrows(TaskExecutionException.class,
-        () -> task.execute(pendingReq, executionContext));
-
-    assertNotNull(e.getPendingRequestID());
-    assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
-    assertNotNull(e.getOriginalException());
-    isInstanceOf(AuthnResponseValidationException.class, e.getOriginalException());
-    assertEquals("sp.pvp2.12", ((AuthnResponseValidationException) e.getOriginalException()).getErrorId());
-  }
-
-  @Test
-  public void httpPostMessageNotSigned() throws IOException {
-
-    httpReq.addParameter("SAMLResponse", Base64.getEncoder().encodeToString(
-        IOUtils.toByteArray(ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTask.class
-            .getResourceAsStream(
-                "/data/Response_without_sig_classpath_entityid.xml"))));
-
-    final TaskExecutionException e = assertThrows(TaskExecutionException.class,
-        () -> task.execute(pendingReq, executionContext));
-    assertNotNull(e.getPendingRequestID());
-    assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
-    assertNotNull(e.getOriginalException());
-    isInstanceOf(AuthnResponseValidationException.class, e.getOriginalException());
-    assertEquals("sp.pvp2.12", ((AuthnResponseValidationException) e.getOriginalException()).getErrorId());
-
-  }
-
-  @Test
-  public void httpPostMessageWrongDestinationEndpoint() throws IOException, SamlSigningException,
-      Pvp2MetadataException, CredentialsNotAvailableException, XMLParserException, UnmarshallingException,
-      TransformerException, MarshallingException {
-
-    final Response response = initializeResponse(
-        "classpath:/data/idp_metadata_classpath_entity.xml",
-        "/data/Response_with_wrong_destination_endpoint.xml",
-        credentialProvider.getMessageSigningCredential(), true);
-    httpReq.addParameter("SAMLResponse", Base64.getEncoder().encodeToString(
-        DomUtils.serializeNode(XMLObjectSupport.getMarshaller(response).marshall(response)).getBytes(
-            "UTF-8")));
-
-    final TaskExecutionException e = assertThrows(TaskExecutionException.class,
-        () -> task.execute(pendingReq, executionContext));
-
-    assertNotNull(e.getPendingRequestID());
-    assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
-    assertNotNull(e.getOriginalException());
-    isInstanceOf(AuthnResponseValidationException.class, e.getOriginalException());
-    assertEquals("sp.pvp2.12", ((AuthnResponseValidationException) e.getOriginalException()).getErrorId());
-
-  }
-
-  @Test
-  public void httpPostValidSignedNoMetadata() throws IOException, SamlSigningException,
-      Pvp2MetadataException, CredentialsNotAvailableException, XMLParserException, UnmarshallingException,
-      MarshallingException, TransformerException {
-
-    final Response response = initializeResponse(
-        "classpath:/data/idp_metadata_classpath_entity.xml",
-        "/data/Response_without_sig_classpath_entityid.xml",
-        credentialProvider.getMessageSigningCredential(), true);
-    httpReq.addParameter("SAMLResponse", Base64.getEncoder().encodeToString(
-        DomUtils.serializeNode(XMLObjectSupport.getMarshaller(response).marshall(response)).getBytes(
-            "UTF-8")));
-
-    final TaskExecutionException e = assertThrows(TaskExecutionException.class,
-        () -> task.execute(pendingReq, executionContext));
-    assertNotNull(e.getPendingRequestID());
-    assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
-    assertNotNull(e.getOriginalException());
-    isInstanceOf(AuthnResponseValidationException.class, e.getOriginalException());
-    assertEquals("sp.pvp2.11", ((EaafException) e.getOriginalException()).getErrorId());
-  }
-
-  @Test
-  public void httpPostValidSignedAssertionOutDated() throws IOException, SamlSigningException,
-      Pvp2MetadataException, CredentialsNotAvailableException, XMLParserException, UnmarshallingException,
-      MarshallingException, TransformerException {
-
-    metadataProvider.addMetadataResolverIntoChain(metadataFactory.createMetadataProvider(
-        METADATA_PATH, null, "jUnit IDP", null));
-
-    final Response response = initializeResponse(
-        "classpath:/data/idp_metadata_classpath_entity.xml",
-        "/data/Response_without_sig_classpath_entityid.xml",
-        credentialProvider.getMessageSigningCredential(), false);
-    httpReq.addParameter("SAMLResponse", Base64.getEncoder().encodeToString(
-        DomUtils.serializeNode(XMLObjectSupport.getMarshaller(response).marshall(response)).getBytes(
-            "UTF-8")));
-
-    final TaskExecutionException e = assertThrows(TaskExecutionException.class,
-        () -> task.execute(pendingReq, executionContext));
-
-    assertNotNull(e.getPendingRequestID());
-    assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
-    assertNotNull(e.getOriginalException());
-    isInstanceOf(AuthnResponseValidationException.class, e.getOriginalException());
-    assertEquals("sp.pvp2.12", ((EaafException) e.getOriginalException()).getErrorId());
-
-  }
-
-  @Test
-  public void httpPostValidSignedAssertionFromWrongIdp() throws IOException, SamlSigningException,
-      Pvp2MetadataException, CredentialsNotAvailableException, XMLParserException, UnmarshallingException,
-      MarshallingException, TransformerException {
-
-    authConfig.putConfigValue(IdAustriaClientAuthConstants.CONFIG_PROPS_ID_AUSTRIA_ENTITYID,
-        "http://wrong.idp/" + RandomStringUtils.randomAlphabetic(5));
-
-    metadataProvider.addMetadataResolverIntoChain(metadataFactory.createMetadataProvider(
-        METADATA_PATH, null, "jUnit IDP", null));
-
-    final Response response = initializeResponse(
-        "classpath:/data/idp_metadata_classpath_entity.xml",
-        "/data/Response_without_sig_classpath_entityid.xml",
-        credentialProvider.getMessageSigningCredential(),
-        true);
-    httpReq.addParameter("SAMLResponse", Base64.getEncoder().encodeToString(
-        DomUtils.serializeNode(XMLObjectSupport.getMarshaller(response).marshall(response)).getBytes(
-            "UTF-8")));
-
-    final TaskExecutionException e = assertThrows(TaskExecutionException.class,
-        () -> task.execute(pendingReq, executionContext));
-
-    assertNotNull(e.getPendingRequestID());
-    assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
-    assertNotNull(e.getOriginalException());
-    isInstanceOf(AuthnResponseValidationException.class, e.getOriginalException());
-    assertEquals("sp.pvp2.08", ((EaafException) e.getOriginalException()).getErrorId());
-
-  }
-
-  @Test
-  public void httpPostValidSignedAssertionMissingAttributes() throws IOException, SamlSigningException,
-      Pvp2MetadataException, CredentialsNotAvailableException, XMLParserException, UnmarshallingException,
-      MarshallingException, TransformerException {
-
-    metadataProvider.addMetadataResolverIntoChain(metadataFactory.createMetadataProvider(
-        METADATA_PATH, null, "jUnit IDP", null));
-
-    final Response response = initializeResponse(
-        "classpath:/data/idp_metadata_classpath_entity.xml",
-        "/data/Response_without_sig_classpath_entityid.xml",
-        credentialProvider.getMessageSigningCredential(),
-        true);
-    httpReq.addParameter("SAMLResponse", Base64.getEncoder().encodeToString(
-        DomUtils.serializeNode(XMLObjectSupport.getMarshaller(response).marshall(response)).getBytes(
-            "UTF-8")));
-
-    final TaskExecutionException e = assertThrows(TaskExecutionException.class,
-        () -> task.execute(pendingReq, executionContext));
-
-    assertNotNull(e.getPendingRequestID());
-    assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
-    assertNotNull(e.getOriginalException());
-    isInstanceOf(AuthnResponseValidationException.class, e.getOriginalException());
-    assertEquals("sp.pvp2.12", ((EaafException) e.getOriginalException()).getErrorId());
-
-  }
-
-  @Test
-  public void httpPostValidSignedWithError() throws IOException, SamlSigningException,
-      Pvp2MetadataException, CredentialsNotAvailableException, XMLParserException, UnmarshallingException,
-      MarshallingException, TransformerException {
-
-    metadataProvider.addMetadataResolverIntoChain(metadataFactory.createMetadataProvider(
-        METADATA_PATH, null, "jUnit IDP", null));
-
-    final Response response = initializeResponse(
-        "classpath:/data/idp_metadata_classpath_entity.xml",
-        "/data/Response_without_sig_with_error.xml",
-        credentialProvider.getMessageSigningCredential(),
-        true);
-    httpReq.addParameter("SAMLResponse", Base64.getEncoder().encodeToString(
-        DomUtils.serializeNode(XMLObjectSupport.getMarshaller(response).marshall(response)).getBytes(
-            "UTF-8")));
-
-    final TaskExecutionException e = assertThrows(TaskExecutionException.class,
-        () -> task.execute(pendingReq, executionContext));
-
-    assertNotNull(e.getPendingRequestID());
-    assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
-    assertNotNull(e.getOriginalException());
-    isInstanceOf(AuthnResponseValidationException.class, e.getOriginalException());
-    assertEquals("sp.pvp2.05", ((EaafException) e.getOriginalException()).getErrorId());
-
-  }
-
-  @Test
-  public void httpPostValidSignedWitUserStopErrorCode() throws IOException, SamlSigningException,
-      Pvp2MetadataException, CredentialsNotAvailableException, XMLParserException, UnmarshallingException,
-      MarshallingException, TransformerException, TaskExecutionException {
-
-    metadataProvider.addMetadataResolverIntoChain(metadataFactory.createMetadataProvider(
-        METADATA_PATH, null, "jUnit IDP", null));
-
-    final Response response = initializeResponse(
-        "classpath:/data/idp_metadata_classpath_entity.xml",
-        "/data/Response_without_sig_with_error_userstop.xml",
-        credentialProvider.getMessageSigningCredential(),
-        true);
-    httpReq.addParameter("SAMLResponse", Base64.getEncoder().encodeToString(
-        DomUtils.serializeNode(XMLObjectSupport.getMarshaller(response).marshall(response)).getBytes(
-            "UTF-8")));
-
-    // perform test
-    task.execute(pendingReq, executionContext);
-
-    // validate state
-    assertTrue("process not cancelled", executionContext.isProcessCancelled());
-    assertTrue("process not stopped by user", pendingReq.isAbortedByUser());
-    assertFalse("should not authenticated", pendingReq.isAuthenticated());
-
-  }
-
-  @Test
-  public void httpPostValidSignedWithErrorAndNoSubCode() throws IOException, SamlSigningException,
-      Pvp2MetadataException, CredentialsNotAvailableException, XMLParserException, UnmarshallingException,
-      MarshallingException, TransformerException {
-
-    metadataProvider.addMetadataResolverIntoChain(metadataFactory.createMetadataProvider(
-        METADATA_PATH, null, "jUnit IDP", null));
-
-    final Response response = initializeResponse(
-        "classpath:/data/idp_metadata_classpath_entity.xml",
-        "/data/Response_without_sig_with_error_without_subcode.xml",
-        credentialProvider.getMessageSigningCredential(),
-        true);
-    httpReq.addParameter("SAMLResponse", Base64.getEncoder().encodeToString(
-        DomUtils.serializeNode(XMLObjectSupport.getMarshaller(response).marshall(response)).getBytes(
-            "UTF-8")));
-
-    try {
-      task.execute(pendingReq, executionContext);
-      fail("Invalid response not detected");
-
-    } catch (final TaskExecutionException e) {
-      assertNotNull(e.getPendingRequestID());
-      assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
-      assertNotNull(e.getOriginalException());
-      isInstanceOf(AuthnResponseValidationException.class, e.getOriginalException());
-      assertEquals("sp.pvp2.05", ((EaafException) e.getOriginalException()).getErrorId());
-    }
-  }
-
-  @Test
-  public void httpPostValidSignedWithErrorAndEmptySubCode() throws IOException, SamlSigningException,
-      Pvp2MetadataException, CredentialsNotAvailableException, XMLParserException, UnmarshallingException,
-      MarshallingException, TransformerException {
-
-    metadataProvider.addMetadataResolverIntoChain(metadataFactory.createMetadataProvider(
-        METADATA_PATH, null, "jUnit IDP", null));
-
-    final Response response = initializeResponse(
-        "classpath:/data/idp_metadata_classpath_entity.xml",
-        "/data/Response_without_sig_with_error_empty_subcode.xml",
-        credentialProvider.getMessageSigningCredential(),
-        true);
-    httpReq.addParameter("SAMLResponse", Base64.getEncoder().encodeToString(
-        DomUtils.serializeNode(XMLObjectSupport.getMarshaller(response).marshall(response)).getBytes(
-            "UTF-8")));
-
-    try {
-      task.execute(pendingReq, executionContext);
-      fail("Invalid response not detected");
-
-    } catch (final TaskExecutionException e) {
-      assertNotNull(e.getPendingRequestID());
-      assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
-      assertNotNull(e.getOriginalException());
-      isInstanceOf(AuthnResponseValidationException.class, e.getOriginalException());
-      assertEquals("sp.pvp2.05", ((EaafException) e.getOriginalException()).getErrorId());
-
-    }
-  }
-
-  @Test
-  public void httpPostValidSignedAssertionEidValid() throws IOException, SamlSigningException,
-      Pvp2MetadataException, CredentialsNotAvailableException, XMLParserException, UnmarshallingException,
-      MarshallingException, TransformerException, TaskExecutionException, EaafStorageException {
-
-    metadataProvider.addMetadataResolverIntoChain(metadataFactory.createMetadataProvider(
-        METADATA_PATH, null, "jUnit IDP", null));
-
-    final Response response = initializeResponse(
-        "classpath:/data/idp_metadata_classpath_entity.xml",
-        "/data/Response_with_EID.xml",
-        credentialProvider.getMessageSigningCredential(),
-        true);
-    httpReq.addParameter("SAMLResponse", Base64.getEncoder().encodeToString(
-        DomUtils.serializeNode(XMLObjectSupport.getMarshaller(response).marshall(response)).getBytes(
-            "UTF-8")));
-
-    // put SimpleEidasData in session
-    final AuthProcessDataWrapper authProcessData = pendingReq.getSessionData(AuthProcessDataWrapper.class);
-    final SimpleEidasData eidData = new SimpleEidasData();
-    eidData.setFamilyName("Mustermann");
-    eidData.setGivenName("Max");
-    eidData.setDateOfBirth("1940-01-01");
-    authProcessData.setGenericDataToSession(Constants.DATA_SIMPLE_EIDAS, eidData);
-
-    // perform task
-    task.execute(pendingReq, executionContext);
-
-    // validate state
-    final AuthProcessDataWrapper session = pendingReq.getSessionData(AuthProcessDataWrapper.class);
-    assertEquals("LoA", "http://eidas.europa.eu/LoA/low", session.getQaaLevel());
-    assertEquals("IssueInstant", "2014-03-05T06:39:51Z", session.getIssueInstantString());
-
-    //TODO:
-
-  }
-
-  @Test
-  public void httpPostValidSignedAssertionEidValidButNameMissmatch() throws IOException, SamlSigningException,
-      Pvp2MetadataException, CredentialsNotAvailableException, XMLParserException, UnmarshallingException,
-      MarshallingException, TransformerException, TaskExecutionException, EaafStorageException {
-
-    metadataProvider.addMetadataResolverIntoChain(metadataFactory.createMetadataProvider(
-        METADATA_PATH, null, "jUnit IDP", null));
-
-    final Response response = initializeResponse(
-        "classpath:/data/idp_metadata_classpath_entity.xml",
-        "/data/Response_with_EID.xml",
-        credentialProvider.getMessageSigningCredential(),
-        true);
-    httpReq.addParameter("SAMLResponse", Base64.getEncoder().encodeToString(
-        DomUtils.serializeNode(XMLObjectSupport.getMarshaller(response).marshall(response)).getBytes(
-            "UTF-8")));
-
-    // put SimpleEidasData in session
-    final AuthProcessDataWrapper authProcessData = pendingReq.getSessionData(AuthProcessDataWrapper.class);
-    final SimpleEidasData eidData = new SimpleEidasData();
-    eidData.setFamilyName("Mustermann1");
-    eidData.setGivenName("Max");
-    eidData.setDateOfBirth("1940-01-01");
-    authProcessData.setGenericDataToSession(Constants.DATA_SIMPLE_EIDAS, eidData);
-
-    // perform task
-    try {
-      task.execute(pendingReq, executionContext);
-      fail("Invalid response not detected");
-
-    } catch (final TaskExecutionException e) {
-      assertNotNull(e.getPendingRequestID());
-      assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
-      assertNotNull(e.getOriginalException());
-      isInstanceOf(AuthnResponseValidationException.class, e.getOriginalException());
-      assertTrue(e.getOriginalException().getCause() instanceof InvalidUserInputException);
-    }
-
-  }
-
-  private Response initializeResponse(String idpEntityId, String responsePath, EaafX509Credential credential,
-      boolean validConditions) throws SamlSigningException, XMLParserException, UnmarshallingException,
-      Pvp2MetadataException {
-
-    final Response response = (Response) XMLObjectSupport.unmarshallFromInputStream(
-        XMLObjectProviderRegistrySupport.getParserPool(),
-        ReceiveMobilePhoneSignatureResponseAndSearchInRegistersTaskTest.class.getResourceAsStream(
-            responsePath));
-    response.setIssueInstant(DateTime.now());
-    final Issuer issuer = Saml2Utils.createSamlObject(Issuer.class);
-    issuer.setValue(idpEntityId);
-    response.setIssuer(issuer);
-
-    if (validConditions) {
-      response.getAssertions().get(0).getConditions().setNotOnOrAfter(DateTime.now().plusMinutes(5));
-
-    }
-
-    return Saml2Utils.signSamlObject(response, credential, true);
-  }
-
-}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveMobilePhoneSignatureResponseTaskTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveMobilePhoneSignatureResponseTaskTest.java
new file mode 100644
index 00000000..5ea7b59b
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveMobilePhoneSignatureResponseTaskTest.java
@@ -0,0 +1,371 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.test.tasks;
+
+import at.asitplus.eidas.specific.connector.test.config.dummy.MsConnectorDummyConfigMap;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.InvalidUserInputException;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthConstants;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.provider.IdAustriaClientAuthCredentialProvider;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.provider.IdAustriaClientAuthMetadataProvider;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.RegisterSearchService;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.ReceiveMobilePhoneSignatureResponseTask;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.test.dummy.DummyOA;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.test.dummy.DummyPendingRequest;
+import at.gv.egiz.eaaf.core.api.data.EaafConstants;
+import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
+import at.gv.egiz.eaaf.core.exceptions.EaafException;
+import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
+import at.gv.egiz.eaaf.core.impl.idp.auth.data.AuthProcessDataWrapper;
+import at.gv.egiz.eaaf.core.impl.idp.process.ExecutionContextImpl;
+import at.gv.egiz.eaaf.core.impl.utils.DomUtils;
+import at.gv.egiz.eaaf.modules.pvp2.impl.metadata.PvpMetadataResolverFactory;
+import at.gv.egiz.eaaf.modules.pvp2.impl.opensaml.initialize.EaafOpenSaml3xInitializer;
+import at.gv.egiz.eaaf.modules.pvp2.impl.utils.Saml2Utils;
+import at.gv.egiz.eaaf.modules.pvp2.sp.exception.AuthnResponseValidationException;
+import net.shibboleth.utilities.java.support.xml.ParserPool;
+import org.apache.commons.io.IOUtils;
+import org.apache.commons.lang3.RandomStringUtils;
+import org.jetbrains.annotations.NotNull;
+import org.joda.time.DateTime;
+import org.junit.Before;
+import org.junit.BeforeClass;
+import org.junit.Test;
+import org.junit.runner.RunWith;
+import org.opensaml.core.xml.config.XMLObjectProviderRegistrySupport;
+import org.opensaml.core.xml.io.MarshallingException;
+import org.opensaml.core.xml.util.XMLObjectSupport;
+import org.opensaml.saml.saml2.core.Issuer;
+import org.opensaml.saml.saml2.core.Response;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.mock.web.MockHttpServletRequest;
+import org.springframework.mock.web.MockHttpServletResponse;
+import org.springframework.test.context.ContextConfiguration;
+import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
+import org.springframework.web.context.request.RequestContextHolder;
+import org.springframework.web.context.request.ServletRequestAttributes;
+
+import javax.xml.transform.TransformerException;
+import java.io.IOException;
+import java.io.InputStream;
+import java.nio.charset.StandardCharsets;
+import java.util.Base64;
+import java.util.Objects;
+
+import static org.junit.Assert.*;
+import static org.springframework.util.Assert.isInstanceOf;
+
+@RunWith(SpringJUnit4ClassRunner.class)
+@ContextConfiguration(locations = {
+    "/SpringTest-context_tasks_test.xml",
+    "/SpringTest-context_basic_mapConfig.xml"
+})
+public class ReceiveMobilePhoneSignatureResponseTaskTest {
+
+  private static final String METADATA_PATH = "classpath:/data/idp_metadata_classpath_entity.xml";
+
+  @Autowired
+  protected MsConnectorDummyConfigMap authConfig;
+  @Autowired
+  private IdAustriaClientAuthMetadataProvider metadataProvider;
+  @Autowired
+  private IdAustriaClientAuthCredentialProvider credentialProvider;
+  @Autowired
+  private PvpMetadataResolverFactory metadataFactory;
+  @Autowired
+  private ReceiveMobilePhoneSignatureResponseTask task;
+
+  private final ExecutionContext executionContext = new ExecutionContextImpl();
+  private MockHttpServletRequest httpReq;
+  private MockHttpServletResponse httpResp;
+  private DummyPendingRequest pendingReq;
+
+  /**
+   * JUnit class initializer.
+   *
+   * @throws Exception In case of an OpenSAML3 initialization error
+   */
+  @BeforeClass
+  public static void initialize() throws Exception {
+    EaafOpenSaml3xInitializer.eaafInitialize();
+  }
+
+  /**
+   * jUnit test set-up.
+   *
+   * @throws Exception In case of an set-up error
+   */
+  @Before
+  public void setUp() throws Exception {
+    httpReq = new MockHttpServletRequest("POST", "https://localhost/authhandler");
+    httpReq.setScheme("https");
+    httpReq.setServerPort(443);
+    httpReq.setContextPath("/authhandler");
+    httpResp = new MockHttpServletResponse();
+    RequestContextHolder.resetRequestAttributes();
+    RequestContextHolder.setRequestAttributes(new ServletRequestAttributes(httpReq, httpResp));
+
+    authConfig.putConfigValue(IdAustriaClientAuthConstants.CONFIG_PROPS_ID_AUSTRIA_ENTITYID, METADATA_PATH);
+
+    DummyOA oaParam = new DummyOA();
+    oaParam.setUniqueAppId("http://test.com/test");
+    oaParam.setTargetIdentifier(EaafConstants.URN_PREFIX_CDID + RandomStringUtils.randomAlphabetic(2));
+
+    pendingReq = new DummyPendingRequest();
+    pendingReq.initialize(httpReq, authConfig);
+    pendingReq.setPendingRequestId(RandomStringUtils.randomAlphanumeric(10));
+    pendingReq.setOnlineApplicationConfiguration(oaParam);
+
+    metadataProvider.fullyDestroy();
+  }
+
+  @Test
+  public void unsupportedHttpMethod() {
+    httpReq = new MockHttpServletRequest("PUT", "https://localhost/authhandler");
+    RequestContextHolder.resetRequestAttributes();
+    RequestContextHolder.setRequestAttributes(new ServletRequestAttributes(httpReq, httpResp));
+
+    TaskExecutionException e = assertThrows(TaskExecutionException.class,
+        () -> task.execute(pendingReq, executionContext));
+
+    assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
+    isInstanceOf(AuthnResponseValidationException.class, e.getOriginalException());
+    assertEquals("sp.pvp2.03", ((AuthnResponseValidationException) e.getOriginalException()).getErrorId());
+  }
+
+  @Test
+  public void httpGetNoMessage() {
+    httpReq = new MockHttpServletRequest("GET", "https://localhost/authhandler");
+    RequestContextHolder.resetRequestAttributes();
+    RequestContextHolder.setRequestAttributes(new ServletRequestAttributes(httpReq, httpResp));
+
+    TaskExecutionException e = assertThrows(TaskExecutionException.class,
+        () -> task.execute(pendingReq, executionContext));
+
+    assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
+    isInstanceOf(AuthnResponseValidationException.class, e.getOriginalException());
+    assertEquals("sp.pvp2.12", ((AuthnResponseValidationException) e.getOriginalException()).getErrorId());
+
+  }
+
+  @Test
+  public void httpPostNoMessage() {
+    httpReq = new MockHttpServletRequest("POST", "https://localhost/authhandler");
+    RequestContextHolder.resetRequestAttributes();
+    RequestContextHolder.setRequestAttributes(new ServletRequestAttributes(httpReq, httpResp));
+
+    TaskExecutionException e = assertThrows(TaskExecutionException.class,
+        () -> task.execute(pendingReq, executionContext));
+
+    assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
+    isInstanceOf(AuthnResponseValidationException.class, e.getOriginalException());
+    assertEquals("sp.pvp2.12", ((AuthnResponseValidationException) e.getOriginalException()).getErrorId());
+  }
+
+  @Test
+  public void httpPostMessageNotSigned() throws IOException {
+    byte[] bytes = IOUtils.toByteArray(ReceiveMobilePhoneSignatureResponseTask.class
+        .getResourceAsStream("/data/Response_without_sig_classpath_entityid.xml"));
+    httpReq.addParameter("SAMLResponse", Base64.getEncoder().encodeToString(bytes));
+
+    TaskExecutionException e = assertThrows(TaskExecutionException.class,
+        () -> task.execute(pendingReq, executionContext));
+
+    assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
+    isInstanceOf(AuthnResponseValidationException.class, e.getOriginalException());
+    assertEquals("sp.pvp2.12", ((AuthnResponseValidationException) e.getOriginalException()).getErrorId());
+
+  }
+
+  @Test
+  public void httpPostMessageWrongDestinationEndpoint() throws Exception {
+    initResponse("/data/Response_with_wrong_destination_endpoint.xml", true);
+
+    TaskExecutionException e = assertThrows(TaskExecutionException.class,
+        () -> task.execute(pendingReq, executionContext));
+
+    assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
+    isInstanceOf(AuthnResponseValidationException.class, e.getOriginalException());
+    assertEquals("sp.pvp2.12", ((AuthnResponseValidationException) e.getOriginalException()).getErrorId());
+
+  }
+
+  @Test
+  public void httpPostValidSignedNoMetadata() throws Exception {
+    initResponse("/data/Response_without_sig_classpath_entityid.xml", true);
+
+    TaskExecutionException e = assertThrows(TaskExecutionException.class,
+        () -> task.execute(pendingReq, executionContext));
+
+    assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
+    isInstanceOf(AuthnResponseValidationException.class, e.getOriginalException());
+    assertEquals("sp.pvp2.11", ((EaafException) e.getOriginalException()).getErrorId());
+  }
+
+  @Test
+  public void httpPostValidSignedAssertionOutDated() throws Exception {
+    metadataProvider.addMetadataResolverIntoChain(metadataFactory.createMetadataProvider(
+        METADATA_PATH, null, "jUnit IDP", null));
+    initResponse("/data/Response_without_sig_classpath_entityid.xml", false);
+
+    TaskExecutionException e = assertThrows(TaskExecutionException.class,
+        () -> task.execute(pendingReq, executionContext));
+
+    assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
+    isInstanceOf(AuthnResponseValidationException.class, e.getOriginalException());
+    assertEquals("sp.pvp2.12", ((EaafException) e.getOriginalException()).getErrorId());
+  }
+
+  @Test
+  public void httpPostValidSignedAssertionFromWrongIdp() throws Exception {
+    authConfig.putConfigValue(IdAustriaClientAuthConstants.CONFIG_PROPS_ID_AUSTRIA_ENTITYID,
+        "http://wrong.idp/" + RandomStringUtils.randomAlphabetic(5));
+    metadataProvider.addMetadataResolverIntoChain(metadataFactory.createMetadataProvider(
+        METADATA_PATH, null, "jUnit IDP", null));
+    initResponse("/data/Response_without_sig_classpath_entityid.xml", true);
+
+    TaskExecutionException e = assertThrows(TaskExecutionException.class,
+        () -> task.execute(pendingReq, executionContext));
+
+    assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
+    isInstanceOf(AuthnResponseValidationException.class, e.getOriginalException());
+    assertEquals("sp.pvp2.08", ((EaafException) e.getOriginalException()).getErrorId());
+  }
+
+  @Test
+  public void httpPostValidSignedAssertionMissingAttributes() throws Exception {
+    metadataProvider.addMetadataResolverIntoChain(metadataFactory.createMetadataProvider(
+        METADATA_PATH, null, "jUnit IDP", null));
+    initResponse("/data/Response_without_sig_classpath_entityid.xml", true);
+
+    TaskExecutionException e = assertThrows(TaskExecutionException.class,
+        () -> task.execute(pendingReq, executionContext));
+
+    assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
+    isInstanceOf(AuthnResponseValidationException.class, e.getOriginalException());
+    assertEquals("sp.pvp2.12", ((EaafException) e.getOriginalException()).getErrorId());
+  }
+
+  @Test
+  public void httpPostValidSignedWithError() throws Exception {
+    metadataProvider.addMetadataResolverIntoChain(metadataFactory.createMetadataProvider(
+        METADATA_PATH, null, "jUnit IDP", null));
+    initResponse("/data/Response_without_sig_with_error.xml", true);
+
+    TaskExecutionException e = assertThrows(TaskExecutionException.class,
+        () -> task.execute(pendingReq, executionContext));
+
+    assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
+    isInstanceOf(AuthnResponseValidationException.class, e.getOriginalException());
+    assertEquals("sp.pvp2.05", ((EaafException) e.getOriginalException()).getErrorId());
+  }
+
+  @Test
+  public void httpPostValidSignedWitUserStopErrorCode() throws Exception {
+    metadataProvider.addMetadataResolverIntoChain(metadataFactory.createMetadataProvider(
+        METADATA_PATH, null, "jUnit IDP", null));
+    initResponse("/data/Response_without_sig_with_error_userstop.xml", true);
+
+    task.execute(pendingReq, executionContext);
+
+    assertTrue("process not cancelled", executionContext.isProcessCancelled());
+    assertTrue("process not stopped by user", pendingReq.isAbortedByUser());
+    assertFalse("should not authenticated", pendingReq.isAuthenticated());
+  }
+
+  @Test
+  public void httpPostValidSignedWithErrorAndNoSubCode() throws Exception {
+    metadataProvider.addMetadataResolverIntoChain(metadataFactory.createMetadataProvider(
+        METADATA_PATH, null, "jUnit IDP", null));
+    initResponse("/data/Response_without_sig_with_error_without_subcode.xml", true);
+
+    TaskExecutionException e = assertThrows(TaskExecutionException.class,
+        () -> task.execute(pendingReq, executionContext));
+
+    assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
+    isInstanceOf(AuthnResponseValidationException.class, e.getOriginalException());
+    assertEquals("sp.pvp2.05", ((EaafException) e.getOriginalException()).getErrorId());
+  }
+
+  @Test
+  public void httpPostValidSignedWithErrorAndEmptySubCode() throws Exception {
+    metadataProvider.addMetadataResolverIntoChain(metadataFactory.createMetadataProvider(
+        METADATA_PATH, null, "jUnit IDP", null));
+    initResponse("/data/Response_without_sig_with_error_empty_subcode.xml", true);
+
+    TaskExecutionException e = assertThrows(TaskExecutionException.class,
+        () -> task.execute(pendingReq, executionContext));
+
+    assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
+    isInstanceOf(AuthnResponseValidationException.class, e.getOriginalException());
+    assertEquals("sp.pvp2.05", ((EaafException) e.getOriginalException()).getErrorId());
+  }
+
+  @Test
+  public void httpPostValidSignedAssertionEidValidButNameMismatch() throws Exception {
+    metadataProvider.addMetadataResolverIntoChain(metadataFactory.createMetadataProvider(
+        METADATA_PATH, null, "jUnit IDP", null));
+    initResponse("/data/Response_with_EID.xml", true);
+    AuthProcessDataWrapper authProcessData = pendingReq.getSessionData(AuthProcessDataWrapper.class);
+    SimpleEidasData eidData = createEidasDataMatchingToSamlResponse();
+    eidData.setFamilyName(eidData.getFamilyName() + "notmatching");
+    authProcessData.setGenericDataToSession(Constants.DATA_SIMPLE_EIDAS, eidData);
+
+    TaskExecutionException e = assertThrows(TaskExecutionException.class,
+        () -> task.execute(pendingReq, executionContext));
+
+    assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
+    isInstanceOf(AuthnResponseValidationException.class, e.getOriginalException());
+    isInstanceOf(InvalidUserInputException.class, e.getOriginalException().getCause());
+  }
+
+  @Test
+  public void httpPostValidSignedAssertionEidValid() throws Exception {
+    // klar darstellen: was ist input, was ist dann expected output ... eigentlich für alle tasks!
+    metadataProvider.addMetadataResolverIntoChain(metadataFactory.createMetadataProvider(
+        METADATA_PATH, null, "jUnit IDP", null));
+    initResponse("/data/Response_with_EID.xml", true);
+    AuthProcessDataWrapper authProcessData = pendingReq.getSessionData(AuthProcessDataWrapper.class);
+    SimpleEidasData eidData = createEidasDataMatchingToSamlResponse();
+    authProcessData.setGenericDataToSession(Constants.DATA_SIMPLE_EIDAS, eidData);
+
+    task.execute(pendingReq, executionContext);
+
+    AuthProcessDataWrapper session = pendingReq.getSessionData(AuthProcessDataWrapper.class);
+    assertEquals("LoA", "http://eidas.europa.eu/LoA/low", session.getQaaLevel());
+    assertEquals("IssueInstant", "2014-03-05T06:39:51Z", session.getIssueInstantString());
+
+    //TODO this is the good case
+  }
+
+  @NotNull
+  private SimpleEidasData createEidasDataMatchingToSamlResponse() {
+    // data from "/data/Response_with_EID.xml"
+    SimpleEidasData result = new SimpleEidasData();
+    result.setFamilyName("Mustermann");
+    result.setGivenName("Max");
+    result.setDateOfBirth("1940-01-01");
+    return result;
+  }
+
+  private void addSamlResponseToHttpReq(Response response) throws TransformerException, IOException, MarshallingException {
+    String node = DomUtils.serializeNode(XMLObjectSupport.getMarshaller(response).marshall(response));
+    String base64encoded = Base64.getEncoder().encodeToString(node.getBytes(StandardCharsets.UTF_8));
+    httpReq.addParameter("SAMLResponse", base64encoded);
+  }
+
+  private void initResponse(String responsePath, boolean validConditions) throws Exception {
+    InputStream inputStream = ReceiveMobilePhoneSignatureResponseTaskTest.class.getResourceAsStream(responsePath);
+    ParserPool parserPool = Objects.requireNonNull(XMLObjectProviderRegistrySupport.getParserPool());
+    Response response = (Response) XMLObjectSupport.unmarshallFromInputStream(parserPool, inputStream);
+    response.setIssueInstant(DateTime.now());
+    Issuer issuer = Saml2Utils.createSamlObject(Issuer.class);
+    issuer.setValue("classpath:/data/idp_metadata_classpath_entity.xml");
+    response.setIssuer(issuer);
+    if (validConditions) {
+      response.getAssertions().get(0).getConditions().setNotOnOrAfter(DateTime.now().plusMinutes(5));
+    }
+    Response signedResponse = Saml2Utils.signSamlObject(response, credentialProvider.getMessageSigningCredential(), true);
+    addSamlResponseToHttpReq(signedResponse);
+  }
+
+}
-- 
cgit v1.2.3


From cdec2bbf39649f0fbe3d1655f5b47f62a5d0bae6 Mon Sep 17 00:00:00 2001
From: Christian Kollmann <christian.kollmann@a-sit.at>
Date: Thu, 25 Feb 2021 08:33:16 +0100
Subject: Prepare for Mockito testing of MobilePhoneSignature task

---
 .../modules/auth/eidas/v2/test/EidasSignalServletTest.java    |  1 -
 .../tasks/ReceiveMobilePhoneSignatureResponseTaskTest.java    | 11 ++++++++++-
 2 files changed, 10 insertions(+), 2 deletions(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/EidasSignalServletTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/EidasSignalServletTest.java
index 62d5c556..f1987e33 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/EidasSignalServletTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/EidasSignalServletTest.java
@@ -52,7 +52,6 @@ import eu.eidas.specificcommunication.exception.SpecificCommunicationException;
 @ContextConfiguration(locations = {
     "/SpringTest-context_tasks_test.xml",
     "/SpringTest-context_basic_mapConfig.xml"})
-@EnableWebMvc
 public class EidasSignalServletTest {
 
   @Autowired private MsConnectorDummyConfigMap basicConfig;
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveMobilePhoneSignatureResponseTaskTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveMobilePhoneSignatureResponseTaskTest.java
index 5ea7b59b..c180e6f9 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveMobilePhoneSignatureResponseTaskTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveMobilePhoneSignatureResponseTaskTest.java
@@ -2,6 +2,7 @@ package at.asitplus.eidas.specific.modules.auth.eidas.v2.test.tasks;
 
 import at.asitplus.eidas.specific.connector.test.config.dummy.MsConnectorDummyConfigMap;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.MergedRegisterSearchResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.InvalidUserInputException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthConstants;
@@ -31,12 +32,15 @@ import org.junit.Before;
 import org.junit.BeforeClass;
 import org.junit.Test;
 import org.junit.runner.RunWith;
+import org.mockito.Mockito;
+import org.mockito.MockitoAnnotations;
 import org.opensaml.core.xml.config.XMLObjectProviderRegistrySupport;
 import org.opensaml.core.xml.io.MarshallingException;
 import org.opensaml.core.xml.util.XMLObjectSupport;
 import org.opensaml.saml.saml2.core.Issuer;
 import org.opensaml.saml.saml2.core.Response;
 import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.boot.test.mock.mockito.MockBean;
 import org.springframework.mock.web.MockHttpServletRequest;
 import org.springframework.mock.web.MockHttpServletResponse;
 import org.springframework.test.context.ContextConfiguration;
@@ -49,9 +53,11 @@ import java.io.IOException;
 import java.io.InputStream;
 import java.nio.charset.StandardCharsets;
 import java.util.Base64;
+import java.util.Collections;
 import java.util.Objects;
 
 import static org.junit.Assert.*;
+import static org.mockito.ArgumentMatchers.eq;
 import static org.springframework.util.Assert.isInstanceOf;
 
 @RunWith(SpringJUnit4ClassRunner.class)
@@ -73,6 +79,8 @@ public class ReceiveMobilePhoneSignatureResponseTaskTest {
   private PvpMetadataResolverFactory metadataFactory;
   @Autowired
   private ReceiveMobilePhoneSignatureResponseTask task;
+  @MockBean
+  private RegisterSearchService registerSearchService;
 
   private final ExecutionContext executionContext = new ExecutionContextImpl();
   private MockHttpServletRequest httpReq;
@@ -96,6 +104,7 @@ public class ReceiveMobilePhoneSignatureResponseTaskTest {
    */
   @Before
   public void setUp() throws Exception {
+    MockitoAnnotations.initMocks(this);
     httpReq = new MockHttpServletRequest("POST", "https://localhost/authhandler");
     httpReq.setScheme("https");
     httpReq.setServerPort(443);
@@ -320,13 +329,13 @@ public class ReceiveMobilePhoneSignatureResponseTaskTest {
 
   @Test
   public void httpPostValidSignedAssertionEidValid() throws Exception {
-    // klar darstellen: was ist input, was ist dann expected output ... eigentlich für alle tasks!
     metadataProvider.addMetadataResolverIntoChain(metadataFactory.createMetadataProvider(
         METADATA_PATH, null, "jUnit IDP", null));
     initResponse("/data/Response_with_EID.xml", true);
     AuthProcessDataWrapper authProcessData = pendingReq.getSessionData(AuthProcessDataWrapper.class);
     SimpleEidasData eidData = createEidasDataMatchingToSamlResponse();
     authProcessData.setGenericDataToSession(Constants.DATA_SIMPLE_EIDAS, eidData);
+    Mockito.when(registerSearchService.searchWithBpkZp(eq("BF:QVGm48cqcM4UcyhDTNGYmVdrIoY="))).thenReturn(new MergedRegisterSearchResult(Collections.emptyList(), Collections.emptyList()));
 
     task.execute(pendingReq, executionContext);
 
-- 
cgit v1.2.3


From 4c81b6452edfed8821ddcb2e0253fa316acff73f Mon Sep 17 00:00:00 2001
From: Christian Kollmann <christian.kollmann@a-sit.at>
Date: Thu, 25 Feb 2021 11:47:01 +0100
Subject: Remove dependency to Powermock, everything can be done with Mockito

---
 .../auth/eidas/v2/test/EidasSignalServletTest.java | 130 ++++++------
 .../tasks/CreateIdentityLinkTaskEidNewTest.java    | 182 +++++++++--------
 .../v2/test/tasks/CreateIdentityLinkTaskTest.java  | 186 +++++++++--------
 .../test/tasks/ReceiveEidasResponseTaskTest.java   |  65 +++---
 .../auth/eidas/v2/test/utils/JoseUtilsTest.java    |  55 +++--
 .../validation/EidasResponseValidatorTest.java     | 221 ++++++++++-----------
 6 files changed, 412 insertions(+), 427 deletions(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/EidasSignalServletTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/EidasSignalServletTest.java
index f1987e33..f23d61db 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/EidasSignalServletTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/EidasSignalServletTest.java
@@ -14,7 +14,6 @@ import org.junit.Assert;
 import org.junit.Before;
 import org.junit.Test;
 import org.junit.runner.RunWith;
-import org.powermock.core.classloader.annotations.PrepareForTest;
 import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.mock.web.MockHttpServletRequest;
 import org.springframework.mock.web.MockHttpServletResponse;
@@ -47,7 +46,6 @@ import eu.eidas.auth.commons.tx.BinaryLightToken;
 import eu.eidas.specificcommunication.exception.SpecificCommunicationException;
 
 @RunWith(SpringJUnit4ClassRunner.class)
-@PrepareForTest(CreateIdentityLinkTask.class)
 @DirtiesContext(classMode = DirtiesContext.ClassMode.BEFORE_CLASS)
 @ContextConfiguration(locations = {
     "/SpringTest-context_tasks_test.xml",
@@ -60,14 +58,14 @@ public class EidasSignalServletTest {
   @Autowired private ITransactionStorage transStore;
   @Autowired private DummyProtocolAuthService protAuthService;
   @Autowired private DummySpecificCommunicationService connector;
-  
-  
+
+
   private MockHttpServletRequest httpReq;
   private MockHttpServletResponse httpResp;
   private TestRequestImpl pendingReq;
   private MsConnectorDummySpConfiguration oaParam;
-  
-   
+
+
   /**
    * jUnit test set-up.
    */
@@ -77,7 +75,7 @@ public class EidasSignalServletTest {
     httpResp = new MockHttpServletResponse();
     RequestContextHolder.resetRequestAttributes();
     RequestContextHolder.setRequestAttributes(new ServletRequestAttributes(httpReq, httpResp));
-    
+
     final Map<String, String> spConfig = new HashMap<>();
     spConfig.put(EaafConfigConstants.SERVICE_UNIQUEIDENTIFIER, "testSp");
     spConfig.put("target", "urn:publicid:gv.at:cdid+XX");
@@ -91,51 +89,51 @@ public class EidasSignalServletTest {
     pendingReq.setAuthUrl("http://test.com/");
     pendingReq.setTransactionId("avaasbav");
     pendingReq.setPiiTransactionId(RandomStringUtils.randomAlphanumeric(10));
-   
+
     connector.setiLightResponse(null);
-    
-    
+
+
   }
-  
+
   @Test
   public void noResponsToken() throws IOException, EaafException {
     //set-up
-         
+
     //execute test
     controller.restoreEidasAuthProcess(httpReq, httpResp);
-       
+
     //validate state
     Assert.assertNull("eIDAS response", httpReq.getAttribute(Constants.DATA_FULL_EIDAS_RESPONSE));
     Assert.assertNotNull("missing error", protAuthService.getException());
-    Assert.assertEquals("Wrong errorId", "auth.26", 
+    Assert.assertEquals("Wrong errorId", "auth.26",
         ((EaafException) protAuthService.getException()).getErrorId());
-    
+
   }
-  
+
   @Test
   public void unknownResponseToken() throws IOException, EaafException {
     //set-up
-    httpReq.setParameter(EidasParameterKeys.TOKEN.toString(), 
+    httpReq.setParameter(EidasParameterKeys.TOKEN.toString(),
         RandomStringUtils.randomAlphanumeric(10));
-         
+
     //execute test
     controller.restoreEidasAuthProcess(httpReq, httpResp);
-       
+
     //validate state
     Assert.assertNull("eIDAS response", httpReq.getAttribute(Constants.DATA_FULL_EIDAS_RESPONSE));
     Assert.assertNotNull("missing error", protAuthService.getException());
-    Assert.assertEquals("Wrong errorId", "auth.26", 
+    Assert.assertEquals("Wrong errorId", "auth.26",
         ((EaafException) protAuthService.getException()).getErrorId());
-    
+
   }
-  
+
   @Test
   public void withRelayState() throws IOException, EaafException, SpecificCommunicationException {
-    //set-up                 
-    String relayState = RandomStringUtils.randomAlphanumeric(10);    
+    //set-up
+    String relayState = RandomStringUtils.randomAlphanumeric(10);
     pendingReq.setPendingReqId(relayState);
     storage.storePendingRequest(pendingReq);
-    
+
     Builder iLightResponse = new AuthenticationResponse.Builder();
     iLightResponse.id("_".concat(Random.nextHexRandom16()))
         .issuer(RandomStringUtils.randomAlphabetic(10))
@@ -144,37 +142,37 @@ public class EidasSignalServletTest {
         .inResponseTo("_".concat(Random.nextHexRandom16()))
         .subjectNameIdFormat("afaf")
         .relayState(relayState);
-     
+
     AuthenticationResponse eidasResp = iLightResponse.build();
-    BinaryLightToken token = connector.putResponse(eidasResp);    
-    httpReq.setParameter(EidasParameterKeys.TOKEN.toString(), 
+    BinaryLightToken token = connector.putResponse(eidasResp);
+    httpReq.setParameter(EidasParameterKeys.TOKEN.toString(),
         Base64.getEncoder().encodeToString(token.getTokenBytes()));
 
-    
+
     //execute test
     controller.restoreEidasAuthProcess(httpReq, httpResp);
-       
-    
+
+
     //validate state
     Assert.assertNotNull("eIDAS response", httpReq.getAttribute(Constants.DATA_FULL_EIDAS_RESPONSE));
-    Assert.assertEquals("wrong eIDAS response", eidasResp, 
+    Assert.assertEquals("wrong eIDAS response", eidasResp,
         httpReq.getAttribute(Constants.DATA_FULL_EIDAS_RESPONSE));
-    
-    Assert.assertNotNull("missing error", protAuthService.getException());    
-    Assert.assertEquals("Wrong errorId", "PendingRequest object is not of type 'RequestImpl.class'", 
+
+    Assert.assertNotNull("missing error", protAuthService.getException());
+    Assert.assertEquals("Wrong errorId", "PendingRequest object is not of type 'RequestImpl.class'",
         ((EaafException) protAuthService.getException()).getErrorId());
-    
+
   }
-  
+
   @Test
   public void withOutRelayStateMissingPendingReq() throws IOException, EaafException, SpecificCommunicationException {
-    //set-up                 
-    String pendingReqId = RandomStringUtils.randomAlphanumeric(10);    
+    //set-up
+    String pendingReqId = RandomStringUtils.randomAlphanumeric(10);
     pendingReq.setPendingReqId(pendingReqId);
     storage.storePendingRequest(pendingReq);
-    
+
     String inResponseTo = "_".concat(Random.nextHexRandom16());
-    
+
     Builder iLightResponse = new AuthenticationResponse.Builder();
     iLightResponse.id("_".concat(Random.nextHexRandom16()))
         .issuer(RandomStringUtils.randomAlphabetic(10))
@@ -182,35 +180,35 @@ public class EidasSignalServletTest {
         .statusCode(Constants.SUCCESS_URI)
         .inResponseTo(inResponseTo)
         .subjectNameIdFormat("afaf");
-     
+
     AuthenticationResponse eidasResp = iLightResponse.build();
-    BinaryLightToken token = connector.putResponse(eidasResp);    
-    httpReq.setParameter(EidasParameterKeys.TOKEN.toString(), 
+    BinaryLightToken token = connector.putResponse(eidasResp);
+    httpReq.setParameter(EidasParameterKeys.TOKEN.toString(),
         Base64.getEncoder().encodeToString(token.getTokenBytes()));
 
-    
+
     //execute test
     controller.restoreEidasAuthProcess(httpReq, httpResp);
-       
-    
+
+
     //validate state
     Assert.assertNull("eIDAS response", httpReq.getAttribute(Constants.DATA_FULL_EIDAS_RESPONSE));
     Assert.assertNotNull("missing error", protAuthService.getException());
-    Assert.assertEquals("Wrong errorId", "auth.26", 
+    Assert.assertEquals("Wrong errorId", "auth.26",
         ((EaafException) protAuthService.getException()).getErrorId());
-    
+
   }
-  
+
   @Test
   public void withInResponseToElement() throws IOException, EaafException, SpecificCommunicationException {
-    //set-up                 
-    String pendingReqId = RandomStringUtils.randomAlphanumeric(10);    
+    //set-up
+    String pendingReqId = RandomStringUtils.randomAlphanumeric(10);
     pendingReq.setPendingReqId(pendingReqId);
     storage.storePendingRequest(pendingReq);
-            
+
     String inResponseTo = "_".concat(Random.nextHexRandom16());
     transStore.put(inResponseTo, pendingReqId, -1);
-    
+
     Builder iLightResponse = new AuthenticationResponse.Builder();
     iLightResponse.id("_".concat(Random.nextHexRandom16()))
         .issuer(RandomStringUtils.randomAlphabetic(10))
@@ -218,26 +216,26 @@ public class EidasSignalServletTest {
         .statusCode(Constants.SUCCESS_URI)
         .inResponseTo(inResponseTo)
         .subjectNameIdFormat("afaf");
-     
+
     AuthenticationResponse eidasResp = iLightResponse.build();
-    BinaryLightToken token = connector.putResponse(eidasResp);    
-    httpReq.setParameter(EidasParameterKeys.TOKEN.toString(), 
+    BinaryLightToken token = connector.putResponse(eidasResp);
+    httpReq.setParameter(EidasParameterKeys.TOKEN.toString(),
         Base64.getEncoder().encodeToString(token.getTokenBytes()));
 
-    
+
     //execute test
     controller.restoreEidasAuthProcess(httpReq, httpResp);
-       
-    
+
+
     //validate state
     Assert.assertNotNull("eIDAS response", httpReq.getAttribute(Constants.DATA_FULL_EIDAS_RESPONSE));
-    Assert.assertEquals("wrong eIDAS response", eidasResp, 
+    Assert.assertEquals("wrong eIDAS response", eidasResp,
         httpReq.getAttribute(Constants.DATA_FULL_EIDAS_RESPONSE));
-    
-    Assert.assertNotNull("missing error", protAuthService.getException());    
-    Assert.assertEquals("Wrong errorId", "PendingRequest object is not of type 'RequestImpl.class'", 
+
+    Assert.assertNotNull("missing error", protAuthService.getException());
+    Assert.assertEquals("Wrong errorId", "PendingRequest object is not of type 'RequestImpl.class'",
         ((EaafException) protAuthService.getException()).getErrorId());
-    
+
   }
-  
+
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/CreateIdentityLinkTaskEidNewTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/CreateIdentityLinkTaskEidNewTest.java
index 2e6790c5..c29c82c7 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/CreateIdentityLinkTaskEidNewTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/CreateIdentityLinkTaskEidNewTest.java
@@ -4,7 +4,7 @@ import static at.asitplus.eidas.specific.connector.MsEidasNodeConstants.PROP_CON
 import static org.mockito.ArgumentMatchers.any;
 import static org.mockito.Mockito.times;
 import static org.mockito.Mockito.verify;
-import static org.powermock.api.mockito.PowerMockito.when;
+import static org.mockito.Mockito.when;
 
 import java.net.URISyntaxException;
 import java.security.KeyStore;
@@ -28,7 +28,6 @@ import org.junit.Rule;
 import org.junit.Test;
 import org.junit.runner.RunWith;
 import org.mockito.ArgumentCaptor;
-import org.powermock.core.classloader.annotations.PrepareForTest;
 import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.mock.web.MockHttpServletRequest;
 import org.springframework.mock.web.MockHttpServletResponse;
@@ -80,7 +79,6 @@ import szrservices.SignContentEntry;
 import szrservices.SignContentResponseType;
 
 @RunWith(SpringJUnit4ClassRunner.class)
-@PrepareForTest(CreateIdentityLinkTask.class)
 @DirtiesContext(classMode = DirtiesContext.ClassMode.BEFORE_CLASS)
 @ContextConfiguration(locations = {
     "/SpringTest-context_tasks_test.xml",
@@ -117,9 +115,9 @@ public class CreateIdentityLinkTaskEidNewTest {
           AlgorithmIdentifiers.RSA_PSS_USING_SHA512));
 
   private static ObjectMapper mapper = new ObjectMapper();
-  
+
   private AuthenticationResponse response;
-  
+
   @Rule
   public final SoapServiceRule soap = SoapServiceRule.newInstance();
 
@@ -133,9 +131,9 @@ public class CreateIdentityLinkTaskEidNewTest {
     httpResp = new MockHttpServletResponse();
     RequestContextHolder.resetRequestAttributes();
     RequestContextHolder.setRequestAttributes(new ServletRequestAttributes(httpReq, httpResp));
-       
+
     basicConfig.putConfigValue("eidas.ms.auth.eIDAS.szrclient.debug.useDummySolution", "false");
-    
+
     final Map<String, String> spConfig = new HashMap<>();
     spConfig.put(EaafConfigConstants.SERVICE_UNIQUEIDENTIFIER, "testSp");
     spConfig.put("target", "urn:publicid:gv.at:cdid+XX");
@@ -147,13 +145,13 @@ public class CreateIdentityLinkTaskEidNewTest {
     pendingReq.getSessionData(AuthProcessDataWrapper.class)
         .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
 
-    
+
     pendingReq.setSpConfig(oaParam);
     pendingReq.setPendingReqId(at.gv.egiz.eaaf.core.impl.utils.Random.nextProcessReferenceValue());
     pendingReq.setAuthUrl("http://test.com/");
     pendingReq.setTransactionId("avaasbav");
     pendingReq.setPiiTransactionId(RandomStringUtils.randomAlphanumeric(10));
-        
+
     executionContext.put(MsEidasNodeConstants.REQ_PARAM_SELECTED_COUNTRY, "XX");
     executionContext.put(EaafConstants.PROCESS_ENGINE_REQUIRES_NO_POSTAUTH_REDIRECT, true);
 
@@ -166,26 +164,26 @@ public class CreateIdentityLinkTaskEidNewTest {
     response = buildDummyAuthResponse(true);
     pendingReq.getSessionData(AuthProcessDataWrapper.class)
         .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
-    
+
     String vsz = RandomStringUtils.randomNumeric(10);
-    when(szrMock, "getStammzahlEncrypted", any(), any()).thenReturn(vsz);
+    when(szrMock.getStammzahlEncrypted(any(), any())).thenReturn(vsz);
     val signContentResp = new SignContentResponseType();
     final SignContentEntry signContentEntry = new SignContentEntry();
     signContentEntry.setValue(RandomStringUtils.randomAlphanumeric(10));
     signContentResp.getOut().add(signContentEntry);
-    when(szrMock, "signContent", any(), any(), any()).thenReturn(signContentResp);
+    when(szrMock.signContent(any(), any(), any())).thenReturn(signContentResp);
 
     String randomTestSp = RandomStringUtils.randomAlphabetic(10);
     pendingReq.setRawDataToTransaction(MsEidasNodeConstants.DATA_REQUESTERID, randomTestSp);
-    
+
     //perform test
     task.execute(pendingReq, executionContext);
 
-    //validate state    
+    //validate state
     // check if pendingRequest was stored
     IRequest storedPendingReq = requestStorage.getPendingRequest(pendingReq.getPendingRequestId());
     Assert.assertNotNull("pendingReq not stored", storedPendingReq);
-    
+
     //check data in session
     final AuthProcessDataWrapper authProcessData = storedPendingReq.getSessionData(AuthProcessDataWrapper.class);
     Assert.assertNotNull("AuthProcessData", authProcessData);
@@ -193,16 +191,16 @@ public class CreateIdentityLinkTaskEidNewTest {
 
     String authBlock = authProcessData.getGenericDataFromSession(Constants.SZR_AUTHBLOCK, String.class);
     Assert.assertNotNull("AuthBlock", authBlock);
-    
+
     Assert.assertTrue("EID process", authProcessData.isEidProcess());
     Assert.assertTrue("foreigner process", authProcessData.isForeigner());
-    Assert.assertEquals("EID-ISSUING_NATION", "LU", 
+    Assert.assertEquals("EID-ISSUING_NATION", "LU",
         authProcessData.getGenericDataFromSession(PvpAttributeDefinitions.EID_ISSUING_NATION_NAME, String.class));
     Assert.assertNotNull("LoA is null", authProcessData.getQaaLevel());
-    Assert.assertEquals("LoA", response.getLevelOfAssurance(), 
+    Assert.assertEquals("LoA", response.getLevelOfAssurance(),
         authProcessData.getQaaLevel());
-        
-    
+
+
     // check authblock signature
     final AlgorithmConstraints constraints = new AlgorithmConstraints(ConstraintType.PERMIT,
         BINDING_AUTH_ALGORITHM_WHITELIST_SIGNING.toArray(new String[BINDING_AUTH_ALGORITHM_WHITELIST_SIGNING.size()]));
@@ -210,59 +208,59 @@ public class CreateIdentityLinkTaskEidNewTest {
     X509Certificate[] trustedCerts = EaafKeyStoreUtils
         .getPrivateKeyAndCertificates(keyStore.getFirst(), ALIAS, PW.toCharArray(), true, "junit").getSecond();
     JwsResult result = JoseUtils.validateSignature(authBlock, Arrays.asList(trustedCerts), constraints);
-    Assert.assertTrue("AuthBlock not valid", result.isValid());        
-    JsonNode authBlockJson = mapper.readTree(result.getPayLoad());    
+    Assert.assertTrue("AuthBlock not valid", result.isValid());
+    JsonNode authBlockJson = mapper.readTree(result.getPayLoad());
     Assert.assertNotNull("deserialized AuthBlock", authBlockJson);
-    
-    Assert.assertNotNull("no piiTransactionId in pendingRequesdt", 
+
+    Assert.assertNotNull("no piiTransactionId in pendingRequesdt",
         storedPendingReq.getUniquePiiTransactionIdentifier());
-    Assert.assertEquals("piiTransactionId", storedPendingReq.getUniquePiiTransactionIdentifier(), 
+    Assert.assertEquals("piiTransactionId", storedPendingReq.getUniquePiiTransactionIdentifier(),
         authBlockJson.get("piiTransactionId").asText());
-    Assert.assertEquals("appId", randomTestSp, authBlockJson.get("appId").asText());    
+    Assert.assertEquals("appId", randomTestSp, authBlockJson.get("appId").asText());
     Assert.assertFalse("'challenge' is null", authBlockJson.get("challenge").asText().isEmpty());
     Assert.assertFalse("'timestamp' is null", authBlockJson.get("timestamp").asText().isEmpty());
-    
-    
+
+
     // check vsz request
     ArgumentCaptor<PersonInfoType> argument4 = ArgumentCaptor.forClass(PersonInfoType.class);
-    ArgumentCaptor<Boolean> argument5 = ArgumentCaptor.forClass(Boolean.class);        
+    ArgumentCaptor<Boolean> argument5 = ArgumentCaptor.forClass(Boolean.class);
     verify(szrMock, times(1)).getStammzahlEncrypted(argument4.capture(), argument5.capture());
-    
+
     Boolean param5 = argument5.getValue();
-    Assert.assertTrue("insertERnP flag", param5);    
+    Assert.assertTrue("insertERnP flag", param5);
     PersonInfoType person = argument4.getValue();
-    Assert.assertEquals("FamilyName", 
+    Assert.assertEquals("FamilyName",
         response.getAttributes().getAttributeValuesByFriendlyName("FamilyName").getFirstValue(
-            response.getAttributes().getDefinitionsByFriendlyName("FamilyName").iterator().next()), 
+            response.getAttributes().getDefinitionsByFriendlyName("FamilyName").iterator().next()),
         person.getPerson().getName().getFamilyName());
-    Assert.assertEquals("GivenName", 
+    Assert.assertEquals("GivenName",
         response.getAttributes().getAttributeValuesByFriendlyName("FirstName").getFirstValue(
-            response.getAttributes().getDefinitionsByFriendlyName("FirstName").iterator().next()), 
+            response.getAttributes().getDefinitionsByFriendlyName("FirstName").iterator().next()),
         person.getPerson().getName().getGivenName());
-    Assert.assertEquals("DateOfBirth", 
+    Assert.assertEquals("DateOfBirth",
         response.getAttributes().getAttributeValuesByFriendlyName("DateOfBirth").getFirstValue(
             response.getAttributes().getDefinitionsByFriendlyName("DateOfBirth").iterator().next())
-            .toString().split("T")[0], 
+            .toString().split("T")[0],
         person.getPerson().getDateOfBirth());
-    
-    Assert.assertEquals("PlaceOfBirth", 
+
+    Assert.assertEquals("PlaceOfBirth",
         response.getAttributes().getAttributeValuesByFriendlyName("PlaceOfBirth").getFirstValue(
-            response.getAttributes().getDefinitionsByFriendlyName("PlaceOfBirth").iterator().next()), 
-        person.getPerson().getPlaceOfBirth());    
-    Assert.assertEquals("BirthName", 
+            response.getAttributes().getDefinitionsByFriendlyName("PlaceOfBirth").iterator().next()),
+        person.getPerson().getPlaceOfBirth());
+    Assert.assertEquals("BirthName",
         response.getAttributes().getAttributeValuesByFriendlyName("BirthName").getFirstValue(
-            response.getAttributes().getDefinitionsByFriendlyName("BirthName").iterator().next()), 
+            response.getAttributes().getDefinitionsByFriendlyName("BirthName").iterator().next()),
         person.getPerson().getAlternativeName().getFamilyName());
-    
+
     Assert.assertEquals("CitizenCountry", "LU", person.getTravelDocument().getIssuingCountry());
     Assert.assertEquals("DocumentType", "ELEKTR_DOKUMENT", person.getTravelDocument().getDocumentType());
-    
-    Assert.assertEquals("Identifier", 
+
+    Assert.assertEquals("Identifier",
         response.getAttributes().getAttributeValuesByFriendlyName("PersonIdentifier").getFirstValue(
             response.getAttributes().getDefinitionsByFriendlyName("PersonIdentifier").iterator().next())
-            .toString().split("/")[2], 
+            .toString().split("/")[2],
         person.getTravelDocument().getDocumentNumber());
-           
+
     // check bcBind singing request
     ArgumentCaptor<Boolean> argument1 = ArgumentCaptor.forClass(Boolean.class);
     ArgumentCaptor<List<JwsHeaderParam>> argument2 = ArgumentCaptor.forClass(List.class);
@@ -270,60 +268,60 @@ public class CreateIdentityLinkTaskEidNewTest {
     verify(szrMock, times(1)).signContent(argument1.capture(), argument2.capture(), argument3.capture());
     Boolean param1 = argument1.getValue();
     Assert.assertFalse("addCert flag", param1);
-    
+
     List<JwsHeaderParam> param2 = argument2.getValue();
-    Assert.assertNotNull("JWS Headers", param2); 
+    Assert.assertNotNull("JWS Headers", param2);
     Assert.assertFalse("JWS Headers empty", param2.isEmpty());
     Assert.assertEquals("Wrong JWS header size", 1, param2.size());
     Assert.assertEquals("Missing JWS header key", "urn:at.gv.eid:bindtype", param2.get(0).getKey());
     Assert.assertEquals("Missing JWS header value", "urn:at.gv.eid:eidasBind", param2.get(0).getValue());
-    
+
     List<SignContentEntry> param3 = argument3.getValue();
     Assert.assertNotNull("sign Payload", param3);
-    Assert.assertEquals("wrong sign-payload size", 1, param3.size());    
-    Assert.assertNotNull("payload", param3.get(0).getValue().getBytes());    
+    Assert.assertEquals("wrong sign-payload size", 1, param3.size());
+    Assert.assertNotNull("payload", param3.get(0).getValue().getBytes());
     JsonNode bcBind = mapper.readTree(param3.get(0).getValue().getBytes());
     Assert.assertNotNull("bcbind req", bcBind);
-    
+
     Assert.assertEquals("vsz", vsz, bcBind.get("urn:eidgvat:attributes.vsz.value").asText());
-    Assert.assertEquals("eid status", "urn:eidgvat:eid.status.eidas", 
+    Assert.assertEquals("eid status", "urn:eidgvat:eid.status.eidas",
         bcBind.get("urn:eidgvat:attributes.eid.status").asText());
     Assert.assertTrue("pubKeys", bcBind.has("urn:eidgvat:attributes.user.pubkeys"));
-    Assert.assertTrue("pubKeys", bcBind.get("urn:eidgvat:attributes.user.pubkeys").isArray());    
+    Assert.assertTrue("pubKeys", bcBind.get("urn:eidgvat:attributes.user.pubkeys").isArray());
     Iterator<JsonNode> pubKeys = bcBind.get("urn:eidgvat:attributes.user.pubkeys").elements();
     Assert.assertTrue("No PubKey", pubKeys.hasNext());
-    Assert.assertEquals("Wrong pubKey", 
+    Assert.assertEquals("Wrong pubKey",
         "MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmxcB5jnrAwGn7xjgVFv1UBUv1pluwDRFQx7x5O6rSn7pblYfwaWeKa8y"
         + "jS5BDDaZ00mhhnSlm2XByNrkg5yBGetTgBGtQVAxV5apfuAWN8TS3uSXgdZol7Khd6kraUITtnulvLe8tNaboom5P0zN6UxbJN"
         + "NVLishVp80HiRXiDbplCTUk8b5cYtmivdb0+5JBTa7L5N/anRVnHHoJCXgNPTouO8daUHZbG1mPk0HgqD8rhZ+OBzE+APKH9No"
-        + "agedSrGRDLdIgZxkrg0mxmfsZQIi2wdJSi3y0PAjEps/s4j0nmw9bPRgCMNLBqqjxtN5JKC8E1yyLm7YefXv/nPaMwIDAQAB", 
+        + "agedSrGRDLdIgZxkrg0mxmfsZQIi2wdJSi3y0PAjEps/s4j0nmw9bPRgCMNLBqqjxtN5JKC8E1yyLm7YefXv/nPaMwIDAQAB",
         pubKeys.next().asText());
     Assert.assertFalse("More than one PubKey", pubKeys.hasNext());
-    
+
   }
 
   @Test
   public void successfulProcessWithStandardInfos() throws Exception {
-    //initialize test    
+    //initialize test
     String vsz = RandomStringUtils.randomNumeric(10);
-    when(szrMock, "getStammzahlEncrypted", any(), any()).thenReturn(vsz);
+    when(szrMock.getStammzahlEncrypted(any(), any())).thenReturn(vsz);
     val signContentResp = new SignContentResponseType();
     final SignContentEntry signContentEntry = new SignContentEntry();
     signContentEntry.setValue(RandomStringUtils.randomAlphanumeric(10));
     signContentResp.getOut().add(signContentEntry);
-    when(szrMock, "signContent", any(), any(), any()).thenReturn(signContentResp);
+    when(szrMock.signContent(any(), any(), any())).thenReturn(signContentResp);
 
     String randomTestSp = RandomStringUtils.randomAlphabetic(10);
     pendingReq.setRawDataToTransaction(MsEidasNodeConstants.DATA_REQUESTERID, randomTestSp);
-    
+
     //perform test
     task.execute(pendingReq, executionContext);
 
-    //validate state    
+    //validate state
     // check if pendingRequest was stored
     IRequest storedPendingReq = requestStorage.getPendingRequest(pendingReq.getPendingRequestId());
     Assert.assertNotNull("pendingReq not stored", storedPendingReq);
-    
+
     //check data in session
     final AuthProcessDataWrapper authProcessData = storedPendingReq.getSessionData(AuthProcessDataWrapper.class);
     Assert.assertNotNull("AuthProcessData", authProcessData);
@@ -331,56 +329,56 @@ public class CreateIdentityLinkTaskEidNewTest {
 
     String authBlock = authProcessData.getGenericDataFromSession(Constants.SZR_AUTHBLOCK, String.class);
     Assert.assertNotNull("AuthBlock", authBlock);
-    
+
     Assert.assertTrue("EID process", authProcessData.isEidProcess());
     Assert.assertTrue("foreigner process", authProcessData.isForeigner());
-    Assert.assertEquals("EID-ISSUING_NATION", "LU", 
+    Assert.assertEquals("EID-ISSUING_NATION", "LU",
         authProcessData.getGenericDataFromSession(PvpAttributeDefinitions.EID_ISSUING_NATION_NAME, String.class));
     Assert.assertNotNull("LoA is null", authProcessData.getQaaLevel());
-    Assert.assertEquals("LoA", response.getLevelOfAssurance(), 
+    Assert.assertEquals("LoA", response.getLevelOfAssurance(),
         authProcessData.getQaaLevel());
-      
+
     // check vsz request
     ArgumentCaptor<PersonInfoType> argument4 = ArgumentCaptor.forClass(PersonInfoType.class);
-    ArgumentCaptor<Boolean> argument5 = ArgumentCaptor.forClass(Boolean.class);        
+    ArgumentCaptor<Boolean> argument5 = ArgumentCaptor.forClass(Boolean.class);
     verify(szrMock, times(1)).getStammzahlEncrypted(argument4.capture(), argument5.capture());
-    
+
     Boolean param5 = argument5.getValue();
-    Assert.assertTrue("insertERnP flag", param5);    
+    Assert.assertTrue("insertERnP flag", param5);
     PersonInfoType person = argument4.getValue();
-    Assert.assertEquals("FamilyName", 
+    Assert.assertEquals("FamilyName",
         response.getAttributes().getAttributeValuesByFriendlyName("FamilyName").getFirstValue(
-            response.getAttributes().getDefinitionsByFriendlyName("FamilyName").iterator().next()), 
+            response.getAttributes().getDefinitionsByFriendlyName("FamilyName").iterator().next()),
         person.getPerson().getName().getFamilyName());
-    Assert.assertEquals("GivenName", 
+    Assert.assertEquals("GivenName",
         response.getAttributes().getAttributeValuesByFriendlyName("FirstName").getFirstValue(
-            response.getAttributes().getDefinitionsByFriendlyName("FirstName").iterator().next()), 
+            response.getAttributes().getDefinitionsByFriendlyName("FirstName").iterator().next()),
         person.getPerson().getName().getGivenName());
-    Assert.assertEquals("DateOfBirth", 
+    Assert.assertEquals("DateOfBirth",
         response.getAttributes().getAttributeValuesByFriendlyName("DateOfBirth").getFirstValue(
             response.getAttributes().getDefinitionsByFriendlyName("DateOfBirth").iterator().next())
-            .toString().split("T")[0], 
+            .toString().split("T")[0],
         person.getPerson().getDateOfBirth());
-    
-    Assert.assertNull("PlaceOfBirth", person.getPerson().getPlaceOfBirth());     
+
+    Assert.assertNull("PlaceOfBirth", person.getPerson().getPlaceOfBirth());
     Assert.assertNull("BirthName", person.getPerson().getAlternativeName());
-    
+
     Assert.assertEquals("CitizenCountry", "LU", person.getTravelDocument().getIssuingCountry());
     Assert.assertEquals("DocumentType", "ELEKTR_DOKUMENT", person.getTravelDocument().getDocumentType());
-    
-    Assert.assertEquals("Identifier", 
+
+    Assert.assertEquals("Identifier",
         response.getAttributes().getAttributeValuesByFriendlyName("PersonIdentifier").getFirstValue(
             response.getAttributes().getDefinitionsByFriendlyName("PersonIdentifier").iterator().next())
-            .toString().split("/")[2], 
+            .toString().split("/")[2],
         person.getTravelDocument().getDocumentNumber());
-           
-   
+
+
   }
-  
+
   @Test
   public void getStammzahlEncryptedExceptionTest() throws Exception {
     try {
-      when(szrMock, "getStammzahlEncrypted", any(), any()).thenReturn(null);
+      when(szrMock.getStammzahlEncrypted(any(), any())).thenReturn(null);
       task.execute(pendingReq, executionContext);
     } catch (TaskExecutionException e) {
       Assert.assertEquals("Incorrect exception thrown", e.getMessage(),
@@ -394,8 +392,8 @@ public class CreateIdentityLinkTaskEidNewTest {
   @Test
   public void signContentExceptionTest() throws Exception {
     try {
-      when(szrMock, "getStammzahlEncrypted", any(), any()).thenReturn(RandomStringUtils.randomNumeric(10));
-      when(szrMock, "signContent", any(), any(), any()).thenReturn(null);
+      when(szrMock.getStammzahlEncrypted(any(), any())).thenReturn(RandomStringUtils.randomNumeric(10));
+      when(szrMock.signContent(any(), any(), any())).thenReturn(null);
       task.execute(pendingReq, executionContext);
     } catch (TaskExecutionException e) {
       Assert.assertEquals("Incorrect exception thrown", e.getMessage(),
@@ -442,7 +440,7 @@ public class CreateIdentityLinkTaskEidNewTest {
         Constants.eIDAS_ATTR_PLACEOFBIRTH).first();
     final AttributeDefinition attributeDef6 = attrRegistry.getCoreAttributeRegistry().getByFriendlyName(
         Constants.eIDAS_ATTR_BIRTHNAME).first();
-   
+
     final Builder attributeMap = ImmutableAttributeMap.builder();
     attributeMap.put(attributeDef, "LU/AT/" + RandomStringUtils.randomNumeric(64));
     attributeMap.put(attributeDef2, RandomStringUtils.randomAlphabetic(10));
@@ -451,7 +449,7 @@ public class CreateIdentityLinkTaskEidNewTest {
     if (withAll) {
       attributeMap.put(attributeDef5, RandomStringUtils.randomAlphabetic(10));
       attributeMap.put(attributeDef6, RandomStringUtils.randomAlphabetic(10));
-      
+
     }
 
     val b = new AuthenticationResponse.Builder();
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/CreateIdentityLinkTaskTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/CreateIdentityLinkTaskTest.java
index 8c7558dd..4d52566d 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/CreateIdentityLinkTaskTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/CreateIdentityLinkTaskTest.java
@@ -18,7 +18,6 @@ import org.junit.Before;
 import org.junit.Rule;
 import org.junit.Test;
 import org.junit.runner.RunWith;
-import org.powermock.core.classloader.annotations.PrepareForTest;
 import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.mock.web.MockHttpServletRequest;
 import org.springframework.mock.web.MockHttpServletResponse;
@@ -62,7 +61,6 @@ import szrservices.SZR;
 import szrservices.SZRException_Exception;
 
 @RunWith(SpringJUnit4ClassRunner.class)
-@PrepareForTest(CreateIdentityLinkTask.class)
 @DirtiesContext(classMode = DirtiesContext.ClassMode.BEFORE_CLASS)
 @ContextConfiguration(locations = {
     "/SpringTest-context_tasks_test.xml",
@@ -89,10 +87,10 @@ public class CreateIdentityLinkTaskTest {
   private TestRequestImpl pendingReq;
   private DummySpConfiguration oaParam;
   private SZR szrMock;
-  
+
   private AuthenticationResponse response;
   private Map<String, String> spConfig;
-  
+
   @Rule
   public final SoapServiceRule soap = SoapServiceRule.newInstance();
 
@@ -110,7 +108,7 @@ public class CreateIdentityLinkTaskTest {
     basicConfig.putConfigValue("eidas.ms.auth.eIDAS.szrclient.debug.useDummySolution", "false");
     basicConfig.putConfigValue("eidas.ms.auth.eIDAS.szrclient.revisionlog.eidmapping.active", "false");
     basicConfig.putConfigValue("eidas.ms.auth.eIDAS.szrclient.params.useSZRForbPKCalculation", "false");
-    
+
     spConfig = new HashMap<>();
     spConfig.put(EaafConfigConstants.SERVICE_UNIQUEIDENTIFIER, "testSp");
     spConfig.put("target", "urn:publicid:gv.at:cdid+XX");
@@ -127,34 +125,34 @@ public class CreateIdentityLinkTaskTest {
     pendingReq.setAuthUrl("http://test.com/");
     pendingReq.setTransactionId("avaasbav");
     pendingReq.setPiiTransactionId(RandomStringUtils.randomAlphanumeric(10));
-        
+
     executionContext.put(MsEidasNodeConstants.REQ_PARAM_SELECTED_COUNTRY, "XX");
     executionContext.put(EaafConstants.PROCESS_ENGINE_REQUIRES_NO_POSTAUTH_REDIRECT, true);
 
     szrMock = soap.mock(SZR.class, "http://localhost:1234/demoszr");
   }
 
-    
+
   @Test
   public void buildIdentityLink() throws Exception {
-    //initialize test   
+    //initialize test
     setSzrResponseIdentityLink("/data/szr/szr_resp_valid_1.xml");
-     
+
     String randomTestSp = RandomStringUtils.randomAlphabetic(10);
     pendingReq.setRawDataToTransaction(MsEidasNodeConstants.DATA_REQUESTERID, randomTestSp);
-       
+
     basicConfig.putConfigValue("eidas.ms.auth.eIDAS.szrclient.debug.useDummySolution", "false");
-    
-    
+
+
     //perform test
     task.execute(pendingReq, executionContext);
 
-    
-    //validate state    
+
+    //validate state
     // check if pendingRequest was stored
     IRequest storedPendingReq = requestStorage.getPendingRequest(pendingReq.getPendingRequestId());
     Assert.assertNotNull("pendingReq not stored", storedPendingReq);
-    
+
     //check data in session
     final AuthProcessDataWrapper authProcessData = storedPendingReq.getSessionData(AuthProcessDataWrapper.class);
     Assert.assertNotNull("AuthProcessData", authProcessData);
@@ -162,15 +160,15 @@ public class CreateIdentityLinkTaskTest {
 
     String authBlock = authProcessData.getGenericDataFromSession(Constants.SZR_AUTHBLOCK, String.class);
     Assert.assertNull("AuthBlock", authBlock);
-    
+
     Assert.assertFalse("EID process", authProcessData.isEidProcess());
     Assert.assertTrue("foreigner process", authProcessData.isForeigner());
-    Assert.assertEquals("EID-ISSUING_NATION", "LU", 
+    Assert.assertEquals("EID-ISSUING_NATION", "LU",
         authProcessData.getGenericDataFromSession(PvpAttributeDefinitions.EID_ISSUING_NATION_NAME, String.class));
     Assert.assertNotNull("LoA is null", authProcessData.getQaaLevel());
-    Assert.assertEquals("LoA", response.getLevelOfAssurance(), 
+    Assert.assertEquals("LoA", response.getLevelOfAssurance(),
         authProcessData.getQaaLevel());
-        
+
     Assert.assertNotNull("IDL", authProcessData.getIdentityLink());
     checkElement("Mustermann", authProcessData.getIdentityLink().getFamilyName());
     checkElement("Hans", authProcessData.getIdentityLink().getGivenName());
@@ -178,35 +176,35 @@ public class CreateIdentityLinkTaskTest {
     checkElement("urn:publicid:gv.at:baseid", authProcessData.getIdentityLink().getIdentificationType());
     checkElement("k+zDM1BVpN1WJO4x7ZQ3ng==", authProcessData.getIdentityLink().getIdentificationValue());
     Assert.assertNotNull(authProcessData.getIdentityLink().getSerializedSamlAssertion());
-    Assert.assertNotNull(authProcessData.getIdentityLink().getSamlAssertion());    
-   
+    Assert.assertNotNull(authProcessData.getIdentityLink().getSamlAssertion());
+
     Assert.assertNotNull("no bPK", authProcessData.getGenericDataFromSession(PvpAttributeDefinitions.BPK_NAME));
-    Assert.assertEquals("wrong bPK", "XX:FkXtOaSSeR3elyL9KLLvijIYDMU=", 
+    Assert.assertEquals("wrong bPK", "XX:FkXtOaSSeR3elyL9KLLvijIYDMU=",
         authProcessData.getGenericDataFromSession(PvpAttributeDefinitions.BPK_NAME));
-    
+
   }
-  
+
   @Test
   public void buildIdentityLinkWithWbpk() throws Exception {
     //initialize test
     setSzrResponseIdentityLink("/data/szr/szr_resp_valid_1.xml");
     spConfig.put("target", EaafConstants.URN_PREFIX_WBPK + "FN+123456i");
-    
+
     String randomTestSp = RandomStringUtils.randomAlphabetic(10);
     pendingReq.setRawDataToTransaction(MsEidasNodeConstants.DATA_REQUESTERID, randomTestSp);
-       
+
     basicConfig.putConfigValue("eidas.ms.auth.eIDAS.szrclient.debug.useDummySolution", "false");
     basicConfig.putConfigValue("eidas.ms.auth.eIDAS.szrclient.revisionlog.eidmapping.active", "true");
-    
+
     //perform test
     task.execute(pendingReq, executionContext);
 
-    
-    //validate state    
+
+    //validate state
     // check if pendingRequest was stored
     IRequest storedPendingReq = requestStorage.getPendingRequest(pendingReq.getPendingRequestId());
     Assert.assertNotNull("pendingReq not stored", storedPendingReq);
-    
+
     //check data in session
     final AuthProcessDataWrapper authProcessData = storedPendingReq.getSessionData(AuthProcessDataWrapper.class);
     Assert.assertNotNull("AuthProcessData", authProcessData);
@@ -214,42 +212,42 @@ public class CreateIdentityLinkTaskTest {
 
     String authBlock = authProcessData.getGenericDataFromSession(Constants.SZR_AUTHBLOCK, String.class);
     Assert.assertNull("AuthBlock", authBlock);
-    
+
     Assert.assertFalse("EID process", authProcessData.isEidProcess());
     Assert.assertTrue("foreigner process", authProcessData.isForeigner());
-    Assert.assertEquals("EID-ISSUING_NATION", "LU", 
+    Assert.assertEquals("EID-ISSUING_NATION", "LU",
         authProcessData.getGenericDataFromSession(PvpAttributeDefinitions.EID_ISSUING_NATION_NAME, String.class));
     Assert.assertNotNull("LoA is null", authProcessData.getQaaLevel());
-    Assert.assertEquals("LoA", response.getLevelOfAssurance(), 
+    Assert.assertEquals("LoA", response.getLevelOfAssurance(),
         authProcessData.getQaaLevel());
-   
+
     Assert.assertNotNull("no bPK", authProcessData.getGenericDataFromSession(PvpAttributeDefinitions.BPK_NAME));
-    Assert.assertEquals("wrong bPK", "FN+123456i:D26vJncPS2W790RH/LP04V+vNOQ=", 
+    Assert.assertEquals("wrong bPK", "FN+123456i:D26vJncPS2W790RH/LP04V+vNOQ=",
         authProcessData.getGenericDataFromSession(PvpAttributeDefinitions.BPK_NAME));
-    
+
   }
-  
+
   @Test
   public void buildIdentityLinkWithEidasBpk() throws Exception {
     //initialize test
     setSzrResponseIdentityLink("/data/szr/szr_resp_valid_2.xml");
     spConfig.put("target", EaafConstants.URN_PREFIX_EIDAS + "AT+EU");
-    
+
     String randomTestSp = RandomStringUtils.randomAlphabetic(10);
     pendingReq.setRawDataToTransaction(MsEidasNodeConstants.DATA_REQUESTERID, randomTestSp);
-       
+
     basicConfig.putConfigValue("eidas.ms.auth.eIDAS.szrclient.debug.useDummySolution", "false");
     basicConfig.putConfigValue("eidas.ms.auth.eIDAS.szrclient.revisionlog.eidmapping.active", "true");
-    
+
     //perform test
     task.execute(pendingReq, executionContext);
 
-    
-    //validate state    
+
+    //validate state
     // check if pendingRequest was stored
     IRequest storedPendingReq = requestStorage.getPendingRequest(pendingReq.getPendingRequestId());
     Assert.assertNotNull("pendingReq not stored", storedPendingReq);
-    
+
     //check data in session
     final AuthProcessDataWrapper authProcessData = storedPendingReq.getSessionData(AuthProcessDataWrapper.class);
     Assert.assertNotNull("AuthProcessData", authProcessData);
@@ -257,80 +255,80 @@ public class CreateIdentityLinkTaskTest {
 
     String authBlock = authProcessData.getGenericDataFromSession(Constants.SZR_AUTHBLOCK, String.class);
     Assert.assertNull("AuthBlock", authBlock);
-    
+
     Assert.assertFalse("EID process", authProcessData.isEidProcess());
     Assert.assertTrue("foreigner process", authProcessData.isForeigner());
-    Assert.assertEquals("EID-ISSUING_NATION", "LU", 
+    Assert.assertEquals("EID-ISSUING_NATION", "LU",
         authProcessData.getGenericDataFromSession(PvpAttributeDefinitions.EID_ISSUING_NATION_NAME, String.class));
     Assert.assertNotNull("LoA is null", authProcessData.getQaaLevel());
-    Assert.assertEquals("LoA", response.getLevelOfAssurance(), 
+    Assert.assertEquals("LoA", response.getLevelOfAssurance(),
         authProcessData.getQaaLevel());
-   
+
     Assert.assertNotNull("IDL", authProcessData.getIdentityLink());
     checkElement("Musterfrau", authProcessData.getIdentityLink().getFamilyName());
     checkElement("Martina", authProcessData.getIdentityLink().getGivenName());
     checkElement("1991-04-15", authProcessData.getIdentityLink().getDateOfBirth());
     checkElement("urn:publicid:gv.at:baseid", authProcessData.getIdentityLink().getIdentificationType());
     checkElement("k+zDM1BV1312312332x7ZQ3ng==", authProcessData.getIdentityLink().getIdentificationValue());
-    
+
     Assert.assertNotNull("no bPK", authProcessData.getGenericDataFromSession(PvpAttributeDefinitions.BPK_NAME));
-    Assert.assertEquals("wrong bPK", "AT+EU:AT/EU/1+wqDl059/02Ptny0g+LyuLDJV0=", 
+    Assert.assertEquals("wrong bPK", "AT+EU:AT/EU/1+wqDl059/02Ptny0g+LyuLDJV0=",
         authProcessData.getGenericDataFromSession(PvpAttributeDefinitions.BPK_NAME));
-    
+
   }
-  
+
   @Test
   public void buildIdentityLinkWithUnknownBpk() throws Exception {
     //initialize test
     setSzrResponseIdentityLink("/data/szr/szr_resp_valid_1.xml");
     spConfig.put("target", "urn:notextis:1234");
-    
+
     String randomTestSp = RandomStringUtils.randomAlphabetic(10);
     pendingReq.setRawDataToTransaction(MsEidasNodeConstants.DATA_REQUESTERID, randomTestSp);
-       
+
     basicConfig.putConfigValue("eidas.ms.auth.eIDAS.szrclient.debug.useDummySolution", "false");
     basicConfig.putConfigValue("eidas.ms.auth.eIDAS.szrclient.revisionlog.eidmapping.active", "true");
-    
+
     try {
       task.execute(pendingReq, executionContext);
       Assert.fail("unknown bPKType not detected");
-      
+
     } catch (TaskExecutionException e) {
-      Assert.assertEquals("ErrorId", "builder.33", 
+      Assert.assertEquals("ErrorId", "builder.33",
           ((EaafException) e.getOriginalException()).getErrorId());
       Assert.assertEquals("wrong parameter size", 1, ((EaafException) e.getOriginalException())
           .getParams().length);
 
-    }      
+    }
   }
-  
+
   @Test
   public void noBpkResult() throws Exception {
     //initialize test
     setSzrResponseIdentityLink("/data/szr/szr_resp_valid_1.xml");
     GetBPKResponse getBpkResp = new GetBPKResponse();
     org.mockito.Mockito.when(szrMock.getBPK(any(GetBPK.class))).thenReturn(getBpkResp );
-    
+
     spConfig.put("target", "urn:notextis:1234");
-    
+
     String randomTestSp = RandomStringUtils.randomAlphabetic(10);
     pendingReq.setRawDataToTransaction(MsEidasNodeConstants.DATA_REQUESTERID, randomTestSp);
-       
+
     basicConfig.putConfigValue("eidas.ms.auth.eIDAS.szrclient.debug.useDummySolution", "false");
     basicConfig.putConfigValue("eidas.ms.auth.eIDAS.szrclient.revisionlog.eidmapping.active", "true");
     basicConfig.putConfigValue("eidas.ms.auth.eIDAS.szrclient.params.useSZRForbPKCalculation", "true");
-    
+
     try {
       task.execute(pendingReq, executionContext);
       Assert.fail("unknown bPKType not detected");
-      
+
     } catch (TaskExecutionException e) {
-      Assert.assertEquals("ErrorId", "ernb.01", 
+      Assert.assertEquals("ErrorId", "ernb.01",
           ((EaafException) e.getOriginalException()).getErrorId());
-      
-    }      
+
+    }
   }
-  
+
   @Test
   public void bPKFromSzr() throws Exception {
     //initialize test
@@ -339,25 +337,25 @@ public class CreateIdentityLinkTaskTest {
     GetBPKResponse getBpkResp = new GetBPKResponse();
     getBpkResp.getGetBPKReturn().add(bpk);
     org.mockito.Mockito.when(szrMock.getBPK(any(GetBPK.class))).thenReturn(getBpkResp );
-    
+
     spConfig.put("target", "urn:notextis:1234");
-    
+
     String randomTestSp = RandomStringUtils.randomAlphabetic(10);
     pendingReq.setRawDataToTransaction(MsEidasNodeConstants.DATA_REQUESTERID, randomTestSp);
-       
+
     basicConfig.putConfigValue("eidas.ms.auth.eIDAS.szrclient.debug.useDummySolution", "false");
     basicConfig.putConfigValue("eidas.ms.auth.eIDAS.szrclient.revisionlog.eidmapping.active", "true");
     basicConfig.putConfigValue("eidas.ms.auth.eIDAS.szrclient.params.useSZRForbPKCalculation", "true");
-    
+
     //execute test
       task.execute(pendingReq, executionContext);
-     
-      
-      //validate state    
+
+
+      //validate state
       // check if pendingRequest was stored
       IRequest storedPendingReq = requestStorage.getPendingRequest(pendingReq.getPendingRequestId());
       Assert.assertNotNull("pendingReq not stored", storedPendingReq);
-      
+
       //check data in session
       final AuthProcessDataWrapper authProcessData = storedPendingReq.getSessionData(AuthProcessDataWrapper.class);
       Assert.assertNotNull("AuthProcessData", authProcessData);
@@ -365,38 +363,38 @@ public class CreateIdentityLinkTaskTest {
 
       String authBlock = authProcessData.getGenericDataFromSession(Constants.SZR_AUTHBLOCK, String.class);
       Assert.assertNull("AuthBlock", authBlock);
-      
+
       Assert.assertFalse("EID process", authProcessData.isEidProcess());
       Assert.assertTrue("foreigner process", authProcessData.isForeigner());
-      Assert.assertEquals("EID-ISSUING_NATION", "LU", 
+      Assert.assertEquals("EID-ISSUING_NATION", "LU",
           authProcessData.getGenericDataFromSession(PvpAttributeDefinitions.EID_ISSUING_NATION_NAME, String.class));
       Assert.assertNotNull("LoA is null", authProcessData.getQaaLevel());
-      Assert.assertEquals("LoA", response.getLevelOfAssurance(), 
+      Assert.assertEquals("LoA", response.getLevelOfAssurance(),
           authProcessData.getQaaLevel());
-      
+
       Assert.assertNotNull("no bPK", authProcessData.getGenericDataFromSession(PvpAttributeDefinitions.BPK_NAME));
-      Assert.assertEquals("wrong bPK", bpk, 
+      Assert.assertEquals("wrong bPK", bpk,
           authProcessData.getGenericDataFromSession(PvpAttributeDefinitions.BPK_NAME));
   }
-  
+
   @Test
   public void buildDummyIdl() throws Exception {
     //initialize test
     String randomTestSp = RandomStringUtils.randomAlphabetic(10);
     pendingReq.setRawDataToTransaction(MsEidasNodeConstants.DATA_REQUESTERID, randomTestSp);
-       
+
     basicConfig.putConfigValue("eidas.ms.auth.eIDAS.szrclient.debug.useDummySolution", "true");
-    
-    
+
+
     //perform test
     task.execute(pendingReq, executionContext);
 
-    
-    //validate state    
+
+    //validate state
     // check if pendingRequest was stored
     IRequest storedPendingReq = requestStorage.getPendingRequest(pendingReq.getPendingRequestId());
     Assert.assertNotNull("pendingReq not stored", storedPendingReq);
-    
+
     //check data in session
     final AuthProcessDataWrapper authProcessData = storedPendingReq.getSessionData(AuthProcessDataWrapper.class);
     Assert.assertNotNull("AuthProcessData", authProcessData);
@@ -404,17 +402,17 @@ public class CreateIdentityLinkTaskTest {
 
     String authBlock = authProcessData.getGenericDataFromSession(Constants.SZR_AUTHBLOCK, String.class);
     Assert.assertNull("AuthBlock", authBlock);
-    
+
     Assert.assertFalse("EID process", authProcessData.isEidProcess());
     Assert.assertTrue("foreigner process", authProcessData.isForeigner());
-    Assert.assertEquals("EID-ISSUING_NATION", "LU", 
+    Assert.assertEquals("EID-ISSUING_NATION", "LU",
         authProcessData.getGenericDataFromSession(PvpAttributeDefinitions.EID_ISSUING_NATION_NAME, String.class));
     Assert.assertNotNull("LoA is null", authProcessData.getQaaLevel());
-    Assert.assertEquals("LoA", response.getLevelOfAssurance(), 
+    Assert.assertEquals("LoA", response.getLevelOfAssurance(),
         authProcessData.getQaaLevel());
-        
+
     Assert.assertNotNull("IDL", authProcessData.getIdentityLink());
-        
+
   }
 
   private void setSzrResponseIdentityLink(String responseXmlPath) throws JAXBException, SZRException_Exception {
@@ -433,7 +431,7 @@ public class CreateIdentityLinkTaskTest {
     Assert.assertEquals(expected, value);
 
   }
-  
+
   @NotNull
   private AuthenticationResponse buildDummyAuthResponse() throws URISyntaxException {
     final AttributeDefinition attributeDef = attrRegistry.getCoreAttributeRegistry().getByFriendlyName(
@@ -444,7 +442,7 @@ public class CreateIdentityLinkTaskTest {
         Constants.eIDAS_ATTR_CURRENTGIVENNAME).first();
     final AttributeDefinition attributeDef4 = attrRegistry.getCoreAttributeRegistry().getByFriendlyName(
         Constants.eIDAS_ATTR_DATEOFBIRTH).first();
-   
+
     final ImmutableAttributeMap attributeMap = ImmutableAttributeMap.builder()
         .put(attributeDef, "LU/AT/" + RandomStringUtils.randomNumeric(64))
         .put(attributeDef2, RandomStringUtils.randomAlphabetic(10))
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveEidasResponseTaskTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveEidasResponseTaskTest.java
index de9b2d3b..ae3a79b8 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveEidasResponseTaskTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveEidasResponseTaskTest.java
@@ -13,7 +13,6 @@ import org.junit.Assert;
 import org.junit.Before;
 import org.junit.Test;
 import org.junit.runner.RunWith;
-import org.powermock.core.classloader.annotations.PrepareForTest;
 import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.mock.web.MockHttpServletRequest;
 import org.springframework.mock.web.MockHttpServletResponse;
@@ -28,7 +27,6 @@ import at.asitplus.eidas.specific.connector.test.config.dummy.MsConnectorDummyCo
 import at.asitplus.eidas.specific.connector.test.config.dummy.MsConnectorDummySpConfiguration;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.EidasAttributeRegistry;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.CreateIdentityLinkTask;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.ReceiveAuthnResponseTask;
 import at.gv.egiz.eaaf.core.api.IRequest;
 import at.gv.egiz.eaaf.core.api.IRequestStorage;
@@ -49,7 +47,6 @@ import eu.eidas.auth.commons.protocol.impl.AuthenticationResponse;
 import lombok.val;
 
 @RunWith(SpringJUnit4ClassRunner.class)
-@PrepareForTest(CreateIdentityLinkTask.class)
 @DirtiesContext(classMode = DirtiesContext.ClassMode.BEFORE_CLASS)
 @ContextConfiguration(locations = {
     "/SpringTest-context_tasks_test.xml",
@@ -63,15 +60,15 @@ public class ReceiveEidasResponseTaskTest {
   private MsConnectorDummyConfigMap basicConfig;
   @Autowired
   protected EidasAttributeRegistry attrRegistry;
-  
+
   @Autowired private IRequestStorage storage;
-  
+
   final ExecutionContext executionContext = new ExecutionContextImpl();
   private MockHttpServletRequest httpReq;
   private MockHttpServletResponse httpResp;
   private TestRequestImpl pendingReq;
   private MsConnectorDummySpConfiguration oaParam;
-  
+
   /**
    * jUnit test set-up.
    */
@@ -84,7 +81,7 @@ public class ReceiveEidasResponseTaskTest {
     RequestContextHolder.setRequestAttributes(new ServletRequestAttributes(httpReq, httpResp));
 
     basicConfig.putConfigValue("eidas.ms.auth.eIDAS.szrclient.debug.useDummySolution", "false");
-    
+
     final Map<String, String> spConfig = new HashMap<>();
     spConfig.put(EaafConfigConstants.SERVICE_UNIQUEIDENTIFIER, "testSp");
     spConfig.put("target", "urn:publicid:gv.at:cdid+XX");
@@ -98,70 +95,70 @@ public class ReceiveEidasResponseTaskTest {
     pendingReq.setAuthUrl("http://test.com/");
     pendingReq.setTransactionId("avaasbav");
     pendingReq.setPiiTransactionId(RandomStringUtils.randomAlphanumeric(10));
-        
+
     executionContext.put(MsEidasNodeConstants.REQ_PARAM_SELECTED_COUNTRY, "LU");
     executionContext.put(EaafConstants.PROCESS_ENGINE_REQUIRES_NO_POSTAUTH_REDIRECT, true);
 
   }
-  
+
   @Test
-  public void missingEidasResponse() {    
+  public void missingEidasResponse() {
     try {
       task.execute(pendingReq, executionContext);
       Assert.fail("No eIDAS response not detected");
-      
+
     } catch (TaskExecutionException e) {
-      Assert.assertEquals("ErrorId", "eidas.01", 
+      Assert.assertEquals("ErrorId", "eidas.01",
           ((EaafException) e.getOriginalException()).getErrorId());
-      
-    }        
+
+    }
   }
-  
+
   @Test
-  public void notSuccessEidasResponse() throws URISyntaxException {    
+  public void notSuccessEidasResponse() throws URISyntaxException {
     String statusCode = RandomStringUtils.randomAlphabetic(10);
-    httpReq.setAttribute(Constants.DATA_FULL_EIDAS_RESPONSE, 
+    httpReq.setAttribute(Constants.DATA_FULL_EIDAS_RESPONSE,
         buildDummyAuthResponse(statusCode));
-    
-    
+
+
     try {
       task.execute(pendingReq, executionContext);
       Assert.fail("No eIDAS response not detected");
-      
+
     } catch (TaskExecutionException e) {
-      Assert.assertEquals("ErrorId", "eidas.02", 
+      Assert.assertEquals("ErrorId", "eidas.02",
           ((EaafException) e.getOriginalException()).getErrorId());
       Assert.assertEquals("wrong parameter size", 2, ((EaafException) e.getOriginalException())
           .getParams().length);
       Assert.assertEquals("wrong errorMsg", statusCode, ((EaafException) e
           .getOriginalException()).getParams()[0]);
 
-    }        
+    }
   }
-    
+
   @Test
-  public void success() throws URISyntaxException, TaskExecutionException, PendingReqIdValidationException {    
+  public void success() throws URISyntaxException, TaskExecutionException, PendingReqIdValidationException {
     @NotNull
     AuthenticationResponse eidasResponse = buildDummyAuthResponse(Constants.SUCCESS_URI);
     httpReq.setAttribute(Constants.DATA_FULL_EIDAS_RESPONSE, eidasResponse);
-    executionContext.put(MsEidasNodeConstants.REQ_PARAM_SELECTED_COUNTRY, "LU");    
-      
+    executionContext.put(MsEidasNodeConstants.REQ_PARAM_SELECTED_COUNTRY, "LU");
+
     //execute test
     task.execute(pendingReq, executionContext);
-    
+
     //validate state
     IRequest storedReq = storage.getPendingRequest(pendingReq.getPendingRequestId());
     Assert.assertNotNull("pendingReq not stored", storedReq);
-    
+
     final AuthProcessDataWrapper authProcessData = storedReq.getSessionData(AuthProcessDataWrapper.class);
     Assert.assertEquals("LoA", eidasResponse.getLevelOfAssurance(), authProcessData.getQaaLevel());
-    Assert.assertNotNull("eIDAS response", 
+    Assert.assertNotNull("eIDAS response",
         authProcessData.getGenericDataFromSession(Constants.DATA_FULL_EIDAS_RESPONSE));
-    Assert.assertEquals("eIDAS response", eidasResponse, 
+    Assert.assertEquals("eIDAS response", eidasResponse,
         authProcessData.getGenericDataFromSession(Constants.DATA_FULL_EIDAS_RESPONSE));
-        
+
   }
-  
+
   @NotNull
   private AuthenticationResponse buildDummyAuthResponse(String statusCode) throws URISyntaxException {
     final AttributeDefinition attributeDef = attrRegistry.getCoreAttributeRegistry().getByFriendlyName(
@@ -172,7 +169,7 @@ public class ReceiveEidasResponseTaskTest {
         Constants.eIDAS_ATTR_CURRENTGIVENNAME).first();
     final AttributeDefinition attributeDef4 = attrRegistry.getCoreAttributeRegistry().getByFriendlyName(
         Constants.eIDAS_ATTR_DATEOFBIRTH).first();
-   
+
     final ImmutableAttributeMap attributeMap = ImmutableAttributeMap.builder()
         .put(attributeDef, "LU/AT/" + RandomStringUtils.randomNumeric(64))
         .put(attributeDef2, RandomStringUtils.randomAlphabetic(10))
@@ -189,5 +186,5 @@ public class ReceiveEidasResponseTaskTest {
         .attributes(attributeMap)
         .build();
   }
-  
+
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/utils/JoseUtilsTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/utils/JoseUtilsTest.java
index ad38e371..4da03622 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/utils/JoseUtilsTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/utils/JoseUtilsTest.java
@@ -17,13 +17,11 @@ import org.jose4j.lang.JoseException;
 import org.junit.Assert;
 import org.junit.Test;
 import org.junit.runner.RunWith;
-import org.powermock.core.classloader.annotations.PrepareForTest;
 import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.test.annotation.DirtiesContext;
 import org.springframework.test.context.ContextConfiguration;
 import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
 
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.CreateIdentityLinkTask;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.JoseUtils;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.JoseUtils.JwsResult;
 import at.gv.egiz.eaaf.core.exceptions.EaafException;
@@ -34,15 +32,14 @@ import at.gv.egiz.eaaf.core.impl.credential.KeyStoreConfiguration.KeyStoreType;
 import at.gv.egiz.eaaf.core.impl.data.Pair;
 
 @RunWith(SpringJUnit4ClassRunner.class)
-@PrepareForTest(CreateIdentityLinkTask.class)
 @DirtiesContext(classMode = DirtiesContext.ClassMode.BEFORE_CLASS)
 @ContextConfiguration(locations = {
     "/SpringTest-context_tasks_test.xml",
     "/SpringTest-context_basic_mapConfig.xml"})
 public class JoseUtilsTest {
-  
+
   @Autowired private EaafKeyStoreFactory keyStoreFactory;
-  
+
   private static final List<String> AUTH_ALGORITHM_WHITELIST_SIGNING = Collections.unmodifiableList(
       Arrays.asList(
           AlgorithmIdentifiers.ECDSA_USING_P256_CURVE_AND_SHA256,
@@ -50,48 +47,48 @@ public class JoseUtilsTest {
           AlgorithmIdentifiers.RSA_PSS_USING_SHA256,
           AlgorithmIdentifiers.RSA_PSS_USING_SHA512));
 
-  
+
   @Test
   public void missingKey() throws EaafException, JoseException, KeyStoreException, IOException {
-    
+
     KeyStoreConfiguration config = new KeyStoreConfiguration();
     config.setFriendlyName("jUnittest");
     config.setKeyStoreType(KeyStoreType.JKS);
     config.setSoftKeyStoreFilePath("../data/junit.jks");
     config.setSoftKeyStorePassword("password");
-    
+
     Pair<KeyStore, Provider> keyStore = keyStoreFactory.buildNewKeyStore(config);
     String payLoad = RandomStringUtils.randomAlphanumeric(100);
-    
+
     //check signing
     try {
       JoseUtils.createSignature(keyStore, "notExist", "password".toCharArray(), payLoad , true, "jUnitTest");
       Assert.fail("missing Key not detected");
-      
-    } catch (EaafException e) {      
+
+    } catch (EaafException e) {
       Assert.assertEquals("ErrorId", "internal.keystore.09", e.getErrorId());
-      
+
     }
   }
-  
+
   @Test
   public void createRsaSignature() throws EaafException, JoseException, KeyStoreException, IOException {
-    
+
     KeyStoreConfiguration config = new KeyStoreConfiguration();
     config.setFriendlyName("jUnittest");
     config.setKeyStoreType(KeyStoreType.JKS);
     config.setSoftKeyStoreFilePath("../data/junit.jks");
     config.setSoftKeyStorePassword("password");
-    
+
     Pair<KeyStore, Provider> keyStore = keyStoreFactory.buildNewKeyStore(config);
     String payLoad = RandomStringUtils.randomAlphanumeric(100);
-    
+
     //check signing
     String result = JoseUtils.createSignature(keyStore, "meta", "password".toCharArray(), payLoad , true, "jUnitTest");
-   
+
     Assert.assertNotNull("signed message", result);
     Assert.assertFalse("signed msg empty", result.isEmpty());
-    
+
 
     //validate
     List<X509Certificate> trustedCerts = EaafKeyStoreUtils.readCertsFromKeyStore(keyStore.getFirst());
@@ -99,30 +96,30 @@ public class JoseUtilsTest {
         AUTH_ALGORITHM_WHITELIST_SIGNING
             .toArray(new String[AUTH_ALGORITHM_WHITELIST_SIGNING.size()]));
     JwsResult verify = JoseUtils.validateSignature(result, trustedCerts, constraints);
-    
+
     Assert.assertTrue("sig. verify", verify.isValid());
     Assert.assertEquals("payload", payLoad, verify.getPayLoad());
-        
+
   }
-  
+
   @Test
   public void createEccSignature() throws EaafException, JoseException, KeyStoreException, IOException {
-    
+
     KeyStoreConfiguration config = new KeyStoreConfiguration();
     config.setFriendlyName("jUnittest");
     config.setKeyStoreType(KeyStoreType.JKS);
     config.setSoftKeyStoreFilePath("../data/junit.jks");
     config.setSoftKeyStorePassword("password");
-    
+
     Pair<KeyStore, Provider> keyStore = keyStoreFactory.buildNewKeyStore(config);
     String payLoad = RandomStringUtils.randomAlphanumeric(100);
-    
+
     //check signing
     String result = JoseUtils.createSignature(keyStore, "sig", "password".toCharArray(), payLoad , true, "jUnitTest");
-   
+
     Assert.assertNotNull("signed message", result);
     Assert.assertFalse("signed msg empty", result.isEmpty());
-    
+
 
     //validate
     List<X509Certificate> trustedCerts = EaafKeyStoreUtils.readCertsFromKeyStore(keyStore.getFirst());
@@ -130,10 +127,10 @@ public class JoseUtilsTest {
         AUTH_ALGORITHM_WHITELIST_SIGNING
             .toArray(new String[AUTH_ALGORITHM_WHITELIST_SIGNING.size()]));
     JwsResult verify = JoseUtils.validateSignature(result, trustedCerts, constraints);
-    
+
     Assert.assertTrue("sig. verify", verify.isValid());
     Assert.assertEquals("payload", payLoad, verify.getPayLoad());
-        
+
   }
-  
+
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/validation/EidasResponseValidatorTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/validation/EidasResponseValidatorTest.java
index e0f15c8c..0b18815b 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/validation/EidasResponseValidatorTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/validation/EidasResponseValidatorTest.java
@@ -12,7 +12,6 @@ import org.junit.Assert;
 import org.junit.Before;
 import org.junit.Test;
 import org.junit.runner.RunWith;
-import org.powermock.core.classloader.annotations.PrepareForTest;
 import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.test.annotation.DirtiesContext;
 import org.springframework.test.context.ContextConfiguration;
@@ -25,7 +24,6 @@ import at.asitplus.eidas.specific.connector.test.config.dummy.MsConnectorDummySp
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidasValidationException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.EidasAttributeRegistry;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.CreateIdentityLinkTask;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.validator.EidasResponseValidator;
 import at.gv.egiz.eaaf.core.api.data.EaafConfigConstants;
 import at.gv.egiz.eaaf.core.api.data.EaafConstants;
@@ -41,7 +39,6 @@ import eu.eidas.auth.commons.protocol.impl.AuthenticationResponse;
 import lombok.val;
 
 @RunWith(SpringJUnit4ClassRunner.class)
-@PrepareForTest(CreateIdentityLinkTask.class)
 @DirtiesContext(classMode = DirtiesContext.ClassMode.BEFORE_CLASS)
 @ContextConfiguration(locations = {
     "/SpringTest-context_tasks_test.xml",
@@ -50,17 +47,17 @@ public class EidasResponseValidatorTest {
 
   @Autowired private MsConnectorDummyConfigMap basicConfig;
   @Autowired protected EidasAttributeRegistry attrRegistry;
-  
+
   private TestRequestImpl pendingReq;
   private MsConnectorDummySpConfiguration oaParam;
-  
-  
+
+
   /**
    * jUnit test set-up.
    */
   @Before
   public void setUp() throws EaafStorageException, URISyntaxException {
-    
+
     final Map<String, String> spConfig = new HashMap<>();
     spConfig.put(EaafConfigConstants.SERVICE_UNIQUEIDENTIFIER, "testSp");
     spConfig.put("target", "urn:publicid:gv.at:cdid+XX");
@@ -74,250 +71,250 @@ public class EidasResponseValidatorTest {
     pendingReq.setAuthUrl("http://test.com/");
     pendingReq.setTransactionId("avaasbav");
     pendingReq.setPiiTransactionId(RandomStringUtils.randomAlphanumeric(10));
-        
+
   }
-  
-  
+
+
   @Test
   public void loaFromResponseToLow() throws URISyntaxException {
     //set-up
-    ILightResponse eidasResponse = buildDummyAuthResponse( 
-        "LU/AT/" + RandomStringUtils.randomNumeric(10), 
+    ILightResponse eidasResponse = buildDummyAuthResponse(
+        "LU/AT/" + RandomStringUtils.randomNumeric(10),
         EaafConstants.EIDAS_LOA_LOW,
         false);
     String spCountry = "AT";
     String citizenCountryCode = "XX";
-                    
+
     //execute test
     try {
       EidasResponseValidator.validateResponse(pendingReq, eidasResponse, spCountry, citizenCountryCode, attrRegistry);
       Assert.fail("Wrong eIDAS response not detected");
-      
+
     } catch (EidasValidationException e) {
-      Assert.assertEquals("ErrorId", "eidas.06", e.getErrorId());    
+      Assert.assertEquals("ErrorId", "eidas.06", e.getErrorId());
       Assert.assertEquals("wrong parameter size", 1, e.getParams().length);
-      Assert.assertEquals("wrong errorMsg", "http://eidas.europa.eu/LoA/low", 
+      Assert.assertEquals("wrong errorMsg", "http://eidas.europa.eu/LoA/low",
           e.getParams()[0]);
-  
-    }    
+
+    }
   }
-  
+
   @Test
   public void noEidasSpCountry() throws URISyntaxException {
     //set-up
-    ILightResponse eidasResponse = buildDummyAuthResponse( 
-        "LU/AT/" + RandomStringUtils.randomNumeric(10), 
+    ILightResponse eidasResponse = buildDummyAuthResponse(
+        "LU/AT/" + RandomStringUtils.randomNumeric(10),
         EaafConstants.EIDAS_LOA_SUBSTANTIAL,
         false);
     String spCountry = null;
     String citizenCountryCode = "LU";
-    
+
     oaParam.setLoa(Arrays.asList(EaafConstants.EIDAS_LOA_HIGH, EaafConstants.EIDAS_LOA_SUBSTANTIAL));
-    
-                    
+
+
     //execute test
     try {
       EidasResponseValidator.validateResponse(pendingReq, eidasResponse, spCountry, citizenCountryCode, attrRegistry);
       Assert.fail("Wrong eIDAS response not detected");
-      
+
     } catch (EidasValidationException e) {
-      Assert.assertEquals("ErrorId", "eidas.07", e.getErrorId());    
+      Assert.assertEquals("ErrorId", "eidas.07", e.getErrorId());
       Assert.assertEquals("wrong parameter size", 2, e.getParams().length);
-      Assert.assertEquals("wrong errorMsg", "PersonIdentifier", 
+      Assert.assertEquals("wrong errorMsg", "PersonIdentifier",
           e.getParams()[0]);
-      Assert.assertEquals("wrong errorMsg", 
-          "Destination country does not match to SP country", 
+      Assert.assertEquals("wrong errorMsg",
+          "Destination country does not match to SP country",
           e.getParams()[1]);
-  
-    }    
+
+    }
   }
-  
+
   @Test
   public void noEidasResponseCountry() throws URISyntaxException {
     //set-up
-    ILightResponse eidasResponse = buildDummyAuthResponse( 
-        "LU/AT/" + RandomStringUtils.randomNumeric(10), 
+    ILightResponse eidasResponse = buildDummyAuthResponse(
+        "LU/AT/" + RandomStringUtils.randomNumeric(10),
         EaafConstants.EIDAS_LOA_SUBSTANTIAL,
         false);
     String spCountry = "AT";
     String citizenCountryCode = null;
-    
+
     oaParam.setLoa(Arrays.asList(EaafConstants.EIDAS_LOA_HIGH, EaafConstants.EIDAS_LOA_SUBSTANTIAL));
-    
-                    
+
+
     //execute test
     try {
       EidasResponseValidator.validateResponse(pendingReq, eidasResponse, spCountry, citizenCountryCode, attrRegistry);
       Assert.fail("Wrong eIDAS response not detected");
-      
+
     } catch (EidasValidationException e) {
-      Assert.assertEquals("ErrorId", "eidas.07", e.getErrorId());    
+      Assert.assertEquals("ErrorId", "eidas.07", e.getErrorId());
       Assert.assertEquals("wrong parameter size", 2, e.getParams().length);
-      Assert.assertEquals("wrong errorMsg", "PersonIdentifier", 
+      Assert.assertEquals("wrong errorMsg", "PersonIdentifier",
           e.getParams()[0]);
-      Assert.assertEquals("wrong errorMsg", 
-          "Citizen country does not match to eIDAS-node country that generates the response", 
+      Assert.assertEquals("wrong errorMsg",
+          "Citizen country does not match to eIDAS-node country that generates the response",
           e.getParams()[1]);
-  
-    }    
+
+    }
   }
-  
+
   @Test
   public void wrongEidasResponseCountry() throws URISyntaxException {
     //set-up
-    ILightResponse eidasResponse = buildDummyAuthResponse( 
-        "LU/AT/" + RandomStringUtils.randomNumeric(10), 
+    ILightResponse eidasResponse = buildDummyAuthResponse(
+        "LU/AT/" + RandomStringUtils.randomNumeric(10),
         EaafConstants.EIDAS_LOA_SUBSTANTIAL,
         false);
     String spCountry = "AT";
     String citizenCountryCode = "XX";
-    
+
     oaParam.setLoa(Arrays.asList(EaafConstants.EIDAS_LOA_HIGH, EaafConstants.EIDAS_LOA_SUBSTANTIAL));
-    
-                    
+
+
     //execute test
     try {
       EidasResponseValidator.validateResponse(pendingReq, eidasResponse, spCountry, citizenCountryCode, attrRegistry);
       Assert.fail("Wrong eIDAS response not detected");
-      
+
     } catch (EidasValidationException e) {
-      Assert.assertEquals("ErrorId", "eidas.07", e.getErrorId());    
+      Assert.assertEquals("ErrorId", "eidas.07", e.getErrorId());
       Assert.assertEquals("wrong parameter size", 2, e.getParams().length);
-      Assert.assertEquals("wrong errorMsg", "PersonIdentifier", 
+      Assert.assertEquals("wrong errorMsg", "PersonIdentifier",
           e.getParams()[0]);
-      Assert.assertEquals("wrong errorMsg", 
-          "Citizen country does not match to eIDAS-node country that generates the response", 
+      Assert.assertEquals("wrong errorMsg",
+          "Citizen country does not match to eIDAS-node country that generates the response",
           e.getParams()[1]);
-  
-    }    
+
+    }
   }
-  
+
   @Test
   public void missingPersonalIdentifier() throws URISyntaxException {
     //set-up
-    ILightResponse eidasResponse = buildDummyAuthResponse( 
-        null, 
+    ILightResponse eidasResponse = buildDummyAuthResponse(
+        null,
         EaafConstants.EIDAS_LOA_SUBSTANTIAL,
         false);
     String spCountry = "AT";
     String citizenCountryCode = "LU";
-    
+
     oaParam.setLoa(Arrays.asList(EaafConstants.EIDAS_LOA_HIGH, EaafConstants.EIDAS_LOA_SUBSTANTIAL));
-    
-                    
+
+
     //execute test
     try {
       EidasResponseValidator.validateResponse(pendingReq, eidasResponse, spCountry, citizenCountryCode, attrRegistry);
       Assert.fail("Wrong eIDAS response not detected");
-      
+
     } catch (EidasValidationException e) {
-      Assert.assertEquals("ErrorId", "eidas.05", e.getErrorId());    
+      Assert.assertEquals("ErrorId", "eidas.05", e.getErrorId());
       Assert.assertEquals("wrong parameter size", 1, e.getParams().length);
-      Assert.assertEquals("wrong errorMsg", "NO 'PersonalIdentifier' attriubte", 
+      Assert.assertEquals("wrong errorMsg", "NO 'PersonalIdentifier' attriubte",
           e.getParams()[0]);
-  
-    }    
+
+    }
   }
-  
+
   @Test
   public void moreThanOnePersonalIdentifier() throws URISyntaxException {
     //set-up
-    ILightResponse eidasResponse = buildDummyAuthResponse( 
-        null, 
+    ILightResponse eidasResponse = buildDummyAuthResponse(
+        null,
         EaafConstants.EIDAS_LOA_SUBSTANTIAL,
         true);
     String spCountry = "AT";
     String citizenCountryCode = "LU";
-    
+
     oaParam.setLoa(Arrays.asList(EaafConstants.EIDAS_LOA_HIGH, EaafConstants.EIDAS_LOA_SUBSTANTIAL));
-    
-                    
+
+
     //execute test
     try {
       EidasResponseValidator.validateResponse(pendingReq, eidasResponse, spCountry, citizenCountryCode, attrRegistry);
       Assert.fail("Wrong eIDAS response not detected");
-      
+
     } catch (EidasValidationException e) {
-      Assert.assertEquals("ErrorId", "eidas.05", e.getErrorId());    
+      Assert.assertEquals("ErrorId", "eidas.05", e.getErrorId());
       Assert.assertEquals("wrong parameter size", 1, e.getParams().length);
-      Assert.assertEquals("wrong errorMsg", "NO 'PersonalIdentifier' attriubte", 
+      Assert.assertEquals("wrong errorMsg", "NO 'PersonalIdentifier' attriubte",
           e.getParams()[0]);
-  
-    }    
+
+    }
   }
-  
+
   @Test
   public void emptyPersonalIdentifier() throws URISyntaxException {
     //set-up
-    ILightResponse eidasResponse = buildDummyAuthResponse( 
-        "", 
+    ILightResponse eidasResponse = buildDummyAuthResponse(
+        "",
         EaafConstants.EIDAS_LOA_SUBSTANTIAL,
         false);
     String spCountry = "AT";
     String citizenCountryCode = "LU";
-    
+
     oaParam.setLoa(Arrays.asList(EaafConstants.EIDAS_LOA_HIGH, EaafConstants.EIDAS_LOA_SUBSTANTIAL));
-    
-                    
+
+
     //execute test
     try {
       EidasResponseValidator.validateResponse(pendingReq, eidasResponse, spCountry, citizenCountryCode, attrRegistry);
       Assert.fail("Wrong eIDAS response not detected");
-      
+
     } catch (EidasValidationException e) {
-      Assert.assertEquals("ErrorId", "eidas.07", e.getErrorId());    
+      Assert.assertEquals("ErrorId", "eidas.07", e.getErrorId());
       Assert.assertEquals("wrong parameter size", 2, e.getParams().length);
-      Assert.assertEquals("wrong errorMsg", "PersonIdentifier", 
+      Assert.assertEquals("wrong errorMsg", "PersonIdentifier",
           e.getParams()[0]);
-      Assert.assertEquals("wrong errorMsg", 
-          "Wrong identifier format", 
+      Assert.assertEquals("wrong errorMsg",
+          "Wrong identifier format",
           e.getParams()[1]);
-  
-    }    
+
+    }
   }
-  
+
   @Test
   public void validResponse() throws URISyntaxException, EidasValidationException {
     //set-up
-    
+
     String spCountry = RandomStringUtils.randomAlphabetic(2).toUpperCase();
     String cCountry = RandomStringUtils.randomAlphabetic(2).toUpperCase();
-    
-    ILightResponse eidasResponse = buildDummyAuthResponse( 
-        cCountry + "/" + spCountry + "/" + RandomStringUtils.randomAlphanumeric(20), 
+
+    ILightResponse eidasResponse = buildDummyAuthResponse(
+        cCountry + "/" + spCountry + "/" + RandomStringUtils.randomAlphanumeric(20),
         EaafConstants.EIDAS_LOA_SUBSTANTIAL,
         false);
-    
+
     oaParam.setLoa(Arrays.asList(EaafConstants.EIDAS_LOA_HIGH, EaafConstants.EIDAS_LOA_SUBSTANTIAL));
-    
-                    
+
+
     //execute test
 
     EidasResponseValidator.validateResponse(pendingReq, eidasResponse, spCountry, cCountry, attrRegistry);
-    
+
   }
-  
-  
-  private AuthenticationResponse buildDummyAuthResponse(String personalId, String loa, boolean moreThanOnePersonalId) 
+
+
+  private AuthenticationResponse buildDummyAuthResponse(String personalId, String loa, boolean moreThanOnePersonalId)
       throws URISyntaxException {
-    
-        
+
+
     final AttributeDefinition personIdattributeDef = attrRegistry.getCoreAttributeRegistry().getByFriendlyName(
         Constants.eIDAS_ATTR_PERSONALIDENTIFIER).first();
 
     final Builder attributeMap = ImmutableAttributeMap.builder();
     if (personalId != null) {
       if (moreThanOnePersonalId) {
-        ImmutableSet values = ImmutableSet.of(new StringAttributeValue(personalId), 
+        ImmutableSet values = ImmutableSet.of(new StringAttributeValue(personalId),
             new StringAttributeValue("XX/YY/" + RandomStringUtils.randomAlphanumeric(10)));
-        attributeMap.put(personIdattributeDef, values); 
-        
+        attributeMap.put(personIdattributeDef, values);
+
       } else {
         attributeMap.put(personIdattributeDef, personalId);
-        
-      }      
+
+      }
     }
-    
+
     val b = new AuthenticationResponse.Builder();
     return b.id("_".concat(Random.nextHexRandom16()))
         .issuer(RandomStringUtils.randomAlphabetic(10))
-- 
cgit v1.2.3


From 33b975f1bda7a2838d280d3f080b095d069d6d02 Mon Sep 17 00:00:00 2001
From: Christian Kollmann <christian.kollmann@a-sit.at>
Date: Thu, 25 Feb 2021 09:00:02 +0100
Subject: Test input/output for MobilePhoneSignature task

---
 .../ReceiveMobilePhoneSignatureResponseTask.java   |   2 +-
 ...eceiveMobilePhoneSignatureResponseTaskTest.java | 101 ++++++++++++++++-----
 2 files changed, 81 insertions(+), 22 deletions(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseTask.java
index 0f40b337..8c7815be 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseTask.java
@@ -184,7 +184,7 @@ public class ReceiveMobilePhoneSignatureResponseTask extends AbstractAuthServlet
       throw new TaskExecutionException(pendingReq, ERROR_MSG_02,
           new AuthnResponseValidationException(ERROR_PVP_10, new Object[]{MODULE_NAME_FOR_LOGGING}, e));
     } catch (final Exception e) {
-      e.printStackTrace();
+      // todo catch ManualFixNecessaryException in any other way?
       log.debug("PVP response validation FAILED. Msg:" + e.getMessage(), e);
       throw new TaskExecutionException(pendingReq, ERROR_MSG_03,
           new AuthnResponseValidationException(ERROR_PVP_12, new Object[]{MODULE_NAME_FOR_LOGGING, e.getMessage()}, e));
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveMobilePhoneSignatureResponseTaskTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveMobilePhoneSignatureResponseTaskTest.java
index c180e6f9..01688214 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveMobilePhoneSignatureResponseTaskTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveMobilePhoneSignatureResponseTaskTest.java
@@ -3,8 +3,10 @@ package at.asitplus.eidas.specific.modules.auth.eidas.v2.test.tasks;
 import at.asitplus.eidas.specific.connector.test.config.dummy.MsConnectorDummyConfigMap;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.MergedRegisterSearchResult;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.InvalidUserInputException;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.ManualFixNecessaryException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthConstants;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.provider.IdAustriaClientAuthCredentialProvider;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.provider.IdAustriaClientAuthMetadataProvider;
@@ -19,10 +21,12 @@ import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
 import at.gv.egiz.eaaf.core.impl.idp.auth.data.AuthProcessDataWrapper;
 import at.gv.egiz.eaaf.core.impl.idp.process.ExecutionContextImpl;
 import at.gv.egiz.eaaf.core.impl.utils.DomUtils;
+import at.gv.egiz.eaaf.modules.pvp2.exception.Pvp2MetadataException;
 import at.gv.egiz.eaaf.modules.pvp2.impl.metadata.PvpMetadataResolverFactory;
 import at.gv.egiz.eaaf.modules.pvp2.impl.opensaml.initialize.EaafOpenSaml3xInitializer;
 import at.gv.egiz.eaaf.modules.pvp2.impl.utils.Saml2Utils;
 import at.gv.egiz.eaaf.modules.pvp2.sp.exception.AuthnResponseValidationException;
+import com.google.common.collect.Lists;
 import net.shibboleth.utilities.java.support.xml.ParserPool;
 import org.apache.commons.io.IOUtils;
 import org.apache.commons.lang3.RandomStringUtils;
@@ -54,9 +58,11 @@ import java.io.InputStream;
 import java.nio.charset.StandardCharsets;
 import java.util.Base64;
 import java.util.Collections;
+import java.util.List;
 import java.util.Objects;
 
 import static org.junit.Assert.*;
+import static org.mockito.ArgumentMatchers.any;
 import static org.mockito.ArgumentMatchers.eq;
 import static org.springframework.util.Assert.isInstanceOf;
 
@@ -68,6 +74,7 @@ import static org.springframework.util.Assert.isInstanceOf;
 public class ReceiveMobilePhoneSignatureResponseTaskTest {
 
   private static final String METADATA_PATH = "classpath:/data/idp_metadata_classpath_entity.xml";
+  private static final String BPK_FROM_ID_AUSTRIA = "BF:QVGm48cqcM4UcyhDTNGYmVdrIoY=";
 
   @Autowired
   protected MsConnectorDummyConfigMap authConfig;
@@ -212,8 +219,7 @@ public class ReceiveMobilePhoneSignatureResponseTaskTest {
 
   @Test
   public void httpPostValidSignedAssertionOutDated() throws Exception {
-    metadataProvider.addMetadataResolverIntoChain(metadataFactory.createMetadataProvider(
-        METADATA_PATH, null, "jUnit IDP", null));
+    setupMetadataResolver();
     initResponse("/data/Response_without_sig_classpath_entityid.xml", false);
 
     TaskExecutionException e = assertThrows(TaskExecutionException.class,
@@ -228,8 +234,7 @@ public class ReceiveMobilePhoneSignatureResponseTaskTest {
   public void httpPostValidSignedAssertionFromWrongIdp() throws Exception {
     authConfig.putConfigValue(IdAustriaClientAuthConstants.CONFIG_PROPS_ID_AUSTRIA_ENTITYID,
         "http://wrong.idp/" + RandomStringUtils.randomAlphabetic(5));
-    metadataProvider.addMetadataResolverIntoChain(metadataFactory.createMetadataProvider(
-        METADATA_PATH, null, "jUnit IDP", null));
+    setupMetadataResolver();
     initResponse("/data/Response_without_sig_classpath_entityid.xml", true);
 
     TaskExecutionException e = assertThrows(TaskExecutionException.class,
@@ -242,8 +247,7 @@ public class ReceiveMobilePhoneSignatureResponseTaskTest {
 
   @Test
   public void httpPostValidSignedAssertionMissingAttributes() throws Exception {
-    metadataProvider.addMetadataResolverIntoChain(metadataFactory.createMetadataProvider(
-        METADATA_PATH, null, "jUnit IDP", null));
+    setupMetadataResolver();
     initResponse("/data/Response_without_sig_classpath_entityid.xml", true);
 
     TaskExecutionException e = assertThrows(TaskExecutionException.class,
@@ -256,8 +260,7 @@ public class ReceiveMobilePhoneSignatureResponseTaskTest {
 
   @Test
   public void httpPostValidSignedWithError() throws Exception {
-    metadataProvider.addMetadataResolverIntoChain(metadataFactory.createMetadataProvider(
-        METADATA_PATH, null, "jUnit IDP", null));
+    setupMetadataResolver();
     initResponse("/data/Response_without_sig_with_error.xml", true);
 
     TaskExecutionException e = assertThrows(TaskExecutionException.class,
@@ -270,8 +273,7 @@ public class ReceiveMobilePhoneSignatureResponseTaskTest {
 
   @Test
   public void httpPostValidSignedWitUserStopErrorCode() throws Exception {
-    metadataProvider.addMetadataResolverIntoChain(metadataFactory.createMetadataProvider(
-        METADATA_PATH, null, "jUnit IDP", null));
+    setupMetadataResolver();
     initResponse("/data/Response_without_sig_with_error_userstop.xml", true);
 
     task.execute(pendingReq, executionContext);
@@ -283,8 +285,7 @@ public class ReceiveMobilePhoneSignatureResponseTaskTest {
 
   @Test
   public void httpPostValidSignedWithErrorAndNoSubCode() throws Exception {
-    metadataProvider.addMetadataResolverIntoChain(metadataFactory.createMetadataProvider(
-        METADATA_PATH, null, "jUnit IDP", null));
+    setupMetadataResolver();
     initResponse("/data/Response_without_sig_with_error_without_subcode.xml", true);
 
     TaskExecutionException e = assertThrows(TaskExecutionException.class,
@@ -297,8 +298,7 @@ public class ReceiveMobilePhoneSignatureResponseTaskTest {
 
   @Test
   public void httpPostValidSignedWithErrorAndEmptySubCode() throws Exception {
-    metadataProvider.addMetadataResolverIntoChain(metadataFactory.createMetadataProvider(
-        METADATA_PATH, null, "jUnit IDP", null));
+    setupMetadataResolver();
     initResponse("/data/Response_without_sig_with_error_empty_subcode.xml", true);
 
     TaskExecutionException e = assertThrows(TaskExecutionException.class,
@@ -311,8 +311,7 @@ public class ReceiveMobilePhoneSignatureResponseTaskTest {
 
   @Test
   public void httpPostValidSignedAssertionEidValidButNameMismatch() throws Exception {
-    metadataProvider.addMetadataResolverIntoChain(metadataFactory.createMetadataProvider(
-        METADATA_PATH, null, "jUnit IDP", null));
+    setupMetadataResolver();
     initResponse("/data/Response_with_EID.xml", true);
     AuthProcessDataWrapper authProcessData = pendingReq.getSessionData(AuthProcessDataWrapper.class);
     SimpleEidasData eidData = createEidasDataMatchingToSamlResponse();
@@ -328,22 +327,77 @@ public class ReceiveMobilePhoneSignatureResponseTaskTest {
   }
 
   @Test
-  public void httpPostValidSignedAssertionEidValid() throws Exception {
-    metadataProvider.addMetadataResolverIntoChain(metadataFactory.createMetadataProvider(
-        METADATA_PATH, null, "jUnit IDP", null));
+  public void httpPostValidSignedAssertionEidValid_NoRegisterResult() throws Exception {
+    setupMetadataResolver();
+    initResponse("/data/Response_with_EID.xml", true);
+    AuthProcessDataWrapper authProcessData = pendingReq.getSessionData(AuthProcessDataWrapper.class);
+    SimpleEidasData eidData = createEidasDataMatchingToSamlResponse();
+    authProcessData.setGenericDataToSession(Constants.DATA_SIMPLE_EIDAS, eidData);
+    MergedRegisterSearchResult registerSearchResult = new MergedRegisterSearchResult(Collections.emptyList(), Collections.emptyList());
+    Mockito.when(registerSearchService.searchWithBpkZp(eq(BPK_FROM_ID_AUSTRIA))).thenReturn(registerSearchResult);
+
+    task.execute(pendingReq, executionContext);
+
+    AuthProcessDataWrapper session = pendingReq.getSessionData(AuthProcessDataWrapper.class);
+    assertEquals("LoA", "http://eidas.europa.eu/LoA/low", session.getQaaLevel());
+    assertEquals("IssueInstant", "2014-03-05T06:39:51Z", session.getIssueInstantString());
+    assertNull("Matching BPK", session.getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK));
+    assertEquals("Transition To S16", true, executionContext.get(Constants.TRANSITION_TO_GENERATE_GUI_QUERY_AUSTRIAN_RESIDENCE_TASK));
+  }
+
+  @Test
+  public void httpPostValidSignedAssertionEidValid_ExactlyOneRegisterResult() throws Exception {
+    setupMetadataResolver();
     initResponse("/data/Response_with_EID.xml", true);
     AuthProcessDataWrapper authProcessData = pendingReq.getSessionData(AuthProcessDataWrapper.class);
     SimpleEidasData eidData = createEidasDataMatchingToSamlResponse();
     authProcessData.setGenericDataToSession(Constants.DATA_SIMPLE_EIDAS, eidData);
-    Mockito.when(registerSearchService.searchWithBpkZp(eq("BF:QVGm48cqcM4UcyhDTNGYmVdrIoY="))).thenReturn(new MergedRegisterSearchResult(Collections.emptyList(), Collections.emptyList()));
+    MergedRegisterSearchResult registerSearchResult = buildResultWithOneMatch();
+    Mockito.when(registerSearchService.searchWithBpkZp(eq(BPK_FROM_ID_AUSTRIA))).thenReturn(registerSearchResult);
 
     task.execute(pendingReq, executionContext);
 
     AuthProcessDataWrapper session = pendingReq.getSessionData(AuthProcessDataWrapper.class);
     assertEquals("LoA", "http://eidas.europa.eu/LoA/low", session.getQaaLevel());
     assertEquals("IssueInstant", "2014-03-05T06:39:51Z", session.getIssueInstantString());
+    assertNull("Matching BPK", session.getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK));
+    assertNull("Transition To S16", executionContext.get(Constants.TRANSITION_TO_GENERATE_GUI_QUERY_AUSTRIAN_RESIDENCE_TASK));
+    Mockito.verify(registerSearchService).step7aKittProcess(any(), eq(registerSearchResult), eq(eidData), eq(pendingReq));
+  }
+
+  @Test
+  public void httpPostValidSignedAssertionEidValid_MoreThanOneRegisterResult() throws Exception {
+    setupMetadataResolver();
+    initResponse("/data/Response_with_EID.xml", true);
+    AuthProcessDataWrapper authProcessData = pendingReq.getSessionData(AuthProcessDataWrapper.class);
+    SimpleEidasData eidData = createEidasDataMatchingToSamlResponse();
+    authProcessData.setGenericDataToSession(Constants.DATA_SIMPLE_EIDAS, eidData);
+    MergedRegisterSearchResult registerSearchResult = buildResultWithTwoMatches();
+    Mockito.when(registerSearchService.searchWithBpkZp(eq(BPK_FROM_ID_AUSTRIA))).thenReturn(registerSearchResult);
+
+
+    TaskExecutionException e = assertThrows(TaskExecutionException.class,
+        () -> task.execute(pendingReq, executionContext));
 
-    //TODO this is the good case
+    assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
+    isInstanceOf(AuthnResponseValidationException.class, e.getOriginalException());
+    isInstanceOf(ManualFixNecessaryException.class, e.getOriginalException().getCause());
+    assertEquals("sp.pvp2.12", ((AuthnResponseValidationException) e.getOriginalException()).getErrorId());
+    AuthProcessDataWrapper session = pendingReq.getSessionData(AuthProcessDataWrapper.class);
+    assertNull("Matching BPK", session.getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK));
+    assertNull("Transition To S16", executionContext.get(Constants.TRANSITION_TO_GENERATE_GUI_QUERY_AUSTRIAN_RESIDENCE_TASK));
+  }
+
+  @NotNull
+  private MergedRegisterSearchResult buildResultWithOneMatch() {
+    return new MergedRegisterSearchResult(Collections.singletonList(new RegisterResult(BPK_FROM_ID_AUSTRIA, "bar", "foo", "foo", "bar")), Collections.emptyList());
+  }
+
+  @NotNull
+  private MergedRegisterSearchResult buildResultWithTwoMatches() {
+    List<RegisterResult> results = Lists.newArrayList(new RegisterResult(BPK_FROM_ID_AUSTRIA, "bar", "foo", "foo", "bar"),
+        new RegisterResult("bpk", "pseudonym", "givenName", "familyName", "dateOfBirth"));
+    return new MergedRegisterSearchResult(results, Collections.emptyList());
   }
 
   @NotNull
@@ -377,4 +431,9 @@ public class ReceiveMobilePhoneSignatureResponseTaskTest {
     addSamlResponseToHttpReq(signedResponse);
   }
 
+  private void setupMetadataResolver() throws Pvp2MetadataException {
+    metadataProvider.addMetadataResolverIntoChain(metadataFactory.createMetadataProvider(
+        METADATA_PATH, null, "jUnit IDP", null));
+  }
+
 }
-- 
cgit v1.2.3


From 8c13c21799beed76eea848504677eb935026397c Mon Sep 17 00:00:00 2001
From: Christian Kollmann <christian.kollmann@a-sit.at>
Date: Thu, 25 Feb 2021 11:18:44 +0100
Subject: Implement and test ReceiveAustrianResidenceGuiResponseTask

---
 .../modules/auth/eidas/v2/dao/RegisterResult.java  |  10 +-
 .../modules/auth/eidas/v2/dao/SimpleEidasData.java |   4 +
 .../eidas/v2/service/RegisterSearchService.java    |   7 +
 .../ReceiveAustrianResidenceGuiResponseTask.java   | 138 +++++++++------
 .../modules/auth/eidas/v2/zmr/DummyZmrClient.java  |   6 +
 .../modules/auth/eidas/v2/zmr/IZmrClient.java      |   3 +
 ...eceiveAustrianResidenceGuiResponseTaskTest.java | 196 +++++++++++++++++++++
 7 files changed, 310 insertions(+), 54 deletions(-)
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveAustrianResidenceGuiResponseTaskTest.java

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/RegisterResult.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/RegisterResult.java
index 1cc36fe9..4674751d 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/RegisterResult.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/RegisterResult.java
@@ -24,9 +24,15 @@
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.dao;
 
 import at.gv.e_government.reference.namespace.persondata._20020228.PostalAddressType;
-import lombok.Data;
+import lombok.EqualsAndHashCode;
+import lombok.Getter;
+import lombok.NoArgsConstructor;
+import lombok.ToString;
 
-@Data
+@Getter
+@NoArgsConstructor
+@ToString
+@EqualsAndHashCode
 public class RegisterResult {
 
   // MDS
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleEidasData.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleEidasData.java
index 84327941..f60a9906 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleEidasData.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleEidasData.java
@@ -25,10 +25,14 @@ package at.asitplus.eidas.specific.modules.auth.eidas.v2.dao;
 
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.WorkflowException;
 import at.gv.e_government.reference.namespace.persondata._20020228.PostalAddressType;
+import lombok.AllArgsConstructor;
 import lombok.Data;
+import lombok.NoArgsConstructor;
 import org.apache.commons.lang3.builder.EqualsBuilder;
 
 @Data
+@AllArgsConstructor
+@NoArgsConstructor
 public class SimpleEidasData {
 
   private String citizenCountryCode;
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/service/RegisterSearchService.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/service/RegisterSearchService.java
index 6a41893b..fad985c2 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/service/RegisterSearchService.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/service/RegisterSearchService.java
@@ -11,6 +11,7 @@ import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
 import lombok.extern.slf4j.Slf4j;
 import org.springframework.stereotype.Service;
 
+import java.util.Collections;
 import java.util.List;
 
 @Slf4j
@@ -38,6 +39,7 @@ public class RegisterSearchService {
   public String step7aKittProcess(MergedRegisterSearchResult initialSearchResult,
                                   MergedRegisterSearchResult specificDetailSearchResult,
                                   SimpleEidasData eidasData, IRequest pendingReq) throws TaskExecutionException {
+    // TODO verify with which data this method gets called
     try {
       if (initialSearchResult.getResultCount() != 0) {
         throw new WorkflowException("initialSearchResult.getResultCount() != 0");
@@ -107,4 +109,9 @@ public class RegisterSearchService {
     List<RegisterResult> resultsErnp = ernpClient.searchWithBpkZp(bpkZp);
     return new MergedRegisterSearchResult(resultsZmr, resultsErnp);
   }
+
+  public MergedRegisterSearchResult searchWithResidence(String zipcode, String city, String street) {
+    List<RegisterResult> resultsZmr = zmrClient.searchWithResidenceData(zipcode, city, street);
+    return new MergedRegisterSearchResult(resultsZmr, Collections.emptyList());
+  }
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveAustrianResidenceGuiResponseTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveAustrianResidenceGuiResponseTask.java
index 7dcf62ac..d565c329 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveAustrianResidenceGuiResponseTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveAustrianResidenceGuiResponseTask.java
@@ -24,94 +24,128 @@
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks;
 
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.MergedRegisterSearchResult;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.InvalidUserInputException;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.IZmrClient;
-import at.gv.egiz.eaaf.core.api.data.EaafConstants;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.ManualFixNecessaryException;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.WorkflowException;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.RegisterSearchService;
 import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
 import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
+import at.gv.egiz.eaaf.core.impl.idp.auth.data.AuthProcessDataWrapper;
 import at.gv.egiz.eaaf.core.impl.idp.auth.modules.AbstractAuthServletTask;
+import lombok.AllArgsConstructor;
+import lombok.Data;
+import lombok.NoArgsConstructor;
 import lombok.extern.slf4j.Slf4j;
 import org.apache.commons.lang.StringEscapeUtils;
-import org.apache.commons.lang3.StringUtils;
+import org.jetbrains.annotations.NotNull;
 import org.springframework.stereotype.Component;
 
 import javax.servlet.http.HttpServletRequest;
 import javax.servlet.http.HttpServletResponse;
 import java.util.Enumeration;
 
+import static at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants.DATA_INITIAL_REGISTER_RESULT;
+import static at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants.DATA_SIMPLE_EIDAS;
+
 /**
  * Task receives the response of {@link GenerateAustrianResidenceGuiTask} and handles it.
+ * This corresponds to Steps 17B, 18, 19 in the eIDAS Matching Concept.
  *
  * @author amarsalek
+ * @author ckollmann
  */
 @Slf4j
 @Component("ReceiveAustrianResidenceGuiResponseTask")
 public class ReceiveAustrianResidenceGuiResponseTask extends AbstractAuthServletTask {
 
-  final String formerResidenceAvailableParameterName = "formerResidenceAvailable";
-  final String streetParameterName = "street";
-  final String zipCodeParameterName = "zipcode";
-  final String cityParameterName = "city";
-  private final IZmrClient zmrClient;
+  public static final String PARAM_FORMER_RESIDENCE_AVAILABLE = "formerResidenceAvailable";
+  public static final String PARAM_STREET = "street";
+  public static final String PARAM_CITY = "city";
+  public static final String PARAM_ZIPCODE = "zipcode";
+  private final RegisterSearchService registerSearchService;
+
+  public ReceiveAustrianResidenceGuiResponseTask(RegisterSearchService registerSearchService) {
+    this.registerSearchService = registerSearchService;
+  }
 
-  public ReceiveAustrianResidenceGuiResponseTask(IZmrClient zmrClient) {
-    this.zmrClient = zmrClient;
+  @Data
+  @AllArgsConstructor
+  @NoArgsConstructor
+  public static class UserInput {
+    private boolean formerResidenceAvailable;
+    private String zipcode;
+    private String city;
+    private String street;
   }
 
-  //TODO
   @Override
   public void execute(ExecutionContext executionContext, HttpServletRequest request, HttpServletResponse response)
       throws TaskExecutionException {
-
     log.trace("Starting ReceiveAustrianResidenceGuiResponseTask");
-    // set parameter execution context
-    final Enumeration<String> reqParamNames = request.getParameterNames();
-    String street = null;
-    String city = null;
-    String zipcode = null;
-    Boolean formerResidenceAvailable = false;
-    while (reqParamNames.hasMoreElements()) {
-      final String paramName = reqParamNames.nextElement();
-      if (StringUtils.isNotEmpty(paramName)
-          && !EaafConstants.PROCESS_ENGINE_PENDINGREQUESTID.equalsIgnoreCase(paramName)
-          && formerResidenceAvailableParameterName.equalsIgnoreCase(paramName)) {
-        formerResidenceAvailable =
-            Boolean.parseBoolean(StringEscapeUtils.escapeHtml(request.getParameter(paramName)));
-      }
-      if (StringUtils.isNotEmpty(paramName)
-          && !EaafConstants.PROCESS_ENGINE_PENDINGREQUESTID.equalsIgnoreCase(paramName)
-          && streetParameterName.equalsIgnoreCase(paramName)) {
-        street = StringEscapeUtils.escapeHtml(request.getParameter(paramName));
-      }
-      if (StringUtils.isNotEmpty(paramName)
-          && !EaafConstants.PROCESS_ENGINE_PENDINGREQUESTID.equalsIgnoreCase(paramName)
-          && cityParameterName.equalsIgnoreCase(paramName)) {
-        city = StringEscapeUtils.escapeHtml(request.getParameter(paramName));
-      }
-      if (StringUtils.isNotEmpty(paramName)
-          && !EaafConstants.PROCESS_ENGINE_PENDINGREQUESTID.equalsIgnoreCase(paramName)
-          && zipCodeParameterName.equalsIgnoreCase(paramName)) {
-        zipcode = StringEscapeUtils.escapeHtml(request.getParameter(paramName));
-      }
-    }
-    if (formerResidenceAvailable) {
-      //step 18
-      if (street.isEmpty() || city.isEmpty() || zipcode.isEmpty()) {
-        //form should ensure that mandatory fields are field =>
-        //this can never happen, expect somebody manipulated the response
+    UserInput input = parseHtmlInput(request);
+    if (input.isFormerResidenceAvailable()) {
+      if (input.getStreet().isEmpty() || input.getCity().isEmpty() || input.getZipcode().isEmpty()) {
+        // form should ensure that mandatory fields are field => this should never happen
         throw new TaskExecutionException(pendingReq, "Invalid user input", new InvalidUserInputException());
       }
-      step18_RegisterSearch(street, city, zipcode);//TODO also MDS?
+      // TODO Also search with MDS?
+      MergedRegisterSearchResult result = registerSearchService
+          .searchWithResidence(input.zipcode, input.city, input.street);
+      if (result.getResultCount() == 0) {
+        moveToNextTask(executionContext);
+        return;
+      } else if (result.getResultCount() == 1) {
+        compareSearchResultWithInitialData(executionContext, result);
+      } else {
+        throw new TaskExecutionException(pendingReq, "Manual Fix necessary", new ManualFixNecessaryException("todo"));
+      }
     } else {
-      //step 20 or for now (phase 1) step 9
-      executionContext.put(Constants.TRANSITION_TO_CREATE_NEW_ERNP_ENTRY_TASK, true);
+      moveToNextTask(executionContext);
     }
+  }
 
+  private void compareSearchResultWithInitialData(ExecutionContext executionContext, MergedRegisterSearchResult result)
+      throws TaskExecutionException {
+    try {
+      AuthProcessDataWrapper authProcessDataWrapper = pendingReq.getSessionData(AuthProcessDataWrapper.class);
+      MergedRegisterSearchResult initialSearchResult = authProcessDataWrapper
+          .getGenericDataFromSession(DATA_INITIAL_REGISTER_RESULT, MergedRegisterSearchResult.class);
+      SimpleEidasData simpleEidasData = authProcessDataWrapper
+          .getGenericDataFromSession(DATA_SIMPLE_EIDAS, SimpleEidasData.class);
+      if (simpleEidasData.equalsRegisterData(result)) {
+        registerSearchService.step7aKittProcess(initialSearchResult, result, simpleEidasData, pendingReq);
+      } else {
+        moveToNextTask(executionContext);
+      }
+    } catch (WorkflowException e) {
+      throw new TaskExecutionException(pendingReq, "Search failed", new ManualFixNecessaryException("todo"));
+    }
+  }
 
+  private void moveToNextTask(ExecutionContext executionContext) {
+    // Later on, this should transition to Step 20
+    executionContext.put(Constants.TRANSITION_TO_CREATE_NEW_ERNP_ENTRY_TASK, true);
   }
 
-  private void step18_RegisterSearch(String street, String city, String zipcode) {
-    System.out.println(street + city + zipcode + zmrClient);//TODO
+  private @NotNull UserInput parseHtmlInput(HttpServletRequest request) {
+    Enumeration<String> reqParamNames = request.getParameterNames();
+    UserInput result = new UserInput();
+    while (reqParamNames.hasMoreElements()) {
+      final String paramName = reqParamNames.nextElement();
+      String escaped = StringEscapeUtils.escapeHtml(request.getParameter(paramName));
+      if (PARAM_FORMER_RESIDENCE_AVAILABLE.equalsIgnoreCase(paramName)) {
+        result.setFormerResidenceAvailable(Boolean.parseBoolean(escaped));
+      } else if (PARAM_STREET.equalsIgnoreCase(paramName)) {
+        result.setStreet(escaped);
+      } else if (PARAM_CITY.equalsIgnoreCase(paramName)) {
+        result.setCity(escaped);
+      } else if (PARAM_ZIPCODE.equalsIgnoreCase(paramName)) {
+        result.setZipcode(escaped);
+      }
+    }
+    return result;
   }
 
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/DummyZmrClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/DummyZmrClient.java
index 87b00f07..80e61451 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/DummyZmrClient.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/DummyZmrClient.java
@@ -68,4 +68,10 @@ public class DummyZmrClient implements IZmrClient {
     return Collections.emptyList();
   }
 
+  @Override
+  public List<RegisterResult> searchWithResidenceData(String zipcode, String city, String street) {
+    // TODO
+    return Collections.emptyList();
+  }
+
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/IZmrClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/IZmrClient.java
index 2742ae31..5ca69d3d 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/IZmrClient.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/IZmrClient.java
@@ -42,4 +42,7 @@ public interface IZmrClient {
   void update(RegisterResult registerResult, SimpleEidasData eidData);
 
   List<RegisterResult> searchWithBpkZp(String bpkzp);
+
+  List<RegisterResult> searchWithResidenceData(String zipcode, String city, String street);
+
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveAustrianResidenceGuiResponseTaskTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveAustrianResidenceGuiResponseTaskTest.java
new file mode 100644
index 00000000..38693f49
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveAustrianResidenceGuiResponseTaskTest.java
@@ -0,0 +1,196 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.test.tasks;
+
+import at.asitplus.eidas.specific.connector.test.config.dummy.MsConnectorDummyConfigMap;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.MergedRegisterSearchResult;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.ManualFixNecessaryException;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.RegisterSearchService;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.ReceiveAustrianResidenceGuiResponseTask;
+import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
+import at.gv.egiz.eaaf.core.exceptions.EaafStorageException;
+import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
+import at.gv.egiz.eaaf.core.impl.idp.auth.data.AuthProcessDataWrapper;
+import at.gv.egiz.eaaf.core.impl.idp.module.test.TestRequestImpl;
+import at.gv.egiz.eaaf.core.impl.idp.process.ExecutionContextImpl;
+import com.google.common.collect.Lists;
+import org.apache.commons.lang3.RandomStringUtils;
+import org.jetbrains.annotations.NotNull;
+import org.junit.Before;
+import org.junit.Test;
+import org.junit.runner.RunWith;
+import org.mockito.Mockito;
+import org.mockito.MockitoAnnotations;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.boot.test.mock.mockito.MockBean;
+import org.springframework.context.i18n.LocaleContextHolder;
+import org.springframework.mock.web.MockHttpServletRequest;
+import org.springframework.mock.web.MockHttpServletResponse;
+import org.springframework.test.context.ContextConfiguration;
+import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
+import org.springframework.web.context.request.RequestContextHolder;
+import org.springframework.web.context.request.ServletRequestAttributes;
+
+import java.util.Collections;
+import java.util.List;
+
+import static at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.ReceiveAustrianResidenceGuiResponseTask.*;
+import static org.junit.Assert.*;
+import static org.mockito.ArgumentMatchers.any;
+import static org.mockito.ArgumentMatchers.eq;
+import static org.springframework.util.Assert.isInstanceOf;
+
+@RunWith(SpringJUnit4ClassRunner.class)
+@ContextConfiguration(locations = {
+    "/SpringTest-context_tasks_test.xml",
+    "/SpringTest-context_basic_mapConfig.xml"
+})
+public class ReceiveAustrianResidenceGuiResponseTaskTest {
+
+  @Autowired
+  protected MsConnectorDummyConfigMap authConfig;
+  @Autowired
+  private ReceiveAustrianResidenceGuiResponseTask task;
+  @MockBean
+  private RegisterSearchService registerSearchService;
+
+  private final ExecutionContext executionContext = new ExecutionContextImpl();
+  private MockHttpServletRequest httpReq;
+  private MockHttpServletResponse httpResp;
+  private TestRequestImpl pendingReq;
+
+  /**
+   * jUnit test set-up.
+   *
+   * @throws Exception In case of an set-up error
+   */
+  @Before
+  public void setUp() throws Exception {
+    MockitoAnnotations.initMocks(this);
+
+    httpReq = new MockHttpServletRequest("POST", "https://localhost/ms_connector");
+    httpResp = new MockHttpServletResponse();
+    RequestContextHolder.resetRequestAttributes();
+    RequestContextHolder.setRequestAttributes(new ServletRequestAttributes(httpReq, httpResp));
+
+    pendingReq = new TestRequestImpl();
+    pendingReq.setAuthUrl("https://localhost/ms_connector");
+    pendingReq.setPendingReqId(RandomStringUtils.randomAlphanumeric(10));
+
+    LocaleContextHolder.resetLocaleContext();
+  }
+
+  @Test
+  public void noRegisterResult() throws Exception {
+    UserInput userInput = setupUserInput();
+    SimpleEidasData eidasData = setupEidasData();
+    MergedRegisterSearchResult registerSearchResult = buildEmptyResult();
+    mockRegisterSearch(userInput, registerSearchResult);
+
+    task.execute(pendingReq, executionContext);
+
+    assertEquals("Transition To S9", true, executionContext.get(Constants.TRANSITION_TO_CREATE_NEW_ERNP_ENTRY_TASK));
+  }
+
+  @Test
+  public void exactlyOneRegisterResult_Matching() throws Exception {
+    UserInput userInput = setupUserInput();
+    SimpleEidasData eidasData = setupEidasData();
+    MergedRegisterSearchResult registerSearchResult = buildResultWithOneMatch(buildMatchingRegisterResult(eidasData));
+    mockRegisterSearch(userInput, registerSearchResult);
+
+    task.execute(pendingReq, executionContext);
+
+    assertNull("Transition To S9", executionContext.get(Constants.TRANSITION_TO_CREATE_NEW_ERNP_ENTRY_TASK));
+    Mockito.verify(registerSearchService).step7aKittProcess(any(), eq(registerSearchResult), eq(eidasData), eq(pendingReq));
+  }
+
+  @Test
+  public void exactlyOneRegisterResult_NotMatching() throws Exception {
+    UserInput userInput = setupUserInput();
+    SimpleEidasData eidasData = setupEidasData();
+    MergedRegisterSearchResult registerSearchResult = buildResultWithOneMatch(buildNotMatchingRegisterResult(eidasData));
+    mockRegisterSearch(userInput, registerSearchResult);
+
+    task.execute(pendingReq, executionContext);
+
+    assertEquals("Transition To S9", true, executionContext.get(Constants.TRANSITION_TO_CREATE_NEW_ERNP_ENTRY_TASK));
+  }
+
+  @Test
+  public void moreThanOneRegisterResult() throws Exception {
+    UserInput userInput = setupUserInput();
+    SimpleEidasData eidasData = setupEidasData();
+    MergedRegisterSearchResult registerSearchResult = buildResultWithTwoMatches();
+    mockRegisterSearch(userInput, registerSearchResult);
+
+    TaskExecutionException e = assertThrows(TaskExecutionException.class,
+        () -> task.execute(pendingReq, executionContext));
+
+    assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
+    isInstanceOf(ManualFixNecessaryException.class, e.getOriginalException());
+    assertNull("Transition To S16", executionContext.get(Constants.TRANSITION_TO_CREATE_NEW_ERNP_ENTRY_TASK));
+  }
+
+  private void mockRegisterSearch(UserInput userInput, MergedRegisterSearchResult registerSearchResult) {
+    Mockito.when(registerSearchService.searchWithResidence(eq(userInput.getZipcode()), eq(userInput.getCity()), eq(userInput.getStreet()))).thenReturn(registerSearchResult);
+  }
+
+  @NotNull
+  private MergedRegisterSearchResult buildEmptyResult() {
+    return new MergedRegisterSearchResult(Collections.emptyList(), Collections.emptyList());
+  }
+
+  @NotNull
+  private MergedRegisterSearchResult buildResultWithOneMatch(RegisterResult registerResult) {
+    return new MergedRegisterSearchResult(Collections.singletonList(registerResult), Collections.emptyList());
+  }
+
+  @NotNull
+  private MergedRegisterSearchResult buildResultWithTwoMatches() {
+    List<RegisterResult> results = Lists.newArrayList(buildRandomRegisterResult(), buildRandomRegisterResult());
+    return new MergedRegisterSearchResult(results, Collections.emptyList());
+  }
+
+  @NotNull
+  private RegisterResult buildRandomRegisterResult() {
+    return new RegisterResult(RandomStringUtils.randomAlphabetic(8), RandomStringUtils.randomAlphabetic(8), RandomStringUtils.randomAlphabetic(8), RandomStringUtils.randomAlphabetic(8), RandomStringUtils.randomAlphabetic(8));
+  }
+
+  private RegisterResult buildMatchingRegisterResult(SimpleEidasData eidData) {
+    return new RegisterResult(RandomStringUtils.randomAlphabetic(8), eidData.getPseudonym(), eidData.getGivenName(), eidData.getFamilyName(), eidData.getDateOfBirth());
+  }
+
+  private RegisterResult buildNotMatchingRegisterResult(SimpleEidasData eidData) {
+    return new RegisterResult(RandomStringUtils.randomAlphabetic(8), eidData.getPseudonym() + RandomStringUtils.randomAlphabetic(8), eidData.getGivenName(), eidData.getFamilyName(), eidData.getDateOfBirth());
+  }
+
+  private void setHttpParameters(UserInput input) {
+    httpReq.setParameter(PARAM_FORMER_RESIDENCE_AVAILABLE, String.valueOf(input.isFormerResidenceAvailable()));
+    httpReq.setParameter(PARAM_STREET, input.getStreet());
+    httpReq.setParameter(PARAM_CITY, input.getCity());
+    httpReq.setParameter(PARAM_ZIPCODE, input.getZipcode());
+  }
+
+  @NotNull
+  private SimpleEidasData setupEidasData() throws EaafStorageException {
+    SimpleEidasData result = new SimpleEidasData();
+    result.setPseudonym(RandomStringUtils.randomAlphabetic(8));
+    result.setFamilyName(RandomStringUtils.randomAlphabetic(8));
+    result.setGivenName(RandomStringUtils.randomAlphabetic(8));
+    result.setDateOfBirth("1970-01-01");
+    AuthProcessDataWrapper authProcessDataWrapper = pendingReq.getSessionData(AuthProcessDataWrapper.class);
+    authProcessDataWrapper.setGenericDataToSession(Constants.DATA_SIMPLE_EIDAS, result);
+    return result;
+  }
+
+  @NotNull
+  private UserInput setupUserInput() {
+    UserInput result = new UserInput(true, RandomStringUtils.randomAlphabetic(8), RandomStringUtils.randomAlphabetic(8), RandomStringUtils.randomAlphabetic(8));
+    setHttpParameters(result);
+    return result;
+  }
+
+
+}
-- 
cgit v1.2.3


From 2c49670334049a065d86defc8524f2e5eae6ca78 Mon Sep 17 00:00:00 2001
From: Christian Kollmann <christian.kollmann@a-sit.at>
Date: Thu, 25 Feb 2021 11:32:57 +0100
Subject: Refactor and test ReceiveOtherLoginMethodGuiResponse

---
 .../v2/tasks/GenerateOtherLoginMethodGuiTask.java  |  5 +-
 .../ReceiveOtherLoginMethodGuiResponseTask.java    | 71 ++++++++---------
 ...ReceiveOtherLoginMethodGuiResponseTaskTest.java | 89 ++++++++++++----------
 3 files changed, 87 insertions(+), 78 deletions(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateOtherLoginMethodGuiTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateOtherLoginMethodGuiTask.java
index 0236b9c2..56aaa2db 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateOtherLoginMethodGuiTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateOtherLoginMethodGuiTask.java
@@ -40,8 +40,11 @@ import javax.servlet.http.HttpServletResponse;
 
 /**
  * Task that provides GUI for user to select an alternative login method.
- * This page is shown when the matching of the eIDAS data to ZMR/ERnP data is ambiguous
+ * This page is shown when the matching of the eIDAS data to ZMR/ERnP data is ambiguous.
+ * This corresponds to Steps 10, 14, 16 in the eIDAS Matching Concept.
+ * The response is handled in {@link ReceiveOtherLoginMethodGuiResponseTask}
  *
+ * @author amarsalek
  * @author ckollmann
  */
 @Slf4j
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveOtherLoginMethodGuiResponseTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveOtherLoginMethodGuiResponseTask.java
index d8b80689..12eb7a83 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveOtherLoginMethodGuiResponseTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveOtherLoginMethodGuiResponseTask.java
@@ -26,13 +26,11 @@ package at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SelectedLoginMethod;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.InvalidUserInputException;
-import at.gv.egiz.eaaf.core.api.data.EaafConstants;
 import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
 import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
 import at.gv.egiz.eaaf.core.impl.idp.auth.modules.AbstractAuthServletTask;
 import lombok.extern.slf4j.Slf4j;
 import org.apache.commons.lang.StringEscapeUtils;
-import org.apache.commons.lang3.StringUtils;
 import org.springframework.stereotype.Component;
 
 import javax.servlet.http.HttpServletRequest;
@@ -41,7 +39,9 @@ import java.util.Enumeration;
 
 /**
  * Handles user's selection from {@link GenerateOtherLoginMethodGuiTask}.
+ * This corresponds to Steps 10, 14, 16 in the eIDAS Matching Concept.
  *
+ * @author amarsalek
  * @author ckollmann
  */
 @Slf4j
@@ -51,44 +51,45 @@ public class ReceiveOtherLoginMethodGuiResponseTask extends AbstractAuthServletT
   @Override
   public void execute(ExecutionContext executionContext, HttpServletRequest request, HttpServletResponse response)
       throws TaskExecutionException {
-    int found = 0;
     try {
-      // set parameter execution context
-      final Enumeration<String> reqParamNames = request.getParameterNames();
-      while (reqParamNames.hasMoreElements()) {
-        final String paramName = reqParamNames.nextElement();
-        if (StringUtils.isNotEmpty(paramName)
-            && !EaafConstants.PROCESS_ENGINE_PENDINGREQUESTID.equalsIgnoreCase(paramName)
-            && Constants.REQ_SELECTED_LOGIN_METHOD_PARAMETER.equalsIgnoreCase(paramName)) {
-          String value = StringEscapeUtils.escapeHtml(request.getParameter(paramName));
-          SelectedLoginMethod selection = SelectedLoginMethod.valueOf(value);
-          executionContext.put(Constants.REQ_SELECTED_LOGIN_METHOD_PARAMETER, selection);
-          switch (selection) {
-            case EIDAS_LOGIN:
-              executionContext.put(Constants.TRANSITION_TO_GENERATE_EIDAS_LOGIN, true);
-              found++;
-              break;
-            case MOBILE_PHONE_SIGNATURE_LOGIN:
-              executionContext.put(Constants.TRANSITION_TO_GENERATE_MOBILE_PHONE_SIGNATURE_REQUEST_TASK, true);
-              found++;
-              break;
-            case NO_OTHER_LOGIN:
-              executionContext.put(Constants.TRANSITION_TO_GENERATE_GUI_QUERY_AUSTRIAN_RESIDENCE_TASK, true);
-              found++;
-              break;
-            default:
-              throw new InvalidUserInputException();
-          }
-        }
-      }
+      SelectedLoginMethod selection = SelectedLoginMethod.valueOf(extractUserSelection(request));
+      executionContext.put(Constants.REQ_SELECTED_LOGIN_METHOD_PARAMETER, selection);
+      transitionToNextTask(executionContext, selection);
+    } catch (final IllegalArgumentException e) {
+      log.error("Parsing selected login method FAILED.", e);
+      throw new TaskExecutionException(pendingReq, "Parsing selected login method FAILED.",
+          new InvalidUserInputException());
     } catch (final Exception e) {
       log.error("Parsing selected login method FAILED.", e);
       throw new TaskExecutionException(pendingReq, "Parsing selected login method FAILED.", e);
     }
-    if (found != 1) {
-      log.error("Parsing selected login method FAILED.");
-      throw new TaskExecutionException(pendingReq, "Parsing selected login method FAILED.",
-          new InvalidUserInputException());
+  }
+
+  private String extractUserSelection(HttpServletRequest request) throws InvalidUserInputException {
+    Enumeration<String> paramNames = request.getParameterNames();
+    while (paramNames.hasMoreElements()) {
+      String paramName = paramNames.nextElement();
+      if (Constants.REQ_SELECTED_LOGIN_METHOD_PARAMETER.equalsIgnoreCase(paramName)) {
+        return StringEscapeUtils.escapeHtml(request.getParameter(paramName));
+      }
+    }
+    throw new InvalidUserInputException();
+  }
+
+  private void transitionToNextTask(ExecutionContext executionContext, SelectedLoginMethod selection)
+      throws InvalidUserInputException {
+    switch (selection) {
+      case EIDAS_LOGIN:
+        executionContext.put(Constants.TRANSITION_TO_GENERATE_EIDAS_LOGIN, true);
+        return;
+      case MOBILE_PHONE_SIGNATURE_LOGIN:
+        executionContext.put(Constants.TRANSITION_TO_GENERATE_MOBILE_PHONE_SIGNATURE_REQUEST_TASK, true);
+        return;
+      case NO_OTHER_LOGIN:
+        executionContext.put(Constants.TRANSITION_TO_GENERATE_GUI_QUERY_AUSTRIAN_RESIDENCE_TASK, true);
+        return;
+      default:
+        throw new InvalidUserInputException();
     }
   }
 
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveOtherLoginMethodGuiResponseTaskTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveOtherLoginMethodGuiResponseTaskTest.java
index ae4b5d8c..c6b2e1fe 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveOtherLoginMethodGuiResponseTaskTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveOtherLoginMethodGuiResponseTaskTest.java
@@ -2,12 +2,12 @@ package at.asitplus.eidas.specific.modules.auth.eidas.v2.test.tasks;
 
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SelectedLoginMethod;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.InvalidUserInputException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.ReceiveOtherLoginMethodGuiResponseTask;
 import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
 import at.gv.egiz.eaaf.core.impl.idp.module.test.TestRequestImpl;
 import at.gv.egiz.eaaf.core.impl.idp.process.ExecutionContextImpl;
 import org.apache.commons.lang3.RandomStringUtils;
-import org.junit.Assert;
 import org.junit.Before;
 import org.junit.BeforeClass;
 import org.junit.Test;
@@ -23,16 +23,10 @@ import org.springframework.test.context.web.WebAppConfiguration;
 import org.springframework.web.context.request.RequestContextHolder;
 import org.springframework.web.context.request.ServletRequestAttributes;
 
-import java.io.UnsupportedEncodingException;
+import static org.junit.Assert.*;
+import static org.springframework.util.Assert.isInstanceOf;
 
 @RunWith(SpringJUnit4ClassRunner.class)
-//@ContextConfiguration({
-//    "/applicationContext.xml",
-//    "/specific_eIDAS_connector.beans.xml",
-//    "/eaaf_core.beans.xml",
-//    "/eaaf_pvp.beans.xml",
-//    "/eaaf_pvp_idp.beans.xml",
-//    "/spring/SpringTest-context_simple_storage.xml" })
 @ContextConfiguration(locations = {
     "/SpringTest-context_tasks_test.xml",
     "/SpringTest-context_basic_mapConfig.xml"
@@ -41,27 +35,25 @@ import java.io.UnsupportedEncodingException;
 @WebAppConfiguration
 public class ReceiveOtherLoginMethodGuiResponseTaskTest {
 
-  @Autowired private ReceiveOtherLoginMethodGuiResponseTask task;
+  @Autowired
+  private ReceiveOtherLoginMethodGuiResponseTask task;
 
-  private ExecutionContextImpl executionContext = new ExecutionContextImpl();
+  private final ExecutionContextImpl executionContext = new ExecutionContextImpl();
   private TestRequestImpl pendingReq;
   private MockHttpServletRequest httpReq;
   private MockHttpServletResponse httpResp;
 
   /**
    * jUnit class initializer.
-   *
    */
   @BeforeClass
   public static void classInitializer() {
     final String current = new java.io.File(".").toURI().toString();
     System.setProperty("eidas.ms.configuration", current + "src/test/resources/config/junit_config_1.properties");
-
   }
 
   /**
    * jUnit test set-up.
-   *
    */
   @Before
   public void initialize() {
@@ -79,57 +71,70 @@ public class ReceiveOtherLoginMethodGuiResponseTaskTest {
 
   @Test
   public void withMobileSignatureSelection() throws TaskExecutionException {
-    test(SelectedLoginMethod.MOBILE_PHONE_SIGNATURE_LOGIN);
+    testTransition(SelectedLoginMethod.MOBILE_PHONE_SIGNATURE_LOGIN, Constants.TRANSITION_TO_GENERATE_MOBILE_PHONE_SIGNATURE_REQUEST_TASK);
   }
 
   @Test
   public void withEidasSelection() throws TaskExecutionException {
-    test(SelectedLoginMethod.MOBILE_PHONE_SIGNATURE_LOGIN);
+    testTransition(SelectedLoginMethod.EIDAS_LOGIN, Constants.TRANSITION_TO_GENERATE_EIDAS_LOGIN);
   }
 
   @Test
   public void withNoOtherLoginSelection() throws TaskExecutionException {
-    test(SelectedLoginMethod.NO_OTHER_LOGIN);
+    testTransition(SelectedLoginMethod.NO_OTHER_LOGIN, Constants.TRANSITION_TO_GENERATE_GUI_QUERY_AUSTRIAN_RESIDENCE_TASK);
   }
 
-  public void test(SelectedLoginMethod loginMethod) throws TaskExecutionException {
-    String parameterValue = loginMethod.name();
-    httpReq.setParameter(Constants.REQ_SELECTED_LOGIN_METHOD_PARAMETER, parameterValue);
+  public void testTransition(SelectedLoginMethod loginMethod, String expectedTransition) throws TaskExecutionException {
+    httpReq.setParameter(Constants.REQ_SELECTED_LOGIN_METHOD_PARAMETER, loginMethod.name());
 
     task.execute(pendingReq, executionContext);
 
-    //result validation
-    Assert.assertFalse("wrong pendingReq auth flag", pendingReq.isAuthenticated());
-    Assert.assertFalse("wrong process-cancelled flag", executionContext.isProcessCancelled());
-
-    Assert.assertNotNull("no login-selection found",
-        executionContext.get(Constants.REQ_SELECTED_LOGIN_METHOD_PARAMETER));
-    Assert.assertEquals("Wrong login-selection found", loginMethod,
-        executionContext.get(Constants.REQ_SELECTED_LOGIN_METHOD_PARAMETER));
+    assertFalse("wrong pendingReq auth flag", pendingReq.isAuthenticated());
+    assertFalse("wrong process-cancelled flag", executionContext.isProcessCancelled());
+    assertNotNull("no login-selection found", executionContext.get(Constants.REQ_SELECTED_LOGIN_METHOD_PARAMETER));
+    assertEquals("Wrong login-selection found", loginMethod, executionContext.get(Constants.REQ_SELECTED_LOGIN_METHOD_PARAMETER));
+    assertEquals("Next task", true, executionContext.get(expectedTransition));
   }
 
+  public void withInvalidSelection() {
+    httpReq.setParameter(Constants.REQ_SELECTED_LOGIN_METHOD_PARAMETER, RandomStringUtils.randomAlphabetic(2));
 
-  @Test(expected = TaskExecutionException.class)
-  public void withInvalidSelection() throws TaskExecutionException {
-    String parameterValue = RandomStringUtils.randomAlphabetic(2);
-    httpReq.setParameter(Constants.REQ_SELECTED_LOGIN_METHOD_PARAMETER, parameterValue);
-    task.execute(pendingReq, executionContext);
+    TaskExecutionException e = assertThrows(TaskExecutionException.class,
+        () -> task.execute(pendingReq, executionContext));
+
+    assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
+    isInstanceOf(InvalidUserInputException.class, e.getOriginalException());
   }
 
-  @Test(expected = TaskExecutionException.class)
-  public void withNullSelection() throws TaskExecutionException {
+  @Test
+  public void withNullSelection() {
     httpReq.setParameter(Constants.REQ_SELECTED_LOGIN_METHOD_PARAMETER, "null");
-    task.execute(pendingReq, executionContext);
+
+    TaskExecutionException e = assertThrows(TaskExecutionException.class,
+        () -> task.execute(pendingReq, executionContext));
+
+    assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
+    isInstanceOf(InvalidUserInputException.class, e.getOriginalException());
   }
 
-  @Test(expected = TaskExecutionException.class)
-  public void withEmptySelection() throws TaskExecutionException {
+  @Test
+  public void withEmptySelection() {
     httpReq.setParameter(Constants.REQ_SELECTED_LOGIN_METHOD_PARAMETER, "");
-    task.execute(pendingReq, executionContext);
+
+    TaskExecutionException e = assertThrows(TaskExecutionException.class,
+        () -> task.execute(pendingReq, executionContext));
+
+    assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
+    isInstanceOf(InvalidUserInputException.class, e.getOriginalException());
   }
 
-  @Test(expected = TaskExecutionException.class)
-  public void withoutLoginMethodSelection() throws TaskExecutionException, UnsupportedEncodingException {
-    task.execute(pendingReq, executionContext);
+  @Test
+  public void withoutLoginMethodSelection() {
+
+    TaskExecutionException e = assertThrows(TaskExecutionException.class,
+        () -> task.execute(pendingReq, executionContext));
+
+    assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
+    isInstanceOf(InvalidUserInputException.class, e.getOriginalException());
   }
 }
-- 
cgit v1.2.3


From b9bc937ff9471c60ced2ef9ed7df526cf31059db Mon Sep 17 00:00:00 2001
From: Christian Kollmann <christian.kollmann@a-sit.at>
Date: Thu, 4 Mar 2021 14:00:53 +0100
Subject: Document input, output, transitions for each task

---
 .../specific/modules/auth/eidas/v2/Constants.java  |  42 +++++++-
 .../eidas/v2/service/RegisterSearchService.java    |  22 ++--
 .../eidas/v2/tasks/CreateIdentityLinkTask.java     |  96 +++++++++---------
 .../eidas/v2/tasks/CreateNewErnpEntryTask.java     |  38 ++++---
 .../v2/tasks/GenerateOtherLoginMethodGuiTask.java  |   1 +
 .../auth/eidas/v2/tasks/InitialSearchTask.java     | 112 ++++++++++-----------
 .../ReceiveAustrianResidenceGuiResponseTask.java   |  90 ++++++++++++-----
 .../ReceiveMobilePhoneSignatureResponseTask.java   |  77 ++++++++++----
 .../ReceiveOtherLoginMethodGuiResponseTask.java    |  15 +++
 .../resources/eIDAS.Authentication.process.xml     |  28 +++---
 10 files changed, 329 insertions(+), 192 deletions(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java
index c2fc44b9..76c026ae 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java
@@ -34,9 +34,26 @@ public class Constants {
   public static final String DATA_REQUESTED_LOA_LIST = "req_requestedLoA";
   public static final String DATA_REQUESTED_LOA_COMPERISON = "req_requestedLoAComperision";
   public static final String DATA_FULL_EIDAS_RESPONSE = "resp_fulleIDASResponse";
-  public static final String DATA_RESULT_MATCHING_BPK = "matching-result-bpk";
-  public static final String DATA_SIMPLE_EIDAS = "simple_eidas_data";
-  public static final String DATA_INITIAL_REGISTER_RESULT = "initial_register_result";
+
+  /**
+   * Stored when one match from register was found
+   */
+  public static final String DATA_RESULT_MATCHING_BPK = "matching_result_bpk";
+
+  /**
+   * Stored before Step 2 from Matching Concept, input from user eIDAS authn
+   */
+  public static final String DATA_SIMPLE_EIDAS = "matching_simple_eidas_data";
+
+  /**
+   * Stored after Step 2 from Matching Concept, first results from search with Person Identifier
+   */
+  public static final String DATA_INITIAL_REGISTER_RESULT = "matching_initial_register_result";
+
+  /**
+   * Stored after Step 8 from Matching Concept, results from search in registers with MDS
+   */
+  public static final String DATA_FURTHER_REGISTER_RESULT = "matching_further_register_result";
 
   // templates for post-binding forwarding
   public static final String TEMPLATE_POST_FORWARD_NAME = "eidas_node_forward.html";
@@ -183,13 +200,32 @@ public class Constants {
   public static final String COUNTRY_CODE_DE = "DE";
   public static final String COUNTRY_CODE_IT = "IT";
 
+  /**
+   * {@link at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.CreateNewErnpEntryTask}
+   */
   public static final String TRANSITION_TO_CREATE_NEW_ERNP_ENTRY_TASK = "TASK_CreateNewErnpEntryTask";
+
+  /**
+   * {@link at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.GenerateOtherLoginMethodGuiTask}
+   */
   public static final String TRANSITION_TO_GENERATE_OTHER_LOGIN_METHOD_GUI_TASK =
       "TASK_GenerateOtherLoginMethodGuiTask";
+
+  /**
+   * {@link at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.GenerateAustrianResidenceGuiTask}
+   */
   public static final String TRANSITION_TO_GENERATE_GUI_QUERY_AUSTRIAN_RESIDENCE_TASK =
       "TASK_GenerateAustrianResidenceGuiTask";
+
+  /**
+   * {@link at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.GenerateMobilePhoneSignatureRequestTask}
+   */
   public static final String TRANSITION_TO_GENERATE_MOBILE_PHONE_SIGNATURE_REQUEST_TASK =
       "TASK_GenerateMobilePhoneSignatureRequestTask";
+
+  /**
+   * TODO Second eidas login
+   */
   public static final String TRANSITION_TO_GENERATE_EIDAS_LOGIN = "TASK_TODO";
 
   public static final String REQ_SELECTED_LOGIN_METHOD_PARAMETER = "loginSelection";
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/service/RegisterSearchService.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/service/RegisterSearchService.java
index fad985c2..6b524e36 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/service/RegisterSearchService.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/service/RegisterSearchService.java
@@ -30,30 +30,32 @@ public class RegisterSearchService {
    * Automatic process to fix the register entries.
    *
    * @param initialSearchResult Result of initial register search
-   * @param specificDetailSearchResult Result of last register search
+   * @param specificSearchResult Result of last register search
    * @param eidasData Received eidas data
    * @param pendingReq Pending request
    * @return The bpk
    * @throws TaskExecutionException if an error occurs during the register update
    */
   public String step7aKittProcess(MergedRegisterSearchResult initialSearchResult,
-                                  MergedRegisterSearchResult specificDetailSearchResult,
-                                  SimpleEidasData eidasData, IRequest pendingReq) throws TaskExecutionException {
+                                  MergedRegisterSearchResult specificSearchResult,
+                                  SimpleEidasData eidasData,
+                                  IRequest pendingReq) throws TaskExecutionException {
+    log.trace("Starting step7aKittProcess");
     // TODO verify with which data this method gets called
     try {
       if (initialSearchResult.getResultCount() != 0) {
         throw new WorkflowException("initialSearchResult.getResultCount() != 0");
       }
-      if (specificDetailSearchResult.getResultCount() != 1) {
-        throw new WorkflowException("countrySpecificDetailSearchResult.getResultCount() != 1");
+      if (specificSearchResult.getResultCount() != 1) {
+        throw new WorkflowException("specificSearchResult.getResultCount() != 1");
       }
-      if (specificDetailSearchResult.getResultsZmr().size() == 1) {
-        zmrClient.update(specificDetailSearchResult.getResultsZmr().get(0), eidasData);
+      if (specificSearchResult.getResultsZmr().size() == 1) {
+        zmrClient.update(specificSearchResult.getResultsZmr().get(0), eidasData);
       }
-      if (specificDetailSearchResult.getResultsErnp().size() == 1) {
-        ernpClient.update(specificDetailSearchResult.getResultsErnp().get(0), eidasData);
+      if (specificSearchResult.getResultsErnp().size() == 1) {
+        ernpClient.update(specificSearchResult.getResultsErnp().get(0), eidasData);
       }
-      return specificDetailSearchResult.getBpk();
+      return specificSearchResult.getBpk();
     } catch (WorkflowException e) {
       throw new TaskExecutionException(pendingReq, "Step7a failed.", e);
     }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateIdentityLinkTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateIdentityLinkTask.java
index b519354c..65e9028f 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateIdentityLinkTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateIdentityLinkTask.java
@@ -85,6 +85,10 @@ import szrservices.TravelDocumentType;
  * Task that creates the IdentityLink for an eIDAS authenticated person.
  *
  * @author tlenz
+ *
+ * TODO Take Constants#DATA_SIMPLE_EIDAS and Constants#DATA_RESULT_MATCHING_BPK
+ * TODO Only do VSZ Erstellung and eidasBind -- this is always the end of the whole process
+ * TODO Move Eintragung to separate Task, as it does not happen every time
  */
 @Slf4j
 @Component("CreateIdentityLinkTask")
@@ -96,12 +100,12 @@ public class CreateIdentityLinkTask extends AbstractAuthServletTask {
   private SzrClient szrClient;
   @Autowired
   private ICcSpecificEidProcessingService eidPostProcessor;
-  
+
   @Autowired
   private AuthBlockSigningService authBlockSigner;
 
   private static final String EID_STATUS = "urn:eidgvat:eid.status.eidas";
-  
+
   /*
    * (non-Javadoc)
    *
@@ -131,81 +135,81 @@ public class CreateIdentityLinkTask extends AbstractAuthServletTask {
       if (basicConfig.getBasicConfigurationBoolean(Constants.CONIG_PROPS_EIDAS_SZRCLIENT_DEBUG_USEDUMMY, false)) {
         SzrResultHolder idlResult = createDummyIdentityLinkForTestDeployment(eidData);
         //inject personal-data into session
-        authProcessData.setIdentityLink(idlResult.getIdentityLink());  
-        
+        authProcessData.setIdentityLink(idlResult.getIdentityLink());
+
         // set bPK and bPKType into auth session
         authProcessData.setGenericDataToSession(PvpAttributeDefinitions.BPK_NAME, extendBpkByPrefix(
             idlResult.getBpK(), pendingReq.getServiceProviderConfiguration().getAreaSpecificTargetIdentifier()));
         authProcessData.setGenericDataToSession(PvpAttributeDefinitions.EID_SECTOR_FOR_IDENTIFIER_NAME,
                                                 pendingReq.getServiceProviderConfiguration()
                                                           .getAreaSpecificTargetIdentifier());
-                 
+
       } else {
-        //build SZR request from eIDAS data        
+        //build SZR request from eIDAS data
         final PersonInfoType personInfo = generateSzrRequest(eidData);
-        
+
         //request SZR based on IDL or E-ID mode
         if (pendingReq.getServiceProviderConfiguration()
             .isConfigurationValue(MsEidasNodeConstants.PROP_CONFIG_SP_NEW_EID_MODE, false)) {
 
           // get encrypted baseId
           String vsz = szrClient.getEncryptedStammzahl(personInfo);
-                    
+
           //write revision-Log entry and extended infos personal-identifier mapping
           revisionsLogger.logEvent(pendingReq, MsConnectorEventCodes.SZR_VSZ_RECEIVED);
           writeExtendedRevisionLogEntry(simpleAttrMap, eidData);
-          
-          
+
+
           // get eIDAS bind
-          String signedEidasBind = szrClient.getEidsaBind(vsz, 
-              authBlockSigner.getBase64EncodedPublicKey(), 
+          String signedEidasBind = szrClient.getEidsaBind(vsz,
+              authBlockSigner.getBase64EncodedPublicKey(),
               EID_STATUS, eidData);
           revisionsLogger.logEvent(pendingReq, MsConnectorEventCodes.SZR_EIDASBIND_RECEIVED);
           authProcessData.setGenericDataToSession(Constants.EIDAS_BIND, signedEidasBind);
-          
+
           //get signed AuthBlock
           String jwsSignature = authBlockSigner.buildSignedAuthBlock(pendingReq);
           revisionsLogger.logEvent(pendingReq, MsConnectorEventCodes.TECH_AUCHBLOCK_CREATED);
           authProcessData.setGenericDataToSession(Constants.SZR_AUTHBLOCK, jwsSignature);
-          
+
           //inject personal-data into session
           authProcessData.setEidProcess(true);
-               
+
         } else {
           //request SZR
           SzrResultHolder idlResult = requestSzrForIdentityLink(personInfo);
-          
+
           //write revision-Log entry for personal-identifier mapping
           writeExtendedRevisionLogEntry(simpleAttrMap, eidData);
-          
+
           //check result-data and write revision-log based on current state
           checkStateAndWriteRevisionLog(idlResult);
-          
+
           //inject personal-data into session
-          authProcessData.setIdentityLink(idlResult.getIdentityLink());  
+          authProcessData.setIdentityLink(idlResult.getIdentityLink());
           authProcessData.setEidProcess(false);
-          
+
           // set bPK and bPKType into auth session
           authProcessData.setGenericDataToSession(PvpAttributeDefinitions.BPK_NAME, extendBpkByPrefix(
               idlResult.getBpK(), pendingReq.getServiceProviderConfiguration().getAreaSpecificTargetIdentifier()));
           authProcessData.setGenericDataToSession(PvpAttributeDefinitions.EID_SECTOR_FOR_IDENTIFIER_NAME,
                                                   pendingReq.getServiceProviderConfiguration()
                                                             .getAreaSpecificTargetIdentifier());
-          
+
         }
       }
-      
+
       //add generic info's into session
       authProcessData.setForeigner(true);
       authProcessData.setGenericDataToSession(PvpAttributeDefinitions.EID_ISSUING_NATION_NAME, EidasResponseUtils
           .parseEidasPersonalIdentifier((String) simpleAttrMap.get(Constants.eIDAS_ATTR_PERSONALIDENTIFIER))
           .getFirst());
       authProcessData.setQaaLevel(eidasResponse.getLevelOfAssurance());
-           
+
       // store pending-request
       requestStoreage.storePendingRequest(pendingReq);
-      
-      
+
+
     } catch (final EidasAttributeException e) {
       throw new TaskExecutionException(pendingReq, "Minimum required eIDAS attributeset not found.", e);
 
@@ -229,7 +233,7 @@ public class CreateIdentityLinkTask extends AbstractAuthServletTask {
 
     }
   }
-  
+
   private PersonInfoType generateSzrRequest(ErnbEidData eidData) {
     log.debug("Starting connecting SZR Gateway");
     final PersonInfoType personInfo = new PersonInfoType();
@@ -278,16 +282,16 @@ public class CreateIdentityLinkTask extends AbstractAuthServletTask {
 
       }
     }
-    
+
     return personInfo;
-    
+
   }
 
-  private SzrResultHolder requestSzrForIdentityLink(PersonInfoType personInfo) 
+  private SzrResultHolder requestSzrForIdentityLink(PersonInfoType personInfo)
       throws SzrCommunicationException, EaafException {
     //request IdentityLink from SZR
     final IdentityLinkType result = szrClient.getIdentityLinkInRawMode(personInfo);
-    
+
     final Element idlFromSzr = (Element) result.getAssertion();
     IIdentityLink identityLink = new SimpleIdentityLinkAssertionParser(idlFromSzr).parseIdentityLink();
 
@@ -301,9 +305,9 @@ public class CreateIdentityLinkTask extends AbstractAuthServletTask {
                       .getBasicConfiguration(Constants.CONIG_PROPS_EIDAS_SZRCLIENT_PARAMS_VKZ, "no VKZ defined"));
       if (!bpkList.isEmpty()) {
         bpk = bpkList.get(0);
-        
+
       }
-        
+
 
     } else {
       log.debug("Calculating bPK from baseId ... ");
@@ -316,11 +320,11 @@ public class CreateIdentityLinkTask extends AbstractAuthServletTask {
       bpk = bpkCalc.getFirst();
 
     }
-    
+
     return new SzrResultHolder(identityLink, bpk);
-    
+
   }
-  
+
   private void checkStateAndWriteRevisionLog(SzrResultHolder idlResult) throws SzrCommunicationException {
     // write some infos into revision log
     if (idlResult.getIdentityLink() == null) {
@@ -341,9 +345,9 @@ public class CreateIdentityLinkTask extends AbstractAuthServletTask {
     }
     revisionsLogger.logEvent(pendingReq, MsConnectorEventCodes.SZR_BPK_RECEIVED);
     log.debug("ERnB communication was successfull");
-        
+
   }
-  
+
   private String extendBpkByPrefix(String bpk, String type) {
     String bpkType = null;
 
@@ -433,20 +437,20 @@ public class CreateIdentityLinkTask extends AbstractAuthServletTask {
     }
 
   }
-  
+
   @Data
-  private static class SzrResultHolder {    
+  private static class SzrResultHolder {
     final IIdentityLink identityLink;
     final String bpK;
-    
+
   }
-    
+
   /**
    * Build a dummy IdentityLink and a dummy bPK based on eIDAS information.
-   * 
+   *
    * <br><br>
    * <b>FOR LOCAL TESTING ONLY!!!</b>
-   * 
+   *
    * @param eidData Information from eIDAS response
    * @return IdentityLink and bPK
    * @throws ParserConfigurationException In case of an IDL processing error
@@ -454,7 +458,7 @@ public class CreateIdentityLinkTask extends AbstractAuthServletTask {
    * @throws IOException In case of an IDL processing error
    * @throws EaafException In case of a bPK generation error
    */
-  private SzrResultHolder createDummyIdentityLinkForTestDeployment(ErnbEidData eidData) 
+  private SzrResultHolder createDummyIdentityLinkForTestDeployment(ErnbEidData eidData)
       throws ParserConfigurationException, SAXException, IOException, EaafException {
     log.warn("SZR-Dummy IS ACTIVE! IdentityLink is NOT VALID!!!!");
     // create fake IdL
@@ -495,9 +499,9 @@ public class CreateIdentityLinkTask extends AbstractAuthServletTask {
         .generateAreaSpecificPersonIdentifier(identityLink.getIdentificationValue(),
                                               identityLink.getIdentificationType(),
                                               pendingReq.getServiceProviderConfiguration()
-                                                        .getAreaSpecificTargetIdentifier());   
+                                                        .getAreaSpecificTargetIdentifier());
     return new SzrResultHolder(identityLink, bpkCalc.getFirst());
-    
+
   }
 
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateNewErnpEntryTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateNewErnpEntryTask.java
index bab1945a..b89af3a0 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateNewErnpEntryTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateNewErnpEntryTask.java
@@ -23,6 +23,7 @@
 
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks;
 
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernp.IErnpClient;
 import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
@@ -30,18 +31,29 @@ import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
 import at.gv.egiz.eaaf.core.impl.idp.auth.data.AuthProcessDataWrapper;
 import at.gv.egiz.eaaf.core.impl.idp.auth.modules.AbstractAuthServletTask;
 import lombok.extern.slf4j.Slf4j;
-import org.jetbrains.annotations.NotNull;
 import org.springframework.stereotype.Component;
 
 import javax.servlet.http.HttpServletRequest;
 import javax.servlet.http.HttpServletResponse;
 
-import static at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants.DATA_SIMPLE_EIDAS;
-
 /**
- * Task that searches ErnB and ZMR before adding person to SZR.
+ * Task that searches ERnP and ZMR before adding person to SZR.
+ * This corresponds to Step 9 in the eIDAS Matching Concept.
+ *
+ * Input:
+ * <ul>
+ *   <li>{@link Constants#DATA_SIMPLE_EIDAS}</li>
+ * </ul>
+ * Output:
+ * <ul>
+ *   <li>TODO MDS, BPK of new entry</li>
+ * </ul>
+ *
+ * TODO Import code from CreateIdentityLinkTask
+ * TODO Nicht mit BMI abgestimmt: ERnP Eintrag über SZR anzulegen?
  *
  * @author amarsalek
+ * @author ckollmann
  */
 @Slf4j
 @Component("CreateNewErnbEntryTask")
@@ -61,25 +73,21 @@ public class CreateNewErnpEntryTask extends AbstractAuthServletTask {
   public void execute(ExecutionContext executionContext, HttpServletRequest request, HttpServletResponse response)
       throws TaskExecutionException {
     try {
-      // TODO really the correct key?
-      SimpleEidasData simpleEidasData = getAuthProcessData().getGenericDataFromSession(DATA_SIMPLE_EIDAS,
-          SimpleEidasData.class);
-      step9CreateNewErnpEntry(simpleEidasData);
+      SimpleEidasData simpleEidasData = getInitialEidasData();
+      //TODO Does this return the BPK?
+      ernpClient.createNewEntry(simpleEidasData);
     } catch (final Exception e) {
       log.error("Initial search FAILED.", e);
       throw new TaskExecutionException(pendingReq, "Initial search FAILED.", e);
     }
   }
 
-  @NotNull
-  private AuthProcessDataWrapper getAuthProcessData() {
-    return pendingReq.getSessionData(AuthProcessDataWrapper.class);
+  private SimpleEidasData getInitialEidasData() {
+    return getAuthProcessDataWrapper().getGenericDataFromSession(Constants.DATA_SIMPLE_EIDAS, SimpleEidasData.class);
   }
 
-  private void step9CreateNewErnpEntry(SimpleEidasData simpleEidasData) {
-
-    //TODO can i get bpk from response?
-    ernpClient.createNewEntry(simpleEidasData);
+  private AuthProcessDataWrapper getAuthProcessDataWrapper() {
+    return pendingReq.getSessionData(AuthProcessDataWrapper.class);
   }
 
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateOtherLoginMethodGuiTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateOtherLoginMethodGuiTask.java
index 56aaa2db..8c3cc994 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateOtherLoginMethodGuiTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateOtherLoginMethodGuiTask.java
@@ -53,6 +53,7 @@ public class GenerateOtherLoginMethodGuiTask extends AbstractAuthServletTask {
 
   @Autowired
   private ISpringMvcGuiFormBuilder guiBuilder;
+
   @Autowired
   private IConfiguration basicConfig;
 
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
index 81035f6d..d7bec42b 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
@@ -23,6 +23,7 @@
 
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks;
 
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.MergedRegisterSearchResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidasAttributeException;
@@ -55,10 +56,6 @@ import java.util.HashMap;
 import java.util.List;
 import java.util.Map;
 
-import static at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants.DATA_FULL_EIDAS_RESPONSE;
-import static at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants.DATA_INITIAL_REGISTER_RESULT;
-import static at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants.DATA_RESULT_MATCHING_BPK;
-import static at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants.DATA_SIMPLE_EIDAS;
 import static at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants.TRANSITION_TO_CREATE_NEW_ERNP_ENTRY_TASK;
 import static at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants.TRANSITION_TO_GENERATE_OTHER_LOGIN_METHOD_GUI_TASK;
 import static at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants.eIDAS_ATTR_BIRTHNAME;
@@ -72,6 +69,27 @@ import static at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants.eIDAS_A
 
 /**
  * Task that searches registers (ERnP and ZMR) before adding person to SZR.
+ * <p>
+ * Input:
+ * <ul>
+ *   <li>{@link Constants#DATA_FULL_EIDAS_RESPONSE}</li>
+ * </ul>
+ * Output:
+ * <ul>
+ *   <li>{@link Constants#DATA_SIMPLE_EIDAS} converted from Full eIDAS Response</li>
+ *   <li>{@link Constants#DATA_INITIAL_REGISTER_RESULT} results from first search in registers with
+ *   PersonIdentifier</li>
+ *   <li>{@link Constants#DATA_FURTHER_REGISTER_RESULT} results after second search in registers with MDS</li>
+ *   <li>{@link Constants#DATA_RESULT_MATCHING_BPK} if one register result found</li>
+ * </ul>
+ * <p>
+ * Transitions:
+ * <ul>
+ *   <li>{@link CreateNewErnpEntryTask} if no results in registers where found for this user</li>
+ *   <li>{@link GenerateOtherLoginMethodGuiTask} if search with MDS returns more than one match, user may provide
+ *   alternative login methods to get an unique match</li>
+ *   <li>{@link CreateIdentityLinkTask} if search in register returned one match, user is uniquely identified</li>
+ * </ul>
  *
  * @author amarsalek
  * @author ckollmann
@@ -102,11 +120,8 @@ public class InitialSearchTask extends AbstractAuthServletTask {
       throws TaskExecutionException {
     try {
       final SimpleEidasData eidasData = convertEidasAttrToSimpleData();
-      storeSimpleEidasData(eidasData);
+      storeInitialEidasData(eidasData);
       step2RegisterSearchWithPersonIdentifier(executionContext, eidasData);
-    } catch (final TaskExecutionException e) {
-      log.error("Initial search failed", e);
-      throw e;
     } catch (final Exception e) {
       log.error("Initial search failed", e);
       throw new TaskExecutionException(pendingReq, "Initial search failed", e);
@@ -117,52 +132,41 @@ public class InitialSearchTask extends AbstractAuthServletTask {
       ExecutionContext executionContext, SimpleEidasData eidasData)
       throws TaskExecutionException, EaafStorageException, ManualFixNecessaryException {
     log.trace("Starting step2RegisterSearchWithPersonIdentifier");
-    String personIdentifier = eidasData.getPseudonym();
-    MergedRegisterSearchResult registerData = registerSearchService.searchWithPersonIdentifier(eidasData);
-    storeInitialRegisterResult(registerData);
-    int resultCount = registerData.getResultCount();
+    MergedRegisterSearchResult initialSearchResult = registerSearchService.searchWithPersonIdentifier(eidasData);
+    storeInitialRegisterResult(initialSearchResult);
+    int resultCount = initialSearchResult.getResultCount();
     if (resultCount == 0) {
-      step5CheckAndPerformCountrySpecificSearchIfPossible(executionContext, registerData, eidasData);
+      step5CountrySpecificSearchCheck(executionContext, initialSearchResult, eidasData);
     } else if (resultCount == 1) {
-      step3CheckRegisterUpdateNecessary(registerData, eidasData);
+      step3CheckRegisterUpdateNecessary(initialSearchResult, eidasData);
     } else {
-      throw new ManualFixNecessaryException(personIdentifier);
+      throw new ManualFixNecessaryException(eidasData);
     }
   }
 
-  private void step3CheckRegisterUpdateNecessary(MergedRegisterSearchResult registerData, SimpleEidasData eidasData)
+  private void step3CheckRegisterUpdateNecessary(
+      MergedRegisterSearchResult initialSearchResult, SimpleEidasData eidasData)
       throws ManualFixNecessaryException {
     log.trace("Starting step3CheckRegisterUpdateNecessary");
     try {
-      if (eidasData.equalsRegisterData(registerData)) {
-        String bpk = registerData.getBpk();
-        storeMatchingBpk(bpk);
+      if (eidasData.equalsRegisterData(initialSearchResult)) {
+        storeMatchingBpk(initialSearchResult.getBpk());
       } else {
-        step4UpdateRegisterData(registerData, eidasData);
+        // TODO Update "initialSearchResult" in register with "eidasData" from login not possible for now
+        storeMatchingBpk(initialSearchResult.getBpk());
       }
     } catch (WorkflowException | EaafStorageException e) {
       throw new ManualFixNecessaryException(eidasData);
     }
   }
 
-  private void step4UpdateRegisterData(MergedRegisterSearchResult registerData, SimpleEidasData eidasData)
-      throws WorkflowException, EaafStorageException {
-    log.trace("Starting step4UpdateRegisterData");
-    log.debug("Update {} with {}", registerData, eidasData);
-    //TODO wann rechtlich möglich?
-
-    String bpk = registerData.getBpk();
-    storeMatchingBpk(bpk);
-  }
-
-  private void step5CheckAndPerformCountrySpecificSearchIfPossible(
-      ExecutionContext executionContext, MergedRegisterSearchResult registerData,
-      SimpleEidasData eidasData)
+  private void step5CountrySpecificSearchCheck(
+      ExecutionContext executionContext, MergedRegisterSearchResult initialSearchResult, SimpleEidasData eidasData)
       throws TaskExecutionException, ManualFixNecessaryException, EaafStorageException {
     log.trace("Starting step5CheckAndPerformCountrySpecificSearchIfPossible");
     CountrySpecificDetailSearchProcessor specificHandler = findSpecificProcessor(eidasData);
     if (specificHandler != null) {
-      step6CountrySpecificSearch(executionContext, specificHandler, registerData, eidasData);
+      step6CountrySpecificSearch(executionContext, specificHandler, initialSearchResult, eidasData);
     } else {
       step8RegisterSearchWithMds(executionContext, eidasData);
     }
@@ -182,7 +186,7 @@ public class InitialSearchTask extends AbstractAuthServletTask {
 
   private void step6CountrySpecificSearch(ExecutionContext executionContext,
                                           CountrySpecificDetailSearchProcessor processor,
-                                          MergedRegisterSearchResult registerData,
+                                          MergedRegisterSearchResult initialSearchResult,
                                           SimpleEidasData eidasData)
       throws TaskExecutionException, ManualFixNecessaryException, EaafStorageException {
     log.trace("Starting step6CountrySpecificSearch");
@@ -191,57 +195,51 @@ public class InitialSearchTask extends AbstractAuthServletTask {
     if (resultCount == 0) {
       step8RegisterSearchWithMds(executionContext, eidasData);
     } else if (resultCount == 1) {
-      step7aKittProcess(registerData, countrySearchResult, eidasData);
+      String bpk = registerSearchService
+          .step7aKittProcess(initialSearchResult, countrySearchResult, eidasData, pendingReq);
+      storeMatchingBpk(bpk);
     } else {
       throw new ManualFixNecessaryException(eidasData);
     }
   }
 
-  private void step7aKittProcess(MergedRegisterSearchResult registerData,
-                                 MergedRegisterSearchResult countrySpecificDetailSearchResult,
-                                 SimpleEidasData eidasData)
-      throws TaskExecutionException, EaafStorageException {
-    log.trace("Starting step7aKittProcess");
-    String bpk = registerSearchService.step7aKittProcess(registerData, countrySpecificDetailSearchResult,
-        eidasData, pendingReq);
-    storeMatchingBpk(bpk);
-  }
-
   private void step8RegisterSearchWithMds(ExecutionContext executionContext, SimpleEidasData eidasData)
       throws EaafStorageException {
     log.trace("Starting step8RegisterSearchWithMds");
     MergedRegisterSearchResult registerData = registerSearchService.searchWithMds(eidasData);
     if (registerData.getResultCount() == 0) {
-      // TODO really the correct key to store data?
-      storeSimpleEidasData(eidasData);
       executionContext.put(TRANSITION_TO_CREATE_NEW_ERNP_ENTRY_TASK, true);
     } else {
+      storeFurtherRegisterResults(registerData);
       executionContext.put(TRANSITION_TO_GENERATE_OTHER_LOGIN_METHOD_GUI_TASK, true);
     }
   }
 
-  private void storeSimpleEidasData(SimpleEidasData eidasData) throws EaafStorageException {
-    getAuthProcessData().setGenericDataToSession(DATA_SIMPLE_EIDAS, eidasData);
+  private void storeInitialRegisterResult(MergedRegisterSearchResult registerData) throws EaafStorageException {
+    getAuthProcessDataWrapper().setGenericDataToSession(Constants.DATA_INITIAL_REGISTER_RESULT, registerData);
   }
 
-  private void storeInitialRegisterResult(MergedRegisterSearchResult registerData) throws EaafStorageException {
-    getAuthProcessData().setGenericDataToSession(DATA_INITIAL_REGISTER_RESULT, registerData);
+  private void storeFurtherRegisterResults(MergedRegisterSearchResult registerData) throws EaafStorageException {
+    getAuthProcessDataWrapper().setGenericDataToSession(Constants.DATA_FURTHER_REGISTER_RESULT, registerData);
+  }
+
+  private void storeInitialEidasData(SimpleEidasData eidasData) throws EaafStorageException {
+    getAuthProcessDataWrapper().setGenericDataToSession(Constants.DATA_SIMPLE_EIDAS, eidasData);
   }
 
   private void storeMatchingBpk(String bpk) throws EaafStorageException {
-    getAuthProcessData().setGenericDataToSession(DATA_RESULT_MATCHING_BPK, bpk);
+    getAuthProcessDataWrapper().setGenericDataToSession(Constants.DATA_RESULT_MATCHING_BPK, bpk);
   }
 
-  @NotNull
-  private AuthProcessDataWrapper getAuthProcessData() {
+  private AuthProcessDataWrapper getAuthProcessDataWrapper() {
     return pendingReq.getSessionData(AuthProcessDataWrapper.class);
   }
 
   @NotNull
   private SimpleEidasData convertEidasAttrToSimpleData()
       throws EidasAttributeException {
-    final ILightResponse eidasResponse = getAuthProcessData()
-        .getGenericDataFromSession(DATA_FULL_EIDAS_RESPONSE, ILightResponse.class);
+    final ILightResponse eidasResponse = getAuthProcessDataWrapper()
+        .getGenericDataFromSession(Constants.DATA_FULL_EIDAS_RESPONSE, ILightResponse.class);
     Map<String, Object> simpleMap = convertEidasAttrToSimpleMap(eidasResponse.getAttributes().getAttributeMap());
     return convertSimpleMapToSimpleData(simpleMap);
   }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveAustrianResidenceGuiResponseTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveAustrianResidenceGuiResponseTask.java
index d565c329..6d050dc1 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveAustrianResidenceGuiResponseTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveAustrianResidenceGuiResponseTask.java
@@ -31,6 +31,7 @@ import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.ManualFixNeces
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.WorkflowException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.RegisterSearchService;
 import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
+import at.gv.egiz.eaaf.core.exceptions.EaafStorageException;
 import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
 import at.gv.egiz.eaaf.core.impl.idp.auth.data.AuthProcessDataWrapper;
 import at.gv.egiz.eaaf.core.impl.idp.auth.modules.AbstractAuthServletTask;
@@ -46,12 +47,26 @@ import javax.servlet.http.HttpServletRequest;
 import javax.servlet.http.HttpServletResponse;
 import java.util.Enumeration;
 
-import static at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants.DATA_INITIAL_REGISTER_RESULT;
-import static at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants.DATA_SIMPLE_EIDAS;
 
 /**
  * Task receives the response of {@link GenerateAustrianResidenceGuiTask} and handles it.
  * This corresponds to Steps 17B, 18, 19 in the eIDAS Matching Concept.
+ * <p>
+ * Input:
+ * <ul>
+ *   <li>{@link Constants#DATA_SIMPLE_EIDAS} initial login data from user</li>
+ *   <li>{@link Constants#DATA_INITIAL_REGISTER_RESULT} results from search in registers with personIdentifier</li>
+ * </ul>
+ * Output:
+ * <ul>
+ *   <li>{@link Constants#DATA_RESULT_MATCHING_BPK} if one register result found</li>
+ * </ul>
+ * Transitions:
+ * <ul>
+ *   <li>{@link CreateNewErnpEntryTask}</li> if no results from search with residency data in registers
+ *   <li>{@link CreateIdentityLinkTask}</li> if one exact match between initial register search (with MDS) and results
+ *   from search with residency data in registers exists
+ * </ul>
  *
  * @author amarsalek
  * @author ckollmann
@@ -85,45 +100,68 @@ public class ReceiveAustrianResidenceGuiResponseTask extends AbstractAuthServlet
       throws TaskExecutionException {
     log.trace("Starting ReceiveAustrianResidenceGuiResponseTask");
     UserInput input = parseHtmlInput(request);
-    if (input.isFormerResidenceAvailable()) {
-      if (input.getStreet().isEmpty() || input.getCity().isEmpty() || input.getZipcode().isEmpty()) {
-        // form should ensure that mandatory fields are field => this should never happen
-        throw new TaskExecutionException(pendingReq, "Invalid user input", new InvalidUserInputException());
-      }
-      // TODO Also search with MDS?
-      MergedRegisterSearchResult result = registerSearchService
+    if (!input.isFormerResidenceAvailable()) {
+      moveToNextTask(executionContext);
+      return;
+    }
+    if (input.getStreet().isEmpty() || input.getCity().isEmpty() || input.getZipcode().isEmpty()) {
+      // HTML form should ensure that mandatory fields are set => this should never happen
+      throw new TaskExecutionException(pendingReq, "Invalid user input", new InvalidUserInputException());
+    }
+    // TODO Also search with MDS? But MDS Search has already happened?
+    try {
+      SimpleEidasData eidasData = getInitialEidasData();
+      MergedRegisterSearchResult residencyResult = registerSearchService
           .searchWithResidence(input.zipcode, input.city, input.street);
-      if (result.getResultCount() == 0) {
+      if (residencyResult.getResultCount() == 0) {
         moveToNextTask(executionContext);
-        return;
-      } else if (result.getResultCount() == 1) {
-        compareSearchResultWithInitialData(executionContext, result);
+      } else if (residencyResult.getResultCount() == 1) {
+        compareSearchResultWithInitialData(executionContext, residencyResult, eidasData);
       } else {
-        throw new TaskExecutionException(pendingReq, "Manual Fix necessary", new ManualFixNecessaryException("todo"));
+        throw new TaskExecutionException(pendingReq,
+            "Manual Fix necessary", new ManualFixNecessaryException(eidasData));
       }
-    } else {
-      moveToNextTask(executionContext);
+    } catch (EaafStorageException e) {
+      log.error("Search with residency data failed", e);
+      throw new TaskExecutionException(pendingReq, "Search with residency data failed", e);
     }
   }
 
-  private void compareSearchResultWithInitialData(ExecutionContext executionContext, MergedRegisterSearchResult result)
-      throws TaskExecutionException {
+  private void compareSearchResultWithInitialData(ExecutionContext executionContext,
+                                                  MergedRegisterSearchResult residencyResult, SimpleEidasData eidasData)
+      throws TaskExecutionException, EaafStorageException {
     try {
-      AuthProcessDataWrapper authProcessDataWrapper = pendingReq.getSessionData(AuthProcessDataWrapper.class);
-      MergedRegisterSearchResult initialSearchResult = authProcessDataWrapper
-          .getGenericDataFromSession(DATA_INITIAL_REGISTER_RESULT, MergedRegisterSearchResult.class);
-      SimpleEidasData simpleEidasData = authProcessDataWrapper
-          .getGenericDataFromSession(DATA_SIMPLE_EIDAS, SimpleEidasData.class);
-      if (simpleEidasData.equalsRegisterData(result)) {
-        registerSearchService.step7aKittProcess(initialSearchResult, result, simpleEidasData, pendingReq);
+      MergedRegisterSearchResult initialSearchResult = getInitialRegisterResult();
+      // TODO search "residencyResult" in "initialSearchResult"!?
+      if (eidasData.equalsRegisterData(residencyResult)) {
+        String bpk = registerSearchService
+            .step7aKittProcess(initialSearchResult, residencyResult, eidasData, pendingReq);
+        storeMatchingBpk(bpk);
       } else {
         moveToNextTask(executionContext);
       }
     } catch (WorkflowException e) {
-      throw new TaskExecutionException(pendingReq, "Search failed", new ManualFixNecessaryException("todo"));
+      throw new TaskExecutionException(pendingReq, "Search failed", new ManualFixNecessaryException(eidasData));
     }
   }
 
+  private SimpleEidasData getInitialEidasData() {
+    return getAuthProcessDataWrapper().getGenericDataFromSession(Constants.DATA_SIMPLE_EIDAS, SimpleEidasData.class);
+  }
+
+  private MergedRegisterSearchResult getInitialRegisterResult() {
+    return getAuthProcessDataWrapper().getGenericDataFromSession(Constants.DATA_INITIAL_REGISTER_RESULT,
+        MergedRegisterSearchResult.class);
+  }
+
+  private void storeMatchingBpk(String bpk) throws EaafStorageException {
+    getAuthProcessDataWrapper().setGenericDataToSession(Constants.DATA_RESULT_MATCHING_BPK, bpk);
+  }
+
+  private AuthProcessDataWrapper getAuthProcessDataWrapper() {
+    return pendingReq.getSessionData(AuthProcessDataWrapper.class);
+  }
+
   private void moveToNextTask(ExecutionContext executionContext) {
     // Later on, this should transition to Step 20
     executionContext.put(Constants.TRANSITION_TO_CREATE_NEW_ERNP_ENTRY_TASK, true);
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseTask.java
index 8c7815be..57531493 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseTask.java
@@ -37,6 +37,7 @@ import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.RegisterSearchSe
 import at.gv.egiz.eaaf.core.api.data.PvpAttributeDefinitions;
 import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
 import at.gv.egiz.eaaf.core.exceptions.EaafBuilderException;
+import at.gv.egiz.eaaf.core.exceptions.EaafStorageException;
 import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
 import at.gv.egiz.eaaf.core.impl.data.Pair;
 import at.gv.egiz.eaaf.core.impl.idp.auth.data.AuthProcessDataWrapper;
@@ -73,15 +74,30 @@ import java.io.IOException;
 import java.util.List;
 import java.util.Set;
 
-import static at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants.DATA_INITIAL_REGISTER_RESULT;
-import static at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants.DATA_SIMPLE_EIDAS;
 import static at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthConstants.MODULE_NAME_FOR_LOGGING;
 
 /**
  * Task that receives the SAML2 response from ID Austria system.
  * This corresponds to Step 15 in the eIDAS Matching Concept.
  *
+ * Input:
+ * <ul>
+ *   <li>{@link Constants#DATA_SIMPLE_EIDAS} initial login data from user</li>
+ *   <li>{@link Constants#DATA_INITIAL_REGISTER_RESULT} results from search in registers with personIdentifier</li>
+ * </ul>
+ * Output:
+ * <ul>
+ *   <li>{@link Constants#DATA_RESULT_MATCHING_BPK} if one register result found</li>
+ * </ul>
+ * Transitions:
+ * <ul>
+ *   <li>{@link GenerateAustrianResidenceGuiTask}</li> if no results in registers were found
+ *   <li>{@link CreateIdentityLinkTask}</li> if one exact match between initial register search (with MDS) data and
+ *   register search with MPS data exists
+ * </ul>
+ *
  * @author tlenz
+ * @author ckollmann
  */
 @Slf4j
 @Component("ReceiveMobilePhoneSignatureResponseTask")
@@ -108,6 +124,7 @@ public class ReceiveMobilePhoneSignatureResponseTask extends AbstractAuthServlet
   /**
    * Creates the new task, with autowired dependencies from Spring.
    */
+  @SuppressWarnings("SpringJavaInjectionPointsAutowiringInspection")
   public ReceiveMobilePhoneSignatureResponseTask(SamlVerificationEngine samlVerificationEngine,
                                                  RegisterSearchService registerSearchService,
                                                  IdAustriaClientAuthCredentialProvider credentialProvider,
@@ -146,22 +163,24 @@ public class ReceiveMobilePhoneSignatureResponseTask extends AbstractAuthServlet
        *
        */
 
-      AuthProcessDataWrapper authProcessData = pendingReq.getSessionData(AuthProcessDataWrapper.class);
-      MergedRegisterSearchResult initialSearchResult =
-          authProcessData.getGenericDataFromSession(DATA_INITIAL_REGISTER_RESULT, MergedRegisterSearchResult.class);
-      SimpleEidasData eidasData = authProcessData.getGenericDataFromSession(DATA_SIMPLE_EIDAS, SimpleEidasData.class);
-      String bpkZp = extractBpkZp(extractor, authProcessData, eidasData);
+      MergedRegisterSearchResult initialSearchResult = getInitialRegisterResult();
+      SimpleEidasData eidasData = getInitialEidasData();
+      String bpkZp = extractBpkZp(extractor, eidasData);
 
-      MergedRegisterSearchResult result = registerSearchService.searchWithBpkZp(bpkZp);
-      if (result.getResultCount() == 0) {
+      // TODO Hier ist wohl keine Register-Suche notwendig, denn das ergibt sicher einen Treffer
+      // TODO Soll: In den Ergebnissen aus Step8 matchen! Ãœber BPK matchen, und dann schauen, ob zumindest
+      //  Geburtsdatum passt
+      MergedRegisterSearchResult registerResult = registerSearchService.searchWithBpkZp(bpkZp);
+      if (registerResult.getResultCount() == 0) {
         executionContext.put(Constants.TRANSITION_TO_GENERATE_GUI_QUERY_AUSTRIAN_RESIDENCE_TASK, true);
         return;
-      } else if (result.getResultCount() == 1) {
-        String bpk = registerSearchService.step7aKittProcess(initialSearchResult, result, eidasData, pendingReq);
-        authProcessData.setGenericDataToSession(Constants.DATA_RESULT_MATCHING_BPK, bpk);
+      } else if (registerResult.getResultCount() == 1) {
+        String bpk = registerSearchService
+            .step7aKittProcess(initialSearchResult, registerResult, eidasData, pendingReq);
+        storeMatchingBpk(bpk);
         return;
-      } else if (result.getResultCount() > 1) {
-        throw new ManualFixNecessaryException("bpkZp: " + bpkZp);
+      } else if (registerResult.getResultCount() > 1) {
+        throw new ManualFixNecessaryException(eidasData);
       }
 
       // set NeedConsent to false, because user gives consent during authentication
@@ -192,16 +211,31 @@ public class ReceiveMobilePhoneSignatureResponseTask extends AbstractAuthServlet
   }
 
   private String extractBpkZp(AssertionAttributeExtractor extractor,
-                              AuthProcessDataWrapper authProcessData,
                               SimpleEidasData eidasData) throws EaafBuilderException, InvalidUserInputException {
-    SimpleMobileSignatureData simpleMobileSignatureData = getAuthDataFromInterfederation(extractor, authProcessData);
+    SimpleMobileSignatureData simpleMobileSignatureData = getAuthDataFromInterfederation(extractor);
     if (!simpleMobileSignatureData.equalsSimpleEidasData(eidasData)) {
-      //TODO User has cheated?
-      throw new InvalidUserInputException();
+      throw new InvalidUserInputException(); // user has cheated!?
     }
     return simpleMobileSignatureData.getBpk();
   }
 
+  private SimpleEidasData getInitialEidasData() {
+    return getAuthProcessDataWrapper().getGenericDataFromSession(Constants.DATA_SIMPLE_EIDAS, SimpleEidasData.class);
+  }
+
+  private MergedRegisterSearchResult getInitialRegisterResult() {
+    return getAuthProcessDataWrapper().getGenericDataFromSession(Constants.DATA_INITIAL_REGISTER_RESULT,
+        MergedRegisterSearchResult.class);
+  }
+
+  private void storeMatchingBpk(String bpk) throws EaafStorageException {
+    getAuthProcessDataWrapper().setGenericDataToSession(Constants.DATA_RESULT_MATCHING_BPK, bpk);
+  }
+
+  private AuthProcessDataWrapper getAuthProcessDataWrapper() {
+    return pendingReq.getSessionData(AuthProcessDataWrapper.class);
+  }
+
   @NotNull
   private InboundMessage decodeAndVerifyMessage(HttpServletRequest request, HttpServletResponse response,
                                                 IDecoder decoder, EaafUriCompare comparator) throws Exception {
@@ -303,8 +337,7 @@ public class ReceiveMobilePhoneSignatureResponseTask extends AbstractAuthServlet
     return null;
   }
 
-  private SimpleMobileSignatureData getAuthDataFromInterfederation(AssertionAttributeExtractor extractor,
-                                                                   AuthProcessDataWrapper authProcessData)
+  private SimpleMobileSignatureData getAuthDataFromInterfederation(AssertionAttributeExtractor extractor)
       throws EaafBuilderException {
     List<String> requiredAttributes = IdAustriaClientAuthConstants.DEFAULT_REQUIRED_PVP_ATTRIBUTE_NAMES;
     SimpleMobileSignatureData result = new SimpleMobileSignatureData();
@@ -329,10 +362,10 @@ public class ReceiveMobilePhoneSignatureResponseTask extends AbstractAuthServlet
         result.setDateOfBirth(extractor.getSingleAttributeValue(attrName));
       }
       if (PvpAttributeDefinitions.EID_CITIZEN_EIDAS_QAA_LEVEL_NAME.equals(attrName)) {
-        authProcessData.setQaaLevel(extractor.getSingleAttributeValue(attrName));
+        getAuthProcessDataWrapper().setQaaLevel(extractor.getSingleAttributeValue(attrName));
       }
     }
-    authProcessData.setIssueInstant(extractor.getAssertionIssuingDate());
+    getAuthProcessDataWrapper().setIssueInstant(extractor.getAssertionIssuingDate());
     return result;
   }
 
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveOtherLoginMethodGuiResponseTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveOtherLoginMethodGuiResponseTask.java
index 12eb7a83..b3c994c9 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveOtherLoginMethodGuiResponseTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveOtherLoginMethodGuiResponseTask.java
@@ -41,6 +41,21 @@ import java.util.Enumeration;
  * Handles user's selection from {@link GenerateOtherLoginMethodGuiTask}.
  * This corresponds to Steps 10, 14, 16 in the eIDAS Matching Concept.
  *
+ * Input:
+ * <ul>
+ *   <li>{@link Constants#DATA_SIMPLE_EIDAS} initial login data from user</li>
+ *   <li>{@link Constants#DATA_INITIAL_REGISTER_RESULT} results from search in registers with personIdentifier</li>
+ * </ul>
+ * Output:
+ * <ul>
+ *   <li>{@link Constants#DATA_RESULT_MATCHING_BPK} if one register result found</li>
+ * </ul>
+ * Transitions:
+ * <ul>
+ *   <li>{@link GenerateMobilePhoneSignatureRequestTask}</li> if selected by user
+ *   <li>{@link GenerateAustrianResidenceGuiTask}</li> if selected by user
+ * </ul>
+ *
  * @author amarsalek
  * @author ckollmann
  */
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eIDAS.Authentication.process.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eIDAS.Authentication.process.xml
index f60bb5f9..369af4c4 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eIDAS.Authentication.process.xml
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eIDAS.Authentication.process.xml
@@ -44,37 +44,39 @@
   <pd:Transition  from="initialRegisterSearch"
                   to="generateOtherLoginMethodGuiTask"
                   conditionExpression="ctx['TASK_GenerateOtherLoginMethodGuiTask']"/>
+  <pd:Transition  from="initialRegisterSearch"
+                  to="generateIdentityLink" />
 
   <pd:Transition  from="generateOtherLoginMethodGuiTask"
                   to="receiveOtherLoginMethodGuiResponseTask" />
   <pd:Transition  from="receiveOtherLoginMethodGuiResponseTask"
                   to="generateMobilePhoneSignatureRequestTask"
                   conditionExpression="ctx['TASK_GenerateMobilePhoneSignatureRequestTask']"/>
-  <pd:Transition  from="generateMobilePhoneSignatureRequestTask"
-                  to="receiveMobilePhoneSignatureResponseTask" />
-  <pd:Transition  from="receiveMobilePhoneSignatureResponseTask"
-                  to="createNewErnpEntryTask" />
-
+  <pd:Transition  from="receiveOtherLoginMethodGuiResponseTask"
+                  to="generateAustrianResidenceGuiTask"
+                  conditionExpression="ctx['TASK_GenerateAustrianResidenceGuiTask']"/>
   <!-- TRANSITION_TO_GENERATE_EIDAS_LOGIN -->
   <!-- <pd:Transition  from="receiveOtherLoginMethodGuiResponseTask" -->
   <!--                 to="generateAustrianResidenceGuiTask" -->
   <!--                 conditionExpression="ctx['TASK_TODO']"/> -->
 
-  <pd:Transition  from="receiveOtherLoginMethodGuiResponseTask"
+  <pd:Transition  from="generateMobilePhoneSignatureRequestTask"
+                  to="receiveMobilePhoneSignatureResponseTask" />
+
+  <pd:Transition  from="receiveMobilePhoneSignatureResponseTask"
                   to="generateAustrianResidenceGuiTask"
-                  conditionExpression="ctx['TASK_GenerateAustrianResidenceGuiTask']"/>
+                  conditionExpression="ctx['TASK_GenerateAustrianResidenceGuiTask']" />
+  <pd:Transition  from="receiveMobilePhoneSignatureResponseTask"
+                  to="generateIdentityLink" />
 
   <pd:Transition  from="generateAustrianResidenceGuiTask"
                   to="receiveAustrianResidenceGuiResponseTask" />
 
-  <pd:Transition  from="receiveAustrianResidenceGuiResponseTask"
-                  to="generateIdentityLink"
-                  conditionExpression="ctx['TASK_TODO']"/>
-
   <pd:Transition  from="receiveAustrianResidenceGuiResponseTask"
                   to="createNewErnpEntryTask"
-                  conditionExpression="ctx['TASK_TODO']"/>
-
+                  conditionExpression="ctx['TASK_CreateNewErnpEntryTask']"/>
+  <pd:Transition  from="receiveAustrianResidenceGuiResponseTask"
+                  to="generateIdentityLink"/>
 
   <pd:Transition  from="createNewErnpEntryTask"
                   to="generateIdentityLink" />
-- 
cgit v1.2.3


From c5d36685c294a383baecf4e12aaeda5be1f13529 Mon Sep 17 00:00:00 2001
From: Christian Kollmann <christian.kollmann@a-sit.at>
Date: Thu, 4 Mar 2021 14:32:20 +0100
Subject: Refactor ErnpData to make it immutable

---
 .../modules/auth/eidas/v2/dao/ErnbEidData.java     | 115 ---------------------
 .../modules/auth/eidas/v2/dao/ErnpEidData.java     |  55 ++++++++++
 .../eidas/v2/handler/AbstractEidProcessor.java     |  37 +++----
 .../eidas/v2/handler/INationalEidProcessor.java    |  16 +--
 .../v2/service/CcSpecificEidProcessingService.java |   4 +-
 .../service/ICcSpecificEidProcessingService.java   |  10 +-
 .../modules/auth/eidas/v2/szr/SzrClient.java       |  23 +++--
 .../eidas/v2/tasks/CreateIdentityLinkTask.java     |  12 +--
 .../modules/auth/eidas/v2/test/SzrClientTest.java  |  60 +++++------
 .../eidas/v2/test/SzrClientTestProduction.java     |  36 +++----
 .../EidasAttributePostProcessingTest.java          |  24 ++---
 11 files changed, 165 insertions(+), 227 deletions(-)
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/ErnbEidData.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/ErnpEidData.java

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/ErnbEidData.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/ErnbEidData.java
deleted file mode 100644
index b780d3e8..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/ErnbEidData.java
+++ /dev/null
@@ -1,115 +0,0 @@
-/*
- * Copyright 2020 A-SIT Plus GmbH
- * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
- * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
- *
- * Licensed under the EUPL, Version 1.2 or - as soon they will be approved by
- * the European Commission - subsequent versions of the EUPL (the "License");
- * You may not use this work except in compliance with the License.
- * You may obtain a copy of the License at:
- * https://joinup.ec.europa.eu/news/understanding-eupl-v12
- *
- * Unless required by applicable law or agreed to in writing, software
- * distributed under the License is distributed on an "AS IS" basis,
- * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
- * See the License for the specific language governing permissions and
- * limitations under the License.
- *
- * This product combines work with different licenses. See the "NOTICE" text
- * file for details on the various modules and licenses.
- * The "NOTICE" text file is part of the distribution. Any derivative works
- * that you distribute must include a readable copy of the "NOTICE" text file.
-*/
-
-package at.asitplus.eidas.specific.modules.auth.eidas.v2.dao;
-
-import java.text.SimpleDateFormat;
-
-import org.joda.time.DateTime;
-
-import at.gv.e_government.reference.namespace.persondata._20020228.PostalAddressType;
-
-public class ErnbEidData {
-
-  private String citizenCountryCode = null;
-
-  // MDS
-  private String pseudonym = null;
-  private String givenName = null;
-  private String familyName = null;
-  private DateTime dateOfBirth = null;
-
-  // additional attributes
-  private String placeOfBirth = null;
-  private String birthName = null;
-  private PostalAddressType address = null;
-
-  public String getCitizenCountryCode() {
-    return citizenCountryCode;
-  }
-
-  public void setCitizenCountryCode(String citizenCountryCode) {
-    this.citizenCountryCode = citizenCountryCode;
-  }
-
-  public String getPseudonym() {
-    return pseudonym;
-  }
-
-  public void setPseudonym(String pseudonym) {
-    this.pseudonym = pseudonym;
-  }
-
-  public String getGivenName() {
-    return givenName;
-  }
-
-  public void setGivenName(String givenName) {
-    this.givenName = givenName;
-  }
-
-  public String getFamilyName() {
-    return familyName;
-  }
-
-  public void setFamilyName(String familyName) {
-    this.familyName = familyName;
-  }
-
-  public DateTime getDateOfBirth() {
-    return dateOfBirth;
-  }
-
-  public void setDateOfBirth(DateTime dateOfBirth) {
-    this.dateOfBirth = dateOfBirth;
-  }
-
-  public String getPlaceOfBirth() {
-    return placeOfBirth;
-  }
-
-  public void setPlaceOfBirth(String placeOfBirth) {
-    this.placeOfBirth = placeOfBirth;
-  }
-
-  public String getBirthName() {
-    return birthName;
-  }
-
-  public void setBirthName(String birthName) {
-    this.birthName = birthName;
-  }
-
-  public PostalAddressType getAddress() {
-    return address;
-  }
-
-  public void setAddress(PostalAddressType address) {
-    this.address = address;
-  }
-
-  public String getFormatedDateOfBirth() {
-    return new SimpleDateFormat("yyyy-MM-dd").format(dateOfBirth.toDate());
-  }
-
-}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/ErnpEidData.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/ErnpEidData.java
new file mode 100644
index 00000000..137ef984
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/ErnpEidData.java
@@ -0,0 +1,55 @@
+/*
+ * Copyright 2020 A-SIT Plus GmbH
+ * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
+ * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
+ *
+ * Licensed under the EUPL, Version 1.2 or - as soon they will be approved by
+ * the European Commission - subsequent versions of the EUPL (the "License");
+ * You may not use this work except in compliance with the License.
+ * You may obtain a copy of the License at:
+ * https://joinup.ec.europa.eu/news/understanding-eupl-v12
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" basis,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ *
+ * This product combines work with different licenses. See the "NOTICE" text
+ * file for details on the various modules and licenses.
+ * The "NOTICE" text file is part of the distribution. Any derivative works
+ * that you distribute must include a readable copy of the "NOTICE" text file.
+*/
+
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.dao;
+
+import java.text.SimpleDateFormat;
+
+import lombok.Builder;
+import lombok.Data;
+import org.joda.time.DateTime;
+
+import at.gv.e_government.reference.namespace.persondata._20020228.PostalAddressType;
+
+@Data
+@Builder
+public class ErnpEidData {
+
+  private final String citizenCountryCode;
+
+  // MDS
+  private final String pseudonym;
+  private final String givenName;
+  private final String familyName;
+  private final DateTime dateOfBirth;
+
+  // additional attributes
+  private final String placeOfBirth;
+  private final String birthName;
+  private final PostalAddressType address;
+
+  public String getFormatedDateOfBirth() {
+    return dateOfBirth == null ? null : new SimpleDateFormat("yyyy-MM-dd").format(dateOfBirth.toDate());
+  }
+
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/AbstractEidProcessor.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/AbstractEidProcessor.java
index 734cf873..14deefa5 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/AbstractEidProcessor.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/AbstractEidProcessor.java
@@ -37,7 +37,7 @@ import org.springframework.lang.NonNull;
 
 import com.google.common.collect.ImmutableSortedSet;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.ErnbEidData;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.ErnpEidData;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidPostProcessingException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidasAttributeException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.EidasAttributeRegistry;
@@ -72,27 +72,22 @@ public abstract class AbstractEidProcessor implements INationalEidProcessor {
 
 
   @Override
-  public final ErnbEidData postProcess(Map<String, Object> eidasAttrMap) throws EidPostProcessingException,
+  public final ErnpEidData postProcess(Map<String, Object> eidasAttrMap) throws EidPostProcessingException,
       EidasAttributeException {
-    final ErnbEidData result = new ErnbEidData();
-
     final Object eIdentifierObj = eidasAttrMap.get(Constants.eIDAS_ATTR_PERSONALIDENTIFIER);
     final Triple<String, String, String> eIdentifier =
         EidasResponseUtils.parseEidasPersonalIdentifier((String) eIdentifierObj);
-    result.setCitizenCountryCode(eIdentifier.getFirst());
-
-    // MDS attributes
-    result.setPseudonym(processPseudonym(eidasAttrMap.get(Constants.eIDAS_ATTR_PERSONALIDENTIFIER)));
-    result.setFamilyName(processFamilyName(eidasAttrMap.get(Constants.eIDAS_ATTR_CURRENTFAMILYNAME)));
-    result.setGivenName(processGivenName(eidasAttrMap.get(Constants.eIDAS_ATTR_CURRENTGIVENNAME)));
-    result.setDateOfBirth(processDateOfBirth(eidasAttrMap.get(Constants.eIDAS_ATTR_DATEOFBIRTH)));
-
-    // additional attributes
-    result.setPlaceOfBirth(processPlaceOfBirth(eidasAttrMap.get(Constants.eIDAS_ATTR_PLACEOFBIRTH)));
-    result.setBirthName(processBirthName(eidasAttrMap.get(Constants.eIDAS_ATTR_BIRTHNAME)));
-    result.setAddress(processAddress(eidasAttrMap.get(Constants.eIDAS_ATTR_CURRENTADDRESS)));
-
-    return result;
+    return ErnpEidData.builder().citizenCountryCode(eIdentifier.getFirst())
+        // MDS attributes
+        .pseudonym(processPseudonym(eidasAttrMap.get(Constants.eIDAS_ATTR_PERSONALIDENTIFIER)))
+        .familyName(processFamilyName(eidasAttrMap.get(Constants.eIDAS_ATTR_CURRENTFAMILYNAME)))
+        .givenName(processGivenName(eidasAttrMap.get(Constants.eIDAS_ATTR_CURRENTGIVENNAME)))
+        .dateOfBirth(processDateOfBirth(eidasAttrMap.get(Constants.eIDAS_ATTR_DATEOFBIRTH)))
+        // additional attributes
+        .placeOfBirth(processPlaceOfBirth(eidasAttrMap.get(Constants.eIDAS_ATTR_PLACEOFBIRTH)))
+        .birthName(processBirthName(eidasAttrMap.get(Constants.eIDAS_ATTR_BIRTHNAME)))
+        .address(processAddress(eidasAttrMap.get(Constants.eIDAS_ATTR_CURRENTADDRESS)))
+        .build();
   }
 
 
@@ -275,12 +270,12 @@ public abstract class AbstractEidProcessor implements INationalEidProcessor {
       if (StringUtils.isNotEmpty(providerName)) {
         authnRequestBuilder.providerName(providerName);
         authnRequestBuilder.requesterId(providerName);
-        
+
       }
 
     }
   }
-  
+
   private void buildLevelOfAssurance(ISpConfiguration spConfig, Builder authnRequestBuilder) {
     // TODO: set matching mode if eIDAS ref. impl. support this method
 
@@ -303,7 +298,7 @@ public abstract class AbstractEidProcessor implements INationalEidProcessor {
 
     log.debug("Request eIdAS node with LoA: " + loa);
     authnRequestBuilder.levelOfAssurance(loa);
-    
+
   }
 
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/INationalEidProcessor.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/INationalEidProcessor.java
index 577efbcd..5b130e48 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/INationalEidProcessor.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/INationalEidProcessor.java
@@ -25,7 +25,7 @@ package at.asitplus.eidas.specific.modules.auth.eidas.v2.handler;
 
 import java.util.Map;
 
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.ErnbEidData;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.ErnpEidData;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidasAttributeException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidPostProcessingException;
 import at.gv.egiz.eaaf.core.api.IRequest;
@@ -36,7 +36,7 @@ public interface INationalEidProcessor {
 
   /**
    * Get a friendlyName of this post-processor implementation.
-   * 
+   *
    * @return
    */
   String getName();
@@ -46,34 +46,34 @@ public interface INationalEidProcessor {
    * If more than one Post-Processor implementations can handle the eID data, the
    * post-processor with the highest priority are selected. The Default-Processor
    * has priority '0'
-   * 
+   *
    * @return Priority of this handler
    */
   int getPriority();
 
   /**
    * Check if this postProcessor is sensitive for a specific country.
-   * 
+   *
    * @param countryCode of the eID data that should be processed
    * @return true if this implementation can handle the country, otherwise false
-   * 
+   *
    */
   boolean canHandle(String countryCode);
 
   /**
    * Post-Process eIDAS eID data into national format.
-   * 
+   *
    * @param eidasAttrMap Map of eIDAS attributes in format friendlyName and
    *                     attribute
    * @throws EidPostProcessingException In case of a post-processing error
    * @throws EidasAttributeException In case of an invalid eIDAS attribute
    */
-  ErnbEidData postProcess(Map<String, Object> eidasAttrMap) throws EidPostProcessingException,
+  ErnpEidData postProcess(Map<String, Object> eidasAttrMap) throws EidPostProcessingException,
       EidasAttributeException;
 
   /**
    * Pre-Process eIDAS Request to national requirements.
-   * 
+   *
    * @param pendingReq          current pending request
    * @param authnRequestBuilder eIDAS {@link ILightRequest} builder
    */
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/service/CcSpecificEidProcessingService.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/service/CcSpecificEidProcessingService.java
index 230d6052..c2f13aa6 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/service/CcSpecificEidProcessingService.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/service/CcSpecificEidProcessingService.java
@@ -40,7 +40,7 @@ import org.springframework.context.ApplicationContext;
 import org.springframework.stereotype.Service;
 
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.ErnbEidData;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.ErnpEidData;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidPostProcessingException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidasAttributeException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.INationalEidProcessor;
@@ -104,7 +104,7 @@ public class CcSpecificEidProcessingService implements ICcSpecificEidProcessingS
   }
 
   @Override
-  public ErnbEidData postProcess(Map<String, Object> eidasAttrMap) throws EidPostProcessingException,
+  public ErnpEidData postProcess(Map<String, Object> eidasAttrMap) throws EidPostProcessingException,
       EidasAttributeException {
     // extract citizen country from eIDAS unique identifier
     final Object eIdentifierObj = eidasAttrMap.get(Constants.eIDAS_ATTR_PERSONALIDENTIFIER);
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/service/ICcSpecificEidProcessingService.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/service/ICcSpecificEidProcessingService.java
index ebbc15e4..983830e3 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/service/ICcSpecificEidProcessingService.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/service/ICcSpecificEidProcessingService.java
@@ -25,7 +25,7 @@ package at.asitplus.eidas.specific.modules.auth.eidas.v2.service;
 
 import java.util.Map;
 
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.ErnbEidData;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.ErnpEidData;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidasAttributeException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidPostProcessingException;
 import at.gv.egiz.eaaf.core.api.IRequest;
@@ -36,20 +36,20 @@ public interface ICcSpecificEidProcessingService {
 
   /**
    * Post-process eIDAS eID attributes into national format.
-   * 
+   *
    * @param eidasAttrMap Map of eIDAS attributes in format friendlyName and
    *                     attribute
-   * 
+   *
    * @return eID attributes for SZR request
    * @throws EidPostProcessingException In case of a post-processing error
    * @throws EidasAttributeException In case of an invalid eIDAS attribute value
    */
-  ErnbEidData postProcess(Map<String, Object> eidasAttrMap) throws EidPostProcessingException,
+  ErnpEidData postProcess(Map<String, Object> eidasAttrMap) throws EidPostProcessingException,
       EidasAttributeException;
 
   /**
    * Pre Process eIDAS request into national requirements.
-   * 
+   *
    * @param selectedCC          Citizen Country from selection
    * @param pendingReq          current pending request
    * @param authnRequestBuilder eIDAS {@link ILightRequest} builder
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/szr/SzrClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/szr/SzrClient.java
index 1f5837d6..684451ed 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/szr/SzrClient.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/szr/SzrClient.java
@@ -78,7 +78,7 @@ import com.fasterxml.jackson.core.JsonProcessingException;
 import com.fasterxml.jackson.databind.ObjectMapper;
 
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.ErnbEidData;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.ErnpEidData;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.SzrCommunicationException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.LoggingHandler;
 import at.gv.egiz.eaaf.core.api.data.PvpAttributeDefinitions;
@@ -116,7 +116,7 @@ public class SzrClient {
   private static final String JOSE_HEADER_USERCERTPINNING_TYPE = "urn:at.gv.eid:bindtype";
   private static final String JOSE_HEADER_USERCERTPINNING_EIDASBIND = "urn:at.gv.eid:eidasBind";
   public static final String ATTR_NAME_MDS = "urn:eidgvat:mds";
-  
+
   @Autowired
   private IConfiguration basicConfig;
 
@@ -234,6 +234,9 @@ public class SzrClient {
 
     final String resp;
     try {
+      //TODO wirklich immer "insertERnP=true"?
+      // wenn insertErnP=false dann returns vsz oder fehler
+      // wenn insertErnp = true dann returns vsz, ggf vom neuen Eintrag
       resp = this.szr.getStammzahlEncrypted(personInfo, true);
     } catch (SZRException_Exception e) {
       throw new SzrCommunicationException("ernb.02", new Object[]{e.getMessage()}, e);
@@ -258,15 +261,15 @@ public class SzrClient {
    * @throws SzrCommunicationException In case of a SZR error
    */
   public String getEidsaBind(final String vsz, final String bindingPubKey, final String eidStatus,
-      ErnbEidData eidData)throws SzrCommunicationException {
+      ErnpEidData eidData)throws SzrCommunicationException {
 
     final Map<String, Object> eidsaBindMap = new HashMap<>();
     eidsaBindMap.put(ATTR_NAME_VSZ, vsz);
     eidsaBindMap.put(ATTR_NAME_STATUS, eidStatus);
     eidsaBindMap.put(ATTR_NAME_PUBKEYS, Arrays.asList(bindingPubKey));
     eidsaBindMap.put(PvpAttributeDefinitions.EID_ISSUING_NATION_NAME, eidData.getCitizenCountryCode());
-    injectMdsIfAvailableAndActive(eidsaBindMap, eidData);        
-    
+    injectMdsIfAvailableAndActive(eidsaBindMap, eidData);
+
     try {
       final String serializedEidasBind = mapper.writeValueAsString(eidsaBindMap);
       final SignContent req = new SignContent();
@@ -493,19 +496,19 @@ public class SzrClient {
 
   }
 
-  private void injectMdsIfAvailableAndActive(Map<String, Object> eidsaBindMap, ErnbEidData eidData) {
+  private void injectMdsIfAvailableAndActive(Map<String, Object> eidsaBindMap, ErnpEidData eidData) {
     if (basicConfig.getBasicConfigurationBoolean(
         Constants.CONIG_PROPS_EIDAS_SZRCLIENT_SET_MDS_TO_EIDASBIND, false)) {
       log.info("Injecting MDS into eidasBind ... ");
-      final Map<String, Object> mds = new HashMap<>();      
+      final Map<String, Object> mds = new HashMap<>();
       mds.put(PvpAttributeDefinitions.PRINCIPAL_NAME_NAME, eidData.getFamilyName());
       mds.put(PvpAttributeDefinitions.GIVEN_NAME_NAME, eidData.getGivenName());
-      mds.put(PvpAttributeDefinitions.BIRTHDATE_NAME, eidData.getFormatedDateOfBirth());     
+      mds.put(PvpAttributeDefinitions.BIRTHDATE_NAME, eidData.getFormatedDateOfBirth());
       eidsaBindMap.put(ATTR_NAME_MDS, mds);
-      
+
     }
   }
-  
+
   private byte[] sourceToByteArray(Source result) throws TransformerException {
     final TransformerFactory factory = TransformerFactory.newInstance();
     factory.setFeature(XMLConstants.FEATURE_SECURE_PROCESSING, true);
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateIdentityLinkTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateIdentityLinkTask.java
index 65e9028f..d6fdd350 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateIdentityLinkTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateIdentityLinkTask.java
@@ -47,7 +47,7 @@ import com.google.common.collect.ImmutableSet;
 import at.asitplus.eidas.specific.connector.MsConnectorEventCodes;
 import at.asitplus.eidas.specific.connector.MsEidasNodeConstants;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.ErnbEidData;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.ErnpEidData;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidasAttributeException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.SzrCommunicationException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.AuthBlockSigningService;
@@ -126,7 +126,7 @@ public class CreateIdentityLinkTask extends AbstractAuthServletTask {
           eidasResponse.getAttributes().getAttributeMap());
 
       // post-process eIDAS attributes
-      final ErnbEidData eidData = eidPostProcessor.postProcess(simpleAttrMap);
+      final ErnpEidData eidData = eidPostProcessor.postProcess(simpleAttrMap);
 
       // write MDS into technical log and revision log
       writeMdsLogInformation(eidData);
@@ -223,7 +223,7 @@ public class CreateIdentityLinkTask extends AbstractAuthServletTask {
     }
   }
 
-  private void writeExtendedRevisionLogEntry(Map<String, Object> simpleAttrMap, ErnbEidData eidData) {
+  private void writeExtendedRevisionLogEntry(Map<String, Object> simpleAttrMap, ErnpEidData eidData) {
     // write ERnB input-data into revision-log
     if (basicConfig.getBasicConfigurationBoolean(
         Constants.CONIG_PROPS_EIDAS_SZRCLIENT_WORKAROUND_REVISIONLOGDATASTORE_ACTIVE, false)) {
@@ -234,7 +234,7 @@ public class CreateIdentityLinkTask extends AbstractAuthServletTask {
     }
   }
 
-  private PersonInfoType generateSzrRequest(ErnbEidData eidData) {
+  private PersonInfoType generateSzrRequest(ErnpEidData eidData) {
     log.debug("Starting connecting SZR Gateway");
     final PersonInfoType personInfo = new PersonInfoType();
     final PersonNameType personName = new PersonNameType();
@@ -419,7 +419,7 @@ public class CreateIdentityLinkTask extends AbstractAuthServletTask {
     return result;
   }
 
-  private void writeMdsLogInformation(ErnbEidData eidData) {
+  private void writeMdsLogInformation(ErnpEidData eidData) {
     // log MDS and country code into technical log
     if (basicConfig
         .getBasicConfigurationBoolean(MsEidasNodeConstants.PROP_CONFIG_TECHNICALLOG_WRITE_MDS_INTO_TECH_LOG, false)) {
@@ -458,7 +458,7 @@ public class CreateIdentityLinkTask extends AbstractAuthServletTask {
    * @throws IOException In case of an IDL processing error
    * @throws EaafException In case of a bPK generation error
    */
-  private SzrResultHolder createDummyIdentityLinkForTestDeployment(ErnbEidData eidData)
+  private SzrResultHolder createDummyIdentityLinkForTestDeployment(ErnpEidData eidData)
       throws ParserConfigurationException, SAXException, IOException, EaafException {
     log.warn("SZR-Dummy IS ACTIVE! IdentityLink is NOT VALID!!!!");
     // create fake IdL
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/SzrClientTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/SzrClientTest.java
index cf4ed95c..208a008b 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/SzrClientTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/SzrClientTest.java
@@ -67,7 +67,7 @@ import com.skjolberg.mockito.soap.SoapServiceRule;
 
 import at.asitplus.eidas.specific.connector.test.config.dummy.MsConnectorDummyConfigMap;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.ErnbEidData;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.ErnpEidData;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidasSAuthenticationException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.SzrCommunicationException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.szr.SzrClient;
@@ -103,7 +103,7 @@ public class SzrClientTest {
   @Autowired MsConnectorDummyConfigMap basicConfig;
 
   private static ObjectMapper mapper = new ObjectMapper();
-  
+
   private static final String givenName = "Franz";
   private static final String familyName = "Mustermann";
   private static final String dateOfBirth = "1989-05-05";
@@ -111,7 +111,7 @@ public class SzrClientTest {
   private static final String DUMMY_TARGET = EaafConstants.URN_PREFIX_CDID + "ZP";
 
   private SZR szrMock = null;
-  ErnbEidData eidData = null;
+  ErnpEidData eidData = null;
 
   @Rule
   public SoapServiceRule soap = SoapServiceRule.newInstance();
@@ -125,16 +125,16 @@ public class SzrClientTest {
       szrMock = soap.mock(SZR.class, "http://localhost:1234/demoszr");
 
     }
-    
-    eidData = new ErnbEidData();
-    eidData.setFamilyName(familyName);
-    eidData.setGivenName(givenName);
-    eidData.setDateOfBirth(new DateTime());
-    eidData.setCitizenCountryCode("IS");
-    eidData.setPseudonym("1234sdgsdfg56789ABCDEF");
-    
+
+    eidData = ErnpEidData.builder()
+        .familyName(familyName)
+        .givenName(givenName)
+        .dateOfBirth(new DateTime())
+        .citizenCountryCode("IS")
+        .pseudonym("1234sdgsdfg56789ABCDEF").build();
+
     basicConfig.putConfigValue("eidas.ms.auth.eIDAS.szrclient.eidasbind.mds.inject", "false");
-    
+
   }
 
 
@@ -181,40 +181,40 @@ public class SzrClientTest {
 
     Assert.assertNotNull("bcBind is null", bcBind);
     Assert.assertEquals("bcBind not match", result1.getValue(), bcBind);
-    
+
   }
 
   @Test
   public void eidasBindNull() throws SZRException_Exception {
     when(szrMock.signContent(any(), anyList(), anyList())).thenReturn(null);
-    
-    try {      
+
+    try {
       szrClient
           .getEidsaBind(RandomStringUtils.randomAlphabetic(10), RandomStringUtils.randomAlphabetic(10),
                      RandomStringUtils.randomAlphabetic(10), eidData);
     } catch (SzrCommunicationException e) {
       Assert.assertTrue("Not correct error", e.getMessage().contains("ernb.01"));
-      
-    }    
+
+    }
   }
-  
+
   @Test
   public void eidasBindInvalidResponse() throws SZRException_Exception {
     final SignContentEntry result2 = new SignContentEntry();
     final SignContentResponseType content1 = new SignContentResponseType();
     content1.getOut().add(result2);
     when(szrMock.signContent(any(), anyList(), anyList())).thenReturn(content1);
-    
+
     try {
       szrClient
           .getEidsaBind(RandomStringUtils.randomAlphabetic(10), RandomStringUtils.randomAlphabetic(10),
                      RandomStringUtils.randomAlphabetic(10), eidData);
     } catch (SzrCommunicationException e) {
       Assert.assertTrue("Not correct error", e.getMessage().contains("ernb.01"));
-      
+
     }
   }
-  
+
   public void eidasBindEmptyResponse() throws SZRException_Exception {
     final SignContentEntry result2 = new SignContentEntry();
     final SignContentResponseType content1 = new SignContentResponseType();
@@ -222,19 +222,19 @@ public class SzrClientTest {
     result2.setKey("bcBindReq");
     result2.setValue("");
     when(szrMock.signContent(any(), anyList(), anyList())).thenReturn(content1);
-    
+
     try {
       szrClient
           .getEidsaBind(RandomStringUtils.randomAlphabetic(10), RandomStringUtils.randomAlphabetic(10),
                      RandomStringUtils.randomAlphabetic(10), eidData);
     } catch (SzrCommunicationException e) {
       Assert.assertTrue("Not correct error", e.getMessage().contains("ernb.01"));
-      
-    }    
+
+    }
   }
-  
+
   @Test
-  public void eidasBindValid() throws SZRException_Exception, SzrCommunicationException, JsonMappingException, 
+  public void eidasBindValid() throws SZRException_Exception, SzrCommunicationException, JsonMappingException,
       JsonProcessingException, JoseException {
     final SignContentResponse szrResponse = new SignContentResponse();
     final SignContentEntry result1 = new SignContentEntry();
@@ -253,14 +253,14 @@ public class SzrClientTest {
 
     Assert.assertNotNull("bcBind is null", bcBind);
     Assert.assertEquals("bcBind not match", result1.getValue(), bcBind);
-       
+
   }
 
   @Test
-  public void eidasBindValidWithMds() throws SZRException_Exception, SzrCommunicationException, JoseException, 
+  public void eidasBindValidWithMds() throws SZRException_Exception, SzrCommunicationException, JoseException,
       JsonMappingException, JsonProcessingException {
     basicConfig.putConfigValue("eidas.ms.auth.eIDAS.szrclient.eidasbind.mds.inject", "true");
-    
+
     final SignContentResponse szrResponse = new SignContentResponse();
     final SignContentEntry result1 = new SignContentEntry();
     final SignContentResponseType content = new SignContentResponseType();
@@ -280,7 +280,7 @@ public class SzrClientTest {
     Assert.assertEquals("bcBind not match", result1.getValue(), bcBind);
 
   }
-  
+
   @Test
   public void getIdentityLinkRawModeValidResponse()
       throws SZRException_Exception, EaafParserException, NoSuchProviderException, IOException, InvalidKeyException,
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/SzrClientTestProduction.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/SzrClientTestProduction.java
index 1e7ff369..eff56ffd 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/SzrClientTestProduction.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/SzrClientTestProduction.java
@@ -48,7 +48,7 @@ import org.springframework.util.Base64Utils;
 import org.w3c.dom.Element;
 
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.ErnbEidData;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.ErnpEidData;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidasSAuthenticationException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.SzrCommunicationException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.szr.SzrClient;
@@ -98,32 +98,32 @@ public class SzrClientTestProduction {
   }
 
   @Test
-  public void getVsz() throws SzrCommunicationException, EidasSAuthenticationException {    
-    String vsz = szrClient.getEncryptedStammzahl(getPersonInfo());   
+  public void getVsz() throws SzrCommunicationException, EidasSAuthenticationException {
+    String vsz = szrClient.getEncryptedStammzahl(getPersonInfo());
     Assert.assertNotNull("vsz", vsz);
-        
+
   }
 
   @Test
-  public void getEidasBind() throws SzrCommunicationException, EidasSAuthenticationException {    
+  public void getEidasBind() throws SzrCommunicationException, EidasSAuthenticationException {
     String vsz = RandomStringUtils.randomAlphanumeric(10);
     String bindingPubKey = Base64.toBase64String(RandomStringUtils.random(20).getBytes());
     String eidStatus = "urn:eidgvat:eid.status.eidas";
-    ErnbEidData eidData = new ErnbEidData();
-    eidData.setFamilyName(familyName);
-    eidData.setGivenName(givenName);
-    eidData.setDateOfBirth(new DateTime());
-    eidData.setCitizenCountryCode("IS");
-    eidData.setPseudonym("1234sdgsdfg56789ABCDEF");
-    
-    
-    String eidasBind = szrClient.getEidsaBind(vsz, bindingPubKey, eidStatus, eidData);   
-    
+    ErnpEidData eidData = ErnpEidData.builder()
+        .familyName(familyName)
+        .givenName(givenName)
+        .dateOfBirth(new DateTime())
+        .citizenCountryCode("IS")
+        .pseudonym("1234sdgsdfg56789ABCDEF").build();
+
+
+    String eidasBind = szrClient.getEidsaBind(vsz, bindingPubKey, eidStatus, eidData);
+
     Assert.assertNotNull("eidasBind", eidasBind);
-        
+
   }
-  
-  
+
+
   @Test
   public void getIdentityLinkRawMode() throws SZRException_Exception, EaafParserException,
       NoSuchProviderException, IOException, InvalidKeyException, EidasSAuthenticationException {
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/validation/EidasAttributePostProcessingTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/validation/EidasAttributePostProcessingTest.java
index 9bb51cd9..381406d2 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/validation/EidasAttributePostProcessingTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/validation/EidasAttributePostProcessingTest.java
@@ -41,7 +41,7 @@ import org.springframework.test.context.ContextConfiguration;
 import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
 
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.ErnbEidData;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.ErnpEidData;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.CcSpecificEidProcessingService;
 
 @RunWith(SpringJUnit4ClassRunner.class)
@@ -116,7 +116,7 @@ public class EidasAttributePostProcessingTest {
 
   /**
    * jUnit class initializer.
-   * 
+   *
    * @throws IOException In case of an error
    */
   @BeforeClass
@@ -129,7 +129,7 @@ public class EidasAttributePostProcessingTest {
   @Test
   public void deWithHexLowerCase() throws Exception {
     try {
-      final ErnbEidData result = postProcessor.postProcess(
+      final ErnpEidData result = postProcessor.postProcess(
           generateInputData(
               P1_eIDASID,
               P1_FAMILYNAME,
@@ -156,7 +156,7 @@ public class EidasAttributePostProcessingTest {
   @Test
   public void deWithHexMixedCase() throws Exception {
     try {
-      final ErnbEidData result = postProcessor.postProcess(
+      final ErnpEidData result = postProcessor.postProcess(
           generateInputData(
               P3_eIDASID,
               P3_FAMILYNAME,
@@ -183,7 +183,7 @@ public class EidasAttributePostProcessingTest {
   @Test
   public void deWithHexUpperCase() throws Exception {
     try {
-      final ErnbEidData result = postProcessor.postProcess(
+      final ErnpEidData result = postProcessor.postProcess(
           generateInputData(
               P4_eIDASID,
               P4_FAMILYNAME,
@@ -270,7 +270,7 @@ public class EidasAttributePostProcessingTest {
   @Test
   public void eeTestCase() throws Exception {
     try {
-      final ErnbEidData result = postProcessor.postProcess(
+      final ErnpEidData result = postProcessor.postProcess(
           generateInputData(
               P2_eIDASID,
               P2_FAMILYNAME,
@@ -297,7 +297,7 @@ public class EidasAttributePostProcessingTest {
   @Test
   public void eeTestFamilyNameMissingCase() throws Exception {
     try {
-      final ErnbEidData result = postProcessor.postProcess(
+      final ErnpEidData result = postProcessor.postProcess(
           generateInputData(
               P2_eIDASID,
               null,
@@ -326,7 +326,7 @@ public class EidasAttributePostProcessingTest {
   @Test
   public void eeTestGivenNameMissingCase() throws Exception {
     try {
-      final ErnbEidData result = postProcessor.postProcess(
+      final ErnpEidData result = postProcessor.postProcess(
           generateInputData(
               P2_eIDASID,
               P2_FAMILYNAME,
@@ -355,7 +355,7 @@ public class EidasAttributePostProcessingTest {
   @Test
   public void eeTestDateOfBirthMissingCase() throws Exception {
     try {
-      final ErnbEidData result = postProcessor.postProcess(
+      final ErnpEidData result = postProcessor.postProcess(
           generateInputData(
               P2_eIDASID,
               P2_FAMILYNAME,
@@ -384,7 +384,7 @@ public class EidasAttributePostProcessingTest {
   @Test
   public void eeTestIdMissingCase() throws Exception {
     try {
-      final ErnbEidData result = postProcessor.postProcess(
+      final ErnpEidData result = postProcessor.postProcess(
           generateInputData(
               null,
               P2_FAMILYNAME,
@@ -423,8 +423,8 @@ public class EidasAttributePostProcessingTest {
 
   }
 
-  private void validate(ErnbEidData result, String id, String familyName, String givenName,
-      DateTime dateOfBirth, String placeOfBirth, String birthName) {
+  private void validate(ErnpEidData result, String id, String familyName, String givenName,
+                        DateTime dateOfBirth, String placeOfBirth, String birthName) {
     if (!result.getPseudonym().equals(id)) {
       fail(result.getPseudonym() + "is not equal to " + id);
     }
-- 
cgit v1.2.3


From 20fcdf7cd830af9f23645c71f536af95418ad1be Mon Sep 17 00:00:00 2001
From: Christian Kollmann <christian.kollmann@a-sit.at>
Date: Thu, 4 Mar 2021 15:04:08 +0100
Subject: Refactor SimpleEidasData to make it immutable

---
 .../modules/auth/eidas/v2/dao/SimpleEidasData.java | 22 +++++++++---------
 .../auth/eidas/v2/tasks/InitialSearchTask.java     | 27 +++++++++++-----------
 ...eceiveAustrianResidenceGuiResponseTaskTest.java | 11 +++++----
 ...eceiveMobilePhoneSignatureResponseTaskTest.java | 23 +++++++++---------
 4 files changed, 41 insertions(+), 42 deletions(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleEidasData.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleEidasData.java
index f60a9906..748994bb 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleEidasData.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleEidasData.java
@@ -26,28 +26,28 @@ package at.asitplus.eidas.specific.modules.auth.eidas.v2.dao;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.WorkflowException;
 import at.gv.e_government.reference.namespace.persondata._20020228.PostalAddressType;
 import lombok.AllArgsConstructor;
+import lombok.Builder;
 import lombok.Data;
 import lombok.NoArgsConstructor;
 import org.apache.commons.lang3.builder.EqualsBuilder;
 
 @Data
-@AllArgsConstructor
-@NoArgsConstructor
+@Builder
 public class SimpleEidasData {
 
-  private String citizenCountryCode;
+  private final String citizenCountryCode;
 
   // MDS
-  private String pseudonym;
-  private String givenName;
-  private String familyName;
-  private String dateOfBirth;
+  private final String pseudonym;
+  private final String givenName;
+  private final String familyName;
+  private final String dateOfBirth;
 
   // additional attributes
-  private String placeOfBirth;
-  private String birthName;
-  private PostalAddressType address;
-  private String taxNumber;
+  private final String placeOfBirth;
+  private final String birthName;
+  private final PostalAddressType address;
+  private final String taxNumber;
 
   /**
    * Compares the register result with the eidas data.
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
index d7bec42b..89b5444f 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
@@ -246,23 +246,22 @@ public class InitialSearchTask extends AbstractAuthServletTask {
 
   private SimpleEidasData convertSimpleMapToSimpleData(Map<String, Object> eidasAttrMap)
       throws EidasAttributeException {
-    SimpleEidasData result = new SimpleEidasData();
-    result.setCitizenCountryCode(EidasResponseUtils.processCountryCode(
-        eidasAttrMap.get(eIDAS_ATTR_PERSONALIDENTIFIER)));
-    // MDS attributes
-    result.setPseudonym(EidasResponseUtils.processPseudonym(eidasAttrMap.get(eIDAS_ATTR_PERSONALIDENTIFIER)));
-    result.setFamilyName(EidasResponseUtils.processFamilyName(eidasAttrMap.get(eIDAS_ATTR_CURRENTFAMILYNAME)));
-    result.setGivenName(EidasResponseUtils.processGivenName(eidasAttrMap.get(eIDAS_ATTR_CURRENTGIVENNAME)));
-    result.setDateOfBirth(EidasResponseUtils.processDateOfBirthToString(eidasAttrMap.get(eIDAS_ATTR_DATEOFBIRTH)));
-    // additional attributes
-    result.setPlaceOfBirth(EidasResponseUtils.processPlaceOfBirth(eidasAttrMap.get(eIDAS_ATTR_PLACEOFBIRTH)));
-    result.setBirthName(EidasResponseUtils.processBirthName(eidasAttrMap.get(eIDAS_ATTR_BIRTHNAME)));
-    result.setAddress(EidasResponseUtils.processAddress(eidasAttrMap.get(eIDAS_ATTR_CURRENTADDRESS)));
+    SimpleEidasData.SimpleEidasDataBuilder builder = SimpleEidasData.builder()
+        .citizenCountryCode(EidasResponseUtils.processCountryCode(eidasAttrMap.get(eIDAS_ATTR_PERSONALIDENTIFIER)))
+        // MDS attributes
+        .pseudonym(EidasResponseUtils.processPseudonym(eidasAttrMap.get(eIDAS_ATTR_PERSONALIDENTIFIER)))
+        .familyName(EidasResponseUtils.processFamilyName(eidasAttrMap.get(eIDAS_ATTR_CURRENTFAMILYNAME)))
+        .givenName(EidasResponseUtils.processGivenName(eidasAttrMap.get(eIDAS_ATTR_CURRENTGIVENNAME)))
+        .dateOfBirth(EidasResponseUtils.processDateOfBirthToString(eidasAttrMap.get(eIDAS_ATTR_DATEOFBIRTH)))
+        // additional attributes
+        .placeOfBirth(EidasResponseUtils.processPlaceOfBirth(eidasAttrMap.get(eIDAS_ATTR_PLACEOFBIRTH)))
+        .birthName(EidasResponseUtils.processBirthName(eidasAttrMap.get(eIDAS_ATTR_BIRTHNAME)))
+        .address(EidasResponseUtils.processAddress(eidasAttrMap.get(eIDAS_ATTR_CURRENTADDRESS)));
     if (eidasAttrMap.containsKey(eIDAS_ATTR_TAXREFERENCE)) {
-      result.setTaxNumber(EidasResponseUtils.processTaxReference(eidasAttrMap.get(eIDAS_ATTR_TAXREFERENCE)));
+      builder.taxNumber(EidasResponseUtils.processTaxReference(eidasAttrMap.get(eIDAS_ATTR_TAXREFERENCE)));
     }
     //TODO other additional attributes
-    return result;
+    return builder.build();
   }
 
   private Map<String, Object> convertEidasAttrToSimpleMap(
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveAustrianResidenceGuiResponseTaskTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveAustrianResidenceGuiResponseTaskTest.java
index 38693f49..d9405251 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveAustrianResidenceGuiResponseTaskTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveAustrianResidenceGuiResponseTaskTest.java
@@ -175,11 +175,12 @@ public class ReceiveAustrianResidenceGuiResponseTaskTest {
 
   @NotNull
   private SimpleEidasData setupEidasData() throws EaafStorageException {
-    SimpleEidasData result = new SimpleEidasData();
-    result.setPseudonym(RandomStringUtils.randomAlphabetic(8));
-    result.setFamilyName(RandomStringUtils.randomAlphabetic(8));
-    result.setGivenName(RandomStringUtils.randomAlphabetic(8));
-    result.setDateOfBirth("1970-01-01");
+    SimpleEidasData result = SimpleEidasData.builder()
+        .pseudonym(RandomStringUtils.randomAlphabetic(8))
+        .familyName(RandomStringUtils.randomAlphabetic(8))
+        .givenName(RandomStringUtils.randomAlphabetic(8))
+        .dateOfBirth("1970-01-01")
+        .build();
     AuthProcessDataWrapper authProcessDataWrapper = pendingReq.getSessionData(AuthProcessDataWrapper.class);
     authProcessDataWrapper.setGenericDataToSession(Constants.DATA_SIMPLE_EIDAS, result);
     return result;
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveMobilePhoneSignatureResponseTaskTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveMobilePhoneSignatureResponseTaskTest.java
index 01688214..77b87264 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveMobilePhoneSignatureResponseTaskTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveMobilePhoneSignatureResponseTaskTest.java
@@ -314,8 +314,9 @@ public class ReceiveMobilePhoneSignatureResponseTaskTest {
     setupMetadataResolver();
     initResponse("/data/Response_with_EID.xml", true);
     AuthProcessDataWrapper authProcessData = pendingReq.getSessionData(AuthProcessDataWrapper.class);
-    SimpleEidasData eidData = createEidasDataMatchingToSamlResponse();
-    eidData.setFamilyName(eidData.getFamilyName() + "notmatching");
+    SimpleEidasData eidData = createEidasDataMatchingToSamlResponse()
+        .familyName("notmatching")
+        .build();
     authProcessData.setGenericDataToSession(Constants.DATA_SIMPLE_EIDAS, eidData);
 
     TaskExecutionException e = assertThrows(TaskExecutionException.class,
@@ -331,7 +332,7 @@ public class ReceiveMobilePhoneSignatureResponseTaskTest {
     setupMetadataResolver();
     initResponse("/data/Response_with_EID.xml", true);
     AuthProcessDataWrapper authProcessData = pendingReq.getSessionData(AuthProcessDataWrapper.class);
-    SimpleEidasData eidData = createEidasDataMatchingToSamlResponse();
+    SimpleEidasData eidData = createEidasDataMatchingToSamlResponse().build();
     authProcessData.setGenericDataToSession(Constants.DATA_SIMPLE_EIDAS, eidData);
     MergedRegisterSearchResult registerSearchResult = new MergedRegisterSearchResult(Collections.emptyList(), Collections.emptyList());
     Mockito.when(registerSearchService.searchWithBpkZp(eq(BPK_FROM_ID_AUSTRIA))).thenReturn(registerSearchResult);
@@ -350,7 +351,7 @@ public class ReceiveMobilePhoneSignatureResponseTaskTest {
     setupMetadataResolver();
     initResponse("/data/Response_with_EID.xml", true);
     AuthProcessDataWrapper authProcessData = pendingReq.getSessionData(AuthProcessDataWrapper.class);
-    SimpleEidasData eidData = createEidasDataMatchingToSamlResponse();
+    SimpleEidasData eidData = createEidasDataMatchingToSamlResponse().build();
     authProcessData.setGenericDataToSession(Constants.DATA_SIMPLE_EIDAS, eidData);
     MergedRegisterSearchResult registerSearchResult = buildResultWithOneMatch();
     Mockito.when(registerSearchService.searchWithBpkZp(eq(BPK_FROM_ID_AUSTRIA))).thenReturn(registerSearchResult);
@@ -370,7 +371,7 @@ public class ReceiveMobilePhoneSignatureResponseTaskTest {
     setupMetadataResolver();
     initResponse("/data/Response_with_EID.xml", true);
     AuthProcessDataWrapper authProcessData = pendingReq.getSessionData(AuthProcessDataWrapper.class);
-    SimpleEidasData eidData = createEidasDataMatchingToSamlResponse();
+    SimpleEidasData eidData = createEidasDataMatchingToSamlResponse().build();
     authProcessData.setGenericDataToSession(Constants.DATA_SIMPLE_EIDAS, eidData);
     MergedRegisterSearchResult registerSearchResult = buildResultWithTwoMatches();
     Mockito.when(registerSearchService.searchWithBpkZp(eq(BPK_FROM_ID_AUSTRIA))).thenReturn(registerSearchResult);
@@ -400,14 +401,12 @@ public class ReceiveMobilePhoneSignatureResponseTaskTest {
     return new MergedRegisterSearchResult(results, Collections.emptyList());
   }
 
-  @NotNull
-  private SimpleEidasData createEidasDataMatchingToSamlResponse() {
+  private SimpleEidasData.SimpleEidasDataBuilder createEidasDataMatchingToSamlResponse() {
     // data from "/data/Response_with_EID.xml"
-    SimpleEidasData result = new SimpleEidasData();
-    result.setFamilyName("Mustermann");
-    result.setGivenName("Max");
-    result.setDateOfBirth("1940-01-01");
-    return result;
+    return SimpleEidasData.builder()
+        .familyName("Mustermann")
+        .givenName("Max")
+        .dateOfBirth("1940-01-01");
   }
 
   private void addSamlResponseToHttpReq(Response response) throws TransformerException, IOException, MarshallingException {
-- 
cgit v1.2.3


From 76fcc8227de6375a6ae5e988acd368c2cf893516 Mon Sep 17 00:00:00 2001
From: Christian Kollmann <christian.kollmann@a-sit.at>
Date: Thu, 4 Mar 2021 15:05:50 +0100
Subject: Refactor RegisterResult to make it immutable

---
 .../modules/auth/eidas/v2/dao/RegisterResult.java  | 32 ++++++++++------------
 1 file changed, 15 insertions(+), 17 deletions(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/RegisterResult.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/RegisterResult.java
index 4674751d..369a4e31 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/RegisterResult.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/RegisterResult.java
@@ -24,30 +24,24 @@
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.dao;
 
 import at.gv.e_government.reference.namespace.persondata._20020228.PostalAddressType;
-import lombok.EqualsAndHashCode;
-import lombok.Getter;
-import lombok.NoArgsConstructor;
-import lombok.ToString;
+import lombok.Data;
 
-@Getter
-@NoArgsConstructor
-@ToString
-@EqualsAndHashCode
+@Data
 public class RegisterResult {
 
   // MDS
-  private String pseudonym;
-  private String givenName;
-  private String familyName;
-  private String dateOfBirth;
+  private final String pseudonym;
+  private final String givenName;
+  private final String familyName;
+  private final String dateOfBirth;
 
   // additional attributes
-  private String placeOfBirth;
-  private String birthName;
-  private String taxNumber;
-  private PostalAddressType address;
+  private final String placeOfBirth;
+  private final String birthName;
+  private final String taxNumber;
+  private final PostalAddressType address;
 
-  private String bpk;
+  private final String bpk;
 
   /**
    * Register search result.
@@ -64,6 +58,10 @@ public class RegisterResult {
     this.givenName = givenName;
     this.familyName = familyName;
     this.dateOfBirth = dateOfBirth;
+    this.placeOfBirth = null;
+    this.birthName = null;
+    this.taxNumber = null;
+    this.address = null;
   }
 
   /**
-- 
cgit v1.2.3


From 5326c05f8d07d2935549b929511b9e0578bb022d Mon Sep 17 00:00:00 2001
From: Christian Kollmann <christian.kollmann@a-sit.at>
Date: Thu, 4 Mar 2021 15:07:56 +0100
Subject: Refactor SimpleMobilePhoneData to make it immutable

---
 .../auth/eidas/v2/dao/MergedRegisterSearchResult.java        |  4 ++--
 .../modules/auth/eidas/v2/dao/SimpleMobileSignatureData.java | 12 +++++++-----
 .../v2/tasks/ReceiveMobilePhoneSignatureResponseTask.java    | 12 ++++++------
 3 files changed, 15 insertions(+), 13 deletions(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/MergedRegisterSearchResult.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/MergedRegisterSearchResult.java
index e147b8aa..0c977016 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/MergedRegisterSearchResult.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/MergedRegisterSearchResult.java
@@ -31,8 +31,8 @@ import java.util.List;
 @Data
 public class MergedRegisterSearchResult {
 
-  final List<RegisterResult> resultsZmr;
-  final List<RegisterResult> resultsErnp;
+  private final List<RegisterResult> resultsZmr;
+  private final List<RegisterResult> resultsErnp;
 
   public MergedRegisterSearchResult(List<RegisterResult> resultsZmr, List<RegisterResult> resultsErnp) {
     this.resultsZmr = resultsZmr;
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleMobileSignatureData.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleMobileSignatureData.java
index e7a5547a..4a27e60e 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleMobileSignatureData.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleMobileSignatureData.java
@@ -23,17 +23,19 @@
 
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.dao;
 
+import lombok.Builder;
 import lombok.Data;
 import org.apache.commons.lang3.builder.EqualsBuilder;
 
 @Data
+@Builder
 public class SimpleMobileSignatureData {
 
-  private String citizenCountryCode;
-  private String bpk;
-  private String givenName;
-  private String familyName;
-  private String dateOfBirth;
+  private final String citizenCountryCode;
+  private final String bpk;
+  private final String givenName;
+  private final String familyName;
+  private final String dateOfBirth;
 
   /**
    * Compares the received authentication data from the mobile phone signature with the eid data received via eIDAS.
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseTask.java
index 57531493..64327d40 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseTask.java
@@ -340,7 +340,7 @@ public class ReceiveMobilePhoneSignatureResponseTask extends AbstractAuthServlet
   private SimpleMobileSignatureData getAuthDataFromInterfederation(AssertionAttributeExtractor extractor)
       throws EaafBuilderException {
     List<String> requiredAttributes = IdAustriaClientAuthConstants.DEFAULT_REQUIRED_PVP_ATTRIBUTE_NAMES;
-    SimpleMobileSignatureData result = new SimpleMobileSignatureData();
+    SimpleMobileSignatureData.SimpleMobileSignatureDataBuilder builder = SimpleMobileSignatureData.builder();
     if (!extractor.containsAllRequiredAttributes(requiredAttributes)) {
       log.warn("PVP Response from 'ID Austria node' contains not all requested attributes.");
       AssertionValidationExeption e = new AssertionValidationExeption(ERROR_PVP_06,
@@ -350,23 +350,23 @@ public class ReceiveMobilePhoneSignatureResponseTask extends AbstractAuthServlet
     final Set<String> includedAttrNames = extractor.getAllIncludeAttributeNames();
     for (final String attrName : includedAttrNames) {
       if (PvpAttributeDefinitions.BPK_NAME.equals(attrName)) {
-        result.setBpk(extractor.getSingleAttributeValue(attrName));
+        builder.bpk(extractor.getSingleAttributeValue(attrName));
       }
       if (PvpAttributeDefinitions.GIVEN_NAME_NAME.equals(attrName)) {
-        result.setGivenName(extractor.getSingleAttributeValue(attrName));
+        builder.givenName(extractor.getSingleAttributeValue(attrName));
       }
       if (PvpAttributeDefinitions.PRINCIPAL_NAME_NAME.equals(attrName)) {
-        result.setFamilyName(extractor.getSingleAttributeValue(attrName));
+        builder.familyName(extractor.getSingleAttributeValue(attrName));
       }
       if (PvpAttributeDefinitions.BIRTHDATE_NAME.equals(attrName)) {
-        result.setDateOfBirth(extractor.getSingleAttributeValue(attrName));
+        builder.dateOfBirth(extractor.getSingleAttributeValue(attrName));
       }
       if (PvpAttributeDefinitions.EID_CITIZEN_EIDAS_QAA_LEVEL_NAME.equals(attrName)) {
         getAuthProcessDataWrapper().setQaaLevel(extractor.getSingleAttributeValue(attrName));
       }
     }
     getAuthProcessDataWrapper().setIssueInstant(extractor.getAssertionIssuingDate());
-    return result;
+    return builder.build();
   }
 
 
-- 
cgit v1.2.3


From ac1fbd5854cc38f6efb32b3baf7cb7cac083e3b3 Mon Sep 17 00:00:00 2001
From: Christian Kollmann <christian.kollmann@a-sit.at>
Date: Thu, 4 Mar 2021 15:23:24 +0100
Subject: Refactor CreateIdentityLinkTask for more readability

---
 .../modules/auth/eidas/v2/szr/SzrClient.java       |   4 +-
 .../eidas/v2/tasks/CreateIdentityLinkTask.java     | 412 ++++++++++-----------
 .../modules/auth/eidas/v2/test/SzrClientTest.java  |  12 +-
 .../eidas/v2/test/SzrClientTestProduction.java     |   2 +-
 4 files changed, 215 insertions(+), 215 deletions(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/szr/SzrClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/szr/SzrClient.java
index 684451ed..dc6df967 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/szr/SzrClient.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/szr/SzrClient.java
@@ -260,8 +260,8 @@ public class SzrClient {
    * @return bPK for this person
    * @throws SzrCommunicationException In case of a SZR error
    */
-  public String getEidsaBind(final String vsz, final String bindingPubKey, final String eidStatus,
-      ErnpEidData eidData)throws SzrCommunicationException {
+  public String getEidasBind(final String vsz, final String bindingPubKey, final String eidStatus,
+                             ErnpEidData eidData)throws SzrCommunicationException {
 
     final Map<String, Object> eidsaBindMap = new HashMap<>();
     eidsaBindMap.put(ATTR_NAME_VSZ, vsz);
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateIdentityLinkTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateIdentityLinkTask.java
index d6fdd350..ab9c49da 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateIdentityLinkTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateIdentityLinkTask.java
@@ -23,27 +23,6 @@
 
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks;
 
-import java.io.IOException;
-import java.io.InputStream;
-import java.util.HashMap;
-import java.util.List;
-import java.util.Map;
-
-import javax.servlet.http.HttpServletRequest;
-import javax.servlet.http.HttpServletResponse;
-import javax.xml.parsers.ParserConfigurationException;
-
-import org.apache.commons.lang3.StringUtils;
-import org.joda.time.DateTime;
-import org.springframework.beans.factory.annotation.Autowired;
-import org.springframework.stereotype.Component;
-import org.w3c.dom.Element;
-import org.w3c.dom.Node;
-import org.xml.sax.SAXException;
-
-import com.google.common.collect.ImmutableMap;
-import com.google.common.collect.ImmutableSet;
-
 import at.asitplus.eidas.specific.connector.MsConnectorEventCodes;
 import at.asitplus.eidas.specific.connector.MsEidasNodeConstants;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
@@ -63,29 +42,54 @@ import at.gv.egiz.eaaf.core.api.idp.IConfiguration;
 import at.gv.egiz.eaaf.core.api.idp.auth.data.IIdentityLink;
 import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
 import at.gv.egiz.eaaf.core.exceptions.EaafException;
+import at.gv.egiz.eaaf.core.exceptions.EaafStorageException;
 import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
 import at.gv.egiz.eaaf.core.impl.data.Pair;
+import at.gv.egiz.eaaf.core.impl.data.Triple;
 import at.gv.egiz.eaaf.core.impl.idp.auth.builder.BpkBuilder;
 import at.gv.egiz.eaaf.core.impl.idp.auth.data.AuthProcessDataWrapper;
 import at.gv.egiz.eaaf.core.impl.idp.auth.data.SimpleIdentityLinkAssertionParser;
 import at.gv.egiz.eaaf.core.impl.idp.auth.modules.AbstractAuthServletTask;
 import at.gv.egiz.eaaf.core.impl.utils.DomUtils;
 import at.gv.egiz.eaaf.core.impl.utils.XPathUtils;
+import com.fasterxml.jackson.core.JsonProcessingException;
+import com.google.common.collect.ImmutableMap;
+import com.google.common.collect.ImmutableSet;
 import eu.eidas.auth.commons.attribute.AttributeDefinition;
 import eu.eidas.auth.commons.attribute.AttributeValue;
 import eu.eidas.auth.commons.light.ILightResponse;
 import eu.eidas.auth.commons.protocol.eidas.impl.PostalAddress;
 import lombok.Data;
 import lombok.extern.slf4j.Slf4j;
+import org.apache.commons.lang3.StringUtils;
+import org.jetbrains.annotations.NotNull;
+import org.jetbrains.annotations.Nullable;
+import org.joda.time.DateTime;
+import org.jose4j.lang.JoseException;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.stereotype.Component;
+import org.w3c.dom.Element;
+import org.w3c.dom.Node;
+import org.xml.sax.SAXException;
 import szrservices.IdentityLinkType;
 import szrservices.PersonInfoType;
 import szrservices.TravelDocumentType;
 
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+import javax.xml.parsers.ParserConfigurationException;
+import java.io.IOException;
+import java.io.InputStream;
+import java.util.HashMap;
+import java.util.List;
+import java.util.Map;
+import java.util.Objects;
+
 /**
  * Task that creates the IdentityLink for an eIDAS authenticated person.
  *
  * @author tlenz
- *
+ * <p>
  * TODO Take Constants#DATA_SIMPLE_EIDAS and Constants#DATA_RESULT_MATCHING_BPK
  * TODO Only do VSZ Erstellung and eidasBind -- this is always the end of the whole process
  * TODO Move Eintragung to separate Task, as it does not happen every time
@@ -94,13 +98,13 @@ import szrservices.TravelDocumentType;
 @Component("CreateIdentityLinkTask")
 public class CreateIdentityLinkTask extends AbstractAuthServletTask {
 
+  @SuppressWarnings("SpringJavaInjectionPointsAutowiringInspection")
   @Autowired
   private IConfiguration basicConfig;
   @Autowired
   private SzrClient szrClient;
   @Autowired
   private ICcSpecificEidProcessingService eidPostProcessor;
-
   @Autowired
   private AuthBlockSigningService authBlockSigner;
 
@@ -118,117 +122,115 @@ public class CreateIdentityLinkTask extends AbstractAuthServletTask {
   public void execute(ExecutionContext executionContext, HttpServletRequest request, HttpServletResponse response)
       throws TaskExecutionException {
     try {
-      final AuthProcessDataWrapper authProcessData = pendingReq.getSessionData(AuthProcessDataWrapper.class);
-      final ILightResponse eidasResponse = authProcessData
+      final ILightResponse eidasResponse = getAuthProcessDataWrapper()
           .getGenericDataFromSession(Constants.DATA_FULL_EIDAS_RESPONSE, ILightResponse.class);
-
-      final Map<String, Object> simpleAttrMap = convertEidasAttrToSimpleMap(
+      final Map<String, Object> eidasAttributes = convertEidasAttrToSimpleMap(
           eidasResponse.getAttributes().getAttributeMap());
-
-      // post-process eIDAS attributes
-      final ErnpEidData eidData = eidPostProcessor.postProcess(simpleAttrMap);
-
-      // write MDS into technical log and revision log
+      final ErnpEidData eidData = eidPostProcessor.postProcess(eidasAttributes);
       writeMdsLogInformation(eidData);
 
-      //build IdentityLink or VSZ and eidasBind
       if (basicConfig.getBasicConfigurationBoolean(Constants.CONIG_PROPS_EIDAS_SZRCLIENT_DEBUG_USEDUMMY, false)) {
-        SzrResultHolder idlResult = createDummyIdentityLinkForTestDeployment(eidData);
-        //inject personal-data into session
-        authProcessData.setIdentityLink(idlResult.getIdentityLink());
-
-        // set bPK and bPKType into auth session
-        authProcessData.setGenericDataToSession(PvpAttributeDefinitions.BPK_NAME, extendBpkByPrefix(
-            idlResult.getBpK(), pendingReq.getServiceProviderConfiguration().getAreaSpecificTargetIdentifier()));
-        authProcessData.setGenericDataToSession(PvpAttributeDefinitions.EID_SECTOR_FOR_IDENTIFIER_NAME,
-                                                pendingReq.getServiceProviderConfiguration()
-                                                          .getAreaSpecificTargetIdentifier());
-
+        buildDummyIdentityLink(eidData);
       } else {
         //build SZR request from eIDAS data
         final PersonInfoType personInfo = generateSzrRequest(eidData);
-
         //request SZR based on IDL or E-ID mode
         if (pendingReq.getServiceProviderConfiguration()
             .isConfigurationValue(MsEidasNodeConstants.PROP_CONFIG_SP_NEW_EID_MODE, false)) {
-
-          // get encrypted baseId
-          String vsz = szrClient.getEncryptedStammzahl(personInfo);
-
-          //write revision-Log entry and extended infos personal-identifier mapping
-          revisionsLogger.logEvent(pendingReq, MsConnectorEventCodes.SZR_VSZ_RECEIVED);
-          writeExtendedRevisionLogEntry(simpleAttrMap, eidData);
-
-
-          // get eIDAS bind
-          String signedEidasBind = szrClient.getEidsaBind(vsz,
-              authBlockSigner.getBase64EncodedPublicKey(),
-              EID_STATUS, eidData);
-          revisionsLogger.logEvent(pendingReq, MsConnectorEventCodes.SZR_EIDASBIND_RECEIVED);
-          authProcessData.setGenericDataToSession(Constants.EIDAS_BIND, signedEidasBind);
-
-          //get signed AuthBlock
-          String jwsSignature = authBlockSigner.buildSignedAuthBlock(pendingReq);
-          revisionsLogger.logEvent(pendingReq, MsConnectorEventCodes.TECH_AUCHBLOCK_CREATED);
-          authProcessData.setGenericDataToSession(Constants.SZR_AUTHBLOCK, jwsSignature);
-
-          //inject personal-data into session
-          authProcessData.setEidProcess(true);
-
+          executeEidMode(eidasAttributes, eidData, personInfo);
         } else {
-          //request SZR
-          SzrResultHolder idlResult = requestSzrForIdentityLink(personInfo);
+          executeIdlMode(eidasAttributes, eidData, personInfo);
+        }
+      }
+      storeGenericInfoToSession(eidasResponse, eidasAttributes);
+      requestStoreage.storePendingRequest(pendingReq);
+    } catch (final EidasAttributeException e) {
+      throw new TaskExecutionException(pendingReq, "Minimum required eIDAS attributeset not found.", e);
+    } catch (final EaafException e) {
+      throw new TaskExecutionException(pendingReq, "IdentityLink generation for foreign person FAILED.", e);
+    } catch (final Exception e) {
+      log.error("IdentityLink generation for foreign person FAILED.", e);
+      throw new TaskExecutionException(pendingReq, "IdentityLink generation for foreign person FAILED.", e);
+    }
+  }
 
-          //write revision-Log entry for personal-identifier mapping
-          writeExtendedRevisionLogEntry(simpleAttrMap, eidData);
+  private void storeGenericInfoToSession(ILightResponse eidasResponse, Map<String, Object> eidasAttributes) throws EaafStorageException {
+    AuthProcessDataWrapper authProcessData = getAuthProcessDataWrapper();
+    authProcessData.setForeigner(true);
+    Triple<String, String, String> eidasPersonalIdentifier = EidasResponseUtils
+        .parseEidasPersonalIdentifier((String) eidasAttributes.get(Constants.eIDAS_ATTR_PERSONALIDENTIFIER));
+    authProcessData.setGenericDataToSession(PvpAttributeDefinitions.EID_ISSUING_NATION_NAME,
+        Objects.requireNonNull(eidasPersonalIdentifier).getFirst());
+    authProcessData.setQaaLevel(eidasResponse.getLevelOfAssurance());
+  }
 
-          //check result-data and write revision-log based on current state
-          checkStateAndWriteRevisionLog(idlResult);
+  private void executeIdlMode(Map<String, Object> simpleAttrMap, ErnpEidData eidData, PersonInfoType personInfo) throws EaafException {
+    //request SZR
+    SzrResultHolder idlResult = requestSzrForIdentityLink(personInfo);
 
-          //inject personal-data into session
-          authProcessData.setIdentityLink(idlResult.getIdentityLink());
-          authProcessData.setEidProcess(false);
+    //write revision-Log entry for personal-identifier mapping
+    writeExtendedRevisionLogEntry(simpleAttrMap, eidData);
 
-          // set bPK and bPKType into auth session
-          authProcessData.setGenericDataToSession(PvpAttributeDefinitions.BPK_NAME, extendBpkByPrefix(
-              idlResult.getBpK(), pendingReq.getServiceProviderConfiguration().getAreaSpecificTargetIdentifier()));
-          authProcessData.setGenericDataToSession(PvpAttributeDefinitions.EID_SECTOR_FOR_IDENTIFIER_NAME,
-                                                  pendingReq.getServiceProviderConfiguration()
-                                                            .getAreaSpecificTargetIdentifier());
+    //check result-data and write revision-log based on current state
+    checkStateAndWriteRevisionLog(idlResult);
 
-        }
-      }
+    //inject personal-data into session
+    AuthProcessDataWrapper authProcessDataWrapper = getAuthProcessDataWrapper();
+    authProcessDataWrapper.setIdentityLink(idlResult.getIdentityLink());
+    authProcessDataWrapper.setEidProcess(false);
 
-      //add generic info's into session
-      authProcessData.setForeigner(true);
-      authProcessData.setGenericDataToSession(PvpAttributeDefinitions.EID_ISSUING_NATION_NAME, EidasResponseUtils
-          .parseEidasPersonalIdentifier((String) simpleAttrMap.get(Constants.eIDAS_ATTR_PERSONALIDENTIFIER))
-          .getFirst());
-      authProcessData.setQaaLevel(eidasResponse.getLevelOfAssurance());
+    // set bPK and bPKType into auth session
+    authProcessDataWrapper.setGenericDataToSession(PvpAttributeDefinitions.BPK_NAME, extendBpkByPrefix(
+        idlResult.getBpK(), pendingReq.getServiceProviderConfiguration().getAreaSpecificTargetIdentifier()));
+    authProcessDataWrapper.setGenericDataToSession(PvpAttributeDefinitions.EID_SECTOR_FOR_IDENTIFIER_NAME,
+        pendingReq.getServiceProviderConfiguration()
+            .getAreaSpecificTargetIdentifier());
+  }
 
-      // store pending-request
-      requestStoreage.storePendingRequest(pendingReq);
+  private void executeEidMode(Map<String, Object> simpleAttrMap, ErnpEidData eidData, PersonInfoType personInfo) throws JsonProcessingException, EaafException, JoseException {
+    // get encrypted baseId
+    String vsz = szrClient.getEncryptedStammzahl(personInfo);
 
+    //write revision-Log entry and extended infos personal-identifier mapping
+    revisionsLogger.logEvent(pendingReq, MsConnectorEventCodes.SZR_VSZ_RECEIVED);
+    writeExtendedRevisionLogEntry(simpleAttrMap, eidData);
 
-    } catch (final EidasAttributeException e) {
-      throw new TaskExecutionException(pendingReq, "Minimum required eIDAS attributeset not found.", e);
+    // get eIDAS bind
+    String signedEidasBind = szrClient
+        .getEidasBind(vsz, authBlockSigner.getBase64EncodedPublicKey(), EID_STATUS, eidData);
+    revisionsLogger.logEvent(pendingReq, MsConnectorEventCodes.SZR_EIDASBIND_RECEIVED);
+    AuthProcessDataWrapper authProcessDataWrapper = getAuthProcessDataWrapper();
+    authProcessDataWrapper.setGenericDataToSession(Constants.EIDAS_BIND, signedEidasBind);
 
-    } catch (final EaafException e) {
-      throw new TaskExecutionException(pendingReq, "IdentityLink generation for foreign person FAILED.", e);
+    //get signed AuthBlock
+    String jwsSignature = authBlockSigner.buildSignedAuthBlock(pendingReq);
+    revisionsLogger.logEvent(pendingReq, MsConnectorEventCodes.TECH_AUCHBLOCK_CREATED);
+    authProcessDataWrapper.setGenericDataToSession(Constants.SZR_AUTHBLOCK, jwsSignature);
 
-    } catch (final Exception e) {
-      log.error("IdentityLink generation for foreign person FAILED.", e);
-      throw new TaskExecutionException(pendingReq, "IdentityLink generation for foreign person FAILED.", e);
+    //inject personal-data into session
+    authProcessDataWrapper.setEidProcess(true);
+  }
 
-    }
+  private void buildDummyIdentityLink(ErnpEidData eidData) throws ParserConfigurationException, SAXException, IOException, EaafException {
+    AuthProcessDataWrapper authProcessDataWrapper = getAuthProcessDataWrapper();
+    SzrResultHolder idlResult = createDummyIdentityLinkForTestDeployment(eidData);
+    //inject personal-data into session
+    authProcessDataWrapper.setIdentityLink(idlResult.getIdentityLink());
+
+    // set bPK and bPKType into auth session
+    authProcessDataWrapper.setGenericDataToSession(PvpAttributeDefinitions.BPK_NAME, extendBpkByPrefix(
+        idlResult.getBpK(), pendingReq.getServiceProviderConfiguration().getAreaSpecificTargetIdentifier()));
+    authProcessDataWrapper.setGenericDataToSession(PvpAttributeDefinitions.EID_SECTOR_FOR_IDENTIFIER_NAME,
+        pendingReq.getServiceProviderConfiguration()
+            .getAreaSpecificTargetIdentifier());
   }
 
   private void writeExtendedRevisionLogEntry(Map<String, Object> simpleAttrMap, ErnpEidData eidData) {
-    // write ERnB input-data into revision-log
+    // write ERnP input-data into revision-log
     if (basicConfig.getBasicConfigurationBoolean(
         Constants.CONIG_PROPS_EIDAS_SZRCLIENT_WORKAROUND_REVISIONLOGDATASTORE_ACTIVE, false)) {
       revisionsLogger.logEvent(pendingReq, MsConnectorEventCodes.SZR_ERNB_EIDAS_RAW_ID,
-                               (String) simpleAttrMap.get(Constants.eIDAS_ATTR_PERSONALIDENTIFIER));
+          (String) simpleAttrMap.get(Constants.eIDAS_ATTR_PERSONALIDENTIFIER));
       revisionsLogger.logEvent(pendingReq, MsConnectorEventCodes.SZR_ERNB_EIDAS_ERNB_ID, eidData.getPseudonym());
 
     }
@@ -253,76 +255,66 @@ public class CreateIdentityLinkTask extends AbstractAuthServletTask {
     eDocument.setDocumentNumber(eidData.getPseudonym());
 
     // eID document information
-    eDocument.setDocumentType(basicConfig
-                                  .getBasicConfiguration(Constants.CONIG_PROPS_EIDAS_SZRCLIENT_PARAMS_EDOCUMENTTYPE,
-                                                         Constants.SZR_CONSTANTS_DEFAULT_DOCUMENT_TYPE));
+    String documentType = basicConfig
+        .getBasicConfiguration(Constants.CONIG_PROPS_EIDAS_SZRCLIENT_PARAMS_EDOCUMENTTYPE,
+            Constants.SZR_CONSTANTS_DEFAULT_DOCUMENT_TYPE);
+    eDocument.setDocumentType(documentType);
 
     // set PlaceOfBirth if available
     if (eidData.getPlaceOfBirth() != null) {
       log.trace("Find 'PlaceOfBirth' attribute: " + eidData.getPlaceOfBirth());
-      if (basicConfig
-          .getBasicConfigurationBoolean(Constants.CONIG_PROPS_EIDAS_SZRCLIENT_PARAMS_SETPLACEOFBIRTHIFAVAILABLE,
-                                        true)) {
+      boolean setPlaceOfBirth = basicConfig
+          .getBasicConfigurationBoolean(Constants.CONIG_PROPS_EIDAS_SZRCLIENT_PARAMS_SETPLACEOFBIRTHIFAVAILABLE, true);
+      if (setPlaceOfBirth) {
         naturalPerson.setPlaceOfBirth(eidData.getPlaceOfBirth());
         log.trace("Adding 'PlaceOfBirth' to ERnB request ... ");
-
       }
     }
 
     // set BirthName if available
     if (eidData.getBirthName() != null) {
       log.trace("Find 'BirthName' attribute: " + eidData.getBirthName());
-      if (basicConfig
-          .getBasicConfigurationBoolean(Constants.CONIG_PROPS_EIDAS_SZRCLIENT_PARAMS_SETBIRTHNAMEIFAVAILABLE,
-                                        true)) {
+      boolean setBirthName = basicConfig
+          .getBasicConfigurationBoolean(Constants.CONIG_PROPS_EIDAS_SZRCLIENT_PARAMS_SETBIRTHNAMEIFAVAILABLE, true);
+      if (setBirthName) {
         final AlternativeNameType alternativeName = new AlternativeNameType();
         naturalPerson.setAlternativeName(alternativeName);
         alternativeName.setFamilyName(eidData.getBirthName());
         log.trace("Adding 'BirthName' to ERnB request ... ");
-
       }
     }
 
     return personInfo;
-
   }
 
-  private SzrResultHolder requestSzrForIdentityLink(PersonInfoType personInfo)
-      throws SzrCommunicationException, EaafException {
+  private SzrResultHolder requestSzrForIdentityLink(PersonInfoType personInfo) throws EaafException {
     //request IdentityLink from SZR
     final IdentityLinkType result = szrClient.getIdentityLinkInRawMode(personInfo);
 
     final Element idlFromSzr = (Element) result.getAssertion();
-    IIdentityLink identityLink = new SimpleIdentityLinkAssertionParser(idlFromSzr).parseIdentityLink();
+    final IIdentityLink identityLink = new SimpleIdentityLinkAssertionParser(idlFromSzr).parseIdentityLink();
 
     // get bPK from SZR
     String bpk = null;
-    if (basicConfig
-        .getBasicConfigurationBoolean(Constants.CONIG_PROPS_EIDAS_SZRCLIENT_DEBUG_USESRZFORBPKGENERATION, true)) {
-      List<String> bpkList = szrClient
-          .getBpk(personInfo, pendingReq.getServiceProviderConfiguration().getAreaSpecificTargetIdentifier(),
-                  basicConfig
-                      .getBasicConfiguration(Constants.CONIG_PROPS_EIDAS_SZRCLIENT_PARAMS_VKZ, "no VKZ defined"));
+    String targetId = pendingReq.getServiceProviderConfiguration().getAreaSpecificTargetIdentifier();
+    boolean debugUseSzrForBpk = basicConfig
+        .getBasicConfigurationBoolean(Constants.CONIG_PROPS_EIDAS_SZRCLIENT_DEBUG_USESRZFORBPKGENERATION, true);
+    if (debugUseSzrForBpk) {
+      String no_vkz_defined = basicConfig
+          .getBasicConfiguration(Constants.CONIG_PROPS_EIDAS_SZRCLIENT_PARAMS_VKZ, "no VKZ defined");
+      List<String> bpkList = szrClient.getBpk(personInfo, targetId, no_vkz_defined);
       if (!bpkList.isEmpty()) {
         bpk = bpkList.get(0);
-
       }
-
-
     } else {
       log.debug("Calculating bPK from baseId ... ");
-      new BpkBuilder();
-      final Pair<String, String> bpkCalc = BpkBuilder
-          .generateAreaSpecificPersonIdentifier(identityLink.getIdentificationValue(),
-                                                identityLink.getIdentificationType(),
-                                                pendingReq.getServiceProviderConfiguration()
-                                                          .getAreaSpecificTargetIdentifier());
+      String idValue = identityLink.getIdentificationValue();
+      String idType = identityLink.getIdentificationType();
+      final Pair<String, String> bpkCalc = BpkBuilder.generateAreaSpecificPersonIdentifier(idValue, idType, targetId);
       bpk = bpkCalc.getFirst();
-
     }
 
     return new SzrResultHolder(identityLink, bpk);
-
   }
 
   private void checkStateAndWriteRevisionLog(SzrResultHolder idlResult) throws SzrCommunicationException {
@@ -330,112 +322,121 @@ public class CreateIdentityLinkTask extends AbstractAuthServletTask {
     if (idlResult.getIdentityLink() == null) {
       log.error("ERnB did not return an identity link.");
       throw new SzrCommunicationException("ernb.00", null);
-
     }
-    revisionsLogger.logEvent(pendingReq,
-                             MsConnectorEventCodes.SZR_IDL_RECEIVED,
-                             idlResult.getIdentityLink().getSamlAssertion()
-                                         .getAttribute(SimpleIdentityLinkAssertionParser.ASSERTIONID));
+
+    String assertionId = idlResult.getIdentityLink().getSamlAssertion()
+        .getAttribute(SimpleIdentityLinkAssertionParser.ASSERTIONID);
+    revisionsLogger.logEvent(pendingReq, MsConnectorEventCodes.SZR_IDL_RECEIVED, assertionId);
 
     if (idlResult.getBpK() == null) {
       log.error("ERnB did not return a bPK for target: " + pendingReq.getServiceProviderConfiguration()
-                                                                     .getAreaSpecificTargetIdentifier());
+          .getAreaSpecificTargetIdentifier());
       throw new SzrCommunicationException("ernb.01", null);
-
     }
+
     revisionsLogger.logEvent(pendingReq, MsConnectorEventCodes.SZR_BPK_RECEIVED);
     log.debug("ERnB communication was successfull");
-
   }
 
   private String extendBpkByPrefix(String bpk, String type) {
-    String bpkType = null;
-
-    if (type.startsWith(EaafConstants.URN_PREFIX_WBPK)) {
-      bpkType = type.substring(EaafConstants.URN_PREFIX_WBPK.length());
-    } else if (type.startsWith(EaafConstants.URN_PREFIX_CDID)) {
-      bpkType = type.substring(EaafConstants.URN_PREFIX_CDID.length());
-    } else if (type.startsWith(EaafConstants.URN_PREFIX_EIDAS)) {
-      bpkType = type.substring(EaafConstants.URN_PREFIX_EIDAS.length());
-    }
-
+    String bpkType = getBpkType(type);
     if (bpkType != null) {
       log.trace("Authenticate user with bPK/wbPK " + bpk + " and Type=" + bpkType);
       return bpkType + ":" + bpk;
-
     } else {
       log.warn("Service Provider Target with: " + type + " is NOT supported. Set bPK as it is ...");
       return bpk;
-
     }
+  }
 
+  @Nullable
+  private String getBpkType(String type) {
+    if (type.startsWith(EaafConstants.URN_PREFIX_WBPK)) {
+      return type.substring(EaafConstants.URN_PREFIX_WBPK.length());
+    } else if (type.startsWith(EaafConstants.URN_PREFIX_CDID)) {
+      return type.substring(EaafConstants.URN_PREFIX_CDID.length());
+    } else if (type.startsWith(EaafConstants.URN_PREFIX_EIDAS)) {
+      return type.substring(EaafConstants.URN_PREFIX_EIDAS.length());
+    } else {
+      return null;
+    }
   }
 
   private Map<String, Object> convertEidasAttrToSimpleMap(
       ImmutableMap<AttributeDefinition<?>, ImmutableSet<? extends AttributeValue<?>>> attributeMap) {
     final Map<String, Object> result = new HashMap<>();
-
     for (final AttributeDefinition<?> el : attributeMap.keySet()) {
-
       final Class<?> parameterizedType = el.getParameterizedType();
       if (DateTime.class.equals(parameterizedType)) {
-        final DateTime attribute = EidasResponseUtils.translateDateAttribute(el, attributeMap.get(el).asList());
-        if (attribute != null) {
-          result.put(el.getFriendlyName(), attribute);
-          log.trace("Find attr '" + el.getFriendlyName() + "' with value: " + attribute.toString());
-
-        } else {
-          log.info("Ignore empty 'DateTime' attribute");
-        }
-
+        convertDateTime(attributeMap, result, el);
       } else if (PostalAddress.class.equals(parameterizedType)) {
-        final PostalAddress addressAttribute = EidasResponseUtils
-            .translateAddressAttribute(el, attributeMap.get(el).asList());
-        if (addressAttribute != null) {
-          result.put(el.getFriendlyName(), addressAttribute);
-          log.trace("Find attr '" + el.getFriendlyName() + "' with value: " + addressAttribute.toString());
-
-        } else {
-          log.info("Ignore empty 'PostalAddress' attribute");
-        }
-
+        convertPostalAddress(attributeMap, result, el);
       } else {
-        final List<String> natPersonIdObj = EidasResponseUtils
-            .translateStringListAttribute(el, attributeMap.get(el));
-        final String stringAttr = natPersonIdObj.get(0);
-        if (StringUtils.isNotEmpty(stringAttr)) {
-          result.put(el.getFriendlyName(), stringAttr);
-          log.trace("Find attr '" + el.getFriendlyName() + "' with value: " + stringAttr);
-
-        } else {
-          log.info("Ignore empty 'String' attribute");
-        }
-
+        convertString(attributeMap, result, el);
       }
     }
 
     log.debug("Receive #" + result.size() + " attributes with names: " + result.keySet().toString());
-
     return result;
   }
 
+  private void convertString(ImmutableMap<AttributeDefinition<?>, ImmutableSet<? extends AttributeValue<?>>> attributeMap, Map<String, Object> result, AttributeDefinition<?> el) {
+    final List<String> natPersonIdObj = EidasResponseUtils
+        .translateStringListAttribute(el, attributeMap.get(el));
+    final String stringAttr = natPersonIdObj.get(0);
+    if (StringUtils.isNotEmpty(stringAttr)) {
+      result.put(el.getFriendlyName(), stringAttr);
+      log.trace("Find attr '" + el.getFriendlyName() + "' with value: " + stringAttr);
+    } else {
+      log.info("Ignore empty 'String' attribute");
+    }
+  }
+
+  private void convertPostalAddress(ImmutableMap<AttributeDefinition<?>, ImmutableSet<? extends AttributeValue<?>>> attributeMap, Map<String, Object> result, AttributeDefinition<?> el) {
+    final PostalAddress addressAttribute = EidasResponseUtils
+        .translateAddressAttribute(el, attributeMap.get(el).asList());
+    if (addressAttribute != null) {
+      result.put(el.getFriendlyName(), addressAttribute);
+      log.trace("Find attr '" + el.getFriendlyName() + "' with value: " + addressAttribute.toString());
+    } else {
+      log.info("Ignore empty 'PostalAddress' attribute");
+    }
+  }
+
+  private void convertDateTime(ImmutableMap<AttributeDefinition<?>, ImmutableSet<? extends AttributeValue<?>>> attributeMap, Map<String, Object> result, AttributeDefinition<?> el) {
+    final DateTime attribute = EidasResponseUtils.translateDateAttribute(el, attributeMap.get(el).asList());
+    if (attribute != null) {
+      result.put(el.getFriendlyName(), attribute);
+      log.trace("Find attr '" + el.getFriendlyName() + "' with value: " + attribute.toString());
+    } else {
+      log.info("Ignore empty 'DateTime' attribute");
+    }
+  }
+
+  @NotNull
+  private AuthProcessDataWrapper getAuthProcessDataWrapper() {
+    return pendingReq.getSessionData(AuthProcessDataWrapper.class);
+  }
+
+  /**
+   * write MDS into technical log and revision log
+   */
   private void writeMdsLogInformation(ErnpEidData eidData) {
-    // log MDS and country code into technical log
-    if (basicConfig
-        .getBasicConfigurationBoolean(MsEidasNodeConstants.PROP_CONFIG_TECHNICALLOG_WRITE_MDS_INTO_TECH_LOG, false)) {
+    boolean writeMdsInTechLog = basicConfig
+        .getBasicConfigurationBoolean(MsEidasNodeConstants.PROP_CONFIG_TECHNICALLOG_WRITE_MDS_INTO_TECH_LOG, false);
+    if (writeMdsInTechLog) {
       log.info("eIDAS Auth. for user: " + eidData.getGivenName() + " " + eidData.getFamilyName() + " " + eidData
           .getFormatedDateOfBirth() + " " + "from " + eidData.getCitizenCountryCode());
     }
 
-    // log MDS and country code into revision log
-    if (basicConfig
+    boolean writeMdsInRevLog = basicConfig
         .getBasicConfigurationBoolean(MsEidasNodeConstants.PROP_CONFIG_REVISIONLOG_WRITE_MDS_INTO_REVISION_LOG,
-                                      false)) {
+            false);
+    if (writeMdsInRevLog) {
       revisionsLogger.logEvent(pendingReq, MsConnectorEventCodes.RESPONSE_FROM_EIDAS_MDSDATA,
-                               "{" + eidData.getGivenName() + "," + eidData.getFamilyName() + "," + eidData
-                                   .getFormatedDateOfBirth() + "," + eidData.getCitizenCountryCode() + "}");
+          "{" + eidData.getGivenName() + "," + eidData.getFamilyName() + "," + eidData
+              .getFormatedDateOfBirth() + "," + eidData.getCitizenCountryCode() + "}");
     }
-
   }
 
   @Data
@@ -454,9 +455,9 @@ public class CreateIdentityLinkTask extends AbstractAuthServletTask {
    * @param eidData Information from eIDAS response
    * @return IdentityLink and bPK
    * @throws ParserConfigurationException In case of an IDL processing error
-   * @throws SAXException In case of an IDL processing error
-   * @throws IOException In case of an IDL processing error
-   * @throws EaafException In case of a bPK generation error
+   * @throws SAXException                 In case of an IDL processing error
+   * @throws IOException                  In case of an IDL processing error
+   * @throws EaafException                In case of a bPK generation error
    */
   private SzrResultHolder createDummyIdentityLinkForTestDeployment(ErnpEidData eidData)
       throws ParserConfigurationException, SAXException, IOException, EaafException {
@@ -495,11 +496,10 @@ public class CreateIdentityLinkTask extends AbstractAuthServletTask {
 
     identityLink = new SimpleIdentityLinkAssertionParser(idlassertion).parseIdentityLink();
 
-    final Pair<String, String> bpkCalc = BpkBuilder
-        .generateAreaSpecificPersonIdentifier(identityLink.getIdentificationValue(),
-                                              identityLink.getIdentificationType(),
-                                              pendingReq.getServiceProviderConfiguration()
-                                                        .getAreaSpecificTargetIdentifier());
+    String idValue = identityLink.getIdentificationValue();
+    String idType = identityLink.getIdentificationType();
+    String targetId = pendingReq.getServiceProviderConfiguration().getAreaSpecificTargetIdentifier();
+    final Pair<String, String> bpkCalc = BpkBuilder.generateAreaSpecificPersonIdentifier(idValue, idType, targetId);
     return new SzrResultHolder(identityLink, bpkCalc.getFirst());
 
   }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/SzrClientTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/SzrClientTest.java
index 208a008b..99c221d8 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/SzrClientTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/SzrClientTest.java
@@ -176,7 +176,7 @@ public class SzrClientTest {
     when(szrMock.signContent(any(), anyList(), anyList())).thenReturn(content);
 
     final String bcBind = szrClient
-        .getEidsaBind(RandomStringUtils.randomAlphabetic(10), RandomStringUtils.randomAlphabetic(10),
+        .getEidasBind(RandomStringUtils.randomAlphabetic(10), RandomStringUtils.randomAlphabetic(10),
                    RandomStringUtils.randomAlphabetic(10), eidData);
 
     Assert.assertNotNull("bcBind is null", bcBind);
@@ -190,7 +190,7 @@ public class SzrClientTest {
 
     try {
       szrClient
-          .getEidsaBind(RandomStringUtils.randomAlphabetic(10), RandomStringUtils.randomAlphabetic(10),
+          .getEidasBind(RandomStringUtils.randomAlphabetic(10), RandomStringUtils.randomAlphabetic(10),
                      RandomStringUtils.randomAlphabetic(10), eidData);
     } catch (SzrCommunicationException e) {
       Assert.assertTrue("Not correct error", e.getMessage().contains("ernb.01"));
@@ -207,7 +207,7 @@ public class SzrClientTest {
 
     try {
       szrClient
-          .getEidsaBind(RandomStringUtils.randomAlphabetic(10), RandomStringUtils.randomAlphabetic(10),
+          .getEidasBind(RandomStringUtils.randomAlphabetic(10), RandomStringUtils.randomAlphabetic(10),
                      RandomStringUtils.randomAlphabetic(10), eidData);
     } catch (SzrCommunicationException e) {
       Assert.assertTrue("Not correct error", e.getMessage().contains("ernb.01"));
@@ -225,7 +225,7 @@ public class SzrClientTest {
 
     try {
       szrClient
-          .getEidsaBind(RandomStringUtils.randomAlphabetic(10), RandomStringUtils.randomAlphabetic(10),
+          .getEidasBind(RandomStringUtils.randomAlphabetic(10), RandomStringUtils.randomAlphabetic(10),
                      RandomStringUtils.randomAlphabetic(10), eidData);
     } catch (SzrCommunicationException e) {
       Assert.assertTrue("Not correct error", e.getMessage().contains("ernb.01"));
@@ -248,7 +248,7 @@ public class SzrClientTest {
     when(szrMock.signContent(any(), anyList(), anyList())).thenReturn(content);
 
     final String bcBind = szrClient
-        .getEidsaBind(RandomStringUtils.randomAlphabetic(10), RandomStringUtils.randomAlphabetic(10),
+        .getEidasBind(RandomStringUtils.randomAlphabetic(10), RandomStringUtils.randomAlphabetic(10),
                    RandomStringUtils.randomAlphabetic(10), eidData);
 
     Assert.assertNotNull("bcBind is null", bcBind);
@@ -273,7 +273,7 @@ public class SzrClientTest {
     when(szrMock.signContent(any(), anyList(), anyList())).thenReturn(content);
 
     final String bcBind = szrClient
-        .getEidsaBind(RandomStringUtils.randomAlphabetic(10), RandomStringUtils.randomAlphabetic(10),
+        .getEidasBind(RandomStringUtils.randomAlphabetic(10), RandomStringUtils.randomAlphabetic(10),
                    RandomStringUtils.randomAlphabetic(10), eidData);
 
     Assert.assertNotNull("bcBind is null", bcBind);
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/SzrClientTestProduction.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/SzrClientTestProduction.java
index eff56ffd..abebf0da 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/SzrClientTestProduction.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/SzrClientTestProduction.java
@@ -117,7 +117,7 @@ public class SzrClientTestProduction {
         .pseudonym("1234sdgsdfg56789ABCDEF").build();
 
 
-    String eidasBind = szrClient.getEidsaBind(vsz, bindingPubKey, eidStatus, eidData);
+    String eidasBind = szrClient.getEidasBind(vsz, bindingPubKey, eidStatus, eidData);
 
     Assert.assertNotNull("eidasBind", eidasBind);
 
-- 
cgit v1.2.3


From 1bb05a848206fb1e3bd77b744068c1ee5b344d73 Mon Sep 17 00:00:00 2001
From: Christian Kollmann <christian.kollmann@a-sit.at>
Date: Thu, 4 Mar 2021 16:02:22 +0100
Subject: Prevent SZRClient from creating ERnP entry if person does not exist

---
 .../modules/auth/eidas/v2/szr/SzrClient.java       | 60 +++++++++++-----------
 .../modules/auth/eidas/v2/test/SzrClientTest.java  | 39 ++++++--------
 .../eidas/v2/test/SzrClientTestProduction.java     | 22 ++++----
 .../tasks/CreateIdentityLinkTaskEidNewTest.java    |  4 +-
 4 files changed, 57 insertions(+), 68 deletions(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/szr/SzrClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/szr/SzrClient.java
index dc6df967..5bad738b 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/szr/SzrClient.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/szr/SzrClient.java
@@ -27,6 +27,7 @@ import java.io.ByteArrayInputStream;
 import java.io.ByteArrayOutputStream;
 import java.io.IOException;
 import java.net.URL;
+import java.nio.charset.StandardCharsets;
 import java.security.KeyManagementException;
 import java.security.KeyStore;
 import java.security.KeyStoreException;
@@ -34,7 +35,7 @@ import java.security.NoSuchAlgorithmException;
 import java.security.SecureRandom;
 import java.security.UnrecoverableKeyException;
 import java.util.ArrayList;
-import java.util.Arrays;
+import java.util.Collections;
 import java.util.HashMap;
 import java.util.List;
 import java.util.Map;
@@ -117,6 +118,7 @@ public class SzrClient {
   private static final String JOSE_HEADER_USERCERTPINNING_EIDASBIND = "urn:at.gv.eid:eidasBind";
   public static final String ATTR_NAME_MDS = "urn:eidgvat:mds";
 
+  @SuppressWarnings("SpringJavaInjectionPointsAutowiringInspection")
   @Autowired
   private IConfiguration basicConfig;
 
@@ -126,10 +128,6 @@ public class SzrClient {
   // RAW client is needed for identitylink
   private Dispatch<Source> dispatch = null;
 
-  private SzrService szrService = null;
-  private String szrUrl = null;
-  private QName qname = null;
-
   final ObjectMapper mapper = new ObjectMapper();
 
   /**
@@ -164,7 +162,7 @@ public class SzrClient {
           .createUnmarshaller().unmarshal(new ByteArrayInputStream(szrResponse));
 
       // build response
-      log.trace(new String(szrResponse, "UTF-8"));
+      log.trace(new String(szrResponse, StandardCharsets.UTF_8));
 
       // ok, we have success
       final Document doc = DomUtils.parseDocument(
@@ -223,7 +221,11 @@ public class SzrClient {
   }
 
   /**
-   * Request a encryped baseId from SRZ.
+   * Request a encrypted baseId from SZR.
+   *
+   * <b>Note</b>: Previously, this method did create a new ERnP entry, if it did not exist. This is
+   * <b>not</b> the case any more. See
+   * {@link at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.CreateNewErnpEntryTask} for that functionality.
    *
    * @param personInfo Minimum dataset of person
    * @return encrypted baseId
@@ -234,10 +236,7 @@ public class SzrClient {
 
     final String resp;
     try {
-      //TODO wirklich immer "insertERnP=true"?
-      // wenn insertErnP=false dann returns vsz oder fehler
-      // wenn insertErnp = true dann returns vsz, ggf vom neuen Eintrag
-      resp = this.szr.getStammzahlEncrypted(personInfo, true);
+      resp = this.szr.getStammzahlEncrypted(personInfo, false);
     } catch (SZRException_Exception e) {
       throw new SzrCommunicationException("ernb.02", new Object[]{e.getMessage()}, e);
     }
@@ -253,8 +252,8 @@ public class SzrClient {
   /**
    * Sign an eidasBind data-structure that combines vsz with user's pubKey and E-ID status.
    *
-   * @param vsz encryped baseId
-   * @param bindingPubKey  binding PublikKey as PKCS1# (ASN.1) container
+   * @param vsz encrypted baseId
+   * @param bindingPubKey  binding PublicKey as PKCS1# (ASN.1) container
    * @param eidStatus Status of the E-ID
    * @param eidData eID information that was used for ERnP registration
    * @return bPK for this person
@@ -266,7 +265,7 @@ public class SzrClient {
     final Map<String, Object> eidsaBindMap = new HashMap<>();
     eidsaBindMap.put(ATTR_NAME_VSZ, vsz);
     eidsaBindMap.put(ATTR_NAME_STATUS, eidStatus);
-    eidsaBindMap.put(ATTR_NAME_PUBKEYS, Arrays.asList(bindingPubKey));
+    eidsaBindMap.put(ATTR_NAME_PUBKEYS, Collections.singletonList(bindingPubKey));
     eidsaBindMap.put(PvpAttributeDefinitions.EID_ISSUING_NATION_NAME, eidData.getCitizenCountryCode());
     injectMdsIfAvailableAndActive(eidsaBindMap, eidData);
 
@@ -296,7 +295,7 @@ public class SzrClient {
       return resp.getOut().get(0).getValue();
 
     } catch (final JsonProcessingException | SZRException_Exception e) {
-      log.warn("Requesting bcBind by using SZR FAILED. Reason: {}", e.getMessage(), null, e);
+      log.warn("Requesting bcBind by using SZR FAILED.", e);
       throw new SzrCommunicationException("ernb.02",
           new Object[]{e.getMessage()}, e);
     }
@@ -311,6 +310,9 @@ public class SzrClient {
         Constants.CONIG_PROPS_EIDAS_SZRCLIENT_USETESTSERVICE,
         true);
 
+    SzrService szrService;
+    QName qname;
+    String szrUrl;
     if (useTestSzr) {
       log.debug("Initializing SZR test environment configuration.");
       qname = SzrService.SZRTestumgebung;
@@ -350,20 +352,20 @@ public class SzrClient {
 
     // inject handler
     log.info("Use SZR service-URL: " + szrUrl);
-    injectBindingProvider((BindingProvider) szr, CLIENT_DEFAULT);
-    injectBindingProvider(dispatch, CLIENT_RAW);
+    injectBindingProvider((BindingProvider) szr, CLIENT_DEFAULT, szrUrl);
+    injectBindingProvider(dispatch, CLIENT_RAW, szrUrl);
 
     // inject http parameters and SSL context
     log.debug("Inject HTTP client settings ... ");
-    injectHttpClient(szr, CLIENT_DEFAULT);
-    injectHttpClient(dispatch, CLIENT_RAW);
+    injectHttpClient(szr, CLIENT_DEFAULT, szrUrl);
+    injectHttpClient(dispatch, CLIENT_RAW, szrUrl);
 
     log.info("SZR-Client initialization successfull");
   }
 
-  private void injectHttpClient(Object raw, String clientType) {
+  private void injectHttpClient(Object raw, String clientType, String szrUrl) {
     // extract client from implementation
-    Client client = null;
+    Client client;
     if (raw instanceof DispatchImpl<?>) {
       client = ((DispatchImpl<?>) raw).getClient();
     } else if (raw instanceof Client) {
@@ -378,14 +380,12 @@ public class SzrClient {
 
     // set timeout policy
     final HTTPClientPolicy httpClientPolicy = new HTTPClientPolicy();
-    httpClientPolicy.setConnectionTimeout(
-        Integer.parseInt(basicConfig.getBasicConfiguration(
-            Constants.CONIG_PROPS_EIDAS_SZRCLIENT_TIMEOUT_CONNECTION,
-            Constants.HTTP_CLIENT_DEFAULT_TIMEOUT_CONNECTION)) * 1000);
-    httpClientPolicy.setReceiveTimeout(
-        Integer.parseInt(basicConfig.getBasicConfiguration(
-            Constants.CONIG_PROPS_EIDAS_SZRCLIENT_TIMEOUT_RESPONSE,
-            Constants.HTTP_CLIENT_DEFAULT_TIMEOUT_RESPONSE)) * 1000);
+    String connectionTimeout = basicConfig.getBasicConfiguration(
+        Constants.CONIG_PROPS_EIDAS_SZRCLIENT_TIMEOUT_CONNECTION, Constants.HTTP_CLIENT_DEFAULT_TIMEOUT_CONNECTION);
+    httpClientPolicy.setConnectionTimeout(Integer.parseInt(connectionTimeout) * 1000L);
+    String responseTimeout = basicConfig.getBasicConfiguration(
+        Constants.CONIG_PROPS_EIDAS_SZRCLIENT_TIMEOUT_RESPONSE, Constants.HTTP_CLIENT_DEFAULT_TIMEOUT_RESPONSE);
+    httpClientPolicy.setReceiveTimeout(Integer.parseInt(responseTimeout) * 1000L);
     http.setClient(httpClientPolicy);
 
     // inject SSL context in case of https
@@ -400,7 +400,7 @@ public class SzrClient {
 
   }
 
-  private void injectBindingProvider(BindingProvider bindingProvider, String clientType) {
+  private void injectBindingProvider(BindingProvider bindingProvider, String clientType, String szrUrl) {
     final Map<String, Object> requestContext = bindingProvider.getRequestContext();
     requestContext.put(BindingProvider.ENDPOINT_ADDRESS_PROPERTY, szrUrl);
 
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/SzrClientTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/SzrClientTest.java
index 99c221d8..5deb5f31 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/SzrClientTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/SzrClientTest.java
@@ -28,10 +28,10 @@ import static org.mockito.ArgumentMatchers.anyList;
 import static org.mockito.Mockito.when;
 
 import java.io.IOException;
-import java.security.InvalidKeyException;
+import java.nio.charset.StandardCharsets;
 import java.security.MessageDigest;
-import java.security.NoSuchProviderException;
 import java.util.List;
+import java.util.Objects;
 
 import javax.xml.bind.JAXBContext;
 import javax.xml.bind.JAXBException;
@@ -44,7 +44,6 @@ import org.apache.commons.lang3.RandomStringUtils;
 import org.apache.commons.lang3.StringUtils;
 import org.apache.cxf.binding.soap.SoapFault;
 import org.joda.time.DateTime;
-import org.jose4j.lang.JoseException;
 import org.junit.Assert;
 import org.junit.Before;
 import org.junit.Ignore;
@@ -60,9 +59,6 @@ import org.springframework.util.Base64Utils;
 import org.w3c.dom.Element;
 import org.xml.sax.SAXException;
 
-import com.fasterxml.jackson.core.JsonProcessingException;
-import com.fasterxml.jackson.databind.JsonMappingException;
-import com.fasterxml.jackson.databind.ObjectMapper;
 import com.skjolberg.mockito.soap.SoapServiceRule;
 
 import at.asitplus.eidas.specific.connector.test.config.dummy.MsConnectorDummyConfigMap;
@@ -102,8 +98,6 @@ public class SzrClientTest {
   @Autowired SzrClient szrClient;
   @Autowired MsConnectorDummyConfigMap basicConfig;
 
-  private static ObjectMapper mapper = new ObjectMapper();
-
   private static final String givenName = "Franz";
   private static final String familyName = "Mustermann";
   private static final String dateOfBirth = "1989-05-05";
@@ -139,7 +133,7 @@ public class SzrClientTest {
 
 
   @Test
-  public void getStammzahlenEcryptedTest() throws JAXBException, SZRException_Exception, SzrCommunicationException {
+  public void getStammzahlenEcryptedTest() throws SZRException_Exception, SzrCommunicationException {
     final GetBPKFromStammzahlEncryptedResponse szrResponse = new GetBPKFromStammzahlEncryptedResponse();
     final GetBPKFromStammzahlEncryptedResponseType result1 = new GetBPKFromStammzahlEncryptedResponseType();
     szrResponse.getOut().add(result1);
@@ -156,7 +150,7 @@ public class SzrClientTest {
 
     when(szrMock.getStammzahlEncrypted(any(), any())).thenReturn(null);
     try {
-      stammzahlEncrypted = szrClient.getEncryptedStammzahl(new PersonInfoType());
+      szrClient.getEncryptedStammzahl(new PersonInfoType());
     } catch (SzrCommunicationException e) {
       Assert.assertTrue("Not correct error", e.getMessage().contains("ernb.01"));
     }
@@ -234,8 +228,7 @@ public class SzrClientTest {
   }
 
   @Test
-  public void eidasBindValid() throws SZRException_Exception, SzrCommunicationException, JsonMappingException,
-      JsonProcessingException, JoseException {
+  public void eidasBindValid() throws SZRException_Exception, SzrCommunicationException {
     final SignContentResponse szrResponse = new SignContentResponse();
     final SignContentEntry result1 = new SignContentEntry();
     final SignContentResponseType content = new SignContentResponseType();
@@ -257,8 +250,7 @@ public class SzrClientTest {
   }
 
   @Test
-  public void eidasBindValidWithMds() throws SZRException_Exception, SzrCommunicationException, JoseException,
-      JsonMappingException, JsonProcessingException {
+  public void eidasBindValidWithMds() throws SZRException_Exception, SzrCommunicationException {
     basicConfig.putConfigValue("eidas.ms.auth.eIDAS.szrclient.eidasbind.mds.inject", "true");
 
     final SignContentResponse szrResponse = new SignContentResponse();
@@ -283,7 +275,7 @@ public class SzrClientTest {
 
   @Test
   public void getIdentityLinkRawModeValidResponse()
-      throws SZRException_Exception, EaafParserException, NoSuchProviderException, IOException, InvalidKeyException,
+      throws SZRException_Exception, EaafParserException,
       EidasSAuthenticationException, JAXBException {
     setSzrResponseIdentityLink("/data/szr/szr_resp_valid_1.xml");
 
@@ -317,8 +309,8 @@ public class SzrClientTest {
 
   @Test
   public void getIdentityLinkRawModeErrorTravelerDocExists()
-      throws SZRException_Exception, EaafParserException, NoSuchProviderException, IOException, InvalidKeyException,
-      EidasSAuthenticationException, JAXBException, ParserConfigurationException, SAXException {
+      throws SZRException_Exception, IOException,
+      EidasSAuthenticationException, ParserConfigurationException, SAXException {
     setSzrExceptionIdentityLink("/data/szr/szr_resp_error_travelerdocexists.xml");
 
     try {
@@ -342,7 +334,7 @@ public class SzrClientTest {
 
   @Ignore
   @Test
-  public void getBpkTest() throws SZRException_Exception, EidasSAuthenticationException {
+  public void getBpkTest() throws EidasSAuthenticationException {
     final List<String> bPK = szrClient.getBpk(getPersonInfo(), DUMMY_TARGET, basicConfig
         .getBasicConfiguration(Constants.CONIG_PROPS_EIDAS_SZRCLIENT_PARAMS_VKZ, "no VKZ defined"));
 
@@ -363,6 +355,7 @@ public class SzrClientTest {
 
   }
 
+  @SuppressWarnings("SameParameterValue")
   private void setSzrResponseIdentityLink(String responseXmlPath) throws JAXBException, SZRException_Exception {
     final JAXBContext jaxbContext = JAXBContext
         .newInstance(szrservices.ObjectFactory.class, org.w3._2001._04.xmldsig_more.ObjectFactory.class,
@@ -375,8 +368,9 @@ public class SzrClientTest {
 
   }
 
+  @SuppressWarnings("SameParameterValue")
   private void setSzrExceptionIdentityLink(String responseXmlPath)
-      throws JAXBException, ParserConfigurationException, SAXException, IOException, SZRException_Exception {
+      throws ParserConfigurationException, SAXException, IOException, SZRException_Exception {
     final Element detailerror = DomUtils.parseXmlNonValidating(this.getClass().getResourceAsStream(responseXmlPath));
     final javax.xml.namespace.QName qName = new javax.xml.namespace.QName("urn:SZRServices", "F455", "p344");
     final SoapFault fault = new SoapFault(
@@ -391,9 +385,8 @@ public class SzrClientTest {
   private String createHashFromUniqueId(String uniqueId) throws EidasSAuthenticationException {
     try {
       final MessageDigest md = MessageDigest.getInstance("SHA-256");
-      final byte[] hash = md.digest(uniqueId.getBytes("UTF-8"));
-      final String hashBase64 = new String(Base64Utils.encode(hash), "UTF-8").replaceAll("\r\n", "");
-      return hashBase64;
+      final byte[] hash = md.digest(uniqueId.getBytes(StandardCharsets.UTF_8));
+      return new String(Base64Utils.encode(hash), StandardCharsets.UTF_8).replaceAll("\r\n", "");
 
     } catch (final Exception ex) {
       throw new EidasSAuthenticationException("internal.03", new Object[]{}, ex);
@@ -413,7 +406,7 @@ public class SzrClientTest {
 
     // parse some eID attributes
     final Triple<String, String, String> eIdentifier = EidasResponseUtils.parseEidasPersonalIdentifier(eIDASeID);
-    final String uniqueId = createHashFromUniqueId(eIdentifier.getThird());
+    final String uniqueId = createHashFromUniqueId(Objects.requireNonNull(eIdentifier).getThird());
     final String citizenCountry = eIdentifier.getFirst();
 
     // person information
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/SzrClientTestProduction.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/SzrClientTestProduction.java
index abebf0da..38829d67 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/SzrClientTestProduction.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/SzrClientTestProduction.java
@@ -23,11 +23,10 @@
 
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.test;
 
-import java.io.IOException;
-import java.security.InvalidKeyException;
+import java.nio.charset.StandardCharsets;
 import java.security.MessageDigest;
-import java.security.NoSuchProviderException;
 import java.util.List;
+import java.util.Objects;
 
 import org.apache.commons.lang3.RandomStringUtils;
 import org.apache.commons.lang3.StringUtils;
@@ -63,7 +62,6 @@ import at.gv.egiz.eaaf.core.impl.data.Triple;
 import at.gv.egiz.eaaf.core.impl.idp.auth.data.SimpleIdentityLinkAssertionParser;
 import szrservices.IdentityLinkType;
 import szrservices.PersonInfoType;
-import szrservices.SZRException_Exception;
 import szrservices.TravelDocumentType;
 
 
@@ -98,14 +96,14 @@ public class SzrClientTestProduction {
   }
 
   @Test
-  public void getVsz() throws SzrCommunicationException, EidasSAuthenticationException {
+  public void getVsz() throws EidasSAuthenticationException {
     String vsz = szrClient.getEncryptedStammzahl(getPersonInfo());
     Assert.assertNotNull("vsz", vsz);
 
   }
 
   @Test
-  public void getEidasBind() throws SzrCommunicationException, EidasSAuthenticationException {
+  public void getEidasBind() throws EidasSAuthenticationException {
     String vsz = RandomStringUtils.randomAlphanumeric(10);
     String bindingPubKey = Base64.toBase64String(RandomStringUtils.random(20).getBytes());
     String eidStatus = "urn:eidgvat:eid.status.eidas";
@@ -125,8 +123,7 @@ public class SzrClientTestProduction {
 
 
   @Test
-  public void getIdentityLinkRawMode() throws SZRException_Exception, EaafParserException,
-      NoSuchProviderException, IOException, InvalidKeyException, EidasSAuthenticationException {
+  public void getIdentityLinkRawMode() throws EaafParserException, EidasSAuthenticationException {
     log.debug("Starting connecting SZR Gateway");
     final IdentityLinkType result = szrClient.getIdentityLinkInRawMode(
         getPersonInfo());
@@ -173,7 +170,7 @@ public class SzrClientTestProduction {
 
   @Ignore
   @Test
-  public void getBpkTest() throws SZRException_Exception, EidasSAuthenticationException {
+  public void getBpkTest() throws EidasSAuthenticationException {
     final List<String> bPK = szrClient.getBpk(getPersonInfo(), DUMMY_TARGET,
         basicConfig.getBasicConfiguration(
             Constants.CONIG_PROPS_EIDAS_SZRCLIENT_PARAMS_VKZ,
@@ -193,9 +190,8 @@ public class SzrClientTestProduction {
   private String createHashFromUniqueId(String uniqueId) throws EidasSAuthenticationException {
     try {
       final MessageDigest md = MessageDigest.getInstance("SHA-256");
-      final byte[] hash = md.digest(uniqueId.getBytes("UTF-8"));
-      final String hashBase64 = new String(Base64Utils.encode(hash), "UTF-8").replaceAll("\r\n", "");
-      return hashBase64;
+      final byte[] hash = md.digest(uniqueId.getBytes(StandardCharsets.UTF_8));
+      return new String(Base64Utils.encode(hash), StandardCharsets.UTF_8).replaceAll("\r\n", "");
 
     } catch (final Exception ex) {
       throw new EidasSAuthenticationException("internal.03", new Object[] {}, ex);
@@ -216,7 +212,7 @@ public class SzrClientTestProduction {
     // parse some eID attributes
     final Triple<String, String, String> eIdentifier =
         EidasResponseUtils.parseEidasPersonalIdentifier(eIDASeID);
-    final String uniqueId = createHashFromUniqueId(eIdentifier.getThird());
+    final String uniqueId = createHashFromUniqueId(Objects.requireNonNull(eIdentifier).getThird());
     final String citizenCountry = eIdentifier.getFirst();
 
     // person information
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/CreateIdentityLinkTaskEidNewTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/CreateIdentityLinkTaskEidNewTest.java
index c29c82c7..ee7d2ebd 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/CreateIdentityLinkTaskEidNewTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/CreateIdentityLinkTaskEidNewTest.java
@@ -227,7 +227,7 @@ public class CreateIdentityLinkTaskEidNewTest {
     verify(szrMock, times(1)).getStammzahlEncrypted(argument4.capture(), argument5.capture());
 
     Boolean param5 = argument5.getValue();
-    Assert.assertTrue("insertERnP flag", param5);
+    Assert.assertFalse("insertERnP flag", param5);
     PersonInfoType person = argument4.getValue();
     Assert.assertEquals("FamilyName",
         response.getAttributes().getAttributeValuesByFriendlyName("FamilyName").getFirstValue(
@@ -344,7 +344,7 @@ public class CreateIdentityLinkTaskEidNewTest {
     verify(szrMock, times(1)).getStammzahlEncrypted(argument4.capture(), argument5.capture());
 
     Boolean param5 = argument5.getValue();
-    Assert.assertTrue("insertERnP flag", param5);
+    Assert.assertFalse("insertERnP flag", param5);
     PersonInfoType person = argument4.getValue();
     Assert.assertEquals("FamilyName",
         response.getAttributes().getAttributeValuesByFriendlyName("FamilyName").getFirstValue(
-- 
cgit v1.2.3


From 5b9cd1e6abd7caa5f66c121ece02ecc208192e0e Mon Sep 17 00:00:00 2001
From: Christian Kollmann <christian.kollmann@a-sit.at>
Date: Thu, 4 Mar 2021 16:42:51 +0100
Subject: Refactor documentation

---
 .../eidas/v2/tasks/ReceiveAustrianResidenceGuiResponseTask.java     | 6 +++---
 .../eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseTask.java     | 6 +++---
 .../auth/eidas/v2/tasks/ReceiveOtherLoginMethodGuiResponseTask.java | 4 ++--
 3 files changed, 8 insertions(+), 8 deletions(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveAustrianResidenceGuiResponseTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveAustrianResidenceGuiResponseTask.java
index 6d050dc1..3a337de2 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveAustrianResidenceGuiResponseTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveAustrianResidenceGuiResponseTask.java
@@ -63,9 +63,9 @@ import java.util.Enumeration;
  * </ul>
  * Transitions:
  * <ul>
- *   <li>{@link CreateNewErnpEntryTask}</li> if no results from search with residency data in registers
- *   <li>{@link CreateIdentityLinkTask}</li> if one exact match between initial register search (with MDS) and results
- *   from search with residency data in registers exists
+ *   <li>{@link CreateNewErnpEntryTask} if no results from search with residency data in registers</li>
+ *   <li>{@link CreateIdentityLinkTask} if one exact match between initial register search (with MDS) and results
+ *   from search with residency data in registers exists</li>
  * </ul>
  *
  * @author amarsalek
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseTask.java
index 64327d40..5e034cb3 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseTask.java
@@ -91,9 +91,9 @@ import static at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.I
  * </ul>
  * Transitions:
  * <ul>
- *   <li>{@link GenerateAustrianResidenceGuiTask}</li> if no results in registers were found
- *   <li>{@link CreateIdentityLinkTask}</li> if one exact match between initial register search (with MDS) data and
- *   register search with MPS data exists
+ *   <li>{@link GenerateAustrianResidenceGuiTask} if no results in registers were found</li>
+ *   <li>{@link CreateIdentityLinkTask} if one exact match between initial register search (with MDS) data and
+ *   register search with MPS data exists</li>
  * </ul>
  *
  * @author tlenz
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveOtherLoginMethodGuiResponseTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveOtherLoginMethodGuiResponseTask.java
index b3c994c9..33b6fbb2 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveOtherLoginMethodGuiResponseTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveOtherLoginMethodGuiResponseTask.java
@@ -52,8 +52,8 @@ import java.util.Enumeration;
  * </ul>
  * Transitions:
  * <ul>
- *   <li>{@link GenerateMobilePhoneSignatureRequestTask}</li> if selected by user
- *   <li>{@link GenerateAustrianResidenceGuiTask}</li> if selected by user
+ *   <li>{@link GenerateMobilePhoneSignatureRequestTask} if selected by user</li>
+ *   <li>{@link GenerateAustrianResidenceGuiTask} if selected by user</li>
  * </ul>
  *
  * @author amarsalek
-- 
cgit v1.2.3


From e2ae59bd6ef577796a4c5232fe6d7c7a720ad995 Mon Sep 17 00:00:00 2001
From: Christian Kollmann <christian.kollmann@a-sit.at>
Date: Thu, 4 Mar 2021 16:48:55 +0100
Subject: Move creating ERnP entry to SZRClient

---
 .../auth/eidas/v2/ernp/DummyErnpClient.java        |  6 --
 .../modules/auth/eidas/v2/ernp/IErnpClient.java    |  3 +-
 .../modules/auth/eidas/v2/szr/SzrClient.java       | 86 ++++++++++++++++++++--
 .../eidas/v2/tasks/CreateIdentityLinkTask.java     | 15 ++++
 .../eidas/v2/tasks/CreateNewErnpEntryTask.java     | 18 ++---
 5 files changed, 105 insertions(+), 23 deletions(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernp/DummyErnpClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernp/DummyErnpClient.java
index 77411dd1..3536b0dc 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernp/DummyErnpClient.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernp/DummyErnpClient.java
@@ -62,12 +62,6 @@ public class DummyErnpClient implements IErnpClient {
     //TODO
   }
 
-  @Override
-  public boolean createNewEntry(SimpleEidasData simpleEidasData) {
-    //TODO
-    return false;
-  }
-
   @Override
   public List<RegisterResult> searchWithBpkZp(String bpkzp) {
     //TODO
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernp/IErnpClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernp/IErnpClient.java
index 0c994f69..218a9f41 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernp/IErnpClient.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernp/IErnpClient.java
@@ -41,7 +41,6 @@ public interface IErnpClient {
 
   void update(RegisterResult registerResult, SimpleEidasData eidData);
 
-  boolean createNewEntry(SimpleEidasData simpleEidasData);
-
   List<RegisterResult> searchWithBpkZp(String bpkzp);
+
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/szr/SzrClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/szr/SzrClient.java
index 5bad738b..6040e0b3 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/szr/SzrClient.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/szr/SzrClient.java
@@ -60,6 +60,11 @@ import javax.xml.ws.BindingProvider;
 import javax.xml.ws.Dispatch;
 import javax.xml.ws.handler.Handler;
 
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.ErnpEidData;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
+import at.gv.e_government.reference.namespace.persondata._20020228.AlternativeNameType;
+import at.gv.e_government.reference.namespace.persondata._20020228.PersonNameType;
+import at.gv.e_government.reference.namespace.persondata._20020228.PhysicalPersonType;
 import org.apache.commons.lang3.StringUtils;
 import org.apache.cxf.configuration.jsse.TLSClientParameters;
 import org.apache.cxf.endpoint.Client;
@@ -79,7 +84,6 @@ import com.fasterxml.jackson.core.JsonProcessingException;
 import com.fasterxml.jackson.databind.ObjectMapper;
 
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.ErnpEidData;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.SzrCommunicationException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.LoggingHandler;
 import at.gv.egiz.eaaf.core.api.data.PvpAttributeDefinitions;
@@ -101,6 +105,7 @@ import szrservices.SZRException_Exception;
 import szrservices.SignContent;
 import szrservices.SignContentEntry;
 import szrservices.SignContentResponseType;
+import szrservices.TravelDocumentType;
 
 
 @Service("SZRClientForeIDAS")
@@ -220,12 +225,33 @@ public class SzrClient {
 
   }
 
+  /**
+   * Creates a new ERnP entry.
+   *
+   * TODO Is this correct? Ask BMI.
+   *
+   * @param eidasData Minimum dataset of person
+   * @return encrypted baseId
+   * @throws SzrCommunicationException    In case of a SZR error
+   */
+  public String createNewErnpEntry(final SimpleEidasData eidasData) throws SzrCommunicationException {
+    final String resp;
+    try {
+      resp = this.szr.getStammzahlEncrypted(generateSzrRequest(eidasData), true);
+    } catch (SZRException_Exception e) {
+      throw new SzrCommunicationException("ernb.02", new Object[]{e.getMessage()}, e);
+    }
+    if (StringUtils.isEmpty(resp)) {
+      throw new SzrCommunicationException("ernb.01", new Object[]{"Stammzahl response empty"}); // TODO error handling
+    }
+    return resp;
+  }
+
   /**
    * Request a encrypted baseId from SZR.
    *
    * <b>Note</b>: Previously, this method did create a new ERnP entry, if it did not exist. This is
-   * <b>not</b> the case any more. See
-   * {@link at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.CreateNewErnpEntryTask} for that functionality.
+   * <b>not</b> the case any more. See {@link #createNewErnpEntry(SimpleEidasData)} for that functionality.
    *
    * @param personInfo Minimum dataset of person
    * @return encrypted baseId
@@ -233,7 +259,6 @@ public class SzrClient {
    */
   public String getEncryptedStammzahl(final PersonInfoType personInfo)
       throws SzrCommunicationException {
-
     final String resp;
     try {
       resp = this.szr.getStammzahlEncrypted(personInfo, false);
@@ -301,6 +326,57 @@ public class SzrClient {
     }
   }
 
+  private PersonInfoType generateSzrRequest(SimpleEidasData eidData) {
+    String documentType = basicConfig
+        .getBasicConfiguration(Constants.CONIG_PROPS_EIDAS_SZRCLIENT_PARAMS_EDOCUMENTTYPE,
+            Constants.SZR_CONSTANTS_DEFAULT_DOCUMENT_TYPE);
+    boolean setBirthName = basicConfig
+        .getBasicConfigurationBoolean(Constants.CONIG_PROPS_EIDAS_SZRCLIENT_PARAMS_SETBIRTHNAMEIFAVAILABLE, true);
+    boolean setPlaceOfBirth = basicConfig
+        .getBasicConfigurationBoolean(Constants.CONIG_PROPS_EIDAS_SZRCLIENT_PARAMS_SETPLACEOFBIRTHIFAVAILABLE, true);
+    log.debug("Starting connecting SZR Gateway");
+    final PersonInfoType personInfo = new PersonInfoType();
+    final PersonNameType personName = new PersonNameType();
+    final PhysicalPersonType naturalPerson = new PhysicalPersonType();
+    final TravelDocumentType eDocument = new TravelDocumentType();
+
+    naturalPerson.setName(personName);
+    personInfo.setPerson(naturalPerson);
+    personInfo.setTravelDocument(eDocument);
+
+    // person information
+    personName.setFamilyName(eidData.getFamilyName());
+    personName.setGivenName(eidData.getGivenName());
+    naturalPerson.setDateOfBirth(eidData.getDateOfBirth());
+    eDocument.setIssuingCountry(eidData.getCitizenCountryCode());
+    eDocument.setDocumentNumber(eidData.getPseudonym());
+
+    // eID document information
+    eDocument.setDocumentType(documentType);
+
+    // set PlaceOfBirth if available
+    if (eidData.getPlaceOfBirth() != null) {
+      log.trace("Find 'PlaceOfBirth' attribute: " + eidData.getPlaceOfBirth());
+      if (setPlaceOfBirth) {
+        naturalPerson.setPlaceOfBirth(eidData.getPlaceOfBirth());
+        log.trace("Adding 'PlaceOfBirth' to ERnB request ... ");
+      }
+    }
+
+    // set BirthName if available
+    if (eidData.getBirthName() != null) {
+      log.trace("Find 'BirthName' attribute: " + eidData.getBirthName());
+      if (setBirthName) {
+        final AlternativeNameType alternativeName = new AlternativeNameType();
+        naturalPerson.setAlternativeName(alternativeName);
+        alternativeName.setFamilyName(eidData.getBirthName());
+        log.trace("Adding 'BirthName' to ERnB request ... ");
+      }
+    }
+
+    return personInfo;
+  }
+
   @PostConstruct
   private void initialize() {
     log.info("Starting SZR-Client initialization .... ");
@@ -503,7 +579,7 @@ public class SzrClient {
       final Map<String, Object> mds = new HashMap<>();
       mds.put(PvpAttributeDefinitions.PRINCIPAL_NAME_NAME, eidData.getFamilyName());
       mds.put(PvpAttributeDefinitions.GIVEN_NAME_NAME, eidData.getGivenName());
-      mds.put(PvpAttributeDefinitions.BIRTHDATE_NAME, eidData.getFormatedDateOfBirth());
+      mds.put(PvpAttributeDefinitions.BIRTHDATE_NAME, eidData.getDateOfBirth());
       eidsaBindMap.put(ATTR_NAME_MDS, mds);
 
     }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateIdentityLinkTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateIdentityLinkTask.java
index ab9c49da..d9d45752 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateIdentityLinkTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateIdentityLinkTask.java
@@ -90,6 +90,21 @@ import java.util.Objects;
  *
  * @author tlenz
  * <p>
+ * <p>
+ * Input:
+ * <ul>
+ *   <li>{@link Constants#DATA_SIMPLE_EIDAS} initial login data from user</li>
+ *   <li>{@link Constants#DATA_RESULT_MATCHING_BPK} the BPK of the matched entry in a register</li>
+ * </ul>
+ * Output:
+ * <ul>
+ *   <li>{@link Constants#EIDAS_BIND} the binding block</li>
+ *   <li>{@link Constants#SZR_AUTHBLOCK} the auth block</li>
+ * </ul>
+ * Transitions:
+ * <ul>
+ *   <li>{@link at.gv.egiz.eaaf.core.impl.idp.controller.tasks.FinalizeAuthenticationTask}</li>
+ * </ul>
  * TODO Take Constants#DATA_SIMPLE_EIDAS and Constants#DATA_RESULT_MATCHING_BPK
  * TODO Only do VSZ Erstellung and eidasBind -- this is always the end of the whole process
  * TODO Move Eintragung to separate Task, as it does not happen every time
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateNewErnpEntryTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateNewErnpEntryTask.java
index b89af3a0..15d62a7a 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateNewErnpEntryTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateNewErnpEntryTask.java
@@ -25,7 +25,7 @@ package at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks;
 
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernp.IErnpClient;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.szr.SzrClient;
 import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
 import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
 import at.gv.egiz.eaaf.core.impl.idp.auth.data.AuthProcessDataWrapper;
@@ -49,9 +49,6 @@ import javax.servlet.http.HttpServletResponse;
  *   <li>TODO MDS, BPK of new entry</li>
  * </ul>
  *
- * TODO Import code from CreateIdentityLinkTask
- * TODO Nicht mit BMI abgestimmt: ERnP Eintrag über SZR anzulegen?
- *
  * @author amarsalek
  * @author ckollmann
  */
@@ -59,14 +56,14 @@ import javax.servlet.http.HttpServletResponse;
 @Component("CreateNewErnbEntryTask")
 public class CreateNewErnpEntryTask extends AbstractAuthServletTask {
 
-  private final IErnpClient ernpClient;
+  private final SzrClient szrClient;
 
   /**
    * Constructor.
-   * @param ernpClient ErnP client
+   * @param szrClient SZR client for creating a new ERnP entry
    */
-  public CreateNewErnpEntryTask(IErnpClient ernpClient) {
-    this.ernpClient = ernpClient;
+  public CreateNewErnpEntryTask(SzrClient szrClient) {
+    this.szrClient = szrClient;
   }
 
   @Override
@@ -74,8 +71,9 @@ public class CreateNewErnpEntryTask extends AbstractAuthServletTask {
       throws TaskExecutionException {
     try {
       SimpleEidasData simpleEidasData = getInitialEidasData();
-      //TODO Does this return the BPK?
-      ernpClient.createNewEntry(simpleEidasData);
+      // TODO When to do eidPostProcessor.postProcess on the eidas attributes?
+      String vsz = szrClient.createNewErnpEntry(simpleEidasData);
+      // TODO what to do with the VSZ now
     } catch (final Exception e) {
       log.error("Initial search FAILED.", e);
       throw new TaskExecutionException(pendingReq, "Initial search FAILED.", e);
-- 
cgit v1.2.3


From 7e638d692540f83c35184b4d2629ea85ee051845 Mon Sep 17 00:00:00 2001
From: Christian Kollmann <christian.kollmann@a-sit.at>
Date: Thu, 4 Mar 2021 16:53:04 +0100
Subject: Remove setting QAA level from CreateIdentityLink

This is already set in ReceiveAuthnResponse
---
 .../auth/eidas/v2/tasks/CreateIdentityLinkTask.java       |  5 ++---
 .../v2/test/tasks/CreateIdentityLinkTaskEidNewTest.java   |  7 -------
 .../eidas/v2/test/tasks/CreateIdentityLinkTaskTest.java   | 15 ---------------
 3 files changed, 2 insertions(+), 25 deletions(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateIdentityLinkTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateIdentityLinkTask.java
index d9d45752..c22dc4ba 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateIdentityLinkTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateIdentityLinkTask.java
@@ -157,7 +157,7 @@ public class CreateIdentityLinkTask extends AbstractAuthServletTask {
           executeIdlMode(eidasAttributes, eidData, personInfo);
         }
       }
-      storeGenericInfoToSession(eidasResponse, eidasAttributes);
+      storeGenericInfoToSession(eidasAttributes);
       requestStoreage.storePendingRequest(pendingReq);
     } catch (final EidasAttributeException e) {
       throw new TaskExecutionException(pendingReq, "Minimum required eIDAS attributeset not found.", e);
@@ -169,14 +169,13 @@ public class CreateIdentityLinkTask extends AbstractAuthServletTask {
     }
   }
 
-  private void storeGenericInfoToSession(ILightResponse eidasResponse, Map<String, Object> eidasAttributes) throws EaafStorageException {
+  private void storeGenericInfoToSession(Map<String, Object> eidasAttributes) throws EaafStorageException {
     AuthProcessDataWrapper authProcessData = getAuthProcessDataWrapper();
     authProcessData.setForeigner(true);
     Triple<String, String, String> eidasPersonalIdentifier = EidasResponseUtils
         .parseEidasPersonalIdentifier((String) eidasAttributes.get(Constants.eIDAS_ATTR_PERSONALIDENTIFIER));
     authProcessData.setGenericDataToSession(PvpAttributeDefinitions.EID_ISSUING_NATION_NAME,
         Objects.requireNonNull(eidasPersonalIdentifier).getFirst());
-    authProcessData.setQaaLevel(eidasResponse.getLevelOfAssurance());
   }
 
   private void executeIdlMode(Map<String, Object> simpleAttrMap, ErnpEidData eidData, PersonInfoType personInfo) throws EaafException {
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/CreateIdentityLinkTaskEidNewTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/CreateIdentityLinkTaskEidNewTest.java
index ee7d2ebd..248b71d9 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/CreateIdentityLinkTaskEidNewTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/CreateIdentityLinkTaskEidNewTest.java
@@ -196,10 +196,6 @@ public class CreateIdentityLinkTaskEidNewTest {
     Assert.assertTrue("foreigner process", authProcessData.isForeigner());
     Assert.assertEquals("EID-ISSUING_NATION", "LU",
         authProcessData.getGenericDataFromSession(PvpAttributeDefinitions.EID_ISSUING_NATION_NAME, String.class));
-    Assert.assertNotNull("LoA is null", authProcessData.getQaaLevel());
-    Assert.assertEquals("LoA", response.getLevelOfAssurance(),
-        authProcessData.getQaaLevel());
-
 
     // check authblock signature
     final AlgorithmConstraints constraints = new AlgorithmConstraints(ConstraintType.PERMIT,
@@ -334,9 +330,6 @@ public class CreateIdentityLinkTaskEidNewTest {
     Assert.assertTrue("foreigner process", authProcessData.isForeigner());
     Assert.assertEquals("EID-ISSUING_NATION", "LU",
         authProcessData.getGenericDataFromSession(PvpAttributeDefinitions.EID_ISSUING_NATION_NAME, String.class));
-    Assert.assertNotNull("LoA is null", authProcessData.getQaaLevel());
-    Assert.assertEquals("LoA", response.getLevelOfAssurance(),
-        authProcessData.getQaaLevel());
 
     // check vsz request
     ArgumentCaptor<PersonInfoType> argument4 = ArgumentCaptor.forClass(PersonInfoType.class);
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/CreateIdentityLinkTaskTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/CreateIdentityLinkTaskTest.java
index 4d52566d..556bd2eb 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/CreateIdentityLinkTaskTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/CreateIdentityLinkTaskTest.java
@@ -165,9 +165,6 @@ public class CreateIdentityLinkTaskTest {
     Assert.assertTrue("foreigner process", authProcessData.isForeigner());
     Assert.assertEquals("EID-ISSUING_NATION", "LU",
         authProcessData.getGenericDataFromSession(PvpAttributeDefinitions.EID_ISSUING_NATION_NAME, String.class));
-    Assert.assertNotNull("LoA is null", authProcessData.getQaaLevel());
-    Assert.assertEquals("LoA", response.getLevelOfAssurance(),
-        authProcessData.getQaaLevel());
 
     Assert.assertNotNull("IDL", authProcessData.getIdentityLink());
     checkElement("Mustermann", authProcessData.getIdentityLink().getFamilyName());
@@ -217,9 +214,6 @@ public class CreateIdentityLinkTaskTest {
     Assert.assertTrue("foreigner process", authProcessData.isForeigner());
     Assert.assertEquals("EID-ISSUING_NATION", "LU",
         authProcessData.getGenericDataFromSession(PvpAttributeDefinitions.EID_ISSUING_NATION_NAME, String.class));
-    Assert.assertNotNull("LoA is null", authProcessData.getQaaLevel());
-    Assert.assertEquals("LoA", response.getLevelOfAssurance(),
-        authProcessData.getQaaLevel());
 
     Assert.assertNotNull("no bPK", authProcessData.getGenericDataFromSession(PvpAttributeDefinitions.BPK_NAME));
     Assert.assertEquals("wrong bPK", "FN+123456i:D26vJncPS2W790RH/LP04V+vNOQ=",
@@ -260,9 +254,6 @@ public class CreateIdentityLinkTaskTest {
     Assert.assertTrue("foreigner process", authProcessData.isForeigner());
     Assert.assertEquals("EID-ISSUING_NATION", "LU",
         authProcessData.getGenericDataFromSession(PvpAttributeDefinitions.EID_ISSUING_NATION_NAME, String.class));
-    Assert.assertNotNull("LoA is null", authProcessData.getQaaLevel());
-    Assert.assertEquals("LoA", response.getLevelOfAssurance(),
-        authProcessData.getQaaLevel());
 
     Assert.assertNotNull("IDL", authProcessData.getIdentityLink());
     checkElement("Musterfrau", authProcessData.getIdentityLink().getFamilyName());
@@ -368,9 +359,6 @@ public class CreateIdentityLinkTaskTest {
       Assert.assertTrue("foreigner process", authProcessData.isForeigner());
       Assert.assertEquals("EID-ISSUING_NATION", "LU",
           authProcessData.getGenericDataFromSession(PvpAttributeDefinitions.EID_ISSUING_NATION_NAME, String.class));
-      Assert.assertNotNull("LoA is null", authProcessData.getQaaLevel());
-      Assert.assertEquals("LoA", response.getLevelOfAssurance(),
-          authProcessData.getQaaLevel());
 
       Assert.assertNotNull("no bPK", authProcessData.getGenericDataFromSession(PvpAttributeDefinitions.BPK_NAME));
       Assert.assertEquals("wrong bPK", bpk,
@@ -407,9 +395,6 @@ public class CreateIdentityLinkTaskTest {
     Assert.assertTrue("foreigner process", authProcessData.isForeigner());
     Assert.assertEquals("EID-ISSUING_NATION", "LU",
         authProcessData.getGenericDataFromSession(PvpAttributeDefinitions.EID_ISSUING_NATION_NAME, String.class));
-    Assert.assertNotNull("LoA is null", authProcessData.getQaaLevel());
-    Assert.assertEquals("LoA", response.getLevelOfAssurance(),
-        authProcessData.getQaaLevel());
 
     Assert.assertNotNull("IDL", authProcessData.getIdentityLink());
 
-- 
cgit v1.2.3


From 7e446e645091e0d507222333def540e9c570983c Mon Sep 17 00:00:00 2001
From: Christian Kollmann <christian.kollmann@a-sit.at>
Date: Thu, 4 Mar 2021 17:12:53 +0100
Subject: Move creating request objects into SzrClient

---
 .../modules/auth/eidas/v2/szr/SzrClient.java       |  34 +++--
 .../eidas/v2/tasks/CreateIdentityLinkTask.java     |  76 ++--------
 .../modules/auth/eidas/v2/test/SzrClientTest.java  | 162 ++++++---------------
 .../eidas/v2/test/SzrClientTestProduction.java     | 110 ++++----------
 4 files changed, 105 insertions(+), 277 deletions(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/szr/SzrClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/szr/SzrClient.java
index 6040e0b3..22f38c2a 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/szr/SzrClient.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/szr/SzrClient.java
@@ -138,15 +138,16 @@ public class SzrClient {
   /**
    * Get IdentityLink of a person.
    *
-   * @param personInfo Person identification information
+   *
+   * @param eidData minimum dataset of person
    * @return IdentityLink
    * @throws SzrCommunicationException In case of a SZR error
    */
-  public IdentityLinkType getIdentityLinkInRawMode(PersonInfoType personInfo)
+  public IdentityLinkType getIdentityLinkInRawMode(ErnpEidData eidData)
       throws SzrCommunicationException {
     try {
       final GetIdentityLinkEidas getIdl = new GetIdentityLinkEidas();
-      getIdl.setPersonInfo(personInfo);
+      getIdl.setPersonInfo(generateSzrRequest(convertTemp(eidData)));
 
       final JAXBContext jaxbContext = JAXBContext.newInstance(ObjectFactory.class);
       final Marshaller jaxbMarshaller = jaxbContext.createMarshaller();
@@ -200,17 +201,18 @@ public class SzrClient {
   /**
    * Get bPK of person.
    *
-   * @param personInfo Person identification information
+   *
+   * @param eidData    Minimum dataset of person
    * @param target     requested bPK target
    * @param vkz        Verfahrenskennzeichen
    * @return bPK for this person
    * @throws SzrCommunicationException In case of a SZR error
    */
-  public List<String> getBpk(PersonInfoType personInfo, String target, String vkz)
+  public List<String> getBpk(ErnpEidData eidData, String target, String vkz)
       throws SzrCommunicationException {
     try {
       final GetBPK parameters = new GetBPK();
-      parameters.setPersonInfo(personInfo);
+      parameters.setPersonInfo(generateSzrRequest(convertTemp(eidData)));
       parameters.getBereichsKennung().add(target);
       parameters.setVKZ(vkz);
       final GetBPKResponse result = this.szr.getBPK(parameters);
@@ -253,15 +255,15 @@ public class SzrClient {
    * <b>Note</b>: Previously, this method did create a new ERnP entry, if it did not exist. This is
    * <b>not</b> the case any more. See {@link #createNewErnpEntry(SimpleEidasData)} for that functionality.
    *
-   * @param personInfo Minimum dataset of person
+   * @param eidData Minimum dataset of person
    * @return encrypted baseId
    * @throws SzrCommunicationException    In case of a SZR error
    */
-  public String getEncryptedStammzahl(final PersonInfoType personInfo)
+  public String getEncryptedStammzahl(final ErnpEidData eidData)
       throws SzrCommunicationException {
     final String resp;
     try {
-      resp = this.szr.getStammzahlEncrypted(personInfo, false);
+      resp = this.szr.getStammzahlEncrypted(generateSzrRequest(convertTemp(eidData)), false);
     } catch (SZRException_Exception e) {
       throw new SzrCommunicationException("ernb.02", new Object[]{e.getMessage()}, e);
     }
@@ -274,6 +276,20 @@ public class SzrClient {
 
   }
 
+  private SimpleEidasData convertTemp(ErnpEidData eidData) {
+    return SimpleEidasData.builder()
+        .citizenCountryCode(eidData.getCitizenCountryCode())
+        .pseudonym(eidData.getPseudonym())
+        .givenName(eidData.getGivenName())
+        .familyName(eidData.getFamilyName())
+        .dateOfBirth(eidData.getFormatedDateOfBirth())
+        .placeOfBirth(eidData.getPlaceOfBirth())
+        .birthName(eidData.getBirthName())
+        .address(eidData.getAddress())
+        //TODO not available.taxNumber()
+        .build();
+  }
+
   /**
    * Sign an eidasBind data-structure that combines vsz with user's pubKey and E-ID status.
    *
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateIdentityLinkTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateIdentityLinkTask.java
index c22dc4ba..0287fe35 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateIdentityLinkTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateIdentityLinkTask.java
@@ -33,9 +33,6 @@ import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.AuthBlockSigning
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.ICcSpecificEidProcessingService;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.szr.SzrClient;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.EidasResponseUtils;
-import at.gv.e_government.reference.namespace.persondata._20020228.AlternativeNameType;
-import at.gv.e_government.reference.namespace.persondata._20020228.PersonNameType;
-import at.gv.e_government.reference.namespace.persondata._20020228.PhysicalPersonType;
 import at.gv.egiz.eaaf.core.api.data.EaafConstants;
 import at.gv.egiz.eaaf.core.api.data.PvpAttributeDefinitions;
 import at.gv.egiz.eaaf.core.api.idp.IConfiguration;
@@ -72,8 +69,6 @@ import org.w3c.dom.Element;
 import org.w3c.dom.Node;
 import org.xml.sax.SAXException;
 import szrservices.IdentityLinkType;
-import szrservices.PersonInfoType;
-import szrservices.TravelDocumentType;
 
 import javax.servlet.http.HttpServletRequest;
 import javax.servlet.http.HttpServletResponse;
@@ -147,14 +142,12 @@ public class CreateIdentityLinkTask extends AbstractAuthServletTask {
       if (basicConfig.getBasicConfigurationBoolean(Constants.CONIG_PROPS_EIDAS_SZRCLIENT_DEBUG_USEDUMMY, false)) {
         buildDummyIdentityLink(eidData);
       } else {
-        //build SZR request from eIDAS data
-        final PersonInfoType personInfo = generateSzrRequest(eidData);
         //request SZR based on IDL or E-ID mode
         if (pendingReq.getServiceProviderConfiguration()
             .isConfigurationValue(MsEidasNodeConstants.PROP_CONFIG_SP_NEW_EID_MODE, false)) {
-          executeEidMode(eidasAttributes, eidData, personInfo);
+          executeEidMode(eidasAttributes, eidData);
         } else {
-          executeIdlMode(eidasAttributes, eidData, personInfo);
+          executeIdlMode(eidasAttributes, eidData);
         }
       }
       storeGenericInfoToSession(eidasAttributes);
@@ -178,9 +171,9 @@ public class CreateIdentityLinkTask extends AbstractAuthServletTask {
         Objects.requireNonNull(eidasPersonalIdentifier).getFirst());
   }
 
-  private void executeIdlMode(Map<String, Object> simpleAttrMap, ErnpEidData eidData, PersonInfoType personInfo) throws EaafException {
+  private void executeIdlMode(Map<String, Object> simpleAttrMap, ErnpEidData eidData) throws EaafException {
     //request SZR
-    SzrResultHolder idlResult = requestSzrForIdentityLink(personInfo);
+    SzrResultHolder idlResult = requestSzrForIdentityLink(eidData);
 
     //write revision-Log entry for personal-identifier mapping
     writeExtendedRevisionLogEntry(simpleAttrMap, eidData);
@@ -201,9 +194,9 @@ public class CreateIdentityLinkTask extends AbstractAuthServletTask {
             .getAreaSpecificTargetIdentifier());
   }
 
-  private void executeEidMode(Map<String, Object> simpleAttrMap, ErnpEidData eidData, PersonInfoType personInfo) throws JsonProcessingException, EaafException, JoseException {
+  private void executeEidMode(Map<String, Object> simpleAttrMap, ErnpEidData eidData) throws JsonProcessingException, EaafException, JoseException {
     // get encrypted baseId
-    String vsz = szrClient.getEncryptedStammzahl(personInfo);
+    String vsz = szrClient.getEncryptedStammzahl(eidData);
 
     //write revision-Log entry and extended infos personal-identifier mapping
     revisionsLogger.logEvent(pendingReq, MsConnectorEventCodes.SZR_VSZ_RECEIVED);
@@ -250,60 +243,9 @@ public class CreateIdentityLinkTask extends AbstractAuthServletTask {
     }
   }
 
-  private PersonInfoType generateSzrRequest(ErnpEidData eidData) {
-    log.debug("Starting connecting SZR Gateway");
-    final PersonInfoType personInfo = new PersonInfoType();
-    final PersonNameType personName = new PersonNameType();
-    final PhysicalPersonType naturalPerson = new PhysicalPersonType();
-    final TravelDocumentType eDocument = new TravelDocumentType();
-
-    naturalPerson.setName(personName);
-    personInfo.setPerson(naturalPerson);
-    personInfo.setTravelDocument(eDocument);
-
-    // person information
-    personName.setFamilyName(eidData.getFamilyName());
-    personName.setGivenName(eidData.getGivenName());
-    naturalPerson.setDateOfBirth(eidData.getFormatedDateOfBirth());
-    eDocument.setIssuingCountry(eidData.getCitizenCountryCode());
-    eDocument.setDocumentNumber(eidData.getPseudonym());
-
-    // eID document information
-    String documentType = basicConfig
-        .getBasicConfiguration(Constants.CONIG_PROPS_EIDAS_SZRCLIENT_PARAMS_EDOCUMENTTYPE,
-            Constants.SZR_CONSTANTS_DEFAULT_DOCUMENT_TYPE);
-    eDocument.setDocumentType(documentType);
-
-    // set PlaceOfBirth if available
-    if (eidData.getPlaceOfBirth() != null) {
-      log.trace("Find 'PlaceOfBirth' attribute: " + eidData.getPlaceOfBirth());
-      boolean setPlaceOfBirth = basicConfig
-          .getBasicConfigurationBoolean(Constants.CONIG_PROPS_EIDAS_SZRCLIENT_PARAMS_SETPLACEOFBIRTHIFAVAILABLE, true);
-      if (setPlaceOfBirth) {
-        naturalPerson.setPlaceOfBirth(eidData.getPlaceOfBirth());
-        log.trace("Adding 'PlaceOfBirth' to ERnB request ... ");
-      }
-    }
-
-    // set BirthName if available
-    if (eidData.getBirthName() != null) {
-      log.trace("Find 'BirthName' attribute: " + eidData.getBirthName());
-      boolean setBirthName = basicConfig
-          .getBasicConfigurationBoolean(Constants.CONIG_PROPS_EIDAS_SZRCLIENT_PARAMS_SETBIRTHNAMEIFAVAILABLE, true);
-      if (setBirthName) {
-        final AlternativeNameType alternativeName = new AlternativeNameType();
-        naturalPerson.setAlternativeName(alternativeName);
-        alternativeName.setFamilyName(eidData.getBirthName());
-        log.trace("Adding 'BirthName' to ERnB request ... ");
-      }
-    }
-
-    return personInfo;
-  }
-
-  private SzrResultHolder requestSzrForIdentityLink(PersonInfoType personInfo) throws EaafException {
+  private SzrResultHolder requestSzrForIdentityLink(ErnpEidData eidData) throws EaafException {
     //request IdentityLink from SZR
-    final IdentityLinkType result = szrClient.getIdentityLinkInRawMode(personInfo);
+    final IdentityLinkType result = szrClient.getIdentityLinkInRawMode(eidData);
 
     final Element idlFromSzr = (Element) result.getAssertion();
     final IIdentityLink identityLink = new SimpleIdentityLinkAssertionParser(idlFromSzr).parseIdentityLink();
@@ -316,7 +258,7 @@ public class CreateIdentityLinkTask extends AbstractAuthServletTask {
     if (debugUseSzrForBpk) {
       String no_vkz_defined = basicConfig
           .getBasicConfiguration(Constants.CONIG_PROPS_EIDAS_SZRCLIENT_PARAMS_VKZ, "no VKZ defined");
-      List<String> bpkList = szrClient.getBpk(personInfo, targetId, no_vkz_defined);
+      List<String> bpkList = szrClient.getBpk(eidData, targetId, no_vkz_defined);
       if (!bpkList.isEmpty()) {
         bpk = bpkList.get(0);
       }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/SzrClientTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/SzrClientTest.java
index 5deb5f31..d8f2e47f 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/SzrClientTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/SzrClientTest.java
@@ -23,70 +23,45 @@
 
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.test;
 
-import static org.mockito.ArgumentMatchers.any;
-import static org.mockito.ArgumentMatchers.anyList;
-import static org.mockito.Mockito.when;
-
-import java.io.IOException;
-import java.nio.charset.StandardCharsets;
-import java.security.MessageDigest;
-import java.util.List;
-import java.util.Objects;
-
-import javax.xml.bind.JAXBContext;
-import javax.xml.bind.JAXBException;
-import javax.xml.bind.Unmarshaller;
-import javax.xml.parsers.ParserConfigurationException;
-import javax.xml.ws.soap.SOAPFaultException;
-
+import at.asitplus.eidas.specific.connector.test.config.dummy.MsConnectorDummyConfigMap;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.ErnpEidData;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidasSAuthenticationException;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.SzrCommunicationException;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.szr.SzrClient;
+import at.gv.egiz.eaaf.core.api.data.EaafConstants;
+import at.gv.egiz.eaaf.core.api.idp.auth.data.IIdentityLink;
+import at.gv.egiz.eaaf.core.exceptions.EaafParserException;
+import at.gv.egiz.eaaf.core.impl.idp.auth.data.SimpleIdentityLinkAssertionParser;
+import at.gv.egiz.eaaf.core.impl.utils.DomUtils;
+import com.skjolberg.mockito.soap.SoapServiceRule;
 import org.apache.commons.io.IOUtils;
 import org.apache.commons.lang3.RandomStringUtils;
 import org.apache.commons.lang3.StringUtils;
 import org.apache.cxf.binding.soap.SoapFault;
 import org.joda.time.DateTime;
-import org.junit.Assert;
-import org.junit.Before;
-import org.junit.Ignore;
-import org.junit.Rule;
-import org.junit.Test;
+import org.junit.*;
 import org.junit.runner.RunWith;
 import org.slf4j.Logger;
 import org.slf4j.LoggerFactory;
 import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.test.context.ContextConfiguration;
 import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
-import org.springframework.util.Base64Utils;
 import org.w3c.dom.Element;
 import org.xml.sax.SAXException;
+import szrservices.*;
 
-import com.skjolberg.mockito.soap.SoapServiceRule;
+import javax.xml.bind.JAXBContext;
+import javax.xml.bind.JAXBException;
+import javax.xml.bind.Unmarshaller;
+import javax.xml.parsers.ParserConfigurationException;
+import javax.xml.ws.soap.SOAPFaultException;
+import java.io.IOException;
+import java.util.List;
 
-import at.asitplus.eidas.specific.connector.test.config.dummy.MsConnectorDummyConfigMap;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.ErnpEidData;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidasSAuthenticationException;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.SzrCommunicationException;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.szr.SzrClient;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.EidasResponseUtils;
-import at.gv.e_government.reference.namespace.persondata._20020228.PersonNameType;
-import at.gv.e_government.reference.namespace.persondata._20020228.PhysicalPersonType;
-import at.gv.egiz.eaaf.core.api.data.EaafConstants;
-import at.gv.egiz.eaaf.core.api.idp.auth.data.IIdentityLink;
-import at.gv.egiz.eaaf.core.exceptions.EaafParserException;
-import at.gv.egiz.eaaf.core.impl.data.Triple;
-import at.gv.egiz.eaaf.core.impl.idp.auth.data.SimpleIdentityLinkAssertionParser;
-import at.gv.egiz.eaaf.core.impl.utils.DomUtils;
-import szrservices.GetBPKFromStammzahlEncryptedResponse;
-import szrservices.GetBPKFromStammzahlEncryptedResponseType;
-import szrservices.GetIdentityLinkEidasResponse;
-import szrservices.IdentityLinkType;
-import szrservices.PersonInfoType;
-import szrservices.SZR;
-import szrservices.SZRException_Exception;
-import szrservices.SignContentEntry;
-import szrservices.SignContentResponse;
-import szrservices.SignContentResponseType;
-import szrservices.TravelDocumentType;
+import static org.mockito.ArgumentMatchers.any;
+import static org.mockito.ArgumentMatchers.anyList;
+import static org.mockito.Mockito.when;
 
 @RunWith(SpringJUnit4ClassRunner.class)
 @ContextConfiguration(locations = {
@@ -98,14 +73,9 @@ public class SzrClientTest {
   @Autowired SzrClient szrClient;
   @Autowired MsConnectorDummyConfigMap basicConfig;
 
-  private static final String givenName = "Franz";
-  private static final String familyName = "Mustermann";
-  private static final String dateOfBirth = "1989-05-05";
-  private static final String eIDASeID = "IS/AT/1234sdgsdfg56789ABCDEF";
   private static final String DUMMY_TARGET = EaafConstants.URN_PREFIX_CDID + "ZP";
 
   private SZR szrMock = null;
-  ErnpEidData eidData = null;
 
   @Rule
   public SoapServiceRule soap = SoapServiceRule.newInstance();
@@ -117,18 +87,9 @@ public class SzrClientTest {
   public void initializer() {
     if (szrMock == null) {
       szrMock = soap.mock(SZR.class, "http://localhost:1234/demoszr");
-
     }
 
-    eidData = ErnpEidData.builder()
-        .familyName(familyName)
-        .givenName(givenName)
-        .dateOfBirth(new DateTime())
-        .citizenCountryCode("IS")
-        .pseudonym("1234sdgsdfg56789ABCDEF").build();
-
     basicConfig.putConfigValue("eidas.ms.auth.eIDAS.szrclient.eidasbind.mds.inject", "false");
-
   }
 
 
@@ -144,13 +105,13 @@ public class SzrClientTest {
     //        .thenReturn(Arrays.asList(result1));
     when(szrMock.getStammzahlEncrypted(any(), any())).thenReturn(result1.getKey());
 
-    String stammzahlEncrypted = szrClient.getEncryptedStammzahl(new PersonInfoType());
+    String stammzahlEncrypted = szrClient.getEncryptedStammzahl(getEidData());
 
     Assert.assertEquals("bcBind not match", result1.getKey(), stammzahlEncrypted);
 
     when(szrMock.getStammzahlEncrypted(any(), any())).thenReturn(null);
     try {
-      szrClient.getEncryptedStammzahl(new PersonInfoType());
+      szrClient.getEncryptedStammzahl(getEidData());
     } catch (SzrCommunicationException e) {
       Assert.assertTrue("Not correct error", e.getMessage().contains("ernb.01"));
     }
@@ -171,7 +132,7 @@ public class SzrClientTest {
 
     final String bcBind = szrClient
         .getEidasBind(RandomStringUtils.randomAlphabetic(10), RandomStringUtils.randomAlphabetic(10),
-                   RandomStringUtils.randomAlphabetic(10), eidData);
+                   RandomStringUtils.randomAlphabetic(10), getEidData());
 
     Assert.assertNotNull("bcBind is null", bcBind);
     Assert.assertEquals("bcBind not match", result1.getValue(), bcBind);
@@ -185,7 +146,7 @@ public class SzrClientTest {
     try {
       szrClient
           .getEidasBind(RandomStringUtils.randomAlphabetic(10), RandomStringUtils.randomAlphabetic(10),
-                     RandomStringUtils.randomAlphabetic(10), eidData);
+                     RandomStringUtils.randomAlphabetic(10), getEidData());
     } catch (SzrCommunicationException e) {
       Assert.assertTrue("Not correct error", e.getMessage().contains("ernb.01"));
 
@@ -202,7 +163,7 @@ public class SzrClientTest {
     try {
       szrClient
           .getEidasBind(RandomStringUtils.randomAlphabetic(10), RandomStringUtils.randomAlphabetic(10),
-                     RandomStringUtils.randomAlphabetic(10), eidData);
+                     RandomStringUtils.randomAlphabetic(10), getEidData());
     } catch (SzrCommunicationException e) {
       Assert.assertTrue("Not correct error", e.getMessage().contains("ernb.01"));
 
@@ -220,7 +181,7 @@ public class SzrClientTest {
     try {
       szrClient
           .getEidasBind(RandomStringUtils.randomAlphabetic(10), RandomStringUtils.randomAlphabetic(10),
-                     RandomStringUtils.randomAlphabetic(10), eidData);
+                     RandomStringUtils.randomAlphabetic(10), getEidData());
     } catch (SzrCommunicationException e) {
       Assert.assertTrue("Not correct error", e.getMessage().contains("ernb.01"));
 
@@ -242,7 +203,7 @@ public class SzrClientTest {
 
     final String bcBind = szrClient
         .getEidasBind(RandomStringUtils.randomAlphabetic(10), RandomStringUtils.randomAlphabetic(10),
-                   RandomStringUtils.randomAlphabetic(10), eidData);
+                   RandomStringUtils.randomAlphabetic(10), getEidData());
 
     Assert.assertNotNull("bcBind is null", bcBind);
     Assert.assertEquals("bcBind not match", result1.getValue(), bcBind);
@@ -266,7 +227,7 @@ public class SzrClientTest {
 
     final String bcBind = szrClient
         .getEidasBind(RandomStringUtils.randomAlphabetic(10), RandomStringUtils.randomAlphabetic(10),
-                   RandomStringUtils.randomAlphabetic(10), eidData);
+                   RandomStringUtils.randomAlphabetic(10), getEidData());
 
     Assert.assertNotNull("bcBind is null", bcBind);
     Assert.assertEquals("bcBind not match", result1.getValue(), bcBind);
@@ -275,13 +236,12 @@ public class SzrClientTest {
 
   @Test
   public void getIdentityLinkRawModeValidResponse()
-      throws SZRException_Exception, EaafParserException,
-      EidasSAuthenticationException, JAXBException {
+      throws SZRException_Exception, EaafParserException, JAXBException {
     setSzrResponseIdentityLink("/data/szr/szr_resp_valid_1.xml");
 
     try {
       log.debug("Starting connecting SZR Gateway");
-      final IdentityLinkType result = szrClient.getIdentityLinkInRawMode(getPersonInfo());
+      final IdentityLinkType result = szrClient.getIdentityLinkInRawMode(getEidData());
 
       Assert.assertNotNull(result);
       Assert.assertNotNull(result.getAssertion());
@@ -309,13 +269,12 @@ public class SzrClientTest {
 
   @Test
   public void getIdentityLinkRawModeErrorTravelerDocExists()
-      throws SZRException_Exception, IOException,
-      EidasSAuthenticationException, ParserConfigurationException, SAXException {
+      throws SZRException_Exception, IOException, ParserConfigurationException, SAXException {
     setSzrExceptionIdentityLink("/data/szr/szr_resp_error_travelerdocexists.xml");
 
     try {
       log.debug("Starting connecting SZR Gateway");
-      szrClient.getIdentityLinkInRawMode(getPersonInfo());
+      szrClient.getIdentityLinkInRawMode(getEidData());
       Assert.fail();
 
     } catch (final SzrCommunicationException e) {
@@ -335,7 +294,7 @@ public class SzrClientTest {
   @Ignore
   @Test
   public void getBpkTest() throws EidasSAuthenticationException {
-    final List<String> bPK = szrClient.getBpk(getPersonInfo(), DUMMY_TARGET, basicConfig
+    final List<String> bPK = szrClient.getBpk(getEidData(), DUMMY_TARGET, basicConfig
         .getBasicConfiguration(Constants.CONIG_PROPS_EIDAS_SZRCLIENT_PARAMS_VKZ, "no VKZ defined"));
 
     if (bPK.isEmpty()) {
@@ -382,46 +341,15 @@ public class SzrClientTest {
 
   }
 
-  private String createHashFromUniqueId(String uniqueId) throws EidasSAuthenticationException {
-    try {
-      final MessageDigest md = MessageDigest.getInstance("SHA-256");
-      final byte[] hash = md.digest(uniqueId.getBytes(StandardCharsets.UTF_8));
-      return new String(Base64Utils.encode(hash), StandardCharsets.UTF_8).replaceAll("\r\n", "");
-
-    } catch (final Exception ex) {
-      throw new EidasSAuthenticationException("internal.03", new Object[]{}, ex);
-
-    }
+  private ErnpEidData getEidData() {
+    return ErnpEidData.builder()
+        .familyName("Mustermann")
+        .givenName("Franz")
+        .dateOfBirth(new DateTime(1989,5,5,1,1))
+        .citizenCountryCode("IS")
+        .pseudonym("1234sdgsdfg56789ABCDEF")
+        .build();
   }
 
-  private PersonInfoType getPersonInfo() throws EidasSAuthenticationException {
-    final PersonInfoType personInfo = new PersonInfoType();
-    final PersonNameType personName = new PersonNameType();
-    final PhysicalPersonType naturalPerson = new PhysicalPersonType();
-    final TravelDocumentType eDocument = new TravelDocumentType();
-
-    naturalPerson.setName(personName);
-    personInfo.setPerson(naturalPerson);
-    personInfo.setTravelDocument(eDocument);
-
-    // parse some eID attributes
-    final Triple<String, String, String> eIdentifier = EidasResponseUtils.parseEidasPersonalIdentifier(eIDASeID);
-    final String uniqueId = createHashFromUniqueId(Objects.requireNonNull(eIdentifier).getThird());
-    final String citizenCountry = eIdentifier.getFirst();
-
-    // person information
-    personName.setFamilyName(familyName);
-    personName.setGivenName(givenName);
-    naturalPerson.setDateOfBirth(dateOfBirth);
-    eDocument.setIssuingCountry(citizenCountry);
-    eDocument.setDocumentNumber(uniqueId);
-
-    // eID document information
-    eDocument.setDocumentType(basicConfig
-                                  .getBasicConfiguration(Constants.CONIG_PROPS_EIDAS_SZRCLIENT_PARAMS_EDOCUMENTTYPE,
-                                                         Constants.SZR_CONSTANTS_DEFAULT_DOCUMENT_TYPE));
-
-    return personInfo;
-  }
 
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/SzrClientTestProduction.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/SzrClientTestProduction.java
index 38829d67..33d72a59 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/SzrClientTestProduction.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/SzrClientTestProduction.java
@@ -23,11 +23,16 @@
 
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.test;
 
-import java.nio.charset.StandardCharsets;
-import java.security.MessageDigest;
-import java.util.List;
-import java.util.Objects;
-
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.ErnpEidData;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidasSAuthenticationException;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.SzrCommunicationException;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.szr.SzrClient;
+import at.gv.egiz.eaaf.core.api.data.EaafConstants;
+import at.gv.egiz.eaaf.core.api.idp.IConfiguration;
+import at.gv.egiz.eaaf.core.api.idp.auth.data.IIdentityLink;
+import at.gv.egiz.eaaf.core.exceptions.EaafParserException;
+import at.gv.egiz.eaaf.core.impl.idp.auth.data.SimpleIdentityLinkAssertionParser;
 import org.apache.commons.lang3.RandomStringUtils;
 import org.apache.commons.lang3.StringUtils;
 import org.bouncycastle.util.encoders.Base64;
@@ -43,26 +48,10 @@ import org.springframework.test.annotation.IfProfileValue;
 import org.springframework.test.context.ContextConfiguration;
 import org.springframework.test.context.TestPropertySource;
 import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
-import org.springframework.util.Base64Utils;
 import org.w3c.dom.Element;
-
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.ErnpEidData;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidasSAuthenticationException;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.SzrCommunicationException;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.szr.SzrClient;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.EidasResponseUtils;
-import at.gv.e_government.reference.namespace.persondata._20020228.PersonNameType;
-import at.gv.e_government.reference.namespace.persondata._20020228.PhysicalPersonType;
-import at.gv.egiz.eaaf.core.api.data.EaafConstants;
-import at.gv.egiz.eaaf.core.api.idp.IConfiguration;
-import at.gv.egiz.eaaf.core.api.idp.auth.data.IIdentityLink;
-import at.gv.egiz.eaaf.core.exceptions.EaafParserException;
-import at.gv.egiz.eaaf.core.impl.data.Triple;
-import at.gv.egiz.eaaf.core.impl.idp.auth.data.SimpleIdentityLinkAssertionParser;
 import szrservices.IdentityLinkType;
-import szrservices.PersonInfoType;
-import szrservices.TravelDocumentType;
+
+import java.util.List;
 
 
 @IfProfileValue(name = "spring.profiles.active", value = "devEnvironment")
@@ -82,12 +71,6 @@ public class SzrClientTestProduction {
   @Autowired
   IConfiguration basicConfig;
 
-  private static final String givenName = "Franz";
-  private static final String familyName = "Mustermann";
-  // private static final String dateOfBirth = "1989-05-05";
-  private static final String dateOfBirth = "1989-05-04";
-  private static final String eIDASeID = "IS/AT/1234ffgsdfg56789ABCDEF";
-
   private static final String DUMMY_TARGET = EaafConstants.URN_PREFIX_CDID + "ZP";
 
   @Test
@@ -97,7 +80,7 @@ public class SzrClientTestProduction {
 
   @Test
   public void getVsz() throws EidasSAuthenticationException {
-    String vsz = szrClient.getEncryptedStammzahl(getPersonInfo());
+    String vsz = szrClient.getEncryptedStammzahl(getEidData());
     Assert.assertNotNull("vsz", vsz);
 
   }
@@ -107,15 +90,8 @@ public class SzrClientTestProduction {
     String vsz = RandomStringUtils.randomAlphanumeric(10);
     String bindingPubKey = Base64.toBase64String(RandomStringUtils.random(20).getBytes());
     String eidStatus = "urn:eidgvat:eid.status.eidas";
-    ErnpEidData eidData = ErnpEidData.builder()
-        .familyName(familyName)
-        .givenName(givenName)
-        .dateOfBirth(new DateTime())
-        .citizenCountryCode("IS")
-        .pseudonym("1234sdgsdfg56789ABCDEF").build();
 
-
-    String eidasBind = szrClient.getEidasBind(vsz, bindingPubKey, eidStatus, eidData);
+    String eidasBind = szrClient.getEidasBind(vsz, bindingPubKey, eidStatus, getEidData());
 
     Assert.assertNotNull("eidasBind", eidasBind);
 
@@ -125,8 +101,7 @@ public class SzrClientTestProduction {
   @Test
   public void getIdentityLinkRawMode() throws EaafParserException, EidasSAuthenticationException {
     log.debug("Starting connecting SZR Gateway");
-    final IdentityLinkType result = szrClient.getIdentityLinkInRawMode(
-        getPersonInfo());
+    final IdentityLinkType result = szrClient.getIdentityLinkInRawMode(getEidData());
 
     final Element idlFromSzr = (Element) result.getAssertion();
     final IIdentityLink identityLink = new SimpleIdentityLinkAssertionParser(idlFromSzr).parseIdentityLink();
@@ -171,10 +146,9 @@ public class SzrClientTestProduction {
   @Ignore
   @Test
   public void getBpkTest() throws EidasSAuthenticationException {
-    final List<String> bPK = szrClient.getBpk(getPersonInfo(), DUMMY_TARGET,
-        basicConfig.getBasicConfiguration(
-            Constants.CONIG_PROPS_EIDAS_SZRCLIENT_PARAMS_VKZ,
-            "no VKZ defined"));
+    String vkz = basicConfig.getBasicConfiguration(
+        Constants.CONIG_PROPS_EIDAS_SZRCLIENT_PARAMS_VKZ, "no VKZ defined");
+    final List<String> bPK = szrClient.getBpk(getEidData(), DUMMY_TARGET, vkz);
 
     if (bPK.isEmpty()) {
       throw new SzrCommunicationException("ernb.01", new Object[]{"bPK list is empty"});
@@ -187,46 +161,14 @@ public class SzrClientTestProduction {
 
   }
 
-  private String createHashFromUniqueId(String uniqueId) throws EidasSAuthenticationException {
-    try {
-      final MessageDigest md = MessageDigest.getInstance("SHA-256");
-      final byte[] hash = md.digest(uniqueId.getBytes(StandardCharsets.UTF_8));
-      return new String(Base64Utils.encode(hash), StandardCharsets.UTF_8).replaceAll("\r\n", "");
-
-    } catch (final Exception ex) {
-      throw new EidasSAuthenticationException("internal.03", new Object[] {}, ex);
-
-    }
+  private ErnpEidData getEidData() {
+    return ErnpEidData.builder()
+        .familyName("Mustermann")
+        .givenName("Franz")
+        .dateOfBirth(new DateTime(1989,5,4,1,1))
+        .citizenCountryCode("IS")
+        .pseudonym("1234ffgsdfg56789ABCDEF")
+        .build();
   }
 
-  private PersonInfoType getPersonInfo() throws EidasSAuthenticationException {
-    final PersonInfoType personInfo = new PersonInfoType();
-    final PersonNameType personName = new PersonNameType();
-    final PhysicalPersonType naturalPerson = new PhysicalPersonType();
-    final TravelDocumentType eDocument = new TravelDocumentType();
-
-    naturalPerson.setName(personName);
-    personInfo.setPerson(naturalPerson);
-    personInfo.setTravelDocument(eDocument);
-
-    // parse some eID attributes
-    final Triple<String, String, String> eIdentifier =
-        EidasResponseUtils.parseEidasPersonalIdentifier(eIDASeID);
-    final String uniqueId = createHashFromUniqueId(Objects.requireNonNull(eIdentifier).getThird());
-    final String citizenCountry = eIdentifier.getFirst();
-
-    // person information
-    personName.setFamilyName(familyName);
-    personName.setGivenName(givenName);
-    naturalPerson.setDateOfBirth(dateOfBirth);
-    eDocument.setIssuingCountry(citizenCountry);
-    eDocument.setDocumentNumber(uniqueId);
-
-    // eID document information
-    eDocument.setDocumentType(basicConfig.getBasicConfiguration(
-        Constants.CONIG_PROPS_EIDAS_SZRCLIENT_PARAMS_EDOCUMENTTYPE,
-        Constants.SZR_CONSTANTS_DEFAULT_DOCUMENT_TYPE));
-
-    return personInfo;
-  }
 }
-- 
cgit v1.2.3


From 9df463ce8c8567a8f70c4f8f1988f5ae299b6369 Mon Sep 17 00:00:00 2001
From: Christian Kollmann <christian.kollmann@a-sit.at>
Date: Thu, 4 Mar 2021 17:29:03 +0100
Subject: Replace ErnpEidData with SimpleEidasData

---
 .../modules/auth/eidas/v2/dao/ErnpEidData.java     | 55 ----------------------
 .../eidas/v2/handler/AbstractEidProcessor.java     | 18 +++----
 .../eidas/v2/handler/INationalEidProcessor.java    |  5 +-
 .../v2/service/CcSpecificEidProcessingService.java |  4 +-
 .../service/ICcSpecificEidProcessingService.java   |  4 +-
 .../modules/auth/eidas/v2/szr/SzrClient.java       | 31 ++++--------
 .../eidas/v2/tasks/CreateIdentityLinkTask.java     | 48 +++++++++----------
 .../auth/eidas/v2/utils/EidasResponseUtils.java    | 11 ++++-
 .../modules/auth/eidas/v2/test/SzrClientTest.java  |  9 ++--
 .../eidas/v2/test/SzrClientTestProduction.java     |  9 ++--
 .../EidasAttributePostProcessingTest.java          | 45 ++++++++----------
 11 files changed, 85 insertions(+), 154 deletions(-)
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/ErnpEidData.java

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/ErnpEidData.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/ErnpEidData.java
deleted file mode 100644
index 137ef984..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/ErnpEidData.java
+++ /dev/null
@@ -1,55 +0,0 @@
-/*
- * Copyright 2020 A-SIT Plus GmbH
- * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
- * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
- *
- * Licensed under the EUPL, Version 1.2 or - as soon they will be approved by
- * the European Commission - subsequent versions of the EUPL (the "License");
- * You may not use this work except in compliance with the License.
- * You may obtain a copy of the License at:
- * https://joinup.ec.europa.eu/news/understanding-eupl-v12
- *
- * Unless required by applicable law or agreed to in writing, software
- * distributed under the License is distributed on an "AS IS" basis,
- * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
- * See the License for the specific language governing permissions and
- * limitations under the License.
- *
- * This product combines work with different licenses. See the "NOTICE" text
- * file for details on the various modules and licenses.
- * The "NOTICE" text file is part of the distribution. Any derivative works
- * that you distribute must include a readable copy of the "NOTICE" text file.
-*/
-
-package at.asitplus.eidas.specific.modules.auth.eidas.v2.dao;
-
-import java.text.SimpleDateFormat;
-
-import lombok.Builder;
-import lombok.Data;
-import org.joda.time.DateTime;
-
-import at.gv.e_government.reference.namespace.persondata._20020228.PostalAddressType;
-
-@Data
-@Builder
-public class ErnpEidData {
-
-  private final String citizenCountryCode;
-
-  // MDS
-  private final String pseudonym;
-  private final String givenName;
-  private final String familyName;
-  private final DateTime dateOfBirth;
-
-  // additional attributes
-  private final String placeOfBirth;
-  private final String birthName;
-  private final PostalAddressType address;
-
-  public String getFormatedDateOfBirth() {
-    return dateOfBirth == null ? null : new SimpleDateFormat("yyyy-MM-dd").format(dateOfBirth.toDate());
-  }
-
-}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/AbstractEidProcessor.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/AbstractEidProcessor.java
index 14deefa5..f97517d5 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/AbstractEidProcessor.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/AbstractEidProcessor.java
@@ -28,6 +28,7 @@ import java.util.Map;
 import java.util.regex.Matcher;
 import java.util.regex.Pattern;
 
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
 import org.apache.commons.lang3.StringUtils;
 import org.joda.time.DateTime;
 import org.slf4j.Logger;
@@ -37,7 +38,6 @@ import org.springframework.lang.NonNull;
 
 import com.google.common.collect.ImmutableSortedSet;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.ErnpEidData;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidPostProcessingException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidasAttributeException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.EidasAttributeRegistry;
@@ -47,13 +47,16 @@ import at.gv.egiz.eaaf.core.api.IRequest;
 import at.gv.egiz.eaaf.core.api.data.EaafConstants;
 import at.gv.egiz.eaaf.core.api.idp.IConfigurationWithSP;
 import at.gv.egiz.eaaf.core.api.idp.ISpConfiguration;
-import at.gv.egiz.eaaf.core.impl.data.Triple;
 
 import eu.eidas.auth.commons.attribute.AttributeDefinition;
 import eu.eidas.auth.commons.attribute.ImmutableAttributeMap;
 import eu.eidas.auth.commons.light.impl.LightRequest.Builder;
 import eu.eidas.auth.commons.protocol.eidas.SpType;
 
+import static at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants.eIDAS_ATTR_PERSONALIDENTIFIER;
+import static at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.EidasResponseUtils.processCountryCode;
+import static at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.EidasResponseUtils.processDateOfBirthToString;
+
 public abstract class AbstractEidProcessor implements INationalEidProcessor {
   private static final Logger log = LoggerFactory.getLogger(AbstractEidProcessor.class);
 
@@ -72,21 +75,20 @@ public abstract class AbstractEidProcessor implements INationalEidProcessor {
 
 
   @Override
-  public final ErnpEidData postProcess(Map<String, Object> eidasAttrMap) throws EidPostProcessingException,
+  public final SimpleEidasData postProcess(Map<String, Object> eidasAttrMap) throws EidPostProcessingException,
       EidasAttributeException {
-    final Object eIdentifierObj = eidasAttrMap.get(Constants.eIDAS_ATTR_PERSONALIDENTIFIER);
-    final Triple<String, String, String> eIdentifier =
-        EidasResponseUtils.parseEidasPersonalIdentifier((String) eIdentifierObj);
-    return ErnpEidData.builder().citizenCountryCode(eIdentifier.getFirst())
+    return SimpleEidasData.builder()
         // MDS attributes
+        .citizenCountryCode(processCountryCode(eidasAttrMap.get(eIDAS_ATTR_PERSONALIDENTIFIER)))
         .pseudonym(processPseudonym(eidasAttrMap.get(Constants.eIDAS_ATTR_PERSONALIDENTIFIER)))
         .familyName(processFamilyName(eidasAttrMap.get(Constants.eIDAS_ATTR_CURRENTFAMILYNAME)))
         .givenName(processGivenName(eidasAttrMap.get(Constants.eIDAS_ATTR_CURRENTGIVENNAME)))
-        .dateOfBirth(processDateOfBirth(eidasAttrMap.get(Constants.eIDAS_ATTR_DATEOFBIRTH)))
+        .dateOfBirth(processDateOfBirthToString(eidasAttrMap.get(Constants.eIDAS_ATTR_DATEOFBIRTH)))
         // additional attributes
         .placeOfBirth(processPlaceOfBirth(eidasAttrMap.get(Constants.eIDAS_ATTR_PLACEOFBIRTH)))
         .birthName(processBirthName(eidasAttrMap.get(Constants.eIDAS_ATTR_BIRTHNAME)))
         .address(processAddress(eidasAttrMap.get(Constants.eIDAS_ATTR_CURRENTADDRESS)))
+        //.taxNumber(processTaxReference(eidasAttrMap.get(Constants.eIDAS_ATTR_TAXREFERENCE)))
         .build();
   }
 
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/INationalEidProcessor.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/INationalEidProcessor.java
index 5b130e48..a40e3b37 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/INationalEidProcessor.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/INationalEidProcessor.java
@@ -25,7 +25,7 @@ package at.asitplus.eidas.specific.modules.auth.eidas.v2.handler;
 
 import java.util.Map;
 
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.ErnpEidData;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidasAttributeException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidPostProcessingException;
 import at.gv.egiz.eaaf.core.api.IRequest;
@@ -67,8 +67,9 @@ public interface INationalEidProcessor {
    *                     attribute
    * @throws EidPostProcessingException In case of a post-processing error
    * @throws EidasAttributeException In case of an invalid eIDAS attribute
+   * @return
    */
-  ErnpEidData postProcess(Map<String, Object> eidasAttrMap) throws EidPostProcessingException,
+  SimpleEidasData postProcess(Map<String, Object> eidasAttrMap) throws EidPostProcessingException,
       EidasAttributeException;
 
   /**
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/service/CcSpecificEidProcessingService.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/service/CcSpecificEidProcessingService.java
index c2f13aa6..b5493edb 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/service/CcSpecificEidProcessingService.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/service/CcSpecificEidProcessingService.java
@@ -32,6 +32,7 @@ import java.util.Map.Entry;
 
 import javax.annotation.PostConstruct;
 
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
 import org.apache.commons.lang3.StringUtils;
 import org.slf4j.Logger;
 import org.slf4j.LoggerFactory;
@@ -40,7 +41,6 @@ import org.springframework.context.ApplicationContext;
 import org.springframework.stereotype.Service;
 
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.ErnpEidData;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidPostProcessingException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidasAttributeException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.INationalEidProcessor;
@@ -104,7 +104,7 @@ public class CcSpecificEidProcessingService implements ICcSpecificEidProcessingS
   }
 
   @Override
-  public ErnpEidData postProcess(Map<String, Object> eidasAttrMap) throws EidPostProcessingException,
+  public SimpleEidasData postProcess(Map<String, Object> eidasAttrMap) throws EidPostProcessingException,
       EidasAttributeException {
     // extract citizen country from eIDAS unique identifier
     final Object eIdentifierObj = eidasAttrMap.get(Constants.eIDAS_ATTR_PERSONALIDENTIFIER);
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/service/ICcSpecificEidProcessingService.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/service/ICcSpecificEidProcessingService.java
index 983830e3..fb9ba318 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/service/ICcSpecificEidProcessingService.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/service/ICcSpecificEidProcessingService.java
@@ -25,7 +25,7 @@ package at.asitplus.eidas.specific.modules.auth.eidas.v2.service;
 
 import java.util.Map;
 
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.ErnpEidData;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidasAttributeException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidPostProcessingException;
 import at.gv.egiz.eaaf.core.api.IRequest;
@@ -44,7 +44,7 @@ public interface ICcSpecificEidProcessingService {
    * @throws EidPostProcessingException In case of a post-processing error
    * @throws EidasAttributeException In case of an invalid eIDAS attribute value
    */
-  ErnpEidData postProcess(Map<String, Object> eidasAttrMap) throws EidPostProcessingException,
+  SimpleEidasData postProcess(Map<String, Object> eidasAttrMap) throws EidPostProcessingException,
       EidasAttributeException;
 
   /**
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/szr/SzrClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/szr/SzrClient.java
index 22f38c2a..091fe209 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/szr/SzrClient.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/szr/SzrClient.java
@@ -60,7 +60,6 @@ import javax.xml.ws.BindingProvider;
 import javax.xml.ws.Dispatch;
 import javax.xml.ws.handler.Handler;
 
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.ErnpEidData;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
 import at.gv.e_government.reference.namespace.persondata._20020228.AlternativeNameType;
 import at.gv.e_government.reference.namespace.persondata._20020228.PersonNameType;
@@ -143,11 +142,11 @@ public class SzrClient {
    * @return IdentityLink
    * @throws SzrCommunicationException In case of a SZR error
    */
-  public IdentityLinkType getIdentityLinkInRawMode(ErnpEidData eidData)
+  public IdentityLinkType getIdentityLinkInRawMode(SimpleEidasData eidData)
       throws SzrCommunicationException {
     try {
       final GetIdentityLinkEidas getIdl = new GetIdentityLinkEidas();
-      getIdl.setPersonInfo(generateSzrRequest(convertTemp(eidData)));
+      getIdl.setPersonInfo(generateSzrRequest(eidData));
 
       final JAXBContext jaxbContext = JAXBContext.newInstance(ObjectFactory.class);
       final Marshaller jaxbMarshaller = jaxbContext.createMarshaller();
@@ -208,11 +207,11 @@ public class SzrClient {
    * @return bPK for this person
    * @throws SzrCommunicationException In case of a SZR error
    */
-  public List<String> getBpk(ErnpEidData eidData, String target, String vkz)
+  public List<String> getBpk(SimpleEidasData eidData, String target, String vkz)
       throws SzrCommunicationException {
     try {
       final GetBPK parameters = new GetBPK();
-      parameters.setPersonInfo(generateSzrRequest(convertTemp(eidData)));
+      parameters.setPersonInfo(generateSzrRequest(eidData));
       parameters.getBereichsKennung().add(target);
       parameters.setVKZ(vkz);
       final GetBPKResponse result = this.szr.getBPK(parameters);
@@ -259,11 +258,11 @@ public class SzrClient {
    * @return encrypted baseId
    * @throws SzrCommunicationException    In case of a SZR error
    */
-  public String getEncryptedStammzahl(final ErnpEidData eidData)
+  public String getEncryptedStammzahl(final SimpleEidasData eidData)
       throws SzrCommunicationException {
     final String resp;
     try {
-      resp = this.szr.getStammzahlEncrypted(generateSzrRequest(convertTemp(eidData)), false);
+      resp = this.szr.getStammzahlEncrypted(generateSzrRequest(eidData), false);
     } catch (SZRException_Exception e) {
       throw new SzrCommunicationException("ernb.02", new Object[]{e.getMessage()}, e);
     }
@@ -276,20 +275,6 @@ public class SzrClient {
 
   }
 
-  private SimpleEidasData convertTemp(ErnpEidData eidData) {
-    return SimpleEidasData.builder()
-        .citizenCountryCode(eidData.getCitizenCountryCode())
-        .pseudonym(eidData.getPseudonym())
-        .givenName(eidData.getGivenName())
-        .familyName(eidData.getFamilyName())
-        .dateOfBirth(eidData.getFormatedDateOfBirth())
-        .placeOfBirth(eidData.getPlaceOfBirth())
-        .birthName(eidData.getBirthName())
-        .address(eidData.getAddress())
-        //TODO not available.taxNumber()
-        .build();
-  }
-
   /**
    * Sign an eidasBind data-structure that combines vsz with user's pubKey and E-ID status.
    *
@@ -301,7 +286,7 @@ public class SzrClient {
    * @throws SzrCommunicationException In case of a SZR error
    */
   public String getEidasBind(final String vsz, final String bindingPubKey, final String eidStatus,
-                             ErnpEidData eidData)throws SzrCommunicationException {
+                             SimpleEidasData eidData)throws SzrCommunicationException {
 
     final Map<String, Object> eidsaBindMap = new HashMap<>();
     eidsaBindMap.put(ATTR_NAME_VSZ, vsz);
@@ -588,7 +573,7 @@ public class SzrClient {
 
   }
 
-  private void injectMdsIfAvailableAndActive(Map<String, Object> eidsaBindMap, ErnpEidData eidData) {
+  private void injectMdsIfAvailableAndActive(Map<String, Object> eidsaBindMap, SimpleEidasData eidData) {
     if (basicConfig.getBasicConfigurationBoolean(
         Constants.CONIG_PROPS_EIDAS_SZRCLIENT_SET_MDS_TO_EIDASBIND, false)) {
       log.info("Injecting MDS into eidasBind ... ");
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateIdentityLinkTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateIdentityLinkTask.java
index 0287fe35..f70f0f85 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateIdentityLinkTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateIdentityLinkTask.java
@@ -26,7 +26,7 @@ package at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks;
 import at.asitplus.eidas.specific.connector.MsConnectorEventCodes;
 import at.asitplus.eidas.specific.connector.MsEidasNodeConstants;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.ErnpEidData;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidasAttributeException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.SzrCommunicationException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.AuthBlockSigningService;
@@ -42,7 +42,6 @@ import at.gv.egiz.eaaf.core.exceptions.EaafException;
 import at.gv.egiz.eaaf.core.exceptions.EaafStorageException;
 import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
 import at.gv.egiz.eaaf.core.impl.data.Pair;
-import at.gv.egiz.eaaf.core.impl.data.Triple;
 import at.gv.egiz.eaaf.core.impl.idp.auth.builder.BpkBuilder;
 import at.gv.egiz.eaaf.core.impl.idp.auth.data.AuthProcessDataWrapper;
 import at.gv.egiz.eaaf.core.impl.idp.auth.data.SimpleIdentityLinkAssertionParser;
@@ -78,7 +77,6 @@ import java.io.InputStream;
 import java.util.HashMap;
 import java.util.List;
 import java.util.Map;
-import java.util.Objects;
 
 /**
  * Task that creates the IdentityLink for an eIDAS authenticated person.
@@ -136,7 +134,10 @@ public class CreateIdentityLinkTask extends AbstractAuthServletTask {
           .getGenericDataFromSession(Constants.DATA_FULL_EIDAS_RESPONSE, ILightResponse.class);
       final Map<String, Object> eidasAttributes = convertEidasAttrToSimpleMap(
           eidasResponse.getAttributes().getAttributeMap());
-      final ErnpEidData eidData = eidPostProcessor.postProcess(eidasAttributes);
+      final String personalIdentifier = (String) eidasAttributes.get(Constants.eIDAS_ATTR_PERSONALIDENTIFIER);
+      final SimpleEidasData eidData = eidPostProcessor.postProcess(eidasAttributes);
+      //final SimpleEidasData eidData =
+          getAuthProcessDataWrapper().getGenericDataFromSession(Constants.DATA_SIMPLE_EIDAS, SimpleEidasData.class);
       writeMdsLogInformation(eidData);
 
       if (basicConfig.getBasicConfigurationBoolean(Constants.CONIG_PROPS_EIDAS_SZRCLIENT_DEBUG_USEDUMMY, false)) {
@@ -145,12 +146,12 @@ public class CreateIdentityLinkTask extends AbstractAuthServletTask {
         //request SZR based on IDL or E-ID mode
         if (pendingReq.getServiceProviderConfiguration()
             .isConfigurationValue(MsEidasNodeConstants.PROP_CONFIG_SP_NEW_EID_MODE, false)) {
-          executeEidMode(eidasAttributes, eidData);
+          executeEidMode(eidData, personalIdentifier);
         } else {
-          executeIdlMode(eidasAttributes, eidData);
+          executeIdlMode(eidData, personalIdentifier);
         }
       }
-      storeGenericInfoToSession(eidasAttributes);
+      storeGenericInfoToSession(eidData);
       requestStoreage.storePendingRequest(pendingReq);
     } catch (final EidasAttributeException e) {
       throw new TaskExecutionException(pendingReq, "Minimum required eIDAS attributeset not found.", e);
@@ -162,21 +163,19 @@ public class CreateIdentityLinkTask extends AbstractAuthServletTask {
     }
   }
 
-  private void storeGenericInfoToSession(Map<String, Object> eidasAttributes) throws EaafStorageException {
+  private void storeGenericInfoToSession(SimpleEidasData eidData) throws EaafStorageException {
     AuthProcessDataWrapper authProcessData = getAuthProcessDataWrapper();
     authProcessData.setForeigner(true);
-    Triple<String, String, String> eidasPersonalIdentifier = EidasResponseUtils
-        .parseEidasPersonalIdentifier((String) eidasAttributes.get(Constants.eIDAS_ATTR_PERSONALIDENTIFIER));
     authProcessData.setGenericDataToSession(PvpAttributeDefinitions.EID_ISSUING_NATION_NAME,
-        Objects.requireNonNull(eidasPersonalIdentifier).getFirst());
+        eidData.getCitizenCountryCode());
   }
 
-  private void executeIdlMode(Map<String, Object> simpleAttrMap, ErnpEidData eidData) throws EaafException {
+  private void executeIdlMode(SimpleEidasData eidData, String personalIdentifier) throws EaafException {
     //request SZR
     SzrResultHolder idlResult = requestSzrForIdentityLink(eidData);
 
     //write revision-Log entry for personal-identifier mapping
-    writeExtendedRevisionLogEntry(simpleAttrMap, eidData);
+    writeExtendedRevisionLogEntry(eidData, personalIdentifier);
 
     //check result-data and write revision-log based on current state
     checkStateAndWriteRevisionLog(idlResult);
@@ -194,13 +193,13 @@ public class CreateIdentityLinkTask extends AbstractAuthServletTask {
             .getAreaSpecificTargetIdentifier());
   }
 
-  private void executeEidMode(Map<String, Object> simpleAttrMap, ErnpEidData eidData) throws JsonProcessingException, EaafException, JoseException {
+  private void executeEidMode(SimpleEidasData eidData, String personalIdentifier) throws JsonProcessingException, EaafException, JoseException {
     // get encrypted baseId
     String vsz = szrClient.getEncryptedStammzahl(eidData);
 
     //write revision-Log entry and extended infos personal-identifier mapping
     revisionsLogger.logEvent(pendingReq, MsConnectorEventCodes.SZR_VSZ_RECEIVED);
-    writeExtendedRevisionLogEntry(simpleAttrMap, eidData);
+    writeExtendedRevisionLogEntry(eidData, personalIdentifier);
 
     // get eIDAS bind
     String signedEidasBind = szrClient
@@ -218,7 +217,7 @@ public class CreateIdentityLinkTask extends AbstractAuthServletTask {
     authProcessDataWrapper.setEidProcess(true);
   }
 
-  private void buildDummyIdentityLink(ErnpEidData eidData) throws ParserConfigurationException, SAXException, IOException, EaafException {
+  private void buildDummyIdentityLink(SimpleEidasData eidData) throws ParserConfigurationException, SAXException, IOException, EaafException {
     AuthProcessDataWrapper authProcessDataWrapper = getAuthProcessDataWrapper();
     SzrResultHolder idlResult = createDummyIdentityLinkForTestDeployment(eidData);
     //inject personal-data into session
@@ -232,18 +231,17 @@ public class CreateIdentityLinkTask extends AbstractAuthServletTask {
             .getAreaSpecificTargetIdentifier());
   }
 
-  private void writeExtendedRevisionLogEntry(Map<String, Object> simpleAttrMap, ErnpEidData eidData) {
+  private void writeExtendedRevisionLogEntry(SimpleEidasData eidData, String personalIdentifier) {
     // write ERnP input-data into revision-log
     if (basicConfig.getBasicConfigurationBoolean(
         Constants.CONIG_PROPS_EIDAS_SZRCLIENT_WORKAROUND_REVISIONLOGDATASTORE_ACTIVE, false)) {
-      revisionsLogger.logEvent(pendingReq, MsConnectorEventCodes.SZR_ERNB_EIDAS_RAW_ID,
-          (String) simpleAttrMap.get(Constants.eIDAS_ATTR_PERSONALIDENTIFIER));
+      revisionsLogger.logEvent(pendingReq, MsConnectorEventCodes.SZR_ERNB_EIDAS_RAW_ID, personalIdentifier);
       revisionsLogger.logEvent(pendingReq, MsConnectorEventCodes.SZR_ERNB_EIDAS_ERNB_ID, eidData.getPseudonym());
 
     }
   }
 
-  private SzrResultHolder requestSzrForIdentityLink(ErnpEidData eidData) throws EaafException {
+  private SzrResultHolder requestSzrForIdentityLink(SimpleEidasData eidData) throws EaafException {
     //request IdentityLink from SZR
     final IdentityLinkType result = szrClient.getIdentityLinkInRawMode(eidData);
 
@@ -377,12 +375,12 @@ public class CreateIdentityLinkTask extends AbstractAuthServletTask {
   /**
    * write MDS into technical log and revision log
    */
-  private void writeMdsLogInformation(ErnpEidData eidData) {
+  private void writeMdsLogInformation(SimpleEidasData eidData) {
     boolean writeMdsInTechLog = basicConfig
         .getBasicConfigurationBoolean(MsEidasNodeConstants.PROP_CONFIG_TECHNICALLOG_WRITE_MDS_INTO_TECH_LOG, false);
     if (writeMdsInTechLog) {
       log.info("eIDAS Auth. for user: " + eidData.getGivenName() + " " + eidData.getFamilyName() + " " + eidData
-          .getFormatedDateOfBirth() + " " + "from " + eidData.getCitizenCountryCode());
+          .getDateOfBirth() + " " + "from " + eidData.getCitizenCountryCode());
     }
 
     boolean writeMdsInRevLog = basicConfig
@@ -391,7 +389,7 @@ public class CreateIdentityLinkTask extends AbstractAuthServletTask {
     if (writeMdsInRevLog) {
       revisionsLogger.logEvent(pendingReq, MsConnectorEventCodes.RESPONSE_FROM_EIDAS_MDSDATA,
           "{" + eidData.getGivenName() + "," + eidData.getFamilyName() + "," + eidData
-              .getFormatedDateOfBirth() + "," + eidData.getCitizenCountryCode() + "}");
+              .getDateOfBirth() + "," + eidData.getCitizenCountryCode() + "}");
     }
   }
 
@@ -415,7 +413,7 @@ public class CreateIdentityLinkTask extends AbstractAuthServletTask {
    * @throws IOException                  In case of an IDL processing error
    * @throws EaafException                In case of a bPK generation error
    */
-  private SzrResultHolder createDummyIdentityLinkForTestDeployment(ErnpEidData eidData)
+  private SzrResultHolder createDummyIdentityLinkForTestDeployment(SimpleEidasData eidData)
       throws ParserConfigurationException, SAXException, IOException, EaafException {
     log.warn("SZR-Dummy IS ACTIVE! IdentityLink is NOT VALID!!!!");
     // create fake IdL
@@ -448,7 +446,7 @@ public class CreateIdentityLinkTask extends AbstractAuthServletTask {
     final Node prDateOfBirth = XPathUtils
         .selectSingleNode(idlassertion, SimpleIdentityLinkAssertionParser.PERSON_DATE_OF_BIRTH_XPATH);
 
-    prDateOfBirth.getFirstChild().setNodeValue(eidData.getFormatedDateOfBirth());
+    prDateOfBirth.getFirstChild().setNodeValue(eidData.getDateOfBirth());
 
     identityLink = new SimpleIdentityLinkAssertionParser(idlassertion).parseIdentityLink();
 
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/EidasResponseUtils.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/EidasResponseUtils.java
index 94b85b7c..3023bc0a 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/EidasResponseUtils.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/EidasResponseUtils.java
@@ -41,6 +41,7 @@ import org.slf4j.Logger;
 import org.slf4j.LoggerFactory;
 
 import javax.annotation.Nullable;
+import java.text.ParseException;
 import java.text.SimpleDateFormat;
 import java.util.ArrayList;
 import java.util.List;
@@ -280,6 +281,14 @@ public class EidasResponseUtils {
    * @throws EidasAttributeException if NO attribute is available
    */
   public static String processDateOfBirthToString(Object dateOfBirthObj) throws EidasAttributeException {
+    if (dateOfBirthObj instanceof String) {
+      try {
+        new SimpleDateFormat("yyyy-MM-dd").parse((String) dateOfBirthObj);
+        return (String) dateOfBirthObj;
+      } catch (ParseException e) {
+        throw new EidasAttributeException(Constants.eIDAS_ATTR_DATEOFBIRTH);
+      }
+    }
     if (!(dateOfBirthObj instanceof DateTime)) {
       throw new EidasAttributeException(Constants.eIDAS_ATTR_DATEOFBIRTH);
     }
@@ -361,7 +370,7 @@ public class EidasResponseUtils {
    */
   public static String processTaxReference(Object taxReferenceObj) throws EidasAttributeException {
     if (!(taxReferenceObj instanceof String)) {
-      throw new EidasAttributeException(Constants.eIDAS_ATTR_CURRENTGIVENNAME);
+      throw new EidasAttributeException(Constants.eIDAS_ATTR_TAXREFERENCE);
     }
     return (String) taxReferenceObj;
   }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/SzrClientTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/SzrClientTest.java
index d8f2e47f..d861006e 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/SzrClientTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/SzrClientTest.java
@@ -25,7 +25,7 @@ package at.asitplus.eidas.specific.modules.auth.eidas.v2.test;
 
 import at.asitplus.eidas.specific.connector.test.config.dummy.MsConnectorDummyConfigMap;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.ErnpEidData;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidasSAuthenticationException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.SzrCommunicationException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.szr.SzrClient;
@@ -39,7 +39,6 @@ import org.apache.commons.io.IOUtils;
 import org.apache.commons.lang3.RandomStringUtils;
 import org.apache.commons.lang3.StringUtils;
 import org.apache.cxf.binding.soap.SoapFault;
-import org.joda.time.DateTime;
 import org.junit.*;
 import org.junit.runner.RunWith;
 import org.slf4j.Logger;
@@ -341,11 +340,11 @@ public class SzrClientTest {
 
   }
 
-  private ErnpEidData getEidData() {
-    return ErnpEidData.builder()
+  private SimpleEidasData getEidData() {
+    return SimpleEidasData.builder()
         .familyName("Mustermann")
         .givenName("Franz")
-        .dateOfBirth(new DateTime(1989,5,5,1,1))
+        .dateOfBirth("1989-05-05")
         .citizenCountryCode("IS")
         .pseudonym("1234sdgsdfg56789ABCDEF")
         .build();
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/SzrClientTestProduction.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/SzrClientTestProduction.java
index 33d72a59..e50044c6 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/SzrClientTestProduction.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/SzrClientTestProduction.java
@@ -24,7 +24,7 @@
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.test;
 
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.ErnpEidData;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidasSAuthenticationException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.SzrCommunicationException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.szr.SzrClient;
@@ -36,7 +36,6 @@ import at.gv.egiz.eaaf.core.impl.idp.auth.data.SimpleIdentityLinkAssertionParser
 import org.apache.commons.lang3.RandomStringUtils;
 import org.apache.commons.lang3.StringUtils;
 import org.bouncycastle.util.encoders.Base64;
-import org.joda.time.DateTime;
 import org.junit.Assert;
 import org.junit.Ignore;
 import org.junit.Test;
@@ -161,11 +160,11 @@ public class SzrClientTestProduction {
 
   }
 
-  private ErnpEidData getEidData() {
-    return ErnpEidData.builder()
+  private SimpleEidasData getEidData() {
+    return SimpleEidasData.builder()
         .familyName("Mustermann")
         .givenName("Franz")
-        .dateOfBirth(new DateTime(1989,5,4,1,1))
+        .dateOfBirth("1989-05-04")
         .citizenCountryCode("IS")
         .pseudonym("1234ffgsdfg56789ABCDEF")
         .build();
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/validation/EidasAttributePostProcessingTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/validation/EidasAttributePostProcessingTest.java
index 381406d2..0a4ab851 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/validation/EidasAttributePostProcessingTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/validation/EidasAttributePostProcessingTest.java
@@ -30,7 +30,7 @@ import java.text.SimpleDateFormat;
 import java.util.HashMap;
 import java.util.Map;
 
-import org.joda.time.DateTime;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
 import org.junit.BeforeClass;
 import org.junit.Test;
 import org.junit.runner.RunWith;
@@ -41,7 +41,6 @@ import org.springframework.test.context.ContextConfiguration;
 import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
 
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.ErnpEidData;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.CcSpecificEidProcessingService;
 
 @RunWith(SpringJUnit4ClassRunner.class)
@@ -59,7 +58,7 @@ public class EidasAttributePostProcessingTest {
       "DE/AT/532eaabd9574880dbf76b9b8cc00832c20a6ec113d682299550d7a6e0f345e25";
   private static final String P1_GIVENNAME = "Max";
   private static final String P1_FAMILYNAME = "Mustermann";
-  private static final DateTime P1_DATEOFBIRTH = DateTime.now();
+  private static final String P1_DATEOFBIRTH = "2020-01-04";
   private static final String P1_PLACEOFBIRTH = "Nirgendwo";
   private static final String P1_BIRTHNAME = "Musterkind";
 
@@ -68,7 +67,7 @@ public class EidasAttributePostProcessingTest {
       "DE/AT/532eaabd9574880dbf76b9b8cc00832c20A6ec113d682299550d7a6e0f345e25";
   private static final String P3_GIVENNAME = "Max";
   private static final String P3_FAMILYNAME = "Mustermann";
-  private static final DateTime P3_DATEOFBIRTH = DateTime.now();
+  private static final String P3_DATEOFBIRTH = "2020-01-03";
   private static final String P3_PLACEOFBIRTH = "Nirgendwo";
   private static final String P3_BIRTHNAME = "Musterkind";
 
@@ -77,7 +76,7 @@ public class EidasAttributePostProcessingTest {
       "DE/AT/532EAABD9574880DBF76B9B8CC00832C20A6EC113D682299550D7A6E0F345E25";
   private static final String P4_GIVENNAME = "Max";
   private static final String P4_FAMILYNAME = "Mustermann";
-  private static final DateTime P4_DATEOFBIRTH = DateTime.now();
+  private static final String P4_DATEOFBIRTH = "2020-01-05";
   private static final String P4_PLACEOFBIRTH = "Nirgendwo";
   private static final String P4_BIRTHNAME = "Musterkind";
 
@@ -86,7 +85,7 @@ public class EidasAttributePostProcessingTest {
       "DE/AT/532EAABD9574880DBF76B9B8CC00832C20A6EC113D682299550D7A6E0F345E251";
   private static final String P5_GIVENNAME = "Max";
   private static final String P5_FAMILYNAME = "Mustermann";
-  private static final DateTime P5_DATEOFBIRTH = DateTime.now();
+  private static final String P5_DATEOFBIRTH = "2020-01-06";
   private static final String P5_PLACEOFBIRTH = "Nirgendwo";
   private static final String P5_BIRTHNAME = "Musterkind";
 
@@ -94,7 +93,7 @@ public class EidasAttributePostProcessingTest {
   private static final String P6_eIDASID = "DE/AT/532EAABD9574880DBF76B9B8CC00832C20A6EC113D682299550D7A6E0F";
   private static final String P6_GIVENNAME = "Max";
   private static final String P6_FAMILYNAME = "Mustermann";
-  private static final DateTime P6_DATEOFBIRTH = DateTime.now();
+  private static final String P6_DATEOFBIRTH = "2020-01-08";
   private static final String P6_PLACEOFBIRTH = "Nirgendwo";
   private static final String P6_BIRTHNAME = "Musterkind";
 
@@ -102,7 +101,7 @@ public class EidasAttributePostProcessingTest {
   private static final String P7_eIDASID = "DE/AT/532EAABD9574880DBF76B9B8CC00832C20A6EC113D682299550D7A6E0F";
   private static final String P7_GIVENNAME = "Max";
   private static final String P7_FAMILYNAME = "Mustermann";
-  private static final DateTime P7_DATEOFBIRTH = DateTime.now();
+  private static final String P7_DATEOFBIRTH = "2020-01-09";
   private static final String P7_PLACEOFBIRTH = "Nirgendwo";
   private static final String P7_BIRTHNAME = "Musterkind";
 
@@ -110,7 +109,7 @@ public class EidasAttributePostProcessingTest {
       "EE/AT/asfasfasdfasdfasdfasdfasdfasvafasdfasdfasdfasdfasdfasvascasdfasdfasdfasdfasdfasdfasdfasdfasdfasdfasd";
   private static final String P2_GIVENNAME = "Max";
   private static final String P2_FAMILYNAME = "Mustermann";
-  private static final DateTime P2_DATEOFBIRTH = DateTime.now();
+  private static final String P2_DATEOFBIRTH = "2020-01-10";
   private static final String P2_PLACEOFBIRTH = "Nirgendwo";
   private static final String P2_BIRTHNAME = "Musterkind";
 
@@ -129,7 +128,7 @@ public class EidasAttributePostProcessingTest {
   @Test
   public void deWithHexLowerCase() throws Exception {
     try {
-      final ErnpEidData result = postProcessor.postProcess(
+      final SimpleEidasData result = postProcessor.postProcess(
           generateInputData(
               P1_eIDASID,
               P1_FAMILYNAME,
@@ -156,7 +155,7 @@ public class EidasAttributePostProcessingTest {
   @Test
   public void deWithHexMixedCase() throws Exception {
     try {
-      final ErnpEidData result = postProcessor.postProcess(
+      final SimpleEidasData result = postProcessor.postProcess(
           generateInputData(
               P3_eIDASID,
               P3_FAMILYNAME,
@@ -183,7 +182,7 @@ public class EidasAttributePostProcessingTest {
   @Test
   public void deWithHexUpperCase() throws Exception {
     try {
-      final ErnpEidData result = postProcessor.postProcess(
+      final SimpleEidasData result = postProcessor.postProcess(
           generateInputData(
               P4_eIDASID,
               P4_FAMILYNAME,
@@ -270,7 +269,7 @@ public class EidasAttributePostProcessingTest {
   @Test
   public void eeTestCase() throws Exception {
     try {
-      final ErnpEidData result = postProcessor.postProcess(
+      final SimpleEidasData result = postProcessor.postProcess(
           generateInputData(
               P2_eIDASID,
               P2_FAMILYNAME,
@@ -297,7 +296,7 @@ public class EidasAttributePostProcessingTest {
   @Test
   public void eeTestFamilyNameMissingCase() throws Exception {
     try {
-      final ErnpEidData result = postProcessor.postProcess(
+      final SimpleEidasData result = postProcessor.postProcess(
           generateInputData(
               P2_eIDASID,
               null,
@@ -326,7 +325,7 @@ public class EidasAttributePostProcessingTest {
   @Test
   public void eeTestGivenNameMissingCase() throws Exception {
     try {
-      final ErnpEidData result = postProcessor.postProcess(
+      final SimpleEidasData result = postProcessor.postProcess(
           generateInputData(
               P2_eIDASID,
               P2_FAMILYNAME,
@@ -355,7 +354,7 @@ public class EidasAttributePostProcessingTest {
   @Test
   public void eeTestDateOfBirthMissingCase() throws Exception {
     try {
-      final ErnpEidData result = postProcessor.postProcess(
+      final SimpleEidasData result = postProcessor.postProcess(
           generateInputData(
               P2_eIDASID,
               P2_FAMILYNAME,
@@ -384,7 +383,7 @@ public class EidasAttributePostProcessingTest {
   @Test
   public void eeTestIdMissingCase() throws Exception {
     try {
-      final ErnpEidData result = postProcessor.postProcess(
+      final SimpleEidasData result = postProcessor.postProcess(
           generateInputData(
               null,
               P2_FAMILYNAME,
@@ -411,7 +410,7 @@ public class EidasAttributePostProcessingTest {
   }
 
   private Map<String, Object> generateInputData(String id, String familyName, String givenName,
-      DateTime dateOfBirth, String placeOfBirth, String birthName) {
+                                                String dateOfBirth, String placeOfBirth, String birthName) {
     final Map<String, Object> result = new HashMap<>();
     result.put(Constants.eIDAS_ATTR_PERSONALIDENTIFIER, id);
     result.put(Constants.eIDAS_ATTR_CURRENTGIVENNAME, givenName);
@@ -423,8 +422,8 @@ public class EidasAttributePostProcessingTest {
 
   }
 
-  private void validate(ErnpEidData result, String id, String familyName, String givenName,
-                        DateTime dateOfBirth, String placeOfBirth, String birthName) {
+  private void validate(SimpleEidasData result, String id, String familyName, String givenName,
+                        String dateOfBirth, String placeOfBirth, String birthName) {
     if (!result.getPseudonym().equals(id)) {
       fail(result.getPseudonym() + "is not equal to " + id);
     }
@@ -441,12 +440,6 @@ public class EidasAttributePostProcessingTest {
       fail(result.getDateOfBirth() + "is not equal to " + dateOfBirth);
     }
 
-    if (!result.getFormatedDateOfBirth().equals(new SimpleDateFormat("yyyy-MM-dd").format(dateOfBirth
-        .toDate()))) {
-      fail(result.getDateOfBirth() + "is not equal to " + new SimpleDateFormat("yyyy-MM-dd").format(
-          dateOfBirth.toDate()));
-    }
-
     if (!result.getPlaceOfBirth().equals(placeOfBirth)) {
       fail(result.getPlaceOfBirth() + "is not equal to " + placeOfBirth);
     }
-- 
cgit v1.2.3


From 27f2e48e6a585e2d1462b60214b5cfcd8f40680b Mon Sep 17 00:00:00 2001
From: Christian Kollmann <christian.kollmann@a-sit.at>
Date: Thu, 4 Mar 2021 17:47:41 +0100
Subject: Copy post processing eIDAS attributes to InitialSearchTask

---
 .../modules/auth/eidas/v2/dao/SimpleEidasData.java |  1 +
 .../eidas/v2/handler/AbstractEidProcessor.java     | 11 ++++--
 .../eidas/v2/tasks/CreateIdentityLinkTask.java     |  2 +-
 .../auth/eidas/v2/tasks/InitialSearchTask.java     | 43 +++++-----------------
 .../eidas/v2/test/tasks/InitialSearchTaskTest.java | 37 ++++++++++++++++---
 5 files changed, 51 insertions(+), 43 deletions(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleEidasData.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleEidasData.java
index 748994bb..9409509b 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleEidasData.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleEidasData.java
@@ -35,6 +35,7 @@ import org.apache.commons.lang3.builder.EqualsBuilder;
 @Builder
 public class SimpleEidasData {
 
+  private final String personalIdentifier;
   private final String citizenCountryCode;
 
   // MDS
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/AbstractEidProcessor.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/AbstractEidProcessor.java
index f97517d5..6d067e69 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/AbstractEidProcessor.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/AbstractEidProcessor.java
@@ -54,6 +54,7 @@ import eu.eidas.auth.commons.light.impl.LightRequest.Builder;
 import eu.eidas.auth.commons.protocol.eidas.SpType;
 
 import static at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants.eIDAS_ATTR_PERSONALIDENTIFIER;
+import static at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants.eIDAS_ATTR_TAXREFERENCE;
 import static at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.EidasResponseUtils.processCountryCode;
 import static at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.EidasResponseUtils.processDateOfBirthToString;
 
@@ -77,7 +78,7 @@ public abstract class AbstractEidProcessor implements INationalEidProcessor {
   @Override
   public final SimpleEidasData postProcess(Map<String, Object> eidasAttrMap) throws EidPostProcessingException,
       EidasAttributeException {
-    return SimpleEidasData.builder()
+    SimpleEidasData.SimpleEidasDataBuilder builder = SimpleEidasData.builder()
         // MDS attributes
         .citizenCountryCode(processCountryCode(eidasAttrMap.get(eIDAS_ATTR_PERSONALIDENTIFIER)))
         .pseudonym(processPseudonym(eidasAttrMap.get(Constants.eIDAS_ATTR_PERSONALIDENTIFIER)))
@@ -87,9 +88,11 @@ public abstract class AbstractEidProcessor implements INationalEidProcessor {
         // additional attributes
         .placeOfBirth(processPlaceOfBirth(eidasAttrMap.get(Constants.eIDAS_ATTR_PLACEOFBIRTH)))
         .birthName(processBirthName(eidasAttrMap.get(Constants.eIDAS_ATTR_BIRTHNAME)))
-        .address(processAddress(eidasAttrMap.get(Constants.eIDAS_ATTR_CURRENTADDRESS)))
-        //.taxNumber(processTaxReference(eidasAttrMap.get(Constants.eIDAS_ATTR_TAXREFERENCE)))
-        .build();
+        .address(processAddress(eidasAttrMap.get(Constants.eIDAS_ATTR_CURRENTADDRESS)));
+    if (eidasAttrMap.containsKey(eIDAS_ATTR_TAXREFERENCE)) {
+      builder.taxNumber(EidasResponseUtils.processTaxReference(eidasAttrMap.get(eIDAS_ATTR_TAXREFERENCE)));
+    }
+    return builder.build();
   }
 
 
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateIdentityLinkTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateIdentityLinkTask.java
index f70f0f85..66e7eb65 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateIdentityLinkTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateIdentityLinkTask.java
@@ -134,10 +134,10 @@ public class CreateIdentityLinkTask extends AbstractAuthServletTask {
           .getGenericDataFromSession(Constants.DATA_FULL_EIDAS_RESPONSE, ILightResponse.class);
       final Map<String, Object> eidasAttributes = convertEidasAttrToSimpleMap(
           eidasResponse.getAttributes().getAttributeMap());
-      final String personalIdentifier = (String) eidasAttributes.get(Constants.eIDAS_ATTR_PERSONALIDENTIFIER);
       final SimpleEidasData eidData = eidPostProcessor.postProcess(eidasAttributes);
       //final SimpleEidasData eidData =
           getAuthProcessDataWrapper().getGenericDataFromSession(Constants.DATA_SIMPLE_EIDAS, SimpleEidasData.class);
+      final String personalIdentifier = (String) eidasAttributes.get(Constants.eIDAS_ATTR_PERSONALIDENTIFIER);
       writeMdsLogInformation(eidData);
 
       if (basicConfig.getBasicConfigurationBoolean(Constants.CONIG_PROPS_EIDAS_SZRCLIENT_DEBUG_USEDUMMY, false)) {
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
index 89b5444f..b917de21 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
@@ -26,10 +26,12 @@ package at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.MergedRegisterSearchResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidPostProcessingException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidasAttributeException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.ManualFixNecessaryException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.WorkflowException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.CountrySpecificDetailSearchProcessor;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.ICcSpecificEidProcessingService;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.RegisterSearchService;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.EidasResponseUtils;
 import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
@@ -58,14 +60,6 @@ import java.util.Map;
 
 import static at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants.TRANSITION_TO_CREATE_NEW_ERNP_ENTRY_TASK;
 import static at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants.TRANSITION_TO_GENERATE_OTHER_LOGIN_METHOD_GUI_TASK;
-import static at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants.eIDAS_ATTR_BIRTHNAME;
-import static at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants.eIDAS_ATTR_CURRENTADDRESS;
-import static at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants.eIDAS_ATTR_CURRENTFAMILYNAME;
-import static at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants.eIDAS_ATTR_CURRENTGIVENNAME;
-import static at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants.eIDAS_ATTR_DATEOFBIRTH;
-import static at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants.eIDAS_ATTR_PERSONALIDENTIFIER;
-import static at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants.eIDAS_ATTR_PLACEOFBIRTH;
-import static at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants.eIDAS_ATTR_TAXREFERENCE;
 
 /**
  * Task that searches registers (ERnP and ZMR) before adding person to SZR.
@@ -101,17 +95,20 @@ public class InitialSearchTask extends AbstractAuthServletTask {
 
   private final List<CountrySpecificDetailSearchProcessor> handlers;
   private final RegisterSearchService registerSearchService;
+  private final ICcSpecificEidProcessingService eidPostProcessor;
 
   /**
    * Constructor.
-   *
-   * @param handlers              List of countrySpecificSearchProcessors
+   *  @param handlers              List of countrySpecificSearchProcessors
    * @param registerSearchService Service for register search access
+   * @param eidPostProcessor      Country-Specific post processing of attributes
    */
   public InitialSearchTask(List<CountrySpecificDetailSearchProcessor> handlers,
-                           RegisterSearchService registerSearchService) {
+                           RegisterSearchService registerSearchService,
+                           ICcSpecificEidProcessingService eidPostProcessor) {
     this.registerSearchService = registerSearchService;
     this.handlers = handlers;
+    this.eidPostProcessor = eidPostProcessor;
     log.info("Init with {} country specific detail search services", handlers.size());
   }
 
@@ -237,31 +234,11 @@ public class InitialSearchTask extends AbstractAuthServletTask {
 
   @NotNull
   private SimpleEidasData convertEidasAttrToSimpleData()
-      throws EidasAttributeException {
+      throws EidasAttributeException, EidPostProcessingException {
     final ILightResponse eidasResponse = getAuthProcessDataWrapper()
         .getGenericDataFromSession(Constants.DATA_FULL_EIDAS_RESPONSE, ILightResponse.class);
     Map<String, Object> simpleMap = convertEidasAttrToSimpleMap(eidasResponse.getAttributes().getAttributeMap());
-    return convertSimpleMapToSimpleData(simpleMap);
-  }
-
-  private SimpleEidasData convertSimpleMapToSimpleData(Map<String, Object> eidasAttrMap)
-      throws EidasAttributeException {
-    SimpleEidasData.SimpleEidasDataBuilder builder = SimpleEidasData.builder()
-        .citizenCountryCode(EidasResponseUtils.processCountryCode(eidasAttrMap.get(eIDAS_ATTR_PERSONALIDENTIFIER)))
-        // MDS attributes
-        .pseudonym(EidasResponseUtils.processPseudonym(eidasAttrMap.get(eIDAS_ATTR_PERSONALIDENTIFIER)))
-        .familyName(EidasResponseUtils.processFamilyName(eidasAttrMap.get(eIDAS_ATTR_CURRENTFAMILYNAME)))
-        .givenName(EidasResponseUtils.processGivenName(eidasAttrMap.get(eIDAS_ATTR_CURRENTGIVENNAME)))
-        .dateOfBirth(EidasResponseUtils.processDateOfBirthToString(eidasAttrMap.get(eIDAS_ATTR_DATEOFBIRTH)))
-        // additional attributes
-        .placeOfBirth(EidasResponseUtils.processPlaceOfBirth(eidasAttrMap.get(eIDAS_ATTR_PLACEOFBIRTH)))
-        .birthName(EidasResponseUtils.processBirthName(eidasAttrMap.get(eIDAS_ATTR_BIRTHNAME)))
-        .address(EidasResponseUtils.processAddress(eidasAttrMap.get(eIDAS_ATTR_CURRENTADDRESS)));
-    if (eidasAttrMap.containsKey(eIDAS_ATTR_TAXREFERENCE)) {
-      builder.taxNumber(EidasResponseUtils.processTaxReference(eidasAttrMap.get(eIDAS_ATTR_TAXREFERENCE)));
-    }
-    //TODO other additional attributes
-    return builder.build();
+    return eidPostProcessor.postProcess(simpleMap);
   }
 
   private Map<String, Object> convertEidasAttrToSimpleMap(
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskTest.java
index c9f123dc..643afb90 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskTest.java
@@ -25,13 +25,19 @@ package at.asitplus.eidas.specific.modules.auth.eidas.v2.test.tasks;
 
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernp.IErnpClient;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidPostProcessingException;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidasAttributeException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.ManualFixNecessaryException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.DeSpecificDetailSearchProcessor;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.GenericEidProcessor;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.ItSpecificDetailSearchProcessor;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.ICcSpecificEidProcessingService;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.RegisterSearchService;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.InitialSearchTask;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.IZmrClient;
+import at.gv.egiz.eaaf.core.api.IRequest;
 import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
 import at.gv.egiz.eaaf.core.exceptions.EaafStorageException;
 import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
@@ -41,6 +47,7 @@ import at.gv.egiz.eaaf.core.impl.idp.process.ExecutionContextImpl;
 import eu.eidas.auth.commons.attribute.AttributeDefinition;
 import eu.eidas.auth.commons.attribute.ImmutableAttributeMap;
 import eu.eidas.auth.commons.attribute.PersonType;
+import eu.eidas.auth.commons.light.impl.LightRequest;
 import eu.eidas.auth.commons.protocol.impl.AuthenticationResponse;
 import org.apache.commons.lang3.RandomStringUtils;
 import org.jetbrains.annotations.NotNull;
@@ -65,6 +72,7 @@ import java.net.URI;
 import java.net.URISyntaxException;
 import java.util.ArrayList;
 import java.util.Collections;
+import java.util.Map;
 import java.util.Random;
 
 import static org.apache.commons.lang3.RandomStringUtils.randomAlphabetic;
@@ -86,6 +94,7 @@ public class InitialSearchTaskTest {
   private IZmrClient zmrClient;
   @Mock
   private IErnpClient ernpClient;
+  private final ICcSpecificEidProcessingService eidPostProcessor = createEidPostProcessor();
   private RegisterSearchService registerSearchService;
 
   final ExecutionContext executionContext = new ExecutionContextImpl();
@@ -106,7 +115,7 @@ public class InitialSearchTaskTest {
   public void setUp() throws URISyntaxException, EaafStorageException {
     MockitoAnnotations.initMocks(this);
     registerSearchService = new RegisterSearchService(zmrClient, ernpClient);
-    task = new InitialSearchTask(new ArrayList<>(), registerSearchService);
+    task = new InitialSearchTask(new ArrayList<>(), registerSearchService, eidPostProcessor);
 
     MockHttpServletRequest httpReq = new MockHttpServletRequest("POST", "https://localhost/authhandler");
     MockHttpServletResponse httpResp = new MockHttpServletResponse();
@@ -119,6 +128,24 @@ public class InitialSearchTaskTest {
         .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
   }
 
+  @NotNull
+  private ICcSpecificEidProcessingService createEidPostProcessor() {
+    return new ICcSpecificEidProcessingService() {
+
+      private final GenericEidProcessor genericEidProcessor = new GenericEidProcessor();
+
+      @Override
+      public SimpleEidasData postProcess(Map<String, Object> eidasAttrMap) throws EidPostProcessingException, EidasAttributeException {
+        return genericEidProcessor.postProcess(eidasAttrMap);
+      }
+
+      @Override
+      public void preProcess(String selectedCC, IRequest pendingReq, LightRequest.Builder authnRequestBuilder) {
+        genericEidProcessor.preProcess(pendingReq, authnRequestBuilder);
+      }
+    };
+  }
+
   /**
    * One match, but register update needed
    */
@@ -245,7 +272,7 @@ public class InitialSearchTaskTest {
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
     task = new InitialSearchTask(
         Collections.singletonList(new ItSpecificDetailSearchProcessor(registerSearchService)),
-        registerSearchService);
+        registerSearchService, eidPostProcessor);
 
     task.execute(pendingReq1, executionContext);
 
@@ -273,7 +300,7 @@ public class InitialSearchTaskTest {
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
     task = new InitialSearchTask(
         Collections.singletonList(new DeSpecificDetailSearchProcessor(registerSearchService)),
-        registerSearchService);
+        registerSearchService, eidPostProcessor);
 
     task.execute(pendingReq1, executionContext);
 
@@ -307,7 +334,7 @@ public class InitialSearchTaskTest {
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
     task = new InitialSearchTask(
         Collections.singletonList(new DeSpecificDetailSearchProcessor(registerSearchService)),
-        registerSearchService);
+        registerSearchService, eidPostProcessor);
 
     TaskExecutionException exception = assertThrows(TaskExecutionException.class,
         () -> task.execute(pendingReq1, executionContext));
@@ -340,7 +367,7 @@ public class InitialSearchTaskTest {
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
     task = new InitialSearchTask(
         Collections.singletonList(new ItSpecificDetailSearchProcessor(registerSearchService)),
-        registerSearchService);
+        registerSearchService, eidPostProcessor);
 
     TaskExecutionException exception = assertThrows(TaskExecutionException.class,
         () -> task.execute(pendingReq1, executionContext));
-- 
cgit v1.2.3


From dcabab7b6cd0fc763ae4d81eea8283261dd7fede Mon Sep 17 00:00:00 2001
From: Christian Kollmann <christian.kollmann@a-sit.at>
Date: Fri, 5 Mar 2021 07:46:25 +0100
Subject: Fix checkstyle violations

---
 .../specific/modules/auth/eidas/v2/Constants.java  | 18 ++++-----
 .../modules/auth/eidas/v2/dao/SimpleEidasData.java |  2 -
 .../eidas/v2/handler/AbstractEidProcessor.java     |  8 ++--
 .../eidas/v2/handler/INationalEidProcessor.java    |  1 -
 .../modules/auth/eidas/v2/szr/SzrClient.java       | 15 ++++----
 .../eidas/v2/tasks/CreateIdentityLinkTask.java     | 43 ++++++++++++----------
 .../eidas/v2/tasks/CreateNewErnpEntryTask.java     |  2 +-
 .../auth/eidas/v2/tasks/InitialSearchTask.java     | 25 ++++++-------
 .../ReceiveAustrianResidenceGuiResponseTask.java   |  1 -
 .../ReceiveMobilePhoneSignatureResponseTask.java   | 13 +++----
 .../ReceiveOtherLoginMethodGuiResponseTask.java    | 11 +++---
 11 files changed, 67 insertions(+), 72 deletions(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java
index 76c026ae..3a267d29 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java
@@ -36,22 +36,22 @@ public class Constants {
   public static final String DATA_FULL_EIDAS_RESPONSE = "resp_fulleIDASResponse";
 
   /**
-   * Stored when one match from register was found
+   * Stored when one match from register was found.
    */
   public static final String DATA_RESULT_MATCHING_BPK = "matching_result_bpk";
 
   /**
-   * Stored before Step 2 from Matching Concept, input from user eIDAS authn
+   * Stored before Step 2 from Matching Concept, input from user eIDAS authn.
    */
   public static final String DATA_SIMPLE_EIDAS = "matching_simple_eidas_data";
 
   /**
-   * Stored after Step 2 from Matching Concept, first results from search with Person Identifier
+   * Stored after Step 2 from Matching Concept, first results from search with Person Identifier.
    */
   public static final String DATA_INITIAL_REGISTER_RESULT = "matching_initial_register_result";
 
   /**
-   * Stored after Step 8 from Matching Concept, results from search in registers with MDS
+   * Stored after Step 8 from Matching Concept, results from search in registers with MDS.
    */
   public static final String DATA_FURTHER_REGISTER_RESULT = "matching_further_register_result";
 
@@ -201,30 +201,30 @@ public class Constants {
   public static final String COUNTRY_CODE_IT = "IT";
 
   /**
-   * {@link at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.CreateNewErnpEntryTask}
+   * {@link at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.CreateNewErnpEntryTask}.
    */
   public static final String TRANSITION_TO_CREATE_NEW_ERNP_ENTRY_TASK = "TASK_CreateNewErnpEntryTask";
 
   /**
-   * {@link at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.GenerateOtherLoginMethodGuiTask}
+   * {@link at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.GenerateOtherLoginMethodGuiTask}.
    */
   public static final String TRANSITION_TO_GENERATE_OTHER_LOGIN_METHOD_GUI_TASK =
       "TASK_GenerateOtherLoginMethodGuiTask";
 
   /**
-   * {@link at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.GenerateAustrianResidenceGuiTask}
+   * {@link at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.GenerateAustrianResidenceGuiTask}.
    */
   public static final String TRANSITION_TO_GENERATE_GUI_QUERY_AUSTRIAN_RESIDENCE_TASK =
       "TASK_GenerateAustrianResidenceGuiTask";
 
   /**
-   * {@link at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.GenerateMobilePhoneSignatureRequestTask}
+   * {@link at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.GenerateMobilePhoneSignatureRequestTask}.
    */
   public static final String TRANSITION_TO_GENERATE_MOBILE_PHONE_SIGNATURE_REQUEST_TASK =
       "TASK_GenerateMobilePhoneSignatureRequestTask";
 
   /**
-   * TODO Second eidas login
+   * TODO Second eidas login.
    */
   public static final String TRANSITION_TO_GENERATE_EIDAS_LOGIN = "TASK_TODO";
 
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleEidasData.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleEidasData.java
index 9409509b..ecf5007a 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleEidasData.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleEidasData.java
@@ -25,10 +25,8 @@ package at.asitplus.eidas.specific.modules.auth.eidas.v2.dao;
 
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.WorkflowException;
 import at.gv.e_government.reference.namespace.persondata._20020228.PostalAddressType;
-import lombok.AllArgsConstructor;
 import lombok.Builder;
 import lombok.Data;
-import lombok.NoArgsConstructor;
 import org.apache.commons.lang3.builder.EqualsBuilder;
 
 @Data
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/AbstractEidProcessor.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/AbstractEidProcessor.java
index 6d067e69..05254fe2 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/AbstractEidProcessor.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/AbstractEidProcessor.java
@@ -53,8 +53,6 @@ import eu.eidas.auth.commons.attribute.ImmutableAttributeMap;
 import eu.eidas.auth.commons.light.impl.LightRequest.Builder;
 import eu.eidas.auth.commons.protocol.eidas.SpType;
 
-import static at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants.eIDAS_ATTR_PERSONALIDENTIFIER;
-import static at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants.eIDAS_ATTR_TAXREFERENCE;
 import static at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.EidasResponseUtils.processCountryCode;
 import static at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.EidasResponseUtils.processDateOfBirthToString;
 
@@ -80,7 +78,7 @@ public abstract class AbstractEidProcessor implements INationalEidProcessor {
       EidasAttributeException {
     SimpleEidasData.SimpleEidasDataBuilder builder = SimpleEidasData.builder()
         // MDS attributes
-        .citizenCountryCode(processCountryCode(eidasAttrMap.get(eIDAS_ATTR_PERSONALIDENTIFIER)))
+        .citizenCountryCode(processCountryCode(eidasAttrMap.get(Constants.eIDAS_ATTR_PERSONALIDENTIFIER)))
         .pseudonym(processPseudonym(eidasAttrMap.get(Constants.eIDAS_ATTR_PERSONALIDENTIFIER)))
         .familyName(processFamilyName(eidasAttrMap.get(Constants.eIDAS_ATTR_CURRENTFAMILYNAME)))
         .givenName(processGivenName(eidasAttrMap.get(Constants.eIDAS_ATTR_CURRENTGIVENNAME)))
@@ -89,8 +87,8 @@ public abstract class AbstractEidProcessor implements INationalEidProcessor {
         .placeOfBirth(processPlaceOfBirth(eidasAttrMap.get(Constants.eIDAS_ATTR_PLACEOFBIRTH)))
         .birthName(processBirthName(eidasAttrMap.get(Constants.eIDAS_ATTR_BIRTHNAME)))
         .address(processAddress(eidasAttrMap.get(Constants.eIDAS_ATTR_CURRENTADDRESS)));
-    if (eidasAttrMap.containsKey(eIDAS_ATTR_TAXREFERENCE)) {
-      builder.taxNumber(EidasResponseUtils.processTaxReference(eidasAttrMap.get(eIDAS_ATTR_TAXREFERENCE)));
+    if (eidasAttrMap.containsKey(Constants.eIDAS_ATTR_TAXREFERENCE)) {
+      builder.taxNumber(EidasResponseUtils.processTaxReference(eidasAttrMap.get(Constants.eIDAS_ATTR_TAXREFERENCE)));
     }
     return builder.build();
   }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/INationalEidProcessor.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/INationalEidProcessor.java
index a40e3b37..79a261fe 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/INationalEidProcessor.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/INationalEidProcessor.java
@@ -67,7 +67,6 @@ public interface INationalEidProcessor {
    *                     attribute
    * @throws EidPostProcessingException In case of a post-processing error
    * @throws EidasAttributeException In case of an invalid eIDAS attribute
-   * @return
    */
   SimpleEidasData postProcess(Map<String, Object> eidasAttrMap) throws EidPostProcessingException,
       EidasAttributeException;
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/szr/SzrClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/szr/SzrClient.java
index 091fe209..2d612f0c 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/szr/SzrClient.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/szr/SzrClient.java
@@ -228,7 +228,6 @@ public class SzrClient {
 
   /**
    * Creates a new ERnP entry.
-   *
    * TODO Is this correct? Ask BMI.
    *
    * @param eidasData Minimum dataset of person
@@ -328,13 +327,6 @@ public class SzrClient {
   }
 
   private PersonInfoType generateSzrRequest(SimpleEidasData eidData) {
-    String documentType = basicConfig
-        .getBasicConfiguration(Constants.CONIG_PROPS_EIDAS_SZRCLIENT_PARAMS_EDOCUMENTTYPE,
-            Constants.SZR_CONSTANTS_DEFAULT_DOCUMENT_TYPE);
-    boolean setBirthName = basicConfig
-        .getBasicConfigurationBoolean(Constants.CONIG_PROPS_EIDAS_SZRCLIENT_PARAMS_SETBIRTHNAMEIFAVAILABLE, true);
-    boolean setPlaceOfBirth = basicConfig
-        .getBasicConfigurationBoolean(Constants.CONIG_PROPS_EIDAS_SZRCLIENT_PARAMS_SETPLACEOFBIRTHIFAVAILABLE, true);
     log.debug("Starting connecting SZR Gateway");
     final PersonInfoType personInfo = new PersonInfoType();
     final PersonNameType personName = new PersonNameType();
@@ -353,11 +345,16 @@ public class SzrClient {
     eDocument.setDocumentNumber(eidData.getPseudonym());
 
     // eID document information
+    String documentType = basicConfig
+        .getBasicConfiguration(Constants.CONIG_PROPS_EIDAS_SZRCLIENT_PARAMS_EDOCUMENTTYPE,
+                               Constants.SZR_CONSTANTS_DEFAULT_DOCUMENT_TYPE);
     eDocument.setDocumentType(documentType);
 
     // set PlaceOfBirth if available
     if (eidData.getPlaceOfBirth() != null) {
       log.trace("Find 'PlaceOfBirth' attribute: " + eidData.getPlaceOfBirth());
+      boolean setPlaceOfBirth = basicConfig
+          .getBasicConfigurationBoolean(Constants.CONIG_PROPS_EIDAS_SZRCLIENT_PARAMS_SETPLACEOFBIRTHIFAVAILABLE, true);
       if (setPlaceOfBirth) {
         naturalPerson.setPlaceOfBirth(eidData.getPlaceOfBirth());
         log.trace("Adding 'PlaceOfBirth' to ERnB request ... ");
@@ -367,6 +364,8 @@ public class SzrClient {
     // set BirthName if available
     if (eidData.getBirthName() != null) {
       log.trace("Find 'BirthName' attribute: " + eidData.getBirthName());
+      boolean setBirthName = basicConfig
+          .getBasicConfigurationBoolean(Constants.CONIG_PROPS_EIDAS_SZRCLIENT_PARAMS_SETBIRTHNAMEIFAVAILABLE, true);
       if (setBirthName) {
         final AlternativeNameType alternativeName = new AlternativeNameType();
         naturalPerson.setAlternativeName(alternativeName);
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateIdentityLinkTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateIdentityLinkTask.java
index 66e7eb65..97769cc2 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateIdentityLinkTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateIdentityLinkTask.java
@@ -79,28 +79,25 @@ import java.util.List;
 import java.util.Map;
 
 /**
- * Task that creates the IdentityLink for an eIDAS authenticated person.
- *
- * @author tlenz
- * <p>
- * <p>
+ * Task that creates the IdentityLink for an eIDAS authenticated person. 
  * Input:
  * <ul>
- *   <li>{@link Constants#DATA_SIMPLE_EIDAS} initial login data from user</li>
- *   <li>{@link Constants#DATA_RESULT_MATCHING_BPK} the BPK of the matched entry in a register</li>
+ *     <li>{@link Constants#DATA_SIMPLE_EIDAS} initial login data from user</li>
+ *     <li>{@link Constants#DATA_RESULT_MATCHING_BPK} the BPK of the matched entry in a register</li>
  * </ul>
  * Output:
  * <ul>
- *   <li>{@link Constants#EIDAS_BIND} the binding block</li>
- *   <li>{@link Constants#SZR_AUTHBLOCK} the auth block</li>
+ *     <li>{@link Constants#EIDAS_BIND} the binding block</li>
+ *     <li>{@link Constants#SZR_AUTHBLOCK} the auth block</li>
  * </ul>
  * Transitions:
  * <ul>
- *   <li>{@link at.gv.egiz.eaaf.core.impl.idp.controller.tasks.FinalizeAuthenticationTask}</li>
+ *     <li>{@link at.gv.egiz.eaaf.core.impl.idp.controller.tasks.FinalizeAuthenticationTask}</li>
  * </ul>
  * TODO Take Constants#DATA_SIMPLE_EIDAS and Constants#DATA_RESULT_MATCHING_BPK
  * TODO Only do VSZ Erstellung and eidasBind -- this is always the end of the whole process
  * TODO Move Eintragung to separate Task, as it does not happen every time
+ * @author tlenz
  */
 @Slf4j
 @Component("CreateIdentityLinkTask")
@@ -136,7 +133,7 @@ public class CreateIdentityLinkTask extends AbstractAuthServletTask {
           eidasResponse.getAttributes().getAttributeMap());
       final SimpleEidasData eidData = eidPostProcessor.postProcess(eidasAttributes);
       //final SimpleEidasData eidData =
-          getAuthProcessDataWrapper().getGenericDataFromSession(Constants.DATA_SIMPLE_EIDAS, SimpleEidasData.class);
+      //    getAuthProcessDataWrapper().getGenericDataFromSession(Constants.DATA_SIMPLE_EIDAS, SimpleEidasData.class);
       final String personalIdentifier = (String) eidasAttributes.get(Constants.eIDAS_ATTR_PERSONALIDENTIFIER);
       writeMdsLogInformation(eidData);
 
@@ -193,7 +190,8 @@ public class CreateIdentityLinkTask extends AbstractAuthServletTask {
             .getAreaSpecificTargetIdentifier());
   }
 
-  private void executeEidMode(SimpleEidasData eidData, String personalIdentifier) throws JsonProcessingException, EaafException, JoseException {
+  private void executeEidMode(SimpleEidasData eidData, String personalIdentifier)
+      throws JsonProcessingException, EaafException, JoseException {
     // get encrypted baseId
     String vsz = szrClient.getEncryptedStammzahl(eidData);
 
@@ -217,7 +215,8 @@ public class CreateIdentityLinkTask extends AbstractAuthServletTask {
     authProcessDataWrapper.setEidProcess(true);
   }
 
-  private void buildDummyIdentityLink(SimpleEidasData eidData) throws ParserConfigurationException, SAXException, IOException, EaafException {
+  private void buildDummyIdentityLink(SimpleEidasData eidData)
+      throws ParserConfigurationException, SAXException, IOException, EaafException {
     AuthProcessDataWrapper authProcessDataWrapper = getAuthProcessDataWrapper();
     SzrResultHolder idlResult = createDummyIdentityLinkForTestDeployment(eidData);
     //inject personal-data into session
@@ -254,9 +253,9 @@ public class CreateIdentityLinkTask extends AbstractAuthServletTask {
     boolean debugUseSzrForBpk = basicConfig
         .getBasicConfigurationBoolean(Constants.CONIG_PROPS_EIDAS_SZRCLIENT_DEBUG_USESRZFORBPKGENERATION, true);
     if (debugUseSzrForBpk) {
-      String no_vkz_defined = basicConfig
+      String vkz = basicConfig
           .getBasicConfiguration(Constants.CONIG_PROPS_EIDAS_SZRCLIENT_PARAMS_VKZ, "no VKZ defined");
-      List<String> bpkList = szrClient.getBpk(eidData, targetId, no_vkz_defined);
+      List<String> bpkList = szrClient.getBpk(eidData, targetId, vkz);
       if (!bpkList.isEmpty()) {
         bpk = bpkList.get(0);
       }
@@ -334,7 +333,9 @@ public class CreateIdentityLinkTask extends AbstractAuthServletTask {
     return result;
   }
 
-  private void convertString(ImmutableMap<AttributeDefinition<?>, ImmutableSet<? extends AttributeValue<?>>> attributeMap, Map<String, Object> result, AttributeDefinition<?> el) {
+  private void convertString(ImmutableMap<AttributeDefinition<?>,
+                             ImmutableSet<? extends AttributeValue<?>>> attributeMap,
+                             Map<String, Object> result, AttributeDefinition<?> el) {
     final List<String> natPersonIdObj = EidasResponseUtils
         .translateStringListAttribute(el, attributeMap.get(el));
     final String stringAttr = natPersonIdObj.get(0);
@@ -346,7 +347,9 @@ public class CreateIdentityLinkTask extends AbstractAuthServletTask {
     }
   }
 
-  private void convertPostalAddress(ImmutableMap<AttributeDefinition<?>, ImmutableSet<? extends AttributeValue<?>>> attributeMap, Map<String, Object> result, AttributeDefinition<?> el) {
+  private void convertPostalAddress(ImmutableMap<AttributeDefinition<?>,
+                                    ImmutableSet<? extends AttributeValue<?>>> attributeMap,
+                                    Map<String, Object> result, AttributeDefinition<?> el) {
     final PostalAddress addressAttribute = EidasResponseUtils
         .translateAddressAttribute(el, attributeMap.get(el).asList());
     if (addressAttribute != null) {
@@ -357,7 +360,9 @@ public class CreateIdentityLinkTask extends AbstractAuthServletTask {
     }
   }
 
-  private void convertDateTime(ImmutableMap<AttributeDefinition<?>, ImmutableSet<? extends AttributeValue<?>>> attributeMap, Map<String, Object> result, AttributeDefinition<?> el) {
+  private void convertDateTime(ImmutableMap<AttributeDefinition<?>,
+                               ImmutableSet<? extends AttributeValue<?>>> attributeMap,
+                               Map<String, Object> result, AttributeDefinition<?> el) {
     final DateTime attribute = EidasResponseUtils.translateDateAttribute(el, attributeMap.get(el).asList());
     if (attribute != null) {
       result.put(el.getFriendlyName(), attribute);
@@ -373,7 +378,7 @@ public class CreateIdentityLinkTask extends AbstractAuthServletTask {
   }
 
   /**
-   * write MDS into technical log and revision log
+   * write MDS into technical log and revision log.
    */
   private void writeMdsLogInformation(SimpleEidasData eidData) {
     boolean writeMdsInTechLog = basicConfig
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateNewErnpEntryTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateNewErnpEntryTask.java
index 15d62a7a..025f3475 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateNewErnpEntryTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateNewErnpEntryTask.java
@@ -39,7 +39,6 @@ import javax.servlet.http.HttpServletResponse;
 /**
  * Task that searches ERnP and ZMR before adding person to SZR.
  * This corresponds to Step 9 in the eIDAS Matching Concept.
- *
  * Input:
  * <ul>
  *   <li>{@link Constants#DATA_SIMPLE_EIDAS}</li>
@@ -74,6 +73,7 @@ public class CreateNewErnpEntryTask extends AbstractAuthServletTask {
       // TODO When to do eidPostProcessor.postProcess on the eidas attributes?
       String vsz = szrClient.createNewErnpEntry(simpleEidasData);
       // TODO what to do with the VSZ now
+      log.info("VSZ: {}", vsz);
     } catch (final Exception e) {
       log.error("Initial search FAILED.", e);
       throw new TaskExecutionException(pendingReq, "Initial search FAILED.", e);
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
index b917de21..a6e0bca8 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
@@ -63,26 +63,24 @@ import static at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants.TRANSIT
 
 /**
  * Task that searches registers (ERnP and ZMR) before adding person to SZR.
- * <p>
  * Input:
  * <ul>
- *   <li>{@link Constants#DATA_FULL_EIDAS_RESPONSE}</li>
+ *     <li>{@link Constants#DATA_FULL_EIDAS_RESPONSE}</li>
  * </ul>
  * Output:
  * <ul>
- *   <li>{@link Constants#DATA_SIMPLE_EIDAS} converted from Full eIDAS Response</li>
- *   <li>{@link Constants#DATA_INITIAL_REGISTER_RESULT} results from first search in registers with
- *   PersonIdentifier</li>
- *   <li>{@link Constants#DATA_FURTHER_REGISTER_RESULT} results after second search in registers with MDS</li>
- *   <li>{@link Constants#DATA_RESULT_MATCHING_BPK} if one register result found</li>
+ *     <li>{@link Constants#DATA_SIMPLE_EIDAS} converted from Full eIDAS Response</li>
+ *     <li>{@link Constants#DATA_INITIAL_REGISTER_RESULT} results from first search in registers with
+ *     PersonIdentifier</li>
+ *     <li>{@link Constants#DATA_FURTHER_REGISTER_RESULT} results after second search in registers with MDS</li>
+ *     <li>{@link Constants#DATA_RESULT_MATCHING_BPK} if one register result found</li>
  * </ul>
- * <p>
  * Transitions:
  * <ul>
- *   <li>{@link CreateNewErnpEntryTask} if no results in registers where found for this user</li>
- *   <li>{@link GenerateOtherLoginMethodGuiTask} if search with MDS returns more than one match, user may provide
- *   alternative login methods to get an unique match</li>
- *   <li>{@link CreateIdentityLinkTask} if search in register returned one match, user is uniquely identified</li>
+ *     <li>{@link CreateNewErnpEntryTask} if no results in registers where found for this user</li>
+ *     <li>{@link GenerateOtherLoginMethodGuiTask} if search with MDS returns more than one match, user may provide
+ *     alternative login methods to get an unique match</li>
+ *     <li>{@link CreateIdentityLinkTask} if search in register returned one match, user is uniquely identified</li>
  * </ul>
  *
  * @author amarsalek
@@ -150,6 +148,7 @@ public class InitialSearchTask extends AbstractAuthServletTask {
         storeMatchingBpk(initialSearchResult.getBpk());
       } else {
         // TODO Update "initialSearchResult" in register with "eidasData" from login not possible for now
+        log.info("Update in Register");
         storeMatchingBpk(initialSearchResult.getBpk());
       }
     } catch (WorkflowException | EaafStorageException e) {
@@ -277,4 +276,4 @@ public class InitialSearchTask extends AbstractAuthServletTask {
     log.debug("Receive #{} attributes with names: {}", result.size(), result.keySet().toString());
     return result;
   }
-}
\ No newline at end of file
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveAustrianResidenceGuiResponseTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveAustrianResidenceGuiResponseTask.java
index 3a337de2..3b7f361c 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveAustrianResidenceGuiResponseTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveAustrianResidenceGuiResponseTask.java
@@ -51,7 +51,6 @@ import java.util.Enumeration;
 /**
  * Task receives the response of {@link GenerateAustrianResidenceGuiTask} and handles it.
  * This corresponds to Steps 17B, 18, 19 in the eIDAS Matching Concept.
- * <p>
  * Input:
  * <ul>
  *   <li>{@link Constants#DATA_SIMPLE_EIDAS} initial login data from user</li>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseTask.java
index 5e034cb3..a6ff345d 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseTask.java
@@ -79,21 +79,20 @@ import static at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.I
 /**
  * Task that receives the SAML2 response from ID Austria system.
  * This corresponds to Step 15 in the eIDAS Matching Concept.
- *
  * Input:
  * <ul>
- *   <li>{@link Constants#DATA_SIMPLE_EIDAS} initial login data from user</li>
- *   <li>{@link Constants#DATA_INITIAL_REGISTER_RESULT} results from search in registers with personIdentifier</li>
+ *     <li>{@link Constants#DATA_SIMPLE_EIDAS} initial login data from user</li>
+ *     <li>{@link Constants#DATA_INITIAL_REGISTER_RESULT} results from search in registers with personIdentifier</li>
  * </ul>
  * Output:
  * <ul>
- *   <li>{@link Constants#DATA_RESULT_MATCHING_BPK} if one register result found</li>
+ *     <li>{@link Constants#DATA_RESULT_MATCHING_BPK} if one register result found</li>
  * </ul>
  * Transitions:
  * <ul>
- *   <li>{@link GenerateAustrianResidenceGuiTask} if no results in registers were found</li>
- *   <li>{@link CreateIdentityLinkTask} if one exact match between initial register search (with MDS) data and
- *   register search with MPS data exists</li>
+ *     <li>{@link GenerateAustrianResidenceGuiTask} if no results in registers were found</li>
+ *     <li>{@link CreateIdentityLinkTask} if one exact match between initial register search (with MDS) data and
+ *     register search with MPS data exists</li>
  * </ul>
  *
  * @author tlenz
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveOtherLoginMethodGuiResponseTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveOtherLoginMethodGuiResponseTask.java
index 33b6fbb2..e139b280 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveOtherLoginMethodGuiResponseTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveOtherLoginMethodGuiResponseTask.java
@@ -40,20 +40,19 @@ import java.util.Enumeration;
 /**
  * Handles user's selection from {@link GenerateOtherLoginMethodGuiTask}.
  * This corresponds to Steps 10, 14, 16 in the eIDAS Matching Concept.
- *
  * Input:
  * <ul>
- *   <li>{@link Constants#DATA_SIMPLE_EIDAS} initial login data from user</li>
- *   <li>{@link Constants#DATA_INITIAL_REGISTER_RESULT} results from search in registers with personIdentifier</li>
+ *     <li>{@link Constants#DATA_SIMPLE_EIDAS} initial login data from user</li>
+ *     <li>{@link Constants#DATA_INITIAL_REGISTER_RESULT} results from search in registers with personIdentifier</li>
  * </ul>
  * Output:
  * <ul>
- *   <li>{@link Constants#DATA_RESULT_MATCHING_BPK} if one register result found</li>
+ *     <li>{@link Constants#DATA_RESULT_MATCHING_BPK} if one register result found</li>
  * </ul>
  * Transitions:
  * <ul>
- *   <li>{@link GenerateMobilePhoneSignatureRequestTask} if selected by user</li>
- *   <li>{@link GenerateAustrianResidenceGuiTask} if selected by user</li>
+ *     <li>{@link GenerateMobilePhoneSignatureRequestTask} if selected by user</li>
+ *     <li>{@link GenerateAustrianResidenceGuiTask} if selected by user</li>
  * </ul>
  *
  * @author amarsalek
-- 
cgit v1.2.3


From 9f0fa316c8f7adeb3529cb4c3b2c553f085f7d95 Mon Sep 17 00:00:00 2001
From: Thomas <>
Date: Tue, 15 Jun 2021 12:14:51 +0200
Subject: add ZMR client, to some re-factoring, and a lot of bug-fixing

---
 .../specific/modules/auth/eidas/v2/Constants.java  |  64 +-
 .../auth/eidas/v2/clients/AbstractSoapClient.java  | 197 +++++
 .../auth/eidas/v2/clients/szr/SzrClient.java       | 469 ++++++++++
 .../auth/eidas/v2/clients/szr/SzrService.java      | 164 ++++
 .../auth/eidas/v2/clients/zmr/IZmrClient.java      |  89 ++
 .../auth/eidas/v2/clients/zmr/ZmrSoapClient.java   | 560 ++++++++++++
 .../eidas/v2/dao/MergedRegisterSearchResult.java   |  75 --
 .../modules/auth/eidas/v2/dao/RegisterResult.java  |  67 +-
 .../modules/auth/eidas/v2/dao/SimpleEidasData.java |  28 +-
 .../eidas/v2/dao/SimpleMobileSignatureData.java    |   4 +-
 .../auth/eidas/v2/ernp/DummyErnpClient.java        |   9 +-
 .../modules/auth/eidas/v2/ernp/IErnpClient.java    |   4 +-
 .../v2/exception/InvalidUserInputException.java    |   5 +-
 .../v2/exception/ManualFixNecessaryException.java  |  10 +-
 .../auth/eidas/v2/exception/WorkflowException.java |  65 +-
 .../v2/exception/ZmrCommunicationException.java    |  38 +
 .../eidas/v2/handler/AbstractEidProcessor.java     |  17 +-
 .../CountrySpecificDetailSearchProcessor.java      |  15 +-
 .../handler/DeSpecificDetailSearchProcessor.java   |  41 +-
 .../handler/ItSpecificDetailSearchProcessor.java   |  30 +-
 .../eidas/v2/service/RegisterSearchService.java    | 328 +++++--
 .../modules/auth/eidas/v2/szr/SzrClient.java       | 601 -------------
 .../modules/auth/eidas/v2/szr/SzrService.java      | 164 ----
 .../eidas/v2/tasks/CreateIdentityLinkTask.java     |  57 +-
 .../eidas/v2/tasks/CreateNewErnpEntryTask.java     |  25 +-
 .../auth/eidas/v2/tasks/InitialSearchTask.java     | 229 +++--
 .../ReceiveAustrianResidenceGuiResponseTask.java   | 104 ++-
 .../ReceiveMobilePhoneSignatureResponseTask.java   | 159 ++--
 .../ReceiveOtherLoginMethodGuiResponseTask.java    |  30 +-
 .../auth/eidas/v2/utils/EidasResponseUtils.java    |  46 +-
 .../auth/eidas/v2/utils/MatchingTaskUtils.java     |  88 ++
 .../modules/auth/eidas/v2/utils/VersionHolder.java |  40 +
 .../modules/auth/eidas/v2/zmr/DummyZmrClient.java  |  50 +-
 .../modules/auth/eidas/v2/zmr/IZmrClient.java      |  48 --
 .../resources/eIDAS.Authentication.process.xml     | 100 +--
 .../src/main/resources/eidas_v2_auth.beans.xml     |  14 +-
 .../messages/eidas_connector_message.properties    |  12 +
 .../src/main/resources/szr_client/SZR-1.1.WSDL     | 939 ---------------------
 .../src/main/resources/szr_client/SZR-1.WSDL       | 901 --------------------
 .../src/main/resources/szr_client/SZR_v4.0.wsdl    | 441 ----------
 .../src/main/resources/szr_client/pvp1.xsd         | 133 ---
 .../src/main/resources/szr_client/pvp19.xsd        | 133 ---
 .../src/main/resources/szr_client/szr.xsd          | 388 ---------
 .../src/main/resources/szr_client/szr_ecdsa.xsd    |  30 -
 .../main/resources/szr_client/szr_persondata.xsd   |  54 --
 .../src/main/resources/szr_client/szr_pvp_sec.xsd  |  10 -
 .../main/resources/szr_client/szr_v4.0-schemas.xml |  54 --
 .../main/resources/szr_client/szr_v4.0-wsdl.xml    |  10 -
 .../src/main/resources/szr_client/szr_v4.0.xsd     | 443 ----------
 .../src/main/resources/szr_client/szr_xmldsig.xsd  |  31 -
 .../main/resources/wsdl/szr_client/SZR-1.1.WSDL    | 939 +++++++++++++++++++++
 .../src/main/resources/wsdl/szr_client/SZR-1.WSDL  | 901 ++++++++++++++++++++
 .../main/resources/wsdl/szr_client/SZR_v4.0.wsdl   | 441 ++++++++++
 .../src/main/resources/wsdl/szr_client/pvp1.xsd    | 133 +++
 .../src/main/resources/wsdl/szr_client/pvp19.xsd   | 133 +++
 .../src/main/resources/wsdl/szr_client/szr.xsd     | 388 +++++++++
 .../main/resources/wsdl/szr_client/szr_ecdsa.xsd   |  30 +
 .../resources/wsdl/szr_client/szr_persondata.xsd   |  54 ++
 .../main/resources/wsdl/szr_client/szr_pvp_sec.xsd |  10 +
 .../resources/wsdl/szr_client/szr_v4.0-schemas.xml |  54 ++
 .../resources/wsdl/szr_client/szr_v4.0-wsdl.xml    |  10 +
 .../main/resources/wsdl/szr_client/szr_v4.0.xsd    | 443 ++++++++++
 .../main/resources/wsdl/szr_client/szr_xmldsig.xsd |  31 +
 .../resources/wsdl/zmr_client/testxml/soapenv.xsd  | 125 +++
 .../ablaufendeauskunftssperrenrequest.xml          |  22 +
 .../ablaufendeauskunftssperrenresponse.xml         | 194 +++++
 .../ablaufendeauskunfssperren/blaetternrequest.xml |  27 +
 .../blaetternresponse.xml                          | 195 +++++
 .../testxml/zmr/adoption/adoptionrequest.xml       |  32 +
 .../testxml/zmr/adoption/adoptionresponse.xml      |  82 ++
 .../testxml/zmr/adresssuche/adresssucherequest.xml |  32 +
 .../zmr/adresssuche/adresssucheresponse.xml        |  81 ++
 .../behoerdenabfragerequestStufe1.xml              |  33 +
 .../behoerdenabfragerequestStufe2.xml              |  27 +
 .../behoerdenabfrageresponseStufe1.xml             |  76 ++
 .../behoerdenabfrageresponseStufe2.xml             | 200 +++++
 .../bestandsaenderungenrequest.xml                 |  26 +
 .../bestandsaenderungenresponse.xml                |  83 ++
 .../testxml/zmr/bpabfrage/bpabfragerequest.xml     |  31 +
 .../testxml/zmr/bpabfrage/bpabfrageresponse.xml    |  68 ++
 .../zmr/datenabgleich/datenabgleichrequest.xml     |  26 +
 .../zmr/datenabgleich/datenabgleichresponse.xml    |  91 ++
 .../zmr/fremdenabfrage/fremdenabfragerequest.xml   |  31 +
 .../zmr/fremdenabfrage/fremdenabfrageresponse.xml  |  45 +
 .../gisadressabfrage/gisadressabfragerequest1.xml  |  30 +
 .../gisadressabfrage/gisadressabfragerequest2.xml  |  23 +
 .../gisadressabfrage/gisadressabfrageresponse1.xml |  50 ++
 .../gisadressabfrage/gisadressabfrageresponse2.xml |  91 ++
 .../hauseigentuemerabfragerequest.xml              |  35 +
 .../hauseigentuemerabfrageresponse.xml             | 213 +++++
 .../zmr/meldeauskunft/meldeauskunftrequest.xml     |  44 +
 .../zmr/meldeauskunft/meldeauskunftresponse.xml    |  75 ++
 .../meldebestaetigung/meldebestaetigungrequest.xml |  26 +
 .../meldebestaetigungresponse.xml                  |  72 ++
 .../zmr/militaerbehoerden/blaetternrequest.xml     |  27 +
 .../wehrpflichtigeAbfragenRequst.xml               |  31 +
 .../zmr_client/testxml/zmr/natuerlicheperson.xml   |  30 +
 .../zmr/personaendern/personaendernrequest1.xml    |  40 +
 .../zmr/personaendern/personaendernrequest2.xml    |  42 +
 .../zmr/personaendern/personaendernresponse1.xml   |  85 ++
 .../zmr/personaendern/personaendernresponse2.xml   | 110 +++
 .../zmr/personanlegen/personanlegenrequest.xml     |  56 ++
 .../zmr/personanlegen/personanlegenresponse.xml    | 118 +++
 .../zmr/personenabfrage/blaetternrequest.xml       |  27 +
 .../zmr/personenabfrage/blaetternresponse.xml      | 210 +++++
 .../personenabfragedruckrequest.xml                |  23 +
 .../personenabfragedruckresponse.xml               |  51 ++
 .../zmr/personenabfrage/personenabfragerequest.xml |  37 +
 .../personenabfrage/personenabfrageresponse.xml    | 209 +++++
 .../testxml/zmr/personensuche/blaetternrequest.xml |  27 +
 .../zmr/personensuche/blaetternresponse.xml        | 210 +++++
 .../zmr/personensuche/personensucherequest.xml     |  37 +
 .../zmr/personensuche/personensucheresponse.xml    | 209 +++++
 .../zmr/persontrennen/persontrennenrequest.xml     |  37 +
 .../persontrennen/persontrennensucherequest.xml    |  21 +
 .../personzusammenfuehrenrequest.xml               |  37 +
 .../personzusammenfuehrensucherequest.xml          |  22 +
 .../wohnsitzabmelden/wohnsitzabmeldenrequest.xml   |  40 +
 .../wohnsitzabmelden/wohnsitzabmeldenresponse.xml  |  77 ++
 .../wohnsitzanmelden/wohnsitzanmeldenrequest.xml   |  48 ++
 .../wohnsitzanmelden/wohnsitzanmeldenresponse.xml  |  79 ++
 .../wohnsitzummelden/wohnsitzummeldenrequest.xml   |  60 ++
 .../wohnsitzummelden/wohnsitzummeldenresponse.xml  | 124 +++
 .../zuzugsbestaetigungrequest.xml                  |  25 +
 .../zuzugsbestaetigungresponse.xml                 |  64 ++
 .../resources/wsdl/zmr_client/wsdl/Messages.xsd    | 215 +++++
 .../resources/wsdl/zmr_client/wsdl/Service.wsdl    |  62 ++
 .../main/resources/wsdl/zmr_client/wsdl/secext.xsd | 150 ++++
 .../resources/wsdl/zmr_client/wsdl/secext_pvp.xsd  | 152 ++++
 .../wsdl/zmr_client/xsd/allgemein/Auswertungen.xsd | 200 +++++
 .../zmr_client/xsd/allgemein/BasTabelleAbfrage.xsd | 176 ++++
 .../xsd/allgemein/Benutzereinstellungen.xsd        | 102 +++
 .../xsd/allgemein/GeschaeftsprozesseAuflisten.xsd  |  64 ++
 .../wsdl/zmr_client/xsd/allgemein/Messages.xsd     |  27 +
 .../xsd/allgemein/Organisationseinstellungen.xsd   | 151 ++++
 .../wsdl/zmr_client/xsd/allgemein/Service.xsd      |  40 +
 .../zmr_client/xsd/eingebunden/AbfrageMuster.xsd   | 140 +++
 .../xsd/eingebunden/AkademischerGradFelder.xsd     |  61 ++
 .../wsdl/zmr_client/xsd/eingebunden/Blaettern.xsd  |  56 ++
 .../zmr_client/xsd/eingebunden/DokumentFelder.xsd  |  74 ++
 .../xsd/eingebunden/EingebundenProxy.xsd           |  28 +
 .../wsdl/zmr_client/xsd/eingebunden/Entity.xsd     | 135 +++
 .../zmr_client/xsd/eingebunden/InfoFachlich.xsd    | 103 +++
 .../zmr_client/xsd/eingebunden/InfoTechnisch.xsd   | 103 +++
 .../zmr_client/xsd/eingebunden/MeldungFelder.xsd   | 283 +++++++
 .../zmr_client/xsd/eingebunden/PersonDataZMR.xsd   | 741 ++++++++++++++++
 .../zmr_client/xsd/eingebunden/PersonExport.xsd    | 107 +++
 .../zmr_client/xsd/eingebunden/PersonFelder.xsd    |  70 ++
 .../zmr_client/xsd/eingebunden/Protokollierung.xsd | 496 +++++++++++
 .../zmr_client/xsd/eingebunden/SimpleTypes.xsd     | 173 ++++
 .../zmr_client/xsd/eingebunden/W3C-XMLDSig.xsd     | 274 ++++++
 .../wsdl/zmr_client/xsd/eingebunden/Workflow.xsd   | 200 +++++
 .../xsd/eingebunden/gis-schnittstelle.xsd          | 171 ++++
 .../wsdl/zmr_client/xsd/eingebunden/pvp1.xsd       | 174 ++++
 .../wsdl/zmr_client/xsd/eingebunden/secext.xsd     | 150 ++++
 .../wsdl/zmr_client/xsd/eingebunden/soapenv.xsd    | 129 +++
 .../xsd/zmr/AblaufendeAuskunftssperrenSuche.xsd    |  76 ++
 .../resources/wsdl/zmr_client/xsd/zmr/Adoption.xsd |  63 ++
 .../wsdl/zmr_client/xsd/zmr/Adresssuche.xsd        | 128 +++
 .../zmr_client/xsd/zmr/Anwendungsintegration.xsd   |  97 +++
 .../xsd/zmr/AnwendungsintegrationWiederholung.xsd  | 117 +++
 .../zmr_client/xsd/zmr/AuskunftssperreAendern.xsd  |  55 ++
 .../wsdl/zmr_client/xsd/zmr/AvisoAendern.xsd       |  93 ++
 .../wsdl/zmr_client/xsd/zmr/AvisoAnlegen.xsd       |  60 ++
 .../wsdl/zmr_client/xsd/zmr/AvisoFreigeben.xsd     |  69 ++
 .../wsdl/zmr_client/xsd/zmr/Avisosuche.xsd         | 124 +++
 .../wsdl/zmr_client/xsd/zmr/BKMeldeauskunft.xsd    |  69 ++
 .../wsdl/zmr_client/xsd/zmr/BPKPruefung.xsd        |  76 ++
 .../wsdl/zmr_client/xsd/zmr/Behoerdenabfrage.xsd   | 126 +++
 .../xsd/zmr/BehoerdenattributeAendern.xsd          |  68 ++
 .../zmr_client/xsd/zmr/Bestandsaenderungen.xsd     | 140 +++
 .../zmr_client/xsd/zmr/BusinesspartnerAnfrage.xsd  | 131 +++
 .../zmr_client/xsd/zmr/Businesspartnerabfrage.xsd  |  94 +++
 .../xsd/zmr/BusinesspartnerabfrageErweitert.xsd    |  67 ++
 .../wsdl/zmr_client/xsd/zmr/Datenabgleich.xsd      | 280 ++++++
 .../wsdl/zmr_client/xsd/zmr/ErnpAbfrage.xsd        | 161 ++++
 .../wsdl/zmr_client/xsd/zmr/Fremdenabfrage.xsd     | 108 +++
 .../wsdl/zmr_client/xsd/zmr/GISAdressabfrage.xsd   |  79 ++
 .../resources/wsdl/zmr_client/xsd/zmr/GISSuche.xsd |  74 ++
 .../zmr_client/xsd/zmr/Gemeindeeinstellungen.xsd   |  71 ++
 .../xsd/zmr/Gerichtskommissaerabfrage.xsd          |  93 ++
 .../xsd/zmr/GleichsetzungstabelleWarten.xsd        | 185 ++++
 .../zmr_client/xsd/zmr/Hauseigentuemerabfrage.xsd  | 117 +++
 .../wsdl/zmr_client/xsd/zmr/IAPPersonenabfrage.xsd | 120 +++
 .../wsdl/zmr_client/xsd/zmr/Meldeauskunft.xsd      | 102 +++
 .../wsdl/zmr_client/xsd/zmr/Meldebestaetigung.xsd  | 127 +++
 .../xsd/zmr/MeldebestaetigungenAnfordern.xsd       |  55 ++
 .../zmr_client/xsd/zmr/MeldungHistKorrigieren.xsd  | 112 +++
 .../wsdl/zmr_client/xsd/zmr/ORFGISAnforderung.xsd  |  65 ++
 .../xsd/zmr/ObjektsucheMindestsicherung.xsd        |  88 ++
 .../xsd/zmr/ObjektsucheSteuerfahndung.xsd          |  91 ++
 .../wsdl/zmr_client/xsd/zmr/PersonAendern.xsd      |  78 ++
 .../wsdl/zmr_client/xsd/zmr/PersonAnlegen.xsd      |  67 ++
 .../wsdl/zmr_client/xsd/zmr/PersonExport.xsd       |  74 ++
 .../wsdl/zmr_client/xsd/zmr/PersonKorrigieren.xsd  |  74 ++
 .../wsdl/zmr_client/xsd/zmr/PersonTrennen.xsd      |  75 ++
 .../zmr_client/xsd/zmr/PersonZusammenfuehren.xsd   |  75 ++
 .../wsdl/zmr_client/xsd/zmr/PersonenIndex.xsd      |  73 ++
 .../wsdl/zmr_client/xsd/zmr/Personenabfrage.xsd    | 139 +++
 .../wsdl/zmr_client/xsd/zmr/Personenlisten.xsd     | 131 +++
 .../wsdl/zmr_client/xsd/zmr/Personensuche.xsd      | 255 ++++++
 .../wsdl/zmr_client/xsd/zmr/QKZAuswertung.xsd      |  82 ++
 .../wsdl/zmr_client/xsd/zmr/QKZBearbeiten.xsd      |  71 ++
 .../wsdl/zmr_client/xsd/zmr/SZREinzelabfrage.xsd   |  85 ++
 .../wsdl/zmr_client/xsd/zmr/SZRPersonenbindung.xsd |  84 ++
 .../wsdl/zmr_client/xsd/zmr/SZRPersonensuche.xsd   |  75 ++
 .../wsdl/zmr_client/xsd/zmr/SZRSammelabfrage.xsd   |  54 ++
 .../wsdl/zmr_client/xsd/zmr/Sperrliste.xsd         | 129 +++
 .../resources/wsdl/zmr_client/xsd/zmr/Storno.xsd   | 146 ++++
 .../wsdl/zmr_client/xsd/zmr/SzrAbfrage.xsd         |  59 ++
 .../wsdl/zmr_client/xsd/zmr/TechnischeAnsicht.xsd  | 132 +++
 .../zmr_client/xsd/zmr/Ummeldeserviceabfrage.xsd   |  79 ++
 .../zmr_client/xsd/zmr/WehrpflichtigeAbfragen.xsd  |  99 +++
 .../wsdl/zmr_client/xsd/zmr/WohnsitzAbmelden.xsd   |  68 ++
 .../wsdl/zmr_client/xsd/zmr/WohnsitzAnmelden.xsd   |  68 ++
 .../zmr_client/xsd/zmr/WohnsitzKorrigieren.xsd     |  73 ++
 .../wsdl/zmr_client/xsd/zmr/WohnsitzUmmelden.xsd   | 126 +++
 .../wsdl/zmr_client/xsd/zmr/ZMRDatenauszug.xsd     |  32 +
 .../resources/wsdl/zmr_client/xsd/zmr/ZMRProxy.xsd |  96 +++
 .../wsdl/zmr_client/xsd/zmr/ZmrBuergerService.xsd  | 373 ++++++++
 .../wsdl/zmr_client/xsd/zmr/Zuzugsbestaetigung.xsd | 105 +++
 .../xsd/zmr/entities/AkademischerGrad.xsd          |  84 ++
 .../xsd/zmr/entities/Auskunftssperre.xsd           |  95 +++
 .../wsdl/zmr_client/xsd/zmr/entities/Aviso.xsd     | 176 ++++
 .../xsd/zmr/entities/Behoerdenattribute.xsd        |  67 ++
 .../zmr_client/xsd/zmr/entities/ERnPAnschrift.xsd  |  73 ++
 .../zmr_client/xsd/zmr/entities/ERnPPerson.xsd     | 114 +++
 .../xsd/zmr/entities/EidasIdentitaet.xsd           | 106 +++
 .../xsd/zmr/entities/EidasIdentitaet.xsd.svntmp    | 106 +++
 .../wsdl/zmr_client/xsd/zmr/entities/Meldung.xsd   | 189 +++++
 .../wsdl/zmr_client/xsd/zmr/entities/Person.xsd    | 233 +++++
 .../xsd/zmr/entities/Qualifikationskennzeichen.xsd |  75 ++
 .../zmr_client/xsd/zmr/entities/Reisedokument.xsd  |  82 ++
 .../xsd/zmr/entities/Staatsangehoerigkeit.xsd      |  73 ++
 .../xsd/zmr/entities/Standarddokument.xsd          |  74 ++
 .../modules/auth/eidas/v2/test/SzrClientTest.java  |   2 +-
 .../eidas/v2/test/SzrClientTestProduction.java     |   2 +-
 .../eidas/v2/test/tasks/InitialSearchTaskTest.java | 505 ++++++-----
 ...eceiveAustrianResidenceGuiResponseTaskTest.java | 142 +++-
 ...eceiveMobilePhoneSignatureResponseTaskTest.java | 158 ++--
 .../resources/config/junit_config_1.properties     |   7 +
 .../config/junit_config_1_springboot.properties    |  13 +
 .../resources/config/junit_config_2.properties     |   6 +
 .../resources/config/junit_config_3.properties     |   6 +
 .../resources/config/junit_config_4.properties     |   6 +
 .../config/junit_config_de_attributes.properties   |   6 +
 246 files changed, 24296 insertions(+), 5348 deletions(-)
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/clients/AbstractSoapClient.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/clients/szr/SzrClient.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/clients/szr/SzrService.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/clients/zmr/IZmrClient.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/clients/zmr/ZmrSoapClient.java
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/MergedRegisterSearchResult.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/exception/ZmrCommunicationException.java
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/szr/SzrClient.java
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/szr/SzrService.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/MatchingTaskUtils.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/VersionHolder.java
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/IZmrClient.java
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/szr_client/SZR-1.1.WSDL
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/szr_client/SZR-1.WSDL
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/szr_client/SZR_v4.0.wsdl
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/szr_client/pvp1.xsd
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/szr_client/pvp19.xsd
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/szr_client/szr.xsd
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/szr_client/szr_ecdsa.xsd
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/szr_client/szr_persondata.xsd
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/szr_client/szr_pvp_sec.xsd
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/szr_client/szr_v4.0-schemas.xml
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/szr_client/szr_v4.0-wsdl.xml
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/szr_client/szr_v4.0.xsd
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/szr_client/szr_xmldsig.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/szr_client/SZR-1.1.WSDL
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/szr_client/SZR-1.WSDL
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/szr_client/SZR_v4.0.wsdl
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/szr_client/pvp1.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/szr_client/pvp19.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/szr_client/szr.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/szr_client/szr_ecdsa.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/szr_client/szr_persondata.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/szr_client/szr_pvp_sec.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/szr_client/szr_v4.0-schemas.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/szr_client/szr_v4.0-wsdl.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/szr_client/szr_v4.0.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/szr_client/szr_xmldsig.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/soapenv.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/ablaufendeauskunfssperren/ablaufendeauskunftssperrenrequest.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/ablaufendeauskunfssperren/ablaufendeauskunftssperrenresponse.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/ablaufendeauskunfssperren/blaetternrequest.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/ablaufendeauskunfssperren/blaetternresponse.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/adoption/adoptionrequest.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/adoption/adoptionresponse.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/adresssuche/adresssucherequest.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/adresssuche/adresssucheresponse.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/behoerdenabfrage/behoerdenabfragerequestStufe1.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/behoerdenabfrage/behoerdenabfragerequestStufe2.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/behoerdenabfrage/behoerdenabfrageresponseStufe1.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/behoerdenabfrage/behoerdenabfrageresponseStufe2.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/bestandsaenderungen/bestandsaenderungenrequest.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/bestandsaenderungen/bestandsaenderungenresponse.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/bpabfrage/bpabfragerequest.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/bpabfrage/bpabfrageresponse.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/datenabgleich/datenabgleichrequest.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/datenabgleich/datenabgleichresponse.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/fremdenabfrage/fremdenabfragerequest.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/fremdenabfrage/fremdenabfrageresponse.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/gisadressabfrage/gisadressabfragerequest1.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/gisadressabfrage/gisadressabfragerequest2.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/gisadressabfrage/gisadressabfrageresponse1.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/gisadressabfrage/gisadressabfrageresponse2.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/hauseigentuemerabfrage/hauseigentuemerabfragerequest.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/hauseigentuemerabfrage/hauseigentuemerabfrageresponse.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/meldeauskunft/meldeauskunftrequest.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/meldeauskunft/meldeauskunftresponse.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/meldebestaetigung/meldebestaetigungrequest.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/meldebestaetigung/meldebestaetigungresponse.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/militaerbehoerden/blaetternrequest.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/militaerbehoerden/wehrpflichtigeAbfragenRequst.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/natuerlicheperson.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/personaendern/personaendernrequest1.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/personaendern/personaendernrequest2.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/personaendern/personaendernresponse1.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/personaendern/personaendernresponse2.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/personanlegen/personanlegenrequest.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/personanlegen/personanlegenresponse.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/personenabfrage/blaetternrequest.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/personenabfrage/blaetternresponse.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/personenabfrage/personenabfragedruckrequest.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/personenabfrage/personenabfragedruckresponse.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/personenabfrage/personenabfragerequest.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/personenabfrage/personenabfrageresponse.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/personensuche/blaetternrequest.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/personensuche/blaetternresponse.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/personensuche/personensucherequest.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/personensuche/personensucheresponse.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/persontrennen/persontrennenrequest.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/persontrennen/persontrennensucherequest.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/personzusammenfuehren/personzusammenfuehrenrequest.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/personzusammenfuehren/personzusammenfuehrensucherequest.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/wohnsitzabmelden/wohnsitzabmeldenrequest.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/wohnsitzabmelden/wohnsitzabmeldenresponse.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/wohnsitzanmelden/wohnsitzanmeldenrequest.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/wohnsitzanmelden/wohnsitzanmeldenresponse.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/wohnsitzummelden/wohnsitzummeldenrequest.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/wohnsitzummelden/wohnsitzummeldenresponse.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/zuzugsbestaetigung/zuzugsbestaetigungrequest.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/zuzugsbestaetigung/zuzugsbestaetigungresponse.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/wsdl/Messages.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/wsdl/Service.wsdl
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/wsdl/secext.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/wsdl/secext_pvp.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/allgemein/Auswertungen.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/allgemein/BasTabelleAbfrage.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/allgemein/Benutzereinstellungen.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/allgemein/GeschaeftsprozesseAuflisten.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/allgemein/Messages.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/allgemein/Organisationseinstellungen.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/allgemein/Service.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/eingebunden/AbfrageMuster.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/eingebunden/AkademischerGradFelder.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/eingebunden/Blaettern.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/eingebunden/DokumentFelder.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/eingebunden/EingebundenProxy.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/eingebunden/Entity.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/eingebunden/InfoFachlich.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/eingebunden/InfoTechnisch.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/eingebunden/MeldungFelder.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/eingebunden/PersonDataZMR.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/eingebunden/PersonExport.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/eingebunden/PersonFelder.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/eingebunden/Protokollierung.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/eingebunden/SimpleTypes.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/eingebunden/W3C-XMLDSig.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/eingebunden/Workflow.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/eingebunden/gis-schnittstelle.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/eingebunden/pvp1.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/eingebunden/secext.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/eingebunden/soapenv.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/AblaufendeAuskunftssperrenSuche.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Adoption.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Adresssuche.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Anwendungsintegration.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/AnwendungsintegrationWiederholung.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/AuskunftssperreAendern.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/AvisoAendern.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/AvisoAnlegen.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/AvisoFreigeben.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Avisosuche.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/BKMeldeauskunft.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/BPKPruefung.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Behoerdenabfrage.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/BehoerdenattributeAendern.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Bestandsaenderungen.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/BusinesspartnerAnfrage.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Businesspartnerabfrage.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/BusinesspartnerabfrageErweitert.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Datenabgleich.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/ErnpAbfrage.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Fremdenabfrage.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/GISAdressabfrage.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/GISSuche.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Gemeindeeinstellungen.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Gerichtskommissaerabfrage.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/GleichsetzungstabelleWarten.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Hauseigentuemerabfrage.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/IAPPersonenabfrage.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Meldeauskunft.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Meldebestaetigung.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/MeldebestaetigungenAnfordern.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/MeldungHistKorrigieren.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/ORFGISAnforderung.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/ObjektsucheMindestsicherung.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/ObjektsucheSteuerfahndung.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/PersonAendern.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/PersonAnlegen.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/PersonExport.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/PersonKorrigieren.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/PersonTrennen.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/PersonZusammenfuehren.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/PersonenIndex.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Personenabfrage.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Personenlisten.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Personensuche.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/QKZAuswertung.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/QKZBearbeiten.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/SZREinzelabfrage.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/SZRPersonenbindung.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/SZRPersonensuche.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/SZRSammelabfrage.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Sperrliste.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Storno.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/SzrAbfrage.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/TechnischeAnsicht.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Ummeldeserviceabfrage.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/WehrpflichtigeAbfragen.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/WohnsitzAbmelden.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/WohnsitzAnmelden.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/WohnsitzKorrigieren.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/WohnsitzUmmelden.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/ZMRDatenauszug.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/ZMRProxy.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/ZmrBuergerService.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Zuzugsbestaetigung.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/entities/AkademischerGrad.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/entities/Auskunftssperre.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/entities/Aviso.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/entities/Behoerdenattribute.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/entities/ERnPAnschrift.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/entities/ERnPPerson.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/entities/EidasIdentitaet.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/entities/EidasIdentitaet.xsd.svntmp
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/entities/Meldung.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/entities/Person.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/entities/Qualifikationskennzeichen.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/entities/Reisedokument.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/entities/Staatsangehoerigkeit.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/entities/Standarddokument.xsd

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java
index 3a267d29..3e20a132 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java
@@ -27,6 +27,9 @@ import at.gv.egiz.eaaf.core.api.data.EaafConstants;
 
 public class Constants {
 
+  //TODO: should we make it configurable?
+  public static final String MATCHING_INTERNAL_BPK_TARGET = EaafConstants.URN_PREFIX_CDID + "ZP";
+  
   public static final String ERRORCODE_00 = "module.eidasauth.00";
 
   public static final String DATA_REQUESTERID = "req_requesterId";
@@ -91,6 +94,42 @@ public class Constants {
   public static final String FORWARD_METHOD_POST = "POST";
   public static final String FORWARD_METHOD_GET = "GET";
 
+  // ZMR Client configuration properties
+  public static final String CONIG_PROPS_EIDAS_ZMRCLIENT = CONIG_PROPS_EIDAS_PREFIX + ".zmrclient";
+  public static final String CONIG_PROPS_EIDAS_ZMRCLIENT_ENDPOINT = CONIG_PROPS_EIDAS_ZMRCLIENT
+      + ".endpoint";
+  public static final String CONIG_PROPS_EIDAS_ZMRCLIENT_DEBUG_TRACEMESSAGES = CONIG_PROPS_EIDAS_ZMRCLIENT
+      + ".debug.logfullmessages";
+  public static final String CONIG_PROPS_EIDAS_ZMRCLIENT_TIMEOUT_CONNECTION = CONIG_PROPS_EIDAS_ZMRCLIENT
+      + ".timeout.connection";
+  public static final String CONIG_PROPS_EIDAS_ZMRCLIENT_TIMEOUT_RESPONSE = CONIG_PROPS_EIDAS_ZMRCLIENT
+      + ".timeout.response";
+  public static final String CONIG_PROPS_EIDAS_ZMRCLIENT_SSL_KEYSTORE_PATH = CONIG_PROPS_EIDAS_ZMRCLIENT
+      + ".ssl.keyStore.path";
+  public static final String CONIG_PROPS_EIDAS_ZMRCLIENT_SSL_KEYSTORE_PASSWORD = CONIG_PROPS_EIDAS_ZMRCLIENT
+      + ".ssl.keyStore.password";
+  public static final String CONIG_PROPS_EIDAS_ZMRCLIENT_SSL_KEYSTORE_TYPE = CONIG_PROPS_EIDAS_ZMRCLIENT
+      + ".ssl.keyStore.type";
+  public static final String CONIG_PROPS_EIDAS_ZMRCLIENT_SSL_KEYSTORE_NAME = CONIG_PROPS_EIDAS_ZMRCLIENT
+      + ".ssl.keyStore.name";
+  public static final String CONIG_PROPS_EIDAS_ZMRCLIENT_SSL_KEYS_ALIAS = CONIG_PROPS_EIDAS_ZMRCLIENT
+      + ".ssl.key.alias";
+  public static final String CONIG_PROPS_EIDAS_ZMRCLIENT_SSL_KEY_PASSWORD = CONIG_PROPS_EIDAS_ZMRCLIENT
+      + ".ssl.key.password";      
+  public static final String CONIG_PROPS_EIDAS_ZMRCLIENT_SSL_TRUSTSTORE_PATH = CONIG_PROPS_EIDAS_ZMRCLIENT
+      + ".ssl.trustStore.path";
+  public static final String CONIG_PROPS_EIDAS_ZMRCLIENT_SSL_TRUSTSTORE_PASSWORD = CONIG_PROPS_EIDAS_ZMRCLIENT
+      + ".ssl.trustStore.password";
+  public static final String CONIG_PROPS_EIDAS_ZMRCLIENT_SSL_TRUSTSTORE_TYPE = CONIG_PROPS_EIDAS_ZMRCLIENT
+      + ".ssl.trustStore.type";
+  public static final String CONIG_PROPS_EIDAS_ZMRCLIENT_SSL_TRUSTSTORE_NAME = CONIG_PROPS_EIDAS_ZMRCLIENT
+      + ".ssl.trustStore.name";
+  
+  public static final String CONIG_PROPS_EIDAS_ZMRCLIENT_REQ_ORGANIZATION_NR = CONIG_PROPS_EIDAS_ZMRCLIENT
+      + ".req.organisation.behoerdennr";
+  
+  
+  // SZR Client configuration properties
   public static final String CONIG_PROPS_EIDAS_SZRCLIENT = CONIG_PROPS_EIDAS_PREFIX + ".szrclient";
   public static final String CONIG_PROPS_EIDAS_SZRCLIENT_USETESTSERVICE = CONIG_PROPS_EIDAS_SZRCLIENT
       + ".useTestService";
@@ -112,11 +151,23 @@ public class Constants {
       + ".ssl.keyStore.path";
   public static final String CONIG_PROPS_EIDAS_SZRCLIENT_SSL_KEYSTORE_PASSWORD = CONIG_PROPS_EIDAS_SZRCLIENT
       + ".ssl.keyStore.password";
+  public static final String CONIG_PROPS_EIDAS_SZRCLIENT_SSL_KEYSTORE_TYPE = CONIG_PROPS_EIDAS_SZRCLIENT
+      + ".ssl.keyStore.type";
+  public static final String CONIG_PROPS_EIDAS_SZRCLIENT_SSL_KEYSTORE_NAME = CONIG_PROPS_EIDAS_SZRCLIENT
+      + ".ssl.keyStore.name";
+  public static final String CONIG_PROPS_EIDAS_SZRCLIENT_SSL_KEYS_ALIAS = CONIG_PROPS_EIDAS_SZRCLIENT
+      + ".ssl.key.alias";
+  public static final String CONIG_PROPS_EIDAS_SZRCLIENT_SSL_KEY_PASSWORD = CONIG_PROPS_EIDAS_SZRCLIENT
+      + ".ssl.key.password";    
   public static final String CONIG_PROPS_EIDAS_SZRCLIENT_SSL_TRUSTSTORE_PATH = CONIG_PROPS_EIDAS_SZRCLIENT
       + ".ssl.trustStore.path";
   public static final String CONIG_PROPS_EIDAS_SZRCLIENT_SSL_TRUSTSTORE_PASSWORD = CONIG_PROPS_EIDAS_SZRCLIENT
       + ".ssl.trustStore.password";
-
+  public static final String CONIG_PROPS_EIDAS_SZRCLIENT_SSL_TRUSTSTORE_TYPE = CONIG_PROPS_EIDAS_SZRCLIENT
+      + ".ssl.trustStore.type";
+  public static final String CONIG_PROPS_EIDAS_SZRCLIENT_SSL_TRUSTSTORE_NAME = CONIG_PROPS_EIDAS_SZRCLIENT
+      + ".ssl.trustStore.name";
+  
   public static final String CONIG_PROPS_EIDAS_SZRCLIENT_PARAMS_EDOCUMENTTYPE = CONIG_PROPS_EIDAS_SZRCLIENT
       + ".params.documenttype";
   public static final String CONIG_PROPS_EIDAS_SZRCLIENT_PARAMS_VKZ = CONIG_PROPS_EIDAS_SZRCLIENT
@@ -153,7 +204,7 @@ public class Constants {
   // eIDAS request parameters
   public static final String eIDAS_REQ_NAMEID_FORMAT = "urn:oasis:names:tc:SAML:2.0:nameid-format:persistent";
 
-  // eIDAS attribute names
+  // eIDAS attribute names    
   public static final String eIDAS_ATTR_PERSONALIDENTIFIER = "PersonIdentifier";
   public static final String eIDAS_ATTR_DATEOFBIRTH = "DateOfBirth";
   public static final String eIDAS_ATTR_CURRENTGIVENNAME = "FirstName";
@@ -166,6 +217,15 @@ public class Constants {
   public static final String eIDAS_ATTR_LEGALPERSONIDENTIFIER = "LegalPersonIdentifier";
   public static final String eIDAS_ATTR_LEGALNAME = "LegalName";
 
+  
+  //eIDAS attribute URN
+  public static final String eIDAS_ATTRURN_PREFIX = "http://eidas.europa.eu/attributes/";
+  public static final String eIDAS_ATTRURN_PREFIX_NATURAL = eIDAS_ATTRURN_PREFIX + "naturalperson/";
+  
+  public static final String eIDAS_ATTRURN_PERSONALIDENTIFIER = 
+      eIDAS_ATTRURN_PREFIX_NATURAL + eIDAS_ATTR_PERSONALIDENTIFIER;
+  
+  
   public static final String eIDAS_REQ_PARAM_SECTOR_PUBLIC = "public";
   public static final String eIDAS_REQ_PARAM_SECTOR_PRIVATE = "private";
 
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/clients/AbstractSoapClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/clients/AbstractSoapClient.java
new file mode 100644
index 00000000..bfdf3991
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/clients/AbstractSoapClient.java
@@ -0,0 +1,197 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.clients;
+
+import java.security.KeyManagementException;
+import java.security.KeyStore;
+import java.security.NoSuchAlgorithmException;
+import java.security.Provider;
+import java.util.ArrayList;
+import java.util.List;
+import java.util.Map;
+
+import javax.net.ssl.SSLContext;
+import javax.xml.ws.BindingProvider;
+import javax.xml.ws.handler.Handler;
+
+import org.apache.commons.lang3.StringUtils;
+import org.apache.cxf.configuration.jsse.TLSClientParameters;
+import org.apache.cxf.endpoint.Client;
+import org.apache.cxf.frontend.ClientProxy;
+import org.apache.cxf.jaxws.DispatchImpl;
+import org.apache.cxf.transport.http.HTTPConduit;
+import org.apache.cxf.transports.http.configuration.HTTPClientPolicy;
+import org.apache.http.ssl.SSLContextBuilder;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.lang.Nullable;
+
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.LoggingHandler;
+import at.gv.egiz.eaaf.core.api.idp.IConfiguration;
+import at.gv.egiz.eaaf.core.exceptions.EaafConfigurationException;
+import at.gv.egiz.eaaf.core.exceptions.EaafException;
+import at.gv.egiz.eaaf.core.impl.credential.EaafKeyStoreFactory;
+import at.gv.egiz.eaaf.core.impl.credential.KeyStoreConfiguration;
+import at.gv.egiz.eaaf.core.impl.credential.KeyStoreConfiguration.KeyStoreType;
+import at.gv.egiz.eaaf.core.impl.data.Pair;
+import at.gv.egiz.eaaf.core.impl.http.HttpUtils;
+import lombok.Builder;
+import lombok.Getter;
+import lombok.extern.slf4j.Slf4j;
+
+@Slf4j
+public class AbstractSoapClient {
+
+  @Autowired
+  protected IConfiguration basicConfig;
+  @Autowired
+  EaafKeyStoreFactory keyStoreFactory;
+
+  @Builder
+  @Getter
+  public static class HttpClientConfig {
+
+    private final String clientName;
+
+    private final String clientUrl;
+    private final String clientType;
+
+    private final String connectionTimeout;
+    private final String responseTimeout;
+
+    private final KeyStoreConfiguration keyStoreConfig;
+    private final String keyAlias;
+    private final String keyPassword;
+
+    private final KeyStoreConfiguration trustStoreConfig;
+
+    @Builder.Default
+    private final boolean trustAll = false;
+
+  }
+
+  /**
+   * Build a validated KeyStore Configuration-Object from configuration keys.
+   *
+   * @param keyStoreTypeKey     Configuration key for type
+   * @param keyStorePathKey     Configuration key for path
+   * @param keyStorePasswordKey Configuration key for password
+   * @param keyStoreNameKey     Configuration key for name
+   * @param friendlyName        Friendlyname for logging and errorhandling
+   * @return Valid KeyStore configuration or <code>null</code> if no type was
+   *         defined
+   * @throws EaafConfigurationException In case of validation error
+   */
+  @Nullable
+  protected KeyStoreConfiguration buildKeyStoreConfiguration(String keyStoreTypeKey, String keyStorePathKey,
+      String keyStorePasswordKey, String keyStoreNameKey, String friendlyName)
+      throws EaafConfigurationException {
+    if (StringUtils.isNotEmpty(basicConfig.getBasicConfiguration(keyStoreTypeKey))) {
+      final KeyStoreConfiguration config = new KeyStoreConfiguration();
+      config.setFriendlyName(friendlyName);
+      config.setKeyStoreType(basicConfig.getBasicConfiguration(keyStoreTypeKey, KeyStoreType.PKCS12.name()));
+      config.setKeyStoreName(basicConfig.getBasicConfiguration(keyStoreNameKey));
+      config.setSoftKeyStoreFilePath(basicConfig.getBasicConfiguration(keyStorePathKey));
+      config.setSoftKeyStorePassword(basicConfig.getBasicConfiguration(keyStorePasswordKey));
+
+      // validate keystore configuration
+      config.validate();
+
+      return config;
+
+    } else {
+      return null;
+
+    }
+
+  }
+
+  protected void injectHttpClient(Object raw, HttpClientConfig config) {
+    // extract client from implementation
+    Client client;
+    if (raw instanceof DispatchImpl<?>) {
+      client = ((DispatchImpl<?>) raw).getClient();
+    } else if (raw instanceof Client) {
+      client = ClientProxy.getClient(raw);
+    } else {
+      throw new RuntimeException("SOAP Client for SZR connection is of UNSUPPORTED type: " + raw.getClass()
+          .getName());
+    }
+
+    // set basic connection policies
+    final HTTPConduit http = (HTTPConduit) client.getConduit();
+
+    // set timeout policy
+    final HTTPClientPolicy httpClientPolicy = new HTTPClientPolicy();
+    httpClientPolicy.setConnectionTimeout(Integer.parseInt(config.getConnectionTimeout()) * 1000L);
+    httpClientPolicy.setReceiveTimeout(Integer.parseInt(config.getResponseTimeout()) * 1000L);
+    http.setClient(httpClientPolicy);
+
+    // inject SSL context in case of https
+    if (config.getClientUrl().toLowerCase().startsWith("https")) {
+      try {
+        log.debug("Adding SSLContext to client: " + config.getClientType() + " ... ");
+
+        final TLSClientParameters tlsParams = new TLSClientParameters();
+        if (config.getKeyStoreConfig() != null) {
+          final SSLContext sslContext = HttpUtils.buildSslContextWithSslClientAuthentication(
+              keyStoreFactory.buildNewKeyStore(config.getKeyStoreConfig()),
+              config.getKeyAlias(),
+              config.getKeyPassword(),
+              loadTrustStore(config.getTrustStoreConfig(), config.getClientName()),
+              config.isTrustAll(),
+              config.getClientName());
+          tlsParams.setSSLSocketFactory(sslContext.getSocketFactory());
+
+        } else {
+          log.debug(
+              "No KeyStore for SSL Client Auth. found. Initializing SSLContext for: {} without authentication ... ",
+              config.getClientName());
+          tlsParams.setSSLSocketFactory(SSLContextBuilder.create().build().getSocketFactory());
+
+        }
+
+        http.setTlsClientParameters(tlsParams);
+        log.info("SSLContext initialized for client: " + config.getClientType());
+
+      } catch (EaafException | KeyManagementException | NoSuchAlgorithmException e) {
+        log.error("SSLContext initialization FAILED.", e);
+        throw new RuntimeException("SSLContext initialization FAILED.", e);
+
+      }
+    }
+  }
+
+  private Pair<KeyStore, Provider> loadTrustStore(KeyStoreConfiguration trustStoreConfig, String friendlyName)
+      throws EaafException {
+    if (trustStoreConfig != null) {
+      log.info("Build custom SSL truststore for: {}", friendlyName);
+      return keyStoreFactory.buildNewKeyStore(trustStoreConfig);
+
+    } else {
+      log.info("Use default SSL truststore for: {}", friendlyName);
+      return null;
+
+    }
+
+  }
+
+  protected void injectBindingProvider(BindingProvider bindingProvider, String clientType, String szrUrl,
+      boolean enableTraceLogging) {
+    final Map<String, Object> requestContext = bindingProvider.getRequestContext();
+    requestContext.put(BindingProvider.ENDPOINT_ADDRESS_PROPERTY, szrUrl);
+
+    log.trace("Adding JAX-WS request/response trace handler to client: " + clientType);
+    List<Handler> handlerList = bindingProvider.getBinding().getHandlerChain();
+    if (handlerList == null) {
+      handlerList = new ArrayList<>();
+      bindingProvider.getBinding().setHandlerChain(handlerList);
+
+    }
+
+    // add logging handler to trace messages if required
+    if (enableTraceLogging) {
+      final LoggingHandler loggingHandler = new LoggingHandler();
+      handlerList.add(loggingHandler);
+
+    }
+    bindingProvider.getBinding().setHandlerChain(handlerList);
+  }
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/clients/szr/SzrClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/clients/szr/SzrClient.java
new file mode 100644
index 00000000..2230f30a
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/clients/szr/SzrClient.java
@@ -0,0 +1,469 @@
+/*
+ * Copyright 2018 A-SIT Plus GmbH
+ * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
+ * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
+ *
+ * Licensed under the EUPL, Version 1.2 or - as soon they will be approved by
+ * the European Commission - subsequent versions of the EUPL (the "License");
+ * You may not use this work except in compliance with the License.
+ * You may obtain a copy of the License at:
+ * https://joinup.ec.europa.eu/news/understanding-eupl-v12
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" basis,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ *
+ * This product combines work with different licenses. See the "NOTICE" text
+ * file for details on the various modules and licenses.
+ * The "NOTICE" text file is part of the distribution. Any derivative works
+ * that you distribute must include a readable copy of the "NOTICE" text file.
+ */
+
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.clients.szr;
+
+import java.io.ByteArrayInputStream;
+import java.io.ByteArrayOutputStream;
+import java.net.URL;
+import java.nio.charset.StandardCharsets;
+import java.util.Collections;
+import java.util.HashMap;
+import java.util.List;
+import java.util.Map;
+
+import javax.annotation.PostConstruct;
+import javax.xml.XMLConstants;
+import javax.xml.bind.JAXBContext;
+import javax.xml.bind.Marshaller;
+import javax.xml.namespace.QName;
+import javax.xml.transform.Source;
+import javax.xml.transform.Transformer;
+import javax.xml.transform.TransformerException;
+import javax.xml.transform.TransformerFactory;
+import javax.xml.transform.stream.StreamResult;
+import javax.xml.transform.stream.StreamSource;
+import javax.xml.ws.BindingProvider;
+import javax.xml.ws.Dispatch;
+
+import org.apache.commons.lang3.StringUtils;
+import org.apache.xpath.XPathAPI;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+import org.springframework.stereotype.Service;
+import org.w3c.dom.Document;
+import org.w3c.dom.Element;
+
+import com.fasterxml.jackson.core.JsonProcessingException;
+import com.fasterxml.jackson.databind.ObjectMapper;
+
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.clients.AbstractSoapClient;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.clients.AbstractSoapClient.HttpClientConfig.HttpClientConfigBuilder;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.SzrCommunicationException;
+import at.gv.e_government.reference.namespace.persondata._20020228.AlternativeNameType;
+import at.gv.e_government.reference.namespace.persondata._20020228.PersonNameType;
+import at.gv.e_government.reference.namespace.persondata._20020228.PhysicalPersonType;
+import at.gv.egiz.eaaf.core.api.data.PvpAttributeDefinitions;
+import at.gv.egiz.eaaf.core.api.data.XmlNamespaceConstants;
+import at.gv.egiz.eaaf.core.exceptions.EaafConfigurationException;
+import at.gv.egiz.eaaf.core.impl.utils.DomUtils;
+import szrservices.GetBPK;
+import szrservices.GetBPKResponse;
+import szrservices.GetIdentityLinkEidas;
+import szrservices.GetIdentityLinkEidasResponse;
+import szrservices.IdentityLinkType;
+import szrservices.JwsHeaderParam;
+import szrservices.ObjectFactory;
+import szrservices.PersonInfoType;
+import szrservices.SZR;
+import szrservices.SZRException_Exception;
+import szrservices.SignContent;
+import szrservices.SignContentEntry;
+import szrservices.SignContentResponseType;
+import szrservices.TravelDocumentType;
+
+
+@Service("SZRClientForeIDAS")
+public class SzrClient extends AbstractSoapClient {
+  private static final Logger log = LoggerFactory.getLogger(SzrClient.class);
+
+  private static final String CLIENT_DEFAULT = "DefaultClient";
+  private static final String CLIENT_RAW = "RawClient";
+
+  private static final String ATTR_NAME_VSZ = "urn:eidgvat:attributes.vsz.value";
+  private static final String ATTR_NAME_PUBKEYS = "urn:eidgvat:attributes.user.pubkeys";
+  private static final String ATTR_NAME_STATUS = "urn:eidgvat:attributes.eid.status";
+  private static final String KEY_BC_BIND = "bcBindReq";
+  private static final String JOSE_HEADER_USERCERTPINNING_TYPE = "urn:at.gv.eid:bindtype";
+  private static final String JOSE_HEADER_USERCERTPINNING_EIDASBIND = "urn:at.gv.eid:eidasBind";
+  public static final String ATTR_NAME_MDS = "urn:eidgvat:mds";
+  
+  // client for anything, without identitylink
+  private SZR szr = null;
+
+  // RAW client is needed for identitylink
+  private Dispatch<Source> dispatch = null;
+
+  final ObjectMapper mapper = new ObjectMapper();
+
+  /**
+   * Get IdentityLink of a person.
+   *
+   *
+   * @param eidData minimum dataset of person
+   * @return IdentityLink
+   * @throws SzrCommunicationException In case of a SZR error
+   */
+  public IdentityLinkType getIdentityLinkInRawMode(SimpleEidasData eidData)
+      throws SzrCommunicationException {
+    try {
+      final GetIdentityLinkEidas getIdl = new GetIdentityLinkEidas();
+      getIdl.setPersonInfo(generateSzrRequest(eidData));
+
+      final JAXBContext jaxbContext = JAXBContext.newInstance(ObjectFactory.class);
+      final Marshaller jaxbMarshaller = jaxbContext.createMarshaller();
+
+      final ByteArrayOutputStream outputStream = new ByteArrayOutputStream();
+      jaxbMarshaller.marshal(getIdl, outputStream);
+      outputStream.flush();
+
+      final Source source = new StreamSource(new ByteArrayInputStream(outputStream.toByteArray()));
+      outputStream.close();
+
+      log.trace("Requesting SZR ... ");
+      final Source response = dispatch.invoke(source);
+      log.trace("Receive RAW response from SZR");
+
+      final byte[] szrResponse = sourceToByteArray(response);
+      final GetIdentityLinkEidasResponse jaxbElement = (GetIdentityLinkEidasResponse) jaxbContext
+          .createUnmarshaller().unmarshal(new ByteArrayInputStream(szrResponse));
+
+      // build response
+      log.trace(new String(szrResponse, StandardCharsets.UTF_8));
+
+      // ok, we have success
+      final Document doc = DomUtils.parseDocument(
+          new ByteArrayInputStream(szrResponse),
+          true,
+          XmlNamespaceConstants.ALL_SCHEMA_LOCATIONS + " " + Constants.SZR_SCHEMA_LOCATIONS,
+          null, null);
+      final String xpathExpression = "//saml:Assertion";
+      final Element nsNode = doc.createElementNS("urn:oasis:names:tc:SAML:1.0:assertion", "saml:NSNode");
+
+      log.trace("Selecting signed doc " + xpathExpression);
+      final Element documentNode = (Element) XPathAPI.selectSingleNode(doc,
+          xpathExpression, nsNode);
+      log.trace("Signed document: " + DomUtils.serializeNode(documentNode));
+
+      final IdentityLinkType idl = new IdentityLinkType();
+      idl.setAssertion(documentNode);
+      idl.setPersonInfo(jaxbElement.getGetIdentityLinkReturn().getPersonInfo());
+
+      return idl;
+
+    } catch (final Exception e) {
+      log.warn("SZR communication FAILED. Reason: " + e.getMessage(), e);
+      throw new SzrCommunicationException("ernb.02", new Object[]{e.getMessage()}, e);
+
+    }
+
+  }
+
+  /**
+   * Get bPK of person.
+   *
+   *
+   * @param eidData    Minimum dataset of person
+   * @param target     requested bPK target
+   * @param vkz        Verfahrenskennzeichen
+   * @return bPK for this person
+   * @throws SzrCommunicationException In case of a SZR error
+   */
+  public List<String> getBpk(SimpleEidasData eidData, String target, String vkz)
+      throws SzrCommunicationException {
+    try {
+      final GetBPK parameters = new GetBPK();
+      parameters.setPersonInfo(generateSzrRequest(eidData));
+      parameters.getBereichsKennung().add(target);
+      parameters.setVKZ(vkz);
+      final GetBPKResponse result = this.szr.getBPK(parameters);
+
+      return result.getGetBPKReturn();
+
+    } catch (final SZRException_Exception e) {
+      log.warn("SZR communication FAILED. Reason: " + e.getMessage(), e);
+      throw new SzrCommunicationException("ernb.02", new Object[]{e.getMessage()}, e);
+
+    }
+
+  }
+
+  /**
+   * Creates a new ERnP entry.
+   * TODO Is this correct? Ask BMI.
+   *
+   * @param eidasData Minimum dataset of person
+   * @return encrypted baseId
+   * @throws SzrCommunicationException    In case of a SZR error
+   */
+  public String createNewErnpEntry(final SimpleEidasData eidasData) throws SzrCommunicationException {
+    final String resp;
+    try {
+      resp = this.szr.getStammzahlEncrypted(generateSzrRequest(eidasData), true);
+    } catch (SZRException_Exception e) {
+      throw new SzrCommunicationException("ernb.02", new Object[]{e.getMessage()}, e);
+    }
+    if (StringUtils.isEmpty(resp)) {
+      throw new SzrCommunicationException("ernb.01", new Object[]{"Stammzahl response empty"}); // TODO error handling
+    }
+    return resp;
+  }
+
+  /**
+   * Request a encrypted baseId from SZR.
+   *
+   * <b>Note</b>: Previously, this method did create a new ERnP entry, if it did not exist. This is
+   * <b>not</b> the case any more. See {@link #createNewErnpEntry(SimpleEidasData)} for that functionality.
+   *
+   * @param eidData Minimum dataset of person
+   * @return encrypted baseId
+   * @throws SzrCommunicationException    In case of a SZR error
+   */
+  public String getEncryptedStammzahl(final SimpleEidasData eidData)
+      throws SzrCommunicationException {
+    final String resp;
+    try {
+      resp = this.szr.getStammzahlEncrypted(generateSzrRequest(eidData), false);
+    } catch (SZRException_Exception e) {
+      throw new SzrCommunicationException("ernb.02", new Object[]{e.getMessage()}, e);
+    }
+
+    if (StringUtils.isEmpty(resp)) {
+      throw new SzrCommunicationException("ernb.01", new Object[]{"Stammzahl response empty"}); // TODO error handling
+    }
+
+    return resp;
+
+  }
+
+  /**
+   * Sign an eidasBind data-structure that combines vsz with user's pubKey and E-ID status.
+   *
+   * @param vsz encrypted baseId
+   * @param bindingPubKey  binding PublicKey as PKCS1# (ASN.1) container
+   * @param eidStatus Status of the E-ID
+   * @param eidData eID information that was used for ERnP registration
+   * @return bPK for this person
+   * @throws SzrCommunicationException In case of a SZR error
+   */
+  public String getEidasBind(final String vsz, final String bindingPubKey, final String eidStatus,
+                             SimpleEidasData eidData)throws SzrCommunicationException {
+
+    final Map<String, Object> eidsaBindMap = new HashMap<>();
+    eidsaBindMap.put(ATTR_NAME_VSZ, vsz);
+    eidsaBindMap.put(ATTR_NAME_STATUS, eidStatus);
+    eidsaBindMap.put(ATTR_NAME_PUBKEYS, Collections.singletonList(bindingPubKey));
+    eidsaBindMap.put(PvpAttributeDefinitions.EID_ISSUING_NATION_NAME, eidData.getCitizenCountryCode());
+    injectMdsIfAvailableAndActive(eidsaBindMap, eidData);
+
+    try {
+      final String serializedEidasBind = mapper.writeValueAsString(eidsaBindMap);
+      final SignContent req = new SignContent();
+      final SignContentEntry eidasBindInfo = new SignContentEntry();
+      eidasBindInfo.setKey(KEY_BC_BIND);
+      eidasBindInfo.setValue(serializedEidasBind);
+      req.getIn().add(eidasBindInfo);
+      req.setAppendCert(false);
+      final JwsHeaderParam eidasBindJoseHeader = new JwsHeaderParam();
+      eidasBindJoseHeader.setKey(JOSE_HEADER_USERCERTPINNING_TYPE);
+      eidasBindJoseHeader.setValue(JOSE_HEADER_USERCERTPINNING_EIDASBIND);
+      req.getJWSHeaderParam().add(eidasBindJoseHeader);
+
+      log.trace("Requesting SZR to sign bcBind datastructure ... ");
+      final SignContentResponseType resp = szr.signContent(req.isAppendCert(), req.getJWSHeaderParam(), req.getIn());
+      log.trace("Receive SZR response on bcBind siging operation ");
+
+      if (resp == null || resp.getOut() == null
+          || resp.getOut().isEmpty()
+          || StringUtils.isEmpty(resp.getOut().get(0).getValue())) {
+        throw new SzrCommunicationException("ernb.01", new Object[]{"BcBind response empty"});
+      }
+
+      return resp.getOut().get(0).getValue();
+
+    } catch (final JsonProcessingException | SZRException_Exception e) {
+      log.warn("Requesting bcBind by using SZR FAILED.", e);
+      throw new SzrCommunicationException("ernb.02",
+          new Object[]{e.getMessage()}, e);
+    }
+  }
+
+  private PersonInfoType generateSzrRequest(SimpleEidasData eidData) {
+    log.debug("Starting connecting SZR Gateway");
+    final PersonInfoType personInfo = new PersonInfoType();
+    final PersonNameType personName = new PersonNameType();
+    final PhysicalPersonType naturalPerson = new PhysicalPersonType();
+    final TravelDocumentType eDocument = new TravelDocumentType();
+
+    naturalPerson.setName(personName);
+    personInfo.setPerson(naturalPerson);
+    personInfo.setTravelDocument(eDocument);
+
+    // person information
+    personName.setFamilyName(eidData.getFamilyName());
+    personName.setGivenName(eidData.getGivenName());
+    naturalPerson.setDateOfBirth(eidData.getDateOfBirth());
+    eDocument.setIssuingCountry(eidData.getCitizenCountryCode());
+    eDocument.setDocumentNumber(eidData.getPseudonym());
+
+    // eID document information
+    String documentType = basicConfig
+        .getBasicConfiguration(Constants.CONIG_PROPS_EIDAS_SZRCLIENT_PARAMS_EDOCUMENTTYPE,
+                               Constants.SZR_CONSTANTS_DEFAULT_DOCUMENT_TYPE);
+    eDocument.setDocumentType(documentType);
+
+    // set PlaceOfBirth if available
+    if (eidData.getPlaceOfBirth() != null) {
+      log.trace("Find 'PlaceOfBirth' attribute: " + eidData.getPlaceOfBirth());
+      boolean setPlaceOfBirth = basicConfig
+          .getBasicConfigurationBoolean(Constants.CONIG_PROPS_EIDAS_SZRCLIENT_PARAMS_SETPLACEOFBIRTHIFAVAILABLE, true);
+      if (setPlaceOfBirth) {
+        naturalPerson.setPlaceOfBirth(eidData.getPlaceOfBirth());
+        log.trace("Adding 'PlaceOfBirth' to ERnB request ... ");
+      }
+    }
+
+    // set BirthName if available
+    if (eidData.getBirthName() != null) {
+      log.trace("Find 'BirthName' attribute: " + eidData.getBirthName());
+      boolean setBirthName = basicConfig
+          .getBasicConfigurationBoolean(Constants.CONIG_PROPS_EIDAS_SZRCLIENT_PARAMS_SETBIRTHNAMEIFAVAILABLE, true);
+      if (setBirthName) {
+        final AlternativeNameType alternativeName = new AlternativeNameType();
+        naturalPerson.setAlternativeName(alternativeName);
+        alternativeName.setFamilyName(eidData.getBirthName());
+        log.trace("Adding 'BirthName' to ERnB request ... ");
+      }
+    }
+
+    return personInfo;
+  }
+
+  @PostConstruct
+  private void initialize() throws EaafConfigurationException {
+    log.info("Starting SZR-Client initialization .... ");
+    final URL url = SzrClient.class.getResource("/wsdl/szr_client/SZR_v4.0.wsdl");
+
+    final boolean useTestSzr = basicConfig.getBasicConfigurationBoolean(
+        Constants.CONIG_PROPS_EIDAS_SZRCLIENT_USETESTSERVICE,
+        true);
+
+    SzrService szrService;
+    QName qname;
+    String szrUrl;
+    if (useTestSzr) {
+      log.debug("Initializing SZR test environment configuration.");
+      qname = SzrService.SZRTestumgebung;
+      szrService = new SzrService(url, new QName("urn:SZRServices", "SZRService"));
+      szr = szrService.getSzrTestumgebung();
+      szrUrl = basicConfig.getBasicConfiguration(Constants.CONIG_PROPS_EIDAS_SZRCLIENT_ENDPOINT_TEST);
+
+    } else {
+      log.debug("Initializing SZR productive configuration.");
+      qname = SzrService.SZRProduktionsumgebung;
+      szrService = new SzrService(url, new QName("urn:SZRServices", "SZRService"));
+      szr = szrService.getSzrProduktionsumgebung();
+      szrUrl = basicConfig.getBasicConfiguration(Constants.CONIG_PROPS_EIDAS_SZRCLIENT_ENDPOINT_PROD);
+
+    }
+
+    // create raw client;
+    dispatch = szrService.createDispatch(qname, Source.class, javax.xml.ws.Service.Mode.PAYLOAD);
+
+    if (StringUtils.isEmpty(szrUrl)) {
+      log.error("No SZR service-URL found. SZR-Client initalisiation failed.");
+      throw new RuntimeException("No SZR service URL found. SZR-Client initalisiation failed.");
+
+    }
+
+    // check if Clients can be initialized
+    if (szr == null) {
+      log.error("SZR " + CLIENT_DEFAULT + " is 'NULL'. Something goes wrong");
+      throw new RuntimeException("SZR " + CLIENT_DEFAULT + " is 'NULL'. Something goes wrong");
+
+    }
+    if (dispatch == null) {
+      log.error("SZR " + CLIENT_RAW + " is 'NULL'. Something goes wrong");
+      throw new RuntimeException("SZR " + CLIENT_RAW + " is 'NULL'. Something goes wrong");
+
+    }
+
+    // inject handler
+    log.info("Use SZR service-URL: " + szrUrl);
+    injectBindingProvider((BindingProvider) szr, CLIENT_DEFAULT, szrUrl,
+        basicConfig.getBasicConfigurationBoolean(Constants.CONIG_PROPS_EIDAS_SZRCLIENT_DEBUG_TRACEMESSAGES, false));
+    injectBindingProvider(dispatch, CLIENT_RAW, szrUrl, 
+        basicConfig.getBasicConfigurationBoolean(Constants.CONIG_PROPS_EIDAS_SZRCLIENT_DEBUG_TRACEMESSAGES, false));
+
+    // inject http parameters and SSL context
+    log.debug("Inject HTTP client settings ... ");    
+    HttpClientConfigBuilder httpClientBuilder = HttpClientConfig.builder()
+        .clientName("SZR Client")
+        .clientUrl(szrUrl)
+        .connectionTimeout(basicConfig.getBasicConfiguration(
+            Constants.CONIG_PROPS_EIDAS_SZRCLIENT_TIMEOUT_CONNECTION, 
+            Constants.HTTP_CLIENT_DEFAULT_TIMEOUT_CONNECTION))
+        .responseTimeout(basicConfig.getBasicConfiguration(
+            Constants.CONIG_PROPS_EIDAS_SZRCLIENT_TIMEOUT_RESPONSE, 
+            Constants.HTTP_CLIENT_DEFAULT_TIMEOUT_RESPONSE))
+        .keyStoreConfig(buildKeyStoreConfiguration(
+            Constants.CONIG_PROPS_EIDAS_SZRCLIENT_SSL_KEYSTORE_TYPE,
+            Constants.CONIG_PROPS_EIDAS_SZRCLIENT_SSL_KEYSTORE_PATH,
+            Constants.CONIG_PROPS_EIDAS_SZRCLIENT_SSL_KEYSTORE_PASSWORD,
+            Constants.CONIG_PROPS_EIDAS_SZRCLIENT_SSL_KEYSTORE_NAME,
+            "SZR SSL Client-Authentication KeyStore"))
+        .keyAlias(basicConfig.getBasicConfiguration(Constants.CONIG_PROPS_EIDAS_SZRCLIENT_SSL_KEYS_ALIAS))
+        .keyPassword(basicConfig.getBasicConfiguration(Constants.CONIG_PROPS_EIDAS_SZRCLIENT_SSL_KEY_PASSWORD))
+        .trustAll(false)
+        .trustStoreConfig(buildKeyStoreConfiguration(
+            Constants.CONIG_PROPS_EIDAS_SZRCLIENT_SSL_TRUSTSTORE_TYPE,
+            Constants.CONIG_PROPS_EIDAS_SZRCLIENT_SSL_TRUSTSTORE_PATH,
+            Constants.CONIG_PROPS_EIDAS_SZRCLIENT_SSL_TRUSTSTORE_PASSWORD,
+            Constants.CONIG_PROPS_EIDAS_SZRCLIENT_SSL_TRUSTSTORE_NAME,
+            "SZR SSL Client-Authentication KeyStore"));
+                        
+    injectHttpClient(szr, httpClientBuilder.clientType(CLIENT_DEFAULT).build());
+    injectHttpClient(dispatch, httpClientBuilder.clientType(CLIENT_RAW).build());
+
+    log.info("SZR-Client initialization successfull");
+  }
+
+  private void injectMdsIfAvailableAndActive(Map<String, Object> eidsaBindMap, SimpleEidasData eidData) {
+    if (basicConfig.getBasicConfigurationBoolean(
+        Constants.CONIG_PROPS_EIDAS_SZRCLIENT_SET_MDS_TO_EIDASBIND, false)) {
+      log.info("Injecting MDS into eidasBind ... ");
+      final Map<String, Object> mds = new HashMap<>();
+      mds.put(PvpAttributeDefinitions.PRINCIPAL_NAME_NAME, eidData.getFamilyName());
+      mds.put(PvpAttributeDefinitions.GIVEN_NAME_NAME, eidData.getGivenName());
+      mds.put(PvpAttributeDefinitions.BIRTHDATE_NAME, eidData.getDateOfBirth());
+      eidsaBindMap.put(ATTR_NAME_MDS, mds);
+
+    }
+  }
+
+  private byte[] sourceToByteArray(Source result) throws TransformerException {
+    final TransformerFactory factory = TransformerFactory.newInstance();
+    factory.setFeature(XMLConstants.FEATURE_SECURE_PROCESSING, true);
+    final Transformer transformer = factory.newTransformer();
+    transformer.setOutputProperty("omit-xml-declaration", "yes");
+    transformer.setOutputProperty("method", "xml");
+    final ByteArrayOutputStream out = new ByteArrayOutputStream();
+    final StreamResult streamResult = new StreamResult();
+    streamResult.setOutputStream(out);
+    transformer.transform(result, streamResult);
+    return out.toByteArray();
+  }
+
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/clients/szr/SzrService.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/clients/szr/SzrService.java
new file mode 100644
index 00000000..590f88a4
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/clients/szr/SzrService.java
@@ -0,0 +1,164 @@
+/*
+ * Copyright 2018 A-SIT Plus GmbH
+ * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
+ * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
+ *
+ * Licensed under the EUPL, Version 1.2 or - as soon they will be approved by
+ * the European Commission - subsequent versions of the EUPL (the "License");
+ * You may not use this work except in compliance with the License.
+ * You may obtain a copy of the License at:
+ * https://joinup.ec.europa.eu/news/understanding-eupl-v12
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" basis,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ *
+ * This product combines work with different licenses. See the "NOTICE" text
+ * file for details on the various modules and licenses.
+ * The "NOTICE" text file is part of the distribution. Any derivative works
+ * that you distribute must include a readable copy of the "NOTICE" text file.
+*/
+
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.clients.szr;
+
+import java.net.URL;
+
+import javax.xml.namespace.QName;
+import javax.xml.ws.Service;
+import javax.xml.ws.WebEndpoint;
+import javax.xml.ws.WebServiceClient;
+import javax.xml.ws.WebServiceFeature;
+
+import szrservices.SZR;
+
+/**
+ * This class was generated by Apache CXF 3.1.16 2018-07-10T09:36:01.466+02:00
+ * Generated source version: 3.1.16
+ *
+ */
+@WebServiceClient(name = "SZRService",
+    wsdlLocation = "./src/main/resources/szr_client/SZR-1.WSDL",
+    targetNamespace = "urn:SZRServices")
+public class SzrService extends Service {
+
+  public static final URL WSDL_LOCATION;
+
+  public static final QName SERVICE = new QName("urn:SZRServices", "SZRService");
+  public static final QName SZRProduktionsumgebung = new QName("urn:SZRServices", "SZRProduktionsumgebung");
+  public static final QName SZRTestumgebung = new QName("urn:SZRServices", "SZRTestumgebung");
+  public static final QName SZRBusinesspartnerTestumgebung = new QName("urn:SZRServices",
+      "SZRBusinesspartnerTestumgebung");
+  
+  static {
+    URL url = SzrService.class.getResource("./src/main/resources/wsdl/szr_client/SZR-1.WSDL");
+    if (url == null) {
+      url = SzrService.class.getClassLoader().getResource("/szr_client/SZR-1.WSDL");
+    }
+    if (url == null) {
+      java.util.logging.Logger.getLogger(SzrService.class.getName())
+          .log(java.util.logging.Level.INFO,
+              "Can not initialize the default wsdl from {0}", "/szr_client/SZR-1.WSDL");
+    }
+    WSDL_LOCATION = url;
+
+  }
+
+  public SzrService(URL wsdlLocation) {
+    super(wsdlLocation, SERVICE);
+  }
+
+  public SzrService(URL wsdlLocation, QName serviceName) {
+    super(wsdlLocation, serviceName);
+  }
+
+  public SzrService() {
+    super(WSDL_LOCATION, SERVICE);
+  }
+
+  public SzrService(WebServiceFeature... features) {
+    super(WSDL_LOCATION, SERVICE, features);
+  }
+
+  public SzrService(URL wsdlLocation, WebServiceFeature... features) {
+    super(wsdlLocation, SERVICE, features);
+  }
+
+  public SzrService(URL wsdlLocation, QName serviceName, WebServiceFeature... features) {
+    super(wsdlLocation, serviceName, features);
+  }
+
+  /**
+   * Get SZR Web-Service.
+   *
+   * @return returns SZR
+   */
+  @WebEndpoint(name = "SZRProduktionsumgebung")
+  public SZR getSzrProduktionsumgebung() {
+    return super.getPort(SZRProduktionsumgebung, SZR.class);
+  }
+
+  /**
+   * Get SZR Web-Service.
+   * 
+   * @param features A list of {@link javax.xml.ws.WebServiceFeature} to configure
+   *                 on the proxy. Supported features not in the
+   *                 <code>features</code> parameter will have their default
+   *                 values.
+   * @return returns SZR
+   */
+  @WebEndpoint(name = "SZRProduktionsumgebung")
+  public SZR getSzrProduktionsumgebung(WebServiceFeature... features) {
+    return super.getPort(SZRProduktionsumgebung, SZR.class, features);
+  }
+
+  /**
+   *Get SZR Web-Service.
+   *
+   * @return returns SZR
+   */
+  @WebEndpoint(name = "SZRTestumgebung")
+  public SZR getSzrTestumgebung() {
+    return super.getPort(SZRTestumgebung, SZR.class);
+  }
+
+  /**
+   * Get SZR Web-Service.
+   * 
+   * @param features A list of {@link javax.xml.ws.WebServiceFeature} to configure
+   *                 on the proxy. Supported features not in the
+   *                 <code>features</code> parameter will have their default
+   *                 values.
+   * @return returns SZR
+   */
+  @WebEndpoint(name = "SZRTestumgebung")
+  public SZR getSzrTestumgebung(WebServiceFeature... features) {
+    return super.getPort(SZRTestumgebung, SZR.class, features);
+  }
+
+  /**
+   * Get SZR Web-Service.
+   *
+   * @return returns SZR
+   */
+  @WebEndpoint(name = "SZRBusinesspartnerTestumgebung")
+  public SZR getSzrBusinesspartnerTestumgebung() {
+    return super.getPort(SZRBusinesspartnerTestumgebung, SZR.class);
+  }
+
+  /**
+   * Get SZR Web-Service.
+   * 
+   * @param features A list of {@link javax.xml.ws.WebServiceFeature} to configure
+   *                 on the proxy. Supported features not in the
+   *                 <code>features</code> parameter will have their default
+   *                 values.
+   * @return returns SZR
+   */
+  @WebEndpoint(name = "SZRBusinesspartnerTestumgebung")
+  public SZR getSzrBusinesspartnerTestumgebung(WebServiceFeature... features) {
+    return super.getPort(SZRBusinesspartnerTestumgebung, SZR.class, features);
+  }
+
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/clients/zmr/IZmrClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/clients/zmr/IZmrClient.java
new file mode 100644
index 00000000..18bcbacc
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/clients/zmr/IZmrClient.java
@@ -0,0 +1,89 @@
+/*
+ * Copyright 2020 A-SIT Plus GmbH
+ * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
+ * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
+ *
+ * Licensed under the EUPL, Version 1.2 or - as soon they will be approved by
+ * the European Commission - subsequent versions of the EUPL (the "License");
+ * You may not use this work except in compliance with the License.
+ * You may obtain a copy of the License at:
+ * https://joinup.ec.europa.eu/news/understanding-eupl-v12
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" basis,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ *
+ * This product combines work with different licenses. See the "NOTICE" text
+ * file for details on the various modules and licenses.
+ * The "NOTICE" text file is part of the distribution. Any derivative works
+ * that you distribute must include a readable copy of the "NOTICE" text file.
+ */
+
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.clients.zmr;
+
+import java.math.BigInteger;
+
+import javax.annotation.Nonnull;
+import javax.annotation.Nullable;
+
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.clients.zmr.ZmrSoapClient.ZmrRegisterResult;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidasSAuthenticationException;
+import at.gv.bmi.namespace.zmr_su.zmr._20040201.PersonSuchenRequest;
+
+public interface IZmrClient {
+
+  /**
+   * Search person based on eIDAS personal identifier.
+   * 
+   * @param zmrProzessId ProcessId from ZMR or <code>null</code> if no processId exists
+   * @param personIdentifier Full eIDAS personal identifier with prefix
+   * @return Search result but never <code>null</code>
+   * @throws EidasSAuthenticationException In case of a communication error 
+   */
+  @Nonnull
+  ZmrRegisterResult searchWithPersonIdentifier(@Nullable BigInteger zmrProzessId, @Nonnull String personIdentifier) 
+      throws EidasSAuthenticationException;
+
+  /**
+   * Search person based on eIDSA MDS information.
+   * 
+   * @param zmrProzessId ProcessId from ZMR or <code>null</code> if no processId exists
+   * @param givenName eIDAS given name
+   * @param familyName eIDAS principle name
+   * @param dateOfBirth eIDAS date-of-birth
+   * @param citizenCountryCode CountryCode of the eIDAS proxy-service
+   * @return Search result but never <code>null</code>
+   * @throws EidasSAuthenticationException In case of a communication error 
+   */
+  @Nonnull
+  ZmrRegisterResult searchWithMds(@Nullable BigInteger zmrProzessId, @Nonnull String givenName, 
+      @Nonnull String familyName, @Nonnull String dateOfBirth, @Nonnull String citizenCountryCode) 
+          throws EidasSAuthenticationException;
+
+  /**
+   * Search person based on country-specific natural person set.
+   * 
+   * @param zmrProzessId ProcessId from ZMR or <code>null</code> if no processId exists
+   * @param personSearchDao Specific set of natural person informations.
+   * @param citizenCountryCode CountryCode of the eIDAS proxy-service
+   * @return Search result but never <code>null</code>
+   * @throws EidasSAuthenticationException In case of a communication error 
+   */
+  @Nonnull
+  ZmrRegisterResult searchCountrySpecific(@Nullable BigInteger zmrProzessId, 
+      @Nonnull PersonSuchenRequest personSearchDao, @Nonnull String citizenCountryCode) 
+          throws EidasSAuthenticationException;
+
+
+  void update(@Nullable BigInteger zmrProzessId, RegisterResult registerResult, SimpleEidasData eidData);
+
+  ZmrRegisterResult searchWithBpkZp(@Nullable BigInteger zmrProzessId, String bpkzp);
+
+  ZmrRegisterResult searchWithResidenceData(@Nullable BigInteger zmrProzessId, String givenName, String familyName, 
+      String dateOfBirth, String zipcode, String city, String street);
+
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/clients/zmr/ZmrSoapClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/clients/zmr/ZmrSoapClient.java
new file mode 100644
index 00000000..014d202b
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/clients/zmr/ZmrSoapClient.java
@@ -0,0 +1,560 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.clients.zmr;
+
+import java.math.BigInteger;
+import java.net.URL;
+import java.text.MessageFormat;
+import java.util.Arrays;
+import java.util.Collections;
+import java.util.List;
+import java.util.Objects;
+import java.util.stream.Collectors;
+
+import javax.annotation.Nonnull;
+import javax.annotation.PostConstruct;
+import javax.xml.ws.BindingProvider;
+
+import org.apache.commons.lang3.StringUtils;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.lang.NonNull;
+import org.springframework.lang.Nullable;
+
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.clients.AbstractSoapClient;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidasSAuthenticationException;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.ZmrCommunicationException;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.EidasResponseUtils;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.VersionHolder;
+import at.gv.bmi.namespace.zmr_su.base._20040201.ClientInfoType;
+import at.gv.bmi.namespace.zmr_su.base._20040201.Organisation;
+import at.gv.bmi.namespace.zmr_su.base._20040201.RequestType;
+import at.gv.bmi.namespace.zmr_su.base._20040201.ResponseType;
+import at.gv.bmi.namespace.zmr_su.base._20040201.WorkflowInfoClient;
+import at.gv.bmi.namespace.zmr_su.base._20040201.WorkflowInfoServer;
+import at.gv.bmi.namespace.zmr_su.base._20040201_.Service;
+import at.gv.bmi.namespace.zmr_su.base._20040201_.ServiceFault;
+import at.gv.bmi.namespace.zmr_su.base._20040201_.ServicePort;
+import at.gv.bmi.namespace.zmr_su.zmr._20040201.EidasSuchdatenType;
+import at.gv.bmi.namespace.zmr_su.zmr._20040201.ErgebniskriterienType;
+import at.gv.bmi.namespace.zmr_su.zmr._20040201.NatuerlichePersonErgebnisType;
+import at.gv.bmi.namespace.zmr_su.zmr._20040201.PersonErgebnisSatzType;
+import at.gv.bmi.namespace.zmr_su.zmr._20040201.PersonErgebnisType;
+import at.gv.bmi.namespace.zmr_su.zmr._20040201.PersonSuchenRequest;
+import at.gv.bmi.namespace.zmr_su.zmr._20040201.PersonSuchenResponse;
+import at.gv.bmi.namespace.zmr_su.zmr._20040201.PersonensucheInfoType;
+import at.gv.bmi.namespace.zmr_su.zmr._20040201.SuchkriterienType;
+import at.gv.e_government.reference.namespace.persondata.de._20040201.NatuerlichePersonTyp;
+import at.gv.e_government.reference.namespace.persondata.de._20040201.PersonenNameTyp;
+import at.gv.egiz.eaaf.core.exceptions.EaafAuthenticationException;
+import at.gv.egiz.eaaf.core.exceptions.EaafConfigurationException;
+import lombok.AllArgsConstructor;
+import lombok.Getter;
+import lombok.extern.slf4j.Slf4j;
+
+/**
+ * ZMR client implementation for eIDAS matching operations.
+ *
+ * @author tlenz
+ *
+ */
+@Slf4j
+public class ZmrSoapClient extends AbstractSoapClient implements IZmrClient {
+
+  private static final String ERROR_MATCHING_00 = "module.eidasauth.matching.00";
+  private static final String ERROR_MATCHING_01 = "module.eidasauth.matching.01";
+  private static final String ERROR_MATCHING_02 = "module.eidasauth.matching.02";
+  private static final String ERROR_MATCHING_99 = "module.eidasauth.matching.99";
+
+  private static final String LOGMSG_MISSING_CONFIG = "Missing configuration with key: {0}";
+  
+  private static final String LOGMSG_ZMR_ERROR =
+      "Receive an error from ZMR during '{}' operation with msg: {}";
+  private static final String LOGMSG_ZMR_RESP_PROCESS =
+      "Proces ZMR response during '{}' operation failes with msg: {}";
+
+  private static final String LOGMSG_ZMR_SOAP_ERROR =
+      "ZMR anwser for transaction: {} with code: {} and message: {}";
+
+  private static final String PROCESS_GENERAL = "eIDAS_Matching";
+  private static final String PROCESS_SEARCH_PERSONAL_IDENTIFIER =
+      "Searching " + Constants.eIDAS_ATTR_PERSONALIDENTIFIER;
+  private static final String PROCESS_SEARCH_MDS_ONLY = "Searching with MDS only";
+  private static final String PROCESS_SEARCH_COUNTRY_SPECIFIC = "Searching {} specific";
+
+  private static final String CLIENT_INFO = "eIDAS MS-Connector v{0}";
+  private static final String CLIENT_DEFAULT = "ZMR Client";
+
+  
+  @Autowired VersionHolder versionHolder;
+  
+  private ServicePort zmrClient;
+
+  
+  @AllArgsConstructor
+  @Getter
+  public static class ZmrRegisterResult {
+    private final List<RegisterResult> personResult;
+    private final BigInteger processId;
+        
+  }
+  
+  @Override
+  public ZmrRegisterResult searchWithPersonIdentifier(BigInteger zmrProzessId, String personIdentifier)
+      throws EidasSAuthenticationException {
+
+    try {
+      // build search request
+      final RequestType req = new RequestType();
+
+      // set eIDAS person information
+      final PersonSuchenRequest searchPersonReq = new PersonSuchenRequest();
+      req.setPersonSuchenRequest(searchPersonReq);
+      final EidasSuchdatenType eidasInfos = new EidasSuchdatenType();
+      searchPersonReq.setEidasSuchdaten(eidasInfos);
+      eidasInfos.setEidasArt(Constants.eIDAS_ATTRURN_PERSONALIDENTIFIER);
+      eidasInfos.setEidasNummer(personIdentifier);
+
+      // set work-flow client information
+      req.setWorkflowInfoClient(generateWorkFlowInfos(PROCESS_SEARCH_PERSONAL_IDENTIFIER, null));
+      req.setClientInfo(generateClientInfos());
+
+      // set additionl search parameters
+      searchPersonReq.setPersonensucheInfo(generateSearchCriteria(false, true, false));
+
+      // request ZMR
+      log.trace("Requesting ZMR for '{}' operation", PROCESS_SEARCH_PERSONAL_IDENTIFIER);
+      final ResponseType resp = zmrClient.service(req, null);
+
+      // parse ZMR response
+      return processZmrResponse(resp, EidasResponseUtils.parseEidasPersonalIdentifier(personIdentifier)
+          .getFirst(),
+          true, PROCESS_SEARCH_PERSONAL_IDENTIFIER);
+
+    } catch (final ServiceFault e) {
+      final String errorMsg = extractReasonFromError(e);
+      log.warn(LOGMSG_ZMR_ERROR, PROCESS_SEARCH_PERSONAL_IDENTIFIER, errorMsg);
+      throw new ZmrCommunicationException(ERROR_MATCHING_01, new Object[] { errorMsg }, e);
+
+    } catch (final EaafAuthenticationException e) {
+      log.warn(LOGMSG_ZMR_RESP_PROCESS, PROCESS_SEARCH_PERSONAL_IDENTIFIER, e.getMessage());
+      throw new EidasSAuthenticationException(ERROR_MATCHING_99, new Object[] { e.getMessage() }, e);
+
+    }
+  }
+
+  @Override
+  public ZmrRegisterResult searchWithMds(BigInteger zmrProzessId, String givenName, String familyName, 
+      String dateOfBirth, String citizenCountryCode) throws EidasSAuthenticationException {
+    try {
+      // build search request
+      final RequestType req = new RequestType();
+
+      // set eIDAS person information
+      final PersonSuchenRequest searchPersonReq = new PersonSuchenRequest();
+      req.setPersonSuchenRequest(searchPersonReq);
+
+      final NatuerlichePersonTyp searchNatPerson = new NatuerlichePersonTyp();
+      searchPersonReq.setNatuerlichePerson(searchNatPerson);
+      final PersonenNameTyp searchNatPersonName = new PersonenNameTyp();
+      searchNatPerson.setPersonenName(searchNatPersonName);
+
+      searchNatPersonName.setFamilienname(familyName);
+      searchNatPersonName.setVorname(givenName);
+      searchNatPerson.setGeburtsdatum(dateOfBirth);
+
+      // set work-flow client information
+      req.setWorkflowInfoClient(generateWorkFlowInfos(PROCESS_SEARCH_MDS_ONLY, zmrProzessId));
+      req.setClientInfo(generateClientInfos());
+
+      // set additionl search parameters
+      searchPersonReq.setPersonensucheInfo(generateSearchCriteria(false, true, false));
+
+      // request ZMR
+      log.trace("Requesting ZMR for '{}' operation", PROCESS_SEARCH_MDS_ONLY);
+      final ResponseType resp = zmrClient.service(req, null);
+
+      // parse ZMR response
+      return processZmrResponse(resp, citizenCountryCode, false, PROCESS_SEARCH_MDS_ONLY);
+
+    } catch (final ServiceFault e) {
+      final String errorMsg = extractReasonFromError(e);
+      log.warn(LOGMSG_ZMR_ERROR, PROCESS_SEARCH_MDS_ONLY, errorMsg);
+      throw new ZmrCommunicationException(ERROR_MATCHING_01, new Object[] { errorMsg }, e);
+
+    } catch (final EaafAuthenticationException e) {
+      log.warn(LOGMSG_ZMR_RESP_PROCESS, PROCESS_SEARCH_MDS_ONLY, e.getMessage());
+      throw new EidasSAuthenticationException(ERROR_MATCHING_99, new Object[] { e.getMessage() }, e);
+
+    }
+
+  }
+
+  @Override
+  public ZmrRegisterResult searchCountrySpecific(BigInteger zmrProzessId, PersonSuchenRequest personSearchDao,
+      String citizenCountryCode)
+      throws EidasSAuthenticationException {
+    final String friendlyMsg = MessageFormat.format(PROCESS_SEARCH_COUNTRY_SPECIFIC, citizenCountryCode);
+
+    try {
+      // build search request
+      final RequestType req = new RequestType();
+
+      // set eIDAS person information
+      req.setPersonSuchenRequest(personSearchDao);
+
+      // set work-flow client information
+      req.setWorkflowInfoClient(generateWorkFlowInfos(friendlyMsg, zmrProzessId));
+      req.setClientInfo(generateClientInfos());
+
+      // set additionl search parameters
+      personSearchDao.setPersonensucheInfo(generateSearchCriteria(false, true, false));
+
+      // request ZMR
+      log.trace("Requesting ZMR for '{}' operation", friendlyMsg);
+      final ResponseType resp = zmrClient.service(req, null);
+
+      // parse ZMR response
+      return processZmrResponse(resp, citizenCountryCode, true,
+          friendlyMsg);
+
+    } catch (final ServiceFault e) {
+      final String errorMsg = extractReasonFromError(e);
+      log.warn(LOGMSG_ZMR_ERROR, friendlyMsg, errorMsg);
+      throw new ZmrCommunicationException(ERROR_MATCHING_01, new Object[] { errorMsg }, e);
+
+    } catch (final EaafAuthenticationException e) {
+      log.warn(LOGMSG_ZMR_RESP_PROCESS, friendlyMsg, e.getMessage());
+      throw new EidasSAuthenticationException(ERROR_MATCHING_99, new Object[] { e.getMessage() }, e);
+
+    }
+  }
+
+  @Override
+  public void update(BigInteger zmrProzessId, RegisterResult registerResult, SimpleEidasData eidData) {
+    // TODO Auto-generated method stub
+
+  }
+
+  @Override
+  public ZmrRegisterResult searchWithBpkZp(BigInteger zmrProzessId, String bpkzp) {
+    // TODO Auto-generated method stub
+    return null;
+  }
+
+  @Override
+  public ZmrRegisterResult searchWithResidenceData(BigInteger zmrProzessId, String givenName, String familyName, 
+      String dateOfBirth, String zipcode, String city, String street) {
+    // TODO Auto-generated method stub
+    return null;
+  }
+  
+  @PostConstruct
+  private void initialize() throws EaafConfigurationException {
+    // set-up the ZMR client
+    initializeTechnicalZmrClient();
+    
+    // validate additional ZMR communication parameters
+    valdiateAdditionalConfigParameters();
+    
+  }
+
+  private void initializeTechnicalZmrClient() throws EaafConfigurationException {
+    log.info("Starting ZMR-Client initialization .... ");
+    final URL url = ZmrSoapClient.class.getResource("/wsdl/zmr_client/wsdl/Service.wsdl");
+    final Service zmrService = new Service(url);
+    zmrClient = zmrService.getService();
+
+    final String zmrServiceUrl = basicConfig.getBasicConfiguration(
+        Constants.CONIG_PROPS_EIDAS_ZMRCLIENT_ENDPOINT);
+    if (StringUtils.isEmpty(zmrServiceUrl)) {
+      log.error("No ZMR service-URL found. ZMR-Client initalisiation failed.");
+      throw new RuntimeException("No ZMR service URL found. ZMR-Client initalisiation failed.");
+
+    }
+
+    // inject handler
+    log.info("Use ZMR service-URL: " + zmrServiceUrl);
+    injectBindingProvider((BindingProvider) zmrClient, CLIENT_DEFAULT, zmrServiceUrl,
+        basicConfig.getBasicConfigurationBoolean(Constants.CONIG_PROPS_EIDAS_ZMRCLIENT_DEBUG_TRACEMESSAGES,
+            false));
+
+    // inject http parameters and SSL context
+    log.debug("Inject HTTP client settings ... ");
+    injectHttpClient(zmrClient, HttpClientConfig.builder()
+        .clientName(CLIENT_DEFAULT)
+        .clientType(CLIENT_DEFAULT)
+        .clientUrl(zmrServiceUrl)
+        .connectionTimeout(basicConfig.getBasicConfiguration(
+            Constants.CONIG_PROPS_EIDAS_ZMRCLIENT_TIMEOUT_CONNECTION,
+            Constants.HTTP_CLIENT_DEFAULT_TIMEOUT_CONNECTION))
+        .responseTimeout(basicConfig.getBasicConfiguration(
+            Constants.CONIG_PROPS_EIDAS_ZMRCLIENT_TIMEOUT_RESPONSE,
+            Constants.HTTP_CLIENT_DEFAULT_TIMEOUT_RESPONSE))
+        .keyStoreConfig(buildKeyStoreConfiguration(
+            Constants.CONIG_PROPS_EIDAS_ZMRCLIENT_SSL_KEYSTORE_TYPE,
+            Constants.CONIG_PROPS_EIDAS_ZMRCLIENT_SSL_KEYSTORE_PATH,
+            Constants.CONIG_PROPS_EIDAS_ZMRCLIENT_SSL_KEYSTORE_PASSWORD,
+            Constants.CONIG_PROPS_EIDAS_ZMRCLIENT_SSL_KEYSTORE_NAME,
+            "ZMR SSL Client-Authentication KeyStore"))
+        .keyAlias(basicConfig.getBasicConfiguration(Constants.CONIG_PROPS_EIDAS_ZMRCLIENT_SSL_KEYS_ALIAS))
+        .keyPassword(basicConfig.getBasicConfiguration(
+            Constants.CONIG_PROPS_EIDAS_ZMRCLIENT_SSL_KEY_PASSWORD))
+        .trustAll(false)
+        .trustStoreConfig(buildKeyStoreConfiguration(
+            Constants.CONIG_PROPS_EIDAS_ZMRCLIENT_SSL_TRUSTSTORE_TYPE,
+            Constants.CONIG_PROPS_EIDAS_ZMRCLIENT_SSL_TRUSTSTORE_PATH,
+            Constants.CONIG_PROPS_EIDAS_ZMRCLIENT_SSL_TRUSTSTORE_PASSWORD,
+            Constants.CONIG_PROPS_EIDAS_ZMRCLIENT_SSL_TRUSTSTORE_NAME,
+            "ZMR SSL Client-Authentication TrustStore"))
+        .build());    
+    
+  }
+  
+  private void valdiateAdditionalConfigParameters() {
+    checkConfigurationValue(Constants.CONIG_PROPS_EIDAS_ZMRCLIENT_REQ_ORGANIZATION_NR);
+        
+  }
+  
+  private void checkConfigurationValue(String key) {
+    if (StringUtils.isEmpty(basicConfig.getBasicConfiguration(key))) {
+      throw new RuntimeException(MessageFormat.format(LOGMSG_MISSING_CONFIG, key));
+      
+    }
+  }
+  
+  @Nonnull
+  private WorkflowInfoClient generateWorkFlowInfos(@Nonnull String subStepName, 
+      @Nullable BigInteger prozessInstanzId) {
+    final WorkflowInfoClient infos = new WorkflowInfoClient();
+    infos.setProzessName(PROCESS_GENERAL);
+    infos.setVorgangName(subStepName);
+
+    //set processId that we received from ZMR before, if already available
+    if (prozessInstanzId != null) {
+      infos.setProzessInstanzID(prozessInstanzId);
+      
+    }
+    
+    return infos;
+
+  }
+
+  @Nonnull
+  private PersonensucheInfoType generateSearchCriteria(boolean searchInErnp,
+      boolean searchInZmrHistory, boolean includeHistoryResults) {
+    final PersonensucheInfoType personSearchInfo = new PersonensucheInfoType();
+    final SuchkriterienType searchCriteria = new SuchkriterienType();
+    final ErgebniskriterienType resultCriteria = new ErgebniskriterienType();
+    personSearchInfo.setSuchkriterien(searchCriteria);
+    personSearchInfo.setErgebniskriterien(resultCriteria);
+
+    // TODO: are these flags valid?
+    searchCriteria.setInclusivERnP(searchInErnp);
+    searchCriteria.setInclusivHistorie(searchInZmrHistory);
+
+    // TODO: check 'processSearchPersonResponse' if we change this to 'true'
+    resultCriteria.setInclusivHistorie(includeHistoryResults);
+
+    return personSearchInfo;
+
+  }
+
+  @Nonnull
+  private ClientInfoType generateClientInfos() {
+    final ClientInfoType clientInfo = new ClientInfoType();
+    final Organisation clientOrganisation = new Organisation();
+    clientInfo.setOrganisation(clientOrganisation);
+
+    // set client information
+    clientInfo.setClient(MessageFormat.format(CLIENT_INFO, versionHolder.getVersion()));
+    
+    // set Behoerdennummer as organization identifier
+    clientOrganisation.setBehoerdenNr(basicConfig.getBasicConfiguration(
+        Constants.CONIG_PROPS_EIDAS_ZMRCLIENT_REQ_ORGANIZATION_NR));
+    
+    return clientInfo;
+  }
+
+  @Nonnull
+  private String extractReasonFromError(ServiceFault e) {
+    if (e.getFaultInfo() != null) {
+      return MessageFormat.format(LOGMSG_ZMR_SOAP_ERROR,
+          e.getFaultInfo().getServerTransaktionNr(),
+          e.getFaultInfo().getErrorCode(),
+          e.getFaultInfo().getErrorMessage());
+
+    } else {
+      log.error("ZMR response without error code", e);
+      return e.getMessage();
+
+    }
+  }
+
+  @Nonnull
+  private ZmrRegisterResult processZmrResponse(@Nonnull ResponseType resp,
+      @Nonnull String citizenCountryCode,
+      boolean forceSinglePersonMatch, @Nonnull String processStepFiendlyname)
+      throws EaafAuthenticationException {
+    final PersonSuchenResponse searchPersonResp = resp.getPersonSuchenResponse();
+    if (searchPersonResp.getPersonensuchergebnis() == null 
+        || searchPersonResp.getPersonensuchergebnis().getPersonErgebnisSatz().isEmpty()) {
+      log.debug("ZMR result contains NO 'Personensuchergebnis' or 'PersonErgebnisSatz' is empty");
+      return new ZmrRegisterResult(Collections.emptyList(), extractZmrProcessId(resp.getWorkflowInfoServer()));
+      
+    } else {
+      // TODO: what we to with ERnP results?
+      log.debug("Get #{} person results from '{}' operation",
+          searchPersonResp.getPersonensuchergebnis().getGefundeneSaetze(), processStepFiendlyname);
+
+      if (forceSinglePersonMatch) {
+        return new ZmrRegisterResult(processSearchPersonResponseSingleResult(
+            searchPersonResp.getPersonensuchergebnis().getPersonErgebnisSatz(), citizenCountryCode),
+            extractZmrProcessId(resp.getWorkflowInfoServer()));
+
+      } else {
+        return new ZmrRegisterResult(processSearchPersonResponse(
+            searchPersonResp.getPersonensuchergebnis().getPersonErgebnisSatz(), citizenCountryCode),
+            extractZmrProcessId(resp.getWorkflowInfoServer()));
+
+      }
+    }
+  }
+
+  private BigInteger extractZmrProcessId(WorkflowInfoServer workflowInfoServer) {
+    return workflowInfoServer != null ? workflowInfoServer.getProzessInstanzID() : null; 
+
+  }
+
+  @Nonnull
+  private List<RegisterResult> processSearchPersonResponse(
+      @Nonnull List<PersonErgebnisSatzType> personErgebnisSatz,
+      @Nonnull String citizenCountryCode) throws EaafAuthenticationException {
+
+    return personErgebnisSatz.stream()
+        .map(el -> {
+          try {
+            return processPersonResult(el, citizenCountryCode);
+
+          } catch (final EaafAuthenticationException e) {
+            log.warn("Skip ZMR person result by reason: {}", e.getMessage(), e);
+            return null;
+
+          }
+        })
+        .filter(Objects::nonNull)
+        .collect(Collectors.toList());
+
+  }
+
+  @NonNull
+  private List<RegisterResult> processSearchPersonResponseSingleResult(
+      @Nonnull List<PersonErgebnisSatzType> personErgebnisSatz,
+      @Nonnull String citizenCountryCode) throws EaafAuthenticationException {
+    if (personErgebnisSatz.size() > 1) {
+      log.error("Find more than on person with eIDAS personalIdentifier.");
+      throw new EaafAuthenticationException(ERROR_MATCHING_00, null);
+
+    } else {
+      return Arrays.asList(processPersonResult(personErgebnisSatz.get(0), citizenCountryCode));
+
+    }
+  }
+
+  @Nonnull
+  private RegisterResult processPersonResult(
+      @Nonnull PersonErgebnisSatzType personEl, @Nonnull String citizenCountryCode)
+      throws EaafAuthenticationException {
+    // TODO: maybe check on 'null' if ERnP data is also allowed
+    log.debug("Find #{} data sets in person information",
+        personEl.getPersonendaten().getPersonErgebnis().size());
+
+    if (personEl.getPersonendaten().getPersonErgebnis().size() > 1) {
+      log.error("Find more than on person with eIDAS personalIdentifier.");
+      throw new EaafAuthenticationException(ERROR_MATCHING_02, null);
+
+    } else {
+      return mapZmrResponseToRegisterResult(
+          personEl.getPersonendaten().getPersonErgebnis().get(0), citizenCountryCode);
+
+    }
+
+  }
+
+  @Nonnull
+  private RegisterResult mapZmrResponseToRegisterResult(@Nonnull PersonErgebnisType person,
+      @Nonnull String citizenCountryCode) {
+    // TODO: kann ich bei historischen daten davon ausgehen dass die Reihenfolge der
+    // Ergebnisse von aktuell --> alt ist?
+
+    // build result
+    return RegisterResult.builder()
+        .pseudonym(selectAllEidasDocument(person, citizenCountryCode,
+            Constants.eIDAS_ATTRURN_PERSONALIDENTIFIER))
+        .familyName(person.getNatuerlichePerson().getPersonenName().getFamilienname())
+        .givenName(person.getNatuerlichePerson().getPersonenName().getVorname())
+        .dateOfBirth(person.getNatuerlichePerson().getGeburtsdatum())
+        .bpk(extractBpkZp(person.getNatuerlichePerson()))
+        .placeOfBirth(selectSingleEidasDocument(person, citizenCountryCode,
+            Constants.eIDAS_ATTRURN_PERSONALIDENTIFIER))
+        .birthName(selectSingleEidasDocument(person, citizenCountryCode,
+            Constants.eIDAS_ATTRURN_PERSONALIDENTIFIER))        
+        .build();
+
+  }
+
+  private String extractBpkZp(NatuerlichePersonErgebnisType natuerlichePerson) {        
+    String bpk = natuerlichePerson.getIdentification().stream()
+        .filter(el -> Constants.MATCHING_INTERNAL_BPK_TARGET.equals(el.getType()))
+        .findFirst()
+        .map(el -> el.getValue())
+        .orElse(null);
+    if (StringUtils.isEmpty(bpk)) {
+      log.warn("ZMR response contains no 'bPK' for target: 'ZP'");
+        
+    }      
+    return bpk;
+              
+  }
+
+  /**
+   * Get all eIDAS document with the specified country code and document type.
+   *
+   * @param person                         Person information from ZMR
+   * @param citizenCountryCode             Country code of the eIDAS attribute
+   * @param eidasAttrurnPersonalidentifier eIDAS attribute identifier
+   * @return {@link List} of eIDAS attribute values or an empty list if's not
+   *         found
+   */
+  @NonNull
+  private List<String> selectAllEidasDocument(PersonErgebnisType person, String citizenCountryCode,
+      String eidasAttrurnPersonalidentifier) {
+    return person.getEidasIdentitaet().stream()
+        .filter(el -> eidasAttrurnPersonalidentifier.equals(el.getEidasArt())
+            && el.getStaatscode3().equals(citizenCountryCode))
+        .map(el -> el.getDokumentNummer())
+        .collect(Collectors.toList());
+
+  }
+
+  /**
+   * Get the first eIDAS document with the specified country code and document
+   * type.
+   *
+   * @param person                         Person information from ZMR
+   * @param citizenCountryCode             Country code of the eIDAS attribute
+   * @param eidasAttrurnPersonalidentifier eIDAS attribute identifier
+   * @return Value of this eIDAS attribute or <code>null</code> if's not found
+   */
+  @Nullable
+  private String selectSingleEidasDocument(PersonErgebnisType person, String citizenCountryCode,
+      String eidasAttrurnPersonalidentifier) {
+    return person.getEidasIdentitaet().stream()
+        .filter(el -> eidasAttrurnPersonalidentifier.equals(el.getEidasArt())
+            && el.getStaatscode3().equals(citizenCountryCode))
+        .findFirst()
+        .map(el -> el.getDokumentNummer())
+        .orElse(null);
+
+  }
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/MergedRegisterSearchResult.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/MergedRegisterSearchResult.java
deleted file mode 100644
index 0c977016..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/MergedRegisterSearchResult.java
+++ /dev/null
@@ -1,75 +0,0 @@
-/*
- * Copyright 2020 A-SIT Plus GmbH
- * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
- * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
- *
- * Licensed under the EUPL, Version 1.2 or - as soon they will be approved by
- * the European Commission - subsequent versions of the EUPL (the "License");
- * You may not use this work except in compliance with the License.
- * You may obtain a copy of the License at:
- * https://joinup.ec.europa.eu/news/understanding-eupl-v12
- *
- * Unless required by applicable law or agreed to in writing, software
- * distributed under the License is distributed on an "AS IS" basis,
- * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
- * See the License for the specific language governing permissions and
- * limitations under the License.
- *
- * This product combines work with different licenses. See the "NOTICE" text
- * file for details on the various modules and licenses.
- * The "NOTICE" text file is part of the distribution. Any derivative works
- * that you distribute must include a readable copy of the "NOTICE" text file.
- */
-
-package at.asitplus.eidas.specific.modules.auth.eidas.v2.dao;
-
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.WorkflowException;
-import lombok.Data;
-
-import java.util.List;
-
-@Data
-public class MergedRegisterSearchResult {
-
-  private final List<RegisterResult> resultsZmr;
-  private final List<RegisterResult> resultsErnp;
-
-  public MergedRegisterSearchResult(List<RegisterResult> resultsZmr, List<RegisterResult> resultsErnp) {
-    this.resultsZmr = resultsZmr;
-    this.resultsErnp = resultsErnp;
-  }
-
-  public int getResultCount() {
-    return resultsZmr.size() + resultsErnp.size();
-  }
-
-  /**
-   * Verifies that there is only one match and returns the bpk.
-   *
-   * @return bpk bpk of the match
-   * @throws WorkflowException if multiple results have been found
-   */
-  public String getBpk() throws WorkflowException {
-    if (getResultCount() != 1) {
-      throw new WorkflowException("getResultCount() != 1");
-    }
-    return getResult().getBpk();
-  }
-
-  /**
-   * Returns the results, if there is exactly one, throws exception otherwise.
-   *
-   * @return The result
-   * @throws WorkflowException Results does not contain exactly one result
-   */
-  public RegisterResult getResult() throws WorkflowException {
-    if (getResultCount() != 1) {
-      throw new WorkflowException("getResultCount() != 1");
-    }
-    if (resultsZmr.size() == 1) {
-      return resultsZmr.get(0);
-    } else {
-      return resultsErnp.get(0);
-    }
-  }
-}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/RegisterResult.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/RegisterResult.java
index 369a4e31..4959d72f 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/RegisterResult.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/RegisterResult.java
@@ -23,70 +23,29 @@
 
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.dao;
 
+import java.util.List;
+
 import at.gv.e_government.reference.namespace.persondata._20020228.PostalAddressType;
-import lombok.Data;
+import lombok.Builder;
+import lombok.Getter;
 
-@Data
+@Builder
+@Getter
 public class RegisterResult {
 
   // MDS
-  private final String pseudonym;
+  private final List<String> pseudonym;
   private final String givenName;
   private final String familyName;
   private final String dateOfBirth;
 
   // additional attributes
-  private final String placeOfBirth;
-  private final String birthName;
-  private final String taxNumber;
-  private final PostalAddressType address;
-
-  private final String bpk;
+  private String placeOfBirth;
+  private String birthName;
+  private String taxNumber;
+  private PostalAddressType address;
 
-  /**
-   * Register search result.
-   *
-   * @param bpk         The bpk
-   * @param pseudonym   The pseudonym
-   * @param givenName   The givenName
-   * @param familyName  The familyName
-   * @param dateOfBirth The dateOfBirth
-   */
-  public RegisterResult(String bpk, String pseudonym, String givenName, String familyName, String dateOfBirth) {
-    this.bpk = bpk;
-    this.pseudonym = pseudonym;
-    this.givenName = givenName;
-    this.familyName = familyName;
-    this.dateOfBirth = dateOfBirth;
-    this.placeOfBirth = null;
-    this.birthName = null;
-    this.taxNumber = null;
-    this.address = null;
-  }
+  private String bpk;
 
-  /**
-   * Register search result.
-   *
-   * @param bpk          The bpk
-   * @param pseudonym    The pseudonym
-   * @param givenName    The givenName
-   * @param familyName   The familyName
-   * @param dateOfBirth  The dateOfBirth
-   * @param placeOfBirth The placeOfBirth
-   * @param birthName    The birthName
-   * @param taxNumber    The taxNumber
-   * @param address      The address
-   */
-  public RegisterResult(String bpk, String pseudonym, String givenName, String familyName, String dateOfBirth,
-                        String placeOfBirth, String birthName, String taxNumber, PostalAddressType address) {
-    this.bpk = bpk;
-    this.pseudonym = pseudonym;
-    this.givenName = givenName;
-    this.familyName = familyName;
-    this.dateOfBirth = dateOfBirth;
-    this.placeOfBirth = placeOfBirth;
-    this.birthName = birthName;
-    this.taxNumber = taxNumber;
-    this.address = address;
-  }
+    
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleEidasData.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleEidasData.java
index ecf5007a..ab84a45f 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleEidasData.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleEidasData.java
@@ -23,20 +23,32 @@
 
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.dao;
 
+import org.apache.commons.lang3.builder.EqualsBuilder;
+
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.WorkflowException;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.RegisterSearchService.RegisterSearchResult;
 import at.gv.e_government.reference.namespace.persondata._20020228.PostalAddressType;
 import lombok.Builder;
 import lombok.Data;
-import org.apache.commons.lang3.builder.EqualsBuilder;
 
 @Data
 @Builder
 public class SimpleEidasData {
 
+  /**
+   * Full eIDAS personal identifier with prefix.
+   */
   private final String personalIdentifier;
+  
+  /**
+   * Citizen country-code from eIDAS personal-identifier.
+   */  
   private final String citizenCountryCode;
 
   // MDS
+  /**
+   * eIDAS personal identifier without prefix.
+   */
   private final String pseudonym;
   private final String givenName;
   private final String familyName;
@@ -55,16 +67,24 @@ public class SimpleEidasData {
    * @return true or false depending of the data matches
    * @throws WorkflowException if multiple results have been found
    */
-  public boolean equalsRegisterData(MergedRegisterSearchResult result) throws WorkflowException {
+  public boolean equalsRegisterData(RegisterSearchResult result) throws WorkflowException {
+    /*TODO: maybe this is check is not valid, because only the minimum data-set (personalIdentifer, givenName, 
+     *      familyName, dateOfBirth) has to be always available. Any other attributes are optional.
+     *      This check will always evaluate to false if register has more information as current eIDAS process!!! 
+     */
+    
     return new EqualsBuilder()
-        .append(result.getResult().getPseudonym(), pseudonym)
         .append(result.getResult().getGivenName(), givenName)
         .append(result.getResult().getFamilyName(), familyName)
         .append(result.getResult().getDateOfBirth(), dateOfBirth)
         .append(result.getResult().getPlaceOfBirth(), placeOfBirth)
         .append(result.getResult().getBirthName(), birthName)
         .append(result.getResult().getTaxNumber(), taxNumber)
-        .isEquals();
+        .isEquals() && result.getResult().getPseudonym().stream()
+            .filter(el -> el.equals(pseudonym))
+            .findFirst()
+            .isPresent();
+    
   }
 
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleMobileSignatureData.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleMobileSignatureData.java
index 4a27e60e..92e727ea 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleMobileSignatureData.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleMobileSignatureData.java
@@ -23,15 +23,15 @@
 
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.dao;
 
+import org.apache.commons.lang3.builder.EqualsBuilder;
+
 import lombok.Builder;
 import lombok.Data;
-import org.apache.commons.lang3.builder.EqualsBuilder;
 
 @Data
 @Builder
 public class SimpleMobileSignatureData {
 
-  private final String citizenCountryCode;
   private final String bpk;
   private final String givenName;
   private final String familyName;
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernp/DummyErnpClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernp/DummyErnpClient.java
index 3536b0dc..065b17a2 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernp/DummyErnpClient.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernp/DummyErnpClient.java
@@ -23,13 +23,14 @@
 
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.ernp;
 
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
-import org.springframework.stereotype.Service;
-
 import java.util.Collections;
 import java.util.List;
 
+import org.springframework.stereotype.Service;
+
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
+
 @Service("ErnbClientForeIDAS")
 public class DummyErnpClient implements IErnpClient {
 
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernp/IErnpClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernp/IErnpClient.java
index 218a9f41..b3b0c033 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernp/IErnpClient.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernp/IErnpClient.java
@@ -23,11 +23,11 @@
 
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.ernp;
 
+import java.util.List;
+
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
 
-import java.util.List;
-
 public interface IErnpClient {
 
   List<RegisterResult> searchWithPersonIdentifier(String personIdentifier);
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/exception/InvalidUserInputException.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/exception/InvalidUserInputException.java
index f28d8afa..c7df56d0 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/exception/InvalidUserInputException.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/exception/InvalidUserInputException.java
@@ -26,8 +26,9 @@ package at.asitplus.eidas.specific.modules.auth.eidas.v2.exception;
 public class InvalidUserInputException extends EidasSAuthenticationException {
   private static final long serialVersionUID = 1L;
 
-  public InvalidUserInputException() {
-    super("eidas.10", null);
+  public InvalidUserInputException(String errorCode) {
+    super(errorCode, null);
+    
   }
 
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/exception/ManualFixNecessaryException.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/exception/ManualFixNecessaryException.java
index 2fecaa6b..cf69bd2c 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/exception/ManualFixNecessaryException.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/exception/ManualFixNecessaryException.java
@@ -28,11 +28,17 @@ import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
 public class ManualFixNecessaryException extends EidasSAuthenticationException {
   private static final long serialVersionUID = 1L;
 
+  //TODO: should we pass some infos?  
   public ManualFixNecessaryException(String personIdentifier) {
-    super("eidas.09", new Object[] { personIdentifier });
+    super("module.eidasauth.matching.04", new Object[] { personIdentifier });
   }
 
   public ManualFixNecessaryException(SimpleEidasData eidData) {
-    super("eidas.09", new Object[] { eidData.getPseudonym() });//TODO what info to pass???
+    super("module.eidasauth.matching.04", new Object[] { eidData.getPseudonym() });
   }
+  
+  public ManualFixNecessaryException(SimpleEidasData eidData, Throwable e) {
+    super("module.eidasauth.matching.04", new Object[] { eidData.getPseudonym() }, e);
+  }
+  
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/exception/WorkflowException.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/exception/WorkflowException.java
index b6f3309b..795b4386 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/exception/WorkflowException.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/exception/WorkflowException.java
@@ -23,11 +23,72 @@
 
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.exception;
 
+import lombok.Getter;
+
+@Getter
 public class WorkflowException extends EidasSAuthenticationException {
   private static final long serialVersionUID = 1L;
 
-  public WorkflowException(String data) {
-    super("eidas.08", new Object[]{data});
+  private String processStepName;
+  private String errorReason;
+  private boolean requiresManualFix = false;
+  
+  /**
+   * In case of a error during matching work-flow.
+   * 
+   * @param processStep Matching step identifier
+   * @param errorReason Reason for this error
+   */
+  public WorkflowException(String processStep, String errorReason) {
+    super("module.eidasauth.matching.03", new Object[]{processStep, errorReason});    
+    this.processStepName = processStep;
+    this.errorReason = errorReason;
+    
   }
 
+  /**
+   * In case of a error during matching work-flow.
+   * 
+   * @param processStep Matching step identifier
+   * @param errorReason Reason for this error
+   * @param e Catched exception
+   */
+  public WorkflowException(String processStep, String errorReason, Throwable e) {
+    super("module.eidasauth.matching.03", new Object[]{processStep, errorReason}, e);    
+    this.processStepName = processStep;
+    this.errorReason = errorReason;
+    
+  }
+  
+  /**
+   * In case of a error during matching work-flow.
+   * 
+   * @param processStep Matching step identifier
+   * @param errorReason Reason for this error
+   * @param needsManualFix Mark this work-flow as manually fixable 
+   */
+  public WorkflowException(String processStep, String errorReason, boolean needsManualFix) {
+    super("module.eidasauth.matching.03", new Object[]{processStep, errorReason});    
+    this.processStepName = processStep;
+    this.errorReason = errorReason;
+    this.requiresManualFix = needsManualFix;
+    
+  }
+  
+  /**
+   * In case of a error during matching work-flow.
+   * 
+   * @param processStep Matching step identifier
+   * @param errorReason Reason for this error
+   * @param needsManualFix Mark this work-flow as manually fixable 
+   * @param e Catched exception
+   */
+  public WorkflowException(String processStep, String errorReason, boolean needsManualFix, Throwable e) {
+    super("module.eidasauth.matching.03", new Object[]{processStep, errorReason}, e);    
+    this.processStepName = processStep;
+    this.errorReason = errorReason;
+    this.requiresManualFix = needsManualFix;
+    
+  }
+  
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/exception/ZmrCommunicationException.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/exception/ZmrCommunicationException.java
new file mode 100644
index 00000000..a6978458
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/exception/ZmrCommunicationException.java
@@ -0,0 +1,38 @@
+/*
+ * Copyright 2018 A-SIT Plus GmbH
+ * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
+ * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
+ *
+ * Licensed under the EUPL, Version 1.2 or - as soon they will be approved by
+ * the European Commission - subsequent versions of the EUPL (the "License");
+ * You may not use this work except in compliance with the License.
+ * You may obtain a copy of the License at:
+ * https://joinup.ec.europa.eu/news/understanding-eupl-v12
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" basis,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ *
+ * This product combines work with different licenses. See the "NOTICE" text
+ * file for details on the various modules and licenses.
+ * The "NOTICE" text file is part of the distribution. Any derivative works
+ * that you distribute must include a readable copy of the "NOTICE" text file.
+*/
+
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.exception;
+
+public class ZmrCommunicationException extends EidasSAuthenticationException {
+
+  private static final long serialVersionUID = 1L;
+
+  public ZmrCommunicationException(String internalMsgId, Object[] params) {
+    super(internalMsgId, params);
+  }
+
+  public ZmrCommunicationException(String internalMsgId, Object[] params, Throwable e) {
+    super(internalMsgId, params, e);
+  }
+
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/AbstractEidProcessor.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/AbstractEidProcessor.java
index 05254fe2..1050f8d9 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/AbstractEidProcessor.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/AbstractEidProcessor.java
@@ -24,11 +24,13 @@
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.handler;
 
 
+import static at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.EidasResponseUtils.processCountryCode;
+import static at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.EidasResponseUtils.processDateOfBirthToString;
+
 import java.util.Map;
 import java.util.regex.Matcher;
 import java.util.regex.Pattern;
 
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
 import org.apache.commons.lang3.StringUtils;
 import org.joda.time.DateTime;
 import org.slf4j.Logger;
@@ -37,7 +39,9 @@ import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.lang.NonNull;
 
 import com.google.common.collect.ImmutableSortedSet;
+
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidPostProcessingException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidasAttributeException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.EidasAttributeRegistry;
@@ -47,15 +51,11 @@ import at.gv.egiz.eaaf.core.api.IRequest;
 import at.gv.egiz.eaaf.core.api.data.EaafConstants;
 import at.gv.egiz.eaaf.core.api.idp.IConfigurationWithSP;
 import at.gv.egiz.eaaf.core.api.idp.ISpConfiguration;
-
 import eu.eidas.auth.commons.attribute.AttributeDefinition;
 import eu.eidas.auth.commons.attribute.ImmutableAttributeMap;
 import eu.eidas.auth.commons.light.impl.LightRequest.Builder;
 import eu.eidas.auth.commons.protocol.eidas.SpType;
 
-import static at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.EidasResponseUtils.processCountryCode;
-import static at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.EidasResponseUtils.processDateOfBirthToString;
-
 public abstract class AbstractEidProcessor implements INationalEidProcessor {
   private static final Logger log = LoggerFactory.getLogger(AbstractEidProcessor.class);
 
@@ -77,19 +77,26 @@ public abstract class AbstractEidProcessor implements INationalEidProcessor {
   public final SimpleEidasData postProcess(Map<String, Object> eidasAttrMap) throws EidPostProcessingException,
       EidasAttributeException {
     SimpleEidasData.SimpleEidasDataBuilder builder = SimpleEidasData.builder()
+        .personalIdentifier(EidasResponseUtils.processPersonalIdentifier(
+            eidasAttrMap.get(Constants.eIDAS_ATTR_PERSONALIDENTIFIER)))
+        
         // MDS attributes
         .citizenCountryCode(processCountryCode(eidasAttrMap.get(Constants.eIDAS_ATTR_PERSONALIDENTIFIER)))
         .pseudonym(processPseudonym(eidasAttrMap.get(Constants.eIDAS_ATTR_PERSONALIDENTIFIER)))
         .familyName(processFamilyName(eidasAttrMap.get(Constants.eIDAS_ATTR_CURRENTFAMILYNAME)))
         .givenName(processGivenName(eidasAttrMap.get(Constants.eIDAS_ATTR_CURRENTGIVENNAME)))
         .dateOfBirth(processDateOfBirthToString(eidasAttrMap.get(Constants.eIDAS_ATTR_DATEOFBIRTH)))
+
         // additional attributes
         .placeOfBirth(processPlaceOfBirth(eidasAttrMap.get(Constants.eIDAS_ATTR_PLACEOFBIRTH)))
         .birthName(processBirthName(eidasAttrMap.get(Constants.eIDAS_ATTR_BIRTHNAME)))
         .address(processAddress(eidasAttrMap.get(Constants.eIDAS_ATTR_CURRENTADDRESS)));
+    
     if (eidasAttrMap.containsKey(Constants.eIDAS_ATTR_TAXREFERENCE)) {
       builder.taxNumber(EidasResponseUtils.processTaxReference(eidasAttrMap.get(Constants.eIDAS_ATTR_TAXREFERENCE)));
+      
     }
+    
     return builder.build();
   }
 
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/CountrySpecificDetailSearchProcessor.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/CountrySpecificDetailSearchProcessor.java
index 6e8f7fce..c2a62f5c 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/CountrySpecificDetailSearchProcessor.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/CountrySpecificDetailSearchProcessor.java
@@ -23,8 +23,10 @@
 
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.handler;
 
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.MergedRegisterSearchResult;
+import javax.annotation.Nonnull;
+
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
+import at.gv.bmi.namespace.zmr_su.zmr._20040201.PersonSuchenRequest;
 
 public interface CountrySpecificDetailSearchProcessor {
 
@@ -37,11 +39,18 @@ public interface CountrySpecificDetailSearchProcessor {
    * Check if this postProcessor is sensitive for a specific country.
    *
    * @param countryCode of the eID data that should be processed
-   * @param eidData     eID data
+   * @param eidData eID information from eIDAS Proxy-Service
    * @return true if this implementation can handle the country, otherwise false
    */
   boolean canHandle(String countryCode, SimpleEidasData eidData);
 
-  MergedRegisterSearchResult search(SimpleEidasData eidData);
+  /**
+   * Builds a country-specific search person request for ZMR. 
+   * 
+   * @param eidData eID information from eIDAS Proxy-Service
+   * @return {@link PersonSuchenRequest} but never <code>null</code>
+   */
+  @Nonnull
+  PersonSuchenRequest generateSearchRequest(SimpleEidasData eidData);
 
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/DeSpecificDetailSearchProcessor.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/DeSpecificDetailSearchProcessor.java
index 904c41a1..802fde14 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/DeSpecificDetailSearchProcessor.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/DeSpecificDetailSearchProcessor.java
@@ -23,40 +23,39 @@
 
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.handler;
 
+import org.apache.commons.lang3.StringUtils;
+
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.MergedRegisterSearchResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.RegisterSearchService;
+import at.gv.bmi.namespace.zmr_su.zmr._20040201.EidasSuchdatenType;
+import at.gv.bmi.namespace.zmr_su.zmr._20040201.PersonSuchenRequest;
 
 public class DeSpecificDetailSearchProcessor implements CountrySpecificDetailSearchProcessor {
 
-  private final RegisterSearchService registerSearchService;
-
-  public DeSpecificDetailSearchProcessor(RegisterSearchService registerSearchService) {
-    this.registerSearchService = registerSearchService;
-  }
-
   @Override
   public String getName() {
-    return this.getClass().getName();
+    return this.getClass().getSimpleName();
   }
 
   @Override
   public boolean canHandle(String countryCode, SimpleEidasData eidData) {
-    if (!countryCode.equalsIgnoreCase(Constants.COUNTRY_CODE_DE)) {
-      return false;
-    }
-    if (eidData.getBirthName() == null || eidData.getBirthName().isEmpty()) {
-      return false;
-    }
-    if (eidData.getPlaceOfBirth() == null || eidData.getPlaceOfBirth().isEmpty()) {
-      return false;
-    }
-    return true;
+    return countryCode.equalsIgnoreCase(Constants.COUNTRY_CODE_DE) 
+        && StringUtils.isNotEmpty(eidData.getBirthName()) 
+        && StringUtils.isNotEmpty(eidData.getPlaceOfBirth());
+    
   }
 
   @Override
-  public MergedRegisterSearchResult search(SimpleEidasData eidData) {
-    return registerSearchService.searchDeSpecific(eidData);
+  public PersonSuchenRequest generateSearchRequest(SimpleEidasData eidData) {
+    
+    PersonSuchenRequest req = new PersonSuchenRequest();    
+    EidasSuchdatenType eidasInfos = new EidasSuchdatenType();
+    req.setEidasSuchdaten(eidasInfos);
+    
+    
+    //TODO: how we can search for more than one eIDAS attribute as a Set
+    
+    
+    return req;
   }
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ItSpecificDetailSearchProcessor.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ItSpecificDetailSearchProcessor.java
index 7e74a85c..b49c355d 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ItSpecificDetailSearchProcessor.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/ItSpecificDetailSearchProcessor.java
@@ -23,37 +23,31 @@
 
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.handler;
 
+import org.apache.commons.lang3.StringUtils;
+
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.MergedRegisterSearchResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.RegisterSearchService;
+import at.gv.bmi.namespace.zmr_su.zmr._20040201.PersonSuchenRequest;
 
 public class ItSpecificDetailSearchProcessor implements CountrySpecificDetailSearchProcessor {
 
-  private final RegisterSearchService registerSearchService;
-
-  public ItSpecificDetailSearchProcessor(RegisterSearchService registerSearchService) {
-    this.registerSearchService = registerSearchService;
-  }
-
   @Override
   public String getName() {
-    return this.getClass().getName();
+    return this.getClass().getSimpleName();
   }
 
   @Override
   public boolean canHandle(String countryCode, SimpleEidasData eidData) {
-    if (!countryCode.equalsIgnoreCase(Constants.COUNTRY_CODE_IT)) {
-      return false;
-    }
-    if (eidData.getTaxNumber() == null || eidData.getTaxNumber().isEmpty()) {
-      return false;
-    }
-    return true;
+    return countryCode.equalsIgnoreCase(Constants.COUNTRY_CODE_IT) 
+        &&  StringUtils.isNotEmpty(eidData.getTaxNumber());
+
   }
 
   @Override
-  public MergedRegisterSearchResult search(SimpleEidasData eidData) {
-    return registerSearchService.searchItSpecific(eidData);
+  public PersonSuchenRequest generateSearchRequest(SimpleEidasData eidData) {
+
+    //TODO: add IT specific search request if TaxNumber attribute is defined by IT        
+    return new PersonSuchenRequest();
+    
   }
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/service/RegisterSearchService.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/service/RegisterSearchService.java
index 6b524e36..166ffafb 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/service/RegisterSearchService.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/service/RegisterSearchService.java
@@ -1,18 +1,28 @@
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.service;
 
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.MergedRegisterSearchResult;
+import java.math.BigInteger;
+import java.util.Collections;
+import java.util.List;
+
+import javax.annotation.Nonnull;
+
+import org.jetbrains.annotations.Nullable;
+import org.springframework.stereotype.Service;
+
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.clients.zmr.IZmrClient;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.clients.zmr.ZmrSoapClient.ZmrRegisterResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernp.IErnpClient;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidasSAuthenticationException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.WorkflowException;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.IZmrClient;
-import at.gv.egiz.eaaf.core.api.IRequest;
-import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.ZmrCommunicationException;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.CountrySpecificDetailSearchProcessor;
+import lombok.AllArgsConstructor;
+import lombok.Getter;
+import lombok.RequiredArgsConstructor;
+import lombok.Setter;
 import lombok.extern.slf4j.Slf4j;
-import org.springframework.stereotype.Service;
-
-import java.util.Collections;
-import java.util.List;
 
 @Slf4j
 @Service("registerSearchService")
@@ -21,99 +31,277 @@ public class RegisterSearchService {
   private final IZmrClient zmrClient;
   private final IErnpClient ernpClient;
 
-  public RegisterSearchService(IZmrClient zmrClient, IErnpClient ernpClient) {
+  private final List<CountrySpecificDetailSearchProcessor> handlers;
+  
+  /**
+   * Service that combines ZMR and ERnP register search operations.
+   * 
+   * @param handlers Available country-specific search processors
+   * @param zmrClient ZMR client
+   * @param ernpClient ERnP client
+   */
+  public RegisterSearchService(List<CountrySpecificDetailSearchProcessor> handlers, IZmrClient zmrClient,
+      IErnpClient ernpClient) {
     this.zmrClient = zmrClient;
     this.ernpClient = ernpClient;
+    this.handlers = handlers;
+    log.info("Init with #{} search services for country-specific details", handlers.size());
+
   }
 
   /**
-   * Automatic process to fix the register entries.
+   * Search with Person Identifier (eIDAS Pseudonym) in ZMR and ERnP.
    *
-   * @param initialSearchResult Result of initial register search
-   * @param specificSearchResult Result of last register search
-   * @param eidasData Received eidas data
-   * @param pendingReq Pending request
-   * @return The bpk
-   * @throws TaskExecutionException if an error occurs during the register update
+   * @param eidasData            Received eIDAS data
+   * @throws WorkflowException In case of a register interaction error
    */
-  public String step7aKittProcess(MergedRegisterSearchResult initialSearchResult,
-                                  MergedRegisterSearchResult specificSearchResult,
-                                  SimpleEidasData eidasData,
-                                  IRequest pendingReq) throws TaskExecutionException {
-    log.trace("Starting step7aKittProcess");
-    // TODO verify with which data this method gets called
+  @Nonnull
+  public RegisterSearchResult searchWithPersonIdentifier(SimpleEidasData eidasData)
+      throws WorkflowException {
     try {
-      if (initialSearchResult.getResultCount() != 0) {
-        throw new WorkflowException("initialSearchResult.getResultCount() != 0");
-      }
-      if (specificSearchResult.getResultCount() != 1) {
-        throw new WorkflowException("specificSearchResult.getResultCount() != 1");
-      }
-      if (specificSearchResult.getResultsZmr().size() == 1) {
-        zmrClient.update(specificSearchResult.getResultsZmr().get(0), eidasData);
-      }
-      if (specificSearchResult.getResultsErnp().size() == 1) {
-        ernpClient.update(specificSearchResult.getResultsErnp().get(0), eidasData);
-      }
-      return specificSearchResult.getBpk();
-    } catch (WorkflowException e) {
-      throw new TaskExecutionException(pendingReq, "Step7a failed.", e);
+      final ZmrRegisterResult resultsZmr = zmrClient.searchWithPersonIdentifier(
+          null, eidasData.getPersonalIdentifier());            
+      final List<RegisterResult> resultsErnp = ernpClient.searchWithPersonIdentifier(
+          eidasData.getPersonalIdentifier());
+            
+      return new RegisterSearchResult(new RegisterOperationStatus(resultsZmr.getProcessId()), 
+          resultsZmr.getPersonResult(), resultsErnp);
+
+    } catch (final EidasSAuthenticationException e) {
+      throw new WorkflowException("searchWithPersonalIdentifier", e.getMessage(), 
+          !(e instanceof ZmrCommunicationException), e);
+
     }
   }
 
   /**
    * Search with MDS (Given Name, Family Name, Date of Birth) in ZMR and ERnP.
+   *
+   * @param operationStatus Current register-operation status that contains processing informations
+   * @param eidasData       Received eIDAS data
+   * @throws WorkflowException In case of a register interaction error
    */
-  public MergedRegisterSearchResult searchWithMds(SimpleEidasData eidasData) {
-    List<RegisterResult> resultsZmr =
-        zmrClient.searchWithMds(eidasData.getGivenName(), eidasData.getFamilyName(), eidasData.getDateOfBirth());
-    List<RegisterResult> resultsErnp =
-        ernpClient.searchWithMds(eidasData.getGivenName(), eidasData.getFamilyName(), eidasData.getDateOfBirth());
-    return new MergedRegisterSearchResult(resultsZmr, resultsErnp);
+  @Nonnull
+  public RegisterSearchResult searchWithMds(RegisterOperationStatus operationStatus, SimpleEidasData eidasData)
+      throws WorkflowException {
+    try {
+      final ZmrRegisterResult resultsZmr =
+          zmrClient.searchWithMds(operationStatus.getZmrProcessId(), eidasData.getGivenName(), 
+              eidasData.getFamilyName(), eidasData.getDateOfBirth(), eidasData.getCitizenCountryCode());
+      
+      final List<RegisterResult> resultsErnp =
+          ernpClient.searchWithMds(eidasData.getGivenName(), eidasData.getFamilyName(), eidasData
+              .getDateOfBirth());
+      
+      return new RegisterSearchResult(new RegisterOperationStatus(resultsZmr.getProcessId()), 
+          resultsZmr.getPersonResult(), resultsErnp);
+
+    } catch (final EidasSAuthenticationException e) {
+      throw new WorkflowException("searchWithMDSOnly", e.getMessage(), 
+          !(e instanceof ZmrCommunicationException), e);
+
+    }
   }
 
   /**
-   * Search with Person Identifier (eIDAS Pseudonym) in ZMR and ERnP.
+   * Search with country-specific parameters based on information from available
+   * {@link CountrySpecificDetailSearchProcessor} implementations.
+   * 
+   * @param operationStatus Current register-operation status that contains processing informations
+   * @param eidasData Receive eIDAS eID information
+   * @return Results from ZMR or ERnP search
+   * @throws WorkflowException In case of a register interaction error
    */
-  public MergedRegisterSearchResult searchWithPersonIdentifier(SimpleEidasData eidasData) {
-    List<RegisterResult> resultsZmr = zmrClient.searchWithPersonIdentifier(eidasData.getPseudonym());
-    List<RegisterResult> resultsErnp = ernpClient.searchWithPersonIdentifier(eidasData.getPseudonym());
-    return new MergedRegisterSearchResult(resultsZmr, resultsErnp);
+  @Nonnull
+  public RegisterSearchResult searchWithCountrySpecifics(RegisterOperationStatus operationStatus, 
+      SimpleEidasData eidasData) throws WorkflowException {
+    try {
+      @Nullable
+      final CountrySpecificDetailSearchProcessor ccSpecificProcessor = findSpecificProcessor(eidasData);
+      if (ccSpecificProcessor != null) {
+        log.debug("Selecting country-specific search processor: {}", ccSpecificProcessor.getName());
+        final ZmrRegisterResult resultsZmr =
+            zmrClient.searchCountrySpecific(operationStatus.getZmrProcessId(), 
+                ccSpecificProcessor.generateSearchRequest(eidasData),
+                eidasData.getCitizenCountryCode());
+
+        // TODO: add search procesfor for ERnP searching
+        return new RegisterSearchResult(operationStatus, resultsZmr.getPersonResult(), Collections.emptyList());
+
+      } else {
+        return new RegisterSearchResult(operationStatus, Collections.emptyList(), Collections.emptyList());
+
+      }
+
+    } catch (final EidasSAuthenticationException e) {
+      throw new WorkflowException("searchWithCountrySpecifics", e.getMessage(), 
+          !(e instanceof ZmrCommunicationException), e);
+
+    }
   }
 
   /**
-   * Search with Tax Number in ZMR and ERnP.
+   * Search with BPK-ZP in BMR and ERnP.
    */
-  public MergedRegisterSearchResult searchItSpecific(SimpleEidasData eidasData) {
-    List<RegisterResult> resultsZmr = zmrClient.searchItSpecific(eidasData.getTaxNumber());
-    List<RegisterResult> resultsErnb = ernpClient.searchItSpecific(eidasData.getTaxNumber());
-    return new MergedRegisterSearchResult(resultsZmr, resultsErnb);
+  public RegisterSearchResult searchWithBpkZp(RegisterOperationStatus operationStatus, String bpkZp) {
+    final ZmrRegisterResult resultsZmr = zmrClient.searchWithBpkZp(
+        operationStatus.getZmrProcessId(), bpkZp);
+    final List<RegisterResult> resultsErnp = ernpClient.searchWithBpkZp(bpkZp); 
+    return new RegisterSearchResult(operationStatus, resultsZmr.getPersonResult(), resultsErnp);
+
   }
 
   /**
-   * Search with Given Name, Family Name, Date of Birth, Place of Birth and Birth Name in ZMR and ERnP.
+   * Search with residence infos.
+   * 
+   * @param operationStatus Current register-operation status that contains processing informations
+   * @param zipcode Provided Zipcode
+   * @param city Provided City
+   * @param street Provided street 
+   * @return Results from ZMR or ERnP search
    */
-  public MergedRegisterSearchResult searchDeSpecific(SimpleEidasData eidasData) {
-    List<RegisterResult> resultsZmr =
-        zmrClient.searchDeSpecific(eidasData.getGivenName(), eidasData.getFamilyName(), eidasData.getDateOfBirth(),
-            eidasData.getPlaceOfBirth(), eidasData.getBirthName());
-    List<RegisterResult> resultsErnb =
-        ernpClient.searchDeSpecific(eidasData.getGivenName(), eidasData.getFamilyName(), eidasData.getDateOfBirth(),
-            eidasData.getPlaceOfBirth(), eidasData.getBirthName());
-    return new MergedRegisterSearchResult(resultsZmr, resultsErnb);
+  public RegisterSearchResult searchWithResidence(RegisterOperationStatus operationStatus, SimpleEidasData eidasData, 
+      String zipcode, String city, String street) {
+    final ZmrRegisterResult resultsZmr = zmrClient.searchWithResidenceData(
+        operationStatus.getZmrProcessId(), eidasData.getGivenName(), eidasData.getFamilyName(), 
+        eidasData.getDateOfBirth(), zipcode, city, street);
+    return new RegisterSearchResult(operationStatus, resultsZmr.getPersonResult(), Collections.emptyList());
+
   }
 
   /**
-   * Search with BPK-ZP in BMR and ERnP.
+   * Automatic process to fix the register entries.
+   *
+   * @param specificSearchResult Result of last register search
+   * @param eidasData            Received eidas data
+   */
+  public void step7aKittProcess(RegisterSearchResult specificSearchResult,
+      SimpleEidasData eidasData) throws WorkflowException {
+    log.trace("Starting step7aKittProcess");
+    // TODO verify with which data this method gets called
+    if (specificSearchResult.getResultCount() != 1) {
+      throw new WorkflowException("step7aKittProcess", "getResultCount() != 1");
+
+    }
+    
+    if (specificSearchResult.getResultsZmr().size() == 1) {
+      zmrClient.update(specificSearchResult.getOperationStatus().getZmrProcessId(),
+          
+          specificSearchResult.getResultsZmr().get(0), eidasData);
+    }
+    
+    if (specificSearchResult.getResultsErnp().size() == 1) {
+      ernpClient.update(specificSearchResult.getResultsErnp().get(0), eidasData);
+      
+    }
+        
+  }
+  
+  @Nullable
+  private CountrySpecificDetailSearchProcessor findSpecificProcessor(SimpleEidasData eidasData) {
+    final String citizenCountry = eidasData.getCitizenCountryCode();
+    for (final CountrySpecificDetailSearchProcessor processor : handlers) {
+      if (processor.canHandle(citizenCountry, eidasData)) {
+        log.debug("Found suitable search handler for {} by using: {}", citizenCountry, processor.getName());
+        return processor;
+      }
+    }
+    return null;
+  }
+  
+  /**
+   * Register releated information that are needed for any request.
+   * 
+   * @author tlenz
+   *
    */
-  public MergedRegisterSearchResult searchWithBpkZp(String bpkZp) {
-    List<RegisterResult> resultsZmr = zmrClient.searchWithBpkZp(bpkZp);
-    List<RegisterResult> resultsErnp = ernpClient.searchWithBpkZp(bpkZp);
-    return new MergedRegisterSearchResult(resultsZmr, resultsErnp);
+  @AllArgsConstructor
+  @Getter
+  public static class RegisterOperationStatus {
+    
+    /**
+     * ZMR internal processId that is required for any further request in the same process.
+     */
+    private BigInteger zmrProcessId;
+    
+    
   }
+  
+  /**
+   * Response container for {@link RegisterSearchService}.
+   * 
+   * @author tlenz
+   *
+   */
+  @Getter
+  @RequiredArgsConstructor
+  public static class RegisterSearchResult {
+    
+    /**
+     * Mark the register result finished.
+     */
+    @Setter
+    private boolean matchingFinished = false;
+    
+    /**
+     * Operation status for this result.
+     */
+    private final RegisterOperationStatus operationStatus;
+    
+    /**
+     * Current ZMR search result.
+     */
+    private final List<RegisterResult> resultsZmr;
+    
+    /**
+     * Current ERnP search result.
+     */
+    private final List<RegisterResult> resultsErnp;
+    
+    
+    /**
+     * Get sum of ZMR and ERnP results.
+     * 
+     * @return number of results
+     */
+    public int getResultCount() {
+      return resultsZmr.size() + resultsErnp.size();
+    }
+
+    /**
+     * Verifies that there is only one match and returns the bpk.
+     *
+     * @return bpk bpk of the match
+     * @throws WorkflowException if multiple results have been found or matching is not marked as finished
+     */
+    public String getBpk() throws WorkflowException {
+      if (getResultCount() != 1 || !matchingFinished) {
+        throw new WorkflowException("readRegisterResults", 
+            matchingFinished ? "getResultCount() != 1" : "matching prozess not finished yet");
+        
+      }
+      return getResult().getBpk();
+    }
 
-  public MergedRegisterSearchResult searchWithResidence(String zipcode, String city, String street) {
-    List<RegisterResult> resultsZmr = zmrClient.searchWithResidenceData(zipcode, city, street);
-    return new MergedRegisterSearchResult(resultsZmr, Collections.emptyList());
+    /**
+     * Returns the results, if there is exactly one, throws exception otherwise.
+     *
+     * @return The result
+     * @throws WorkflowException Results does not contain exactly one result
+     */
+    public RegisterResult getResult() throws WorkflowException {
+      if (getResultCount() != 1) {
+        throw new WorkflowException("readRegisterResults", "getResultCount() != 1");
+      }
+      if (resultsZmr.size() == 1) {
+        return resultsZmr.get(0);
+        
+      } else {
+        return resultsErnp.get(0);
+        
+      }
+    }
+    
   }
+
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/szr/SzrClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/szr/SzrClient.java
deleted file mode 100644
index 2d612f0c..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/szr/SzrClient.java
+++ /dev/null
@@ -1,601 +0,0 @@
-/*
- * Copyright 2018 A-SIT Plus GmbH
- * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
- * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
- *
- * Licensed under the EUPL, Version 1.2 or - as soon they will be approved by
- * the European Commission - subsequent versions of the EUPL (the "License");
- * You may not use this work except in compliance with the License.
- * You may obtain a copy of the License at:
- * https://joinup.ec.europa.eu/news/understanding-eupl-v12
- *
- * Unless required by applicable law or agreed to in writing, software
- * distributed under the License is distributed on an "AS IS" basis,
- * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
- * See the License for the specific language governing permissions and
- * limitations under the License.
- *
- * This product combines work with different licenses. See the "NOTICE" text
- * file for details on the various modules and licenses.
- * The "NOTICE" text file is part of the distribution. Any derivative works
- * that you distribute must include a readable copy of the "NOTICE" text file.
- */
-
-package at.asitplus.eidas.specific.modules.auth.eidas.v2.szr;
-
-import java.io.ByteArrayInputStream;
-import java.io.ByteArrayOutputStream;
-import java.io.IOException;
-import java.net.URL;
-import java.nio.charset.StandardCharsets;
-import java.security.KeyManagementException;
-import java.security.KeyStore;
-import java.security.KeyStoreException;
-import java.security.NoSuchAlgorithmException;
-import java.security.SecureRandom;
-import java.security.UnrecoverableKeyException;
-import java.util.ArrayList;
-import java.util.Collections;
-import java.util.HashMap;
-import java.util.List;
-import java.util.Map;
-
-import javax.annotation.PostConstruct;
-import javax.net.ssl.KeyManager;
-import javax.net.ssl.KeyManagerFactory;
-import javax.net.ssl.SSLContext;
-import javax.net.ssl.TrustManager;
-import javax.net.ssl.TrustManagerFactory;
-import javax.xml.XMLConstants;
-import javax.xml.bind.JAXBContext;
-import javax.xml.bind.Marshaller;
-import javax.xml.namespace.QName;
-import javax.xml.transform.Source;
-import javax.xml.transform.Transformer;
-import javax.xml.transform.TransformerException;
-import javax.xml.transform.TransformerFactory;
-import javax.xml.transform.stream.StreamResult;
-import javax.xml.transform.stream.StreamSource;
-import javax.xml.ws.BindingProvider;
-import javax.xml.ws.Dispatch;
-import javax.xml.ws.handler.Handler;
-
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
-import at.gv.e_government.reference.namespace.persondata._20020228.AlternativeNameType;
-import at.gv.e_government.reference.namespace.persondata._20020228.PersonNameType;
-import at.gv.e_government.reference.namespace.persondata._20020228.PhysicalPersonType;
-import org.apache.commons.lang3.StringUtils;
-import org.apache.cxf.configuration.jsse.TLSClientParameters;
-import org.apache.cxf.endpoint.Client;
-import org.apache.cxf.frontend.ClientProxy;
-import org.apache.cxf.jaxws.DispatchImpl;
-import org.apache.cxf.transport.http.HTTPConduit;
-import org.apache.cxf.transports.http.configuration.HTTPClientPolicy;
-import org.apache.xpath.XPathAPI;
-import org.slf4j.Logger;
-import org.slf4j.LoggerFactory;
-import org.springframework.beans.factory.annotation.Autowired;
-import org.springframework.stereotype.Service;
-import org.w3c.dom.Document;
-import org.w3c.dom.Element;
-
-import com.fasterxml.jackson.core.JsonProcessingException;
-import com.fasterxml.jackson.databind.ObjectMapper;
-
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.SzrCommunicationException;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.LoggingHandler;
-import at.gv.egiz.eaaf.core.api.data.PvpAttributeDefinitions;
-import at.gv.egiz.eaaf.core.api.data.XmlNamespaceConstants;
-import at.gv.egiz.eaaf.core.api.idp.IConfiguration;
-import at.gv.egiz.eaaf.core.impl.utils.DomUtils;
-import at.gv.egiz.eaaf.core.impl.utils.FileUtils;
-import at.gv.egiz.eaaf.core.impl.utils.KeyStoreUtils;
-import szrservices.GetBPK;
-import szrservices.GetBPKResponse;
-import szrservices.GetIdentityLinkEidas;
-import szrservices.GetIdentityLinkEidasResponse;
-import szrservices.IdentityLinkType;
-import szrservices.JwsHeaderParam;
-import szrservices.ObjectFactory;
-import szrservices.PersonInfoType;
-import szrservices.SZR;
-import szrservices.SZRException_Exception;
-import szrservices.SignContent;
-import szrservices.SignContentEntry;
-import szrservices.SignContentResponseType;
-import szrservices.TravelDocumentType;
-
-
-@Service("SZRClientForeIDAS")
-public class SzrClient {
-  private static final Logger log = LoggerFactory.getLogger(SzrClient.class);
-
-  private static final String CLIENT_DEFAULT = "DefaultClient";
-  private static final String CLIENT_RAW = "RawClient";
-
-  private static final String ATTR_NAME_VSZ = "urn:eidgvat:attributes.vsz.value";
-  private static final String ATTR_NAME_PUBKEYS = "urn:eidgvat:attributes.user.pubkeys";
-  private static final String ATTR_NAME_STATUS = "urn:eidgvat:attributes.eid.status";
-  private static final String KEY_BC_BIND = "bcBindReq";
-  private static final String JOSE_HEADER_USERCERTPINNING_TYPE = "urn:at.gv.eid:bindtype";
-  private static final String JOSE_HEADER_USERCERTPINNING_EIDASBIND = "urn:at.gv.eid:eidasBind";
-  public static final String ATTR_NAME_MDS = "urn:eidgvat:mds";
-
-  @SuppressWarnings("SpringJavaInjectionPointsAutowiringInspection")
-  @Autowired
-  private IConfiguration basicConfig;
-
-  // client for anything, without identitylink
-  private SZR szr = null;
-
-  // RAW client is needed for identitylink
-  private Dispatch<Source> dispatch = null;
-
-  final ObjectMapper mapper = new ObjectMapper();
-
-  /**
-   * Get IdentityLink of a person.
-   *
-   *
-   * @param eidData minimum dataset of person
-   * @return IdentityLink
-   * @throws SzrCommunicationException In case of a SZR error
-   */
-  public IdentityLinkType getIdentityLinkInRawMode(SimpleEidasData eidData)
-      throws SzrCommunicationException {
-    try {
-      final GetIdentityLinkEidas getIdl = new GetIdentityLinkEidas();
-      getIdl.setPersonInfo(generateSzrRequest(eidData));
-
-      final JAXBContext jaxbContext = JAXBContext.newInstance(ObjectFactory.class);
-      final Marshaller jaxbMarshaller = jaxbContext.createMarshaller();
-
-      final ByteArrayOutputStream outputStream = new ByteArrayOutputStream();
-      jaxbMarshaller.marshal(getIdl, outputStream);
-      outputStream.flush();
-
-      final Source source = new StreamSource(new ByteArrayInputStream(outputStream.toByteArray()));
-      outputStream.close();
-
-      log.trace("Requesting SZR ... ");
-      final Source response = dispatch.invoke(source);
-      log.trace("Receive RAW response from SZR");
-
-      final byte[] szrResponse = sourceToByteArray(response);
-      final GetIdentityLinkEidasResponse jaxbElement = (GetIdentityLinkEidasResponse) jaxbContext
-          .createUnmarshaller().unmarshal(new ByteArrayInputStream(szrResponse));
-
-      // build response
-      log.trace(new String(szrResponse, StandardCharsets.UTF_8));
-
-      // ok, we have success
-      final Document doc = DomUtils.parseDocument(
-          new ByteArrayInputStream(szrResponse),
-          true,
-          XmlNamespaceConstants.ALL_SCHEMA_LOCATIONS + " " + Constants.SZR_SCHEMA_LOCATIONS,
-          null, null);
-      final String xpathExpression = "//saml:Assertion";
-      final Element nsNode = doc.createElementNS("urn:oasis:names:tc:SAML:1.0:assertion", "saml:NSNode");
-
-      log.trace("Selecting signed doc " + xpathExpression);
-      final Element documentNode = (Element) XPathAPI.selectSingleNode(doc,
-          xpathExpression, nsNode);
-      log.trace("Signed document: " + DomUtils.serializeNode(documentNode));
-
-      final IdentityLinkType idl = new IdentityLinkType();
-      idl.setAssertion(documentNode);
-      idl.setPersonInfo(jaxbElement.getGetIdentityLinkReturn().getPersonInfo());
-
-      return idl;
-
-    } catch (final Exception e) {
-      log.warn("SZR communication FAILED. Reason: " + e.getMessage(), e);
-      throw new SzrCommunicationException("ernb.02", new Object[]{e.getMessage()}, e);
-
-    }
-
-  }
-
-  /**
-   * Get bPK of person.
-   *
-   *
-   * @param eidData    Minimum dataset of person
-   * @param target     requested bPK target
-   * @param vkz        Verfahrenskennzeichen
-   * @return bPK for this person
-   * @throws SzrCommunicationException In case of a SZR error
-   */
-  public List<String> getBpk(SimpleEidasData eidData, String target, String vkz)
-      throws SzrCommunicationException {
-    try {
-      final GetBPK parameters = new GetBPK();
-      parameters.setPersonInfo(generateSzrRequest(eidData));
-      parameters.getBereichsKennung().add(target);
-      parameters.setVKZ(vkz);
-      final GetBPKResponse result = this.szr.getBPK(parameters);
-
-      return result.getGetBPKReturn();
-
-    } catch (final SZRException_Exception e) {
-      log.warn("SZR communication FAILED. Reason: " + e.getMessage(), e);
-      throw new SzrCommunicationException("ernb.02", new Object[]{e.getMessage()}, e);
-
-    }
-
-  }
-
-  /**
-   * Creates a new ERnP entry.
-   * TODO Is this correct? Ask BMI.
-   *
-   * @param eidasData Minimum dataset of person
-   * @return encrypted baseId
-   * @throws SzrCommunicationException    In case of a SZR error
-   */
-  public String createNewErnpEntry(final SimpleEidasData eidasData) throws SzrCommunicationException {
-    final String resp;
-    try {
-      resp = this.szr.getStammzahlEncrypted(generateSzrRequest(eidasData), true);
-    } catch (SZRException_Exception e) {
-      throw new SzrCommunicationException("ernb.02", new Object[]{e.getMessage()}, e);
-    }
-    if (StringUtils.isEmpty(resp)) {
-      throw new SzrCommunicationException("ernb.01", new Object[]{"Stammzahl response empty"}); // TODO error handling
-    }
-    return resp;
-  }
-
-  /**
-   * Request a encrypted baseId from SZR.
-   *
-   * <b>Note</b>: Previously, this method did create a new ERnP entry, if it did not exist. This is
-   * <b>not</b> the case any more. See {@link #createNewErnpEntry(SimpleEidasData)} for that functionality.
-   *
-   * @param eidData Minimum dataset of person
-   * @return encrypted baseId
-   * @throws SzrCommunicationException    In case of a SZR error
-   */
-  public String getEncryptedStammzahl(final SimpleEidasData eidData)
-      throws SzrCommunicationException {
-    final String resp;
-    try {
-      resp = this.szr.getStammzahlEncrypted(generateSzrRequest(eidData), false);
-    } catch (SZRException_Exception e) {
-      throw new SzrCommunicationException("ernb.02", new Object[]{e.getMessage()}, e);
-    }
-
-    if (StringUtils.isEmpty(resp)) {
-      throw new SzrCommunicationException("ernb.01", new Object[]{"Stammzahl response empty"}); // TODO error handling
-    }
-
-    return resp;
-
-  }
-
-  /**
-   * Sign an eidasBind data-structure that combines vsz with user's pubKey and E-ID status.
-   *
-   * @param vsz encrypted baseId
-   * @param bindingPubKey  binding PublicKey as PKCS1# (ASN.1) container
-   * @param eidStatus Status of the E-ID
-   * @param eidData eID information that was used for ERnP registration
-   * @return bPK for this person
-   * @throws SzrCommunicationException In case of a SZR error
-   */
-  public String getEidasBind(final String vsz, final String bindingPubKey, final String eidStatus,
-                             SimpleEidasData eidData)throws SzrCommunicationException {
-
-    final Map<String, Object> eidsaBindMap = new HashMap<>();
-    eidsaBindMap.put(ATTR_NAME_VSZ, vsz);
-    eidsaBindMap.put(ATTR_NAME_STATUS, eidStatus);
-    eidsaBindMap.put(ATTR_NAME_PUBKEYS, Collections.singletonList(bindingPubKey));
-    eidsaBindMap.put(PvpAttributeDefinitions.EID_ISSUING_NATION_NAME, eidData.getCitizenCountryCode());
-    injectMdsIfAvailableAndActive(eidsaBindMap, eidData);
-
-    try {
-      final String serializedEidasBind = mapper.writeValueAsString(eidsaBindMap);
-      final SignContent req = new SignContent();
-      final SignContentEntry eidasBindInfo = new SignContentEntry();
-      eidasBindInfo.setKey(KEY_BC_BIND);
-      eidasBindInfo.setValue(serializedEidasBind);
-      req.getIn().add(eidasBindInfo);
-      req.setAppendCert(false);
-      final JwsHeaderParam eidasBindJoseHeader = new JwsHeaderParam();
-      eidasBindJoseHeader.setKey(JOSE_HEADER_USERCERTPINNING_TYPE);
-      eidasBindJoseHeader.setValue(JOSE_HEADER_USERCERTPINNING_EIDASBIND);
-      req.getJWSHeaderParam().add(eidasBindJoseHeader);
-
-      log.trace("Requesting SZR to sign bcBind datastructure ... ");
-      final SignContentResponseType resp = szr.signContent(req.isAppendCert(), req.getJWSHeaderParam(), req.getIn());
-      log.trace("Receive SZR response on bcBind siging operation ");
-
-      if (resp == null || resp.getOut() == null
-          || resp.getOut().isEmpty()
-          || StringUtils.isEmpty(resp.getOut().get(0).getValue())) {
-        throw new SzrCommunicationException("ernb.01", new Object[]{"BcBind response empty"});
-      }
-
-      return resp.getOut().get(0).getValue();
-
-    } catch (final JsonProcessingException | SZRException_Exception e) {
-      log.warn("Requesting bcBind by using SZR FAILED.", e);
-      throw new SzrCommunicationException("ernb.02",
-          new Object[]{e.getMessage()}, e);
-    }
-  }
-
-  private PersonInfoType generateSzrRequest(SimpleEidasData eidData) {
-    log.debug("Starting connecting SZR Gateway");
-    final PersonInfoType personInfo = new PersonInfoType();
-    final PersonNameType personName = new PersonNameType();
-    final PhysicalPersonType naturalPerson = new PhysicalPersonType();
-    final TravelDocumentType eDocument = new TravelDocumentType();
-
-    naturalPerson.setName(personName);
-    personInfo.setPerson(naturalPerson);
-    personInfo.setTravelDocument(eDocument);
-
-    // person information
-    personName.setFamilyName(eidData.getFamilyName());
-    personName.setGivenName(eidData.getGivenName());
-    naturalPerson.setDateOfBirth(eidData.getDateOfBirth());
-    eDocument.setIssuingCountry(eidData.getCitizenCountryCode());
-    eDocument.setDocumentNumber(eidData.getPseudonym());
-
-    // eID document information
-    String documentType = basicConfig
-        .getBasicConfiguration(Constants.CONIG_PROPS_EIDAS_SZRCLIENT_PARAMS_EDOCUMENTTYPE,
-                               Constants.SZR_CONSTANTS_DEFAULT_DOCUMENT_TYPE);
-    eDocument.setDocumentType(documentType);
-
-    // set PlaceOfBirth if available
-    if (eidData.getPlaceOfBirth() != null) {
-      log.trace("Find 'PlaceOfBirth' attribute: " + eidData.getPlaceOfBirth());
-      boolean setPlaceOfBirth = basicConfig
-          .getBasicConfigurationBoolean(Constants.CONIG_PROPS_EIDAS_SZRCLIENT_PARAMS_SETPLACEOFBIRTHIFAVAILABLE, true);
-      if (setPlaceOfBirth) {
-        naturalPerson.setPlaceOfBirth(eidData.getPlaceOfBirth());
-        log.trace("Adding 'PlaceOfBirth' to ERnB request ... ");
-      }
-    }
-
-    // set BirthName if available
-    if (eidData.getBirthName() != null) {
-      log.trace("Find 'BirthName' attribute: " + eidData.getBirthName());
-      boolean setBirthName = basicConfig
-          .getBasicConfigurationBoolean(Constants.CONIG_PROPS_EIDAS_SZRCLIENT_PARAMS_SETBIRTHNAMEIFAVAILABLE, true);
-      if (setBirthName) {
-        final AlternativeNameType alternativeName = new AlternativeNameType();
-        naturalPerson.setAlternativeName(alternativeName);
-        alternativeName.setFamilyName(eidData.getBirthName());
-        log.trace("Adding 'BirthName' to ERnB request ... ");
-      }
-    }
-
-    return personInfo;
-  }
-
-  @PostConstruct
-  private void initialize() {
-    log.info("Starting SZR-Client initialization .... ");
-    final URL url = SzrClient.class.getResource("/szr_client/SZR_v4.0.wsdl");
-
-    final boolean useTestSzr = basicConfig.getBasicConfigurationBoolean(
-        Constants.CONIG_PROPS_EIDAS_SZRCLIENT_USETESTSERVICE,
-        true);
-
-    SzrService szrService;
-    QName qname;
-    String szrUrl;
-    if (useTestSzr) {
-      log.debug("Initializing SZR test environment configuration.");
-      qname = SzrService.SZRTestumgebung;
-      szrService = new SzrService(url, new QName("urn:SZRServices", "SZRService"));
-      szr = szrService.getSzrTestumgebung();
-      szrUrl = basicConfig.getBasicConfiguration(Constants.CONIG_PROPS_EIDAS_SZRCLIENT_ENDPOINT_TEST);
-
-    } else {
-      log.debug("Initializing SZR productive configuration.");
-      qname = SzrService.SZRProduktionsumgebung;
-      szrService = new SzrService(url, new QName("urn:SZRServices", "SZRService"));
-      szr = szrService.getSzrProduktionsumgebung();
-      szrUrl = basicConfig.getBasicConfiguration(Constants.CONIG_PROPS_EIDAS_SZRCLIENT_ENDPOINT_PROD);
-
-    }
-
-    // create raw client;
-    dispatch = szrService.createDispatch(qname, Source.class, javax.xml.ws.Service.Mode.PAYLOAD);
-
-    if (StringUtils.isEmpty(szrUrl)) {
-      log.error("No SZR service-URL found. SZR-Client initalisiation failed.");
-      throw new RuntimeException("No SZR service URL found. SZR-Client initalisiation failed.");
-
-    }
-
-    // check if Clients can be initialized
-    if (szr == null) {
-      log.error("SZR " + CLIENT_DEFAULT + " is 'NULL'. Something goes wrong");
-      throw new RuntimeException("SZR " + CLIENT_DEFAULT + " is 'NULL'. Something goes wrong");
-
-    }
-    if (dispatch == null) {
-      log.error("SZR " + CLIENT_RAW + " is 'NULL'. Something goes wrong");
-      throw new RuntimeException("SZR " + CLIENT_RAW + " is 'NULL'. Something goes wrong");
-
-    }
-
-    // inject handler
-    log.info("Use SZR service-URL: " + szrUrl);
-    injectBindingProvider((BindingProvider) szr, CLIENT_DEFAULT, szrUrl);
-    injectBindingProvider(dispatch, CLIENT_RAW, szrUrl);
-
-    // inject http parameters and SSL context
-    log.debug("Inject HTTP client settings ... ");
-    injectHttpClient(szr, CLIENT_DEFAULT, szrUrl);
-    injectHttpClient(dispatch, CLIENT_RAW, szrUrl);
-
-    log.info("SZR-Client initialization successfull");
-  }
-
-  private void injectHttpClient(Object raw, String clientType, String szrUrl) {
-    // extract client from implementation
-    Client client;
-    if (raw instanceof DispatchImpl<?>) {
-      client = ((DispatchImpl<?>) raw).getClient();
-    } else if (raw instanceof Client) {
-      client = ClientProxy.getClient(raw);
-    } else {
-      throw new RuntimeException("SOAP Client for SZR connection is of UNSUPPORTED type: " + raw.getClass()
-          .getName());
-    }
-
-    // set basic connection policies
-    final HTTPConduit http = (HTTPConduit) client.getConduit();
-
-    // set timeout policy
-    final HTTPClientPolicy httpClientPolicy = new HTTPClientPolicy();
-    String connectionTimeout = basicConfig.getBasicConfiguration(
-        Constants.CONIG_PROPS_EIDAS_SZRCLIENT_TIMEOUT_CONNECTION, Constants.HTTP_CLIENT_DEFAULT_TIMEOUT_CONNECTION);
-    httpClientPolicy.setConnectionTimeout(Integer.parseInt(connectionTimeout) * 1000L);
-    String responseTimeout = basicConfig.getBasicConfiguration(
-        Constants.CONIG_PROPS_EIDAS_SZRCLIENT_TIMEOUT_RESPONSE, Constants.HTTP_CLIENT_DEFAULT_TIMEOUT_RESPONSE);
-    httpClientPolicy.setReceiveTimeout(Integer.parseInt(responseTimeout) * 1000L);
-    http.setClient(httpClientPolicy);
-
-    // inject SSL context in case of https
-    if (szrUrl.toLowerCase().startsWith("https")) {
-      log.debug("Adding SSLContext to client: " + clientType + " ... ");
-      final TLSClientParameters tlsParams = new TLSClientParameters();
-      tlsParams.setSSLSocketFactory(createSslContext(clientType).getSocketFactory());
-      http.setTlsClientParameters(tlsParams);
-      log.info("SSLContext initialized for client: " + clientType);
-
-    }
-
-  }
-
-  private void injectBindingProvider(BindingProvider bindingProvider, String clientType, String szrUrl) {
-    final Map<String, Object> requestContext = bindingProvider.getRequestContext();
-    requestContext.put(BindingProvider.ENDPOINT_ADDRESS_PROPERTY, szrUrl);
-
-    log.trace("Adding JAX-WS request/response trace handler to client: " + clientType);
-    List<Handler> handlerList = bindingProvider.getBinding().getHandlerChain();
-    if (handlerList == null) {
-      handlerList = new ArrayList<>();
-      bindingProvider.getBinding().setHandlerChain(handlerList);
-
-    }
-
-    // add logging handler to trace messages if required
-    if (basicConfig.getBasicConfigurationBoolean(
-        Constants.CONIG_PROPS_EIDAS_SZRCLIENT_DEBUG_TRACEMESSAGES,
-        false)) {
-      final LoggingHandler loggingHandler = new LoggingHandler();
-      handlerList.add(loggingHandler);
-
-    }
-    bindingProvider.getBinding().setHandlerChain(handlerList);
-  }
-
-  private SSLContext createSslContext(String clientType) {
-    try {
-      final SSLContext context = SSLContext.getInstance("TLS");
-
-      // initialize key-mangager for SSL client-authentication
-      KeyManager[] keyManager = null;
-      final String keyStorePath = basicConfig.getBasicConfiguration(
-          Constants.CONIG_PROPS_EIDAS_SZRCLIENT_SSL_KEYSTORE_PATH);
-      final String keyStorePassword = basicConfig.getBasicConfiguration(
-          Constants.CONIG_PROPS_EIDAS_SZRCLIENT_SSL_KEYSTORE_PASSWORD);
-      if (StringUtils.isNotEmpty(keyStorePath)) {
-        log.trace("Find keyStore path: " + keyStorePath + " Injecting SSL client certificate ... ");
-        try {
-          final KeyStore keyStore = KeyStoreUtils.loadKeyStore(
-              FileUtils.makeAbsoluteUrl(keyStorePath, basicConfig.getConfigurationRootDirectory()),
-              keyStorePassword);
-
-          final KeyManagerFactory kmf = KeyManagerFactory.getInstance("SunX509");
-          kmf.init(keyStore, keyStorePassword.toCharArray());
-          keyManager = kmf.getKeyManagers();
-          log.debug("SSL client certificate injected to client: " + clientType);
-
-        } catch (KeyStoreException | IOException | UnrecoverableKeyException e) {
-          log.error("Can NOT load SSL client certificate from path: " + keyStorePath);
-          throw new RuntimeException("Can NOT load SSL client certificate from path: " + keyStorePath, e);
-
-        }
-      } else {
-        log.debug(
-            "No KeyStore for SSL Client Auth. found. Initializing SSLContext without authentication ... ");
-
-      }
-
-      // initialize SSL TrustStore
-      TrustManager[] trustManager = null;
-      final String trustStorePath = basicConfig.getBasicConfiguration(
-          Constants.CONIG_PROPS_EIDAS_SZRCLIENT_SSL_TRUSTSTORE_PATH);
-      final String trustStorePassword = basicConfig.getBasicConfiguration(
-          Constants.CONIG_PROPS_EIDAS_SZRCLIENT_SSL_TRUSTSTORE_PASSWORD);
-      if (StringUtils.isNotEmpty(trustStorePath)) {
-        log.trace("Find trustStore path: " + trustStorePath + " Injecting SSL TrustStore ... ");
-        try {
-          final KeyStore trustStore = KeyStoreUtils.loadKeyStore(
-              FileUtils.makeAbsoluteUrl(trustStorePath, basicConfig.getConfigurationRootDirectory()),
-              trustStorePassword);
-
-          final TrustManagerFactory tmf = TrustManagerFactory.getInstance("SunX509");
-          tmf.init(trustStore);
-          trustManager = tmf.getTrustManagers();
-          log.debug("SSL TrustStore injected to client: " + clientType);
-
-        } catch (KeyStoreException | IOException e) {
-          log.error("Can NOT open SSL TrustStore from path: " + trustStorePath);
-          throw new RuntimeException("Can NOT open SSL TrustStore from path: " + trustStorePath, e);
-
-        }
-
-      } else {
-        log.debug("No custom SSL TrustStore found. Initializing SSLContext with JVM default truststore ... ");
-
-      }
-
-      context.init(keyManager, trustManager, new SecureRandom());
-      return context;
-
-    } catch (NoSuchAlgorithmException | KeyManagementException e) {
-      log.error("SSLContext initialization FAILED.", e);
-      throw new RuntimeException("SSLContext initialization FAILED.", e);
-
-    }
-
-  }
-
-  private void injectMdsIfAvailableAndActive(Map<String, Object> eidsaBindMap, SimpleEidasData eidData) {
-    if (basicConfig.getBasicConfigurationBoolean(
-        Constants.CONIG_PROPS_EIDAS_SZRCLIENT_SET_MDS_TO_EIDASBIND, false)) {
-      log.info("Injecting MDS into eidasBind ... ");
-      final Map<String, Object> mds = new HashMap<>();
-      mds.put(PvpAttributeDefinitions.PRINCIPAL_NAME_NAME, eidData.getFamilyName());
-      mds.put(PvpAttributeDefinitions.GIVEN_NAME_NAME, eidData.getGivenName());
-      mds.put(PvpAttributeDefinitions.BIRTHDATE_NAME, eidData.getDateOfBirth());
-      eidsaBindMap.put(ATTR_NAME_MDS, mds);
-
-    }
-  }
-
-  private byte[] sourceToByteArray(Source result) throws TransformerException {
-    final TransformerFactory factory = TransformerFactory.newInstance();
-    factory.setFeature(XMLConstants.FEATURE_SECURE_PROCESSING, true);
-    final Transformer transformer = factory.newTransformer();
-    transformer.setOutputProperty("omit-xml-declaration", "yes");
-    transformer.setOutputProperty("method", "xml");
-    final ByteArrayOutputStream out = new ByteArrayOutputStream();
-    final StreamResult streamResult = new StreamResult();
-    streamResult.setOutputStream(out);
-    transformer.transform(result, streamResult);
-    return out.toByteArray();
-  }
-
-}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/szr/SzrService.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/szr/SzrService.java
deleted file mode 100644
index dde868b1..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/szr/SzrService.java
+++ /dev/null
@@ -1,164 +0,0 @@
-/*
- * Copyright 2018 A-SIT Plus GmbH
- * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
- * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
- *
- * Licensed under the EUPL, Version 1.2 or - as soon they will be approved by
- * the European Commission - subsequent versions of the EUPL (the "License");
- * You may not use this work except in compliance with the License.
- * You may obtain a copy of the License at:
- * https://joinup.ec.europa.eu/news/understanding-eupl-v12
- *
- * Unless required by applicable law or agreed to in writing, software
- * distributed under the License is distributed on an "AS IS" basis,
- * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
- * See the License for the specific language governing permissions and
- * limitations under the License.
- *
- * This product combines work with different licenses. See the "NOTICE" text
- * file for details on the various modules and licenses.
- * The "NOTICE" text file is part of the distribution. Any derivative works
- * that you distribute must include a readable copy of the "NOTICE" text file.
-*/
-
-package at.asitplus.eidas.specific.modules.auth.eidas.v2.szr;
-
-import java.net.URL;
-
-import javax.xml.namespace.QName;
-import javax.xml.ws.Service;
-import javax.xml.ws.WebEndpoint;
-import javax.xml.ws.WebServiceClient;
-import javax.xml.ws.WebServiceFeature;
-
-import szrservices.SZR;
-
-/**
- * This class was generated by Apache CXF 3.1.16 2018-07-10T09:36:01.466+02:00
- * Generated source version: 3.1.16
- *
- */
-@WebServiceClient(name = "SZRService",
-    wsdlLocation = "./src/main/resources/szr_client/SZR-1.WSDL",
-    targetNamespace = "urn:SZRServices")
-public class SzrService extends Service {
-
-  public static final URL WSDL_LOCATION;
-
-  public static final QName SERVICE = new QName("urn:SZRServices", "SZRService");
-  public static final QName SZRProduktionsumgebung = new QName("urn:SZRServices", "SZRProduktionsumgebung");
-  public static final QName SZRTestumgebung = new QName("urn:SZRServices", "SZRTestumgebung");
-  public static final QName SZRBusinesspartnerTestumgebung = new QName("urn:SZRServices",
-      "SZRBusinesspartnerTestumgebung");
-  
-  static {
-    URL url = SzrService.class.getResource("./src/main/resources/szr_client/SZR-1.WSDL");
-    if (url == null) {
-      url = SzrService.class.getClassLoader().getResource("/szr_client/SZR-1.WSDL");
-    }
-    if (url == null) {
-      java.util.logging.Logger.getLogger(SzrService.class.getName())
-          .log(java.util.logging.Level.INFO,
-              "Can not initialize the default wsdl from {0}", "/szr_client/SZR-1.WSDL");
-    }
-    WSDL_LOCATION = url;
-
-  }
-
-  public SzrService(URL wsdlLocation) {
-    super(wsdlLocation, SERVICE);
-  }
-
-  public SzrService(URL wsdlLocation, QName serviceName) {
-    super(wsdlLocation, serviceName);
-  }
-
-  public SzrService() {
-    super(WSDL_LOCATION, SERVICE);
-  }
-
-  public SzrService(WebServiceFeature... features) {
-    super(WSDL_LOCATION, SERVICE, features);
-  }
-
-  public SzrService(URL wsdlLocation, WebServiceFeature... features) {
-    super(wsdlLocation, SERVICE, features);
-  }
-
-  public SzrService(URL wsdlLocation, QName serviceName, WebServiceFeature... features) {
-    super(wsdlLocation, serviceName, features);
-  }
-
-  /**
-   * Get SZR Web-Service.
-   *
-   * @return returns SZR
-   */
-  @WebEndpoint(name = "SZRProduktionsumgebung")
-  public SZR getSzrProduktionsumgebung() {
-    return super.getPort(SZRProduktionsumgebung, SZR.class);
-  }
-
-  /**
-   * Get SZR Web-Service.
-   * 
-   * @param features A list of {@link javax.xml.ws.WebServiceFeature} to configure
-   *                 on the proxy. Supported features not in the
-   *                 <code>features</code> parameter will have their default
-   *                 values.
-   * @return returns SZR
-   */
-  @WebEndpoint(name = "SZRProduktionsumgebung")
-  public SZR getSzrProduktionsumgebung(WebServiceFeature... features) {
-    return super.getPort(SZRProduktionsumgebung, SZR.class, features);
-  }
-
-  /**
-   *Get SZR Web-Service.
-   *
-   * @return returns SZR
-   */
-  @WebEndpoint(name = "SZRTestumgebung")
-  public SZR getSzrTestumgebung() {
-    return super.getPort(SZRTestumgebung, SZR.class);
-  }
-
-  /**
-   * Get SZR Web-Service.
-   * 
-   * @param features A list of {@link javax.xml.ws.WebServiceFeature} to configure
-   *                 on the proxy. Supported features not in the
-   *                 <code>features</code> parameter will have their default
-   *                 values.
-   * @return returns SZR
-   */
-  @WebEndpoint(name = "SZRTestumgebung")
-  public SZR getSzrTestumgebung(WebServiceFeature... features) {
-    return super.getPort(SZRTestumgebung, SZR.class, features);
-  }
-
-  /**
-   * Get SZR Web-Service.
-   *
-   * @return returns SZR
-   */
-  @WebEndpoint(name = "SZRBusinesspartnerTestumgebung")
-  public SZR getSzrBusinesspartnerTestumgebung() {
-    return super.getPort(SZRBusinesspartnerTestumgebung, SZR.class);
-  }
-
-  /**
-   * Get SZR Web-Service.
-   * 
-   * @param features A list of {@link javax.xml.ws.WebServiceFeature} to configure
-   *                 on the proxy. Supported features not in the
-   *                 <code>features</code> parameter will have their default
-   *                 values.
-   * @return returns SZR
-   */
-  @WebEndpoint(name = "SZRBusinesspartnerTestumgebung")
-  public SZR getSzrBusinesspartnerTestumgebung(WebServiceFeature... features) {
-    return super.getPort(SZRBusinesspartnerTestumgebung, SZR.class, features);
-  }
-
-}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateIdentityLinkTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateIdentityLinkTask.java
index 97769cc2..41bf4409 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateIdentityLinkTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateIdentityLinkTask.java
@@ -23,15 +23,40 @@
 
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks;
 
+import java.io.IOException;
+import java.io.InputStream;
+import java.util.HashMap;
+import java.util.List;
+import java.util.Map;
+
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+import javax.xml.parsers.ParserConfigurationException;
+
+import org.apache.commons.lang3.StringUtils;
+import org.jetbrains.annotations.NotNull;
+import org.jetbrains.annotations.Nullable;
+import org.joda.time.DateTime;
+import org.jose4j.lang.JoseException;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.stereotype.Component;
+import org.w3c.dom.Element;
+import org.w3c.dom.Node;
+import org.xml.sax.SAXException;
+
+import com.fasterxml.jackson.core.JsonProcessingException;
+import com.google.common.collect.ImmutableMap;
+import com.google.common.collect.ImmutableSet;
+
 import at.asitplus.eidas.specific.connector.MsConnectorEventCodes;
 import at.asitplus.eidas.specific.connector.MsEidasNodeConstants;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.clients.szr.SzrClient;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidasAttributeException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.SzrCommunicationException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.AuthBlockSigningService;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.ICcSpecificEidProcessingService;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.szr.SzrClient;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.EidasResponseUtils;
 import at.gv.egiz.eaaf.core.api.data.EaafConstants;
 import at.gv.egiz.eaaf.core.api.data.PvpAttributeDefinitions;
@@ -48,36 +73,14 @@ import at.gv.egiz.eaaf.core.impl.idp.auth.data.SimpleIdentityLinkAssertionParser
 import at.gv.egiz.eaaf.core.impl.idp.auth.modules.AbstractAuthServletTask;
 import at.gv.egiz.eaaf.core.impl.utils.DomUtils;
 import at.gv.egiz.eaaf.core.impl.utils.XPathUtils;
-import com.fasterxml.jackson.core.JsonProcessingException;
-import com.google.common.collect.ImmutableMap;
-import com.google.common.collect.ImmutableSet;
 import eu.eidas.auth.commons.attribute.AttributeDefinition;
 import eu.eidas.auth.commons.attribute.AttributeValue;
 import eu.eidas.auth.commons.light.ILightResponse;
 import eu.eidas.auth.commons.protocol.eidas.impl.PostalAddress;
 import lombok.Data;
 import lombok.extern.slf4j.Slf4j;
-import org.apache.commons.lang3.StringUtils;
-import org.jetbrains.annotations.NotNull;
-import org.jetbrains.annotations.Nullable;
-import org.joda.time.DateTime;
-import org.jose4j.lang.JoseException;
-import org.springframework.beans.factory.annotation.Autowired;
-import org.springframework.stereotype.Component;
-import org.w3c.dom.Element;
-import org.w3c.dom.Node;
-import org.xml.sax.SAXException;
 import szrservices.IdentityLinkType;
 
-import javax.servlet.http.HttpServletRequest;
-import javax.servlet.http.HttpServletResponse;
-import javax.xml.parsers.ParserConfigurationException;
-import java.io.IOException;
-import java.io.InputStream;
-import java.util.HashMap;
-import java.util.List;
-import java.util.Map;
-
 /**
  * Task that creates the IdentityLink for an eIDAS authenticated person. 
  * Input:
@@ -127,10 +130,14 @@ public class CreateIdentityLinkTask extends AbstractAuthServletTask {
   public void execute(ExecutionContext executionContext, HttpServletRequest request, HttpServletResponse response)
       throws TaskExecutionException {
     try {
+      
+      /*TODO: needs refactoring because we has to be operate on national identifiers 
+       *      because matching and insert ERnP was already done!!        
+       */
       final ILightResponse eidasResponse = getAuthProcessDataWrapper()
           .getGenericDataFromSession(Constants.DATA_FULL_EIDAS_RESPONSE, ILightResponse.class);
       final Map<String, Object> eidasAttributes = convertEidasAttrToSimpleMap(
-          eidasResponse.getAttributes().getAttributeMap());
+          eidasResponse.getAttributes().getAttributeMap());                  
       final SimpleEidasData eidData = eidPostProcessor.postProcess(eidasAttributes);
       //final SimpleEidasData eidData =
       //    getAuthProcessDataWrapper().getGenericDataFromSession(Constants.DATA_SIMPLE_EIDAS, SimpleEidasData.class);
@@ -192,7 +199,7 @@ public class CreateIdentityLinkTask extends AbstractAuthServletTask {
 
   private void executeEidMode(SimpleEidasData eidData, String personalIdentifier)
       throws JsonProcessingException, EaafException, JoseException {
-    // get encrypted baseId
+    // get encrypted baseId        
     String vsz = szrClient.getEncryptedStammzahl(eidData);
 
     //write revision-Log entry and extended infos personal-identifier mapping
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateNewErnpEntryTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateNewErnpEntryTask.java
index 025f3475..69b127d8 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateNewErnpEntryTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateNewErnpEntryTask.java
@@ -23,18 +23,19 @@
 
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks;
 
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+
+import org.springframework.stereotype.Component;
+
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.clients.szr.SzrClient;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.szr.SzrClient;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.MatchingTaskUtils;
 import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
 import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
-import at.gv.egiz.eaaf.core.impl.idp.auth.data.AuthProcessDataWrapper;
 import at.gv.egiz.eaaf.core.impl.idp.auth.modules.AbstractAuthServletTask;
 import lombok.extern.slf4j.Slf4j;
-import org.springframework.stereotype.Component;
-
-import javax.servlet.http.HttpServletRequest;
-import javax.servlet.http.HttpServletResponse;
 
 /**
  * Task that searches ERnP and ZMR before adding person to SZR.
@@ -69,9 +70,11 @@ public class CreateNewErnpEntryTask extends AbstractAuthServletTask {
   public void execute(ExecutionContext executionContext, HttpServletRequest request, HttpServletResponse response)
       throws TaskExecutionException {
     try {
-      SimpleEidasData simpleEidasData = getInitialEidasData();
+      SimpleEidasData simpleEidasData = MatchingTaskUtils.getInitialEidasData(pendingReq);   
+          
       // TODO When to do eidPostProcessor.postProcess on the eidas attributes?
       String vsz = szrClient.createNewErnpEntry(simpleEidasData);
+
       // TODO what to do with the VSZ now
       log.info("VSZ: {}", vsz);
     } catch (final Exception e) {
@@ -80,12 +83,4 @@ public class CreateNewErnpEntryTask extends AbstractAuthServletTask {
     }
   }
 
-  private SimpleEidasData getInitialEidasData() {
-    return getAuthProcessDataWrapper().getGenericDataFromSession(Constants.DATA_SIMPLE_EIDAS, SimpleEidasData.class);
-  }
-
-  private AuthProcessDataWrapper getAuthProcessDataWrapper() {
-    return pendingReq.getSessionData(AuthProcessDataWrapper.class);
-  }
-
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
index a6e0bca8..1563d6df 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
@@ -23,43 +23,44 @@
 
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks;
 
+import static at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants.TRANSITION_TO_CREATE_NEW_ERNP_ENTRY_TASK;
+import static at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants.TRANSITION_TO_GENERATE_OTHER_LOGIN_METHOD_GUI_TASK;
+
+import java.util.HashMap;
+import java.util.List;
+import java.util.Map;
+
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+
+import org.apache.commons.lang3.StringUtils;
+import org.jetbrains.annotations.NotNull;
+import org.joda.time.DateTime;
+import org.springframework.stereotype.Component;
+
+import com.google.common.collect.ImmutableMap;
+import com.google.common.collect.ImmutableSet;
+
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.MergedRegisterSearchResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidPostProcessingException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidasAttributeException;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.ManualFixNecessaryException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.WorkflowException;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.CountrySpecificDetailSearchProcessor;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.ICcSpecificEidProcessingService;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.RegisterSearchService;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.RegisterSearchService.RegisterOperationStatus;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.RegisterSearchService.RegisterSearchResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.EidasResponseUtils;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.MatchingTaskUtils;
 import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
 import at.gv.egiz.eaaf.core.exceptions.EaafStorageException;
 import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
-import at.gv.egiz.eaaf.core.impl.idp.auth.data.AuthProcessDataWrapper;
 import at.gv.egiz.eaaf.core.impl.idp.auth.modules.AbstractAuthServletTask;
-import com.google.common.collect.ImmutableMap;
-import com.google.common.collect.ImmutableSet;
 import eu.eidas.auth.commons.attribute.AttributeDefinition;
 import eu.eidas.auth.commons.attribute.AttributeValue;
 import eu.eidas.auth.commons.light.ILightResponse;
 import eu.eidas.auth.commons.protocol.eidas.impl.PostalAddress;
 import lombok.extern.slf4j.Slf4j;
-import org.apache.commons.lang3.StringUtils;
-import org.jetbrains.annotations.NotNull;
-import org.jetbrains.annotations.Nullable;
-import org.joda.time.DateTime;
-import org.springframework.stereotype.Component;
-
-import javax.servlet.http.HttpServletRequest;
-import javax.servlet.http.HttpServletResponse;
-import java.util.HashMap;
-import java.util.List;
-import java.util.Map;
-
-import static at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants.TRANSITION_TO_CREATE_NEW_ERNP_ENTRY_TASK;
-import static at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants.TRANSITION_TO_GENERATE_OTHER_LOGIN_METHOD_GUI_TASK;
 
 /**
  * Task that searches registers (ERnP and ZMR) before adding person to SZR.
@@ -91,23 +92,19 @@ import static at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants.TRANSIT
 @SuppressWarnings("PMD.TooManyStaticImports")
 public class InitialSearchTask extends AbstractAuthServletTask {
 
-  private final List<CountrySpecificDetailSearchProcessor> handlers;
   private final RegisterSearchService registerSearchService;
   private final ICcSpecificEidProcessingService eidPostProcessor;
 
   /**
    * Constructor.
-   *  @param handlers              List of countrySpecificSearchProcessors
    * @param registerSearchService Service for register search access
    * @param eidPostProcessor      Country-Specific post processing of attributes
    */
-  public InitialSearchTask(List<CountrySpecificDetailSearchProcessor> handlers,
-                           RegisterSearchService registerSearchService,
+  public InitialSearchTask(RegisterSearchService registerSearchService,
                            ICcSpecificEidProcessingService eidPostProcessor) {
     this.registerSearchService = registerSearchService;
-    this.handlers = handlers;
     this.eidPostProcessor = eidPostProcessor;
-    log.info("Init with {} country specific detail search services", handlers.size());
+    
   }
 
   @Override
@@ -115,126 +112,124 @@ public class InitialSearchTask extends AbstractAuthServletTask {
       throws TaskExecutionException {
     try {
       final SimpleEidasData eidasData = convertEidasAttrToSimpleData();
-      storeInitialEidasData(eidasData);
+      MatchingTaskUtils.storeInitialEidasData(pendingReq, eidasData);
       step2RegisterSearchWithPersonIdentifier(executionContext, eidasData);
+      
+    } catch (WorkflowException e) {      
+      throw new TaskExecutionException(pendingReq, "Initial search failed", e);
+            
     } catch (final Exception e) {
       log.error("Initial search failed", e);
-      throw new TaskExecutionException(pendingReq, "Initial search failed", e);
+      throw new TaskExecutionException(pendingReq, "Initial search failed with a generic error", e);
+      
     }
   }
 
   private void step2RegisterSearchWithPersonIdentifier(
-      ExecutionContext executionContext, SimpleEidasData eidasData)
-      throws TaskExecutionException, EaafStorageException, ManualFixNecessaryException {
-    log.trace("Starting step2RegisterSearchWithPersonIdentifier");
-    MergedRegisterSearchResult initialSearchResult = registerSearchService.searchWithPersonIdentifier(eidasData);
-    storeInitialRegisterResult(initialSearchResult);
-    int resultCount = initialSearchResult.getResultCount();
-    if (resultCount == 0) {
-      step5CountrySpecificSearchCheck(executionContext, initialSearchResult, eidasData);
-    } else if (resultCount == 1) {
-      step3CheckRegisterUpdateNecessary(initialSearchResult, eidasData);
-    } else {
-      throw new ManualFixNecessaryException(eidasData);
-    }
-  }
-
-  private void step3CheckRegisterUpdateNecessary(
-      MergedRegisterSearchResult initialSearchResult, SimpleEidasData eidasData)
-      throws ManualFixNecessaryException {
-    log.trace("Starting step3CheckRegisterUpdateNecessary");
-    try {
-      if (eidasData.equalsRegisterData(initialSearchResult)) {
-        storeMatchingBpk(initialSearchResult.getBpk());
+      ExecutionContext executionContext, SimpleEidasData eidasData) throws WorkflowException, EaafStorageException {
+    try {  
+      log.trace("Starting step2RegisterSearchWithPersonIdentifier");
+      RegisterSearchResult initialSearchResult = registerSearchService.searchWithPersonIdentifier(eidasData);    
+      int resultCount = initialSearchResult.getResultCount();
+      if (resultCount == 0) {
+        step6CountrySpecificSearch(executionContext, initialSearchResult.getOperationStatus(), eidasData);
+      
+      } else if (resultCount == 1) {      
+        // find person by PersonalIdentifier --> finalize first matching task             
+        initialSearchResult.setMatchingFinished(true);                
+        foundMatchFinializeTask(initialSearchResult, eidasData);
+            
       } else {
-        // TODO Update "initialSearchResult" in register with "eidasData" from login not possible for now
-        log.info("Update in Register");
-        storeMatchingBpk(initialSearchResult.getBpk());
+        throw new WorkflowException("step2RegisterSearchWithPersonIdentifier", 
+            "More than one entry with unique personal-identifier", true);
+      
       }
-    } catch (WorkflowException | EaafStorageException e) {
-      throw new ManualFixNecessaryException(eidasData);
+      
+    } catch (WorkflowException e) {
+      //TODO: what we do in case of a workflow error and manual matching are necessary??      
+      
+      log.warn("Workflow error during matching step: {}. Reason: {}", e.getProcessStepName(), e.getErrorReason());      
+      throw e;
+      
     }
   }
-
-  private void step5CountrySpecificSearchCheck(
-      ExecutionContext executionContext, MergedRegisterSearchResult initialSearchResult, SimpleEidasData eidasData)
-      throws TaskExecutionException, ManualFixNecessaryException, EaafStorageException {
-    log.trace("Starting step5CheckAndPerformCountrySpecificSearchIfPossible");
-    CountrySpecificDetailSearchProcessor specificHandler = findSpecificProcessor(eidasData);
-    if (specificHandler != null) {
-      step6CountrySpecificSearch(executionContext, specificHandler, initialSearchResult, eidasData);
+  
+  private void step6CountrySpecificSearch(
+      ExecutionContext executionContext, RegisterOperationStatus registerOperationStatus, SimpleEidasData eidasData)
+      throws EaafStorageException, WorkflowException {
+    
+    log.trace("Starting 'step6CountrySpecificSearch' ... ");
+    RegisterSearchResult countrySpecificResult = registerSearchService.searchWithCountrySpecifics(
+        registerOperationStatus, eidasData);
+    if (countrySpecificResult.getResultCount() == 0) {
+      log.trace("'step6CountrySpecificSearch' ends with no result. Forward to next matching step ... ");
+      step8RegisterSearchWithMds(executionContext, countrySpecificResult.getOperationStatus(), eidasData);
+      
+    } else if (countrySpecificResult.getResultCount() == 1) {
+      log.trace("'step6CountrySpecificSearch' finds a person. Forward to 'step7aKittProcess' step ... ");
+      registerSearchService.step7aKittProcess(countrySpecificResult, eidasData);
+      
+      // find person by country-specific information --> finalize first matching task
+      countrySpecificResult.setMatchingFinished(true);        
+      foundMatchFinializeTask(countrySpecificResult, eidasData);      
+      
     } else {
-      step8RegisterSearchWithMds(executionContext, eidasData);
-    }
+      throw new WorkflowException("step6CountrySpecificSearch", 
+          "More than one entry with unique country-specific informations", true);
+      
+    }    
   }
 
-  @Nullable
-  private CountrySpecificDetailSearchProcessor findSpecificProcessor(SimpleEidasData eidasData) {
-    final String citizenCountry = eidasData.getCitizenCountryCode();
-    for (final CountrySpecificDetailSearchProcessor processor : handlers) {
-      if (processor.canHandle(citizenCountry, eidasData)) {
-        log.debug("Found suitable search handler for {} by using: {}", citizenCountry, processor.getName());
-        return processor;
-      }
-    }
-    return null;
-  }
-
-  private void step6CountrySpecificSearch(ExecutionContext executionContext,
-                                          CountrySpecificDetailSearchProcessor processor,
-                                          MergedRegisterSearchResult initialSearchResult,
-                                          SimpleEidasData eidasData)
-      throws TaskExecutionException, ManualFixNecessaryException, EaafStorageException {
-    log.trace("Starting step6CountrySpecificSearch");
-    MergedRegisterSearchResult countrySearchResult = processor.search(eidasData);
-    int resultCount = countrySearchResult.getResultCount();
-    if (resultCount == 0) {
-      step8RegisterSearchWithMds(executionContext, eidasData);
-    } else if (resultCount == 1) {
-      String bpk = registerSearchService
-          .step7aKittProcess(initialSearchResult, countrySearchResult, eidasData, pendingReq);
-      storeMatchingBpk(bpk);
-    } else {
-      throw new ManualFixNecessaryException(eidasData);
-    }
-  }
-
-  private void step8RegisterSearchWithMds(ExecutionContext executionContext, SimpleEidasData eidasData)
-      throws EaafStorageException {
+  private void step8RegisterSearchWithMds(ExecutionContext executionContext, 
+      RegisterOperationStatus registerOperationStatus, SimpleEidasData eidasData)
+      throws EaafStorageException, WorkflowException {
     log.trace("Starting step8RegisterSearchWithMds");
-    MergedRegisterSearchResult registerData = registerSearchService.searchWithMds(eidasData);
+    RegisterSearchResult registerData = registerSearchService.searchWithMds(registerOperationStatus, eidasData);
+    
     if (registerData.getResultCount() == 0) {
+      log.debug("Matching step: 'step8RegisterSearchWithMds' has no result. Forward to create new ERnP entry ...  ");
       executionContext.put(TRANSITION_TO_CREATE_NEW_ERNP_ENTRY_TASK, true);
+      
     } else {
-      storeFurtherRegisterResults(registerData);
+      log.debug("Matching step: 'step8RegisterSearchWithMds' has #{} results. "
+          + "Forward to GUI based matching steps ... ", registerData.getResultCount());
+      
+      MatchingTaskUtils.storeInitialRegisterResult(pendingReq, registerData);
       executionContext.put(TRANSITION_TO_GENERATE_OTHER_LOGIN_METHOD_GUI_TASK, true);
+      
     }
   }
 
-  private void storeInitialRegisterResult(MergedRegisterSearchResult registerData) throws EaafStorageException {
-    getAuthProcessDataWrapper().setGenericDataToSession(Constants.DATA_INITIAL_REGISTER_RESULT, registerData);
-  }
-
-  private void storeFurtherRegisterResults(MergedRegisterSearchResult registerData) throws EaafStorageException {
-    getAuthProcessDataWrapper().setGenericDataToSession(Constants.DATA_FURTHER_REGISTER_RESULT, registerData);
-  }
 
-  private void storeInitialEidasData(SimpleEidasData eidasData) throws EaafStorageException {
-    getAuthProcessDataWrapper().setGenericDataToSession(Constants.DATA_SIMPLE_EIDAS, eidasData);
-  }
 
-  private void storeMatchingBpk(String bpk) throws EaafStorageException {
-    getAuthProcessDataWrapper().setGenericDataToSession(Constants.DATA_RESULT_MATCHING_BPK, bpk);
+  private void foundMatchFinializeTask(RegisterSearchResult searchResult, SimpleEidasData eidasData) 
+      throws WorkflowException, EaafStorageException {
+    // check if register update is required
+    step3CheckRegisterUpdateNecessary(searchResult, eidasData);
+    
+    // store search result
+    MatchingTaskUtils.storeInitialRegisterResult(pendingReq, searchResult);
+        
   }
-
-  private AuthProcessDataWrapper getAuthProcessDataWrapper() {
-    return pendingReq.getSessionData(AuthProcessDataWrapper.class);
+  
+  private void step3CheckRegisterUpdateNecessary(RegisterSearchResult initialSearchResult, 
+      SimpleEidasData eidasData) throws WorkflowException {
+    log.trace("Starting step3CheckRegisterUpdateNecessary");
+    if (!eidasData.equalsRegisterData(initialSearchResult)) {
+      // TODO Update "initialSearchResult" in register with "eidasData" from login not possible for now
+      log.info("Skipping update-register-information step, because it's not supported yet");
+        
+    } else {        
+      log.debug("Register information match to eIDAS information. No update requird");      
+      
+    }
+    
   }
-
+  
   @NotNull
   private SimpleEidasData convertEidasAttrToSimpleData()
       throws EidasAttributeException, EidPostProcessingException {
-    final ILightResponse eidasResponse = getAuthProcessDataWrapper()
+    final ILightResponse eidasResponse = MatchingTaskUtils.getAuthProcessDataWrapper(pendingReq)
         .getGenericDataFromSession(Constants.DATA_FULL_EIDAS_RESPONSE, ILightResponse.class);
     Map<String, Object> simpleMap = convertEidasAttrToSimpleMap(eidasResponse.getAttributes().getAttributeMap());
     return eidPostProcessor.postProcess(simpleMap);
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveAustrianResidenceGuiResponseTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveAustrianResidenceGuiResponseTask.java
index 3b7f361c..b18104fa 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveAustrianResidenceGuiResponseTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveAustrianResidenceGuiResponseTask.java
@@ -23,29 +23,31 @@
 
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks;
 
+import java.util.Enumeration;
+
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+
+import org.apache.commons.lang.StringEscapeUtils;
+import org.jetbrains.annotations.NotNull;
+import org.springframework.stereotype.Component;
+
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.MergedRegisterSearchResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.InvalidUserInputException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.ManualFixNecessaryException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.WorkflowException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.RegisterSearchService;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.RegisterSearchService.RegisterSearchResult;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.MatchingTaskUtils;
 import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
 import at.gv.egiz.eaaf.core.exceptions.EaafStorageException;
 import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
-import at.gv.egiz.eaaf.core.impl.idp.auth.data.AuthProcessDataWrapper;
 import at.gv.egiz.eaaf.core.impl.idp.auth.modules.AbstractAuthServletTask;
 import lombok.AllArgsConstructor;
 import lombok.Data;
 import lombok.NoArgsConstructor;
 import lombok.extern.slf4j.Slf4j;
-import org.apache.commons.lang.StringEscapeUtils;
-import org.jetbrains.annotations.NotNull;
-import org.springframework.stereotype.Component;
-
-import javax.servlet.http.HttpServletRequest;
-import javax.servlet.http.HttpServletResponse;
-import java.util.Enumeration;
 
 
 /**
@@ -69,6 +71,7 @@ import java.util.Enumeration;
  *
  * @author amarsalek
  * @author ckollmann
+ * @author tlenz
  */
 @Slf4j
 @Component("ReceiveAustrianResidenceGuiResponseTask")
@@ -98,72 +101,88 @@ public class ReceiveAustrianResidenceGuiResponseTask extends AbstractAuthServlet
   public void execute(ExecutionContext executionContext, HttpServletRequest request, HttpServletResponse response)
       throws TaskExecutionException {
     log.trace("Starting ReceiveAustrianResidenceGuiResponseTask");
-    UserInput input = parseHtmlInput(request);
+        
+    UserInput input = parseHtmlInput(request);    
     if (!input.isFormerResidenceAvailable()) {
       moveToNextTask(executionContext);
       return;
+      
     }
+        
+    //TODO: Here, we need an error handling an can not stop full process if form input was invalid
+    //TODO: check minimum form elements
+    /*TODO: maybe we can switch to custom controller and use WebMVC form-binding feature. 
+     *      Binding element can be add as attribute to this request
+     */
     if (input.getStreet().isEmpty() || input.getCity().isEmpty() || input.getZipcode().isEmpty()) {
       // HTML form should ensure that mandatory fields are set => this should never happen
-      throw new TaskExecutionException(pendingReq, "Invalid user input", new InvalidUserInputException());
+      throw new TaskExecutionException(pendingReq, "Invalid user input", 
+          new InvalidUserInputException("module.eidasauth.matching.06"));
+      
     }
-    // TODO Also search with MDS? But MDS Search has already happened?
+    
+    
+        
     try {
-      SimpleEidasData eidasData = getInitialEidasData();
-      MergedRegisterSearchResult residencyResult = registerSearchService
-          .searchWithResidence(input.zipcode, input.city, input.street);
+      SimpleEidasData eidasData = MatchingTaskUtils.getInitialEidasData(pendingReq);
+      RegisterSearchResult initialSearchResult = MatchingTaskUtils.getInitialRegisterResult(pendingReq);
+      
+      RegisterSearchResult residencyResult = 
+          registerSearchService.searchWithResidence(initialSearchResult.getOperationStatus(), 
+              eidasData, input.zipcode, input.city, input.street);
       if (residencyResult.getResultCount() == 0) {
+        //TODO: her we should add a GUI step of result is zero to inform user an forward process by click
         moveToNextTask(executionContext);
+        
       } else if (residencyResult.getResultCount() == 1) {
         compareSearchResultWithInitialData(executionContext, residencyResult, eidasData);
+        
       } else {
+        /*TODO: align with form generation task and to better error handling in case of more-than-one result. 
+         *      Maybe the user has to provide more information.
+         */
         throw new TaskExecutionException(pendingReq,
             "Manual Fix necessary", new ManualFixNecessaryException(eidasData));
+        
       }
+      
     } catch (EaafStorageException e) {
       log.error("Search with residency data failed", e);
       throw new TaskExecutionException(pendingReq, "Search with residency data failed", e);
+      
     }
   }
 
-  private void compareSearchResultWithInitialData(ExecutionContext executionContext,
-                                                  MergedRegisterSearchResult residencyResult, SimpleEidasData eidasData)
+  private void compareSearchResultWithInitialData(ExecutionContext executionContext, 
+      RegisterSearchResult residencyResult, SimpleEidasData eidasData)
       throws TaskExecutionException, EaafStorageException {
-    try {
-      MergedRegisterSearchResult initialSearchResult = getInitialRegisterResult();
-      // TODO search "residencyResult" in "initialSearchResult"!?
+    try {            
+      /*TODO: check 'equalsRegisterData' because this method maybe this method evaluate to an invalid result.
+       *      See TODO in methods body
+       */      
       if (eidasData.equalsRegisterData(residencyResult)) {
-        String bpk = registerSearchService
-            .step7aKittProcess(initialSearchResult, residencyResult, eidasData, pendingReq);
-        storeMatchingBpk(bpk);
+        // update register information
+        registerSearchService.step7aKittProcess(residencyResult, eidasData);
+                                
+        // store search result to re-used in CreateIdentityLink step, because there we need bPK and MDS
+        residencyResult.setMatchingFinished(true);
+        MatchingTaskUtils.storeInitialRegisterResult(pendingReq, residencyResult);
+        
       } else {
         moveToNextTask(executionContext);
+        
       }
+      
     } catch (WorkflowException e) {
       throw new TaskExecutionException(pendingReq, "Search failed", new ManualFixNecessaryException(eidasData));
+      
     }
   }
 
-  private SimpleEidasData getInitialEidasData() {
-    return getAuthProcessDataWrapper().getGenericDataFromSession(Constants.DATA_SIMPLE_EIDAS, SimpleEidasData.class);
-  }
-
-  private MergedRegisterSearchResult getInitialRegisterResult() {
-    return getAuthProcessDataWrapper().getGenericDataFromSession(Constants.DATA_INITIAL_REGISTER_RESULT,
-        MergedRegisterSearchResult.class);
-  }
-
-  private void storeMatchingBpk(String bpk) throws EaafStorageException {
-    getAuthProcessDataWrapper().setGenericDataToSession(Constants.DATA_RESULT_MATCHING_BPK, bpk);
-  }
-
-  private AuthProcessDataWrapper getAuthProcessDataWrapper() {
-    return pendingReq.getSessionData(AuthProcessDataWrapper.class);
-  }
-
   private void moveToNextTask(ExecutionContext executionContext) {
     // Later on, this should transition to Step 20
     executionContext.put(Constants.TRANSITION_TO_CREATE_NEW_ERNP_ENTRY_TASK, true);
+    
   }
 
   private @NotNull UserInput parseHtmlInput(HttpServletRequest request) {
@@ -174,15 +193,20 @@ public class ReceiveAustrianResidenceGuiResponseTask extends AbstractAuthServlet
       String escaped = StringEscapeUtils.escapeHtml(request.getParameter(paramName));
       if (PARAM_FORMER_RESIDENCE_AVAILABLE.equalsIgnoreCase(paramName)) {
         result.setFormerResidenceAvailable(Boolean.parseBoolean(escaped));
+        
       } else if (PARAM_STREET.equalsIgnoreCase(paramName)) {
         result.setStreet(escaped);
+        
       } else if (PARAM_CITY.equalsIgnoreCase(paramName)) {
         result.setCity(escaped);
+        
       } else if (PARAM_ZIPCODE.equalsIgnoreCase(paramName)) {
         result.setZipcode(escaped);
+        
       }
     }
     return result;
+    
   }
 
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseTask.java
index a6ff345d..fd469f49 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseTask.java
@@ -23,24 +23,45 @@
 
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks;
 
+import static at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthConstants.MODULE_NAME_FOR_LOGGING;
+
+import java.io.IOException;
+import java.util.List;
+import java.util.Set;
+import java.util.stream.Collectors;
+import java.util.stream.Stream;
+
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+import javax.xml.transform.TransformerException;
+
+import org.apache.commons.lang3.StringUtils;
+import org.jetbrains.annotations.NotNull;
+import org.opensaml.core.xml.io.MarshallingException;
+import org.opensaml.messaging.decoder.MessageDecodingException;
+import org.opensaml.saml.saml2.core.Response;
+import org.opensaml.saml.saml2.core.StatusCode;
+import org.opensaml.saml.saml2.metadata.IDPSSODescriptor;
+import org.springframework.stereotype.Component;
+
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.MergedRegisterSearchResult;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleMobileSignatureData;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.InvalidUserInputException;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.ManualFixNecessaryException;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.WorkflowException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthConstants;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthEventConstants;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.provider.IdAustriaClientAuthCredentialProvider;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.provider.IdAustriaClientAuthMetadataProvider;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.RegisterSearchService;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.RegisterSearchService.RegisterSearchResult;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.MatchingTaskUtils;
 import at.gv.egiz.eaaf.core.api.data.PvpAttributeDefinitions;
 import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
 import at.gv.egiz.eaaf.core.exceptions.EaafBuilderException;
-import at.gv.egiz.eaaf.core.exceptions.EaafStorageException;
 import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
 import at.gv.egiz.eaaf.core.impl.data.Pair;
-import at.gv.egiz.eaaf.core.impl.idp.auth.data.AuthProcessDataWrapper;
 import at.gv.egiz.eaaf.core.impl.idp.auth.modules.AbstractAuthServletTask;
 import at.gv.egiz.eaaf.modules.pvp2.api.binding.IDecoder;
 import at.gv.egiz.eaaf.modules.pvp2.exception.CredentialsNotAvailableException;
@@ -58,23 +79,6 @@ import at.gv.egiz.eaaf.modules.pvp2.sp.exception.AssertionValidationExeption;
 import at.gv.egiz.eaaf.modules.pvp2.sp.exception.AuthnResponseValidationException;
 import at.gv.egiz.eaaf.modules.pvp2.sp.impl.utils.AssertionAttributeExtractor;
 import lombok.extern.slf4j.Slf4j;
-import org.apache.commons.lang3.StringUtils;
-import org.jetbrains.annotations.NotNull;
-import org.opensaml.core.xml.io.MarshallingException;
-import org.opensaml.messaging.decoder.MessageDecodingException;
-import org.opensaml.saml.saml2.core.Response;
-import org.opensaml.saml.saml2.core.StatusCode;
-import org.opensaml.saml.saml2.metadata.IDPSSODescriptor;
-import org.springframework.stereotype.Component;
-
-import javax.servlet.http.HttpServletRequest;
-import javax.servlet.http.HttpServletResponse;
-import javax.xml.transform.TransformerException;
-import java.io.IOException;
-import java.util.List;
-import java.util.Set;
-
-import static at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustriaClientAuthConstants.MODULE_NAME_FOR_LOGGING;
 
 /**
  * Task that receives the SAML2 response from ID Austria system.
@@ -144,95 +148,84 @@ public class ReceiveMobilePhoneSignatureResponseTask extends AbstractAuthServlet
       InboundMessage inboundMessage = decodeAndVerifyMessage(request, response, decoder, comparator);
       Pair<PvpSProfileResponse, Boolean> processedMsg = validateAssertion((PvpSProfileResponse) inboundMessage);
       if (processedMsg.getSecond()) {
-        stopProcessFromUserDecision(executionContext, request, response);
+        // forward to next matching step in case of ID Autria authentication was stopped by user
+        executionContext.put(Constants.TRANSITION_TO_GENERATE_GUI_QUERY_AUSTRIAN_RESIDENCE_TASK, true);        
         return;
+        
       }
 
+      // validate SAML2 response
       validateEntityId(inboundMessage);
+      log.info("Receive a valid assertion from IDP " + inboundMessage.getEntityID());
+            
+      // load already existing information from session
+      SimpleEidasData eidasData = MatchingTaskUtils.getInitialEidasData(pendingReq);
+      RegisterSearchResult initialSearchResult = MatchingTaskUtils.getInitialRegisterResult(pendingReq);
+      
+      // extract user information from ID Austria authentication
       AssertionAttributeExtractor extractor = new AssertionAttributeExtractor(processedMsg.getFirst().getResponse());
-
-      /*
-       * SAML2 response ist bereits vollständig validiert und die Attribute können aus dem
-       * <AssertionAttributeExtractor extractor> ausgelesen werden.
-       * Die AttributeNamen sind entsprechend PVP Spezifikation, z.B. PvpAttributeDefinitions.GIVEN_NAME_NAME
-       *
-       * ---------------------------------------------------------------------------------------------
-       *
-       * TODO: ab hier müssen wir wohl was anpassen
-       *
-       */
-
-      MergedRegisterSearchResult initialSearchResult = getInitialRegisterResult();
-      SimpleEidasData eidasData = getInitialEidasData();
-      String bpkZp = extractBpkZp(extractor, eidasData);
-
-      // TODO Hier ist wohl keine Register-Suche notwendig, denn das ergibt sicher einen Treffer
-      // TODO Soll: In den Ergebnissen aus Step8 matchen! Ãœber BPK matchen, und dann schauen, ob zumindest
-      //  Geburtsdatum passt
-      MergedRegisterSearchResult registerResult = registerSearchService.searchWithBpkZp(bpkZp);
-      if (registerResult.getResultCount() == 0) {
-        executionContext.put(Constants.TRANSITION_TO_GENERATE_GUI_QUERY_AUSTRIAN_RESIDENCE_TASK, true);
-        return;
-      } else if (registerResult.getResultCount() == 1) {
-        String bpk = registerSearchService
-            .step7aKittProcess(initialSearchResult, registerResult, eidasData, pendingReq);
-        storeMatchingBpk(bpk);
-        return;
-      } else if (registerResult.getResultCount() > 1) {
-        throw new ManualFixNecessaryException(eidasData);
+      SimpleMobileSignatureData simpleMobileSignatureData = getAuthDataFromInterfederation(extractor);
+      
+      // check if MDS from ID Austria authentication matchs to eIDAS authentication  
+      if (!simpleMobileSignatureData.equalsSimpleEidasData(eidasData)) {
+        // user has cheated!?
+        throw new InvalidUserInputException("module.eidasauth.matching.05"); 
+               
       }
-
-      // set NeedConsent to false, because user gives consent during authentication
-      pendingReq.setNeedUserConsent(false);
-      log.info("Receive a valid assertion from IDP " + inboundMessage.getEntityID());
+            
+      // search entry in initial search result from steps before and build new RegisterSearchResult
+      RegisterSearchResult registerResult = new RegisterSearchResult(initialSearchResult.getOperationStatus(),
+          extractEntriesByBpk(initialSearchResult.getResultsZmr().stream(), simpleMobileSignatureData.getBpk()),
+          extractEntriesByBpk(initialSearchResult.getResultsErnp().stream(), simpleMobileSignatureData.getBpk()));
+          
+      if (registerResult.getResultCount() != 1) {
+        throw new WorkflowException("matchWithIDAustriaAuthentication",
+            "Suspect state detected. MDS matches to eIDAS authentication "
+                + "but register search-result with MDS contains #" + registerResult.getResultCount() 
+                + " entry with bPK from ID Austria authentication", false);  
+        
+      } else {
+        // perform kit operation
+        registerSearchService.step7aKittProcess(registerResult, eidasData);
+        
+        // store search result to re-used in CreateIdentityLink step, because there we need bPK and MDS
+        registerResult.setMatchingFinished(true);
+        MatchingTaskUtils.storeInitialRegisterResult(pendingReq, registerResult);
+        
+      }            
+      
     } catch (final AuthnResponseValidationException e) {
       throw new TaskExecutionException(pendingReq, ERROR_MSG_03, e);
+      
     } catch (MessageDecodingException | SecurityException | SamlSigningException e) {
       //final String samlRequest = request.getParameter("SAMLRequest");
       //log.debug("Receive INVALID PVP Response from 'ms-specific eIDAS node': {}",
       //    samlRequest, null, e);
       throw new TaskExecutionException(pendingReq, ERROR_MSG_00,
           new AuthnResponseValidationException(ERROR_PVP_11, new Object[]{MODULE_NAME_FOR_LOGGING}, e));
+      
     } catch (IOException | MarshallingException | TransformerException e) {
       log.debug("Processing PVP response from 'ms-specific eIDAS node' FAILED.", e);
       throw new TaskExecutionException(pendingReq, ERROR_MSG_01,
           new AuthnResponseValidationException(ERROR_PVP_12, new Object[]{MODULE_NAME_FOR_LOGGING, e.getMessage()}, e));
+      
     } catch (final CredentialsNotAvailableException e) {
       log.debug("PVP response decryption FAILED. No credential found.", e);
       throw new TaskExecutionException(pendingReq, ERROR_MSG_02,
           new AuthnResponseValidationException(ERROR_PVP_10, new Object[]{MODULE_NAME_FOR_LOGGING}, e));
+      
     } catch (final Exception e) {
       // todo catch ManualFixNecessaryException in any other way?
       log.debug("PVP response validation FAILED. Msg:" + e.getMessage(), e);
       throw new TaskExecutionException(pendingReq, ERROR_MSG_03,
           new AuthnResponseValidationException(ERROR_PVP_12, new Object[]{MODULE_NAME_FOR_LOGGING, e.getMessage()}, e));
+      
     }
   }
 
-  private String extractBpkZp(AssertionAttributeExtractor extractor,
-                              SimpleEidasData eidasData) throws EaafBuilderException, InvalidUserInputException {
-    SimpleMobileSignatureData simpleMobileSignatureData = getAuthDataFromInterfederation(extractor);
-    if (!simpleMobileSignatureData.equalsSimpleEidasData(eidasData)) {
-      throw new InvalidUserInputException(); // user has cheated!?
-    }
-    return simpleMobileSignatureData.getBpk();
-  }
+  private List<RegisterResult> extractEntriesByBpk(Stream<RegisterResult> stream, String bpk) {
+    return stream.filter(el -> bpk.equals(el.getBpk())).collect(Collectors.toList());       
 
-  private SimpleEidasData getInitialEidasData() {
-    return getAuthProcessDataWrapper().getGenericDataFromSession(Constants.DATA_SIMPLE_EIDAS, SimpleEidasData.class);
-  }
-
-  private MergedRegisterSearchResult getInitialRegisterResult() {
-    return getAuthProcessDataWrapper().getGenericDataFromSession(Constants.DATA_INITIAL_REGISTER_RESULT,
-        MergedRegisterSearchResult.class);
-  }
-
-  private void storeMatchingBpk(String bpk) throws EaafStorageException {
-    getAuthProcessDataWrapper().setGenericDataToSession(Constants.DATA_RESULT_MATCHING_BPK, bpk);
-  }
-
-  private AuthProcessDataWrapper getAuthProcessDataWrapper() {
-    return pendingReq.getSessionData(AuthProcessDataWrapper.class);
   }
 
   @NotNull
@@ -359,13 +352,15 @@ public class ReceiveMobilePhoneSignatureResponseTask extends AbstractAuthServlet
       }
       if (PvpAttributeDefinitions.BIRTHDATE_NAME.equals(attrName)) {
         builder.dateOfBirth(extractor.getSingleAttributeValue(attrName));
-      }
+      }      
       if (PvpAttributeDefinitions.EID_CITIZEN_EIDAS_QAA_LEVEL_NAME.equals(attrName)) {
-        getAuthProcessDataWrapper().setQaaLevel(extractor.getSingleAttributeValue(attrName));
+        MatchingTaskUtils.getAuthProcessDataWrapper(pendingReq).setQaaLevel(
+            extractor.getSingleAttributeValue(attrName));
       }
     }
-    getAuthProcessDataWrapper().setIssueInstant(extractor.getAssertionIssuingDate());
+    MatchingTaskUtils.getAuthProcessDataWrapper(pendingReq).setIssueInstant(extractor.getAssertionIssuingDate());
     return builder.build();
+    
   }
 
 
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveOtherLoginMethodGuiResponseTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveOtherLoginMethodGuiResponseTask.java
index e139b280..59a6886a 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveOtherLoginMethodGuiResponseTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveOtherLoginMethodGuiResponseTask.java
@@ -23,6 +23,14 @@
 
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks;
 
+import java.util.Enumeration;
+
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+
+import org.apache.commons.lang.StringEscapeUtils;
+import org.springframework.stereotype.Component;
+
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SelectedLoginMethod;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.InvalidUserInputException;
@@ -30,12 +38,6 @@ import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
 import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
 import at.gv.egiz.eaaf.core.impl.idp.auth.modules.AbstractAuthServletTask;
 import lombok.extern.slf4j.Slf4j;
-import org.apache.commons.lang.StringEscapeUtils;
-import org.springframework.stereotype.Component;
-
-import javax.servlet.http.HttpServletRequest;
-import javax.servlet.http.HttpServletResponse;
-import java.util.Enumeration;
 
 /**
  * Handles user's selection from {@link GenerateOtherLoginMethodGuiTask}.
@@ -69,13 +71,16 @@ public class ReceiveOtherLoginMethodGuiResponseTask extends AbstractAuthServletT
       SelectedLoginMethod selection = SelectedLoginMethod.valueOf(extractUserSelection(request));
       executionContext.put(Constants.REQ_SELECTED_LOGIN_METHOD_PARAMETER, selection);
       transitionToNextTask(executionContext, selection);
+      
     } catch (final IllegalArgumentException e) {
       log.error("Parsing selected login method FAILED.", e);
       throw new TaskExecutionException(pendingReq, "Parsing selected login method FAILED.",
-          new InvalidUserInputException());
+          new InvalidUserInputException("module.eidasauth.matching.98"));
+      
     } catch (final Exception e) {
       log.error("Parsing selected login method FAILED.", e);
       throw new TaskExecutionException(pendingReq, "Parsing selected login method FAILED.", e);
+      
     }
   }
 
@@ -85,9 +90,12 @@ public class ReceiveOtherLoginMethodGuiResponseTask extends AbstractAuthServletT
       String paramName = paramNames.nextElement();
       if (Constants.REQ_SELECTED_LOGIN_METHOD_PARAMETER.equalsIgnoreCase(paramName)) {
         return StringEscapeUtils.escapeHtml(request.getParameter(paramName));
+        
       }
     }
-    throw new InvalidUserInputException();
+    
+    throw new InvalidUserInputException("module.eidasauth.matching.98");
+    
   }
 
   private void transitionToNextTask(ExecutionContext executionContext, SelectedLoginMethod selection)
@@ -96,14 +104,18 @@ public class ReceiveOtherLoginMethodGuiResponseTask extends AbstractAuthServletT
       case EIDAS_LOGIN:
         executionContext.put(Constants.TRANSITION_TO_GENERATE_EIDAS_LOGIN, true);
         return;
+      
       case MOBILE_PHONE_SIGNATURE_LOGIN:
         executionContext.put(Constants.TRANSITION_TO_GENERATE_MOBILE_PHONE_SIGNATURE_REQUEST_TASK, true);
         return;
+      
       case NO_OTHER_LOGIN:
         executionContext.put(Constants.TRANSITION_TO_GENERATE_GUI_QUERY_AUSTRIAN_RESIDENCE_TASK, true);
         return;
+        
       default:
-        throw new InvalidUserInputException();
+        throw new InvalidUserInputException("module.eidasauth.matching.98");
+        
     }
   }
 
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/EidasResponseUtils.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/EidasResponseUtils.java
index 3023bc0a..6b541135 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/EidasResponseUtils.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/EidasResponseUtils.java
@@ -23,30 +23,33 @@
 
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.utils;
 
+import java.text.ParseException;
+import java.text.SimpleDateFormat;
+import java.util.ArrayList;
+import java.util.List;
+import java.util.regex.Matcher;
+import java.util.regex.Pattern;
+
+import javax.annotation.Nullable;
+
+import org.apache.commons.lang3.StringUtils;
+import org.joda.time.DateTime;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+
+import com.google.common.collect.ImmutableList;
+import com.google.common.collect.ImmutableSet;
+
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidasAttributeException;
 import at.gv.e_government.reference.namespace.persondata._20020228.PostalAddressType;
 import at.gv.egiz.eaaf.core.impl.data.Triple;
-import com.google.common.collect.ImmutableList;
-import com.google.common.collect.ImmutableSet;
 import eu.eidas.auth.commons.attribute.AttributeDefinition;
 import eu.eidas.auth.commons.attribute.AttributeValue;
 import eu.eidas.auth.commons.attribute.AttributeValueMarshaller;
 import eu.eidas.auth.commons.attribute.AttributeValueMarshallingException;
 import eu.eidas.auth.commons.attribute.AttributeValueTransliterator;
 import eu.eidas.auth.commons.protocol.eidas.impl.PostalAddress;
-import org.apache.commons.lang3.StringUtils;
-import org.joda.time.DateTime;
-import org.slf4j.Logger;
-import org.slf4j.LoggerFactory;
-
-import javax.annotation.Nullable;
-import java.text.ParseException;
-import java.text.SimpleDateFormat;
-import java.util.ArrayList;
-import java.util.List;
-import java.util.regex.Matcher;
-import java.util.regex.Pattern;
 
 public class EidasResponseUtils {
   private static final Logger log = LoggerFactory.getLogger(EidasResponseUtils.class);
@@ -323,6 +326,21 @@ public class EidasResponseUtils {
     return (String) familyNameObj;
   }
 
+  /**
+   * Post-Process the eIDAS personal identifier attribute.
+   *
+   * @param personalIdentifierObj eIDAS personal identifier attribute-information
+   * @return formated user's full personal identifier
+   * @throws EidasAttributeException if NO attribute is available
+   */
+  public static String processPersonalIdentifier(Object personalIdentifierObj) throws EidasAttributeException {
+    if (!(personalIdentifierObj instanceof String)) {
+      throw new EidasAttributeException(Constants.eIDAS_ATTR_PERSONALIDENTIFIER);
+    }
+    return (String) personalIdentifierObj;
+  }
+  
+  
   /**
    * Post-Process the eIDAS pseudonym to ERnB unique identifier.
    *
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/MatchingTaskUtils.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/MatchingTaskUtils.java
new file mode 100644
index 00000000..5625a30d
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/MatchingTaskUtils.java
@@ -0,0 +1,88 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.utils;
+
+import javax.annotation.Nullable;
+
+import org.springframework.lang.NonNull;
+
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.RegisterSearchService.RegisterSearchResult;
+import at.gv.egiz.eaaf.core.api.IRequest;
+import at.gv.egiz.eaaf.core.exceptions.EaafStorageException;
+import at.gv.egiz.eaaf.core.impl.idp.auth.data.AuthProcessDataWrapper;
+
+public class MatchingTaskUtils {
+
+  /**
+   * Get eIDAS log-in information from session.
+   * 
+   * @param pendingReq Current pendingRequest
+   * @return eIDAS infos or <code>null</code> if not exist
+   */
+  @Nullable
+  public static  SimpleEidasData getInitialEidasData(IRequest pendingReq) {
+    return getAuthProcessDataWrapper(pendingReq).getGenericDataFromSession(
+        Constants.DATA_SIMPLE_EIDAS, SimpleEidasData.class);
+    
+  }
+
+  /**
+   * Set eIDAS log-in information to session.
+   * 
+   * @param pendingReq Current pendingRequest
+   * @param eidasData infos from eIDAS Proxy-Service
+   * @throws EaafStorageException In case of data can not be add into session
+   */
+  @Nullable
+  public static void storeInitialEidasData(IRequest pendingReq, SimpleEidasData eidasData) 
+      throws EaafStorageException {
+    getAuthProcessDataWrapper(pendingReq).setGenericDataToSession(Constants.DATA_SIMPLE_EIDAS, eidasData);
+    
+  }
+  
+  /**
+   * Get Matching result from session.
+   * 
+   * @param pendingReq Current pendingRequest
+   * @return Matching result or <code>null</code> if not exist
+   */
+  @Nullable
+  public static RegisterSearchResult getInitialRegisterResult(IRequest pendingReq) {
+    return getAuthProcessDataWrapper(pendingReq).getGenericDataFromSession(Constants.DATA_INITIAL_REGISTER_RESULT,
+        RegisterSearchResult.class);
+    
+  }
+  
+  /**
+   * Store matching result into session.
+   * 
+   * @param pendingReq Current pendingRequest
+   * @param registerData Matching result information
+   * @throws EaafStorageException In case of data can not be add into session
+   */
+  @Nullable
+  public static void storeInitialRegisterResult(IRequest pendingReq, RegisterSearchResult registerData) 
+      throws EaafStorageException {
+    getAuthProcessDataWrapper(pendingReq).setGenericDataToSession(
+        Constants.DATA_INITIAL_REGISTER_RESULT, registerData);
+        
+  }
+
+  /**
+   * Get holder for authentication information for the current process.
+   * 
+   * @param pendingReq Current pendingRequest
+   * @return {@link AuthProcessDataWrapper}
+   */
+  @NonNull
+  public static AuthProcessDataWrapper getAuthProcessDataWrapper(IRequest pendingReq) {
+    return pendingReq.getSessionData(AuthProcessDataWrapper.class);
+    
+  }
+  
+  private MatchingTaskUtils() {
+    //hide constructor in case of class contains only static methods
+    
+  }
+  
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/VersionHolder.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/VersionHolder.java
new file mode 100644
index 00000000..dbe88d33
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/VersionHolder.java
@@ -0,0 +1,40 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.utils;
+
+import java.util.Optional;
+
+import org.springframework.boot.autoconfigure.SpringBootApplication;
+import org.springframework.context.ApplicationContext;
+
+/**
+ * SpringBoot based implementation of an application-version holder.
+ * 
+ * @author tlenz
+ *
+ */
+public class VersionHolder {
+
+  private final String version;
+
+  /**
+   * Build up a holder that contains the current version of this application.
+   * 
+   * @param context SprintBoot context
+   */
+  public VersionHolder(ApplicationContext context) {
+    version = context.getBeansWithAnnotation(SpringBootApplication.class).entrySet().stream()
+        .findFirst()                
+        .flatMap(es -> Optional.ofNullable(es.getValue().getClass().getPackage().getImplementationVersion()))
+        .orElse("unknown");
+    
+  }
+
+  /**
+   * Get version of this application.
+   * 
+   * @return version
+   */
+  public String getVersion() {
+    return version;
+    
+  }
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/DummyZmrClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/DummyZmrClient.java
index 80e61451..30a801a4 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/DummyZmrClient.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/DummyZmrClient.java
@@ -23,55 +23,59 @@
 
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr;
 
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
+import java.math.BigInteger;
+import java.util.Collections;
+
 import org.springframework.stereotype.Service;
 
-import java.util.Collections;
-import java.util.List;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.clients.zmr.IZmrClient;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.clients.zmr.ZmrSoapClient.ZmrRegisterResult;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidasSAuthenticationException;
+import at.gv.bmi.namespace.zmr_su.zmr._20040201.PersonSuchenRequest;
 
 @Service("ZmrClientForeIDAS")
 public class DummyZmrClient implements IZmrClient {
 
   @Override
-  public List<RegisterResult> searchWithPersonIdentifier(String personIdentifier) {
-    return Collections.emptyList();
+  public ZmrRegisterResult searchWithPersonIdentifier(BigInteger zmrProzessId, String personIdentifier) {
+    return new ZmrRegisterResult(Collections.emptyList(), null);
+    
   }
 
   @Override
-  public List<RegisterResult> searchWithMds(String givenName, String familyName, String dateOfBirth) {
+  public ZmrRegisterResult searchWithMds(BigInteger zmrProzessId, String givenName, String familyName, 
+      String dateOfBirth,  String countryCode) {
     //TODO will I only receive matches where all three values match perfectly?
-    return Collections.emptyList();
+    return new ZmrRegisterResult(Collections.emptyList(), null);
+    
   }
 
   @Override
-  public List<RegisterResult> searchDeSpecific(String givenName, String familyName, String dateOfBirth,
-                                                    String birthPlace, String birthName) {
-    //TODO
-    return Collections.emptyList();
-  }
-
-  @Override
-  public List<RegisterResult> searchItSpecific(String taxNumber) {
-    //TODO
-    return Collections.emptyList();
+  public ZmrRegisterResult searchCountrySpecific(BigInteger zmrProzessId, PersonSuchenRequest personSearchDao,
+      String citizenCountryCode) throws EidasSAuthenticationException {
+    return new ZmrRegisterResult(Collections.emptyList(), null);
+    
   }
 
   @Override
-  public void update(RegisterResult registerResult, SimpleEidasData eidData) {
+  public void update(BigInteger zmrProzessId, RegisterResult registerResult, SimpleEidasData eidData) {
     //TODO
   }
 
   @Override
-  public List<RegisterResult> searchWithBpkZp(String bpkzp) {
+  public ZmrRegisterResult searchWithBpkZp(BigInteger zmrProzessId, String bpkzp) {
     //TODO
-    return Collections.emptyList();
+    return new ZmrRegisterResult(Collections.emptyList(), null);
   }
 
   @Override
-  public List<RegisterResult> searchWithResidenceData(String zipcode, String city, String street) {
+  public ZmrRegisterResult searchWithResidenceData(BigInteger zmrProzessId, String givenName, String familyName, 
+      String dateOfBirth, String zipcode, String city, String street) {
     // TODO
-    return Collections.emptyList();
+    return new ZmrRegisterResult(Collections.emptyList(), null);
   }
 
+
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/IZmrClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/IZmrClient.java
deleted file mode 100644
index 5ca69d3d..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/IZmrClient.java
+++ /dev/null
@@ -1,48 +0,0 @@
-/*
- * Copyright 2020 A-SIT Plus GmbH
- * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
- * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
- *
- * Licensed under the EUPL, Version 1.2 or - as soon they will be approved by
- * the European Commission - subsequent versions of the EUPL (the "License");
- * You may not use this work except in compliance with the License.
- * You may obtain a copy of the License at:
- * https://joinup.ec.europa.eu/news/understanding-eupl-v12
- *
- * Unless required by applicable law or agreed to in writing, software
- * distributed under the License is distributed on an "AS IS" basis,
- * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
- * See the License for the specific language governing permissions and
- * limitations under the License.
- *
- * This product combines work with different licenses. See the "NOTICE" text
- * file for details on the various modules and licenses.
- * The "NOTICE" text file is part of the distribution. Any derivative works
- * that you distribute must include a readable copy of the "NOTICE" text file.
- */
-
-package at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr;
-
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
-
-import java.util.List;
-
-public interface IZmrClient {
-
-  List<RegisterResult> searchWithPersonIdentifier(String personIdentifier);
-
-  List<RegisterResult> searchWithMds(String givenName, String familyName, String dateOfBirth);
-
-  List<RegisterResult> searchDeSpecific(String givenName, String familyName, String dateOfBirth,
-                                             String birthPlace, String birthName);
-
-  List<RegisterResult> searchItSpecific(String taxNumber);
-
-  void update(RegisterResult registerResult, SimpleEidasData eidData);
-
-  List<RegisterResult> searchWithBpkZp(String bpkzp);
-
-  List<RegisterResult> searchWithResidenceData(String zipcode, String city, String street);
-
-}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eIDAS.Authentication.process.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eIDAS.Authentication.process.xml
index 369af4c4..2379295b 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eIDAS.Authentication.process.xml
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eIDAS.Authentication.process.xml
@@ -3,89 +3,53 @@
   xmlns:pd="http://reference.e-government.gv.at/namespace/moa/process/definition/v1">
 
 
-  <pd:Task id="createAuthnRequest" class="ConnecteIDASNodeTask" />
-  <pd:Task id="receiveAuthnResponse"
-    class="ReceiveResponseFromeIDASNodeTask" async="true" />
-  <pd:Task id="finalizeAuthentication"
-    class="FinalizeAuthenticationTask" />
-  <pd:Task id="generateIdentityLink"
-    class="CreateIdentityLinkTask" />
-  <pd:Task id="initialRegisterSearch"
-           class="InitialSearchTask" />
-
-  <pd:Task id="createNewErnpEntryTask"
-           class="CreateNewErnpEntryTask" />
-  <pd:Task id="generateOtherLoginMethodGuiTask"
-           class="GenerateOtherLoginMethodGuiTask" />
-  <pd:Task id="generateMobilePhoneSignatureRequestTask"
-           class="GenerateMobilePhoneSignatureRequestTask" />
-  <pd:Task id="receiveOtherLoginMethodGuiResponseTask"
-           class="ReceiveOtherLoginMethodGuiResponseTask" />
-  <pd:Task id="receiveMobilePhoneSignatureResponseTask"
-           class="ReceiveMobilePhoneSignatureResponseTask" />
-
-  <pd:Task id="generateAustrianResidenceGuiTask"
-           class="GenerateAustrianResidenceGuiTask" />
-  <pd:Task id="receiveAustrianResidenceGuiResponseTask"
-           class="ReceiveAustrianResidenceGuiResponseTask" />
+  <pd:Task id="createAuthnRequest"      class="ConnecteIDASNodeTask" />
+  <pd:Task id="receiveAuthnResponse"    class="ReceiveResponseFromeIDASNodeTask" async="true" />
+  <pd:Task id="finalizeAuthentication"  class="FinalizeAuthenticationTask" />
+  <pd:Task id="generateIdentityLink"    class="CreateIdentityLinkTask" />
+  
+  <pd:Task id="initialRegisterSearch"   class="InitialSearchTask" />
+
+  <pd:Task id="createNewErnpEntryTask"                    class="CreateNewErnpEntryTask" />
+  <pd:Task id="generateOtherLoginMethodGuiTask"           class="GenerateOtherLoginMethodGuiTask" />
+  <pd:Task id="generateMobilePhoneSignatureRequestTask"   class="GenerateMobilePhoneSignatureRequestTask" />
+  <pd:Task id="receiveOtherLoginMethodGuiResponseTask"    class="ReceiveOtherLoginMethodGuiResponseTask" />
+  <pd:Task id="receiveMobilePhoneSignatureResponseTask"   class="ReceiveMobilePhoneSignatureResponseTask" />
+  <pd:Task id="generateAustrianResidenceGuiTask"          class="GenerateAustrianResidenceGuiTask" />
+  <pd:Task id="receiveAustrianResidenceGuiResponseTask"   class="ReceiveAustrianResidenceGuiResponseTask" />
 
   <pd:StartEvent id="start" />
 
-  <pd:Transition  from="start"
-                  to="createAuthnRequest" />
-  <pd:Transition  from="createAuthnRequest"
-                  to="receiveAuthnResponse" />
-  <pd:Transition  from="receiveAuthnResponse"
-                  to="initialRegisterSearch" />
+  <pd:Transition  from="start"                        to="createAuthnRequest" />
+  <pd:Transition  from="createAuthnRequest"           to="receiveAuthnResponse" />
+  <pd:Transition  from="receiveAuthnResponse"         to="initialRegisterSearch" />
   <!-- TODO start-->
-  <pd:Transition  from="initialRegisterSearch"
-                  to="createNewErnpEntryTask"
-                  conditionExpression="ctx['TASK_CreateNewErnpEntryTask']"/>
-  <pd:Transition  from="initialRegisterSearch"
-                  to="generateOtherLoginMethodGuiTask"
-                  conditionExpression="ctx['TASK_GenerateOtherLoginMethodGuiTask']"/>
-  <pd:Transition  from="initialRegisterSearch"
-                  to="generateIdentityLink" />
+  <pd:Transition  from="initialRegisterSearch"        to="createNewErnpEntryTask"           conditionExpression="ctx['TASK_CreateNewErnpEntryTask']"/>
+  <pd:Transition  from="initialRegisterSearch"        to="generateOtherLoginMethodGuiTask"  conditionExpression="ctx['TASK_GenerateOtherLoginMethodGuiTask']"/>
+  <pd:Transition  from="initialRegisterSearch"        to="generateIdentityLink" />
 
-  <pd:Transition  from="generateOtherLoginMethodGuiTask"
-                  to="receiveOtherLoginMethodGuiResponseTask" />
-  <pd:Transition  from="receiveOtherLoginMethodGuiResponseTask"
-                  to="generateMobilePhoneSignatureRequestTask"
-                  conditionExpression="ctx['TASK_GenerateMobilePhoneSignatureRequestTask']"/>
-  <pd:Transition  from="receiveOtherLoginMethodGuiResponseTask"
-                  to="generateAustrianResidenceGuiTask"
-                  conditionExpression="ctx['TASK_GenerateAustrianResidenceGuiTask']"/>
+  <pd:Transition  from="generateOtherLoginMethodGuiTask"          to="receiveOtherLoginMethodGuiResponseTask" />
+  <pd:Transition  from="receiveOtherLoginMethodGuiResponseTask"   to="generateMobilePhoneSignatureRequestTask"    conditionExpression="ctx['TASK_GenerateMobilePhoneSignatureRequestTask']"/>
+  <pd:Transition  from="receiveOtherLoginMethodGuiResponseTask"   to="generateAustrianResidenceGuiTask"           conditionExpression="ctx['TASK_GenerateAustrianResidenceGuiTask']"/>
   <!-- TRANSITION_TO_GENERATE_EIDAS_LOGIN -->
   <!-- <pd:Transition  from="receiveOtherLoginMethodGuiResponseTask" -->
   <!--                 to="generateAustrianResidenceGuiTask" -->
   <!--                 conditionExpression="ctx['TASK_TODO']"/> -->
 
-  <pd:Transition  from="generateMobilePhoneSignatureRequestTask"
-                  to="receiveMobilePhoneSignatureResponseTask" />
-
-  <pd:Transition  from="receiveMobilePhoneSignatureResponseTask"
-                  to="generateAustrianResidenceGuiTask"
-                  conditionExpression="ctx['TASK_GenerateAustrianResidenceGuiTask']" />
-  <pd:Transition  from="receiveMobilePhoneSignatureResponseTask"
-                  to="generateIdentityLink" />
+  <pd:Transition  from="generateMobilePhoneSignatureRequestTask"    to="receiveMobilePhoneSignatureResponseTask" />
+  <pd:Transition  from="receiveMobilePhoneSignatureResponseTask"    to="generateAustrianResidenceGuiTask"         conditionExpression="ctx['TASK_GenerateAustrianResidenceGuiTask']" />
+  <pd:Transition  from="receiveMobilePhoneSignatureResponseTask"    to="generateIdentityLink" />
 
-  <pd:Transition  from="generateAustrianResidenceGuiTask"
-                  to="receiveAustrianResidenceGuiResponseTask" />
+  <pd:Transition  from="generateAustrianResidenceGuiTask"           to="receiveAustrianResidenceGuiResponseTask" />
 
-  <pd:Transition  from="receiveAustrianResidenceGuiResponseTask"
-                  to="createNewErnpEntryTask"
-                  conditionExpression="ctx['TASK_CreateNewErnpEntryTask']"/>
-  <pd:Transition  from="receiveAustrianResidenceGuiResponseTask"
-                  to="generateIdentityLink"/>
+  <pd:Transition  from="receiveAustrianResidenceGuiResponseTask"    to="createNewErnpEntryTask"                   conditionExpression="ctx['TASK_CreateNewErnpEntryTask']"/>
+  <pd:Transition  from="receiveAustrianResidenceGuiResponseTask"    to="generateIdentityLink"/>
 
-  <pd:Transition  from="createNewErnpEntryTask"
-                  to="generateIdentityLink" />
+  <pd:Transition  from="createNewErnpEntryTask"                     to="generateIdentityLink" />
   <!-- TODO end-->
 
-  <pd:Transition  from="generateIdentityLink"
-                  to="finalizeAuthentication" />
-  <pd:Transition  from="finalizeAuthentication"
-                  to="end" />
+  <pd:Transition  from="generateIdentityLink"                       to="finalizeAuthentication" />
+  <pd:Transition  from="finalizeAuthentication"                     to="end" />
 
   <pd:EndEvent id="end" />
 
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml
index ed086493..cec75682 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml
@@ -11,17 +11,25 @@
 
   <context:annotation-config />
 
+  <bean id="appVersionHolder"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.VersionHolder" />
+
   <bean id="eidasConnectorMessageSource"
         class="at.asitplus.eidas.specific.modules.auth.eidas.v2.config.EidasConnectorMessageSource"/>
 
   <bean id="SZRClientForeIDAS"
-    class="at.asitplus.eidas.specific.modules.auth.eidas.v2.szr.SzrClient" />
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.clients.szr.SzrClient" />
+
+  <bean id="zmrClient"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.clients.zmr.ZmrSoapClient" />
+
+  <!-- bean id="ZmrClientForeIDAS"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.DummyZmrClient" /-->
+
 
   <bean id="ErnbClientForeIDAS"
         class="at.asitplus.eidas.specific.modules.auth.eidas.v2.ernp.DummyErnpClient" />
 
-  <bean id="ZmrClientForeIDAS"
-        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.DummyZmrClient" />
 
   <bean id="eIDASAuthModule"
     class="at.asitplus.eidas.specific.modules.auth.eidas.v2.EidasAuthenticationModulImpl">
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/messages/eidas_connector_message.properties b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/messages/eidas_connector_message.properties
index a2437ce6..cfb48d57 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/messages/eidas_connector_message.properties
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/messages/eidas_connector_message.properties
@@ -13,3 +13,15 @@ module.eidasauth.06=eIDAS module was selected, but eIDAS is NOT enabled for SP:
 
 module.eidasauth.98=eIDAS module has an internal error. Reason: {0}
 module.eidasauth.99=eIDAS module has an generic internal error.
+
+module.eidasauth.matching.00=Matching failed, because find more than one ZMR entries with one eIDAS personal-identifier
+module.eidasauth.matching.01=Matching failed, because of an ZMR communication error. Reason: {0}
+module.eidasauth.matching.02=Matching failed, because ZMR response contains historic information which is not supported.
+module.eidasauth.matching.03=Matching failed in workflow step: {0} with error: {1}
+module.eidasauth.matching.04=An error occurred while loading your data from official registers. Please contact the support.  
+module.eidasauth.matching.05=Matching failed, because result from alternative authentication-method does not match to eIDAS authentication  
+module.eidasauth.matching.06=Matching failed, because GUI form for matching by residence was invalid filled  
+  
+  
+module.eidasauth.matching.98=Matching failed, because of an invalid or unknown request parameter.  
+module.eidasauth.matching.99=Matching failed, because of an unexpected processing error. Reason: {0}
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/szr_client/SZR-1.1.WSDL b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/szr_client/SZR-1.1.WSDL
deleted file mode 100644
index 3c34458d..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/szr_client/SZR-1.1.WSDL
+++ /dev/null
@@ -1,939 +0,0 @@
-<?xml version="1.0" encoding="UTF-8"?>
-<definitions targetNamespace="urn:SZRServices" xmlns="http://schemas.xmlsoap.org/wsdl/" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" xmlns:ecdsa="http://www.w3.org/2001/04/xmldsig-more#" xmlns:pd="http://reference.e-government.gv.at/namespace/persondata/20020228#" xmlns:pvp="http://egov.gv.at/pvp1.xsd" xmlns:saml="urn:oasis:names:tc:SAML:1.0:assertion" xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/" xmlns:szr="urn:SZRServices" xmlns:wsdlsoap="http://schemas.xmlsoap.org/wsdl/soap/" xmlns:wsse="http://schemas.xmlsoap.org/ws/2002/04/secext" xmlns:xs="http://www.w3.org/2001/XMLSchema">
-	<types>
-		<xs:schema elementFormDefault="qualified" targetNamespace="http://reference.e-government.gv.at/namespace/persondata/20020228#">
-			<xs:complexType name="PhysicalPersonType">
-				<xs:sequence>
-					<xs:element minOccurs="0" name="Identification" type="pd:IdentificationType" />
-					<xs:element minOccurs="1" name="Name" type="pd:PersonNameType" />
-					<xs:element minOccurs="0" name="AlternativeName" type="pd:AlternativeNameType" />
-					<xs:element minOccurs="0" name="Sex" type="xs:string" />
-					<xs:element minOccurs="0" name="DateOfBirth" type="xs:string" />
-					<xs:element minOccurs="0" name="PlaceOfBirth" type="xs:string" />
-					<xs:element minOccurs="0" name="CountryOfBirth" type="xs:string" />
-					<xs:element minOccurs="0" name="Nationality" type="xs:string" />
-				</xs:sequence>
-			</xs:complexType>
-			<xs:complexType name="IdentificationType">
-				<xs:sequence>
-					<xs:element minOccurs="0" name="Value" type="xs:string" />
-					<xs:element minOccurs="0" name="Type" type="xs:string" />
-				</xs:sequence>
-			</xs:complexType>
-			<xs:complexType name="PersonNameType">
-				<xs:sequence>
-					<xs:element minOccurs="0" name="PrefixedDegree" type="xs:string" />
-					<xs:element name="GivenName" type="xs:string" nillable="true" />
-					<xs:element name="FamilyName" type="xs:string" nillable="true" />
-					<xs:element minOccurs="0" name="SuffixedDegree" type="xs:string" />
-				</xs:sequence>
-			</xs:complexType>
-			<xs:complexType name="AlternativeNameType">
-				<xs:sequence>
-					<xs:element name="FamilyName" type="xs:string" nillable="true" />
-				</xs:sequence>
-			</xs:complexType>
-			<xs:complexType name="PostalAddressType">
-				<xs:sequence>
-					<xs:element minOccurs="0" name="PostalCode" type="xs:string" />
-					<xs:element minOccurs="0" name="Municipality" type="xs:string" />
-					<xs:element minOccurs="0" name="Locality" type="xs:string" />
-					<xs:element minOccurs="0" name="StateCode3" type="xs:string" />
-					<xs:element minOccurs="0" name="DeliveryAddress" type="pd:DeliveryAddressType" />
-					<xs:element minOccurs="0" name="HistoricRecord" type="xs:boolean" />
-				</xs:sequence>
-			</xs:complexType>
-			<xs:complexType name="DeliveryAddressType">
-				<xs:sequence>
-					<xs:element minOccurs="0" name="AddressLine" type="xs:string" />
-					<xs:element minOccurs="0" name="StreetName" type="xs:string" />
-					<xs:element minOccurs="0" name="BuildingNumber" type="xs:string" />
-					<xs:element minOccurs="0" name="Unit" type="xs:string" />
-					<xs:element minOccurs="0" name="DoorNumber" type="xs:string" />
-				</xs:sequence>
-			</xs:complexType>
-		</xs:schema>
-		<xs:schema elementFormDefault="qualified" targetNamespace="http://www.w3.org/2001/04/xmldsig-more#">
-			<xs:element name="ECDSAKeyValue" type="ecdsa:ECDSAKeyValueType" nillable="true" />
-			<xs:complexType name="ECDSAKeyValueType">
-				<xs:sequence>
-					<xs:element minOccurs="0" name="DomainParameters" type="ecdsa:DomainParamsType" />
-					<xs:element name="PublicKey" type="ecdsa:ECPointType" />
-				</xs:sequence>
-			</xs:complexType>
-			<xs:complexType name="DomainParamsType">
-				<xs:sequence>
-					<xs:element minOccurs="0" name="NamedCurve" type="ecdsa:NamedCurveType" />
-				</xs:sequence>
-			</xs:complexType>
-			<xs:complexType name="NamedCurveType">
-				<xs:attribute name="URN" type="xs:string" use="required" />
-			</xs:complexType>
-			<xs:complexType name="ECPointType">
-				<xs:sequence minOccurs="0">
-					<xs:element name="X" type="ecdsa:PrimeFieldElemType" />
-					<xs:element name="Y" type="ecdsa:PrimeFieldElemType" />
-				</xs:sequence>
-			</xs:complexType>
-			<xs:complexType name="PrimeFieldElemType">
-				<xs:attribute name="Value" type="xs:string" use="required" />
-			</xs:complexType>
-		</xs:schema>
-		<xs:schema elementFormDefault="qualified" targetNamespace="http://www.w3.org/2000/09/xmldsig#" xmlns="http://www.w3.org/2001/XMLSchema">
-			<xs:import namespace="http://www.w3.org/2001/04/xmldsig-more#" />
-			<xs:complexType name="KeyValueType">
-				<xs:sequence>
-					<xs:element minOccurs="0" name="DSAKeyValue" type="dsig:DSAKeyValueType" />
-					<xs:element minOccurs="0" name="RSAKeyValue" type="dsig:RSAKeyValueType" />
-					<xs:element minOccurs="0" ref="ecdsa:ECDSAKeyValue" />
-				</xs:sequence>
-			</xs:complexType>
-			<xs:complexType name="DSAKeyValueType">
-				<xs:sequence>
-					<xs:element minOccurs="0" name="P" type="xs:string" />
-					<xs:element minOccurs="0" name="Q" type="xs:string" />
-					<xs:element minOccurs="0" name="J" type="xs:string" />
-					<xs:element minOccurs="0" name="G" type="xs:string" />
-					<xs:element minOccurs="0" name="Y" type="xs:string" />
-					<!-- https://www.w3.org/TR/xmldsig-core/ defines PgenCounter THEN Seed, SZR.wsdl used Seed BEFORE PgenCounter. To keep it backwards compatible but allow the usual order, both ways are allowed. -->
-					<xs:choice maxOccurs="unbounded">
-						<xs:element minOccurs="0" name="PgenCounter" type="xs:string" />
-						<xs:element minOccurs="0" name="Seed" type="xs:string" />
-					</xs:choice>
-				</xs:sequence>
-			</xs:complexType>
-			<xs:complexType name="RSAKeyValueType">
-				<xs:sequence>
-					<xs:element minOccurs="0" name="Modulus" type="xs:string" />
-					<xs:element minOccurs="0" name="Exponent" type="xs:string" />
-				</xs:sequence>
-			</xs:complexType>
-		</xs:schema>
-		<xs:schema elementFormDefault="qualified" targetNamespace="urn:SZRServices">
-			<xs:import namespace="http://reference.e-government.gv.at/namespace/persondata/20020228#" />
-			<xs:import namespace="http://www.w3.org/2000/09/xmldsig#" />
-			<xs:element name="SZRException" type="szr:SZRException" />
-			<xs:complexType name="SZRException" />
-			<xs:complexType name="PersonInfoType">
-				<xs:sequence>
-					<xs:element name="Person" type="pd:PhysicalPersonType" />
-					<xs:element minOccurs="0" name="RegularDomicile" type="pd:PostalAddressType" />
-					<xs:element minOccurs="0" name="AddressCodes" type="szr:AddressCodesType" />
-					<xs:element minOccurs="0" name="TravelDocument" type="szr:TravelDocumentType" />
-					<xs:element minOccurs="0" name="DateOfBirthWildcard" type="xs:boolean" />
-					<xs:element minOccurs="0" name="AuskunftssperreGesetzt" type="xs:boolean" />
-				</xs:sequence>
-			</xs:complexType>
-			<xs:complexType name="TravelDocumentType">
-				<xs:sequence>
-					<xs:element minOccurs="0" name="DocumentNumber" type="xs:string" />
-					<xs:element minOccurs="0" name="DocumentType" type="xs:string" />
-					<xs:element minOccurs="0" name="IssueDate" type="xs:string" />
-					<xs:element minOccurs="0" name="IssuingAuthority" type="xs:string" />
-					<xs:element minOccurs="0" name="IssuingCountry" type="xs:string" />
-				</xs:sequence>
-			</xs:complexType>
-			<xs:complexType name="AddressCodesType">
-				<xs:sequence>
-					<xs:element minOccurs="0" name="GKZ" type="xs:string" />
-					<xs:element minOccurs="0" name="OKZ" type="xs:string" />
-					<xs:element minOccurs="0" name="SKZ" type="xs:string" />
-					<xs:element minOccurs="0" name="ADRCD" type="xs:string" />
-					<xs:element minOccurs="0" name="SUBCD" type="xs:string" />
-					<xs:element minOccurs="0" name="OBJNR" type="xs:string" />
-					<xs:element minOccurs="0" name="NTZLNR" type="xs:string" />
-				</xs:sequence>
-			</xs:complexType>
-			<xs:element name="TransformBPK">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element name="PersonInfo" type="szr:PersonInfoType" />
-						<xs:element name="InputBPK" type="xs:string" />
-						<xs:element name="InputBereichsKennung" type="xs:string" />
-						<xs:element name="Begruendung" type="xs:string" />
-						<xs:element maxOccurs="unbounded" name="Target" type="szr:FremdBPKRequestType" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:element name="TransformBPKResponse">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element maxOccurs="unbounded" name="TransformBPKReturn" type="szr:FremdBPKType" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:element name="GetVKZPermission">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element name="VKZ" type="xs:string" />
-						<xs:element name="BereichsKennung" type="xs:string" />
-						<xs:element minOccurs="0" name="ParticipantId" type="xs:string" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:element name="GetVKZPermissionResponse">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element name="GetVKZPermissionReturn" type="szr:GetVKZPermissionResponseType" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:complexType name="IdentityLinkType">
-				<xs:sequence>
-					<xs:element name="PersonInfo" type="szr:PersonInfoType" />
-					<xs:element name="Assertion" type="xs:anyType" />
-					<xs:element minOccurs="0" name="AdditionalInfo" type="xs:string" />
-				</xs:sequence>
-			</xs:complexType>
-			<xs:complexType name="ResultRecord">
-				<xs:sequence>
-					<xs:element name="PersonInfo" type="szr:PersonInfoType" />
-					<xs:element name="Register" type="xs:string" />
-					<xs:element name="bPK" type="xs:string" />
-					<xs:element maxOccurs="unbounded" minOccurs="0" name="FremdBPK" type="szr:FremdBPKType" />
-				</xs:sequence>
-			</xs:complexType>
-			<xs:complexType name="GetBPKKombiRequestType">
-				<xs:sequence>
-					<xs:element name="PersonInfo" type="szr:PersonInfoType" />
-					<xs:element minOccurs="0" name="InsertERnP">
-						<xs:simpleType>
-							<xs:restriction base="xs:string">
-								<xs:enumeration value="NoInsert" />
-								<xs:enumeration value="InsertOnNoMatch" />
-								<xs:enumeration value="ForceInsert" />
-							</xs:restriction>
-						</xs:simpleType>
-					</xs:element>
-					<xs:element minOccurs="0" name="Suchwizard" type="xs:boolean" />
-					<xs:element name="VKZ" type="xs:string" nillable="true" />
-					<xs:element minOccurs="0" name="BehoerdenKennzeichen" type="xs:string" />
-					<xs:element minOccurs="0" name="BereichsKennung" type="xs:string" />
-					<xs:element maxOccurs="unbounded" minOccurs="0" name="Target" type="szr:FremdBPKRequestType" />
-					<xs:element minOccurs="0" name="Sessionid" type="xs:string" />
-				</xs:sequence>
-			</xs:complexType>
-			<xs:complexType name="GetBPKKombiResponseType">
-				<xs:complexContent>
-					<xs:extension base="szr:GetBPKZPVResponseType">
-						<xs:sequence>
-							<xs:element name="FoundWithSuchwizard" type="xs:boolean" />
-							<xs:element name="Sessionid" type="xs:string" />
-						</xs:sequence>
-					</xs:extension>
-				</xs:complexContent>
-			</xs:complexType>
-			<xs:complexType name="GetBPKZPVRequestType">
-				<xs:sequence>
-					<xs:element name="PersonInfo" type="szr:PersonInfoType" />
-					<xs:element minOccurs="0" name="InsertERnP" type="xs:boolean" default="false" />
-					<xs:element minOccurs="1" name="VKZ" type="xs:string" />
-					<xs:element minOccurs="0" name="BehoerdenKennzeichen" type="xs:string" />
-					<xs:element minOccurs="0" name="BereichsKennung" type="xs:string" />
-					<xs:element maxOccurs="unbounded" minOccurs="0" name="Target" type="szr:FremdBPKRequestType" />
-				</xs:sequence>
-			</xs:complexType>
-			<xs:complexType name="GetBPKZPVResponseType">
-				<xs:sequence>
-					<xs:element maxOccurs="unbounded" name="ResultRecord" type="szr:ResultRecord" />
-					<xs:element name="InsertERnPResult" type="xs:boolean" />
-				</xs:sequence>
-			</xs:complexType>
-			<xs:complexType name="GetBPKFromStammzahlEncryptedRequestType">
-				<xs:sequence>
-					<xs:element minOccurs="1" name="StammzahlEncrypted" type="xs:string" />
-					<xs:element minOccurs="0" name="PersonInfo" type="szr:PersonInfoType" />
-					<xs:element minOccurs="1" name="VKZ" type="xs:string" />
-					<xs:element minOccurs="0" name="BereichsKennung" type="xs:string" />
-					<xs:element maxOccurs="unbounded" minOccurs="0" name="Target" type="szr:FremdBPKRequestType" />
-				</xs:sequence>
-			</xs:complexType>
-			<xs:complexType name="GetBPKFromStammzahlEncryptedResponseType">
-				<xs:sequence>
-					<xs:element minOccurs="0" name="bPK" type="xs:string" />
-					<xs:element maxOccurs="unbounded" minOccurs="0" name="FremdBPK" type="szr:FremdBPKType" />
-				</xs:sequence>
-			</xs:complexType>
-			<xs:element name="GetIdentityLink">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element name="PersonInfo" type="szr:PersonInfoType" />
-						<xs:element minOccurs="0" maxOccurs="unbounded" name="KeyValue" type="dsig:KeyValueType" />
-						<xs:element minOccurs="0" name="InsertERnP" type="xs:boolean" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:element name="GetIdentityLinkResponse">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element name="GetIdentityLinkReturn" type="szr:IdentityLinkType" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:element name="GetIdentityLinkEidas">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element name="PersonInfo" type="szr:PersonInfoType" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:element name="GetIdentityLinkEidasResponse">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element name="GetIdentityLinkReturn" type="szr:IdentityLinkType" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:element name="GetBPK">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element name="PersonInfo" type="szr:PersonInfoType" />
-						<xs:element minOccurs="0" name="BereichsKennung" type="xs:string" />
-						<xs:element minOccurs="0" name="VKZ" type="xs:string" />
-						<xs:element maxOccurs="unbounded" minOccurs="0" name="Target" type="szr:FremdBPKRequestType" />
-						<xs:element minOccurs="0" name="ListMultiplePersons" type="xs:boolean" />
-						<xs:element minOccurs="0" name="InsertERnP" type="xs:boolean" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:element name="GetBPKResponse">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element minOccurs="0" name="GetBPKReturn" type="xs:string" />
-						<xs:element maxOccurs="unbounded" minOccurs="0" name="FremdBPK" type="szr:FremdBPKType" />
-						<xs:element maxOccurs="5" minOccurs="0" name="PersonInfo" type="szr:PersonInfoType" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:element name="GetBPKs">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element maxOccurs="unbounded" name="PersonInfo" type="szr:PersonInfoType" />
-						<xs:element minOccurs="0" name="BereichsKennung" type="xs:string" />
-						<xs:element name="VKZ" type="xs:string" />
-						<xs:element maxOccurs="unbounded" minOccurs="0" name="Target" type="szr:FremdBPKRequestType" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:element name="GetBPKsResponse">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element maxOccurs="unbounded" name="ResultRecord" type="szr:GetBPKsResponseType" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:complexType name="GetBPKsResponseType">
-				<xs:sequence>
-					<xs:element minOccurs="0" name="BPK" type="xs:string" />
-					<xs:element maxOccurs="unbounded" minOccurs="0" name="FremdBPK" type="szr:FremdBPKType" />
-					<xs:element minOccurs="0" name="Fault">
-						<xs:complexType>
-							<xs:attribute name="Code" type="xs:string" />
-							<xs:attribute name="String" type="xs:string" />
-						</xs:complexType>
-					</xs:element>
-				</xs:sequence>
-			</xs:complexType>
-			<xs:element name="GetBPKKombi">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element name="GetBPKKombiRequest" type="szr:GetBPKKombiRequestType" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:element name="GetBPKKombiResponse">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element name="GetBPKKombiResponse" type="szr:GetBPKKombiResponseType" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:element name="GetBPKZPV">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element name="GetBPKZPVRequest" type="szr:GetBPKZPVRequestType" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:element name="GetBPKZPVResponse">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element name="GetBPKZPVResponse" type="szr:GetBPKZPVResponseType" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:element name="GetBPKFromStammzahlEncrypted">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element name="GetBPKFromStammzahlEncryptedRequest" type="szr:GetBPKFromStammzahlEncryptedRequestType" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:element name="GetBPKFromStammzahlEncryptedResponse">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element name="GetBPKFromStammzahlEncryptedResponse" type="szr:GetBPKFromStammzahlEncryptedResponseType" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:element name="ValidateIdentityLink">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element name="IdentityLink" type="szr:IdentityLinkType" />
-						<xs:element name="BereichsKennung" type="xs:string" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:element name="ValidateIdentityLinkResponse">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element name="ValidateIdentityLinkReturn" type="xs:string" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:element name="BPKzuBasiszahl">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element name="Bereich" type="xs:string" />
-						<xs:element name="BPK" type="xs:string" />
-						<xs:element maxOccurs="unbounded" name="BasisZahl" type="xs:string" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:element name="BPKzuBasiszahlResponse">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element name="BPKzuBasiszahlReturn" type="xs:string" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:complexType name="FremdBPKRequestType">
-				<xs:sequence>
-					<xs:element name="BereichsKennung" type="xs:string" />
-					<xs:element name="VKZ" type="xs:string" />
-				</xs:sequence>
-			</xs:complexType>
-			<xs:complexType name="FremdBPKType">
-				<xs:sequence>
-					<xs:element name="BereichsKennung" type="xs:string" />
-					<xs:element name="FremdBPK" type="xs:string" />
-				</xs:sequence>
-			</xs:complexType>
-			<xs:complexType name="GetVKZPermissionResponseType">
-				<xs:sequence>
-					<xs:element name="isAllowed" type="xs:boolean" />
-					<xs:element minOccurs="0" name="behSchluessel" type="xs:string" />
-				</xs:sequence>
-			</xs:complexType>
-			<xs:element name="BasiszahlZuBPK">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element minOccurs="0" name="VKZ" type="xs:string" />
-						<xs:element maxOccurs="unbounded" name="BasisZahl" type="xs:string" />
-						<xs:element maxOccurs="unbounded" minOccurs="0" name="Bereich" type="xs:string" />
-						<xs:element maxOccurs="unbounded" minOccurs="0" name="FremdBPKTargets" type="szr:FremdBPKRequestType" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:complexType name="BasiszahlZuBPKReturnType">
-				<xs:sequence>
-					<xs:element maxOccurs="unbounded" minOccurs="0" name="BPK" type="xs:string" />
-					<xs:element maxOccurs="unbounded" minOccurs="0" name="FremdBPKs" type="szr:FremdBPKType" />
-				</xs:sequence>
-			</xs:complexType>
-			<xs:element name="BasiszahlZuBPKResponse">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element maxOccurs="unbounded" name="BasiszahlZuBPKReturn" type="szr:BasiszahlZuBPKReturnType" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:element name="ZMRAnwendungsIntegration">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element name="Bereich" type="xs:string" />
-						<xs:element maxOccurs="unbounded" minOccurs="0" name="FremdBPKTargets" type="szr:FremdBPKRequestType" />
-						<xs:element maxOccurs="unbounded" name="ZMRfremdbPK" type="xs:string" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:complexType name="ZMRAnwendungsIntegrationReturnType">
-				<xs:sequence>
-					<xs:element name="BPK" type="xs:string" />
-					<xs:element maxOccurs="unbounded" minOccurs="0" name="FremdBPKs" type="szr:FremdBPKType" />
-				</xs:sequence>
-			</xs:complexType>
-			<xs:element name="ZMRAnwendungsIntegrationResponse">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element maxOccurs="unbounded" name="ZMRAnwendungsIntegrationReturn" type="szr:ZMRAnwendungsIntegrationReturnType" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:element name="GetStammzahl">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element name="PersonInfo" type="szr:PersonInfoType" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:element name="GetStammzahlResponse">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element name="Stammzahl" type="xs:string" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:element name="GetStammzahlEncrypted">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element name="PersonInfo" type="szr:PersonInfoType" />
-						<xs:element minOccurs="0" name="InsertERnP" type="xs:boolean" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:element name="GetStammzahlEncryptedResponse">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element name="Stammzahl" type="xs:string" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:element name="GetVersion" nillable="true" />
-			<xs:element name="GetVersionResponse">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element name="Version" type="xs:string" />
-						<xs:element name="Revision" type="xs:string" />
-						<xs:element name="Time" type="xs:string" />
-						<xs:element name="IdentityLinkNotAfter" type="xs:string" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-		</xs:schema>
-		<xs:schema targetNamespace="http://egov.gv.at/pvp1.xsd">
-			<xs:include schemaLocation="pvp1.xsd" />
-		</xs:schema>
-		<xs:schema elementFormDefault="qualified" targetNamespace="http://schemas.xmlsoap.org/ws/2002/04/secext">
-			<xs:element name="Security">
-				<xs:complexType>
-					<xs:sequence>
-						<!-- add the pvpToken here. You can also uncomment the following line if you support XSD 1.1 -->
-						<!-- <xs:element ref="pvp:pvpToken" /> -->
-						<xs:any processContents="lax" minOccurs="0" maxOccurs="unbounded" />
-					</xs:sequence>
-					<xs:anyAttribute processContents="lax" />
-				</xs:complexType>
-			</xs:element>
-		</xs:schema>
-	</types>
-	<message name="Header">
-		<part name="SecurityHeader" element="wsse:Security" />
-	</message>
-	<message name="GetIdentityLinkRequest">
-		<part element="szr:GetIdentityLink" name="parameters" />
-	</message>
-	<message name="GetIdentityLinkResponse">
-		<part element="szr:GetIdentityLinkResponse" name="parameters" />
-	</message>
-	<message name="GetIdentityLinkEidasRequest">
-		<part element="szr:GetIdentityLinkEidas" name="parameters" />
-	</message>
-	<message name="GetIdentityLinkEidasResponse">
-		<part element="szr:GetIdentityLinkEidasResponse" name="parameters" />
-	</message>
-	<message name="GetBPKRequest">
-		<part element="szr:GetBPK" name="parameters" />
-	</message>
-	<message name="GetBPKResponse">
-		<part element="szr:GetBPKResponse" name="parameters" />
-	</message>
-	<message name="GetBPKsRequest">
-		<part element="szr:GetBPKs" name="parameters" />
-	</message>
-	<message name="GetBPKsResponse">
-		<part element="szr:GetBPKsResponse" name="parameters" />
-	</message>
-	<message name="GetBPKKombiRequest">
-		<part element="szr:GetBPKKombi" name="parameters" />
-	</message>
-	<message name="GetBPKKombiResponse">
-		<part element="szr:GetBPKKombiResponse" name="parameters" />
-	</message>
-	<message name="GetBPKZPVRequest">
-		<part element="szr:GetBPKZPV" name="parameters" />
-	</message>
-	<message name="GetBPKZPVResponse">
-		<part element="szr:GetBPKZPVResponse" name="parameters" />
-	</message>
-	<message name="GetBPKFromStammzahlEncryptedRequest">
-		<part element="szr:GetBPKFromStammzahlEncrypted" name="parameters" />
-	</message>
-	<message name="GetBPKFromStammzahlEncryptedResponse">
-		<part element="szr:GetBPKFromStammzahlEncryptedResponse" name="parameters" />
-	</message>
-	<message name="BPKzuBasiszahlRequest">
-		<part element="szr:BPKzuBasiszahl" name="parameters" />
-	</message>
-	<message name="BPKzuBasiszahlResponse">
-		<part element="szr:BPKzuBasiszahlResponse" name="parameters" />
-	</message>
-	<message name="BasiszahlZuBPKRequest">
-		<part element="szr:BasiszahlZuBPK" name="parameters" />
-	</message>
-	<message name="BasiszahlZuBPKResponse">
-		<part element="szr:BasiszahlZuBPKResponse" name="parameters" />
-	</message>
-	<message name="ValidateIdentityLinkRequest">
-		<part element="szr:ValidateIdentityLink" name="parameters" />
-	</message>
-	<message name="ValidateIdentityLinkResponse">
-		<part element="szr:ValidateIdentityLinkResponse" name="parameters" />
-	</message>
-	<message name="TransformBPKRequest">
-		<part element="szr:TransformBPK" name="parameters" />
-	</message>
-	<message name="TransformBPKResponse">
-		<part element="szr:TransformBPKResponse" name="parameters" />
-	</message>
-	<message name="GetVKZPermissionRequest">
-		<part element="szr:GetVKZPermission" name="parameters" />
-	</message>
-	<message name="GetVKZPermissionResponse">
-		<part element="szr:GetVKZPermissionResponse" name="parameters" />
-	</message>
-	<message name="ZMRAnwendungsIntegrationRequest">
-		<part element="szr:ZMRAnwendungsIntegration" name="parameters" />
-	</message>
-	<message name="ZMRAnwendungsIntegrationResponse">
-		<part element="szr:ZMRAnwendungsIntegrationResponse" name="parameters" />
-	</message>
-	<message name="GetStammzahlRequest">
-		<part element="szr:GetStammzahl" name="parameters" />
-	</message>
-	<message name="GetStammzahlResponse">
-		<part element="szr:GetStammzahlResponse" name="parameters" />
-	</message>
-	<message name="GetStammzahlEncryptedRequest">
-		<part element="szr:GetStammzahlEncrypted" name="parameters" />
-	</message>
-	<message name="GetStammzahlEncryptedResponse">
-		<part element="szr:GetStammzahlEncryptedResponse" name="parameters" />
-	</message>
-	<message name="GetVersionRequest">
-		<part element="szr:GetVersion" name="parameters" />
-	</message>
-	<message name="GetVersionResponse">
-		<part element="szr:GetVersionResponse" name="parameters" />
-	</message>
-	<message name="SZRException">
-		<part element="szr:SZRException" name="fault" />
-	</message>
-	<portType name="SZR">
-		<operation name="GetIdentityLink">
-			<input message="szr:GetIdentityLinkRequest" name="GetIdentityLinkRequest" />
-			<output message="szr:GetIdentityLinkResponse" name="GetIdentityLinkResponse" />
-			<fault message="szr:SZRException" name="SZRException" />
-		</operation>
-		<operation name="GetIdentityLinkEidas">
-			<input message="szr:GetIdentityLinkEidasRequest" name="GetIdentityLinkEidasRequest" />
-			<output message="szr:GetIdentityLinkEidasResponse" name="GetIdentityLinkEidasResponse" />
-			<fault message="szr:SZRException" name="SZRException" />
-		</operation>
-		<operation name="GetBPK">
-			<jaxws:bindings xmlns:jaxws="http://java.sun.com/xml/ns/jaxws">
-				<jaxws:enableWrapperStyle>false</jaxws:enableWrapperStyle>
-			</jaxws:bindings>
-			<input message="szr:GetBPKRequest" name="GetBPKRequest" />
-			<output message="szr:GetBPKResponse" name="GetBPKResponse" />
-			<fault message="szr:SZRException" name="SZRException" />
-		</operation>
-		<operation name="GetBPKs">
-			<input message="szr:GetBPKsRequest" name="GetBPKsRequest" />
-			<output message="szr:GetBPKsResponse" name="GetBPKsResponse" />
-			<fault message="szr:SZRException" name="SZRException" />
-		</operation>
-		<operation name="GetBPKKombi">
-			<input message="szr:GetBPKKombiRequest" name="GetBPKKombiRequest" />
-			<output message="szr:GetBPKKombiResponse" name="GetBPKKombiResponse" />
-			<fault message="szr:SZRException" name="SZRException" />
-		</operation>
-		<operation name="GetBPKZPV">
-			<input message="szr:GetBPKZPVRequest" name="GetBPKZPVRequest" />
-			<output message="szr:GetBPKZPVResponse" name="GetBPKZPVResponse" />
-			<fault message="szr:SZRException" name="SZRException" />
-		</operation>
-		<operation name="GetBPKFromStammzahlEncrypted">
-			<input message="szr:GetBPKFromStammzahlEncryptedRequest" name="GetBPKFromStammzahlEncryptedRequest" />
-			<output message="szr:GetBPKFromStammzahlEncryptedResponse" name="GetBPKFromStammzahlEncryptedResponse" />
-			<fault message="szr:SZRException" name="SZRException" />
-		</operation>
-		<operation name="ValidateIdentityLink">
-			<input message="szr:ValidateIdentityLinkRequest" name="ValidateIdentityLinkRequest" />
-			<output message="szr:ValidateIdentityLinkResponse" name="ValidateIdentityLinkResponse" />
-			<fault message="szr:SZRException" name="SZRException" />
-		</operation>
-		<operation name="TransformBPK">
-			<input message="szr:TransformBPKRequest" name="TransformBPKRequest" />
-			<output message="szr:TransformBPKResponse" name="TransformBPKResponse" />
-			<fault message="szr:SZRException" name="SZRException" />
-		</operation>
-		<operation name="GetVKZPermission">
-			<input message="szr:GetVKZPermissionRequest" name="GetVKZPermissionRequest" />
-			<output message="szr:GetVKZPermissionResponse" name="GetVKZPermissionResponse" />
-			<fault message="szr:SZRException" name="SZRException" />
-		</operation>
-		<operation name="BPKzuBasiszahl">
-			<input message="szr:BPKzuBasiszahlRequest" name="BPKzuBasiszahlRequest" />
-			<output message="szr:BPKzuBasiszahlResponse" name="BPKzuBasiszahlResponse" />
-			<fault message="szr:SZRException" name="SZRException" />
-		</operation>
-		<operation name="BasiszahlZuBPK">
-			<input message="szr:BasiszahlZuBPKRequest" name="BasiszahlZuBPKRequest" />
-			<output message="szr:BasiszahlZuBPKResponse" name="BasiszahlZuBPKResponse" />
-			<fault message="szr:SZRException" name="SZRException" />
-		</operation>
-		<operation name="ZMRAnwendungsIntegration">
-			<input message="szr:ZMRAnwendungsIntegrationRequest" name="ZMRAnwendungsIntegrationRequest" />
-			<output message="szr:ZMRAnwendungsIntegrationResponse" name="ZMRAnwendungsIntegrationResponse" />
-			<fault message="szr:SZRException" name="SZRException" />
-		</operation>
-		<operation name="GetStammzahl">
-			<input message="szr:GetStammzahlRequest" name="GetStammzahlRequest" />
-			<output message="szr:GetStammzahlResponse" name="GetStammzahlResponse" />
-			<fault message="szr:SZRException" name="SZRException" />
-		</operation>
-		<operation name="GetStammzahlEncrypted">
-			<input message="szr:GetStammzahlEncryptedRequest" name="GetStammzahlEncryptedRequest" />
-			<output message="szr:GetStammzahlEncryptedResponse" name="GetStammzahlEncryptedResponse" />
-			<fault message="szr:SZRException" name="SZRException" />
-		</operation>
-		<operation name="GetVersion">
-			<input message="szr:GetVersionRequest" name="GetVersionRequest" />
-			<output message="szr:GetVersionResponse" name="GetVersionResponse" />
-			<fault message="szr:SZRException" name="SZRException" />
-		</operation>
-	</portType>
-	<binding name="SZRSoapBinding" type="szr:SZR">
-		<wsdlsoap:binding style="document" transport="http://schemas.xmlsoap.org/soap/http" />
-		<operation name="GetIdentityLink">
-			<wsdlsoap:operation soapAction="" />
-			<input name="GetIdentityLinkRequest">
-				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
-				<wsdlsoap:body use="literal" />
-			</input>
-			<output name="GetIdentityLinkResponse">
-				<wsdlsoap:body use="literal" />
-			</output>
-			<fault name="SZRException">
-				<wsdlsoap:fault name="SZRException" use="literal" />
-			</fault>
-		</operation>
-		<operation name="GetIdentityLinkEidas">
-			<wsdlsoap:operation soapAction="" />
-			<input name="GetIdentityLinkEidasRequest">
-				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
-				<wsdlsoap:body use="literal" />
-			</input>
-			<output name="GetIdentityLinkEidasResponse">
-				<wsdlsoap:body use="literal" />
-			</output>
-			<fault name="SZRException">
-				<wsdlsoap:fault name="SZRException" use="literal" />
-			</fault>
-		</operation>
-		<operation name="GetBPK">
-			<wsdlsoap:operation soapAction="" />
-			<input name="GetBPKRequest">
-				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
-				<wsdlsoap:body use="literal" />
-			</input>
-			<output name="GetBPKResponse">
-				<wsdlsoap:body use="literal" />
-			</output>
-			<fault name="SZRException">
-				<wsdlsoap:fault name="SZRException" use="literal" />
-			</fault>
-		</operation>
-		<operation name="GetBPKs">
-			<wsdlsoap:operation soapAction="" />
-			<input name="GetBPKsRequest">
-				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
-				<wsdlsoap:body use="literal" />
-			</input>
-			<output name="GetBPKsResponse">
-				<wsdlsoap:body use="literal" />
-			</output>
-			<fault name="SZRException">
-				<wsdlsoap:fault name="SZRException" use="literal" />
-			</fault>
-		</operation>
-		<operation name="GetBPKKombi">
-			<wsdlsoap:operation soapAction="" />
-			<input name="GetBPKKombiRequest">
-				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
-				<wsdlsoap:body use="literal" />
-			</input>
-			<output name="GetBPKKombiResponse">
-				<wsdlsoap:body use="literal" />
-			</output>
-			<fault name="SZRException">
-				<wsdlsoap:fault name="SZRException" use="literal" />
-			</fault>
-		</operation>
-		<operation name="GetBPKZPV">
-			<wsdlsoap:operation soapAction="" />
-			<input name="GetBPKZPVRequest">
-				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
-				<wsdlsoap:body use="literal" />
-			</input>
-			<output name="GetBPKZPVResponse">
-				<wsdlsoap:body use="literal" />
-			</output>
-			<fault name="SZRException">
-				<wsdlsoap:fault name="SZRException" use="literal" />
-			</fault>
-		</operation>
-		<operation name="GetBPKFromStammzahlEncrypted">
-			<wsdlsoap:operation soapAction="" />
-			<input name="GetBPKFromStammzahlEncryptedRequest">
-				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
-				<wsdlsoap:body use="literal" />
-			</input>
-			<output name="GetBPKFromStammzahlEncryptedResponse">
-				<wsdlsoap:body use="literal" />
-			</output>
-			<fault name="SZRException">
-				<wsdlsoap:fault name="SZRException" use="literal" />
-			</fault>
-		</operation>
-		<operation name="GetVKZPermission">
-			<wsdlsoap:operation soapAction="" />
-			<input name="GetVKZPermissionRequest">
-				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
-				<wsdlsoap:body use="literal" />
-			</input>
-			<output name="GetVKZPermissionResponse">
-				<wsdlsoap:body use="literal" />
-			</output>
-			<fault name="SZRException">
-				<wsdlsoap:fault name="SZRException" use="literal" />
-			</fault>
-		</operation>
-		<operation name="ValidateIdentityLink">
-			<wsdlsoap:operation soapAction="" />
-			<input name="ValidateIdentityLinkRequest">
-				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
-				<wsdlsoap:body use="literal" />
-			</input>
-			<output name="ValidateIdentityLinkResponse">
-				<wsdlsoap:body use="literal" />
-			</output>
-			<fault name="SZRException">
-				<wsdlsoap:fault name="SZRException" use="literal" />
-			</fault>
-		</operation>
-		<operation name="TransformBPK">
-			<wsdlsoap:operation soapAction="" />
-			<input name="TransformBPKRequest">
-				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
-				<wsdlsoap:body use="literal" />
-			</input>
-			<output name="TransformBPKResponse">
-				<wsdlsoap:body use="literal" />
-			</output>
-			<fault name="SZRException">
-				<wsdlsoap:fault name="SZRException" use="literal" />
-			</fault>
-		</operation>
-		<operation name="BPKzuBasiszahl">
-			<wsdlsoap:operation soapAction="" />
-			<input name="BPKzuBasiszahlRequest">
-				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
-				<wsdlsoap:body use="literal" />
-			</input>
-			<output name="BPKzuBasiszahlResponse">
-				<wsdlsoap:body use="literal" />
-			</output>
-			<fault name="SZRException">
-				<wsdlsoap:fault name="SZRException" use="literal" />
-			</fault>
-		</operation>
-		<operation name="BasiszahlZuBPK">
-			<wsdlsoap:operation soapAction="" />
-			<input name="BasiszahlZuBPKRequest">
-				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
-				<wsdlsoap:body use="literal" />
-			</input>
-			<output name="BasiszahlZuBPKResponse">
-				<wsdlsoap:body use="literal" />
-			</output>
-			<fault name="SZRException">
-				<wsdlsoap:fault name="SZRException" use="literal" />
-			</fault>
-		</operation>
-		<operation name="ZMRAnwendungsIntegration">
-			<wsdlsoap:operation soapAction="" />
-			<input name="ZMRAnwendungsIntegrationRequest">
-				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
-				<wsdlsoap:body use="literal" />
-			</input>
-			<output name="ZMRAnwendungsIntegrationResponse">
-				<wsdlsoap:body use="literal" />
-			</output>
-			<fault name="SZRException">
-				<wsdlsoap:fault name="SZRException" use="literal" />
-			</fault>
-		</operation>
-		<operation name="GetStammzahl">
-			<wsdlsoap:operation soapAction="" />
-			<input name="GetStammzahlRequest">
-				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
-				<wsdlsoap:body use="literal" />
-			</input>
-			<output name="GetStammzahlResponse">
-				<wsdlsoap:body use="literal" />
-			</output>
-			<fault name="SZRException">
-				<wsdlsoap:fault name="SZRException" use="literal" />
-			</fault>
-		</operation>
-		<operation name="GetStammzahlEncrypted">
-			<wsdlsoap:operation soapAction="" />
-			<input name="GetStammzahlEncryptedRequest">
-				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
-				<wsdlsoap:body use="literal" />
-			</input>
-			<output name="GetStammzahlEncryptedResponse">
-				<wsdlsoap:body use="literal" />
-			</output>
-			<fault name="SZRException">
-				<wsdlsoap:fault name="SZRException" use="literal" />
-			</fault>
-		</operation>
-		<operation name="GetVersion">
-			<wsdlsoap:operation soapAction="" />
-			<input name="GetVersionRequest">
-				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
-				<wsdlsoap:body use="literal" />
-			</input>
-			<output name="GetVersionResponse">
-				<wsdlsoap:body use="literal" />
-			</output>
-			<fault name="SZRException">
-				<wsdlsoap:fault name="SZRException" use="literal" />
-			</fault>
-		</operation>
-	</binding>
-	<service name="SZRService">
-		<port binding="szr:SZRSoapBinding" name="SZRBusinesspartnerTestumgebung">
-			<wsdlsoap:address location="https://pvawp.bmi.gv.at/at.gv.bmi.szrsrv-b/services/SZR" />
-		</port>
-		<port binding="szr:SZRSoapBinding" name="SZRTestumgebung">
-			<wsdlsoap:address location="https://pvawp.bmi.gv.at/bmi.gv.at/soap/SZ2Services-T/services/SZR" />
-		</port>
-		<port binding="szr:SZRSoapBinding" name="SZRProduktionsumgebung">
-			<wsdlsoap:address location="https://pvawp.bmi.gv.at/bmi.gv.at/soap/SZ2Services/services/SZR" />
-		</port>
-	</service>
-</definitions>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/szr_client/SZR-1.WSDL b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/szr_client/SZR-1.WSDL
deleted file mode 100644
index 4ad2645a..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/szr_client/SZR-1.WSDL
+++ /dev/null
@@ -1,901 +0,0 @@
-<?xml version="1.0" encoding="UTF-8"?>
-<definitions targetNamespace="urn:SZRServices" xmlns="http://schemas.xmlsoap.org/wsdl/" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" xmlns:ecdsa="http://www.w3.org/2001/04/xmldsig-more#" xmlns:pd="http://reference.e-government.gv.at/namespace/persondata/20020228#" xmlns:pvp="http://egov.gv.at/pvp1.xsd" xmlns:saml="urn:oasis:names:tc:SAML:1.0:assertion" xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/" xmlns:szr="urn:SZRServices" xmlns:wsdlsoap="http://schemas.xmlsoap.org/wsdl/soap/" xmlns:wsse="http://schemas.xmlsoap.org/ws/2002/04/secext" xmlns:xs="http://www.w3.org/2001/XMLSchema">
-	<types>
-		<xs:schema elementFormDefault="qualified" targetNamespace="http://reference.e-government.gv.at/namespace/persondata/20020228#">
-			<xs:complexType name="PhysicalPersonType">
-				<xs:sequence>
-					<xs:element minOccurs="0" name="Identification" type="pd:IdentificationType" />
-					<xs:element minOccurs="1" name="Name" type="pd:PersonNameType" />
-					<xs:element minOccurs="0" name="AlternativeName" type="pd:AlternativeNameType" />
-					<xs:element minOccurs="0" name="Sex" type="xs:string" />
-					<xs:element minOccurs="0" name="DateOfBirth" type="xs:string" />
-					<xs:element minOccurs="0" name="PlaceOfBirth" type="xs:string" />
-					<xs:element minOccurs="0" name="CountryOfBirth" type="xs:string" />
-					<xs:element minOccurs="0" name="Nationality" type="xs:string" />
-				</xs:sequence>
-			</xs:complexType>
-			<xs:complexType name="IdentificationType">
-				<xs:sequence>
-					<xs:element minOccurs="0" name="Value" type="xs:string" />
-					<xs:element minOccurs="0" name="Type" type="xs:string" />
-				</xs:sequence>
-			</xs:complexType>
-			<xs:complexType name="PersonNameType">
-				<xs:sequence>
-					<xs:element minOccurs="0" name="PrefixedDegree" type="xs:string" />
-					<xs:element name="GivenName" type="xs:string" nillable="true" />
-					<xs:element name="FamilyName" type="xs:string" nillable="true" />
-					<xs:element minOccurs="0" name="SuffixedDegree" type="xs:string" />
-				</xs:sequence>
-			</xs:complexType>
-			<xs:complexType name="AlternativeNameType">
-				<xs:sequence>
-					<xs:element name="FamilyName" type="xs:string" nillable="true" />
-				</xs:sequence>
-			</xs:complexType>
-			<xs:complexType name="PostalAddressType">
-				<xs:sequence>
-					<xs:element minOccurs="0" name="PostalCode" type="xs:string" />
-					<xs:element minOccurs="0" name="Municipality" type="xs:string" />
-					<xs:element minOccurs="0" name="Locality" type="xs:string" />
-					<xs:element minOccurs="0" name="StateCode3" type="xs:string" />
-					<xs:element minOccurs="0" name="DeliveryAddress" type="pd:DeliveryAddressType" />
-					<xs:element minOccurs="0" name="HistoricRecord" type="xs:boolean" />
-				</xs:sequence>
-			</xs:complexType>
-			<xs:complexType name="DeliveryAddressType">
-				<xs:sequence>
-					<xs:element minOccurs="0" name="AddressLine" type="xs:string" />
-					<xs:element minOccurs="0" name="StreetName" type="xs:string" />
-					<xs:element minOccurs="0" name="BuildingNumber" type="xs:string" />
-					<xs:element minOccurs="0" name="Unit" type="xs:string" />
-					<xs:element minOccurs="0" name="DoorNumber" type="xs:string" />
-				</xs:sequence>
-			</xs:complexType>
-		</xs:schema>
-		<xs:schema elementFormDefault="qualified" targetNamespace="http://www.w3.org/2001/04/xmldsig-more#">
-			<xs:element name="ECDSAKeyValue" type="ecdsa:ECDSAKeyValueType" nillable="true" />
-			<xs:complexType name="ECDSAKeyValueType">
-				<xs:sequence>
-					<xs:element minOccurs="0" name="DomainParameters" type="ecdsa:DomainParamsType" />
-					<xs:element name="PublicKey" type="ecdsa:ECPointType" />
-				</xs:sequence>
-			</xs:complexType>
-			<xs:complexType name="DomainParamsType">
-				<xs:sequence>
-					<xs:element minOccurs="0" name="NamedCurve" type="ecdsa:NamedCurveType" />
-				</xs:sequence>
-			</xs:complexType>
-			<xs:complexType name="NamedCurveType">
-				<xs:attribute name="URN" type="xs:string" use="required" />
-			</xs:complexType>
-			<xs:complexType name="ECPointType">
-				<xs:sequence minOccurs="0">
-					<xs:element name="X" type="ecdsa:PrimeFieldElemType" />
-					<xs:element name="Y" type="ecdsa:PrimeFieldElemType" />
-				</xs:sequence>
-			</xs:complexType>
-			<xs:complexType name="PrimeFieldElemType">
-				<xs:attribute name="Value" type="xs:string" use="required" />
-			</xs:complexType>
-		</xs:schema>
-		<xs:schema elementFormDefault="qualified" targetNamespace="http://www.w3.org/2000/09/xmldsig#" xmlns="http://www.w3.org/2001/XMLSchema">
-			<xs:import namespace="http://www.w3.org/2001/04/xmldsig-more#" />
-			<xs:complexType name="KeyValueType">
-				<xs:sequence>
-					<xs:element minOccurs="0" name="DSAKeyValue" type="dsig:DSAKeyValueType" />
-					<xs:element minOccurs="0" name="RSAKeyValue" type="dsig:RSAKeyValueType" />
-					<xs:element minOccurs="0" ref="ecdsa:ECDSAKeyValue" />
-				</xs:sequence>
-			</xs:complexType>
-			<xs:complexType name="DSAKeyValueType">
-				<xs:sequence>
-					<xs:element minOccurs="0" name="P" type="xs:string" />
-					<xs:element minOccurs="0" name="Q" type="xs:string" />
-					<xs:element minOccurs="0" name="J" type="xs:string" />
-					<xs:element minOccurs="0" name="G" type="xs:string" />
-					<xs:element minOccurs="0" name="Y" type="xs:string" />
-					<!-- https://www.w3.org/TR/xmldsig-core/ defines PgenCounter THEN Seed, SZR.wsdl used Seed BEFORE PgenCounter. To keep it backwards compatible but allow the usual order, both ways are allowed. -->
-					<xs:choice maxOccurs="unbounded">
-						<xs:element minOccurs="0" name="PgenCounter" type="xs:string" />
-						<xs:element minOccurs="0" name="Seed" type="xs:string" />
-					</xs:choice>
-				</xs:sequence>
-			</xs:complexType>
-			<xs:complexType name="RSAKeyValueType">
-				<xs:sequence>
-					<xs:element minOccurs="0" name="Modulus" type="xs:string" />
-					<xs:element minOccurs="0" name="Exponent" type="xs:string" />
-				</xs:sequence>
-			</xs:complexType>
-		</xs:schema>
-		<xs:schema elementFormDefault="qualified" targetNamespace="urn:SZRServices">
-			<xs:import namespace="http://reference.e-government.gv.at/namespace/persondata/20020228#" />
-			<xs:import namespace="http://www.w3.org/2000/09/xmldsig#" />
-			<xs:element name="SZRException" type="szr:SZRException" />
-			<xs:complexType name="SZRException" />
-			<xs:complexType name="PersonInfoType">
-				<xs:sequence>
-					<xs:element name="Person" type="pd:PhysicalPersonType" />
-					<xs:element minOccurs="0" name="RegularDomicile" type="pd:PostalAddressType" />
-					<xs:element minOccurs="0" name="AddressCodes" type="szr:AddressCodesType" />
-					<xs:element minOccurs="0" name="TravelDocument" type="szr:TravelDocumentType" />
-					<xs:element minOccurs="0" name="DateOfBirthWildcard" type="xs:boolean" />
-					<xs:element minOccurs="0" name="AuskunftssperreGesetzt" type="xs:boolean" />
-				</xs:sequence>
-			</xs:complexType>
-			<xs:complexType name="TravelDocumentType">
-				<xs:sequence>
-					<xs:element minOccurs="0" name="DocumentNumber" type="xs:string" />
-					<xs:element minOccurs="0" name="DocumentType" type="xs:string" />
-					<xs:element minOccurs="0" name="IssueDate" type="xs:string" />
-					<xs:element minOccurs="0" name="IssuingAuthority" type="xs:string" />
-					<xs:element minOccurs="0" name="IssuingCountry" type="xs:string" />
-				</xs:sequence>
-			</xs:complexType>
-			<xs:complexType name="AddressCodesType">
-				<xs:sequence>
-					<xs:element minOccurs="0" name="GKZ" type="xs:string" />
-					<xs:element minOccurs="0" name="OKZ" type="xs:string" />
-					<xs:element minOccurs="0" name="SKZ" type="xs:string" />
-					<xs:element minOccurs="0" name="ADRCD" type="xs:string" />
-					<xs:element minOccurs="0" name="SUBCD" type="xs:string" />
-					<xs:element minOccurs="0" name="OBJNR" type="xs:string" />
-					<xs:element minOccurs="0" name="NTZLNR" type="xs:string" />
-				</xs:sequence>
-			</xs:complexType>
-			<xs:element name="TransformBPK">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element name="PersonInfo" type="szr:PersonInfoType" />
-						<xs:element name="InputBPK" type="xs:string" />
-						<xs:element name="InputBereichsKennung" type="xs:string" />
-						<xs:element name="Begruendung" type="xs:string" />
-						<xs:element maxOccurs="unbounded" name="Target" type="szr:FremdBPKRequestType" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:element name="TransformBPKResponse">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element maxOccurs="unbounded" name="TransformBPKReturn" type="szr:FremdBPKType" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:element name="GetVKZPermission">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element name="VKZ" type="xs:string" />
-						<xs:element name="BereichsKennung" type="xs:string" />
-						<xs:element minOccurs="0" name="ParticipantId" type="xs:string" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:element name="GetVKZPermissionResponse">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element name="GetVKZPermissionReturn" type="szr:GetVKZPermissionResponseType" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:complexType name="IdentityLinkType">
-				<xs:sequence>
-					<xs:element name="PersonInfo" type="szr:PersonInfoType" />
-					<xs:element name="Assertion" type="xs:anyType" />
-					<xs:element minOccurs="0" name="AdditionalInfo" type="xs:string" />
-				</xs:sequence>
-			</xs:complexType>
-			<xs:complexType name="ResultRecord">
-				<xs:sequence>
-					<xs:element name="PersonInfo" type="szr:PersonInfoType" />
-					<xs:element name="Register" type="xs:string" />
-					<xs:element name="bPK" type="xs:string" />
-					<xs:element maxOccurs="unbounded" minOccurs="0" name="FremdBPK" type="szr:FremdBPKType" />
-				</xs:sequence>
-			</xs:complexType>
-			<xs:complexType name="GetBPKKombiRequestType">
-				<xs:sequence>
-					<xs:element name="PersonInfo" type="szr:PersonInfoType" />
-					<xs:element minOccurs="0" name="InsertERnP">
-						<xs:simpleType>
-							<xs:restriction base="xs:string">
-								<xs:enumeration value="NoInsert" />
-								<xs:enumeration value="InsertOnNoMatch" />
-								<xs:enumeration value="ForceInsert" />
-							</xs:restriction>
-						</xs:simpleType>
-					</xs:element>
-					<xs:element minOccurs="0" name="Suchwizard" type="xs:boolean" />
-					<xs:element name="VKZ" type="xs:string" nillable="true" />
-					<xs:element minOccurs="0" name="BehoerdenKennzeichen" type="xs:string" />
-					<xs:element minOccurs="0" name="BereichsKennung" type="xs:string" />
-					<xs:element maxOccurs="unbounded" minOccurs="0" name="Target" type="szr:FremdBPKRequestType" />
-					<xs:element minOccurs="0" name="Sessionid" type="xs:string" />
-				</xs:sequence>
-			</xs:complexType>
-			<xs:complexType name="GetBPKKombiResponseType">
-				<xs:complexContent>
-					<xs:extension base="szr:GetBPKZPVResponseType">
-						<xs:sequence>
-							<xs:element name="FoundWithSuchwizard" type="xs:boolean" />
-							<xs:element name="Sessionid" type="xs:string" />
-						</xs:sequence>
-					</xs:extension>
-				</xs:complexContent>
-			</xs:complexType>
-			<xs:complexType name="GetBPKZPVRequestType">
-				<xs:sequence>
-					<xs:element name="PersonInfo" type="szr:PersonInfoType" />
-					<xs:element minOccurs="0" name="InsertERnP" type="xs:boolean" default="false" />
-					<xs:element minOccurs="1" name="VKZ" type="xs:string" />
-					<xs:element minOccurs="0" name="BehoerdenKennzeichen" type="xs:string" />
-					<xs:element minOccurs="0" name="BereichsKennung" type="xs:string" />
-					<xs:element maxOccurs="unbounded" minOccurs="0" name="Target" type="szr:FremdBPKRequestType" />
-				</xs:sequence>
-			</xs:complexType>
-			<xs:complexType name="GetBPKZPVResponseType">
-				<xs:sequence>
-					<xs:element maxOccurs="unbounded" name="ResultRecord" type="szr:ResultRecord" />
-					<xs:element name="InsertERnPResult" type="xs:boolean" />
-				</xs:sequence>
-			</xs:complexType>
-			<xs:complexType name="GetBPKFromStammzahlEncryptedRequestType">
-				<xs:sequence>
-					<xs:element minOccurs="1" name="StammzahlEncrypted" type="xs:string" />
-					<xs:element minOccurs="0" name="PersonInfo" type="szr:PersonInfoType" />
-					<xs:element minOccurs="1" name="VKZ" type="xs:string" />
-					<xs:element minOccurs="0" name="BereichsKennung" type="xs:string" />
-					<xs:element maxOccurs="unbounded" minOccurs="0" name="Target" type="szr:FremdBPKRequestType" />
-				</xs:sequence>
-			</xs:complexType>
-			<xs:complexType name="GetBPKFromStammzahlEncryptedResponseType">
-				<xs:sequence>
-					<xs:element minOccurs="0" name="bPK" type="xs:string" />
-					<xs:element maxOccurs="unbounded" minOccurs="0" name="FremdBPK" type="szr:FremdBPKType" />
-				</xs:sequence>
-			</xs:complexType>
-			<xs:element name="GetIdentityLink">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element name="PersonInfo" type="szr:PersonInfoType" />
-						<xs:element maxOccurs="unbounded" name="KeyValue" type="dsig:KeyValueType" />
-						<xs:element minOccurs="0" name="InsertERnP" type="xs:boolean" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:element name="GetIdentityLinkResponse">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element name="GetIdentityLinkReturn" type="szr:IdentityLinkType" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:element name="GetBPK">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element name="PersonInfo" type="szr:PersonInfoType" />
-						<xs:element minOccurs="0" name="BereichsKennung" type="xs:string" />
-						<xs:element minOccurs="0" name="VKZ" type="xs:string" />
-						<xs:element maxOccurs="unbounded" minOccurs="0" name="Target" type="szr:FremdBPKRequestType" />
-						<xs:element minOccurs="0" name="ListMultiplePersons" type="xs:boolean" />
-						<xs:element minOccurs="0" name="InsertERnP" type="xs:boolean" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:element name="GetBPKResponse">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element minOccurs="0" name="GetBPKReturn" type="xs:string" />
-						<xs:element maxOccurs="unbounded" minOccurs="0" name="FremdBPK" type="szr:FremdBPKType" />
-						<xs:element maxOccurs="5" minOccurs="0" name="PersonInfo" type="szr:PersonInfoType" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:element name="GetBPKs">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element maxOccurs="unbounded" name="PersonInfo" type="szr:PersonInfoType" />
-						<xs:element minOccurs="0" name="BereichsKennung" type="xs:string" />
-						<xs:element name="VKZ" type="xs:string" />
-						<xs:element maxOccurs="unbounded" minOccurs="0" name="Target" type="szr:FremdBPKRequestType" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:element name="GetBPKsResponse">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element maxOccurs="unbounded" name="ResultRecord" type="szr:GetBPKsResponseType" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:complexType name="GetBPKsResponseType">
-				<xs:sequence>
-					<xs:element minOccurs="0" name="BPK" type="xs:string" />
-					<xs:element maxOccurs="unbounded" minOccurs="0" name="FremdBPK" type="szr:FremdBPKType" />
-					<xs:element minOccurs="0" name="Fault">
-						<xs:complexType>
-							<xs:attribute name="Code" type="xs:string" />
-							<xs:attribute name="String" type="xs:string" />
-						</xs:complexType>
-					</xs:element>
-				</xs:sequence>
-			</xs:complexType>
-			<xs:element name="GetBPKKombi">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element name="GetBPKKombiRequest" type="szr:GetBPKKombiRequestType" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:element name="GetBPKKombiResponse">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element name="GetBPKKombiResponse" type="szr:GetBPKKombiResponseType" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:element name="GetBPKZPV">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element name="GetBPKZPVRequest" type="szr:GetBPKZPVRequestType" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:element name="GetBPKZPVResponse">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element name="GetBPKZPVResponse" type="szr:GetBPKZPVResponseType" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:element name="GetBPKFromStammzahlEncrypted">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element name="GetBPKFromStammzahlEncryptedRequest" type="szr:GetBPKFromStammzahlEncryptedRequestType" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:element name="GetBPKFromStammzahlEncryptedResponse">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element name="GetBPKFromStammzahlEncryptedResponse" type="szr:GetBPKFromStammzahlEncryptedResponseType" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:element name="ValidateIdentityLink">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element name="IdentityLink" type="szr:IdentityLinkType" />
-						<xs:element name="BereichsKennung" type="xs:string" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:element name="ValidateIdentityLinkResponse">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element name="ValidateIdentityLinkReturn" type="xs:string" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:element name="BPKzuBasiszahl">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element name="Bereich" type="xs:string" />
-						<xs:element name="BPK" type="xs:string" />
-						<xs:element maxOccurs="unbounded" name="BasisZahl" type="xs:string" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:element name="BPKzuBasiszahlResponse">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element name="BPKzuBasiszahlReturn" type="xs:string" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:complexType name="FremdBPKRequestType">
-				<xs:sequence>
-					<xs:element name="BereichsKennung" type="xs:string" />
-					<xs:element name="VKZ" type="xs:string" />
-				</xs:sequence>
-			</xs:complexType>
-			<xs:complexType name="FremdBPKType">
-				<xs:sequence>
-					<xs:element name="BereichsKennung" type="xs:string" />
-					<xs:element name="FremdBPK" type="xs:string" />
-				</xs:sequence>
-			</xs:complexType>
-			<xs:complexType name="GetVKZPermissionResponseType">
-				<xs:sequence>
-					<xs:element name="isAllowed" type="xs:boolean" />
-					<xs:element minOccurs="0" name="behSchluessel" type="xs:string" />
-				</xs:sequence>
-			</xs:complexType>
-			<xs:element name="BasiszahlZuBPK">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element minOccurs="0" name="VKZ" type="xs:string" />
-						<xs:element maxOccurs="unbounded" name="BasisZahl" type="xs:string" />
-						<xs:element maxOccurs="unbounded" minOccurs="0" name="Bereich" type="xs:string" />
-						<xs:element maxOccurs="unbounded" minOccurs="0" name="FremdBPKTargets" type="szr:FremdBPKRequestType" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:complexType name="BasiszahlZuBPKReturnType">
-				<xs:sequence>
-					<xs:element maxOccurs="unbounded" minOccurs="0" name="BPK" type="xs:string" />
-					<xs:element maxOccurs="unbounded" minOccurs="0" name="FremdBPKs" type="szr:FremdBPKType" />
-				</xs:sequence>
-			</xs:complexType>
-			<xs:element name="BasiszahlZuBPKResponse">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element maxOccurs="unbounded" name="BasiszahlZuBPKReturn" type="szr:BasiszahlZuBPKReturnType" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:element name="ZMRAnwendungsIntegration">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element name="Bereich" type="xs:string" />
-						<xs:element maxOccurs="unbounded" minOccurs="0" name="FremdBPKTargets" type="szr:FremdBPKRequestType" />
-						<xs:element maxOccurs="unbounded" name="ZMRfremdbPK" type="xs:string" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:complexType name="ZMRAnwendungsIntegrationReturnType">
-				<xs:sequence>
-					<xs:element name="BPK" type="xs:string" />
-					<xs:element maxOccurs="unbounded" minOccurs="0" name="FremdBPKs" type="szr:FremdBPKType" />
-				</xs:sequence>
-			</xs:complexType>
-			<xs:element name="ZMRAnwendungsIntegrationResponse">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element maxOccurs="unbounded" name="ZMRAnwendungsIntegrationReturn" type="szr:ZMRAnwendungsIntegrationReturnType" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:element name="GetStammzahl">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element name="PersonInfo" type="szr:PersonInfoType" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:element name="GetStammzahlResponse">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element name="Stammzahl" type="xs:string" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:element name="GetStammzahlEncrypted">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element name="PersonInfo" type="szr:PersonInfoType" />
-						<xs:element minOccurs="0" name="InsertERnP" type="xs:boolean" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:element name="GetStammzahlEncryptedResponse">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element name="Stammzahl" type="xs:string" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:element name="GetVersion" />
-			<xs:element name="GetVersionResponse">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element name="Version" type="xs:string" />
-						<xs:element name="Revision" type="xs:string" />
-						<xs:element name="Time" type="xs:string" />
-						<xs:element name="IdentityLinkNotAfter" type="xs:string" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-		</xs:schema>
-		<xs:schema targetNamespace="http://egov.gv.at/pvp1.xsd">
-			<xs:include schemaLocation="pvp1.xsd" />
-		</xs:schema>
-		<xs:schema elementFormDefault="qualified" targetNamespace="http://schemas.xmlsoap.org/ws/2002/04/secext">
-			<xs:element name="Security">
-				<xs:complexType>
-					<xs:sequence>
-						<!-- add the pvpToken here. You can also uncomment the following line if you support XSD 1.1 -->
-						<!-- <xs:element ref="pvp:pvpToken" /> -->
-						<xs:any processContents="lax" minOccurs="0" maxOccurs="unbounded" />
-					</xs:sequence>
-					<xs:anyAttribute processContents="lax" />
-				</xs:complexType>
-			</xs:element>
-		</xs:schema>
-	</types>
-	<message name="Header">
-		<part name="SecurityHeader" element="wsse:Security" />
-	</message>
-	<message name="GetIdentityLinkRequest">
-		<part element="szr:GetIdentityLink" name="parameters" />
-	</message>
-	<message name="GetIdentityLinkResponse">
-		<part element="szr:GetIdentityLinkResponse" name="parameters" />
-	</message>
-	<message name="GetBPKRequest">
-		<part element="szr:GetBPK" name="parameters" />
-	</message>
-	<message name="GetBPKResponse">
-		<part element="szr:GetBPKResponse" name="parameters" />
-	</message>
-	<message name="GetBPKsRequest">
-		<part element="szr:GetBPKs" name="parameters" />
-	</message>
-	<message name="GetBPKsResponse">
-		<part element="szr:GetBPKsResponse" name="parameters" />
-	</message>
-	<message name="GetBPKKombiRequest">
-		<part element="szr:GetBPKKombi" name="parameters" />
-	</message>
-	<message name="GetBPKKombiResponse">
-		<part element="szr:GetBPKKombiResponse" name="parameters" />
-	</message>
-	<message name="GetBPKZPVRequest">
-		<part element="szr:GetBPKZPV" name="parameters" />
-	</message>
-	<message name="GetBPKZPVResponse">
-		<part element="szr:GetBPKZPVResponse" name="parameters" />
-	</message>
-	<message name="GetBPKFromStammzahlEncryptedRequest">
-		<part element="szr:GetBPKFromStammzahlEncrypted" name="parameters" />
-	</message>
-	<message name="GetBPKFromStammzahlEncryptedResponse">
-		<part element="szr:GetBPKFromStammzahlEncryptedResponse" name="parameters" />
-	</message>
-	<message name="BPKzuBasiszahlRequest">
-		<part element="szr:BPKzuBasiszahl" name="parameters" />
-	</message>
-	<message name="BPKzuBasiszahlResponse">
-		<part element="szr:BPKzuBasiszahlResponse" name="parameters" />
-	</message>
-	<message name="BasiszahlZuBPKRequest">
-		<part element="szr:BasiszahlZuBPK" name="parameters" />
-	</message>
-	<message name="BasiszahlZuBPKResponse">
-		<part element="szr:BasiszahlZuBPKResponse" name="parameters" />
-	</message>
-	<message name="ValidateIdentityLinkRequest">
-		<part element="szr:ValidateIdentityLink" name="parameters" />
-	</message>
-	<message name="ValidateIdentityLinkResponse">
-		<part element="szr:ValidateIdentityLinkResponse" name="parameters" />
-	</message>
-	<message name="TransformBPKRequest">
-		<part element="szr:TransformBPK" name="parameters" />
-	</message>
-	<message name="TransformBPKResponse">
-		<part element="szr:TransformBPKResponse" name="parameters" />
-	</message>
-	<message name="GetVKZPermissionRequest">
-		<part element="szr:GetVKZPermission" name="parameters" />
-	</message>
-	<message name="GetVKZPermissionResponse">
-		<part element="szr:GetVKZPermissionResponse" name="parameters" />
-	</message>
-	<message name="ZMRAnwendungsIntegrationRequest">
-		<part element="szr:ZMRAnwendungsIntegration" name="parameters" />
-	</message>
-	<message name="ZMRAnwendungsIntegrationResponse">
-		<part element="szr:ZMRAnwendungsIntegrationResponse" name="parameters" />
-	</message>
-	<message name="GetStammzahlRequest">
-		<part element="szr:GetStammzahl" name="parameters" />
-	</message>
-	<message name="GetStammzahlResponse">
-		<part element="szr:GetStammzahlResponse" name="parameters" />
-	</message>
-	<message name="GetStammzahlEncryptedRequest">
-		<part element="szr:GetStammzahlEncrypted" name="parameters" />
-	</message>
-	<message name="GetStammzahlEncryptedResponse">
-		<part element="szr:GetStammzahlEncryptedResponse" name="parameters" />
-	</message>
-	<message name="GetVersionRequest">
-		<part element="szr:GetVersion" name="parameters" />
-	</message>
-	<message name="GetVersionResponse">
-		<part element="szr:GetVersionResponse" name="parameters" />
-	</message>
-	<message name="SZRException">
-		<part element="szr:SZRException" name="fault" />
-	</message>
-	<portType name="SZR">
-		<operation name="GetIdentityLink">
-			<input message="szr:GetIdentityLinkRequest" name="GetIdentityLinkRequest" />
-			<output message="szr:GetIdentityLinkResponse" name="GetIdentityLinkResponse" />
-			<fault message="szr:SZRException" name="SZRException" />
-		</operation>
-		<operation name="GetBPK">
-			<jaxws:bindings xmlns:jaxws="http://java.sun.com/xml/ns/jaxws">
-				<jaxws:enableWrapperStyle>false</jaxws:enableWrapperStyle>
-			</jaxws:bindings>
-			<input message="szr:GetBPKRequest" name="GetBPKRequest" />
-			<output message="szr:GetBPKResponse" name="GetBPKResponse" />
-			<fault message="szr:SZRException" name="SZRException" />
-		</operation>
-		<operation name="GetBPKs">
-			<input message="szr:GetBPKsRequest" name="GetBPKsRequest" />
-			<output message="szr:GetBPKsResponse" name="GetBPKsResponse" />
-			<fault message="szr:SZRException" name="SZRException" />
-		</operation>
-		<operation name="GetBPKKombi">
-			<input message="szr:GetBPKKombiRequest" name="GetBPKKombiRequest" />
-			<output message="szr:GetBPKKombiResponse" name="GetBPKKombiResponse" />
-			<fault message="szr:SZRException" name="SZRException" />
-		</operation>
-		<operation name="GetBPKZPV">
-			<input message="szr:GetBPKZPVRequest" name="GetBPKZPVRequest" />
-			<output message="szr:GetBPKZPVResponse" name="GetBPKZPVResponse" />
-			<fault message="szr:SZRException" name="SZRException" />
-		</operation>
-		<operation name="GetBPKFromStammzahlEncrypted">
-			<input message="szr:GetBPKFromStammzahlEncryptedRequest" name="GetBPKFromStammzahlEncryptedRequest" />
-			<output message="szr:GetBPKFromStammzahlEncryptedResponse" name="GetBPKFromStammzahlEncryptedResponse" />
-			<fault message="szr:SZRException" name="SZRException" />
-		</operation>
-		<operation name="ValidateIdentityLink">
-			<input message="szr:ValidateIdentityLinkRequest" name="ValidateIdentityLinkRequest" />
-			<output message="szr:ValidateIdentityLinkResponse" name="ValidateIdentityLinkResponse" />
-			<fault message="szr:SZRException" name="SZRException" />
-		</operation>
-		<operation name="TransformBPK">
-			<input message="szr:TransformBPKRequest" name="TransformBPKRequest" />
-			<output message="szr:TransformBPKResponse" name="TransformBPKResponse" />
-			<fault message="szr:SZRException" name="SZRException" />
-		</operation>
-		<operation name="GetVKZPermission">
-			<input message="szr:GetVKZPermissionRequest" name="GetVKZPermissionRequest" />
-			<output message="szr:GetVKZPermissionResponse" name="GetVKZPermissionResponse" />
-			<fault message="szr:SZRException" name="SZRException" />
-		</operation>
-		<operation name="BPKzuBasiszahl">
-			<input message="szr:BPKzuBasiszahlRequest" name="BPKzuBasiszahlRequest" />
-			<output message="szr:BPKzuBasiszahlResponse" name="BPKzuBasiszahlResponse" />
-			<fault message="szr:SZRException" name="SZRException" />
-		</operation>
-		<operation name="BasiszahlZuBPK">
-			<input message="szr:BasiszahlZuBPKRequest" name="BasiszahlZuBPKRequest" />
-			<output message="szr:BasiszahlZuBPKResponse" name="BasiszahlZuBPKResponse" />
-			<fault message="szr:SZRException" name="SZRException" />
-		</operation>
-		<operation name="ZMRAnwendungsIntegration">
-			<input message="szr:ZMRAnwendungsIntegrationRequest" name="ZMRAnwendungsIntegrationRequest" />
-			<output message="szr:ZMRAnwendungsIntegrationResponse" name="ZMRAnwendungsIntegrationResponse" />
-			<fault message="szr:SZRException" name="SZRException" />
-		</operation>
-		<operation name="GetStammzahl">
-			<input message="szr:GetStammzahlRequest" name="GetStammzahlRequest" />
-			<output message="szr:GetStammzahlResponse" name="GetStammzahlResponse" />
-			<fault message="szr:SZRException" name="SZRException" />
-		</operation>
-		<operation name="GetStammzahlEncrypted">
-			<input message="szr:GetStammzahlEncryptedRequest" name="GetStammzahlEncryptedRequest" />
-			<output message="szr:GetStammzahlEncryptedResponse" name="GetStammzahlEncryptedResponse" />
-			<fault message="szr:SZRException" name="SZRException" />
-		</operation>
-		<operation name="GetVersion">
-			<input message="szr:GetVersionRequest" name="GetVersionRequest" />
-			<output message="szr:GetVersionResponse" name="GetVersionResponse" />
-			<fault message="szr:SZRException" name="SZRException" />
-		</operation>
-	</portType>
-	<binding name="SZRSoapBinding" type="szr:SZR">
-		<wsdlsoap:binding style="document" transport="http://schemas.xmlsoap.org/soap/http" />
-		<operation name="GetIdentityLink">
-			<wsdlsoap:operation soapAction="" />
-			<input name="GetIdentityLinkRequest">
-				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
-				<wsdlsoap:body use="literal" />
-			</input>
-			<output name="GetIdentityLinkResponse">
-				<wsdlsoap:body use="literal" />
-			</output>
-			<fault name="SZRException">
-				<wsdlsoap:fault name="SZRException" use="literal" />
-			</fault>
-		</operation>
-		<operation name="GetBPK">
-			<wsdlsoap:operation soapAction="" />
-			<input name="GetBPKRequest">
-				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
-				<wsdlsoap:body use="literal" />
-			</input>
-			<output name="GetBPKResponse">
-				<wsdlsoap:body use="literal" />
-			</output>
-			<fault name="SZRException">
-				<wsdlsoap:fault name="SZRException" use="literal" />
-			</fault>
-		</operation>
-		<operation name="GetBPKs">
-			<wsdlsoap:operation soapAction="" />
-			<input name="GetBPKsRequest">
-				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
-				<wsdlsoap:body use="literal" />
-			</input>
-			<output name="GetBPKsResponse">
-				<wsdlsoap:body use="literal" />
-			</output>
-			<fault name="SZRException">
-				<wsdlsoap:fault name="SZRException" use="literal" />
-			</fault>
-		</operation>
-		<operation name="GetBPKKombi">
-			<wsdlsoap:operation soapAction="" />
-			<input name="GetBPKKombiRequest">
-				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
-				<wsdlsoap:body use="literal" />
-			</input>
-			<output name="GetBPKKombiResponse">
-				<wsdlsoap:body use="literal" />
-			</output>
-			<fault name="SZRException">
-				<wsdlsoap:fault name="SZRException" use="literal" />
-			</fault>
-		</operation>
-		<operation name="GetBPKZPV">
-			<wsdlsoap:operation soapAction="" />
-			<input name="GetBPKZPVRequest">
-				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
-				<wsdlsoap:body use="literal" />
-			</input>
-			<output name="GetBPKZPVResponse">
-				<wsdlsoap:body use="literal" />
-			</output>
-			<fault name="SZRException">
-				<wsdlsoap:fault name="SZRException" use="literal" />
-			</fault>
-		</operation>
-		<operation name="GetBPKFromStammzahlEncrypted">
-			<wsdlsoap:operation soapAction="" />
-			<input name="GetBPKFromStammzahlEncryptedRequest">
-				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
-				<wsdlsoap:body use="literal" />
-			</input>
-			<output name="GetBPKFromStammzahlEncryptedResponse">
-				<wsdlsoap:body use="literal" />
-			</output>
-			<fault name="SZRException">
-				<wsdlsoap:fault name="SZRException" use="literal" />
-			</fault>
-		</operation>
-		<operation name="GetVKZPermission">
-			<wsdlsoap:operation soapAction="" />
-			<input name="GetVKZPermissionRequest">
-				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
-				<wsdlsoap:body use="literal" />
-			</input>
-			<output name="GetVKZPermissionResponse">
-				<wsdlsoap:body use="literal" />
-			</output>
-			<fault name="SZRException">
-				<wsdlsoap:fault name="SZRException" use="literal" />
-			</fault>
-		</operation>
-		<operation name="ValidateIdentityLink">
-			<wsdlsoap:operation soapAction="" />
-			<input name="ValidateIdentityLinkRequest">
-				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
-				<wsdlsoap:body use="literal" />
-			</input>
-			<output name="ValidateIdentityLinkResponse">
-				<wsdlsoap:body use="literal" />
-			</output>
-			<fault name="SZRException">
-				<wsdlsoap:fault name="SZRException" use="literal" />
-			</fault>
-		</operation>
-		<operation name="TransformBPK">
-			<wsdlsoap:operation soapAction="" />
-			<input name="TransformBPKRequest">
-				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
-				<wsdlsoap:body use="literal" />
-			</input>
-			<output name="TransformBPKResponse">
-				<wsdlsoap:body use="literal" />
-			</output>
-			<fault name="SZRException">
-				<wsdlsoap:fault name="SZRException" use="literal" />
-			</fault>
-		</operation>
-		<operation name="BPKzuBasiszahl">
-			<wsdlsoap:operation soapAction="" />
-			<input name="BPKzuBasiszahlRequest">
-				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
-				<wsdlsoap:body use="literal" />
-			</input>
-			<output name="BPKzuBasiszahlResponse">
-				<wsdlsoap:body use="literal" />
-			</output>
-			<fault name="SZRException">
-				<wsdlsoap:fault name="SZRException" use="literal" />
-			</fault>
-		</operation>
-		<operation name="BasiszahlZuBPK">
-			<wsdlsoap:operation soapAction="" />
-			<input name="BasiszahlZuBPKRequest">
-				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
-				<wsdlsoap:body use="literal" />
-			</input>
-			<output name="BasiszahlZuBPKResponse">
-				<wsdlsoap:body use="literal" />
-			</output>
-			<fault name="SZRException">
-				<wsdlsoap:fault name="SZRException" use="literal" />
-			</fault>
-		</operation>
-		<operation name="ZMRAnwendungsIntegration">
-			<wsdlsoap:operation soapAction="" />
-			<input name="ZMRAnwendungsIntegrationRequest">
-				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
-				<wsdlsoap:body use="literal" />
-			</input>
-			<output name="ZMRAnwendungsIntegrationResponse">
-				<wsdlsoap:body use="literal" />
-			</output>
-			<fault name="SZRException">
-				<wsdlsoap:fault name="SZRException" use="literal" />
-			</fault>
-		</operation>
-		<operation name="GetStammzahl">
-			<wsdlsoap:operation soapAction="" />
-			<input name="GetStammzahlRequest">
-				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
-				<wsdlsoap:body use="literal" />
-			</input>
-			<output name="GetStammzahlResponse">
-				<wsdlsoap:body use="literal" />
-			</output>
-			<fault name="SZRException">
-				<wsdlsoap:fault name="SZRException" use="literal" />
-			</fault>
-		</operation>
-		<operation name="GetStammzahlEncrypted">
-			<wsdlsoap:operation soapAction="" />
-			<input name="GetStammzahlEncryptedRequest">
-				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
-				<wsdlsoap:body use="literal" />
-			</input>
-			<output name="GetStammzahlEncryptedResponse">
-				<wsdlsoap:body use="literal" />
-			</output>
-			<fault name="SZRException">
-				<wsdlsoap:fault name="SZRException" use="literal" />
-			</fault>
-		</operation>
-		<operation name="GetVersion">
-			<wsdlsoap:operation soapAction="" />
-			<input name="GetVersionRequest">
-				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
-				<wsdlsoap:body use="literal" />
-			</input>
-			<output name="GetVersionResponse">
-				<wsdlsoap:body use="literal" />
-			</output>
-			<fault name="SZRException">
-				<wsdlsoap:fault name="SZRException" use="literal" />
-			</fault>
-		</operation>
-	</binding>
-	<service name="SZRService">
-		<port binding="szr:SZRSoapBinding" name="SZRBusinesspartnerTestumgebung">
-			<wsdlsoap:address location="https://pvawp.bmi.gv.at/at.gv.bmi.szrsrv-b/services/SZR" />
-		</port>
-		<port binding="szr:SZRSoapBinding" name="SZRTestumgebung">
-			<wsdlsoap:address location="https://pvawp.bmi.gv.at/bmi.gv.at/soap/SZ2Services-T/services/SZR" />
-		</port>
-		<port binding="szr:SZRSoapBinding" name="SZRProduktionsumgebung">
-			<wsdlsoap:address location="https://pvawp.bmi.gv.at/bmi.gv.at/soap/SZ2Services/services/SZR" />
-		</port>
-	</service>
-</definitions>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/szr_client/SZR_v4.0.wsdl b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/szr_client/SZR_v4.0.wsdl
deleted file mode 100644
index e7f296bd..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/szr_client/SZR_v4.0.wsdl
+++ /dev/null
@@ -1,441 +0,0 @@
-<?xml version="1.0" encoding="UTF-8"?>
-<definitions targetNamespace="urn:SZRServices" xmlns="http://schemas.xmlsoap.org/wsdl/" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" xmlns:ecdsa="http://www.w3.org/2001/04/xmldsig-more#" xmlns:pd="http://reference.e-government.gv.at/namespace/persondata/20020228#" xmlns:pvp="http://egov.gv.at/pvp1.xsd" xmlns:saml="urn:oasis:names:tc:SAML:1.0:assertion" xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/" xmlns:szr="urn:SZRServices" xmlns:wsdlsoap="http://schemas.xmlsoap.org/wsdl/soap/" xmlns:wsse="http://schemas.xmlsoap.org/ws/2002/04/secext" xmlns:xs="http://www.w3.org/2001/XMLSchema">
-    <types>
-			<xs:schema>
-				<xs:import namespace="urn:SZRServices" schemaLocation="szr_v4.0.xsd"/>
-			</xs:schema>
-		</types>
-	<message name="Header">
-		<part name="SecurityHeader" element="wsse:Security" />
-	</message>
-	<message name="GetIdentityLinkRequest">
-		<part element="szr:GetIdentityLink" name="parameters" />
-	</message>
-	<message name="GetIdentityLinkResponse">
-		<part element="szr:GetIdentityLinkResponse" name="parameters" />
-	</message>
-	<message name="GetIdentityLinkEidasRequest">
-		<part element="szr:GetIdentityLinkEidas" name="parameters" />
-	</message>
-	<message name="GetIdentityLinkEidasResponse">
-		<part element="szr:GetIdentityLinkEidasResponse" name="parameters" />
-	</message>
-	<message name="GetBPKRequest">
-		<part element="szr:GetBPK" name="parameters" />
-	</message>
-	<message name="GetBPKResponse">
-		<part element="szr:GetBPKResponse" name="parameters" />
-	</message>
-	<message name="GetBPKsRequest">
-		<part element="szr:GetBPKs" name="parameters" />
-	</message>
-	<message name="GetBPKsResponse">
-		<part element="szr:GetBPKsResponse" name="parameters" />
-	</message>
-	<message name="GetBPKKombiRequest">
-		<part element="szr:GetBPKKombi" name="parameters" />
-	</message>
-	<message name="GetBPKKombiResponse">
-		<part element="szr:GetBPKKombiResponse" name="parameters" />
-	</message>
-	<message name="GetBPKZPVRequest">
-		<part element="szr:GetBPKZPV" name="parameters" />
-	</message>
-	<message name="GetBPKZPVResponse">
-		<part element="szr:GetBPKZPVResponse" name="parameters" />
-	</message>
-	<message name="GetBPKFromStammzahlEncryptedRequest">
-		<part element="szr:GetBPKFromStammzahlEncrypted" name="parameters" />
-	</message>
-	<message name="GetBPKFromStammzahlEncryptedResponse">
-		<part element="szr:GetBPKFromStammzahlEncryptedResponse" name="parameters" />
-	</message>
-	<message name="SignContentRequest">
-		<part element="szr:SignContent" name="parameters" />
-	</message>
-	<message name="SignContentResponse">
-		<part element="szr:SignContentResponse" name="parameters" />
-	</message>
-	<message name="BPKzuBasiszahlRequest">
-		<part element="szr:BPKzuBasiszahl" name="parameters" />
-	</message>
-	<message name="BPKzuBasiszahlResponse">
-		<part element="szr:BPKzuBasiszahlResponse" name="parameters" />
-	</message>
-	<message name="BasiszahlZuBPKRequest">
-		<part element="szr:BasiszahlZuBPK" name="parameters" />
-	</message>
-	<message name="BasiszahlZuBPKResponse">
-		<part element="szr:BasiszahlZuBPKResponse" name="parameters" />
-	</message>
-	<message name="ValidateIdentityLinkRequest">
-		<part element="szr:ValidateIdentityLink" name="parameters" />
-	</message>
-	<message name="ValidateIdentityLinkResponse">
-		<part element="szr:ValidateIdentityLinkResponse" name="parameters" />
-	</message>
-	<message name="TransformBPKRequest">
-		<part element="szr:TransformBPK" name="parameters" />
-	</message>
-	<message name="TransformBPKResponse">
-		<part element="szr:TransformBPKResponse" name="parameters" />
-	</message>
-	<message name="GetVKZPermissionRequest">
-		<part element="szr:GetVKZPermission" name="parameters" />
-	</message>
-	<message name="GetVKZPermissionResponse">
-		<part element="szr:GetVKZPermissionResponse" name="parameters" />
-	</message>
-	<message name="ZMRAnwendungsIntegrationRequest">
-		<part element="szr:ZMRAnwendungsIntegration" name="parameters" />
-	</message>
-	<message name="ZMRAnwendungsIntegrationResponse">
-		<part element="szr:ZMRAnwendungsIntegrationResponse" name="parameters" />
-	</message>
-	<message name="GetStammzahlRequest">
-		<part element="szr:GetStammzahl" name="parameters" />
-	</message>
-	<message name="GetStammzahlResponse">
-		<part element="szr:GetStammzahlResponse" name="parameters" />
-	</message>
-	<message name="GetStammzahlEncryptedRequest">
-		<part element="szr:GetStammzahlEncrypted" name="parameters" />
-	</message>
-	<message name="GetStammzahlEncryptedResponse">
-		<part element="szr:GetStammzahlEncryptedResponse" name="parameters" />
-	</message>
-	<message name="GetVersionRequest">
-		<part element="szr:GetVersion" name="parameters" />
-	</message>
-	<message name="GetVersionResponse">
-		<part element="szr:GetVersionResponse" name="parameters" />
-	</message>
-	<message name="SZRException">
-		<part element="szr:SZRException" name="fault" />
-	</message>
-	<portType name="SZR">
-		<operation name="GetIdentityLink">
-			<input message="szr:GetIdentityLinkRequest" name="GetIdentityLinkRequest" />
-			<output message="szr:GetIdentityLinkResponse" name="GetIdentityLinkResponse" />
-			<fault message="szr:SZRException" name="SZRException" />
-		</operation>
-		<operation name="GetIdentityLinkEidas">
-			<input message="szr:GetIdentityLinkEidasRequest" name="GetIdentityLinkEidasRequest" />
-			<output message="szr:GetIdentityLinkEidasResponse" name="GetIdentityLinkEidasResponse" />
-			<fault message="szr:SZRException" name="SZRException" />
-		</operation>
-		<operation name="GetBPK">
-			<jaxws:bindings xmlns:jaxws="http://java.sun.com/xml/ns/jaxws">
-				<jaxws:enableWrapperStyle>false</jaxws:enableWrapperStyle>
-			</jaxws:bindings>
-			<input message="szr:GetBPKRequest" name="GetBPKRequest" />
-			<output message="szr:GetBPKResponse" name="GetBPKResponse" />
-			<fault message="szr:SZRException" name="SZRException" />
-		</operation>
-		<operation name="GetBPKs">
-			<input message="szr:GetBPKsRequest" name="GetBPKsRequest" />
-			<output message="szr:GetBPKsResponse" name="GetBPKsResponse" />
-			<fault message="szr:SZRException" name="SZRException" />
-		</operation>
-		<operation name="GetBPKKombi">
-			<input message="szr:GetBPKKombiRequest" name="GetBPKKombiRequest" />
-			<output message="szr:GetBPKKombiResponse" name="GetBPKKombiResponse" />
-			<fault message="szr:SZRException" name="SZRException" />
-		</operation>
-		<operation name="GetBPKZPV">
-			<input message="szr:GetBPKZPVRequest" name="GetBPKZPVRequest" />
-			<output message="szr:GetBPKZPVResponse" name="GetBPKZPVResponse" />
-			<fault message="szr:SZRException" name="SZRException" />
-		</operation>
-		<operation name="GetBPKFromStammzahlEncrypted">
-			<input message="szr:GetBPKFromStammzahlEncryptedRequest" name="GetBPKFromStammzahlEncryptedRequest" />
-			<output message="szr:GetBPKFromStammzahlEncryptedResponse" name="GetBPKFromStammzahlEncryptedResponse" />
-			<fault message="szr:SZRException" name="SZRException" />
-		</operation>
-		<operation name="SignContent">
-			<input message="szr:SignContentRequest" name="SignContentRequest" />
-			<output message="szr:SignContentResponse" name="SignContentResponse" />
-			<fault message="szr:SZRException" name="SZRException" />
-		</operation>
-		<operation name="ValidateIdentityLink">
-			<input message="szr:ValidateIdentityLinkRequest" name="ValidateIdentityLinkRequest" />
-			<output message="szr:ValidateIdentityLinkResponse" name="ValidateIdentityLinkResponse" />
-			<fault message="szr:SZRException" name="SZRException" />
-		</operation>
-		<operation name="TransformBPK">
-			<input message="szr:TransformBPKRequest" name="TransformBPKRequest" />
-			<output message="szr:TransformBPKResponse" name="TransformBPKResponse" />
-			<fault message="szr:SZRException" name="SZRException" />
-		</operation>
-		<operation name="GetVKZPermission">
-			<input message="szr:GetVKZPermissionRequest" name="GetVKZPermissionRequest" />
-			<output message="szr:GetVKZPermissionResponse" name="GetVKZPermissionResponse" />
-			<fault message="szr:SZRException" name="SZRException" />
-		</operation>
-		<operation name="BPKzuBasiszahl">
-			<input message="szr:BPKzuBasiszahlRequest" name="BPKzuBasiszahlRequest" />
-			<output message="szr:BPKzuBasiszahlResponse" name="BPKzuBasiszahlResponse" />
-			<fault message="szr:SZRException" name="SZRException" />
-		</operation>
-		<operation name="BasiszahlZuBPK">
-			<input message="szr:BasiszahlZuBPKRequest" name="BasiszahlZuBPKRequest" />
-			<output message="szr:BasiszahlZuBPKResponse" name="BasiszahlZuBPKResponse" />
-			<fault message="szr:SZRException" name="SZRException" />
-		</operation>
-		<operation name="ZMRAnwendungsIntegration">
-			<input message="szr:ZMRAnwendungsIntegrationRequest" name="ZMRAnwendungsIntegrationRequest" />
-			<output message="szr:ZMRAnwendungsIntegrationResponse" name="ZMRAnwendungsIntegrationResponse" />
-			<fault message="szr:SZRException" name="SZRException" />
-		</operation>
-		<operation name="GetStammzahl">
-			<input message="szr:GetStammzahlRequest" name="GetStammzahlRequest" />
-			<output message="szr:GetStammzahlResponse" name="GetStammzahlResponse" />
-			<fault message="szr:SZRException" name="SZRException" />
-		</operation>
-		<operation name="GetStammzahlEncrypted">
-			<input message="szr:GetStammzahlEncryptedRequest" name="GetStammzahlEncryptedRequest" />
-			<output message="szr:GetStammzahlEncryptedResponse" name="GetStammzahlEncryptedResponse" />
-			<fault message="szr:SZRException" name="SZRException" />
-		</operation>
-		<operation name="GetVersion">
-			<input message="szr:GetVersionRequest" name="GetVersionRequest" />
-			<output message="szr:GetVersionResponse" name="GetVersionResponse" />
-			<fault message="szr:SZRException" name="SZRException" />
-		</operation>
-	</portType>
-	<binding name="SZRSoapBinding" type="szr:SZR">
-		<wsdlsoap:binding style="document" transport="http://schemas.xmlsoap.org/soap/http" />
-		<operation name="GetIdentityLink">
-			<wsdlsoap:operation soapAction="" />
-			<input name="GetIdentityLinkRequest">
-				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
-				<wsdlsoap:body use="literal" />
-			</input>
-			<output name="GetIdentityLinkResponse">
-				<wsdlsoap:body use="literal" />
-			</output>
-			<fault name="SZRException">
-				<wsdlsoap:fault name="SZRException" use="literal" />
-			</fault>
-		</operation>
-		<operation name="GetIdentityLinkEidas">
-			<wsdlsoap:operation soapAction="" />
-			<input name="GetIdentityLinkEidasRequest">
-				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
-				<wsdlsoap:body use="literal" />
-			</input>
-			<output name="GetIdentityLinkEidasResponse">
-				<wsdlsoap:body use="literal" />
-			</output>
-			<fault name="SZRException">
-				<wsdlsoap:fault name="SZRException" use="literal" />
-			</fault>
-		</operation>
-		<operation name="GetBPK">
-			<wsdlsoap:operation soapAction="" />
-			<input name="GetBPKRequest">
-				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
-				<wsdlsoap:body use="literal" />
-			</input>
-			<output name="GetBPKResponse">
-				<wsdlsoap:body use="literal" />
-			</output>
-			<fault name="SZRException">
-				<wsdlsoap:fault name="SZRException" use="literal" />
-			</fault>
-		</operation>
-		<operation name="GetBPKs">
-			<wsdlsoap:operation soapAction="" />
-			<input name="GetBPKsRequest">
-				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
-				<wsdlsoap:body use="literal" />
-			</input>
-			<output name="GetBPKsResponse">
-				<wsdlsoap:body use="literal" />
-			</output>
-			<fault name="SZRException">
-				<wsdlsoap:fault name="SZRException" use="literal" />
-			</fault>
-		</operation>
-		<operation name="GetBPKKombi">
-			<wsdlsoap:operation soapAction="" />
-			<input name="GetBPKKombiRequest">
-				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
-				<wsdlsoap:body use="literal" />
-			</input>
-			<output name="GetBPKKombiResponse">
-				<wsdlsoap:body use="literal" />
-			</output>
-			<fault name="SZRException">
-				<wsdlsoap:fault name="SZRException" use="literal" />
-			</fault>
-		</operation>
-		<operation name="GetBPKZPV">
-			<wsdlsoap:operation soapAction="" />
-			<input name="GetBPKZPVRequest">
-				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
-				<wsdlsoap:body use="literal" />
-			</input>
-			<output name="GetBPKZPVResponse">
-				<wsdlsoap:body use="literal" />
-			</output>
-			<fault name="SZRException">
-				<wsdlsoap:fault name="SZRException" use="literal" />
-			</fault>
-		</operation>
-		<operation name="GetBPKFromStammzahlEncrypted">
-			<wsdlsoap:operation soapAction="" />
-			<input name="GetBPKFromStammzahlEncryptedRequest">
-				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
-				<wsdlsoap:body use="literal" />
-			</input>
-			<output name="GetBPKFromStammzahlEncryptedResponse">
-				<wsdlsoap:body use="literal" />
-			</output>
-			<fault name="SZRException">
-				<wsdlsoap:fault name="SZRException" use="literal" />
-			</fault>
-		</operation>
-		<operation name="SignContent">
-			<wsdlsoap:operation soapAction="" />
-			<input name="SignContentRequest">
-				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
-				<wsdlsoap:body use="literal" />
-			</input>
-			<output name="SignContentResponse">
-				<wsdlsoap:body use="literal" />
-			</output>
-			<fault name="SZRException">
-				<wsdlsoap:fault name="SZRException" use="literal" />
-			</fault>
-		</operation>
-		<operation name="GetVKZPermission">
-			<wsdlsoap:operation soapAction="" />
-			<input name="GetVKZPermissionRequest">
-				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
-				<wsdlsoap:body use="literal" />
-			</input>
-			<output name="GetVKZPermissionResponse">
-				<wsdlsoap:body use="literal" />
-			</output>
-			<fault name="SZRException">
-				<wsdlsoap:fault name="SZRException" use="literal" />
-			</fault>
-		</operation>
-		<operation name="ValidateIdentityLink">
-			<wsdlsoap:operation soapAction="" />
-			<input name="ValidateIdentityLinkRequest">
-				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
-				<wsdlsoap:body use="literal" />
-			</input>
-			<output name="ValidateIdentityLinkResponse">
-				<wsdlsoap:body use="literal" />
-			</output>
-			<fault name="SZRException">
-				<wsdlsoap:fault name="SZRException" use="literal" />
-			</fault>
-		</operation>
-		<operation name="TransformBPK">
-			<wsdlsoap:operation soapAction="" />
-			<input name="TransformBPKRequest">
-				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
-				<wsdlsoap:body use="literal" />
-			</input>
-			<output name="TransformBPKResponse">
-				<wsdlsoap:body use="literal" />
-			</output>
-			<fault name="SZRException">
-				<wsdlsoap:fault name="SZRException" use="literal" />
-			</fault>
-		</operation>
-		<operation name="BPKzuBasiszahl">
-			<wsdlsoap:operation soapAction="" />
-			<input name="BPKzuBasiszahlRequest">
-				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
-				<wsdlsoap:body use="literal" />
-			</input>
-			<output name="BPKzuBasiszahlResponse">
-				<wsdlsoap:body use="literal" />
-			</output>
-			<fault name="SZRException">
-				<wsdlsoap:fault name="SZRException" use="literal" />
-			</fault>
-		</operation>
-		<operation name="BasiszahlZuBPK">
-			<wsdlsoap:operation soapAction="" />
-			<input name="BasiszahlZuBPKRequest">
-				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
-				<wsdlsoap:body use="literal" />
-			</input>
-			<output name="BasiszahlZuBPKResponse">
-				<wsdlsoap:body use="literal" />
-			</output>
-			<fault name="SZRException">
-				<wsdlsoap:fault name="SZRException" use="literal" />
-			</fault>
-		</operation>
-		<operation name="ZMRAnwendungsIntegration">
-			<wsdlsoap:operation soapAction="" />
-			<input name="ZMRAnwendungsIntegrationRequest">
-				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
-				<wsdlsoap:body use="literal" />
-			</input>
-			<output name="ZMRAnwendungsIntegrationResponse">
-				<wsdlsoap:body use="literal" />
-			</output>
-			<fault name="SZRException">
-				<wsdlsoap:fault name="SZRException" use="literal" />
-			</fault>
-		</operation>
-		<operation name="GetStammzahl">
-			<wsdlsoap:operation soapAction="" />
-			<input name="GetStammzahlRequest">
-				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
-				<wsdlsoap:body use="literal" />
-			</input>
-			<output name="GetStammzahlResponse">
-				<wsdlsoap:body use="literal" />
-			</output>
-			<fault name="SZRException">
-				<wsdlsoap:fault name="SZRException" use="literal" />
-			</fault>
-		</operation>
-		<operation name="GetStammzahlEncrypted">
-			<wsdlsoap:operation soapAction="" />
-			<input name="GetStammzahlEncryptedRequest">
-				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
-				<wsdlsoap:body use="literal" />
-			</input>
-			<output name="GetStammzahlEncryptedResponse">
-				<wsdlsoap:body use="literal" />
-			</output>
-			<fault name="SZRException">
-				<wsdlsoap:fault name="SZRException" use="literal" />
-			</fault>
-		</operation>
-		<operation name="GetVersion">
-			<wsdlsoap:operation soapAction="" />
-			<input name="GetVersionRequest">
-				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
-				<wsdlsoap:body use="literal" />
-			</input>
-			<output name="GetVersionResponse">
-				<wsdlsoap:body use="literal" />
-			</output>
-			<fault name="SZRException">
-				<wsdlsoap:fault name="SZRException" use="literal" />
-			</fault>
-		</operation>
-	</binding>
-	<service name="SZRService">
-		<port binding="szr:SZRSoapBinding" name="SZRBusinesspartnerTestumgebung">
-			<wsdlsoap:address location="https://pvawp.bmi.gv.at/at.gv.bmi.szrsrv-b/services/SZR" />
-		</port>
-		<port binding="szr:SZRSoapBinding" name="SZRTestumgebung">
-			<wsdlsoap:address location="https://pvawp.bmi.gv.at/bmi.gv.at/soap/SZ2Services-T/services/SZR" />
-		</port>
-		<port binding="szr:SZRSoapBinding" name="SZRProduktionsumgebung">
-			<wsdlsoap:address location="https://pvawp.bmi.gv.at/bmi.gv.at/soap/SZ2Services/services/SZR" />
-		</port>
-	</service>
-</definitions>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/szr_client/pvp1.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/szr_client/pvp1.xsd
deleted file mode 100644
index 09c0b1e3..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/szr_client/pvp1.xsd
+++ /dev/null
@@ -1,133 +0,0 @@
-<?xml version="1.0" encoding="UTF-8"?>
-<!-- edited with XMLSPY v2004 rel. 2 U (http://www.xmlspy.com) by BM (Bundeskanzleramt) -->
-<!-- PVP Schema 1.8.10 -->
-<!-- pvpToken wird über das Element <Security> aus der Spezifikation WS-Security in den SOAP-Header eingebunden -->
-<!--erstellt: rainer.hoerbe@bmi.gv.at 2004-04-30 -->
-<!--geändert: rainer.hoerbe@beko.at 2007-04-04: Extensions Points definiert -->
-<xs:schema targetNamespace="http://egov.gv.at/pvp1.xsd" xmlns="http://egov.gv.at/pvp1.xsd" xmlns:xs="http://www.w3.org/2001/XMLSchema" elementFormDefault="qualified" attributeFormDefault="unqualified">
-	<xs:element name="pvpToken">
-		<xs:complexType>
-			<xs:complexContent>
-				<xs:extension base="pvpTokenType" />
-			</xs:complexContent>
-		</xs:complexType>
-	</xs:element>
-	<xs:complexType name="pvpTokenType">
-		<xs:sequence>
-			<xs:element name="authenticate">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element name="participantId" type="xs:string" />
-						<xs:element name="gvOuDomain" type="xs:string" minOccurs="0" maxOccurs="1" />
-						<xs:choice>
-							<xs:element name="userPrincipal">
-								<xs:complexType>
-									<xs:complexContent>
-										<xs:extension base="pvpPrincipalType">
-											<xs:sequence>
-												<xs:element name="gvGid" type="xs:string" />
-												<xs:element name="mail" type="xs:string" minOccurs="0" maxOccurs="1" />
-												<xs:element name="tel" type="xs:string" minOccurs="0" maxOccurs="1" />
-												<xs:element name="bpk" type="xs:string" minOccurs="0" maxOccurs="1" />
-												<xs:element name="gvFunction" type="xs:string" minOccurs="0" maxOccurs="1" />
-											</xs:sequence>
-										</xs:extension>
-									</xs:complexContent>
-								</xs:complexType>
-							</xs:element>
-							<xs:element name="systemPrincipal" type="pvpPrincipalType" />
-						</xs:choice>
-						<xs:any namespace="##other" processContents="lax" minOccurs="0" maxOccurs="unbounded">
-							<xs:annotation>
-								<xs:documentation>additional authentication properties</xs:documentation>
-							</xs:annotation>
-						</xs:any>
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:element name="authorize" minOccurs="0" maxOccurs="1">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:sequence minOccurs="0">
-							<xs:element name="gvOuId" type="xs:string" />
-							<xs:element name="ou" type="xs:string" />
-						</xs:sequence>
-						<xs:element name="role" maxOccurs="unbounded">
-							<xs:complexType>
-								<xs:sequence>
-									<xs:any namespace="##any" processContents="skip" minOccurs="0" maxOccurs="unbounded" />
-								</xs:sequence>
-								<xs:attribute name="value" type="xs:string" use="required" />
-							</xs:complexType>
-						</xs:element>
-						<xs:any namespace="##other" processContents="lax" minOccurs="0" maxOccurs="unbounded">
-							<xs:annotation>
-								<xs:documentation>additional authorization properties</xs:documentation>
-							</xs:annotation>
-						</xs:any>
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:element name="accounting" minOccurs="0">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:any processContents="skip" minOccurs="0" maxOccurs="unbounded" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:element name="pvpChainedToken" type="pvpTokenType" minOccurs="0" />
-			<xs:element name="pvpExtension" block="extension" minOccurs="0">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:any namespace="##any" processContents="skip" minOccurs="0" maxOccurs="unbounded" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-		</xs:sequence>
-		<xs:attribute name="version" type="gvVersionType" use="required" />
-		<xs:anyAttribute namespace="##any" processContents="lax" />
-	</xs:complexType>
-	<xs:complexType name="pvpPrincipalType">
-		<xs:sequence>
-			<xs:element name="userId" type="xs:string" />
-			<xs:element name="cn" type="xs:string" />
-			<xs:element name="gvOuId" type="xs:string" />
-			<xs:element name="ou" type="xs:string" />
-			<xs:element name="gvOuOKZ" type="xs:string" minOccurs="0" /> <!-- steht auch in der pvp doku, fehlt aber im normalen pvp1.xsd -->
-			<xs:element name="gvSecClass" type="gvSecClassType" minOccurs="0" />
-			<xs:any namespace="##other" processContents="lax" minOccurs="0" maxOccurs="unbounded">
-				<xs:annotation>
-					<xs:documentation>additional principal attributes</xs:documentation>
-				</xs:annotation>
-			</xs:any>
-		</xs:sequence>
-		<xs:anyAttribute namespace="##any" processContents="lax" />
-	</xs:complexType>
-	<xs:simpleType name="gvSecClassType">
-		<xs:restriction base="xs:integer">
-			<xs:enumeration value="0" />
-			<xs:enumeration value="1" />
-			<xs:enumeration value="2" />
-			<xs:enumeration value="3" />
-		</xs:restriction>
-	</xs:simpleType>
-	<xs:simpleType name="gvVersionType">
-		<xs:restriction base="xs:string">
-			<xs:enumeration value="1.0" />
-			<xs:enumeration value="1.1" />
-			<xs:enumeration value="1.2" />
-			<xs:enumeration value="1.8" />
-			<xs:enumeration value="1.9" />
-		</xs:restriction>
-	</xs:simpleType>
-	<xs:simpleType name="logLevelType">
-		<xs:restriction base="xs:integer">
-			<xs:enumeration value="0" />
-			<xs:enumeration value="1" />
-			<xs:enumeration value="2" />
-			<xs:enumeration value="3" />
-			<xs:enumeration value="4" />
-			<xs:enumeration value="5" />
-		</xs:restriction>
-	</xs:simpleType>
-</xs:schema>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/szr_client/pvp19.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/szr_client/pvp19.xsd
deleted file mode 100644
index 596a2b99..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/szr_client/pvp19.xsd
+++ /dev/null
@@ -1,133 +0,0 @@
-<?xml version="1.0" encoding="UTF-8"?>
-<!-- edited with XMLSPY v2004 rel. 2 U (http://www.xmlspy.com) by BM (Bundeskanzleramt) -->
-<!-- PVP Schema 1.8.10 -->
-<!-- pvpToken wird über das Element <Security> aus der Spezifikation WS-Security in den SOAP-Header eingebunden -->
-<!--erstellt: rainer.hoerbe@bmi.gv.at 2004-04-30 -->
-<!--geändert: rainer.hoerbe@beko.at 2007-04-04: Extensions Points definiert -->
-<xs:schema targetNamespace="http://egov.gv.at/pvp1.xsd" xmlns="http://egov.gv.at/pvp1.xsd" xmlns:xs="http://www.w3.org/2001/XMLSchema" elementFormDefault="qualified" attributeFormDefault="unqualified">
-	<xs:element name="pvpToken">
-		<xs:complexType>
-			<xs:complexContent>
-				<xs:extension base="pvpTokenType" />
-			</xs:complexContent>
-		</xs:complexType>
-	</xs:element>
-	<xs:complexType name="pvpTokenType">
-		<xs:sequence>
-			<xs:element name="authenticate">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element name="participantId" type="xs:string" />
-						<xs:element name="gvOuDomain" type="xs:string" minOccurs="0" maxOccurs="1" />
-						<xs:choice>
-							<xs:element name="userPrincipal">
-								<xs:complexType>
-									<xs:complexContent>
-										<xs:extension base="pvpPrincipalType">
-											<xs:sequence>
-												<xs:element name="gvGid" type="xs:string" />
-												<xs:element name="mail" type="xs:string" minOccurs="0" maxOccurs="1" />
-												<xs:element name="tel" type="xs:string" minOccurs="0" maxOccurs="1" />
-												<xs:element name="bpk" type="xs:string" minOccurs="0" maxOccurs="1" />
-												<xs:element name="gvFunction" type="xs:string" minOccurs="0" maxOccurs="1" />
-											</xs:sequence>
-										</xs:extension>
-									</xs:complexContent>
-								</xs:complexType>
-							</xs:element>
-							<xs:element name="systemPrincipal" type="pvpPrincipalType" />
-						</xs:choice>
-						<xs:any namespace="##other" processContents="lax" minOccurs="0" maxOccurs="unbounded">
-							<xs:annotation>
-								<xs:documentation>additional authentication properties</xs:documentation>
-							</xs:annotation>
-						</xs:any>
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:element name="authorize" minOccurs="0" maxOccurs="1">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:sequence minOccurs="0">
-							<xs:element name="gvOuId" type="xs:string" />
-							<xs:element name="ou" type="xs:string" />
-						</xs:sequence>
-						<xs:element name="role" maxOccurs="unbounded">
-							<xs:complexType>
-								<xs:sequence>
-									<xs:any namespace="##any" processContents="skip" minOccurs="0" maxOccurs="unbounded" />
-								</xs:sequence>
-								<xs:attribute name="value" type="xs:string" use="required" />
-							</xs:complexType>
-						</xs:element>
-						<xs:any namespace="##other" processContents="lax" minOccurs="0" maxOccurs="unbounded">
-							<xs:annotation>
-								<xs:documentation>additional authorization properties</xs:documentation>
-							</xs:annotation>
-						</xs:any>
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:element name="accounting" minOccurs="0">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:any processContents="skip" minOccurs="0" maxOccurs="unbounded" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:element name="pvpChainedToken" type="pvpTokenType" minOccurs="0" />
-			<xs:element name="pvpExtension" block="extension" minOccurs="0">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:any namespace="##any" processContents="skip" minOccurs="0" maxOccurs="unbounded" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-		</xs:sequence>
-		<xs:attribute name="version" type="gvVersionType" use="required" />
-		<xs:anyAttribute namespace="##any" processContents="lax" />
-	</xs:complexType>
-	<xs:complexType name="pvpPrincipalType">
-		<xs:sequence>
-			<xs:element name="userId" type="xs:string" />
-			<xs:element name="cn" type="xs:string" />
-			<xs:element name="gvOuId" type="xs:string" />
-			<xs:element name="ou" type="xs:string" />
-			<xs:element name="gvOuOKZ" type="xs:string" minOccurs="0" />
-			<xs:element name="gvSecClass" type="gvSecClassType" minOccurs="0" />
-			<xs:any namespace="##other" processContents="lax" minOccurs="0" maxOccurs="unbounded">
-				<xs:annotation>
-					<xs:documentation>additional principal attributes</xs:documentation>
-				</xs:annotation>
-			</xs:any>
-		</xs:sequence>
-		<xs:anyAttribute namespace="##any" processContents="lax" />
-	</xs:complexType>
-	<xs:simpleType name="gvSecClassType">
-		<xs:restriction base="xs:integer">
-			<xs:enumeration value="0" />
-			<xs:enumeration value="1" />
-			<xs:enumeration value="2" />
-			<xs:enumeration value="3" />
-		</xs:restriction>
-	</xs:simpleType>
-	<xs:simpleType name="gvVersionType">
-		<xs:restriction base="xs:string">
-			<xs:enumeration value="1.0" />
-			<xs:enumeration value="1.1" />
-			<xs:enumeration value="1.2" />
-			<xs:enumeration value="1.8" />
-			<xs:enumeration value="1.9" />
-		</xs:restriction>
-	</xs:simpleType>
-	<xs:simpleType name="logLevelType">
-		<xs:restriction base="xs:integer">
-			<xs:enumeration value="0" />
-			<xs:enumeration value="1" />
-			<xs:enumeration value="2" />
-			<xs:enumeration value="3" />
-			<xs:enumeration value="4" />
-			<xs:enumeration value="5" />
-		</xs:restriction>
-	</xs:simpleType>
-</xs:schema>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/szr_client/szr.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/szr_client/szr.xsd
deleted file mode 100644
index 85acfb65..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/szr_client/szr.xsd
+++ /dev/null
@@ -1,388 +0,0 @@
-<xs:schema elementFormDefault="qualified" targetNamespace="urn:SZRServices" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" xmlns:pd="http://reference.e-government.gv.at/namespace/persondata/20020228#" xmlns:szr="urn:SZRServices" xmlns:xs="http://www.w3.org/2001/XMLSchema">
-			<xs:import namespace="http://reference.e-government.gv.at/namespace/persondata/20020228#" />
-			<xs:import namespace="http://www.w3.org/2000/09/xmldsig#" />
-			<xs:element name="SZRException" type="szr:SZRException" />
-			<xs:complexType name="SZRException" />
-			<xs:complexType name="PersonInfoType">
-				<xs:sequence>
-					<xs:element name="Person" type="pd:PhysicalPersonType" />
-					<xs:element minOccurs="0" name="RegularDomicile" type="pd:PostalAddressType" />
-					<xs:element minOccurs="0" name="AddressCodes" type="szr:AddressCodesType" />
-					<xs:element minOccurs="0" name="TravelDocument" type="szr:TravelDocumentType" />
-					<xs:element minOccurs="0" name="DateOfBirthWildcard" type="xs:boolean" />
-					<xs:element minOccurs="0" name="AuskunftssperreGesetzt" type="xs:boolean" />
-				</xs:sequence>
-			</xs:complexType>
-			<xs:complexType name="TravelDocumentType">
-				<xs:sequence>
-					<xs:element minOccurs="0" name="DocumentNumber" type="xs:string" />
-					<xs:element minOccurs="0" name="DocumentType" type="xs:string" />
-					<xs:element minOccurs="0" name="IssueDate" type="xs:string" />
-					<xs:element minOccurs="0" name="IssuingAuthority" type="xs:string" />
-					<xs:element minOccurs="0" name="IssuingCountry" type="xs:string" />
-				</xs:sequence>
-			</xs:complexType>
-			<xs:complexType name="AddressCodesType">
-				<xs:sequence>
-					<xs:element minOccurs="0" name="GKZ" type="xs:string" />
-					<xs:element minOccurs="0" name="OKZ" type="xs:string" />
-					<xs:element minOccurs="0" name="SKZ" type="xs:string" />
-					<xs:element minOccurs="0" name="ADRCD" type="xs:string" />
-					<xs:element minOccurs="0" name="SUBCD" type="xs:string" />
-					<xs:element minOccurs="0" name="OBJNR" type="xs:string" />
-					<xs:element minOccurs="0" name="NTZLNR" type="xs:string" />
-				</xs:sequence>
-			</xs:complexType>
-			<xs:element name="TransformBPK">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element name="PersonInfo" type="szr:PersonInfoType" />
-						<xs:element name="InputBPK" type="xs:string" />
-						<xs:element name="InputBereichsKennung" type="xs:string" />
-						<xs:element name="Begruendung" type="xs:string" />
-						<xs:element maxOccurs="unbounded" name="Target" type="szr:FremdBPKRequestType" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:element name="TransformBPKResponse">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element maxOccurs="unbounded" name="TransformBPKReturn" type="szr:FremdBPKType" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:element name="GetVKZPermission">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element name="VKZ" type="xs:string" />
-						<xs:element name="BereichsKennung" type="xs:string" />
-						<xs:element minOccurs="0" name="ParticipantId" type="xs:string" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:element name="GetVKZPermissionResponse">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element name="GetVKZPermissionReturn" type="szr:GetVKZPermissionResponseType" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:complexType name="IdentityLinkType">
-				<xs:sequence>
-					<xs:element name="PersonInfo" type="szr:PersonInfoType" />
-					<xs:element name="Assertion" type="xs:anyType" />
-					<xs:element minOccurs="0" name="AdditionalInfo" type="xs:string" />
-				</xs:sequence>
-			</xs:complexType>
-			<xs:complexType name="ResultRecord">
-				<xs:sequence>
-					<xs:element name="PersonInfo" type="szr:PersonInfoType" />
-					<xs:element name="Register" type="xs:string" />
-					<xs:element name="bPK" type="xs:string" />
-					<xs:element maxOccurs="unbounded" minOccurs="0" name="FremdBPK" type="szr:FremdBPKType" />
-				</xs:sequence>
-			</xs:complexType>
-			<xs:complexType name="GetBPKKombiRequestType">
-				<xs:sequence>
-					<xs:element name="PersonInfo" type="szr:PersonInfoType" />
-					<xs:element minOccurs="0" name="InsertERnP">
-						<xs:simpleType>
-							<xs:restriction base="xs:string">
-								<xs:enumeration value="NoInsert" />
-								<xs:enumeration value="InsertOnNoMatch" />
-								<xs:enumeration value="ForceInsert" />
-							</xs:restriction>
-						</xs:simpleType>
-					</xs:element>
-					<xs:element minOccurs="0" name="Suchwizard" type="xs:boolean" />
-					<xs:element name="VKZ" type="xs:string" nillable="true" />
-					<xs:element minOccurs="0" name="BehoerdenKennzeichen" type="xs:string" />
-					<xs:element minOccurs="0" name="BereichsKennung" type="xs:string" />
-					<xs:element maxOccurs="unbounded" minOccurs="0" name="Target" type="szr:FremdBPKRequestType" />
-					<xs:element minOccurs="0" name="Sessionid" type="xs:string" />
-				</xs:sequence>
-			</xs:complexType>
-			<xs:complexType name="GetBPKKombiResponseType">
-				<xs:complexContent>
-					<xs:extension base="szr:GetBPKZPVResponseType">
-						<xs:sequence>
-							<xs:element name="FoundWithSuchwizard" type="xs:boolean" />
-							<xs:element name="Sessionid" type="xs:string" />
-						</xs:sequence>
-					</xs:extension>
-				</xs:complexContent>
-			</xs:complexType>
-			<xs:complexType name="GetBPKZPVRequestType">
-				<xs:sequence>
-					<xs:element name="PersonInfo" type="szr:PersonInfoType" />
-					<xs:element minOccurs="0" name="InsertERnP" type="xs:boolean" default="false" />
-					<xs:element minOccurs="1" name="VKZ" type="xs:string" />
-					<xs:element minOccurs="0" name="BehoerdenKennzeichen" type="xs:string" />
-					<xs:element minOccurs="0" name="BereichsKennung" type="xs:string" />
-					<xs:element maxOccurs="unbounded" minOccurs="0" name="Target" type="szr:FremdBPKRequestType" />
-				</xs:sequence>
-			</xs:complexType>
-			<xs:complexType name="GetBPKZPVResponseType">
-				<xs:sequence>
-					<xs:element maxOccurs="unbounded" name="ResultRecord" type="szr:ResultRecord" />
-					<xs:element name="InsertERnPResult" type="xs:boolean" />
-				</xs:sequence>
-			</xs:complexType>
-			<xs:complexType name="GetBPKFromStammzahlEncryptedRequestType">
-				<xs:sequence>
-					<xs:element minOccurs="1" name="StammzahlEncrypted" type="xs:string" />
-					<xs:element minOccurs="0" name="PersonInfo" type="szr:PersonInfoType" />
-					<xs:element minOccurs="1" name="VKZ" type="xs:string" />
-					<xs:element minOccurs="0" name="BereichsKennung" type="xs:string" />
-					<xs:element maxOccurs="unbounded" minOccurs="0" name="Target" type="szr:FremdBPKRequestType" />
-				</xs:sequence>
-			</xs:complexType>
-			<xs:complexType name="GetBPKFromStammzahlEncryptedResponseType">
-				<xs:sequence>
-					<xs:element minOccurs="0" name="bPK" type="xs:string" />
-					<xs:element maxOccurs="unbounded" minOccurs="0" name="FremdBPK" type="szr:FremdBPKType" />
-				</xs:sequence>
-			</xs:complexType>
-			<xs:element name="GetIdentityLink">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element name="PersonInfo" type="szr:PersonInfoType" />
-						<xs:element maxOccurs="unbounded" name="KeyValue" type="dsig:KeyValueType" />
-						<xs:element minOccurs="0" name="InsertERnP" type="xs:boolean" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:element name="GetIdentityLinkResponse">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element name="GetIdentityLinkReturn" type="szr:IdentityLinkType" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:element name="GetBPK">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element name="PersonInfo" type="szr:PersonInfoType" />
-						<xs:element minOccurs="0" name="BereichsKennung" type="xs:string" />
-						<xs:element minOccurs="0" name="VKZ" type="xs:string" />
-						<xs:element maxOccurs="unbounded" minOccurs="0" name="Target" type="szr:FremdBPKRequestType" />
-						<xs:element minOccurs="0" name="ListMultiplePersons" type="xs:boolean" />
-						<xs:element minOccurs="0" name="InsertERnP" type="xs:boolean" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:element name="GetBPKResponse">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element minOccurs="0" name="GetBPKReturn" type="xs:string" />
-						<xs:element maxOccurs="unbounded" minOccurs="0" name="FremdBPK" type="szr:FremdBPKType" />
-						<xs:element maxOccurs="5" minOccurs="0" name="PersonInfo" type="szr:PersonInfoType" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:element name="GetBPKs">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element maxOccurs="unbounded" name="PersonInfo" type="szr:PersonInfoType" />
-						<xs:element minOccurs="0" name="BereichsKennung" type="xs:string" />
-						<xs:element name="VKZ" type="xs:string" />
-						<xs:element maxOccurs="unbounded" minOccurs="0" name="Target" type="szr:FremdBPKRequestType" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:element name="GetBPKsResponse">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element maxOccurs="unbounded" name="ResultRecord" type="szr:GetBPKsResponseType" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:complexType name="GetBPKsResponseType">
-				<xs:sequence>
-					<xs:element minOccurs="0" name="BPK" type="xs:string" />
-					<xs:element maxOccurs="unbounded" minOccurs="0" name="FremdBPK" type="szr:FremdBPKType" />
-					<xs:element minOccurs="0" name="Fault">
-						<xs:complexType>
-							<xs:attribute name="Code" type="xs:string" />
-							<xs:attribute name="String" type="xs:string" />
-						</xs:complexType>
-					</xs:element>
-				</xs:sequence>
-			</xs:complexType>
-			<xs:element name="GetBPKKombi">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element name="GetBPKKombiRequest" type="szr:GetBPKKombiRequestType" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:element name="GetBPKKombiResponse">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element name="GetBPKKombiResponse" type="szr:GetBPKKombiResponseType" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:element name="GetBPKZPV">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element name="GetBPKZPVRequest" type="szr:GetBPKZPVRequestType" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:element name="GetBPKZPVResponse">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element name="GetBPKZPVResponse" type="szr:GetBPKZPVResponseType" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:element name="GetBPKFromStammzahlEncrypted">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element name="GetBPKFromStammzahlEncryptedRequest" type="szr:GetBPKFromStammzahlEncryptedRequestType" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:element name="GetBPKFromStammzahlEncryptedResponse">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element name="GetBPKFromStammzahlEncryptedResponse" type="szr:GetBPKFromStammzahlEncryptedResponseType" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:element name="ValidateIdentityLink">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element name="IdentityLink" type="szr:IdentityLinkType" />
-						<xs:element name="BereichsKennung" type="xs:string" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:element name="ValidateIdentityLinkResponse">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element name="ValidateIdentityLinkReturn" type="xs:string" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:element name="BPKzuBasiszahl">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element name="Bereich" type="xs:string" />
-						<xs:element name="BPK" type="xs:string" />
-						<xs:element maxOccurs="unbounded" name="BasisZahl" type="xs:string" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:element name="BPKzuBasiszahlResponse">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element name="BPKzuBasiszahlReturn" type="xs:string" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:complexType name="FremdBPKRequestType">
-				<xs:sequence>
-					<xs:element name="BereichsKennung" type="xs:string" />
-					<xs:element name="VKZ" type="xs:string" />
-				</xs:sequence>
-			</xs:complexType>
-			<xs:complexType name="FremdBPKType">
-				<xs:sequence>
-					<xs:element name="BereichsKennung" type="xs:string" />
-					<xs:element name="FremdBPK" type="xs:string" />
-				</xs:sequence>
-			</xs:complexType>
-			<xs:complexType name="GetVKZPermissionResponseType">
-				<xs:sequence>
-					<xs:element name="isAllowed" type="xs:boolean" />
-					<xs:element minOccurs="0" name="behSchluessel" type="xs:string" />
-				</xs:sequence>
-			</xs:complexType>
-			<xs:element name="BasiszahlZuBPK">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element minOccurs="0" name="VKZ" type="xs:string" />
-						<xs:element maxOccurs="unbounded" name="BasisZahl" type="xs:string" />
-						<xs:element maxOccurs="unbounded" minOccurs="0" name="Bereich" type="xs:string" />
-						<xs:element maxOccurs="unbounded" minOccurs="0" name="FremdBPKTargets" type="szr:FremdBPKRequestType" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:complexType name="BasiszahlZuBPKReturnType">
-				<xs:sequence>
-					<xs:element maxOccurs="unbounded" minOccurs="0" name="BPK" type="xs:string" />
-					<xs:element maxOccurs="unbounded" minOccurs="0" name="FremdBPKs" type="szr:FremdBPKType" />
-				</xs:sequence>
-			</xs:complexType>
-			<xs:element name="BasiszahlZuBPKResponse">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element maxOccurs="unbounded" name="BasiszahlZuBPKReturn" type="szr:BasiszahlZuBPKReturnType" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:element name="ZMRAnwendungsIntegration">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element name="Bereich" type="xs:string" />
-						<xs:element maxOccurs="unbounded" minOccurs="0" name="FremdBPKTargets" type="szr:FremdBPKRequestType" />
-						<xs:element maxOccurs="unbounded" name="ZMRfremdbPK" type="xs:string" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:complexType name="ZMRAnwendungsIntegrationReturnType">
-				<xs:sequence>
-					<xs:element name="BPK" type="xs:string" />
-					<xs:element maxOccurs="unbounded" minOccurs="0" name="FremdBPKs" type="szr:FremdBPKType" />
-				</xs:sequence>
-			</xs:complexType>
-			<xs:element name="ZMRAnwendungsIntegrationResponse">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element maxOccurs="unbounded" name="ZMRAnwendungsIntegrationReturn" type="szr:ZMRAnwendungsIntegrationReturnType" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:element name="GetStammzahl">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element name="PersonInfo" type="szr:PersonInfoType" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:element name="GetStammzahlResponse">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element name="Stammzahl" type="xs:string" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:element name="GetStammzahlEncrypted">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element name="PersonInfo" type="szr:PersonInfoType" />
-						<xs:element minOccurs="0" name="InsertERnP" type="xs:boolean" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:element name="GetStammzahlEncryptedResponse">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element name="Stammzahl" type="xs:string" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-			<xs:element name="GetVersion" />
-			<xs:element name="GetVersionResponse">
-				<xs:complexType>
-					<xs:sequence>
-						<xs:element name="Version" type="xs:string" />
-						<xs:element name="Revision" type="xs:string" />
-						<xs:element name="Time" type="xs:string" />
-						<xs:element name="IdentityLinkNotAfter" type="xs:string" />
-					</xs:sequence>
-				</xs:complexType>
-			</xs:element>
-</xs:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/szr_client/szr_ecdsa.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/szr_client/szr_ecdsa.xsd
deleted file mode 100644
index 87ee80be..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/szr_client/szr_ecdsa.xsd
+++ /dev/null
@@ -1,30 +0,0 @@
-<?xml version="1.0" encoding="UTF-8"?>
-<xs:schema elementFormDefault="qualified" xmlns:xs="http://www.w3.org/2001/XMLSchema"
-           targetNamespace="http://www.w3.org/2001/04/xmldsig-more#" xmlns:ecdsa="http://www.w3.org/2001/04/xmldsig-more#">
-    <xs:element name="ECDSAKeyValue" type="ecdsa:ECDSAKeyValueType" />
-    <xs:complexType name="ECDSAKeyValueType">
-        <xs:sequence>
-            <xs:element name="DomainParameters" type="ecdsa:DomainParamsType"
-                        minOccurs="0" />
-            <xs:element name="PublicKey" type="ecdsa:ECPointType" />
-        </xs:sequence>
-    </xs:complexType>
-    <xs:complexType name="DomainParamsType">
-        <xs:sequence>
-            <xs:element name="NamedCurve" minOccurs="0"
-                        type="ecdsa:NamedCurveType" />
-        </xs:sequence>
-    </xs:complexType>
-    <xs:complexType name="NamedCurveType">
-        <xs:attribute name="URN" type="xs:string" use="required" />
-    </xs:complexType>
-    <xs:complexType name="ECPointType">
-        <xs:sequence minOccurs="0">
-            <xs:element name="X" type="ecdsa:PrimeFieldElemType" />
-            <xs:element name="Y" type="ecdsa:PrimeFieldElemType" />
-        </xs:sequence>
-    </xs:complexType>
-    <xs:complexType name="PrimeFieldElemType">
-        <xs:attribute name="Value" type="xs:string" use="required" />
-    </xs:complexType>
-</xs:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/szr_client/szr_persondata.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/szr_client/szr_persondata.xsd
deleted file mode 100644
index 3c9ac932..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/szr_client/szr_persondata.xsd
+++ /dev/null
@@ -1,54 +0,0 @@
-<?xml version="1.0" encoding="UTF-8"?>
-<xs:schema elementFormDefault="qualified" xmlns:pd="http://reference.e-government.gv.at/namespace/persondata/20020228#"
-	targetNamespace="http://reference.e-government.gv.at/namespace/persondata/20020228#" xmlns:xs="http://www.w3.org/2001/XMLSchema">
-  <xs:complexType name="PhysicalPersonType">
-    <xs:sequence>
-      <xs:element minOccurs="0" name="Identification" type="pd:IdentificationType" />
-      <xs:element minOccurs="1" name="Name" type="pd:PersonNameType" />
-      <xs:element minOccurs="0" name="AlternativeName" type="pd:AlternativeNameType" />
-      <xs:element minOccurs="0" name="Sex" type="xs:string" />
-      <xs:element minOccurs="0" name="DateOfBirth" type="xs:string" />
-      <xs:element minOccurs="0" name="PlaceOfBirth" type="xs:string" />
-      <xs:element minOccurs="0" name="CountryOfBirth" type="xs:string" />
-      <xs:element minOccurs="0" name="Nationality" type="xs:string" />
-    </xs:sequence>
-  </xs:complexType>
-  <xs:complexType name="IdentificationType">
-    <xs:sequence>
-      <xs:element minOccurs="0" name="Value" type="xs:string" />
-      <xs:element minOccurs="0" name="Type" type="xs:string" />
-    </xs:sequence>
-  </xs:complexType>
-  <xs:complexType name="PersonNameType">
-    <xs:sequence>
-      <xs:element minOccurs="0" name="PrefixedDegree" type="xs:string" />
-      <xs:element name="GivenName" type="xs:string" nillable="true" />
-      <xs:element name="FamilyName" type="xs:string" nillable="true" />
-      <xs:element minOccurs="0" name="SuffixedDegree" type="xs:string" />
-    </xs:sequence>
-  </xs:complexType>
-  <xs:complexType name="AlternativeNameType">
-    <xs:sequence>
-      <xs:element name="FamilyName" type="xs:string" nillable="true" />
-    </xs:sequence>
-  </xs:complexType>
-  <xs:complexType name="PostalAddressType">
-    <xs:sequence>
-      <xs:element minOccurs="0" name="PostalCode" type="xs:string" />
-      <xs:element minOccurs="0" name="Municipality" type="xs:string" />
-      <xs:element minOccurs="0" name="Locality" type="xs:string" />
-      <xs:element minOccurs="0" name="StateCode3" type="xs:string" />
-      <xs:element minOccurs="0" name="DeliveryAddress" type="pd:DeliveryAddressType" />
-      <xs:element minOccurs="0" name="HistoricRecord" type="xs:boolean" />
-    </xs:sequence>
-  </xs:complexType>
-  <xs:complexType name="DeliveryAddressType">
-    <xs:sequence>
-      <xs:element minOccurs="0" name="AddressLine" type="xs:string" />
-      <xs:element minOccurs="0" name="StreetName" type="xs:string" />
-      <xs:element minOccurs="0" name="BuildingNumber" type="xs:string" />
-      <xs:element minOccurs="0" name="Unit" type="xs:string" />
-      <xs:element minOccurs="0" name="DoorNumber" type="xs:string" />
-    </xs:sequence>
-  </xs:complexType>
-</xs:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/szr_client/szr_pvp_sec.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/szr_client/szr_pvp_sec.xsd
deleted file mode 100644
index 5001c1b8..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/szr_client/szr_pvp_sec.xsd
+++ /dev/null
@@ -1,10 +0,0 @@
-<xs:schema xmlns:pvp="http://egov.gv.at/pvp1.xsd" xmlns:xs="http://www.w3.org/2001/XMLSchema" targetNamespace="http://schemas.xmlsoap.org/ws/2002/04/secext" elementFormDefault="qualified">
-	<xs:import namespace="http://egov.gv.at/pvp1.xsd" schemaLocation="pvp19.xsd"/>
-	<xs:element name="Security">
-		<xs:complexType>
-			<xs:sequence>
-				<xs:element ref="pvp:pvpToken"/>
-			</xs:sequence>
-		</xs:complexType>
-	</xs:element> 
-</xs:schema>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/szr_client/szr_v4.0-schemas.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/szr_client/szr_v4.0-schemas.xml
deleted file mode 100644
index d40efa45..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/szr_client/szr_v4.0-schemas.xml
+++ /dev/null
@@ -1,54 +0,0 @@
-<?xml version="1.0" encoding="UTF-8"?>
-<bindings version="2.0" xmlns="http://java.sun.com/xml/ns/jaxb"
-	xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:wsdl="http://schemas.xmlsoap.org/wsdl/"
-	xmlns:xjc="http://java.sun.com/xml/ns/jaxb/xjc">
-
-  <bindings schemaLocation="../szr_v4/szr_v4.0.xsd">
-		<bindings node="/xsd:schema">
-			<schemaBindings>
-				<package name="at.gv.util.xsd.szr_v4" />
-			</schemaBindings>
-		</bindings>
-	</bindings>
-  
-	<bindings schemaLocation="../szr/szr_ecdsa.xsd">
-		<bindings node="/xsd:schema">
-			<schemaBindings>
-				<package name="at.gv.util.xsd.szr.ecdsa" />
-			</schemaBindings>
-		</bindings>
-	</bindings>
-
-	<bindings schemaLocation="../szr_v4/szr_persondata.xsd">
-		<bindings node="/xsd:schema">
-			<schemaBindings>
-				<package name="at.gv.util.xsd.szr.persondata" />
-			</schemaBindings>
-		</bindings>
-	</bindings>
-
-	<bindings schemaLocation="../szr_v4/szr_pvp_sec.xsd">
-		<bindings node="/xsd:schema">
-			<schemaBindings>
-				<package name="at.gv.util.xsd.szr.pvp19.sec" />
-			</schemaBindings>
-		</bindings>
-	</bindings>
-
-	<bindings schemaLocation="../szr_v4/pvp19.xsd">
-		<bindings node="/xsd:schema">
-			<schemaBindings>
-				<package name="at.gv.util.xsd.szr.pvp19" />
-			</schemaBindings>
-		</bindings>
-	</bindings>
-
-  <bindings schemaLocation="../szr/szr_xmldsig.xsd">
-		<bindings node="/xsd:schema">
-			<schemaBindings>
-				<package name="at.gv.util.xsd.szr.xmldsig" />
-			</schemaBindings>
-		</bindings>
-	</bindings>
-
-</bindings>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/szr_client/szr_v4.0-wsdl.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/szr_client/szr_v4.0-wsdl.xml
deleted file mode 100644
index f95c35f0..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/szr_client/szr_v4.0-wsdl.xml
+++ /dev/null
@@ -1,10 +0,0 @@
-<?xml version="1.0" encoding="UTF-8"?>
-<bindings xmlns="http://java.sun.com/xml/ns/jaxws"
-               xmlns:jaxb="http://java.sun.com/xml/ns/jaxb"
-               xmlns:xsd="http://www.w3.org/2001/XMLSchema"
-               xmlns:wsdl="http://schemas.xmlsoap.org/wsdl/">
-
-  <enableWrapperStyle>false</enableWrapperStyle>
-  <package name="at.gv.util.wsdl.szr_v4"/> 
-     
-</bindings>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/szr_client/szr_v4.0.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/szr_client/szr_v4.0.xsd
deleted file mode 100644
index 2d25f2dc..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/szr_client/szr_v4.0.xsd
+++ /dev/null
@@ -1,443 +0,0 @@
-<?xml version="1.0" encoding="UTF-8"?>
-<xs:schema xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:szr="urn:SZRServices" xmlns:pd="http://reference.e-government.gv.at/namespace/persondata/20020228#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" targetNamespace="urn:SZRServices" elementFormDefault="qualified">
-	<xs:import namespace="http://reference.e-government.gv.at/namespace/persondata/20020228#" schemaLocation="szr_persondata.xsd"/>
-	<xs:import namespace="http://www.w3.org/2000/09/xmldsig#" schemaLocation="szr_xmldsig.xsd"/>
-	<xs:element name="SZRException" type="szr:SZRException"/>
-	<xs:complexType name="SZRException"/>
-	<xs:complexType name="PersonInfoType">
-		<xs:sequence>
-			<xs:element name="Person" type="pd:PhysicalPersonType"/>
-			<xs:element name="RegularDomicile" type="pd:PostalAddressType" minOccurs="0"/>
-			<xs:element name="AddressCodes" type="szr:AddressCodesType" minOccurs="0"/>
-			<xs:element name="TravelDocument" type="szr:TravelDocumentType" minOccurs="0"/>
-			<xs:element name="DateOfBirthWildcard" type="xs:boolean" minOccurs="0"/>
-			<xs:element name="AuskunftssperreGesetzt" type="xs:boolean" minOccurs="0"/>
-		</xs:sequence>
-	</xs:complexType>
-	<xs:complexType name="TravelDocumentType">
-		<xs:sequence>
-			<xs:element name="DocumentNumber" type="xs:string" minOccurs="0"/>
-			<xs:element name="DocumentType" type="xs:string" minOccurs="0"/>
-			<xs:element name="IssueDate" type="xs:string" minOccurs="0"/>
-			<xs:element name="IssuingAuthority" type="xs:string" minOccurs="0"/>
-			<xs:element name="IssuingCountry" type="xs:string" minOccurs="0"/>
-		</xs:sequence>
-	</xs:complexType>
-	<xs:complexType name="AddressCodesType">
-		<xs:sequence>
-			<xs:element name="GKZ" type="xs:string" minOccurs="0"/>
-			<xs:element name="OKZ" type="xs:string" minOccurs="0"/>
-			<xs:element name="SKZ" type="xs:string" minOccurs="0"/>
-			<xs:element name="ADRCD" type="xs:string" minOccurs="0"/>
-			<xs:element name="SUBCD" type="xs:string" minOccurs="0"/>
-			<xs:element name="OBJNR" type="xs:string" minOccurs="0"/>
-			<xs:element name="NTZLNR" type="xs:string" minOccurs="0"/>
-		</xs:sequence>
-	</xs:complexType>
-	<xs:element name="TransformBPK">
-		<xs:complexType>
-			<xs:sequence>
-				<xs:element name="PersonInfo" type="szr:PersonInfoType"/>
-				<xs:element name="InputBPK" type="xs:string"/>
-				<xs:element name="InputBereichsKennung" type="xs:string"/>
-				<xs:element name="Begruendung" type="xs:string"/>
-				<xs:element name="Target" type="szr:FremdBPKRequestType" maxOccurs="unbounded"/>
-			</xs:sequence>
-		</xs:complexType>
-	</xs:element>
-	<xs:element name="TransformBPKResponse">
-		<xs:complexType>
-			<xs:sequence>
-				<xs:element name="TransformBPKReturn" type="szr:FremdBPKType" maxOccurs="unbounded"/>
-			</xs:sequence>
-		</xs:complexType>
-	</xs:element>
-	<xs:element name="GetVKZPermission">
-		<xs:complexType>
-			<xs:sequence>
-				<xs:element name="VKZ" type="xs:string"/>
-				<xs:element name="BereichsKennung" type="xs:string"/>
-				<xs:element name="ParticipantId" type="xs:string" minOccurs="0"/>
-			</xs:sequence>
-		</xs:complexType>
-	</xs:element>
-	<xs:element name="GetVKZPermissionResponse">
-		<xs:complexType>
-			<xs:sequence>
-				<xs:element name="GetVKZPermissionReturn" type="szr:GetVKZPermissionResponseType"/>
-			</xs:sequence>
-		</xs:complexType>
-	</xs:element>
-	<xs:complexType name="IdentityLinkType">
-		<xs:sequence>
-			<xs:element name="PersonInfo" type="szr:PersonInfoType"/>
-			<xs:element name="Assertion" type="xs:anyType"/>
-			<xs:element name="AdditionalInfo" type="xs:string" minOccurs="0"/>
-		</xs:sequence>
-	</xs:complexType>
-	<xs:complexType name="ResultRecord">
-		<xs:sequence>
-			<xs:element name="PersonInfo" type="szr:PersonInfoType"/>
-			<xs:element name="Register" type="xs:string"/>
-			<xs:element name="bPK" type="xs:string"/>
-			<xs:element name="FremdBPK" type="szr:FremdBPKType" minOccurs="0" maxOccurs="unbounded"/>
-		</xs:sequence>
-	</xs:complexType>
-	<xs:complexType name="GetBPKKombiRequestType">
-		<xs:sequence>
-			<xs:element name="PersonInfo" type="szr:PersonInfoType"/>
-			<xs:element name="InsertERnP" minOccurs="0">
-				<xs:simpleType>
-					<xs:restriction base="xs:string">
-						<xs:enumeration value="NoInsert"/>
-						<xs:enumeration value="InsertOnNoMatch"/>
-						<xs:enumeration value="ForceInsert"/>
-					</xs:restriction>
-				</xs:simpleType>
-			</xs:element>
-			<xs:element name="Suchwizard" type="xs:boolean" minOccurs="0"/>
-			<xs:element name="VKZ" type="xs:string" nillable="true"/>
-			<xs:element name="BehoerdenKennzeichen" type="xs:string" minOccurs="0"/>
-			<xs:element name="BereichsKennung" type="xs:string" minOccurs="0"/>
-			<xs:element name="Target" type="szr:FremdBPKRequestType" minOccurs="0" maxOccurs="unbounded"/>
-			<xs:element name="Sessionid" type="xs:string" minOccurs="0"/>
-		</xs:sequence>
-	</xs:complexType>
-	<xs:complexType name="GetBPKKombiResponseType">
-		<xs:complexContent>
-			<xs:extension base="szr:GetBPKZPVResponseType">
-				<xs:sequence>
-					<xs:element name="FoundWithSuchwizard" type="xs:boolean"/>
-					<xs:element name="Sessionid" type="xs:string"/>
-				</xs:sequence>
-			</xs:extension>
-		</xs:complexContent>
-	</xs:complexType>
-	<xs:complexType name="GetBPKZPVRequestType">
-		<xs:sequence>
-			<xs:element name="PersonInfo" type="szr:PersonInfoType"/>
-			<xs:element name="InsertERnP" type="xs:boolean" default="false" minOccurs="0"/>
-			<xs:element name="VKZ" type="xs:string" minOccurs="1"/>
-			<xs:element name="BehoerdenKennzeichen" type="xs:string" minOccurs="0"/>
-			<xs:element name="BereichsKennung" type="xs:string" minOccurs="0"/>
-			<xs:element name="Target" type="szr:FremdBPKRequestType" minOccurs="0" maxOccurs="unbounded"/>
-		</xs:sequence>
-	</xs:complexType>
-	<xs:complexType name="GetBPKZPVResponseType">
-		<xs:sequence>
-			<xs:element name="ResultRecord" type="szr:ResultRecord" maxOccurs="unbounded"/>
-			<xs:element name="InsertERnPResult" type="xs:boolean"/>
-		</xs:sequence>
-	</xs:complexType>
-	<xs:complexType name="GetBPKFromStammzahlEncryptedRequestType">
-		<xs:sequence>
-			<xs:element name="StammzahlEncrypted" type="xs:string" minOccurs="1"/>
-			<xs:element name="PersonInfo" type="szr:PersonInfoType" minOccurs="0"/>
-			<xs:element name="VKZ" type="xs:string" minOccurs="1"/>
-			<xs:element name="BereichsKennung" type="xs:string" minOccurs="0" maxOccurs="unbounded"/>
-			<xs:element name="Target" type="szr:FremdBPKRequestType" minOccurs="0" maxOccurs="unbounded"/>
-		</xs:sequence>
-		<xs:attribute name="key"/>
-	</xs:complexType>
-	<xs:complexType name="GetBPKFromStammzahlEncryptedResponseType">
-		<xs:sequence>
-			<xs:element name="bPK" type="xs:string" minOccurs="0" maxOccurs="unbounded"/>
-			<xs:element name="FremdBPK" type="szr:FremdBPKType" minOccurs="0" maxOccurs="unbounded"/>
-			<xs:element name="Fault" type="szr:Fault" minOccurs="0"/>
-		</xs:sequence>
-		<xs:attribute name="key"/>
-	</xs:complexType>
-	<xs:complexType name="Fault">
-		<xs:attribute name="Code" type="xs:string"/>
-		<xs:attribute name="String" type="xs:string"/>
-	</xs:complexType>
-	<xs:complexType name="SignContentResponseType">
-		<xs:sequence>
-			<xs:element name="JwsAlg" type="xs:string" minOccurs="0"/>
-			<xs:element name="Out" type="szr:SignContentEntry" minOccurs="0" maxOccurs="unbounded"/>
-		</xs:sequence>
-	</xs:complexType>
-	<xs:complexType name="SignContentEntry">
-		<xs:simpleContent>
-			<xs:extension base="xs:string">
-				<xs:attribute name="key"/>
-			</xs:extension>
-		</xs:simpleContent>
-	</xs:complexType>
-	<xs:element name="GetIdentityLink">
-		<xs:complexType>
-			<xs:sequence>
-				<xs:element name="PersonInfo" type="szr:PersonInfoType"/>
-				<xs:element name="KeyValue" type="dsig:KeyValueType" minOccurs="0" maxOccurs="unbounded"/>
-				<xs:element name="InsertERnP" type="xs:boolean" minOccurs="0"/>
-			</xs:sequence>
-		</xs:complexType>
-	</xs:element>
-	<xs:element name="GetIdentityLinkResponse">
-		<xs:complexType>
-			<xs:sequence>
-				<xs:element name="GetIdentityLinkReturn" type="szr:IdentityLinkType"/>
-			</xs:sequence>
-		</xs:complexType>
-	</xs:element>
-	<xs:element name="GetIdentityLinkEidas">
-		<xs:complexType>
-			<xs:sequence>
-				<xs:element name="PersonInfo" type="szr:PersonInfoType"/>
-			</xs:sequence>
-		</xs:complexType>
-	</xs:element>
-	<xs:element name="GetIdentityLinkEidasResponse">
-		<xs:complexType>
-			<xs:sequence>
-				<xs:element name="GetIdentityLinkReturn" type="szr:IdentityLinkType"/>
-			</xs:sequence>
-		</xs:complexType>
-	</xs:element>
-	<xs:element name="GetBPK">
-		<xs:complexType>
-			<xs:sequence>
-				<xs:element name="PersonInfo" type="szr:PersonInfoType"/>
-				<xs:element name="BereichsKennung" type="xs:string" minOccurs="0" maxOccurs="unbounded"/>
-				<xs:element name="VKZ" type="xs:string" minOccurs="0"/>
-				<xs:element name="Target" type="szr:FremdBPKRequestType" minOccurs="0" maxOccurs="unbounded"/>
-				<xs:element name="ListMultiplePersons" type="xs:boolean" minOccurs="0"/>
-				<xs:element name="InsertERnP" type="xs:boolean" minOccurs="0"/>
-			</xs:sequence>
-		</xs:complexType>
-	</xs:element>
-	<xs:element name="GetBPKResponse">
-		<xs:complexType>
-			<xs:sequence>
-				<xs:element name="GetBPKReturn" type="xs:string" minOccurs="0" maxOccurs="unbounded"/>
-				<xs:element name="FremdBPK" type="szr:FremdBPKType" minOccurs="0" maxOccurs="unbounded"/>
-				<xs:element name="PersonInfo" type="szr:PersonInfoType" minOccurs="0" maxOccurs="5"/>
-			</xs:sequence>
-		</xs:complexType>
-	</xs:element>
-	<xs:element name="GetBPKs">
-		<xs:complexType>
-			<xs:sequence>
-				<xs:element name="PersonInfo" type="szr:PersonInfoType" maxOccurs="unbounded"/>
-				<xs:element name="BereichsKennung" type="xs:string" minOccurs="0" maxOccurs="unbounded"/>
-				<xs:element name="VKZ" type="xs:string"/>
-				<xs:element name="Target" type="szr:FremdBPKRequestType" minOccurs="0" maxOccurs="unbounded"/>
-			</xs:sequence>
-		</xs:complexType>
-	</xs:element>
-	<xs:element name="GetBPKsResponse">
-		<xs:complexType>
-			<xs:sequence>
-				<xs:element name="ResultRecord" type="szr:GetBPKsResponseType" maxOccurs="unbounded"/>
-			</xs:sequence>
-		</xs:complexType>
-	</xs:element>
-	<xs:complexType name="GetBPKsResponseType">
-		<xs:sequence>
-			<xs:element name="BPK" type="xs:string" minOccurs="0" maxOccurs="unbounded"/>
-			<xs:element name="FremdBPK" type="szr:FremdBPKType" minOccurs="0" maxOccurs="unbounded"/>
-			<xs:element name="Fault" minOccurs="0">
-				<xs:complexType>
-					<xs:attribute name="Code" type="xs:string"/>
-					<xs:attribute name="String" type="xs:string"/>
-				</xs:complexType>
-			</xs:element>
-		</xs:sequence>
-	</xs:complexType>
-	<xs:element name="GetBPKKombi">
-		<xs:complexType>
-			<xs:sequence>
-				<xs:element name="GetBPKKombiRequest" type="szr:GetBPKKombiRequestType"/>
-			</xs:sequence>
-		</xs:complexType>
-	</xs:element>
-	<xs:element name="GetBPKKombiResponse">
-		<xs:complexType>
-			<xs:sequence>
-				<xs:element name="GetBPKKombiResponse" type="szr:GetBPKKombiResponseType"/>
-			</xs:sequence>
-		</xs:complexType>
-	</xs:element>
-	<xs:element name="GetBPKZPV">
-		<xs:complexType>
-			<xs:sequence>
-				<xs:element name="GetBPKZPVRequest" type="szr:GetBPKZPVRequestType"/>
-			</xs:sequence>
-		</xs:complexType>
-	</xs:element>
-	<xs:element name="GetBPKZPVResponse">
-		<xs:complexType>
-			<xs:sequence>
-				<xs:element name="GetBPKZPVResponse" type="szr:GetBPKZPVResponseType"/>
-			</xs:sequence>
-		</xs:complexType>
-	</xs:element>
-	<xs:element name="GetBPKFromStammzahlEncrypted">
-		<xs:complexType>
-			<xs:sequence>
-				<xs:element name="In" type="szr:GetBPKFromStammzahlEncryptedRequestType" maxOccurs="unbounded"/>
-			</xs:sequence>
-		</xs:complexType>
-	</xs:element>
-	<xs:element name="GetBPKFromStammzahlEncryptedResponse">
-		<xs:complexType>
-			<xs:sequence>
-				<xs:element name="Out" type="szr:GetBPKFromStammzahlEncryptedResponseType" maxOccurs="unbounded"/>
-			</xs:sequence>
-		</xs:complexType>
-	</xs:element>
-	<xs:element name="SignContent">
-		<xs:complexType>
-			<xs:sequence>
-				<xs:element name="AppendCert" type="xs:boolean" default="false" minOccurs="0"/>
-				<xs:element name="JWSHeaderParam" type="szr:JwsHeaderParam" minOccurs="0" maxOccurs="unbounded"/>
-				<xs:element name="In" type="szr:SignContentEntry" minOccurs="0" maxOccurs="unbounded"/>
-			</xs:sequence>
-		</xs:complexType>
-	</xs:element>
-	<xs:complexType name="JwsHeaderParam">
-		<xs:attribute name="key" type="xs:string" use="required"/>
-		<xs:attribute name="value" type="xs:string" use="required"/>
-	</xs:complexType>
-	<xs:element name="SignContentResponse">
-		<xs:complexType>
-			<xs:sequence>
-				<xs:element name="SignContentResponse" type="szr:SignContentResponseType"/>
-			</xs:sequence>
-		</xs:complexType>
-	</xs:element>
-	<xs:element name="ValidateIdentityLink">
-		<xs:complexType>
-			<xs:sequence>
-				<xs:element name="IdentityLink" type="szr:IdentityLinkType"/>
-				<xs:element name="BereichsKennung" type="xs:string"/>
-			</xs:sequence>
-		</xs:complexType>
-	</xs:element>
-	<xs:element name="ValidateIdentityLinkResponse">
-		<xs:complexType>
-			<xs:sequence>
-				<xs:element name="ValidateIdentityLinkReturn" type="xs:string"/>
-			</xs:sequence>
-		</xs:complexType>
-	</xs:element>
-	<xs:element name="BPKzuBasiszahl">
-		<xs:complexType>
-			<xs:sequence>
-				<xs:element name="Bereich" type="xs:string"/>
-				<xs:element name="BPK" type="xs:string"/>
-				<xs:element name="BasisZahl" type="xs:string" maxOccurs="unbounded"/>
-			</xs:sequence>
-		</xs:complexType>
-	</xs:element>
-	<xs:element name="BPKzuBasiszahlResponse">
-		<xs:complexType>
-			<xs:sequence>
-				<xs:element name="BPKzuBasiszahlReturn" type="xs:string"/>
-			</xs:sequence>
-		</xs:complexType>
-	</xs:element>
-	<xs:complexType name="FremdBPKRequestType">
-		<xs:sequence>
-			<xs:element name="BereichsKennung" type="xs:string"/>
-			<xs:element name="VKZ" type="xs:string"/>
-		</xs:sequence>
-	</xs:complexType>
-	<xs:complexType name="FremdBPKType">
-		<xs:sequence>
-			<xs:element name="BereichsKennung" type="xs:string"/>
-			<xs:element name="FremdBPK" type="xs:string"/>
-		</xs:sequence>
-	</xs:complexType>
-	<xs:complexType name="GetVKZPermissionResponseType">
-		<xs:sequence>
-			<xs:element name="isAllowed" type="xs:boolean"/>
-			<xs:element name="behSchluessel" type="xs:string" minOccurs="0"/>
-		</xs:sequence>
-	</xs:complexType>
-	<xs:element name="BasiszahlZuBPK">
-		<xs:complexType>
-			<xs:sequence>
-				<xs:element name="VKZ" type="xs:string" minOccurs="0"/>
-				<xs:element name="BasisZahl" type="xs:string" maxOccurs="unbounded"/>
-				<xs:element name="Bereich" type="xs:string" minOccurs="0" maxOccurs="unbounded"/>
-				<xs:element name="FremdBPKTargets" type="szr:FremdBPKRequestType" minOccurs="0" maxOccurs="unbounded"/>
-			</xs:sequence>
-		</xs:complexType>
-	</xs:element>
-	<xs:complexType name="BasiszahlZuBPKReturnType">
-		<xs:sequence>
-			<xs:element name="BPK" type="xs:string" minOccurs="0" maxOccurs="unbounded"/>
-			<xs:element name="FremdBPKs" type="szr:FremdBPKType" minOccurs="0" maxOccurs="unbounded"/>
-		</xs:sequence>
-	</xs:complexType>
-	<xs:element name="BasiszahlZuBPKResponse">
-		<xs:complexType>
-			<xs:sequence>
-				<xs:element name="BasiszahlZuBPKReturn" type="szr:BasiszahlZuBPKReturnType" maxOccurs="unbounded"/>
-			</xs:sequence>
-		</xs:complexType>
-	</xs:element>
-	<xs:element name="ZMRAnwendungsIntegration">
-		<xs:complexType>
-			<xs:sequence>
-				<xs:element name="Bereich" type="xs:string"/>
-				<xs:element name="FremdBPKTargets" type="szr:FremdBPKRequestType" minOccurs="0" maxOccurs="unbounded"/>
-				<xs:element name="ZMRfremdbPK" type="xs:string" maxOccurs="unbounded"/>
-			</xs:sequence>
-		</xs:complexType>
-	</xs:element>
-	<xs:complexType name="ZMRAnwendungsIntegrationReturnType">
-		<xs:sequence>
-			<xs:element name="BPK" type="xs:string"/>
-			<xs:element name="FremdBPKs" type="szr:FremdBPKType" minOccurs="0" maxOccurs="unbounded"/>
-		</xs:sequence>
-	</xs:complexType>
-	<xs:element name="ZMRAnwendungsIntegrationResponse">
-		<xs:complexType>
-			<xs:sequence>
-				<xs:element name="ZMRAnwendungsIntegrationReturn" type="szr:ZMRAnwendungsIntegrationReturnType" maxOccurs="unbounded"/>
-			</xs:sequence>
-		</xs:complexType>
-	</xs:element>
-	<xs:element name="GetStammzahl">
-		<xs:complexType>
-			<xs:sequence>
-				<xs:element name="PersonInfo" type="szr:PersonInfoType"/>
-			</xs:sequence>
-		</xs:complexType>
-	</xs:element>
-	<xs:element name="GetStammzahlResponse">
-		<xs:complexType>
-			<xs:sequence>
-				<xs:element name="Stammzahl" type="xs:string"/>
-			</xs:sequence>
-		</xs:complexType>
-	</xs:element>
-	<xs:element name="GetStammzahlEncrypted">
-		<xs:complexType>
-			<xs:sequence>
-				<xs:element name="PersonInfo" type="szr:PersonInfoType"/>
-				<xs:element name="InsertERnP" type="xs:boolean" minOccurs="0"/>
-			</xs:sequence>
-		</xs:complexType>
-	</xs:element>
-	<xs:element name="GetStammzahlEncryptedResponse">
-		<xs:complexType>
-			<xs:sequence>
-				<xs:element name="Stammzahl" type="xs:string"/>
-			</xs:sequence>
-		</xs:complexType>
-	</xs:element>
-	<xs:element name="GetVersion" nillable="true"/>
-	<xs:element name="GetVersionResponse">
-		<xs:complexType>
-			<xs:sequence>
-				<xs:element name="Version" type="xs:string"/>
-				<xs:element name="Revision" type="xs:string"/>
-				<xs:element name="Time" type="xs:string"/>
-				<xs:element name="IdentityLinkNotAfter" type="xs:string"/>
-			</xs:sequence>
-		</xs:complexType>
-	</xs:element>
-</xs:schema>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/szr_client/szr_xmldsig.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/szr_client/szr_xmldsig.xsd
deleted file mode 100644
index 96b50b40..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/szr_client/szr_xmldsig.xsd
+++ /dev/null
@@ -1,31 +0,0 @@
-<?xml version="1.0" encoding="UTF-8"?>
-<xs:schema elementFormDefault="qualified" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:ecdsa="http://www.w3.org/2001/04/xmldsig-more#"
-           targetNamespace="http://www.w3.org/2000/09/xmldsig#" xmlns="http://www.w3.org/2001/XMLSchema" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#">
-    <xs:import namespace="http://www.w3.org/2001/04/xmldsig-more#" schemaLocation="szr_ecdsa.xsd"/>
-    <xs:complexType name="KeyValueType">
-        <xs:sequence>
-            <xs:element name="DSAKeyValue" minOccurs="0"
-                        type="dsig:DSAKeyValueType" />
-            <xs:element name="RSAKeyValue" minOccurs="0"
-                        type="dsig:RSAKeyValueType" />
-            <xs:element ref="ecdsa:ECDSAKeyValue" />
-        </xs:sequence>
-    </xs:complexType>
-    <xs:complexType name="DSAKeyValueType">
-        <xs:sequence>
-            <xs:element name="P" minOccurs="0" type="xs:string" />
-            <xs:element name="Q" minOccurs="0" type="xs:string" />
-            <xs:element name="J" minOccurs="0" type="xs:string" />
-            <xs:element name="G" minOccurs="0" type="xs:string" />
-            <xs:element name="Y" minOccurs="0" type="xs:string" />
-            <xs:element name="PgenCounter" minOccurs="0" type="xs:string" />
-            <xs:element name="Seed" minOccurs="0" type="xs:string" />
-        </xs:sequence>
-    </xs:complexType>
-    <xs:complexType name="RSAKeyValueType">
-        <xs:sequence>
-            <xs:element name="Modulus" minOccurs="0" type="xs:string" />
-            <xs:element name="Exponent" minOccurs="0" type="xs:string" />
-        </xs:sequence>
-    </xs:complexType>
-</xs:schema>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/szr_client/SZR-1.1.WSDL b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/szr_client/SZR-1.1.WSDL
new file mode 100644
index 00000000..3c34458d
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/szr_client/SZR-1.1.WSDL
@@ -0,0 +1,939 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<definitions targetNamespace="urn:SZRServices" xmlns="http://schemas.xmlsoap.org/wsdl/" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" xmlns:ecdsa="http://www.w3.org/2001/04/xmldsig-more#" xmlns:pd="http://reference.e-government.gv.at/namespace/persondata/20020228#" xmlns:pvp="http://egov.gv.at/pvp1.xsd" xmlns:saml="urn:oasis:names:tc:SAML:1.0:assertion" xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/" xmlns:szr="urn:SZRServices" xmlns:wsdlsoap="http://schemas.xmlsoap.org/wsdl/soap/" xmlns:wsse="http://schemas.xmlsoap.org/ws/2002/04/secext" xmlns:xs="http://www.w3.org/2001/XMLSchema">
+	<types>
+		<xs:schema elementFormDefault="qualified" targetNamespace="http://reference.e-government.gv.at/namespace/persondata/20020228#">
+			<xs:complexType name="PhysicalPersonType">
+				<xs:sequence>
+					<xs:element minOccurs="0" name="Identification" type="pd:IdentificationType" />
+					<xs:element minOccurs="1" name="Name" type="pd:PersonNameType" />
+					<xs:element minOccurs="0" name="AlternativeName" type="pd:AlternativeNameType" />
+					<xs:element minOccurs="0" name="Sex" type="xs:string" />
+					<xs:element minOccurs="0" name="DateOfBirth" type="xs:string" />
+					<xs:element minOccurs="0" name="PlaceOfBirth" type="xs:string" />
+					<xs:element minOccurs="0" name="CountryOfBirth" type="xs:string" />
+					<xs:element minOccurs="0" name="Nationality" type="xs:string" />
+				</xs:sequence>
+			</xs:complexType>
+			<xs:complexType name="IdentificationType">
+				<xs:sequence>
+					<xs:element minOccurs="0" name="Value" type="xs:string" />
+					<xs:element minOccurs="0" name="Type" type="xs:string" />
+				</xs:sequence>
+			</xs:complexType>
+			<xs:complexType name="PersonNameType">
+				<xs:sequence>
+					<xs:element minOccurs="0" name="PrefixedDegree" type="xs:string" />
+					<xs:element name="GivenName" type="xs:string" nillable="true" />
+					<xs:element name="FamilyName" type="xs:string" nillable="true" />
+					<xs:element minOccurs="0" name="SuffixedDegree" type="xs:string" />
+				</xs:sequence>
+			</xs:complexType>
+			<xs:complexType name="AlternativeNameType">
+				<xs:sequence>
+					<xs:element name="FamilyName" type="xs:string" nillable="true" />
+				</xs:sequence>
+			</xs:complexType>
+			<xs:complexType name="PostalAddressType">
+				<xs:sequence>
+					<xs:element minOccurs="0" name="PostalCode" type="xs:string" />
+					<xs:element minOccurs="0" name="Municipality" type="xs:string" />
+					<xs:element minOccurs="0" name="Locality" type="xs:string" />
+					<xs:element minOccurs="0" name="StateCode3" type="xs:string" />
+					<xs:element minOccurs="0" name="DeliveryAddress" type="pd:DeliveryAddressType" />
+					<xs:element minOccurs="0" name="HistoricRecord" type="xs:boolean" />
+				</xs:sequence>
+			</xs:complexType>
+			<xs:complexType name="DeliveryAddressType">
+				<xs:sequence>
+					<xs:element minOccurs="0" name="AddressLine" type="xs:string" />
+					<xs:element minOccurs="0" name="StreetName" type="xs:string" />
+					<xs:element minOccurs="0" name="BuildingNumber" type="xs:string" />
+					<xs:element minOccurs="0" name="Unit" type="xs:string" />
+					<xs:element minOccurs="0" name="DoorNumber" type="xs:string" />
+				</xs:sequence>
+			</xs:complexType>
+		</xs:schema>
+		<xs:schema elementFormDefault="qualified" targetNamespace="http://www.w3.org/2001/04/xmldsig-more#">
+			<xs:element name="ECDSAKeyValue" type="ecdsa:ECDSAKeyValueType" nillable="true" />
+			<xs:complexType name="ECDSAKeyValueType">
+				<xs:sequence>
+					<xs:element minOccurs="0" name="DomainParameters" type="ecdsa:DomainParamsType" />
+					<xs:element name="PublicKey" type="ecdsa:ECPointType" />
+				</xs:sequence>
+			</xs:complexType>
+			<xs:complexType name="DomainParamsType">
+				<xs:sequence>
+					<xs:element minOccurs="0" name="NamedCurve" type="ecdsa:NamedCurveType" />
+				</xs:sequence>
+			</xs:complexType>
+			<xs:complexType name="NamedCurveType">
+				<xs:attribute name="URN" type="xs:string" use="required" />
+			</xs:complexType>
+			<xs:complexType name="ECPointType">
+				<xs:sequence minOccurs="0">
+					<xs:element name="X" type="ecdsa:PrimeFieldElemType" />
+					<xs:element name="Y" type="ecdsa:PrimeFieldElemType" />
+				</xs:sequence>
+			</xs:complexType>
+			<xs:complexType name="PrimeFieldElemType">
+				<xs:attribute name="Value" type="xs:string" use="required" />
+			</xs:complexType>
+		</xs:schema>
+		<xs:schema elementFormDefault="qualified" targetNamespace="http://www.w3.org/2000/09/xmldsig#" xmlns="http://www.w3.org/2001/XMLSchema">
+			<xs:import namespace="http://www.w3.org/2001/04/xmldsig-more#" />
+			<xs:complexType name="KeyValueType">
+				<xs:sequence>
+					<xs:element minOccurs="0" name="DSAKeyValue" type="dsig:DSAKeyValueType" />
+					<xs:element minOccurs="0" name="RSAKeyValue" type="dsig:RSAKeyValueType" />
+					<xs:element minOccurs="0" ref="ecdsa:ECDSAKeyValue" />
+				</xs:sequence>
+			</xs:complexType>
+			<xs:complexType name="DSAKeyValueType">
+				<xs:sequence>
+					<xs:element minOccurs="0" name="P" type="xs:string" />
+					<xs:element minOccurs="0" name="Q" type="xs:string" />
+					<xs:element minOccurs="0" name="J" type="xs:string" />
+					<xs:element minOccurs="0" name="G" type="xs:string" />
+					<xs:element minOccurs="0" name="Y" type="xs:string" />
+					<!-- https://www.w3.org/TR/xmldsig-core/ defines PgenCounter THEN Seed, SZR.wsdl used Seed BEFORE PgenCounter. To keep it backwards compatible but allow the usual order, both ways are allowed. -->
+					<xs:choice maxOccurs="unbounded">
+						<xs:element minOccurs="0" name="PgenCounter" type="xs:string" />
+						<xs:element minOccurs="0" name="Seed" type="xs:string" />
+					</xs:choice>
+				</xs:sequence>
+			</xs:complexType>
+			<xs:complexType name="RSAKeyValueType">
+				<xs:sequence>
+					<xs:element minOccurs="0" name="Modulus" type="xs:string" />
+					<xs:element minOccurs="0" name="Exponent" type="xs:string" />
+				</xs:sequence>
+			</xs:complexType>
+		</xs:schema>
+		<xs:schema elementFormDefault="qualified" targetNamespace="urn:SZRServices">
+			<xs:import namespace="http://reference.e-government.gv.at/namespace/persondata/20020228#" />
+			<xs:import namespace="http://www.w3.org/2000/09/xmldsig#" />
+			<xs:element name="SZRException" type="szr:SZRException" />
+			<xs:complexType name="SZRException" />
+			<xs:complexType name="PersonInfoType">
+				<xs:sequence>
+					<xs:element name="Person" type="pd:PhysicalPersonType" />
+					<xs:element minOccurs="0" name="RegularDomicile" type="pd:PostalAddressType" />
+					<xs:element minOccurs="0" name="AddressCodes" type="szr:AddressCodesType" />
+					<xs:element minOccurs="0" name="TravelDocument" type="szr:TravelDocumentType" />
+					<xs:element minOccurs="0" name="DateOfBirthWildcard" type="xs:boolean" />
+					<xs:element minOccurs="0" name="AuskunftssperreGesetzt" type="xs:boolean" />
+				</xs:sequence>
+			</xs:complexType>
+			<xs:complexType name="TravelDocumentType">
+				<xs:sequence>
+					<xs:element minOccurs="0" name="DocumentNumber" type="xs:string" />
+					<xs:element minOccurs="0" name="DocumentType" type="xs:string" />
+					<xs:element minOccurs="0" name="IssueDate" type="xs:string" />
+					<xs:element minOccurs="0" name="IssuingAuthority" type="xs:string" />
+					<xs:element minOccurs="0" name="IssuingCountry" type="xs:string" />
+				</xs:sequence>
+			</xs:complexType>
+			<xs:complexType name="AddressCodesType">
+				<xs:sequence>
+					<xs:element minOccurs="0" name="GKZ" type="xs:string" />
+					<xs:element minOccurs="0" name="OKZ" type="xs:string" />
+					<xs:element minOccurs="0" name="SKZ" type="xs:string" />
+					<xs:element minOccurs="0" name="ADRCD" type="xs:string" />
+					<xs:element minOccurs="0" name="SUBCD" type="xs:string" />
+					<xs:element minOccurs="0" name="OBJNR" type="xs:string" />
+					<xs:element minOccurs="0" name="NTZLNR" type="xs:string" />
+				</xs:sequence>
+			</xs:complexType>
+			<xs:element name="TransformBPK">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element name="PersonInfo" type="szr:PersonInfoType" />
+						<xs:element name="InputBPK" type="xs:string" />
+						<xs:element name="InputBereichsKennung" type="xs:string" />
+						<xs:element name="Begruendung" type="xs:string" />
+						<xs:element maxOccurs="unbounded" name="Target" type="szr:FremdBPKRequestType" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:element name="TransformBPKResponse">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element maxOccurs="unbounded" name="TransformBPKReturn" type="szr:FremdBPKType" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:element name="GetVKZPermission">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element name="VKZ" type="xs:string" />
+						<xs:element name="BereichsKennung" type="xs:string" />
+						<xs:element minOccurs="0" name="ParticipantId" type="xs:string" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:element name="GetVKZPermissionResponse">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element name="GetVKZPermissionReturn" type="szr:GetVKZPermissionResponseType" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:complexType name="IdentityLinkType">
+				<xs:sequence>
+					<xs:element name="PersonInfo" type="szr:PersonInfoType" />
+					<xs:element name="Assertion" type="xs:anyType" />
+					<xs:element minOccurs="0" name="AdditionalInfo" type="xs:string" />
+				</xs:sequence>
+			</xs:complexType>
+			<xs:complexType name="ResultRecord">
+				<xs:sequence>
+					<xs:element name="PersonInfo" type="szr:PersonInfoType" />
+					<xs:element name="Register" type="xs:string" />
+					<xs:element name="bPK" type="xs:string" />
+					<xs:element maxOccurs="unbounded" minOccurs="0" name="FremdBPK" type="szr:FremdBPKType" />
+				</xs:sequence>
+			</xs:complexType>
+			<xs:complexType name="GetBPKKombiRequestType">
+				<xs:sequence>
+					<xs:element name="PersonInfo" type="szr:PersonInfoType" />
+					<xs:element minOccurs="0" name="InsertERnP">
+						<xs:simpleType>
+							<xs:restriction base="xs:string">
+								<xs:enumeration value="NoInsert" />
+								<xs:enumeration value="InsertOnNoMatch" />
+								<xs:enumeration value="ForceInsert" />
+							</xs:restriction>
+						</xs:simpleType>
+					</xs:element>
+					<xs:element minOccurs="0" name="Suchwizard" type="xs:boolean" />
+					<xs:element name="VKZ" type="xs:string" nillable="true" />
+					<xs:element minOccurs="0" name="BehoerdenKennzeichen" type="xs:string" />
+					<xs:element minOccurs="0" name="BereichsKennung" type="xs:string" />
+					<xs:element maxOccurs="unbounded" minOccurs="0" name="Target" type="szr:FremdBPKRequestType" />
+					<xs:element minOccurs="0" name="Sessionid" type="xs:string" />
+				</xs:sequence>
+			</xs:complexType>
+			<xs:complexType name="GetBPKKombiResponseType">
+				<xs:complexContent>
+					<xs:extension base="szr:GetBPKZPVResponseType">
+						<xs:sequence>
+							<xs:element name="FoundWithSuchwizard" type="xs:boolean" />
+							<xs:element name="Sessionid" type="xs:string" />
+						</xs:sequence>
+					</xs:extension>
+				</xs:complexContent>
+			</xs:complexType>
+			<xs:complexType name="GetBPKZPVRequestType">
+				<xs:sequence>
+					<xs:element name="PersonInfo" type="szr:PersonInfoType" />
+					<xs:element minOccurs="0" name="InsertERnP" type="xs:boolean" default="false" />
+					<xs:element minOccurs="1" name="VKZ" type="xs:string" />
+					<xs:element minOccurs="0" name="BehoerdenKennzeichen" type="xs:string" />
+					<xs:element minOccurs="0" name="BereichsKennung" type="xs:string" />
+					<xs:element maxOccurs="unbounded" minOccurs="0" name="Target" type="szr:FremdBPKRequestType" />
+				</xs:sequence>
+			</xs:complexType>
+			<xs:complexType name="GetBPKZPVResponseType">
+				<xs:sequence>
+					<xs:element maxOccurs="unbounded" name="ResultRecord" type="szr:ResultRecord" />
+					<xs:element name="InsertERnPResult" type="xs:boolean" />
+				</xs:sequence>
+			</xs:complexType>
+			<xs:complexType name="GetBPKFromStammzahlEncryptedRequestType">
+				<xs:sequence>
+					<xs:element minOccurs="1" name="StammzahlEncrypted" type="xs:string" />
+					<xs:element minOccurs="0" name="PersonInfo" type="szr:PersonInfoType" />
+					<xs:element minOccurs="1" name="VKZ" type="xs:string" />
+					<xs:element minOccurs="0" name="BereichsKennung" type="xs:string" />
+					<xs:element maxOccurs="unbounded" minOccurs="0" name="Target" type="szr:FremdBPKRequestType" />
+				</xs:sequence>
+			</xs:complexType>
+			<xs:complexType name="GetBPKFromStammzahlEncryptedResponseType">
+				<xs:sequence>
+					<xs:element minOccurs="0" name="bPK" type="xs:string" />
+					<xs:element maxOccurs="unbounded" minOccurs="0" name="FremdBPK" type="szr:FremdBPKType" />
+				</xs:sequence>
+			</xs:complexType>
+			<xs:element name="GetIdentityLink">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element name="PersonInfo" type="szr:PersonInfoType" />
+						<xs:element minOccurs="0" maxOccurs="unbounded" name="KeyValue" type="dsig:KeyValueType" />
+						<xs:element minOccurs="0" name="InsertERnP" type="xs:boolean" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:element name="GetIdentityLinkResponse">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element name="GetIdentityLinkReturn" type="szr:IdentityLinkType" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:element name="GetIdentityLinkEidas">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element name="PersonInfo" type="szr:PersonInfoType" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:element name="GetIdentityLinkEidasResponse">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element name="GetIdentityLinkReturn" type="szr:IdentityLinkType" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:element name="GetBPK">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element name="PersonInfo" type="szr:PersonInfoType" />
+						<xs:element minOccurs="0" name="BereichsKennung" type="xs:string" />
+						<xs:element minOccurs="0" name="VKZ" type="xs:string" />
+						<xs:element maxOccurs="unbounded" minOccurs="0" name="Target" type="szr:FremdBPKRequestType" />
+						<xs:element minOccurs="0" name="ListMultiplePersons" type="xs:boolean" />
+						<xs:element minOccurs="0" name="InsertERnP" type="xs:boolean" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:element name="GetBPKResponse">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element minOccurs="0" name="GetBPKReturn" type="xs:string" />
+						<xs:element maxOccurs="unbounded" minOccurs="0" name="FremdBPK" type="szr:FremdBPKType" />
+						<xs:element maxOccurs="5" minOccurs="0" name="PersonInfo" type="szr:PersonInfoType" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:element name="GetBPKs">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element maxOccurs="unbounded" name="PersonInfo" type="szr:PersonInfoType" />
+						<xs:element minOccurs="0" name="BereichsKennung" type="xs:string" />
+						<xs:element name="VKZ" type="xs:string" />
+						<xs:element maxOccurs="unbounded" minOccurs="0" name="Target" type="szr:FremdBPKRequestType" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:element name="GetBPKsResponse">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element maxOccurs="unbounded" name="ResultRecord" type="szr:GetBPKsResponseType" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:complexType name="GetBPKsResponseType">
+				<xs:sequence>
+					<xs:element minOccurs="0" name="BPK" type="xs:string" />
+					<xs:element maxOccurs="unbounded" minOccurs="0" name="FremdBPK" type="szr:FremdBPKType" />
+					<xs:element minOccurs="0" name="Fault">
+						<xs:complexType>
+							<xs:attribute name="Code" type="xs:string" />
+							<xs:attribute name="String" type="xs:string" />
+						</xs:complexType>
+					</xs:element>
+				</xs:sequence>
+			</xs:complexType>
+			<xs:element name="GetBPKKombi">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element name="GetBPKKombiRequest" type="szr:GetBPKKombiRequestType" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:element name="GetBPKKombiResponse">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element name="GetBPKKombiResponse" type="szr:GetBPKKombiResponseType" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:element name="GetBPKZPV">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element name="GetBPKZPVRequest" type="szr:GetBPKZPVRequestType" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:element name="GetBPKZPVResponse">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element name="GetBPKZPVResponse" type="szr:GetBPKZPVResponseType" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:element name="GetBPKFromStammzahlEncrypted">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element name="GetBPKFromStammzahlEncryptedRequest" type="szr:GetBPKFromStammzahlEncryptedRequestType" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:element name="GetBPKFromStammzahlEncryptedResponse">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element name="GetBPKFromStammzahlEncryptedResponse" type="szr:GetBPKFromStammzahlEncryptedResponseType" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:element name="ValidateIdentityLink">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element name="IdentityLink" type="szr:IdentityLinkType" />
+						<xs:element name="BereichsKennung" type="xs:string" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:element name="ValidateIdentityLinkResponse">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element name="ValidateIdentityLinkReturn" type="xs:string" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:element name="BPKzuBasiszahl">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element name="Bereich" type="xs:string" />
+						<xs:element name="BPK" type="xs:string" />
+						<xs:element maxOccurs="unbounded" name="BasisZahl" type="xs:string" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:element name="BPKzuBasiszahlResponse">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element name="BPKzuBasiszahlReturn" type="xs:string" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:complexType name="FremdBPKRequestType">
+				<xs:sequence>
+					<xs:element name="BereichsKennung" type="xs:string" />
+					<xs:element name="VKZ" type="xs:string" />
+				</xs:sequence>
+			</xs:complexType>
+			<xs:complexType name="FremdBPKType">
+				<xs:sequence>
+					<xs:element name="BereichsKennung" type="xs:string" />
+					<xs:element name="FremdBPK" type="xs:string" />
+				</xs:sequence>
+			</xs:complexType>
+			<xs:complexType name="GetVKZPermissionResponseType">
+				<xs:sequence>
+					<xs:element name="isAllowed" type="xs:boolean" />
+					<xs:element minOccurs="0" name="behSchluessel" type="xs:string" />
+				</xs:sequence>
+			</xs:complexType>
+			<xs:element name="BasiszahlZuBPK">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element minOccurs="0" name="VKZ" type="xs:string" />
+						<xs:element maxOccurs="unbounded" name="BasisZahl" type="xs:string" />
+						<xs:element maxOccurs="unbounded" minOccurs="0" name="Bereich" type="xs:string" />
+						<xs:element maxOccurs="unbounded" minOccurs="0" name="FremdBPKTargets" type="szr:FremdBPKRequestType" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:complexType name="BasiszahlZuBPKReturnType">
+				<xs:sequence>
+					<xs:element maxOccurs="unbounded" minOccurs="0" name="BPK" type="xs:string" />
+					<xs:element maxOccurs="unbounded" minOccurs="0" name="FremdBPKs" type="szr:FremdBPKType" />
+				</xs:sequence>
+			</xs:complexType>
+			<xs:element name="BasiszahlZuBPKResponse">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element maxOccurs="unbounded" name="BasiszahlZuBPKReturn" type="szr:BasiszahlZuBPKReturnType" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:element name="ZMRAnwendungsIntegration">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element name="Bereich" type="xs:string" />
+						<xs:element maxOccurs="unbounded" minOccurs="0" name="FremdBPKTargets" type="szr:FremdBPKRequestType" />
+						<xs:element maxOccurs="unbounded" name="ZMRfremdbPK" type="xs:string" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:complexType name="ZMRAnwendungsIntegrationReturnType">
+				<xs:sequence>
+					<xs:element name="BPK" type="xs:string" />
+					<xs:element maxOccurs="unbounded" minOccurs="0" name="FremdBPKs" type="szr:FremdBPKType" />
+				</xs:sequence>
+			</xs:complexType>
+			<xs:element name="ZMRAnwendungsIntegrationResponse">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element maxOccurs="unbounded" name="ZMRAnwendungsIntegrationReturn" type="szr:ZMRAnwendungsIntegrationReturnType" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:element name="GetStammzahl">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element name="PersonInfo" type="szr:PersonInfoType" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:element name="GetStammzahlResponse">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element name="Stammzahl" type="xs:string" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:element name="GetStammzahlEncrypted">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element name="PersonInfo" type="szr:PersonInfoType" />
+						<xs:element minOccurs="0" name="InsertERnP" type="xs:boolean" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:element name="GetStammzahlEncryptedResponse">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element name="Stammzahl" type="xs:string" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:element name="GetVersion" nillable="true" />
+			<xs:element name="GetVersionResponse">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element name="Version" type="xs:string" />
+						<xs:element name="Revision" type="xs:string" />
+						<xs:element name="Time" type="xs:string" />
+						<xs:element name="IdentityLinkNotAfter" type="xs:string" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+		</xs:schema>
+		<xs:schema targetNamespace="http://egov.gv.at/pvp1.xsd">
+			<xs:include schemaLocation="pvp1.xsd" />
+		</xs:schema>
+		<xs:schema elementFormDefault="qualified" targetNamespace="http://schemas.xmlsoap.org/ws/2002/04/secext">
+			<xs:element name="Security">
+				<xs:complexType>
+					<xs:sequence>
+						<!-- add the pvpToken here. You can also uncomment the following line if you support XSD 1.1 -->
+						<!-- <xs:element ref="pvp:pvpToken" /> -->
+						<xs:any processContents="lax" minOccurs="0" maxOccurs="unbounded" />
+					</xs:sequence>
+					<xs:anyAttribute processContents="lax" />
+				</xs:complexType>
+			</xs:element>
+		</xs:schema>
+	</types>
+	<message name="Header">
+		<part name="SecurityHeader" element="wsse:Security" />
+	</message>
+	<message name="GetIdentityLinkRequest">
+		<part element="szr:GetIdentityLink" name="parameters" />
+	</message>
+	<message name="GetIdentityLinkResponse">
+		<part element="szr:GetIdentityLinkResponse" name="parameters" />
+	</message>
+	<message name="GetIdentityLinkEidasRequest">
+		<part element="szr:GetIdentityLinkEidas" name="parameters" />
+	</message>
+	<message name="GetIdentityLinkEidasResponse">
+		<part element="szr:GetIdentityLinkEidasResponse" name="parameters" />
+	</message>
+	<message name="GetBPKRequest">
+		<part element="szr:GetBPK" name="parameters" />
+	</message>
+	<message name="GetBPKResponse">
+		<part element="szr:GetBPKResponse" name="parameters" />
+	</message>
+	<message name="GetBPKsRequest">
+		<part element="szr:GetBPKs" name="parameters" />
+	</message>
+	<message name="GetBPKsResponse">
+		<part element="szr:GetBPKsResponse" name="parameters" />
+	</message>
+	<message name="GetBPKKombiRequest">
+		<part element="szr:GetBPKKombi" name="parameters" />
+	</message>
+	<message name="GetBPKKombiResponse">
+		<part element="szr:GetBPKKombiResponse" name="parameters" />
+	</message>
+	<message name="GetBPKZPVRequest">
+		<part element="szr:GetBPKZPV" name="parameters" />
+	</message>
+	<message name="GetBPKZPVResponse">
+		<part element="szr:GetBPKZPVResponse" name="parameters" />
+	</message>
+	<message name="GetBPKFromStammzahlEncryptedRequest">
+		<part element="szr:GetBPKFromStammzahlEncrypted" name="parameters" />
+	</message>
+	<message name="GetBPKFromStammzahlEncryptedResponse">
+		<part element="szr:GetBPKFromStammzahlEncryptedResponse" name="parameters" />
+	</message>
+	<message name="BPKzuBasiszahlRequest">
+		<part element="szr:BPKzuBasiszahl" name="parameters" />
+	</message>
+	<message name="BPKzuBasiszahlResponse">
+		<part element="szr:BPKzuBasiszahlResponse" name="parameters" />
+	</message>
+	<message name="BasiszahlZuBPKRequest">
+		<part element="szr:BasiszahlZuBPK" name="parameters" />
+	</message>
+	<message name="BasiszahlZuBPKResponse">
+		<part element="szr:BasiszahlZuBPKResponse" name="parameters" />
+	</message>
+	<message name="ValidateIdentityLinkRequest">
+		<part element="szr:ValidateIdentityLink" name="parameters" />
+	</message>
+	<message name="ValidateIdentityLinkResponse">
+		<part element="szr:ValidateIdentityLinkResponse" name="parameters" />
+	</message>
+	<message name="TransformBPKRequest">
+		<part element="szr:TransformBPK" name="parameters" />
+	</message>
+	<message name="TransformBPKResponse">
+		<part element="szr:TransformBPKResponse" name="parameters" />
+	</message>
+	<message name="GetVKZPermissionRequest">
+		<part element="szr:GetVKZPermission" name="parameters" />
+	</message>
+	<message name="GetVKZPermissionResponse">
+		<part element="szr:GetVKZPermissionResponse" name="parameters" />
+	</message>
+	<message name="ZMRAnwendungsIntegrationRequest">
+		<part element="szr:ZMRAnwendungsIntegration" name="parameters" />
+	</message>
+	<message name="ZMRAnwendungsIntegrationResponse">
+		<part element="szr:ZMRAnwendungsIntegrationResponse" name="parameters" />
+	</message>
+	<message name="GetStammzahlRequest">
+		<part element="szr:GetStammzahl" name="parameters" />
+	</message>
+	<message name="GetStammzahlResponse">
+		<part element="szr:GetStammzahlResponse" name="parameters" />
+	</message>
+	<message name="GetStammzahlEncryptedRequest">
+		<part element="szr:GetStammzahlEncrypted" name="parameters" />
+	</message>
+	<message name="GetStammzahlEncryptedResponse">
+		<part element="szr:GetStammzahlEncryptedResponse" name="parameters" />
+	</message>
+	<message name="GetVersionRequest">
+		<part element="szr:GetVersion" name="parameters" />
+	</message>
+	<message name="GetVersionResponse">
+		<part element="szr:GetVersionResponse" name="parameters" />
+	</message>
+	<message name="SZRException">
+		<part element="szr:SZRException" name="fault" />
+	</message>
+	<portType name="SZR">
+		<operation name="GetIdentityLink">
+			<input message="szr:GetIdentityLinkRequest" name="GetIdentityLinkRequest" />
+			<output message="szr:GetIdentityLinkResponse" name="GetIdentityLinkResponse" />
+			<fault message="szr:SZRException" name="SZRException" />
+		</operation>
+		<operation name="GetIdentityLinkEidas">
+			<input message="szr:GetIdentityLinkEidasRequest" name="GetIdentityLinkEidasRequest" />
+			<output message="szr:GetIdentityLinkEidasResponse" name="GetIdentityLinkEidasResponse" />
+			<fault message="szr:SZRException" name="SZRException" />
+		</operation>
+		<operation name="GetBPK">
+			<jaxws:bindings xmlns:jaxws="http://java.sun.com/xml/ns/jaxws">
+				<jaxws:enableWrapperStyle>false</jaxws:enableWrapperStyle>
+			</jaxws:bindings>
+			<input message="szr:GetBPKRequest" name="GetBPKRequest" />
+			<output message="szr:GetBPKResponse" name="GetBPKResponse" />
+			<fault message="szr:SZRException" name="SZRException" />
+		</operation>
+		<operation name="GetBPKs">
+			<input message="szr:GetBPKsRequest" name="GetBPKsRequest" />
+			<output message="szr:GetBPKsResponse" name="GetBPKsResponse" />
+			<fault message="szr:SZRException" name="SZRException" />
+		</operation>
+		<operation name="GetBPKKombi">
+			<input message="szr:GetBPKKombiRequest" name="GetBPKKombiRequest" />
+			<output message="szr:GetBPKKombiResponse" name="GetBPKKombiResponse" />
+			<fault message="szr:SZRException" name="SZRException" />
+		</operation>
+		<operation name="GetBPKZPV">
+			<input message="szr:GetBPKZPVRequest" name="GetBPKZPVRequest" />
+			<output message="szr:GetBPKZPVResponse" name="GetBPKZPVResponse" />
+			<fault message="szr:SZRException" name="SZRException" />
+		</operation>
+		<operation name="GetBPKFromStammzahlEncrypted">
+			<input message="szr:GetBPKFromStammzahlEncryptedRequest" name="GetBPKFromStammzahlEncryptedRequest" />
+			<output message="szr:GetBPKFromStammzahlEncryptedResponse" name="GetBPKFromStammzahlEncryptedResponse" />
+			<fault message="szr:SZRException" name="SZRException" />
+		</operation>
+		<operation name="ValidateIdentityLink">
+			<input message="szr:ValidateIdentityLinkRequest" name="ValidateIdentityLinkRequest" />
+			<output message="szr:ValidateIdentityLinkResponse" name="ValidateIdentityLinkResponse" />
+			<fault message="szr:SZRException" name="SZRException" />
+		</operation>
+		<operation name="TransformBPK">
+			<input message="szr:TransformBPKRequest" name="TransformBPKRequest" />
+			<output message="szr:TransformBPKResponse" name="TransformBPKResponse" />
+			<fault message="szr:SZRException" name="SZRException" />
+		</operation>
+		<operation name="GetVKZPermission">
+			<input message="szr:GetVKZPermissionRequest" name="GetVKZPermissionRequest" />
+			<output message="szr:GetVKZPermissionResponse" name="GetVKZPermissionResponse" />
+			<fault message="szr:SZRException" name="SZRException" />
+		</operation>
+		<operation name="BPKzuBasiszahl">
+			<input message="szr:BPKzuBasiszahlRequest" name="BPKzuBasiszahlRequest" />
+			<output message="szr:BPKzuBasiszahlResponse" name="BPKzuBasiszahlResponse" />
+			<fault message="szr:SZRException" name="SZRException" />
+		</operation>
+		<operation name="BasiszahlZuBPK">
+			<input message="szr:BasiszahlZuBPKRequest" name="BasiszahlZuBPKRequest" />
+			<output message="szr:BasiszahlZuBPKResponse" name="BasiszahlZuBPKResponse" />
+			<fault message="szr:SZRException" name="SZRException" />
+		</operation>
+		<operation name="ZMRAnwendungsIntegration">
+			<input message="szr:ZMRAnwendungsIntegrationRequest" name="ZMRAnwendungsIntegrationRequest" />
+			<output message="szr:ZMRAnwendungsIntegrationResponse" name="ZMRAnwendungsIntegrationResponse" />
+			<fault message="szr:SZRException" name="SZRException" />
+		</operation>
+		<operation name="GetStammzahl">
+			<input message="szr:GetStammzahlRequest" name="GetStammzahlRequest" />
+			<output message="szr:GetStammzahlResponse" name="GetStammzahlResponse" />
+			<fault message="szr:SZRException" name="SZRException" />
+		</operation>
+		<operation name="GetStammzahlEncrypted">
+			<input message="szr:GetStammzahlEncryptedRequest" name="GetStammzahlEncryptedRequest" />
+			<output message="szr:GetStammzahlEncryptedResponse" name="GetStammzahlEncryptedResponse" />
+			<fault message="szr:SZRException" name="SZRException" />
+		</operation>
+		<operation name="GetVersion">
+			<input message="szr:GetVersionRequest" name="GetVersionRequest" />
+			<output message="szr:GetVersionResponse" name="GetVersionResponse" />
+			<fault message="szr:SZRException" name="SZRException" />
+		</operation>
+	</portType>
+	<binding name="SZRSoapBinding" type="szr:SZR">
+		<wsdlsoap:binding style="document" transport="http://schemas.xmlsoap.org/soap/http" />
+		<operation name="GetIdentityLink">
+			<wsdlsoap:operation soapAction="" />
+			<input name="GetIdentityLinkRequest">
+				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
+				<wsdlsoap:body use="literal" />
+			</input>
+			<output name="GetIdentityLinkResponse">
+				<wsdlsoap:body use="literal" />
+			</output>
+			<fault name="SZRException">
+				<wsdlsoap:fault name="SZRException" use="literal" />
+			</fault>
+		</operation>
+		<operation name="GetIdentityLinkEidas">
+			<wsdlsoap:operation soapAction="" />
+			<input name="GetIdentityLinkEidasRequest">
+				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
+				<wsdlsoap:body use="literal" />
+			</input>
+			<output name="GetIdentityLinkEidasResponse">
+				<wsdlsoap:body use="literal" />
+			</output>
+			<fault name="SZRException">
+				<wsdlsoap:fault name="SZRException" use="literal" />
+			</fault>
+		</operation>
+		<operation name="GetBPK">
+			<wsdlsoap:operation soapAction="" />
+			<input name="GetBPKRequest">
+				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
+				<wsdlsoap:body use="literal" />
+			</input>
+			<output name="GetBPKResponse">
+				<wsdlsoap:body use="literal" />
+			</output>
+			<fault name="SZRException">
+				<wsdlsoap:fault name="SZRException" use="literal" />
+			</fault>
+		</operation>
+		<operation name="GetBPKs">
+			<wsdlsoap:operation soapAction="" />
+			<input name="GetBPKsRequest">
+				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
+				<wsdlsoap:body use="literal" />
+			</input>
+			<output name="GetBPKsResponse">
+				<wsdlsoap:body use="literal" />
+			</output>
+			<fault name="SZRException">
+				<wsdlsoap:fault name="SZRException" use="literal" />
+			</fault>
+		</operation>
+		<operation name="GetBPKKombi">
+			<wsdlsoap:operation soapAction="" />
+			<input name="GetBPKKombiRequest">
+				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
+				<wsdlsoap:body use="literal" />
+			</input>
+			<output name="GetBPKKombiResponse">
+				<wsdlsoap:body use="literal" />
+			</output>
+			<fault name="SZRException">
+				<wsdlsoap:fault name="SZRException" use="literal" />
+			</fault>
+		</operation>
+		<operation name="GetBPKZPV">
+			<wsdlsoap:operation soapAction="" />
+			<input name="GetBPKZPVRequest">
+				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
+				<wsdlsoap:body use="literal" />
+			</input>
+			<output name="GetBPKZPVResponse">
+				<wsdlsoap:body use="literal" />
+			</output>
+			<fault name="SZRException">
+				<wsdlsoap:fault name="SZRException" use="literal" />
+			</fault>
+		</operation>
+		<operation name="GetBPKFromStammzahlEncrypted">
+			<wsdlsoap:operation soapAction="" />
+			<input name="GetBPKFromStammzahlEncryptedRequest">
+				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
+				<wsdlsoap:body use="literal" />
+			</input>
+			<output name="GetBPKFromStammzahlEncryptedResponse">
+				<wsdlsoap:body use="literal" />
+			</output>
+			<fault name="SZRException">
+				<wsdlsoap:fault name="SZRException" use="literal" />
+			</fault>
+		</operation>
+		<operation name="GetVKZPermission">
+			<wsdlsoap:operation soapAction="" />
+			<input name="GetVKZPermissionRequest">
+				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
+				<wsdlsoap:body use="literal" />
+			</input>
+			<output name="GetVKZPermissionResponse">
+				<wsdlsoap:body use="literal" />
+			</output>
+			<fault name="SZRException">
+				<wsdlsoap:fault name="SZRException" use="literal" />
+			</fault>
+		</operation>
+		<operation name="ValidateIdentityLink">
+			<wsdlsoap:operation soapAction="" />
+			<input name="ValidateIdentityLinkRequest">
+				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
+				<wsdlsoap:body use="literal" />
+			</input>
+			<output name="ValidateIdentityLinkResponse">
+				<wsdlsoap:body use="literal" />
+			</output>
+			<fault name="SZRException">
+				<wsdlsoap:fault name="SZRException" use="literal" />
+			</fault>
+		</operation>
+		<operation name="TransformBPK">
+			<wsdlsoap:operation soapAction="" />
+			<input name="TransformBPKRequest">
+				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
+				<wsdlsoap:body use="literal" />
+			</input>
+			<output name="TransformBPKResponse">
+				<wsdlsoap:body use="literal" />
+			</output>
+			<fault name="SZRException">
+				<wsdlsoap:fault name="SZRException" use="literal" />
+			</fault>
+		</operation>
+		<operation name="BPKzuBasiszahl">
+			<wsdlsoap:operation soapAction="" />
+			<input name="BPKzuBasiszahlRequest">
+				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
+				<wsdlsoap:body use="literal" />
+			</input>
+			<output name="BPKzuBasiszahlResponse">
+				<wsdlsoap:body use="literal" />
+			</output>
+			<fault name="SZRException">
+				<wsdlsoap:fault name="SZRException" use="literal" />
+			</fault>
+		</operation>
+		<operation name="BasiszahlZuBPK">
+			<wsdlsoap:operation soapAction="" />
+			<input name="BasiszahlZuBPKRequest">
+				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
+				<wsdlsoap:body use="literal" />
+			</input>
+			<output name="BasiszahlZuBPKResponse">
+				<wsdlsoap:body use="literal" />
+			</output>
+			<fault name="SZRException">
+				<wsdlsoap:fault name="SZRException" use="literal" />
+			</fault>
+		</operation>
+		<operation name="ZMRAnwendungsIntegration">
+			<wsdlsoap:operation soapAction="" />
+			<input name="ZMRAnwendungsIntegrationRequest">
+				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
+				<wsdlsoap:body use="literal" />
+			</input>
+			<output name="ZMRAnwendungsIntegrationResponse">
+				<wsdlsoap:body use="literal" />
+			</output>
+			<fault name="SZRException">
+				<wsdlsoap:fault name="SZRException" use="literal" />
+			</fault>
+		</operation>
+		<operation name="GetStammzahl">
+			<wsdlsoap:operation soapAction="" />
+			<input name="GetStammzahlRequest">
+				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
+				<wsdlsoap:body use="literal" />
+			</input>
+			<output name="GetStammzahlResponse">
+				<wsdlsoap:body use="literal" />
+			</output>
+			<fault name="SZRException">
+				<wsdlsoap:fault name="SZRException" use="literal" />
+			</fault>
+		</operation>
+		<operation name="GetStammzahlEncrypted">
+			<wsdlsoap:operation soapAction="" />
+			<input name="GetStammzahlEncryptedRequest">
+				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
+				<wsdlsoap:body use="literal" />
+			</input>
+			<output name="GetStammzahlEncryptedResponse">
+				<wsdlsoap:body use="literal" />
+			</output>
+			<fault name="SZRException">
+				<wsdlsoap:fault name="SZRException" use="literal" />
+			</fault>
+		</operation>
+		<operation name="GetVersion">
+			<wsdlsoap:operation soapAction="" />
+			<input name="GetVersionRequest">
+				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
+				<wsdlsoap:body use="literal" />
+			</input>
+			<output name="GetVersionResponse">
+				<wsdlsoap:body use="literal" />
+			</output>
+			<fault name="SZRException">
+				<wsdlsoap:fault name="SZRException" use="literal" />
+			</fault>
+		</operation>
+	</binding>
+	<service name="SZRService">
+		<port binding="szr:SZRSoapBinding" name="SZRBusinesspartnerTestumgebung">
+			<wsdlsoap:address location="https://pvawp.bmi.gv.at/at.gv.bmi.szrsrv-b/services/SZR" />
+		</port>
+		<port binding="szr:SZRSoapBinding" name="SZRTestumgebung">
+			<wsdlsoap:address location="https://pvawp.bmi.gv.at/bmi.gv.at/soap/SZ2Services-T/services/SZR" />
+		</port>
+		<port binding="szr:SZRSoapBinding" name="SZRProduktionsumgebung">
+			<wsdlsoap:address location="https://pvawp.bmi.gv.at/bmi.gv.at/soap/SZ2Services/services/SZR" />
+		</port>
+	</service>
+</definitions>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/szr_client/SZR-1.WSDL b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/szr_client/SZR-1.WSDL
new file mode 100644
index 00000000..4ad2645a
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/szr_client/SZR-1.WSDL
@@ -0,0 +1,901 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<definitions targetNamespace="urn:SZRServices" xmlns="http://schemas.xmlsoap.org/wsdl/" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" xmlns:ecdsa="http://www.w3.org/2001/04/xmldsig-more#" xmlns:pd="http://reference.e-government.gv.at/namespace/persondata/20020228#" xmlns:pvp="http://egov.gv.at/pvp1.xsd" xmlns:saml="urn:oasis:names:tc:SAML:1.0:assertion" xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/" xmlns:szr="urn:SZRServices" xmlns:wsdlsoap="http://schemas.xmlsoap.org/wsdl/soap/" xmlns:wsse="http://schemas.xmlsoap.org/ws/2002/04/secext" xmlns:xs="http://www.w3.org/2001/XMLSchema">
+	<types>
+		<xs:schema elementFormDefault="qualified" targetNamespace="http://reference.e-government.gv.at/namespace/persondata/20020228#">
+			<xs:complexType name="PhysicalPersonType">
+				<xs:sequence>
+					<xs:element minOccurs="0" name="Identification" type="pd:IdentificationType" />
+					<xs:element minOccurs="1" name="Name" type="pd:PersonNameType" />
+					<xs:element minOccurs="0" name="AlternativeName" type="pd:AlternativeNameType" />
+					<xs:element minOccurs="0" name="Sex" type="xs:string" />
+					<xs:element minOccurs="0" name="DateOfBirth" type="xs:string" />
+					<xs:element minOccurs="0" name="PlaceOfBirth" type="xs:string" />
+					<xs:element minOccurs="0" name="CountryOfBirth" type="xs:string" />
+					<xs:element minOccurs="0" name="Nationality" type="xs:string" />
+				</xs:sequence>
+			</xs:complexType>
+			<xs:complexType name="IdentificationType">
+				<xs:sequence>
+					<xs:element minOccurs="0" name="Value" type="xs:string" />
+					<xs:element minOccurs="0" name="Type" type="xs:string" />
+				</xs:sequence>
+			</xs:complexType>
+			<xs:complexType name="PersonNameType">
+				<xs:sequence>
+					<xs:element minOccurs="0" name="PrefixedDegree" type="xs:string" />
+					<xs:element name="GivenName" type="xs:string" nillable="true" />
+					<xs:element name="FamilyName" type="xs:string" nillable="true" />
+					<xs:element minOccurs="0" name="SuffixedDegree" type="xs:string" />
+				</xs:sequence>
+			</xs:complexType>
+			<xs:complexType name="AlternativeNameType">
+				<xs:sequence>
+					<xs:element name="FamilyName" type="xs:string" nillable="true" />
+				</xs:sequence>
+			</xs:complexType>
+			<xs:complexType name="PostalAddressType">
+				<xs:sequence>
+					<xs:element minOccurs="0" name="PostalCode" type="xs:string" />
+					<xs:element minOccurs="0" name="Municipality" type="xs:string" />
+					<xs:element minOccurs="0" name="Locality" type="xs:string" />
+					<xs:element minOccurs="0" name="StateCode3" type="xs:string" />
+					<xs:element minOccurs="0" name="DeliveryAddress" type="pd:DeliveryAddressType" />
+					<xs:element minOccurs="0" name="HistoricRecord" type="xs:boolean" />
+				</xs:sequence>
+			</xs:complexType>
+			<xs:complexType name="DeliveryAddressType">
+				<xs:sequence>
+					<xs:element minOccurs="0" name="AddressLine" type="xs:string" />
+					<xs:element minOccurs="0" name="StreetName" type="xs:string" />
+					<xs:element minOccurs="0" name="BuildingNumber" type="xs:string" />
+					<xs:element minOccurs="0" name="Unit" type="xs:string" />
+					<xs:element minOccurs="0" name="DoorNumber" type="xs:string" />
+				</xs:sequence>
+			</xs:complexType>
+		</xs:schema>
+		<xs:schema elementFormDefault="qualified" targetNamespace="http://www.w3.org/2001/04/xmldsig-more#">
+			<xs:element name="ECDSAKeyValue" type="ecdsa:ECDSAKeyValueType" nillable="true" />
+			<xs:complexType name="ECDSAKeyValueType">
+				<xs:sequence>
+					<xs:element minOccurs="0" name="DomainParameters" type="ecdsa:DomainParamsType" />
+					<xs:element name="PublicKey" type="ecdsa:ECPointType" />
+				</xs:sequence>
+			</xs:complexType>
+			<xs:complexType name="DomainParamsType">
+				<xs:sequence>
+					<xs:element minOccurs="0" name="NamedCurve" type="ecdsa:NamedCurveType" />
+				</xs:sequence>
+			</xs:complexType>
+			<xs:complexType name="NamedCurveType">
+				<xs:attribute name="URN" type="xs:string" use="required" />
+			</xs:complexType>
+			<xs:complexType name="ECPointType">
+				<xs:sequence minOccurs="0">
+					<xs:element name="X" type="ecdsa:PrimeFieldElemType" />
+					<xs:element name="Y" type="ecdsa:PrimeFieldElemType" />
+				</xs:sequence>
+			</xs:complexType>
+			<xs:complexType name="PrimeFieldElemType">
+				<xs:attribute name="Value" type="xs:string" use="required" />
+			</xs:complexType>
+		</xs:schema>
+		<xs:schema elementFormDefault="qualified" targetNamespace="http://www.w3.org/2000/09/xmldsig#" xmlns="http://www.w3.org/2001/XMLSchema">
+			<xs:import namespace="http://www.w3.org/2001/04/xmldsig-more#" />
+			<xs:complexType name="KeyValueType">
+				<xs:sequence>
+					<xs:element minOccurs="0" name="DSAKeyValue" type="dsig:DSAKeyValueType" />
+					<xs:element minOccurs="0" name="RSAKeyValue" type="dsig:RSAKeyValueType" />
+					<xs:element minOccurs="0" ref="ecdsa:ECDSAKeyValue" />
+				</xs:sequence>
+			</xs:complexType>
+			<xs:complexType name="DSAKeyValueType">
+				<xs:sequence>
+					<xs:element minOccurs="0" name="P" type="xs:string" />
+					<xs:element minOccurs="0" name="Q" type="xs:string" />
+					<xs:element minOccurs="0" name="J" type="xs:string" />
+					<xs:element minOccurs="0" name="G" type="xs:string" />
+					<xs:element minOccurs="0" name="Y" type="xs:string" />
+					<!-- https://www.w3.org/TR/xmldsig-core/ defines PgenCounter THEN Seed, SZR.wsdl used Seed BEFORE PgenCounter. To keep it backwards compatible but allow the usual order, both ways are allowed. -->
+					<xs:choice maxOccurs="unbounded">
+						<xs:element minOccurs="0" name="PgenCounter" type="xs:string" />
+						<xs:element minOccurs="0" name="Seed" type="xs:string" />
+					</xs:choice>
+				</xs:sequence>
+			</xs:complexType>
+			<xs:complexType name="RSAKeyValueType">
+				<xs:sequence>
+					<xs:element minOccurs="0" name="Modulus" type="xs:string" />
+					<xs:element minOccurs="0" name="Exponent" type="xs:string" />
+				</xs:sequence>
+			</xs:complexType>
+		</xs:schema>
+		<xs:schema elementFormDefault="qualified" targetNamespace="urn:SZRServices">
+			<xs:import namespace="http://reference.e-government.gv.at/namespace/persondata/20020228#" />
+			<xs:import namespace="http://www.w3.org/2000/09/xmldsig#" />
+			<xs:element name="SZRException" type="szr:SZRException" />
+			<xs:complexType name="SZRException" />
+			<xs:complexType name="PersonInfoType">
+				<xs:sequence>
+					<xs:element name="Person" type="pd:PhysicalPersonType" />
+					<xs:element minOccurs="0" name="RegularDomicile" type="pd:PostalAddressType" />
+					<xs:element minOccurs="0" name="AddressCodes" type="szr:AddressCodesType" />
+					<xs:element minOccurs="0" name="TravelDocument" type="szr:TravelDocumentType" />
+					<xs:element minOccurs="0" name="DateOfBirthWildcard" type="xs:boolean" />
+					<xs:element minOccurs="0" name="AuskunftssperreGesetzt" type="xs:boolean" />
+				</xs:sequence>
+			</xs:complexType>
+			<xs:complexType name="TravelDocumentType">
+				<xs:sequence>
+					<xs:element minOccurs="0" name="DocumentNumber" type="xs:string" />
+					<xs:element minOccurs="0" name="DocumentType" type="xs:string" />
+					<xs:element minOccurs="0" name="IssueDate" type="xs:string" />
+					<xs:element minOccurs="0" name="IssuingAuthority" type="xs:string" />
+					<xs:element minOccurs="0" name="IssuingCountry" type="xs:string" />
+				</xs:sequence>
+			</xs:complexType>
+			<xs:complexType name="AddressCodesType">
+				<xs:sequence>
+					<xs:element minOccurs="0" name="GKZ" type="xs:string" />
+					<xs:element minOccurs="0" name="OKZ" type="xs:string" />
+					<xs:element minOccurs="0" name="SKZ" type="xs:string" />
+					<xs:element minOccurs="0" name="ADRCD" type="xs:string" />
+					<xs:element minOccurs="0" name="SUBCD" type="xs:string" />
+					<xs:element minOccurs="0" name="OBJNR" type="xs:string" />
+					<xs:element minOccurs="0" name="NTZLNR" type="xs:string" />
+				</xs:sequence>
+			</xs:complexType>
+			<xs:element name="TransformBPK">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element name="PersonInfo" type="szr:PersonInfoType" />
+						<xs:element name="InputBPK" type="xs:string" />
+						<xs:element name="InputBereichsKennung" type="xs:string" />
+						<xs:element name="Begruendung" type="xs:string" />
+						<xs:element maxOccurs="unbounded" name="Target" type="szr:FremdBPKRequestType" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:element name="TransformBPKResponse">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element maxOccurs="unbounded" name="TransformBPKReturn" type="szr:FremdBPKType" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:element name="GetVKZPermission">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element name="VKZ" type="xs:string" />
+						<xs:element name="BereichsKennung" type="xs:string" />
+						<xs:element minOccurs="0" name="ParticipantId" type="xs:string" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:element name="GetVKZPermissionResponse">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element name="GetVKZPermissionReturn" type="szr:GetVKZPermissionResponseType" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:complexType name="IdentityLinkType">
+				<xs:sequence>
+					<xs:element name="PersonInfo" type="szr:PersonInfoType" />
+					<xs:element name="Assertion" type="xs:anyType" />
+					<xs:element minOccurs="0" name="AdditionalInfo" type="xs:string" />
+				</xs:sequence>
+			</xs:complexType>
+			<xs:complexType name="ResultRecord">
+				<xs:sequence>
+					<xs:element name="PersonInfo" type="szr:PersonInfoType" />
+					<xs:element name="Register" type="xs:string" />
+					<xs:element name="bPK" type="xs:string" />
+					<xs:element maxOccurs="unbounded" minOccurs="0" name="FremdBPK" type="szr:FremdBPKType" />
+				</xs:sequence>
+			</xs:complexType>
+			<xs:complexType name="GetBPKKombiRequestType">
+				<xs:sequence>
+					<xs:element name="PersonInfo" type="szr:PersonInfoType" />
+					<xs:element minOccurs="0" name="InsertERnP">
+						<xs:simpleType>
+							<xs:restriction base="xs:string">
+								<xs:enumeration value="NoInsert" />
+								<xs:enumeration value="InsertOnNoMatch" />
+								<xs:enumeration value="ForceInsert" />
+							</xs:restriction>
+						</xs:simpleType>
+					</xs:element>
+					<xs:element minOccurs="0" name="Suchwizard" type="xs:boolean" />
+					<xs:element name="VKZ" type="xs:string" nillable="true" />
+					<xs:element minOccurs="0" name="BehoerdenKennzeichen" type="xs:string" />
+					<xs:element minOccurs="0" name="BereichsKennung" type="xs:string" />
+					<xs:element maxOccurs="unbounded" minOccurs="0" name="Target" type="szr:FremdBPKRequestType" />
+					<xs:element minOccurs="0" name="Sessionid" type="xs:string" />
+				</xs:sequence>
+			</xs:complexType>
+			<xs:complexType name="GetBPKKombiResponseType">
+				<xs:complexContent>
+					<xs:extension base="szr:GetBPKZPVResponseType">
+						<xs:sequence>
+							<xs:element name="FoundWithSuchwizard" type="xs:boolean" />
+							<xs:element name="Sessionid" type="xs:string" />
+						</xs:sequence>
+					</xs:extension>
+				</xs:complexContent>
+			</xs:complexType>
+			<xs:complexType name="GetBPKZPVRequestType">
+				<xs:sequence>
+					<xs:element name="PersonInfo" type="szr:PersonInfoType" />
+					<xs:element minOccurs="0" name="InsertERnP" type="xs:boolean" default="false" />
+					<xs:element minOccurs="1" name="VKZ" type="xs:string" />
+					<xs:element minOccurs="0" name="BehoerdenKennzeichen" type="xs:string" />
+					<xs:element minOccurs="0" name="BereichsKennung" type="xs:string" />
+					<xs:element maxOccurs="unbounded" minOccurs="0" name="Target" type="szr:FremdBPKRequestType" />
+				</xs:sequence>
+			</xs:complexType>
+			<xs:complexType name="GetBPKZPVResponseType">
+				<xs:sequence>
+					<xs:element maxOccurs="unbounded" name="ResultRecord" type="szr:ResultRecord" />
+					<xs:element name="InsertERnPResult" type="xs:boolean" />
+				</xs:sequence>
+			</xs:complexType>
+			<xs:complexType name="GetBPKFromStammzahlEncryptedRequestType">
+				<xs:sequence>
+					<xs:element minOccurs="1" name="StammzahlEncrypted" type="xs:string" />
+					<xs:element minOccurs="0" name="PersonInfo" type="szr:PersonInfoType" />
+					<xs:element minOccurs="1" name="VKZ" type="xs:string" />
+					<xs:element minOccurs="0" name="BereichsKennung" type="xs:string" />
+					<xs:element maxOccurs="unbounded" minOccurs="0" name="Target" type="szr:FremdBPKRequestType" />
+				</xs:sequence>
+			</xs:complexType>
+			<xs:complexType name="GetBPKFromStammzahlEncryptedResponseType">
+				<xs:sequence>
+					<xs:element minOccurs="0" name="bPK" type="xs:string" />
+					<xs:element maxOccurs="unbounded" minOccurs="0" name="FremdBPK" type="szr:FremdBPKType" />
+				</xs:sequence>
+			</xs:complexType>
+			<xs:element name="GetIdentityLink">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element name="PersonInfo" type="szr:PersonInfoType" />
+						<xs:element maxOccurs="unbounded" name="KeyValue" type="dsig:KeyValueType" />
+						<xs:element minOccurs="0" name="InsertERnP" type="xs:boolean" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:element name="GetIdentityLinkResponse">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element name="GetIdentityLinkReturn" type="szr:IdentityLinkType" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:element name="GetBPK">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element name="PersonInfo" type="szr:PersonInfoType" />
+						<xs:element minOccurs="0" name="BereichsKennung" type="xs:string" />
+						<xs:element minOccurs="0" name="VKZ" type="xs:string" />
+						<xs:element maxOccurs="unbounded" minOccurs="0" name="Target" type="szr:FremdBPKRequestType" />
+						<xs:element minOccurs="0" name="ListMultiplePersons" type="xs:boolean" />
+						<xs:element minOccurs="0" name="InsertERnP" type="xs:boolean" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:element name="GetBPKResponse">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element minOccurs="0" name="GetBPKReturn" type="xs:string" />
+						<xs:element maxOccurs="unbounded" minOccurs="0" name="FremdBPK" type="szr:FremdBPKType" />
+						<xs:element maxOccurs="5" minOccurs="0" name="PersonInfo" type="szr:PersonInfoType" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:element name="GetBPKs">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element maxOccurs="unbounded" name="PersonInfo" type="szr:PersonInfoType" />
+						<xs:element minOccurs="0" name="BereichsKennung" type="xs:string" />
+						<xs:element name="VKZ" type="xs:string" />
+						<xs:element maxOccurs="unbounded" minOccurs="0" name="Target" type="szr:FremdBPKRequestType" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:element name="GetBPKsResponse">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element maxOccurs="unbounded" name="ResultRecord" type="szr:GetBPKsResponseType" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:complexType name="GetBPKsResponseType">
+				<xs:sequence>
+					<xs:element minOccurs="0" name="BPK" type="xs:string" />
+					<xs:element maxOccurs="unbounded" minOccurs="0" name="FremdBPK" type="szr:FremdBPKType" />
+					<xs:element minOccurs="0" name="Fault">
+						<xs:complexType>
+							<xs:attribute name="Code" type="xs:string" />
+							<xs:attribute name="String" type="xs:string" />
+						</xs:complexType>
+					</xs:element>
+				</xs:sequence>
+			</xs:complexType>
+			<xs:element name="GetBPKKombi">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element name="GetBPKKombiRequest" type="szr:GetBPKKombiRequestType" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:element name="GetBPKKombiResponse">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element name="GetBPKKombiResponse" type="szr:GetBPKKombiResponseType" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:element name="GetBPKZPV">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element name="GetBPKZPVRequest" type="szr:GetBPKZPVRequestType" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:element name="GetBPKZPVResponse">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element name="GetBPKZPVResponse" type="szr:GetBPKZPVResponseType" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:element name="GetBPKFromStammzahlEncrypted">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element name="GetBPKFromStammzahlEncryptedRequest" type="szr:GetBPKFromStammzahlEncryptedRequestType" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:element name="GetBPKFromStammzahlEncryptedResponse">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element name="GetBPKFromStammzahlEncryptedResponse" type="szr:GetBPKFromStammzahlEncryptedResponseType" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:element name="ValidateIdentityLink">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element name="IdentityLink" type="szr:IdentityLinkType" />
+						<xs:element name="BereichsKennung" type="xs:string" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:element name="ValidateIdentityLinkResponse">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element name="ValidateIdentityLinkReturn" type="xs:string" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:element name="BPKzuBasiszahl">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element name="Bereich" type="xs:string" />
+						<xs:element name="BPK" type="xs:string" />
+						<xs:element maxOccurs="unbounded" name="BasisZahl" type="xs:string" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:element name="BPKzuBasiszahlResponse">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element name="BPKzuBasiszahlReturn" type="xs:string" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:complexType name="FremdBPKRequestType">
+				<xs:sequence>
+					<xs:element name="BereichsKennung" type="xs:string" />
+					<xs:element name="VKZ" type="xs:string" />
+				</xs:sequence>
+			</xs:complexType>
+			<xs:complexType name="FremdBPKType">
+				<xs:sequence>
+					<xs:element name="BereichsKennung" type="xs:string" />
+					<xs:element name="FremdBPK" type="xs:string" />
+				</xs:sequence>
+			</xs:complexType>
+			<xs:complexType name="GetVKZPermissionResponseType">
+				<xs:sequence>
+					<xs:element name="isAllowed" type="xs:boolean" />
+					<xs:element minOccurs="0" name="behSchluessel" type="xs:string" />
+				</xs:sequence>
+			</xs:complexType>
+			<xs:element name="BasiszahlZuBPK">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element minOccurs="0" name="VKZ" type="xs:string" />
+						<xs:element maxOccurs="unbounded" name="BasisZahl" type="xs:string" />
+						<xs:element maxOccurs="unbounded" minOccurs="0" name="Bereich" type="xs:string" />
+						<xs:element maxOccurs="unbounded" minOccurs="0" name="FremdBPKTargets" type="szr:FremdBPKRequestType" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:complexType name="BasiszahlZuBPKReturnType">
+				<xs:sequence>
+					<xs:element maxOccurs="unbounded" minOccurs="0" name="BPK" type="xs:string" />
+					<xs:element maxOccurs="unbounded" minOccurs="0" name="FremdBPKs" type="szr:FremdBPKType" />
+				</xs:sequence>
+			</xs:complexType>
+			<xs:element name="BasiszahlZuBPKResponse">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element maxOccurs="unbounded" name="BasiszahlZuBPKReturn" type="szr:BasiszahlZuBPKReturnType" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:element name="ZMRAnwendungsIntegration">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element name="Bereich" type="xs:string" />
+						<xs:element maxOccurs="unbounded" minOccurs="0" name="FremdBPKTargets" type="szr:FremdBPKRequestType" />
+						<xs:element maxOccurs="unbounded" name="ZMRfremdbPK" type="xs:string" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:complexType name="ZMRAnwendungsIntegrationReturnType">
+				<xs:sequence>
+					<xs:element name="BPK" type="xs:string" />
+					<xs:element maxOccurs="unbounded" minOccurs="0" name="FremdBPKs" type="szr:FremdBPKType" />
+				</xs:sequence>
+			</xs:complexType>
+			<xs:element name="ZMRAnwendungsIntegrationResponse">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element maxOccurs="unbounded" name="ZMRAnwendungsIntegrationReturn" type="szr:ZMRAnwendungsIntegrationReturnType" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:element name="GetStammzahl">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element name="PersonInfo" type="szr:PersonInfoType" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:element name="GetStammzahlResponse">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element name="Stammzahl" type="xs:string" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:element name="GetStammzahlEncrypted">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element name="PersonInfo" type="szr:PersonInfoType" />
+						<xs:element minOccurs="0" name="InsertERnP" type="xs:boolean" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:element name="GetStammzahlEncryptedResponse">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element name="Stammzahl" type="xs:string" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:element name="GetVersion" />
+			<xs:element name="GetVersionResponse">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element name="Version" type="xs:string" />
+						<xs:element name="Revision" type="xs:string" />
+						<xs:element name="Time" type="xs:string" />
+						<xs:element name="IdentityLinkNotAfter" type="xs:string" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+		</xs:schema>
+		<xs:schema targetNamespace="http://egov.gv.at/pvp1.xsd">
+			<xs:include schemaLocation="pvp1.xsd" />
+		</xs:schema>
+		<xs:schema elementFormDefault="qualified" targetNamespace="http://schemas.xmlsoap.org/ws/2002/04/secext">
+			<xs:element name="Security">
+				<xs:complexType>
+					<xs:sequence>
+						<!-- add the pvpToken here. You can also uncomment the following line if you support XSD 1.1 -->
+						<!-- <xs:element ref="pvp:pvpToken" /> -->
+						<xs:any processContents="lax" minOccurs="0" maxOccurs="unbounded" />
+					</xs:sequence>
+					<xs:anyAttribute processContents="lax" />
+				</xs:complexType>
+			</xs:element>
+		</xs:schema>
+	</types>
+	<message name="Header">
+		<part name="SecurityHeader" element="wsse:Security" />
+	</message>
+	<message name="GetIdentityLinkRequest">
+		<part element="szr:GetIdentityLink" name="parameters" />
+	</message>
+	<message name="GetIdentityLinkResponse">
+		<part element="szr:GetIdentityLinkResponse" name="parameters" />
+	</message>
+	<message name="GetBPKRequest">
+		<part element="szr:GetBPK" name="parameters" />
+	</message>
+	<message name="GetBPKResponse">
+		<part element="szr:GetBPKResponse" name="parameters" />
+	</message>
+	<message name="GetBPKsRequest">
+		<part element="szr:GetBPKs" name="parameters" />
+	</message>
+	<message name="GetBPKsResponse">
+		<part element="szr:GetBPKsResponse" name="parameters" />
+	</message>
+	<message name="GetBPKKombiRequest">
+		<part element="szr:GetBPKKombi" name="parameters" />
+	</message>
+	<message name="GetBPKKombiResponse">
+		<part element="szr:GetBPKKombiResponse" name="parameters" />
+	</message>
+	<message name="GetBPKZPVRequest">
+		<part element="szr:GetBPKZPV" name="parameters" />
+	</message>
+	<message name="GetBPKZPVResponse">
+		<part element="szr:GetBPKZPVResponse" name="parameters" />
+	</message>
+	<message name="GetBPKFromStammzahlEncryptedRequest">
+		<part element="szr:GetBPKFromStammzahlEncrypted" name="parameters" />
+	</message>
+	<message name="GetBPKFromStammzahlEncryptedResponse">
+		<part element="szr:GetBPKFromStammzahlEncryptedResponse" name="parameters" />
+	</message>
+	<message name="BPKzuBasiszahlRequest">
+		<part element="szr:BPKzuBasiszahl" name="parameters" />
+	</message>
+	<message name="BPKzuBasiszahlResponse">
+		<part element="szr:BPKzuBasiszahlResponse" name="parameters" />
+	</message>
+	<message name="BasiszahlZuBPKRequest">
+		<part element="szr:BasiszahlZuBPK" name="parameters" />
+	</message>
+	<message name="BasiszahlZuBPKResponse">
+		<part element="szr:BasiszahlZuBPKResponse" name="parameters" />
+	</message>
+	<message name="ValidateIdentityLinkRequest">
+		<part element="szr:ValidateIdentityLink" name="parameters" />
+	</message>
+	<message name="ValidateIdentityLinkResponse">
+		<part element="szr:ValidateIdentityLinkResponse" name="parameters" />
+	</message>
+	<message name="TransformBPKRequest">
+		<part element="szr:TransformBPK" name="parameters" />
+	</message>
+	<message name="TransformBPKResponse">
+		<part element="szr:TransformBPKResponse" name="parameters" />
+	</message>
+	<message name="GetVKZPermissionRequest">
+		<part element="szr:GetVKZPermission" name="parameters" />
+	</message>
+	<message name="GetVKZPermissionResponse">
+		<part element="szr:GetVKZPermissionResponse" name="parameters" />
+	</message>
+	<message name="ZMRAnwendungsIntegrationRequest">
+		<part element="szr:ZMRAnwendungsIntegration" name="parameters" />
+	</message>
+	<message name="ZMRAnwendungsIntegrationResponse">
+		<part element="szr:ZMRAnwendungsIntegrationResponse" name="parameters" />
+	</message>
+	<message name="GetStammzahlRequest">
+		<part element="szr:GetStammzahl" name="parameters" />
+	</message>
+	<message name="GetStammzahlResponse">
+		<part element="szr:GetStammzahlResponse" name="parameters" />
+	</message>
+	<message name="GetStammzahlEncryptedRequest">
+		<part element="szr:GetStammzahlEncrypted" name="parameters" />
+	</message>
+	<message name="GetStammzahlEncryptedResponse">
+		<part element="szr:GetStammzahlEncryptedResponse" name="parameters" />
+	</message>
+	<message name="GetVersionRequest">
+		<part element="szr:GetVersion" name="parameters" />
+	</message>
+	<message name="GetVersionResponse">
+		<part element="szr:GetVersionResponse" name="parameters" />
+	</message>
+	<message name="SZRException">
+		<part element="szr:SZRException" name="fault" />
+	</message>
+	<portType name="SZR">
+		<operation name="GetIdentityLink">
+			<input message="szr:GetIdentityLinkRequest" name="GetIdentityLinkRequest" />
+			<output message="szr:GetIdentityLinkResponse" name="GetIdentityLinkResponse" />
+			<fault message="szr:SZRException" name="SZRException" />
+		</operation>
+		<operation name="GetBPK">
+			<jaxws:bindings xmlns:jaxws="http://java.sun.com/xml/ns/jaxws">
+				<jaxws:enableWrapperStyle>false</jaxws:enableWrapperStyle>
+			</jaxws:bindings>
+			<input message="szr:GetBPKRequest" name="GetBPKRequest" />
+			<output message="szr:GetBPKResponse" name="GetBPKResponse" />
+			<fault message="szr:SZRException" name="SZRException" />
+		</operation>
+		<operation name="GetBPKs">
+			<input message="szr:GetBPKsRequest" name="GetBPKsRequest" />
+			<output message="szr:GetBPKsResponse" name="GetBPKsResponse" />
+			<fault message="szr:SZRException" name="SZRException" />
+		</operation>
+		<operation name="GetBPKKombi">
+			<input message="szr:GetBPKKombiRequest" name="GetBPKKombiRequest" />
+			<output message="szr:GetBPKKombiResponse" name="GetBPKKombiResponse" />
+			<fault message="szr:SZRException" name="SZRException" />
+		</operation>
+		<operation name="GetBPKZPV">
+			<input message="szr:GetBPKZPVRequest" name="GetBPKZPVRequest" />
+			<output message="szr:GetBPKZPVResponse" name="GetBPKZPVResponse" />
+			<fault message="szr:SZRException" name="SZRException" />
+		</operation>
+		<operation name="GetBPKFromStammzahlEncrypted">
+			<input message="szr:GetBPKFromStammzahlEncryptedRequest" name="GetBPKFromStammzahlEncryptedRequest" />
+			<output message="szr:GetBPKFromStammzahlEncryptedResponse" name="GetBPKFromStammzahlEncryptedResponse" />
+			<fault message="szr:SZRException" name="SZRException" />
+		</operation>
+		<operation name="ValidateIdentityLink">
+			<input message="szr:ValidateIdentityLinkRequest" name="ValidateIdentityLinkRequest" />
+			<output message="szr:ValidateIdentityLinkResponse" name="ValidateIdentityLinkResponse" />
+			<fault message="szr:SZRException" name="SZRException" />
+		</operation>
+		<operation name="TransformBPK">
+			<input message="szr:TransformBPKRequest" name="TransformBPKRequest" />
+			<output message="szr:TransformBPKResponse" name="TransformBPKResponse" />
+			<fault message="szr:SZRException" name="SZRException" />
+		</operation>
+		<operation name="GetVKZPermission">
+			<input message="szr:GetVKZPermissionRequest" name="GetVKZPermissionRequest" />
+			<output message="szr:GetVKZPermissionResponse" name="GetVKZPermissionResponse" />
+			<fault message="szr:SZRException" name="SZRException" />
+		</operation>
+		<operation name="BPKzuBasiszahl">
+			<input message="szr:BPKzuBasiszahlRequest" name="BPKzuBasiszahlRequest" />
+			<output message="szr:BPKzuBasiszahlResponse" name="BPKzuBasiszahlResponse" />
+			<fault message="szr:SZRException" name="SZRException" />
+		</operation>
+		<operation name="BasiszahlZuBPK">
+			<input message="szr:BasiszahlZuBPKRequest" name="BasiszahlZuBPKRequest" />
+			<output message="szr:BasiszahlZuBPKResponse" name="BasiszahlZuBPKResponse" />
+			<fault message="szr:SZRException" name="SZRException" />
+		</operation>
+		<operation name="ZMRAnwendungsIntegration">
+			<input message="szr:ZMRAnwendungsIntegrationRequest" name="ZMRAnwendungsIntegrationRequest" />
+			<output message="szr:ZMRAnwendungsIntegrationResponse" name="ZMRAnwendungsIntegrationResponse" />
+			<fault message="szr:SZRException" name="SZRException" />
+		</operation>
+		<operation name="GetStammzahl">
+			<input message="szr:GetStammzahlRequest" name="GetStammzahlRequest" />
+			<output message="szr:GetStammzahlResponse" name="GetStammzahlResponse" />
+			<fault message="szr:SZRException" name="SZRException" />
+		</operation>
+		<operation name="GetStammzahlEncrypted">
+			<input message="szr:GetStammzahlEncryptedRequest" name="GetStammzahlEncryptedRequest" />
+			<output message="szr:GetStammzahlEncryptedResponse" name="GetStammzahlEncryptedResponse" />
+			<fault message="szr:SZRException" name="SZRException" />
+		</operation>
+		<operation name="GetVersion">
+			<input message="szr:GetVersionRequest" name="GetVersionRequest" />
+			<output message="szr:GetVersionResponse" name="GetVersionResponse" />
+			<fault message="szr:SZRException" name="SZRException" />
+		</operation>
+	</portType>
+	<binding name="SZRSoapBinding" type="szr:SZR">
+		<wsdlsoap:binding style="document" transport="http://schemas.xmlsoap.org/soap/http" />
+		<operation name="GetIdentityLink">
+			<wsdlsoap:operation soapAction="" />
+			<input name="GetIdentityLinkRequest">
+				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
+				<wsdlsoap:body use="literal" />
+			</input>
+			<output name="GetIdentityLinkResponse">
+				<wsdlsoap:body use="literal" />
+			</output>
+			<fault name="SZRException">
+				<wsdlsoap:fault name="SZRException" use="literal" />
+			</fault>
+		</operation>
+		<operation name="GetBPK">
+			<wsdlsoap:operation soapAction="" />
+			<input name="GetBPKRequest">
+				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
+				<wsdlsoap:body use="literal" />
+			</input>
+			<output name="GetBPKResponse">
+				<wsdlsoap:body use="literal" />
+			</output>
+			<fault name="SZRException">
+				<wsdlsoap:fault name="SZRException" use="literal" />
+			</fault>
+		</operation>
+		<operation name="GetBPKs">
+			<wsdlsoap:operation soapAction="" />
+			<input name="GetBPKsRequest">
+				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
+				<wsdlsoap:body use="literal" />
+			</input>
+			<output name="GetBPKsResponse">
+				<wsdlsoap:body use="literal" />
+			</output>
+			<fault name="SZRException">
+				<wsdlsoap:fault name="SZRException" use="literal" />
+			</fault>
+		</operation>
+		<operation name="GetBPKKombi">
+			<wsdlsoap:operation soapAction="" />
+			<input name="GetBPKKombiRequest">
+				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
+				<wsdlsoap:body use="literal" />
+			</input>
+			<output name="GetBPKKombiResponse">
+				<wsdlsoap:body use="literal" />
+			</output>
+			<fault name="SZRException">
+				<wsdlsoap:fault name="SZRException" use="literal" />
+			</fault>
+		</operation>
+		<operation name="GetBPKZPV">
+			<wsdlsoap:operation soapAction="" />
+			<input name="GetBPKZPVRequest">
+				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
+				<wsdlsoap:body use="literal" />
+			</input>
+			<output name="GetBPKZPVResponse">
+				<wsdlsoap:body use="literal" />
+			</output>
+			<fault name="SZRException">
+				<wsdlsoap:fault name="SZRException" use="literal" />
+			</fault>
+		</operation>
+		<operation name="GetBPKFromStammzahlEncrypted">
+			<wsdlsoap:operation soapAction="" />
+			<input name="GetBPKFromStammzahlEncryptedRequest">
+				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
+				<wsdlsoap:body use="literal" />
+			</input>
+			<output name="GetBPKFromStammzahlEncryptedResponse">
+				<wsdlsoap:body use="literal" />
+			</output>
+			<fault name="SZRException">
+				<wsdlsoap:fault name="SZRException" use="literal" />
+			</fault>
+		</operation>
+		<operation name="GetVKZPermission">
+			<wsdlsoap:operation soapAction="" />
+			<input name="GetVKZPermissionRequest">
+				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
+				<wsdlsoap:body use="literal" />
+			</input>
+			<output name="GetVKZPermissionResponse">
+				<wsdlsoap:body use="literal" />
+			</output>
+			<fault name="SZRException">
+				<wsdlsoap:fault name="SZRException" use="literal" />
+			</fault>
+		</operation>
+		<operation name="ValidateIdentityLink">
+			<wsdlsoap:operation soapAction="" />
+			<input name="ValidateIdentityLinkRequest">
+				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
+				<wsdlsoap:body use="literal" />
+			</input>
+			<output name="ValidateIdentityLinkResponse">
+				<wsdlsoap:body use="literal" />
+			</output>
+			<fault name="SZRException">
+				<wsdlsoap:fault name="SZRException" use="literal" />
+			</fault>
+		</operation>
+		<operation name="TransformBPK">
+			<wsdlsoap:operation soapAction="" />
+			<input name="TransformBPKRequest">
+				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
+				<wsdlsoap:body use="literal" />
+			</input>
+			<output name="TransformBPKResponse">
+				<wsdlsoap:body use="literal" />
+			</output>
+			<fault name="SZRException">
+				<wsdlsoap:fault name="SZRException" use="literal" />
+			</fault>
+		</operation>
+		<operation name="BPKzuBasiszahl">
+			<wsdlsoap:operation soapAction="" />
+			<input name="BPKzuBasiszahlRequest">
+				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
+				<wsdlsoap:body use="literal" />
+			</input>
+			<output name="BPKzuBasiszahlResponse">
+				<wsdlsoap:body use="literal" />
+			</output>
+			<fault name="SZRException">
+				<wsdlsoap:fault name="SZRException" use="literal" />
+			</fault>
+		</operation>
+		<operation name="BasiszahlZuBPK">
+			<wsdlsoap:operation soapAction="" />
+			<input name="BasiszahlZuBPKRequest">
+				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
+				<wsdlsoap:body use="literal" />
+			</input>
+			<output name="BasiszahlZuBPKResponse">
+				<wsdlsoap:body use="literal" />
+			</output>
+			<fault name="SZRException">
+				<wsdlsoap:fault name="SZRException" use="literal" />
+			</fault>
+		</operation>
+		<operation name="ZMRAnwendungsIntegration">
+			<wsdlsoap:operation soapAction="" />
+			<input name="ZMRAnwendungsIntegrationRequest">
+				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
+				<wsdlsoap:body use="literal" />
+			</input>
+			<output name="ZMRAnwendungsIntegrationResponse">
+				<wsdlsoap:body use="literal" />
+			</output>
+			<fault name="SZRException">
+				<wsdlsoap:fault name="SZRException" use="literal" />
+			</fault>
+		</operation>
+		<operation name="GetStammzahl">
+			<wsdlsoap:operation soapAction="" />
+			<input name="GetStammzahlRequest">
+				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
+				<wsdlsoap:body use="literal" />
+			</input>
+			<output name="GetStammzahlResponse">
+				<wsdlsoap:body use="literal" />
+			</output>
+			<fault name="SZRException">
+				<wsdlsoap:fault name="SZRException" use="literal" />
+			</fault>
+		</operation>
+		<operation name="GetStammzahlEncrypted">
+			<wsdlsoap:operation soapAction="" />
+			<input name="GetStammzahlEncryptedRequest">
+				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
+				<wsdlsoap:body use="literal" />
+			</input>
+			<output name="GetStammzahlEncryptedResponse">
+				<wsdlsoap:body use="literal" />
+			</output>
+			<fault name="SZRException">
+				<wsdlsoap:fault name="SZRException" use="literal" />
+			</fault>
+		</operation>
+		<operation name="GetVersion">
+			<wsdlsoap:operation soapAction="" />
+			<input name="GetVersionRequest">
+				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
+				<wsdlsoap:body use="literal" />
+			</input>
+			<output name="GetVersionResponse">
+				<wsdlsoap:body use="literal" />
+			</output>
+			<fault name="SZRException">
+				<wsdlsoap:fault name="SZRException" use="literal" />
+			</fault>
+		</operation>
+	</binding>
+	<service name="SZRService">
+		<port binding="szr:SZRSoapBinding" name="SZRBusinesspartnerTestumgebung">
+			<wsdlsoap:address location="https://pvawp.bmi.gv.at/at.gv.bmi.szrsrv-b/services/SZR" />
+		</port>
+		<port binding="szr:SZRSoapBinding" name="SZRTestumgebung">
+			<wsdlsoap:address location="https://pvawp.bmi.gv.at/bmi.gv.at/soap/SZ2Services-T/services/SZR" />
+		</port>
+		<port binding="szr:SZRSoapBinding" name="SZRProduktionsumgebung">
+			<wsdlsoap:address location="https://pvawp.bmi.gv.at/bmi.gv.at/soap/SZ2Services/services/SZR" />
+		</port>
+	</service>
+</definitions>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/szr_client/SZR_v4.0.wsdl b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/szr_client/SZR_v4.0.wsdl
new file mode 100644
index 00000000..e7f296bd
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/szr_client/SZR_v4.0.wsdl
@@ -0,0 +1,441 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<definitions targetNamespace="urn:SZRServices" xmlns="http://schemas.xmlsoap.org/wsdl/" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" xmlns:ecdsa="http://www.w3.org/2001/04/xmldsig-more#" xmlns:pd="http://reference.e-government.gv.at/namespace/persondata/20020228#" xmlns:pvp="http://egov.gv.at/pvp1.xsd" xmlns:saml="urn:oasis:names:tc:SAML:1.0:assertion" xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/" xmlns:szr="urn:SZRServices" xmlns:wsdlsoap="http://schemas.xmlsoap.org/wsdl/soap/" xmlns:wsse="http://schemas.xmlsoap.org/ws/2002/04/secext" xmlns:xs="http://www.w3.org/2001/XMLSchema">
+    <types>
+			<xs:schema>
+				<xs:import namespace="urn:SZRServices" schemaLocation="szr_v4.0.xsd"/>
+			</xs:schema>
+		</types>
+	<message name="Header">
+		<part name="SecurityHeader" element="wsse:Security" />
+	</message>
+	<message name="GetIdentityLinkRequest">
+		<part element="szr:GetIdentityLink" name="parameters" />
+	</message>
+	<message name="GetIdentityLinkResponse">
+		<part element="szr:GetIdentityLinkResponse" name="parameters" />
+	</message>
+	<message name="GetIdentityLinkEidasRequest">
+		<part element="szr:GetIdentityLinkEidas" name="parameters" />
+	</message>
+	<message name="GetIdentityLinkEidasResponse">
+		<part element="szr:GetIdentityLinkEidasResponse" name="parameters" />
+	</message>
+	<message name="GetBPKRequest">
+		<part element="szr:GetBPK" name="parameters" />
+	</message>
+	<message name="GetBPKResponse">
+		<part element="szr:GetBPKResponse" name="parameters" />
+	</message>
+	<message name="GetBPKsRequest">
+		<part element="szr:GetBPKs" name="parameters" />
+	</message>
+	<message name="GetBPKsResponse">
+		<part element="szr:GetBPKsResponse" name="parameters" />
+	</message>
+	<message name="GetBPKKombiRequest">
+		<part element="szr:GetBPKKombi" name="parameters" />
+	</message>
+	<message name="GetBPKKombiResponse">
+		<part element="szr:GetBPKKombiResponse" name="parameters" />
+	</message>
+	<message name="GetBPKZPVRequest">
+		<part element="szr:GetBPKZPV" name="parameters" />
+	</message>
+	<message name="GetBPKZPVResponse">
+		<part element="szr:GetBPKZPVResponse" name="parameters" />
+	</message>
+	<message name="GetBPKFromStammzahlEncryptedRequest">
+		<part element="szr:GetBPKFromStammzahlEncrypted" name="parameters" />
+	</message>
+	<message name="GetBPKFromStammzahlEncryptedResponse">
+		<part element="szr:GetBPKFromStammzahlEncryptedResponse" name="parameters" />
+	</message>
+	<message name="SignContentRequest">
+		<part element="szr:SignContent" name="parameters" />
+	</message>
+	<message name="SignContentResponse">
+		<part element="szr:SignContentResponse" name="parameters" />
+	</message>
+	<message name="BPKzuBasiszahlRequest">
+		<part element="szr:BPKzuBasiszahl" name="parameters" />
+	</message>
+	<message name="BPKzuBasiszahlResponse">
+		<part element="szr:BPKzuBasiszahlResponse" name="parameters" />
+	</message>
+	<message name="BasiszahlZuBPKRequest">
+		<part element="szr:BasiszahlZuBPK" name="parameters" />
+	</message>
+	<message name="BasiszahlZuBPKResponse">
+		<part element="szr:BasiszahlZuBPKResponse" name="parameters" />
+	</message>
+	<message name="ValidateIdentityLinkRequest">
+		<part element="szr:ValidateIdentityLink" name="parameters" />
+	</message>
+	<message name="ValidateIdentityLinkResponse">
+		<part element="szr:ValidateIdentityLinkResponse" name="parameters" />
+	</message>
+	<message name="TransformBPKRequest">
+		<part element="szr:TransformBPK" name="parameters" />
+	</message>
+	<message name="TransformBPKResponse">
+		<part element="szr:TransformBPKResponse" name="parameters" />
+	</message>
+	<message name="GetVKZPermissionRequest">
+		<part element="szr:GetVKZPermission" name="parameters" />
+	</message>
+	<message name="GetVKZPermissionResponse">
+		<part element="szr:GetVKZPermissionResponse" name="parameters" />
+	</message>
+	<message name="ZMRAnwendungsIntegrationRequest">
+		<part element="szr:ZMRAnwendungsIntegration" name="parameters" />
+	</message>
+	<message name="ZMRAnwendungsIntegrationResponse">
+		<part element="szr:ZMRAnwendungsIntegrationResponse" name="parameters" />
+	</message>
+	<message name="GetStammzahlRequest">
+		<part element="szr:GetStammzahl" name="parameters" />
+	</message>
+	<message name="GetStammzahlResponse">
+		<part element="szr:GetStammzahlResponse" name="parameters" />
+	</message>
+	<message name="GetStammzahlEncryptedRequest">
+		<part element="szr:GetStammzahlEncrypted" name="parameters" />
+	</message>
+	<message name="GetStammzahlEncryptedResponse">
+		<part element="szr:GetStammzahlEncryptedResponse" name="parameters" />
+	</message>
+	<message name="GetVersionRequest">
+		<part element="szr:GetVersion" name="parameters" />
+	</message>
+	<message name="GetVersionResponse">
+		<part element="szr:GetVersionResponse" name="parameters" />
+	</message>
+	<message name="SZRException">
+		<part element="szr:SZRException" name="fault" />
+	</message>
+	<portType name="SZR">
+		<operation name="GetIdentityLink">
+			<input message="szr:GetIdentityLinkRequest" name="GetIdentityLinkRequest" />
+			<output message="szr:GetIdentityLinkResponse" name="GetIdentityLinkResponse" />
+			<fault message="szr:SZRException" name="SZRException" />
+		</operation>
+		<operation name="GetIdentityLinkEidas">
+			<input message="szr:GetIdentityLinkEidasRequest" name="GetIdentityLinkEidasRequest" />
+			<output message="szr:GetIdentityLinkEidasResponse" name="GetIdentityLinkEidasResponse" />
+			<fault message="szr:SZRException" name="SZRException" />
+		</operation>
+		<operation name="GetBPK">
+			<jaxws:bindings xmlns:jaxws="http://java.sun.com/xml/ns/jaxws">
+				<jaxws:enableWrapperStyle>false</jaxws:enableWrapperStyle>
+			</jaxws:bindings>
+			<input message="szr:GetBPKRequest" name="GetBPKRequest" />
+			<output message="szr:GetBPKResponse" name="GetBPKResponse" />
+			<fault message="szr:SZRException" name="SZRException" />
+		</operation>
+		<operation name="GetBPKs">
+			<input message="szr:GetBPKsRequest" name="GetBPKsRequest" />
+			<output message="szr:GetBPKsResponse" name="GetBPKsResponse" />
+			<fault message="szr:SZRException" name="SZRException" />
+		</operation>
+		<operation name="GetBPKKombi">
+			<input message="szr:GetBPKKombiRequest" name="GetBPKKombiRequest" />
+			<output message="szr:GetBPKKombiResponse" name="GetBPKKombiResponse" />
+			<fault message="szr:SZRException" name="SZRException" />
+		</operation>
+		<operation name="GetBPKZPV">
+			<input message="szr:GetBPKZPVRequest" name="GetBPKZPVRequest" />
+			<output message="szr:GetBPKZPVResponse" name="GetBPKZPVResponse" />
+			<fault message="szr:SZRException" name="SZRException" />
+		</operation>
+		<operation name="GetBPKFromStammzahlEncrypted">
+			<input message="szr:GetBPKFromStammzahlEncryptedRequest" name="GetBPKFromStammzahlEncryptedRequest" />
+			<output message="szr:GetBPKFromStammzahlEncryptedResponse" name="GetBPKFromStammzahlEncryptedResponse" />
+			<fault message="szr:SZRException" name="SZRException" />
+		</operation>
+		<operation name="SignContent">
+			<input message="szr:SignContentRequest" name="SignContentRequest" />
+			<output message="szr:SignContentResponse" name="SignContentResponse" />
+			<fault message="szr:SZRException" name="SZRException" />
+		</operation>
+		<operation name="ValidateIdentityLink">
+			<input message="szr:ValidateIdentityLinkRequest" name="ValidateIdentityLinkRequest" />
+			<output message="szr:ValidateIdentityLinkResponse" name="ValidateIdentityLinkResponse" />
+			<fault message="szr:SZRException" name="SZRException" />
+		</operation>
+		<operation name="TransformBPK">
+			<input message="szr:TransformBPKRequest" name="TransformBPKRequest" />
+			<output message="szr:TransformBPKResponse" name="TransformBPKResponse" />
+			<fault message="szr:SZRException" name="SZRException" />
+		</operation>
+		<operation name="GetVKZPermission">
+			<input message="szr:GetVKZPermissionRequest" name="GetVKZPermissionRequest" />
+			<output message="szr:GetVKZPermissionResponse" name="GetVKZPermissionResponse" />
+			<fault message="szr:SZRException" name="SZRException" />
+		</operation>
+		<operation name="BPKzuBasiszahl">
+			<input message="szr:BPKzuBasiszahlRequest" name="BPKzuBasiszahlRequest" />
+			<output message="szr:BPKzuBasiszahlResponse" name="BPKzuBasiszahlResponse" />
+			<fault message="szr:SZRException" name="SZRException" />
+		</operation>
+		<operation name="BasiszahlZuBPK">
+			<input message="szr:BasiszahlZuBPKRequest" name="BasiszahlZuBPKRequest" />
+			<output message="szr:BasiszahlZuBPKResponse" name="BasiszahlZuBPKResponse" />
+			<fault message="szr:SZRException" name="SZRException" />
+		</operation>
+		<operation name="ZMRAnwendungsIntegration">
+			<input message="szr:ZMRAnwendungsIntegrationRequest" name="ZMRAnwendungsIntegrationRequest" />
+			<output message="szr:ZMRAnwendungsIntegrationResponse" name="ZMRAnwendungsIntegrationResponse" />
+			<fault message="szr:SZRException" name="SZRException" />
+		</operation>
+		<operation name="GetStammzahl">
+			<input message="szr:GetStammzahlRequest" name="GetStammzahlRequest" />
+			<output message="szr:GetStammzahlResponse" name="GetStammzahlResponse" />
+			<fault message="szr:SZRException" name="SZRException" />
+		</operation>
+		<operation name="GetStammzahlEncrypted">
+			<input message="szr:GetStammzahlEncryptedRequest" name="GetStammzahlEncryptedRequest" />
+			<output message="szr:GetStammzahlEncryptedResponse" name="GetStammzahlEncryptedResponse" />
+			<fault message="szr:SZRException" name="SZRException" />
+		</operation>
+		<operation name="GetVersion">
+			<input message="szr:GetVersionRequest" name="GetVersionRequest" />
+			<output message="szr:GetVersionResponse" name="GetVersionResponse" />
+			<fault message="szr:SZRException" name="SZRException" />
+		</operation>
+	</portType>
+	<binding name="SZRSoapBinding" type="szr:SZR">
+		<wsdlsoap:binding style="document" transport="http://schemas.xmlsoap.org/soap/http" />
+		<operation name="GetIdentityLink">
+			<wsdlsoap:operation soapAction="" />
+			<input name="GetIdentityLinkRequest">
+				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
+				<wsdlsoap:body use="literal" />
+			</input>
+			<output name="GetIdentityLinkResponse">
+				<wsdlsoap:body use="literal" />
+			</output>
+			<fault name="SZRException">
+				<wsdlsoap:fault name="SZRException" use="literal" />
+			</fault>
+		</operation>
+		<operation name="GetIdentityLinkEidas">
+			<wsdlsoap:operation soapAction="" />
+			<input name="GetIdentityLinkEidasRequest">
+				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
+				<wsdlsoap:body use="literal" />
+			</input>
+			<output name="GetIdentityLinkEidasResponse">
+				<wsdlsoap:body use="literal" />
+			</output>
+			<fault name="SZRException">
+				<wsdlsoap:fault name="SZRException" use="literal" />
+			</fault>
+		</operation>
+		<operation name="GetBPK">
+			<wsdlsoap:operation soapAction="" />
+			<input name="GetBPKRequest">
+				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
+				<wsdlsoap:body use="literal" />
+			</input>
+			<output name="GetBPKResponse">
+				<wsdlsoap:body use="literal" />
+			</output>
+			<fault name="SZRException">
+				<wsdlsoap:fault name="SZRException" use="literal" />
+			</fault>
+		</operation>
+		<operation name="GetBPKs">
+			<wsdlsoap:operation soapAction="" />
+			<input name="GetBPKsRequest">
+				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
+				<wsdlsoap:body use="literal" />
+			</input>
+			<output name="GetBPKsResponse">
+				<wsdlsoap:body use="literal" />
+			</output>
+			<fault name="SZRException">
+				<wsdlsoap:fault name="SZRException" use="literal" />
+			</fault>
+		</operation>
+		<operation name="GetBPKKombi">
+			<wsdlsoap:operation soapAction="" />
+			<input name="GetBPKKombiRequest">
+				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
+				<wsdlsoap:body use="literal" />
+			</input>
+			<output name="GetBPKKombiResponse">
+				<wsdlsoap:body use="literal" />
+			</output>
+			<fault name="SZRException">
+				<wsdlsoap:fault name="SZRException" use="literal" />
+			</fault>
+		</operation>
+		<operation name="GetBPKZPV">
+			<wsdlsoap:operation soapAction="" />
+			<input name="GetBPKZPVRequest">
+				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
+				<wsdlsoap:body use="literal" />
+			</input>
+			<output name="GetBPKZPVResponse">
+				<wsdlsoap:body use="literal" />
+			</output>
+			<fault name="SZRException">
+				<wsdlsoap:fault name="SZRException" use="literal" />
+			</fault>
+		</operation>
+		<operation name="GetBPKFromStammzahlEncrypted">
+			<wsdlsoap:operation soapAction="" />
+			<input name="GetBPKFromStammzahlEncryptedRequest">
+				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
+				<wsdlsoap:body use="literal" />
+			</input>
+			<output name="GetBPKFromStammzahlEncryptedResponse">
+				<wsdlsoap:body use="literal" />
+			</output>
+			<fault name="SZRException">
+				<wsdlsoap:fault name="SZRException" use="literal" />
+			</fault>
+		</operation>
+		<operation name="SignContent">
+			<wsdlsoap:operation soapAction="" />
+			<input name="SignContentRequest">
+				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
+				<wsdlsoap:body use="literal" />
+			</input>
+			<output name="SignContentResponse">
+				<wsdlsoap:body use="literal" />
+			</output>
+			<fault name="SZRException">
+				<wsdlsoap:fault name="SZRException" use="literal" />
+			</fault>
+		</operation>
+		<operation name="GetVKZPermission">
+			<wsdlsoap:operation soapAction="" />
+			<input name="GetVKZPermissionRequest">
+				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
+				<wsdlsoap:body use="literal" />
+			</input>
+			<output name="GetVKZPermissionResponse">
+				<wsdlsoap:body use="literal" />
+			</output>
+			<fault name="SZRException">
+				<wsdlsoap:fault name="SZRException" use="literal" />
+			</fault>
+		</operation>
+		<operation name="ValidateIdentityLink">
+			<wsdlsoap:operation soapAction="" />
+			<input name="ValidateIdentityLinkRequest">
+				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
+				<wsdlsoap:body use="literal" />
+			</input>
+			<output name="ValidateIdentityLinkResponse">
+				<wsdlsoap:body use="literal" />
+			</output>
+			<fault name="SZRException">
+				<wsdlsoap:fault name="SZRException" use="literal" />
+			</fault>
+		</operation>
+		<operation name="TransformBPK">
+			<wsdlsoap:operation soapAction="" />
+			<input name="TransformBPKRequest">
+				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
+				<wsdlsoap:body use="literal" />
+			</input>
+			<output name="TransformBPKResponse">
+				<wsdlsoap:body use="literal" />
+			</output>
+			<fault name="SZRException">
+				<wsdlsoap:fault name="SZRException" use="literal" />
+			</fault>
+		</operation>
+		<operation name="BPKzuBasiszahl">
+			<wsdlsoap:operation soapAction="" />
+			<input name="BPKzuBasiszahlRequest">
+				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
+				<wsdlsoap:body use="literal" />
+			</input>
+			<output name="BPKzuBasiszahlResponse">
+				<wsdlsoap:body use="literal" />
+			</output>
+			<fault name="SZRException">
+				<wsdlsoap:fault name="SZRException" use="literal" />
+			</fault>
+		</operation>
+		<operation name="BasiszahlZuBPK">
+			<wsdlsoap:operation soapAction="" />
+			<input name="BasiszahlZuBPKRequest">
+				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
+				<wsdlsoap:body use="literal" />
+			</input>
+			<output name="BasiszahlZuBPKResponse">
+				<wsdlsoap:body use="literal" />
+			</output>
+			<fault name="SZRException">
+				<wsdlsoap:fault name="SZRException" use="literal" />
+			</fault>
+		</operation>
+		<operation name="ZMRAnwendungsIntegration">
+			<wsdlsoap:operation soapAction="" />
+			<input name="ZMRAnwendungsIntegrationRequest">
+				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
+				<wsdlsoap:body use="literal" />
+			</input>
+			<output name="ZMRAnwendungsIntegrationResponse">
+				<wsdlsoap:body use="literal" />
+			</output>
+			<fault name="SZRException">
+				<wsdlsoap:fault name="SZRException" use="literal" />
+			</fault>
+		</operation>
+		<operation name="GetStammzahl">
+			<wsdlsoap:operation soapAction="" />
+			<input name="GetStammzahlRequest">
+				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
+				<wsdlsoap:body use="literal" />
+			</input>
+			<output name="GetStammzahlResponse">
+				<wsdlsoap:body use="literal" />
+			</output>
+			<fault name="SZRException">
+				<wsdlsoap:fault name="SZRException" use="literal" />
+			</fault>
+		</operation>
+		<operation name="GetStammzahlEncrypted">
+			<wsdlsoap:operation soapAction="" />
+			<input name="GetStammzahlEncryptedRequest">
+				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
+				<wsdlsoap:body use="literal" />
+			</input>
+			<output name="GetStammzahlEncryptedResponse">
+				<wsdlsoap:body use="literal" />
+			</output>
+			<fault name="SZRException">
+				<wsdlsoap:fault name="SZRException" use="literal" />
+			</fault>
+		</operation>
+		<operation name="GetVersion">
+			<wsdlsoap:operation soapAction="" />
+			<input name="GetVersionRequest">
+				<wsdlsoap:header message="szr:Header" part="SecurityHeader" use="literal" />
+				<wsdlsoap:body use="literal" />
+			</input>
+			<output name="GetVersionResponse">
+				<wsdlsoap:body use="literal" />
+			</output>
+			<fault name="SZRException">
+				<wsdlsoap:fault name="SZRException" use="literal" />
+			</fault>
+		</operation>
+	</binding>
+	<service name="SZRService">
+		<port binding="szr:SZRSoapBinding" name="SZRBusinesspartnerTestumgebung">
+			<wsdlsoap:address location="https://pvawp.bmi.gv.at/at.gv.bmi.szrsrv-b/services/SZR" />
+		</port>
+		<port binding="szr:SZRSoapBinding" name="SZRTestumgebung">
+			<wsdlsoap:address location="https://pvawp.bmi.gv.at/bmi.gv.at/soap/SZ2Services-T/services/SZR" />
+		</port>
+		<port binding="szr:SZRSoapBinding" name="SZRProduktionsumgebung">
+			<wsdlsoap:address location="https://pvawp.bmi.gv.at/bmi.gv.at/soap/SZ2Services/services/SZR" />
+		</port>
+	</service>
+</definitions>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/szr_client/pvp1.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/szr_client/pvp1.xsd
new file mode 100644
index 00000000..09c0b1e3
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/szr_client/pvp1.xsd
@@ -0,0 +1,133 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!-- edited with XMLSPY v2004 rel. 2 U (http://www.xmlspy.com) by BM (Bundeskanzleramt) -->
+<!-- PVP Schema 1.8.10 -->
+<!-- pvpToken wird über das Element <Security> aus der Spezifikation WS-Security in den SOAP-Header eingebunden -->
+<!--erstellt: rainer.hoerbe@bmi.gv.at 2004-04-30 -->
+<!--geändert: rainer.hoerbe@beko.at 2007-04-04: Extensions Points definiert -->
+<xs:schema targetNamespace="http://egov.gv.at/pvp1.xsd" xmlns="http://egov.gv.at/pvp1.xsd" xmlns:xs="http://www.w3.org/2001/XMLSchema" elementFormDefault="qualified" attributeFormDefault="unqualified">
+	<xs:element name="pvpToken">
+		<xs:complexType>
+			<xs:complexContent>
+				<xs:extension base="pvpTokenType" />
+			</xs:complexContent>
+		</xs:complexType>
+	</xs:element>
+	<xs:complexType name="pvpTokenType">
+		<xs:sequence>
+			<xs:element name="authenticate">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element name="participantId" type="xs:string" />
+						<xs:element name="gvOuDomain" type="xs:string" minOccurs="0" maxOccurs="1" />
+						<xs:choice>
+							<xs:element name="userPrincipal">
+								<xs:complexType>
+									<xs:complexContent>
+										<xs:extension base="pvpPrincipalType">
+											<xs:sequence>
+												<xs:element name="gvGid" type="xs:string" />
+												<xs:element name="mail" type="xs:string" minOccurs="0" maxOccurs="1" />
+												<xs:element name="tel" type="xs:string" minOccurs="0" maxOccurs="1" />
+												<xs:element name="bpk" type="xs:string" minOccurs="0" maxOccurs="1" />
+												<xs:element name="gvFunction" type="xs:string" minOccurs="0" maxOccurs="1" />
+											</xs:sequence>
+										</xs:extension>
+									</xs:complexContent>
+								</xs:complexType>
+							</xs:element>
+							<xs:element name="systemPrincipal" type="pvpPrincipalType" />
+						</xs:choice>
+						<xs:any namespace="##other" processContents="lax" minOccurs="0" maxOccurs="unbounded">
+							<xs:annotation>
+								<xs:documentation>additional authentication properties</xs:documentation>
+							</xs:annotation>
+						</xs:any>
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:element name="authorize" minOccurs="0" maxOccurs="1">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:sequence minOccurs="0">
+							<xs:element name="gvOuId" type="xs:string" />
+							<xs:element name="ou" type="xs:string" />
+						</xs:sequence>
+						<xs:element name="role" maxOccurs="unbounded">
+							<xs:complexType>
+								<xs:sequence>
+									<xs:any namespace="##any" processContents="skip" minOccurs="0" maxOccurs="unbounded" />
+								</xs:sequence>
+								<xs:attribute name="value" type="xs:string" use="required" />
+							</xs:complexType>
+						</xs:element>
+						<xs:any namespace="##other" processContents="lax" minOccurs="0" maxOccurs="unbounded">
+							<xs:annotation>
+								<xs:documentation>additional authorization properties</xs:documentation>
+							</xs:annotation>
+						</xs:any>
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:element name="accounting" minOccurs="0">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:any processContents="skip" minOccurs="0" maxOccurs="unbounded" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:element name="pvpChainedToken" type="pvpTokenType" minOccurs="0" />
+			<xs:element name="pvpExtension" block="extension" minOccurs="0">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:any namespace="##any" processContents="skip" minOccurs="0" maxOccurs="unbounded" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+		</xs:sequence>
+		<xs:attribute name="version" type="gvVersionType" use="required" />
+		<xs:anyAttribute namespace="##any" processContents="lax" />
+	</xs:complexType>
+	<xs:complexType name="pvpPrincipalType">
+		<xs:sequence>
+			<xs:element name="userId" type="xs:string" />
+			<xs:element name="cn" type="xs:string" />
+			<xs:element name="gvOuId" type="xs:string" />
+			<xs:element name="ou" type="xs:string" />
+			<xs:element name="gvOuOKZ" type="xs:string" minOccurs="0" /> <!-- steht auch in der pvp doku, fehlt aber im normalen pvp1.xsd -->
+			<xs:element name="gvSecClass" type="gvSecClassType" minOccurs="0" />
+			<xs:any namespace="##other" processContents="lax" minOccurs="0" maxOccurs="unbounded">
+				<xs:annotation>
+					<xs:documentation>additional principal attributes</xs:documentation>
+				</xs:annotation>
+			</xs:any>
+		</xs:sequence>
+		<xs:anyAttribute namespace="##any" processContents="lax" />
+	</xs:complexType>
+	<xs:simpleType name="gvSecClassType">
+		<xs:restriction base="xs:integer">
+			<xs:enumeration value="0" />
+			<xs:enumeration value="1" />
+			<xs:enumeration value="2" />
+			<xs:enumeration value="3" />
+		</xs:restriction>
+	</xs:simpleType>
+	<xs:simpleType name="gvVersionType">
+		<xs:restriction base="xs:string">
+			<xs:enumeration value="1.0" />
+			<xs:enumeration value="1.1" />
+			<xs:enumeration value="1.2" />
+			<xs:enumeration value="1.8" />
+			<xs:enumeration value="1.9" />
+		</xs:restriction>
+	</xs:simpleType>
+	<xs:simpleType name="logLevelType">
+		<xs:restriction base="xs:integer">
+			<xs:enumeration value="0" />
+			<xs:enumeration value="1" />
+			<xs:enumeration value="2" />
+			<xs:enumeration value="3" />
+			<xs:enumeration value="4" />
+			<xs:enumeration value="5" />
+		</xs:restriction>
+	</xs:simpleType>
+</xs:schema>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/szr_client/pvp19.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/szr_client/pvp19.xsd
new file mode 100644
index 00000000..596a2b99
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/szr_client/pvp19.xsd
@@ -0,0 +1,133 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!-- edited with XMLSPY v2004 rel. 2 U (http://www.xmlspy.com) by BM (Bundeskanzleramt) -->
+<!-- PVP Schema 1.8.10 -->
+<!-- pvpToken wird über das Element <Security> aus der Spezifikation WS-Security in den SOAP-Header eingebunden -->
+<!--erstellt: rainer.hoerbe@bmi.gv.at 2004-04-30 -->
+<!--geändert: rainer.hoerbe@beko.at 2007-04-04: Extensions Points definiert -->
+<xs:schema targetNamespace="http://egov.gv.at/pvp1.xsd" xmlns="http://egov.gv.at/pvp1.xsd" xmlns:xs="http://www.w3.org/2001/XMLSchema" elementFormDefault="qualified" attributeFormDefault="unqualified">
+	<xs:element name="pvpToken">
+		<xs:complexType>
+			<xs:complexContent>
+				<xs:extension base="pvpTokenType" />
+			</xs:complexContent>
+		</xs:complexType>
+	</xs:element>
+	<xs:complexType name="pvpTokenType">
+		<xs:sequence>
+			<xs:element name="authenticate">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element name="participantId" type="xs:string" />
+						<xs:element name="gvOuDomain" type="xs:string" minOccurs="0" maxOccurs="1" />
+						<xs:choice>
+							<xs:element name="userPrincipal">
+								<xs:complexType>
+									<xs:complexContent>
+										<xs:extension base="pvpPrincipalType">
+											<xs:sequence>
+												<xs:element name="gvGid" type="xs:string" />
+												<xs:element name="mail" type="xs:string" minOccurs="0" maxOccurs="1" />
+												<xs:element name="tel" type="xs:string" minOccurs="0" maxOccurs="1" />
+												<xs:element name="bpk" type="xs:string" minOccurs="0" maxOccurs="1" />
+												<xs:element name="gvFunction" type="xs:string" minOccurs="0" maxOccurs="1" />
+											</xs:sequence>
+										</xs:extension>
+									</xs:complexContent>
+								</xs:complexType>
+							</xs:element>
+							<xs:element name="systemPrincipal" type="pvpPrincipalType" />
+						</xs:choice>
+						<xs:any namespace="##other" processContents="lax" minOccurs="0" maxOccurs="unbounded">
+							<xs:annotation>
+								<xs:documentation>additional authentication properties</xs:documentation>
+							</xs:annotation>
+						</xs:any>
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:element name="authorize" minOccurs="0" maxOccurs="1">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:sequence minOccurs="0">
+							<xs:element name="gvOuId" type="xs:string" />
+							<xs:element name="ou" type="xs:string" />
+						</xs:sequence>
+						<xs:element name="role" maxOccurs="unbounded">
+							<xs:complexType>
+								<xs:sequence>
+									<xs:any namespace="##any" processContents="skip" minOccurs="0" maxOccurs="unbounded" />
+								</xs:sequence>
+								<xs:attribute name="value" type="xs:string" use="required" />
+							</xs:complexType>
+						</xs:element>
+						<xs:any namespace="##other" processContents="lax" minOccurs="0" maxOccurs="unbounded">
+							<xs:annotation>
+								<xs:documentation>additional authorization properties</xs:documentation>
+							</xs:annotation>
+						</xs:any>
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:element name="accounting" minOccurs="0">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:any processContents="skip" minOccurs="0" maxOccurs="unbounded" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:element name="pvpChainedToken" type="pvpTokenType" minOccurs="0" />
+			<xs:element name="pvpExtension" block="extension" minOccurs="0">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:any namespace="##any" processContents="skip" minOccurs="0" maxOccurs="unbounded" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+		</xs:sequence>
+		<xs:attribute name="version" type="gvVersionType" use="required" />
+		<xs:anyAttribute namespace="##any" processContents="lax" />
+	</xs:complexType>
+	<xs:complexType name="pvpPrincipalType">
+		<xs:sequence>
+			<xs:element name="userId" type="xs:string" />
+			<xs:element name="cn" type="xs:string" />
+			<xs:element name="gvOuId" type="xs:string" />
+			<xs:element name="ou" type="xs:string" />
+			<xs:element name="gvOuOKZ" type="xs:string" minOccurs="0" />
+			<xs:element name="gvSecClass" type="gvSecClassType" minOccurs="0" />
+			<xs:any namespace="##other" processContents="lax" minOccurs="0" maxOccurs="unbounded">
+				<xs:annotation>
+					<xs:documentation>additional principal attributes</xs:documentation>
+				</xs:annotation>
+			</xs:any>
+		</xs:sequence>
+		<xs:anyAttribute namespace="##any" processContents="lax" />
+	</xs:complexType>
+	<xs:simpleType name="gvSecClassType">
+		<xs:restriction base="xs:integer">
+			<xs:enumeration value="0" />
+			<xs:enumeration value="1" />
+			<xs:enumeration value="2" />
+			<xs:enumeration value="3" />
+		</xs:restriction>
+	</xs:simpleType>
+	<xs:simpleType name="gvVersionType">
+		<xs:restriction base="xs:string">
+			<xs:enumeration value="1.0" />
+			<xs:enumeration value="1.1" />
+			<xs:enumeration value="1.2" />
+			<xs:enumeration value="1.8" />
+			<xs:enumeration value="1.9" />
+		</xs:restriction>
+	</xs:simpleType>
+	<xs:simpleType name="logLevelType">
+		<xs:restriction base="xs:integer">
+			<xs:enumeration value="0" />
+			<xs:enumeration value="1" />
+			<xs:enumeration value="2" />
+			<xs:enumeration value="3" />
+			<xs:enumeration value="4" />
+			<xs:enumeration value="5" />
+		</xs:restriction>
+	</xs:simpleType>
+</xs:schema>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/szr_client/szr.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/szr_client/szr.xsd
new file mode 100644
index 00000000..85acfb65
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/szr_client/szr.xsd
@@ -0,0 +1,388 @@
+<xs:schema elementFormDefault="qualified" targetNamespace="urn:SZRServices" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" xmlns:pd="http://reference.e-government.gv.at/namespace/persondata/20020228#" xmlns:szr="urn:SZRServices" xmlns:xs="http://www.w3.org/2001/XMLSchema">
+			<xs:import namespace="http://reference.e-government.gv.at/namespace/persondata/20020228#" />
+			<xs:import namespace="http://www.w3.org/2000/09/xmldsig#" />
+			<xs:element name="SZRException" type="szr:SZRException" />
+			<xs:complexType name="SZRException" />
+			<xs:complexType name="PersonInfoType">
+				<xs:sequence>
+					<xs:element name="Person" type="pd:PhysicalPersonType" />
+					<xs:element minOccurs="0" name="RegularDomicile" type="pd:PostalAddressType" />
+					<xs:element minOccurs="0" name="AddressCodes" type="szr:AddressCodesType" />
+					<xs:element minOccurs="0" name="TravelDocument" type="szr:TravelDocumentType" />
+					<xs:element minOccurs="0" name="DateOfBirthWildcard" type="xs:boolean" />
+					<xs:element minOccurs="0" name="AuskunftssperreGesetzt" type="xs:boolean" />
+				</xs:sequence>
+			</xs:complexType>
+			<xs:complexType name="TravelDocumentType">
+				<xs:sequence>
+					<xs:element minOccurs="0" name="DocumentNumber" type="xs:string" />
+					<xs:element minOccurs="0" name="DocumentType" type="xs:string" />
+					<xs:element minOccurs="0" name="IssueDate" type="xs:string" />
+					<xs:element minOccurs="0" name="IssuingAuthority" type="xs:string" />
+					<xs:element minOccurs="0" name="IssuingCountry" type="xs:string" />
+				</xs:sequence>
+			</xs:complexType>
+			<xs:complexType name="AddressCodesType">
+				<xs:sequence>
+					<xs:element minOccurs="0" name="GKZ" type="xs:string" />
+					<xs:element minOccurs="0" name="OKZ" type="xs:string" />
+					<xs:element minOccurs="0" name="SKZ" type="xs:string" />
+					<xs:element minOccurs="0" name="ADRCD" type="xs:string" />
+					<xs:element minOccurs="0" name="SUBCD" type="xs:string" />
+					<xs:element minOccurs="0" name="OBJNR" type="xs:string" />
+					<xs:element minOccurs="0" name="NTZLNR" type="xs:string" />
+				</xs:sequence>
+			</xs:complexType>
+			<xs:element name="TransformBPK">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element name="PersonInfo" type="szr:PersonInfoType" />
+						<xs:element name="InputBPK" type="xs:string" />
+						<xs:element name="InputBereichsKennung" type="xs:string" />
+						<xs:element name="Begruendung" type="xs:string" />
+						<xs:element maxOccurs="unbounded" name="Target" type="szr:FremdBPKRequestType" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:element name="TransformBPKResponse">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element maxOccurs="unbounded" name="TransformBPKReturn" type="szr:FremdBPKType" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:element name="GetVKZPermission">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element name="VKZ" type="xs:string" />
+						<xs:element name="BereichsKennung" type="xs:string" />
+						<xs:element minOccurs="0" name="ParticipantId" type="xs:string" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:element name="GetVKZPermissionResponse">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element name="GetVKZPermissionReturn" type="szr:GetVKZPermissionResponseType" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:complexType name="IdentityLinkType">
+				<xs:sequence>
+					<xs:element name="PersonInfo" type="szr:PersonInfoType" />
+					<xs:element name="Assertion" type="xs:anyType" />
+					<xs:element minOccurs="0" name="AdditionalInfo" type="xs:string" />
+				</xs:sequence>
+			</xs:complexType>
+			<xs:complexType name="ResultRecord">
+				<xs:sequence>
+					<xs:element name="PersonInfo" type="szr:PersonInfoType" />
+					<xs:element name="Register" type="xs:string" />
+					<xs:element name="bPK" type="xs:string" />
+					<xs:element maxOccurs="unbounded" minOccurs="0" name="FremdBPK" type="szr:FremdBPKType" />
+				</xs:sequence>
+			</xs:complexType>
+			<xs:complexType name="GetBPKKombiRequestType">
+				<xs:sequence>
+					<xs:element name="PersonInfo" type="szr:PersonInfoType" />
+					<xs:element minOccurs="0" name="InsertERnP">
+						<xs:simpleType>
+							<xs:restriction base="xs:string">
+								<xs:enumeration value="NoInsert" />
+								<xs:enumeration value="InsertOnNoMatch" />
+								<xs:enumeration value="ForceInsert" />
+							</xs:restriction>
+						</xs:simpleType>
+					</xs:element>
+					<xs:element minOccurs="0" name="Suchwizard" type="xs:boolean" />
+					<xs:element name="VKZ" type="xs:string" nillable="true" />
+					<xs:element minOccurs="0" name="BehoerdenKennzeichen" type="xs:string" />
+					<xs:element minOccurs="0" name="BereichsKennung" type="xs:string" />
+					<xs:element maxOccurs="unbounded" minOccurs="0" name="Target" type="szr:FremdBPKRequestType" />
+					<xs:element minOccurs="0" name="Sessionid" type="xs:string" />
+				</xs:sequence>
+			</xs:complexType>
+			<xs:complexType name="GetBPKKombiResponseType">
+				<xs:complexContent>
+					<xs:extension base="szr:GetBPKZPVResponseType">
+						<xs:sequence>
+							<xs:element name="FoundWithSuchwizard" type="xs:boolean" />
+							<xs:element name="Sessionid" type="xs:string" />
+						</xs:sequence>
+					</xs:extension>
+				</xs:complexContent>
+			</xs:complexType>
+			<xs:complexType name="GetBPKZPVRequestType">
+				<xs:sequence>
+					<xs:element name="PersonInfo" type="szr:PersonInfoType" />
+					<xs:element minOccurs="0" name="InsertERnP" type="xs:boolean" default="false" />
+					<xs:element minOccurs="1" name="VKZ" type="xs:string" />
+					<xs:element minOccurs="0" name="BehoerdenKennzeichen" type="xs:string" />
+					<xs:element minOccurs="0" name="BereichsKennung" type="xs:string" />
+					<xs:element maxOccurs="unbounded" minOccurs="0" name="Target" type="szr:FremdBPKRequestType" />
+				</xs:sequence>
+			</xs:complexType>
+			<xs:complexType name="GetBPKZPVResponseType">
+				<xs:sequence>
+					<xs:element maxOccurs="unbounded" name="ResultRecord" type="szr:ResultRecord" />
+					<xs:element name="InsertERnPResult" type="xs:boolean" />
+				</xs:sequence>
+			</xs:complexType>
+			<xs:complexType name="GetBPKFromStammzahlEncryptedRequestType">
+				<xs:sequence>
+					<xs:element minOccurs="1" name="StammzahlEncrypted" type="xs:string" />
+					<xs:element minOccurs="0" name="PersonInfo" type="szr:PersonInfoType" />
+					<xs:element minOccurs="1" name="VKZ" type="xs:string" />
+					<xs:element minOccurs="0" name="BereichsKennung" type="xs:string" />
+					<xs:element maxOccurs="unbounded" minOccurs="0" name="Target" type="szr:FremdBPKRequestType" />
+				</xs:sequence>
+			</xs:complexType>
+			<xs:complexType name="GetBPKFromStammzahlEncryptedResponseType">
+				<xs:sequence>
+					<xs:element minOccurs="0" name="bPK" type="xs:string" />
+					<xs:element maxOccurs="unbounded" minOccurs="0" name="FremdBPK" type="szr:FremdBPKType" />
+				</xs:sequence>
+			</xs:complexType>
+			<xs:element name="GetIdentityLink">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element name="PersonInfo" type="szr:PersonInfoType" />
+						<xs:element maxOccurs="unbounded" name="KeyValue" type="dsig:KeyValueType" />
+						<xs:element minOccurs="0" name="InsertERnP" type="xs:boolean" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:element name="GetIdentityLinkResponse">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element name="GetIdentityLinkReturn" type="szr:IdentityLinkType" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:element name="GetBPK">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element name="PersonInfo" type="szr:PersonInfoType" />
+						<xs:element minOccurs="0" name="BereichsKennung" type="xs:string" />
+						<xs:element minOccurs="0" name="VKZ" type="xs:string" />
+						<xs:element maxOccurs="unbounded" minOccurs="0" name="Target" type="szr:FremdBPKRequestType" />
+						<xs:element minOccurs="0" name="ListMultiplePersons" type="xs:boolean" />
+						<xs:element minOccurs="0" name="InsertERnP" type="xs:boolean" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:element name="GetBPKResponse">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element minOccurs="0" name="GetBPKReturn" type="xs:string" />
+						<xs:element maxOccurs="unbounded" minOccurs="0" name="FremdBPK" type="szr:FremdBPKType" />
+						<xs:element maxOccurs="5" minOccurs="0" name="PersonInfo" type="szr:PersonInfoType" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:element name="GetBPKs">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element maxOccurs="unbounded" name="PersonInfo" type="szr:PersonInfoType" />
+						<xs:element minOccurs="0" name="BereichsKennung" type="xs:string" />
+						<xs:element name="VKZ" type="xs:string" />
+						<xs:element maxOccurs="unbounded" minOccurs="0" name="Target" type="szr:FremdBPKRequestType" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:element name="GetBPKsResponse">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element maxOccurs="unbounded" name="ResultRecord" type="szr:GetBPKsResponseType" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:complexType name="GetBPKsResponseType">
+				<xs:sequence>
+					<xs:element minOccurs="0" name="BPK" type="xs:string" />
+					<xs:element maxOccurs="unbounded" minOccurs="0" name="FremdBPK" type="szr:FremdBPKType" />
+					<xs:element minOccurs="0" name="Fault">
+						<xs:complexType>
+							<xs:attribute name="Code" type="xs:string" />
+							<xs:attribute name="String" type="xs:string" />
+						</xs:complexType>
+					</xs:element>
+				</xs:sequence>
+			</xs:complexType>
+			<xs:element name="GetBPKKombi">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element name="GetBPKKombiRequest" type="szr:GetBPKKombiRequestType" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:element name="GetBPKKombiResponse">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element name="GetBPKKombiResponse" type="szr:GetBPKKombiResponseType" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:element name="GetBPKZPV">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element name="GetBPKZPVRequest" type="szr:GetBPKZPVRequestType" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:element name="GetBPKZPVResponse">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element name="GetBPKZPVResponse" type="szr:GetBPKZPVResponseType" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:element name="GetBPKFromStammzahlEncrypted">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element name="GetBPKFromStammzahlEncryptedRequest" type="szr:GetBPKFromStammzahlEncryptedRequestType" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:element name="GetBPKFromStammzahlEncryptedResponse">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element name="GetBPKFromStammzahlEncryptedResponse" type="szr:GetBPKFromStammzahlEncryptedResponseType" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:element name="ValidateIdentityLink">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element name="IdentityLink" type="szr:IdentityLinkType" />
+						<xs:element name="BereichsKennung" type="xs:string" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:element name="ValidateIdentityLinkResponse">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element name="ValidateIdentityLinkReturn" type="xs:string" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:element name="BPKzuBasiszahl">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element name="Bereich" type="xs:string" />
+						<xs:element name="BPK" type="xs:string" />
+						<xs:element maxOccurs="unbounded" name="BasisZahl" type="xs:string" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:element name="BPKzuBasiszahlResponse">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element name="BPKzuBasiszahlReturn" type="xs:string" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:complexType name="FremdBPKRequestType">
+				<xs:sequence>
+					<xs:element name="BereichsKennung" type="xs:string" />
+					<xs:element name="VKZ" type="xs:string" />
+				</xs:sequence>
+			</xs:complexType>
+			<xs:complexType name="FremdBPKType">
+				<xs:sequence>
+					<xs:element name="BereichsKennung" type="xs:string" />
+					<xs:element name="FremdBPK" type="xs:string" />
+				</xs:sequence>
+			</xs:complexType>
+			<xs:complexType name="GetVKZPermissionResponseType">
+				<xs:sequence>
+					<xs:element name="isAllowed" type="xs:boolean" />
+					<xs:element minOccurs="0" name="behSchluessel" type="xs:string" />
+				</xs:sequence>
+			</xs:complexType>
+			<xs:element name="BasiszahlZuBPK">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element minOccurs="0" name="VKZ" type="xs:string" />
+						<xs:element maxOccurs="unbounded" name="BasisZahl" type="xs:string" />
+						<xs:element maxOccurs="unbounded" minOccurs="0" name="Bereich" type="xs:string" />
+						<xs:element maxOccurs="unbounded" minOccurs="0" name="FremdBPKTargets" type="szr:FremdBPKRequestType" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:complexType name="BasiszahlZuBPKReturnType">
+				<xs:sequence>
+					<xs:element maxOccurs="unbounded" minOccurs="0" name="BPK" type="xs:string" />
+					<xs:element maxOccurs="unbounded" minOccurs="0" name="FremdBPKs" type="szr:FremdBPKType" />
+				</xs:sequence>
+			</xs:complexType>
+			<xs:element name="BasiszahlZuBPKResponse">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element maxOccurs="unbounded" name="BasiszahlZuBPKReturn" type="szr:BasiszahlZuBPKReturnType" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:element name="ZMRAnwendungsIntegration">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element name="Bereich" type="xs:string" />
+						<xs:element maxOccurs="unbounded" minOccurs="0" name="FremdBPKTargets" type="szr:FremdBPKRequestType" />
+						<xs:element maxOccurs="unbounded" name="ZMRfremdbPK" type="xs:string" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:complexType name="ZMRAnwendungsIntegrationReturnType">
+				<xs:sequence>
+					<xs:element name="BPK" type="xs:string" />
+					<xs:element maxOccurs="unbounded" minOccurs="0" name="FremdBPKs" type="szr:FremdBPKType" />
+				</xs:sequence>
+			</xs:complexType>
+			<xs:element name="ZMRAnwendungsIntegrationResponse">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element maxOccurs="unbounded" name="ZMRAnwendungsIntegrationReturn" type="szr:ZMRAnwendungsIntegrationReturnType" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:element name="GetStammzahl">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element name="PersonInfo" type="szr:PersonInfoType" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:element name="GetStammzahlResponse">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element name="Stammzahl" type="xs:string" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:element name="GetStammzahlEncrypted">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element name="PersonInfo" type="szr:PersonInfoType" />
+						<xs:element minOccurs="0" name="InsertERnP" type="xs:boolean" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:element name="GetStammzahlEncryptedResponse">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element name="Stammzahl" type="xs:string" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:element name="GetVersion" />
+			<xs:element name="GetVersionResponse">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element name="Version" type="xs:string" />
+						<xs:element name="Revision" type="xs:string" />
+						<xs:element name="Time" type="xs:string" />
+						<xs:element name="IdentityLinkNotAfter" type="xs:string" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+</xs:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/szr_client/szr_ecdsa.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/szr_client/szr_ecdsa.xsd
new file mode 100644
index 00000000..87ee80be
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/szr_client/szr_ecdsa.xsd
@@ -0,0 +1,30 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<xs:schema elementFormDefault="qualified" xmlns:xs="http://www.w3.org/2001/XMLSchema"
+           targetNamespace="http://www.w3.org/2001/04/xmldsig-more#" xmlns:ecdsa="http://www.w3.org/2001/04/xmldsig-more#">
+    <xs:element name="ECDSAKeyValue" type="ecdsa:ECDSAKeyValueType" />
+    <xs:complexType name="ECDSAKeyValueType">
+        <xs:sequence>
+            <xs:element name="DomainParameters" type="ecdsa:DomainParamsType"
+                        minOccurs="0" />
+            <xs:element name="PublicKey" type="ecdsa:ECPointType" />
+        </xs:sequence>
+    </xs:complexType>
+    <xs:complexType name="DomainParamsType">
+        <xs:sequence>
+            <xs:element name="NamedCurve" minOccurs="0"
+                        type="ecdsa:NamedCurveType" />
+        </xs:sequence>
+    </xs:complexType>
+    <xs:complexType name="NamedCurveType">
+        <xs:attribute name="URN" type="xs:string" use="required" />
+    </xs:complexType>
+    <xs:complexType name="ECPointType">
+        <xs:sequence minOccurs="0">
+            <xs:element name="X" type="ecdsa:PrimeFieldElemType" />
+            <xs:element name="Y" type="ecdsa:PrimeFieldElemType" />
+        </xs:sequence>
+    </xs:complexType>
+    <xs:complexType name="PrimeFieldElemType">
+        <xs:attribute name="Value" type="xs:string" use="required" />
+    </xs:complexType>
+</xs:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/szr_client/szr_persondata.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/szr_client/szr_persondata.xsd
new file mode 100644
index 00000000..3c9ac932
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/szr_client/szr_persondata.xsd
@@ -0,0 +1,54 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<xs:schema elementFormDefault="qualified" xmlns:pd="http://reference.e-government.gv.at/namespace/persondata/20020228#"
+	targetNamespace="http://reference.e-government.gv.at/namespace/persondata/20020228#" xmlns:xs="http://www.w3.org/2001/XMLSchema">
+  <xs:complexType name="PhysicalPersonType">
+    <xs:sequence>
+      <xs:element minOccurs="0" name="Identification" type="pd:IdentificationType" />
+      <xs:element minOccurs="1" name="Name" type="pd:PersonNameType" />
+      <xs:element minOccurs="0" name="AlternativeName" type="pd:AlternativeNameType" />
+      <xs:element minOccurs="0" name="Sex" type="xs:string" />
+      <xs:element minOccurs="0" name="DateOfBirth" type="xs:string" />
+      <xs:element minOccurs="0" name="PlaceOfBirth" type="xs:string" />
+      <xs:element minOccurs="0" name="CountryOfBirth" type="xs:string" />
+      <xs:element minOccurs="0" name="Nationality" type="xs:string" />
+    </xs:sequence>
+  </xs:complexType>
+  <xs:complexType name="IdentificationType">
+    <xs:sequence>
+      <xs:element minOccurs="0" name="Value" type="xs:string" />
+      <xs:element minOccurs="0" name="Type" type="xs:string" />
+    </xs:sequence>
+  </xs:complexType>
+  <xs:complexType name="PersonNameType">
+    <xs:sequence>
+      <xs:element minOccurs="0" name="PrefixedDegree" type="xs:string" />
+      <xs:element name="GivenName" type="xs:string" nillable="true" />
+      <xs:element name="FamilyName" type="xs:string" nillable="true" />
+      <xs:element minOccurs="0" name="SuffixedDegree" type="xs:string" />
+    </xs:sequence>
+  </xs:complexType>
+  <xs:complexType name="AlternativeNameType">
+    <xs:sequence>
+      <xs:element name="FamilyName" type="xs:string" nillable="true" />
+    </xs:sequence>
+  </xs:complexType>
+  <xs:complexType name="PostalAddressType">
+    <xs:sequence>
+      <xs:element minOccurs="0" name="PostalCode" type="xs:string" />
+      <xs:element minOccurs="0" name="Municipality" type="xs:string" />
+      <xs:element minOccurs="0" name="Locality" type="xs:string" />
+      <xs:element minOccurs="0" name="StateCode3" type="xs:string" />
+      <xs:element minOccurs="0" name="DeliveryAddress" type="pd:DeliveryAddressType" />
+      <xs:element minOccurs="0" name="HistoricRecord" type="xs:boolean" />
+    </xs:sequence>
+  </xs:complexType>
+  <xs:complexType name="DeliveryAddressType">
+    <xs:sequence>
+      <xs:element minOccurs="0" name="AddressLine" type="xs:string" />
+      <xs:element minOccurs="0" name="StreetName" type="xs:string" />
+      <xs:element minOccurs="0" name="BuildingNumber" type="xs:string" />
+      <xs:element minOccurs="0" name="Unit" type="xs:string" />
+      <xs:element minOccurs="0" name="DoorNumber" type="xs:string" />
+    </xs:sequence>
+  </xs:complexType>
+</xs:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/szr_client/szr_pvp_sec.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/szr_client/szr_pvp_sec.xsd
new file mode 100644
index 00000000..5001c1b8
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/szr_client/szr_pvp_sec.xsd
@@ -0,0 +1,10 @@
+<xs:schema xmlns:pvp="http://egov.gv.at/pvp1.xsd" xmlns:xs="http://www.w3.org/2001/XMLSchema" targetNamespace="http://schemas.xmlsoap.org/ws/2002/04/secext" elementFormDefault="qualified">
+	<xs:import namespace="http://egov.gv.at/pvp1.xsd" schemaLocation="pvp19.xsd"/>
+	<xs:element name="Security">
+		<xs:complexType>
+			<xs:sequence>
+				<xs:element ref="pvp:pvpToken"/>
+			</xs:sequence>
+		</xs:complexType>
+	</xs:element> 
+</xs:schema>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/szr_client/szr_v4.0-schemas.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/szr_client/szr_v4.0-schemas.xml
new file mode 100644
index 00000000..d40efa45
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/szr_client/szr_v4.0-schemas.xml
@@ -0,0 +1,54 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<bindings version="2.0" xmlns="http://java.sun.com/xml/ns/jaxb"
+	xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:wsdl="http://schemas.xmlsoap.org/wsdl/"
+	xmlns:xjc="http://java.sun.com/xml/ns/jaxb/xjc">
+
+  <bindings schemaLocation="../szr_v4/szr_v4.0.xsd">
+		<bindings node="/xsd:schema">
+			<schemaBindings>
+				<package name="at.gv.util.xsd.szr_v4" />
+			</schemaBindings>
+		</bindings>
+	</bindings>
+  
+	<bindings schemaLocation="../szr/szr_ecdsa.xsd">
+		<bindings node="/xsd:schema">
+			<schemaBindings>
+				<package name="at.gv.util.xsd.szr.ecdsa" />
+			</schemaBindings>
+		</bindings>
+	</bindings>
+
+	<bindings schemaLocation="../szr_v4/szr_persondata.xsd">
+		<bindings node="/xsd:schema">
+			<schemaBindings>
+				<package name="at.gv.util.xsd.szr.persondata" />
+			</schemaBindings>
+		</bindings>
+	</bindings>
+
+	<bindings schemaLocation="../szr_v4/szr_pvp_sec.xsd">
+		<bindings node="/xsd:schema">
+			<schemaBindings>
+				<package name="at.gv.util.xsd.szr.pvp19.sec" />
+			</schemaBindings>
+		</bindings>
+	</bindings>
+
+	<bindings schemaLocation="../szr_v4/pvp19.xsd">
+		<bindings node="/xsd:schema">
+			<schemaBindings>
+				<package name="at.gv.util.xsd.szr.pvp19" />
+			</schemaBindings>
+		</bindings>
+	</bindings>
+
+  <bindings schemaLocation="../szr/szr_xmldsig.xsd">
+		<bindings node="/xsd:schema">
+			<schemaBindings>
+				<package name="at.gv.util.xsd.szr.xmldsig" />
+			</schemaBindings>
+		</bindings>
+	</bindings>
+
+</bindings>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/szr_client/szr_v4.0-wsdl.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/szr_client/szr_v4.0-wsdl.xml
new file mode 100644
index 00000000..f95c35f0
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/szr_client/szr_v4.0-wsdl.xml
@@ -0,0 +1,10 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<bindings xmlns="http://java.sun.com/xml/ns/jaxws"
+               xmlns:jaxb="http://java.sun.com/xml/ns/jaxb"
+               xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+               xmlns:wsdl="http://schemas.xmlsoap.org/wsdl/">
+
+  <enableWrapperStyle>false</enableWrapperStyle>
+  <package name="at.gv.util.wsdl.szr_v4"/> 
+     
+</bindings>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/szr_client/szr_v4.0.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/szr_client/szr_v4.0.xsd
new file mode 100644
index 00000000..2d25f2dc
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/szr_client/szr_v4.0.xsd
@@ -0,0 +1,443 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<xs:schema xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:szr="urn:SZRServices" xmlns:pd="http://reference.e-government.gv.at/namespace/persondata/20020228#" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" targetNamespace="urn:SZRServices" elementFormDefault="qualified">
+	<xs:import namespace="http://reference.e-government.gv.at/namespace/persondata/20020228#" schemaLocation="szr_persondata.xsd"/>
+	<xs:import namespace="http://www.w3.org/2000/09/xmldsig#" schemaLocation="szr_xmldsig.xsd"/>
+	<xs:element name="SZRException" type="szr:SZRException"/>
+	<xs:complexType name="SZRException"/>
+	<xs:complexType name="PersonInfoType">
+		<xs:sequence>
+			<xs:element name="Person" type="pd:PhysicalPersonType"/>
+			<xs:element name="RegularDomicile" type="pd:PostalAddressType" minOccurs="0"/>
+			<xs:element name="AddressCodes" type="szr:AddressCodesType" minOccurs="0"/>
+			<xs:element name="TravelDocument" type="szr:TravelDocumentType" minOccurs="0"/>
+			<xs:element name="DateOfBirthWildcard" type="xs:boolean" minOccurs="0"/>
+			<xs:element name="AuskunftssperreGesetzt" type="xs:boolean" minOccurs="0"/>
+		</xs:sequence>
+	</xs:complexType>
+	<xs:complexType name="TravelDocumentType">
+		<xs:sequence>
+			<xs:element name="DocumentNumber" type="xs:string" minOccurs="0"/>
+			<xs:element name="DocumentType" type="xs:string" minOccurs="0"/>
+			<xs:element name="IssueDate" type="xs:string" minOccurs="0"/>
+			<xs:element name="IssuingAuthority" type="xs:string" minOccurs="0"/>
+			<xs:element name="IssuingCountry" type="xs:string" minOccurs="0"/>
+		</xs:sequence>
+	</xs:complexType>
+	<xs:complexType name="AddressCodesType">
+		<xs:sequence>
+			<xs:element name="GKZ" type="xs:string" minOccurs="0"/>
+			<xs:element name="OKZ" type="xs:string" minOccurs="0"/>
+			<xs:element name="SKZ" type="xs:string" minOccurs="0"/>
+			<xs:element name="ADRCD" type="xs:string" minOccurs="0"/>
+			<xs:element name="SUBCD" type="xs:string" minOccurs="0"/>
+			<xs:element name="OBJNR" type="xs:string" minOccurs="0"/>
+			<xs:element name="NTZLNR" type="xs:string" minOccurs="0"/>
+		</xs:sequence>
+	</xs:complexType>
+	<xs:element name="TransformBPK">
+		<xs:complexType>
+			<xs:sequence>
+				<xs:element name="PersonInfo" type="szr:PersonInfoType"/>
+				<xs:element name="InputBPK" type="xs:string"/>
+				<xs:element name="InputBereichsKennung" type="xs:string"/>
+				<xs:element name="Begruendung" type="xs:string"/>
+				<xs:element name="Target" type="szr:FremdBPKRequestType" maxOccurs="unbounded"/>
+			</xs:sequence>
+		</xs:complexType>
+	</xs:element>
+	<xs:element name="TransformBPKResponse">
+		<xs:complexType>
+			<xs:sequence>
+				<xs:element name="TransformBPKReturn" type="szr:FremdBPKType" maxOccurs="unbounded"/>
+			</xs:sequence>
+		</xs:complexType>
+	</xs:element>
+	<xs:element name="GetVKZPermission">
+		<xs:complexType>
+			<xs:sequence>
+				<xs:element name="VKZ" type="xs:string"/>
+				<xs:element name="BereichsKennung" type="xs:string"/>
+				<xs:element name="ParticipantId" type="xs:string" minOccurs="0"/>
+			</xs:sequence>
+		</xs:complexType>
+	</xs:element>
+	<xs:element name="GetVKZPermissionResponse">
+		<xs:complexType>
+			<xs:sequence>
+				<xs:element name="GetVKZPermissionReturn" type="szr:GetVKZPermissionResponseType"/>
+			</xs:sequence>
+		</xs:complexType>
+	</xs:element>
+	<xs:complexType name="IdentityLinkType">
+		<xs:sequence>
+			<xs:element name="PersonInfo" type="szr:PersonInfoType"/>
+			<xs:element name="Assertion" type="xs:anyType"/>
+			<xs:element name="AdditionalInfo" type="xs:string" minOccurs="0"/>
+		</xs:sequence>
+	</xs:complexType>
+	<xs:complexType name="ResultRecord">
+		<xs:sequence>
+			<xs:element name="PersonInfo" type="szr:PersonInfoType"/>
+			<xs:element name="Register" type="xs:string"/>
+			<xs:element name="bPK" type="xs:string"/>
+			<xs:element name="FremdBPK" type="szr:FremdBPKType" minOccurs="0" maxOccurs="unbounded"/>
+		</xs:sequence>
+	</xs:complexType>
+	<xs:complexType name="GetBPKKombiRequestType">
+		<xs:sequence>
+			<xs:element name="PersonInfo" type="szr:PersonInfoType"/>
+			<xs:element name="InsertERnP" minOccurs="0">
+				<xs:simpleType>
+					<xs:restriction base="xs:string">
+						<xs:enumeration value="NoInsert"/>
+						<xs:enumeration value="InsertOnNoMatch"/>
+						<xs:enumeration value="ForceInsert"/>
+					</xs:restriction>
+				</xs:simpleType>
+			</xs:element>
+			<xs:element name="Suchwizard" type="xs:boolean" minOccurs="0"/>
+			<xs:element name="VKZ" type="xs:string" nillable="true"/>
+			<xs:element name="BehoerdenKennzeichen" type="xs:string" minOccurs="0"/>
+			<xs:element name="BereichsKennung" type="xs:string" minOccurs="0"/>
+			<xs:element name="Target" type="szr:FremdBPKRequestType" minOccurs="0" maxOccurs="unbounded"/>
+			<xs:element name="Sessionid" type="xs:string" minOccurs="0"/>
+		</xs:sequence>
+	</xs:complexType>
+	<xs:complexType name="GetBPKKombiResponseType">
+		<xs:complexContent>
+			<xs:extension base="szr:GetBPKZPVResponseType">
+				<xs:sequence>
+					<xs:element name="FoundWithSuchwizard" type="xs:boolean"/>
+					<xs:element name="Sessionid" type="xs:string"/>
+				</xs:sequence>
+			</xs:extension>
+		</xs:complexContent>
+	</xs:complexType>
+	<xs:complexType name="GetBPKZPVRequestType">
+		<xs:sequence>
+			<xs:element name="PersonInfo" type="szr:PersonInfoType"/>
+			<xs:element name="InsertERnP" type="xs:boolean" default="false" minOccurs="0"/>
+			<xs:element name="VKZ" type="xs:string" minOccurs="1"/>
+			<xs:element name="BehoerdenKennzeichen" type="xs:string" minOccurs="0"/>
+			<xs:element name="BereichsKennung" type="xs:string" minOccurs="0"/>
+			<xs:element name="Target" type="szr:FremdBPKRequestType" minOccurs="0" maxOccurs="unbounded"/>
+		</xs:sequence>
+	</xs:complexType>
+	<xs:complexType name="GetBPKZPVResponseType">
+		<xs:sequence>
+			<xs:element name="ResultRecord" type="szr:ResultRecord" maxOccurs="unbounded"/>
+			<xs:element name="InsertERnPResult" type="xs:boolean"/>
+		</xs:sequence>
+	</xs:complexType>
+	<xs:complexType name="GetBPKFromStammzahlEncryptedRequestType">
+		<xs:sequence>
+			<xs:element name="StammzahlEncrypted" type="xs:string" minOccurs="1"/>
+			<xs:element name="PersonInfo" type="szr:PersonInfoType" minOccurs="0"/>
+			<xs:element name="VKZ" type="xs:string" minOccurs="1"/>
+			<xs:element name="BereichsKennung" type="xs:string" minOccurs="0" maxOccurs="unbounded"/>
+			<xs:element name="Target" type="szr:FremdBPKRequestType" minOccurs="0" maxOccurs="unbounded"/>
+		</xs:sequence>
+		<xs:attribute name="key"/>
+	</xs:complexType>
+	<xs:complexType name="GetBPKFromStammzahlEncryptedResponseType">
+		<xs:sequence>
+			<xs:element name="bPK" type="xs:string" minOccurs="0" maxOccurs="unbounded"/>
+			<xs:element name="FremdBPK" type="szr:FremdBPKType" minOccurs="0" maxOccurs="unbounded"/>
+			<xs:element name="Fault" type="szr:Fault" minOccurs="0"/>
+		</xs:sequence>
+		<xs:attribute name="key"/>
+	</xs:complexType>
+	<xs:complexType name="Fault">
+		<xs:attribute name="Code" type="xs:string"/>
+		<xs:attribute name="String" type="xs:string"/>
+	</xs:complexType>
+	<xs:complexType name="SignContentResponseType">
+		<xs:sequence>
+			<xs:element name="JwsAlg" type="xs:string" minOccurs="0"/>
+			<xs:element name="Out" type="szr:SignContentEntry" minOccurs="0" maxOccurs="unbounded"/>
+		</xs:sequence>
+	</xs:complexType>
+	<xs:complexType name="SignContentEntry">
+		<xs:simpleContent>
+			<xs:extension base="xs:string">
+				<xs:attribute name="key"/>
+			</xs:extension>
+		</xs:simpleContent>
+	</xs:complexType>
+	<xs:element name="GetIdentityLink">
+		<xs:complexType>
+			<xs:sequence>
+				<xs:element name="PersonInfo" type="szr:PersonInfoType"/>
+				<xs:element name="KeyValue" type="dsig:KeyValueType" minOccurs="0" maxOccurs="unbounded"/>
+				<xs:element name="InsertERnP" type="xs:boolean" minOccurs="0"/>
+			</xs:sequence>
+		</xs:complexType>
+	</xs:element>
+	<xs:element name="GetIdentityLinkResponse">
+		<xs:complexType>
+			<xs:sequence>
+				<xs:element name="GetIdentityLinkReturn" type="szr:IdentityLinkType"/>
+			</xs:sequence>
+		</xs:complexType>
+	</xs:element>
+	<xs:element name="GetIdentityLinkEidas">
+		<xs:complexType>
+			<xs:sequence>
+				<xs:element name="PersonInfo" type="szr:PersonInfoType"/>
+			</xs:sequence>
+		</xs:complexType>
+	</xs:element>
+	<xs:element name="GetIdentityLinkEidasResponse">
+		<xs:complexType>
+			<xs:sequence>
+				<xs:element name="GetIdentityLinkReturn" type="szr:IdentityLinkType"/>
+			</xs:sequence>
+		</xs:complexType>
+	</xs:element>
+	<xs:element name="GetBPK">
+		<xs:complexType>
+			<xs:sequence>
+				<xs:element name="PersonInfo" type="szr:PersonInfoType"/>
+				<xs:element name="BereichsKennung" type="xs:string" minOccurs="0" maxOccurs="unbounded"/>
+				<xs:element name="VKZ" type="xs:string" minOccurs="0"/>
+				<xs:element name="Target" type="szr:FremdBPKRequestType" minOccurs="0" maxOccurs="unbounded"/>
+				<xs:element name="ListMultiplePersons" type="xs:boolean" minOccurs="0"/>
+				<xs:element name="InsertERnP" type="xs:boolean" minOccurs="0"/>
+			</xs:sequence>
+		</xs:complexType>
+	</xs:element>
+	<xs:element name="GetBPKResponse">
+		<xs:complexType>
+			<xs:sequence>
+				<xs:element name="GetBPKReturn" type="xs:string" minOccurs="0" maxOccurs="unbounded"/>
+				<xs:element name="FremdBPK" type="szr:FremdBPKType" minOccurs="0" maxOccurs="unbounded"/>
+				<xs:element name="PersonInfo" type="szr:PersonInfoType" minOccurs="0" maxOccurs="5"/>
+			</xs:sequence>
+		</xs:complexType>
+	</xs:element>
+	<xs:element name="GetBPKs">
+		<xs:complexType>
+			<xs:sequence>
+				<xs:element name="PersonInfo" type="szr:PersonInfoType" maxOccurs="unbounded"/>
+				<xs:element name="BereichsKennung" type="xs:string" minOccurs="0" maxOccurs="unbounded"/>
+				<xs:element name="VKZ" type="xs:string"/>
+				<xs:element name="Target" type="szr:FremdBPKRequestType" minOccurs="0" maxOccurs="unbounded"/>
+			</xs:sequence>
+		</xs:complexType>
+	</xs:element>
+	<xs:element name="GetBPKsResponse">
+		<xs:complexType>
+			<xs:sequence>
+				<xs:element name="ResultRecord" type="szr:GetBPKsResponseType" maxOccurs="unbounded"/>
+			</xs:sequence>
+		</xs:complexType>
+	</xs:element>
+	<xs:complexType name="GetBPKsResponseType">
+		<xs:sequence>
+			<xs:element name="BPK" type="xs:string" minOccurs="0" maxOccurs="unbounded"/>
+			<xs:element name="FremdBPK" type="szr:FremdBPKType" minOccurs="0" maxOccurs="unbounded"/>
+			<xs:element name="Fault" minOccurs="0">
+				<xs:complexType>
+					<xs:attribute name="Code" type="xs:string"/>
+					<xs:attribute name="String" type="xs:string"/>
+				</xs:complexType>
+			</xs:element>
+		</xs:sequence>
+	</xs:complexType>
+	<xs:element name="GetBPKKombi">
+		<xs:complexType>
+			<xs:sequence>
+				<xs:element name="GetBPKKombiRequest" type="szr:GetBPKKombiRequestType"/>
+			</xs:sequence>
+		</xs:complexType>
+	</xs:element>
+	<xs:element name="GetBPKKombiResponse">
+		<xs:complexType>
+			<xs:sequence>
+				<xs:element name="GetBPKKombiResponse" type="szr:GetBPKKombiResponseType"/>
+			</xs:sequence>
+		</xs:complexType>
+	</xs:element>
+	<xs:element name="GetBPKZPV">
+		<xs:complexType>
+			<xs:sequence>
+				<xs:element name="GetBPKZPVRequest" type="szr:GetBPKZPVRequestType"/>
+			</xs:sequence>
+		</xs:complexType>
+	</xs:element>
+	<xs:element name="GetBPKZPVResponse">
+		<xs:complexType>
+			<xs:sequence>
+				<xs:element name="GetBPKZPVResponse" type="szr:GetBPKZPVResponseType"/>
+			</xs:sequence>
+		</xs:complexType>
+	</xs:element>
+	<xs:element name="GetBPKFromStammzahlEncrypted">
+		<xs:complexType>
+			<xs:sequence>
+				<xs:element name="In" type="szr:GetBPKFromStammzahlEncryptedRequestType" maxOccurs="unbounded"/>
+			</xs:sequence>
+		</xs:complexType>
+	</xs:element>
+	<xs:element name="GetBPKFromStammzahlEncryptedResponse">
+		<xs:complexType>
+			<xs:sequence>
+				<xs:element name="Out" type="szr:GetBPKFromStammzahlEncryptedResponseType" maxOccurs="unbounded"/>
+			</xs:sequence>
+		</xs:complexType>
+	</xs:element>
+	<xs:element name="SignContent">
+		<xs:complexType>
+			<xs:sequence>
+				<xs:element name="AppendCert" type="xs:boolean" default="false" minOccurs="0"/>
+				<xs:element name="JWSHeaderParam" type="szr:JwsHeaderParam" minOccurs="0" maxOccurs="unbounded"/>
+				<xs:element name="In" type="szr:SignContentEntry" minOccurs="0" maxOccurs="unbounded"/>
+			</xs:sequence>
+		</xs:complexType>
+	</xs:element>
+	<xs:complexType name="JwsHeaderParam">
+		<xs:attribute name="key" type="xs:string" use="required"/>
+		<xs:attribute name="value" type="xs:string" use="required"/>
+	</xs:complexType>
+	<xs:element name="SignContentResponse">
+		<xs:complexType>
+			<xs:sequence>
+				<xs:element name="SignContentResponse" type="szr:SignContentResponseType"/>
+			</xs:sequence>
+		</xs:complexType>
+	</xs:element>
+	<xs:element name="ValidateIdentityLink">
+		<xs:complexType>
+			<xs:sequence>
+				<xs:element name="IdentityLink" type="szr:IdentityLinkType"/>
+				<xs:element name="BereichsKennung" type="xs:string"/>
+			</xs:sequence>
+		</xs:complexType>
+	</xs:element>
+	<xs:element name="ValidateIdentityLinkResponse">
+		<xs:complexType>
+			<xs:sequence>
+				<xs:element name="ValidateIdentityLinkReturn" type="xs:string"/>
+			</xs:sequence>
+		</xs:complexType>
+	</xs:element>
+	<xs:element name="BPKzuBasiszahl">
+		<xs:complexType>
+			<xs:sequence>
+				<xs:element name="Bereich" type="xs:string"/>
+				<xs:element name="BPK" type="xs:string"/>
+				<xs:element name="BasisZahl" type="xs:string" maxOccurs="unbounded"/>
+			</xs:sequence>
+		</xs:complexType>
+	</xs:element>
+	<xs:element name="BPKzuBasiszahlResponse">
+		<xs:complexType>
+			<xs:sequence>
+				<xs:element name="BPKzuBasiszahlReturn" type="xs:string"/>
+			</xs:sequence>
+		</xs:complexType>
+	</xs:element>
+	<xs:complexType name="FremdBPKRequestType">
+		<xs:sequence>
+			<xs:element name="BereichsKennung" type="xs:string"/>
+			<xs:element name="VKZ" type="xs:string"/>
+		</xs:sequence>
+	</xs:complexType>
+	<xs:complexType name="FremdBPKType">
+		<xs:sequence>
+			<xs:element name="BereichsKennung" type="xs:string"/>
+			<xs:element name="FremdBPK" type="xs:string"/>
+		</xs:sequence>
+	</xs:complexType>
+	<xs:complexType name="GetVKZPermissionResponseType">
+		<xs:sequence>
+			<xs:element name="isAllowed" type="xs:boolean"/>
+			<xs:element name="behSchluessel" type="xs:string" minOccurs="0"/>
+		</xs:sequence>
+	</xs:complexType>
+	<xs:element name="BasiszahlZuBPK">
+		<xs:complexType>
+			<xs:sequence>
+				<xs:element name="VKZ" type="xs:string" minOccurs="0"/>
+				<xs:element name="BasisZahl" type="xs:string" maxOccurs="unbounded"/>
+				<xs:element name="Bereich" type="xs:string" minOccurs="0" maxOccurs="unbounded"/>
+				<xs:element name="FremdBPKTargets" type="szr:FremdBPKRequestType" minOccurs="0" maxOccurs="unbounded"/>
+			</xs:sequence>
+		</xs:complexType>
+	</xs:element>
+	<xs:complexType name="BasiszahlZuBPKReturnType">
+		<xs:sequence>
+			<xs:element name="BPK" type="xs:string" minOccurs="0" maxOccurs="unbounded"/>
+			<xs:element name="FremdBPKs" type="szr:FremdBPKType" minOccurs="0" maxOccurs="unbounded"/>
+		</xs:sequence>
+	</xs:complexType>
+	<xs:element name="BasiszahlZuBPKResponse">
+		<xs:complexType>
+			<xs:sequence>
+				<xs:element name="BasiszahlZuBPKReturn" type="szr:BasiszahlZuBPKReturnType" maxOccurs="unbounded"/>
+			</xs:sequence>
+		</xs:complexType>
+	</xs:element>
+	<xs:element name="ZMRAnwendungsIntegration">
+		<xs:complexType>
+			<xs:sequence>
+				<xs:element name="Bereich" type="xs:string"/>
+				<xs:element name="FremdBPKTargets" type="szr:FremdBPKRequestType" minOccurs="0" maxOccurs="unbounded"/>
+				<xs:element name="ZMRfremdbPK" type="xs:string" maxOccurs="unbounded"/>
+			</xs:sequence>
+		</xs:complexType>
+	</xs:element>
+	<xs:complexType name="ZMRAnwendungsIntegrationReturnType">
+		<xs:sequence>
+			<xs:element name="BPK" type="xs:string"/>
+			<xs:element name="FremdBPKs" type="szr:FremdBPKType" minOccurs="0" maxOccurs="unbounded"/>
+		</xs:sequence>
+	</xs:complexType>
+	<xs:element name="ZMRAnwendungsIntegrationResponse">
+		<xs:complexType>
+			<xs:sequence>
+				<xs:element name="ZMRAnwendungsIntegrationReturn" type="szr:ZMRAnwendungsIntegrationReturnType" maxOccurs="unbounded"/>
+			</xs:sequence>
+		</xs:complexType>
+	</xs:element>
+	<xs:element name="GetStammzahl">
+		<xs:complexType>
+			<xs:sequence>
+				<xs:element name="PersonInfo" type="szr:PersonInfoType"/>
+			</xs:sequence>
+		</xs:complexType>
+	</xs:element>
+	<xs:element name="GetStammzahlResponse">
+		<xs:complexType>
+			<xs:sequence>
+				<xs:element name="Stammzahl" type="xs:string"/>
+			</xs:sequence>
+		</xs:complexType>
+	</xs:element>
+	<xs:element name="GetStammzahlEncrypted">
+		<xs:complexType>
+			<xs:sequence>
+				<xs:element name="PersonInfo" type="szr:PersonInfoType"/>
+				<xs:element name="InsertERnP" type="xs:boolean" minOccurs="0"/>
+			</xs:sequence>
+		</xs:complexType>
+	</xs:element>
+	<xs:element name="GetStammzahlEncryptedResponse">
+		<xs:complexType>
+			<xs:sequence>
+				<xs:element name="Stammzahl" type="xs:string"/>
+			</xs:sequence>
+		</xs:complexType>
+	</xs:element>
+	<xs:element name="GetVersion" nillable="true"/>
+	<xs:element name="GetVersionResponse">
+		<xs:complexType>
+			<xs:sequence>
+				<xs:element name="Version" type="xs:string"/>
+				<xs:element name="Revision" type="xs:string"/>
+				<xs:element name="Time" type="xs:string"/>
+				<xs:element name="IdentityLinkNotAfter" type="xs:string"/>
+			</xs:sequence>
+		</xs:complexType>
+	</xs:element>
+</xs:schema>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/szr_client/szr_xmldsig.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/szr_client/szr_xmldsig.xsd
new file mode 100644
index 00000000..96b50b40
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/szr_client/szr_xmldsig.xsd
@@ -0,0 +1,31 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<xs:schema elementFormDefault="qualified" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:ecdsa="http://www.w3.org/2001/04/xmldsig-more#"
+           targetNamespace="http://www.w3.org/2000/09/xmldsig#" xmlns="http://www.w3.org/2001/XMLSchema" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#">
+    <xs:import namespace="http://www.w3.org/2001/04/xmldsig-more#" schemaLocation="szr_ecdsa.xsd"/>
+    <xs:complexType name="KeyValueType">
+        <xs:sequence>
+            <xs:element name="DSAKeyValue" minOccurs="0"
+                        type="dsig:DSAKeyValueType" />
+            <xs:element name="RSAKeyValue" minOccurs="0"
+                        type="dsig:RSAKeyValueType" />
+            <xs:element ref="ecdsa:ECDSAKeyValue" />
+        </xs:sequence>
+    </xs:complexType>
+    <xs:complexType name="DSAKeyValueType">
+        <xs:sequence>
+            <xs:element name="P" minOccurs="0" type="xs:string" />
+            <xs:element name="Q" minOccurs="0" type="xs:string" />
+            <xs:element name="J" minOccurs="0" type="xs:string" />
+            <xs:element name="G" minOccurs="0" type="xs:string" />
+            <xs:element name="Y" minOccurs="0" type="xs:string" />
+            <xs:element name="PgenCounter" minOccurs="0" type="xs:string" />
+            <xs:element name="Seed" minOccurs="0" type="xs:string" />
+        </xs:sequence>
+    </xs:complexType>
+    <xs:complexType name="RSAKeyValueType">
+        <xs:sequence>
+            <xs:element name="Modulus" minOccurs="0" type="xs:string" />
+            <xs:element name="Exponent" minOccurs="0" type="xs:string" />
+        </xs:sequence>
+    </xs:complexType>
+</xs:schema>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/soapenv.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/soapenv.xsd
new file mode 100644
index 00000000..cb89c710
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/soapenv.xsd
@@ -0,0 +1,125 @@
+<?xml version='1.0' encoding='UTF-8' ?>
+
+<!-- Schema for the SOAP/1.1 envelope
+
+     This schema has been produced using W3C's SOAP Version 1.2 schema
+     found at:
+
+     http://www.w3.org/2001/06/soap-envelope
+
+     Copyright 2001 Martin Gudgin, Developmentor.
+
+     Changes made are the following:
+     - reverted namespace to http://schemas.xmlsoap.org/soap/envelope/
+     - reverted mustUnderstand to only allow 0 and 1 as lexical values
+	 - made encodingStyle a global attribute 20020825
+
+	 Further changes:
+
+	 - removed default value from mustUnderstand attribute declaration - 20030314
+
+     Original copyright:
+     
+     Copyright 2001 W3C (Massachusetts Institute of Technology,
+     Institut National de Recherche en Informatique et en Automatique,
+     Keio University). All Rights Reserved.
+     http://www.w3.org/Consortium/Legal/
+
+     This document is governed by the W3C Software License [1] as
+     described in the FAQ [2].
+
+     [1] http://www.w3.org/Consortium/Legal/copyright-software-19980720
+     [2] http://www.w3.org/Consortium/Legal/IPR-FAQ-20000620.html#DTD
+-->
+<xs:schema xmlns:xs="http://www.w3.org/2001/XMLSchema"
+           xmlns:tns="http://schemas.xmlsoap.org/soap/envelope/"
+           targetNamespace="http://schemas.xmlsoap.org/soap/envelope/" >
+
+     
+  <!-- Envelope, header and body -->
+  <xs:element name="Envelope" type="tns:Envelope" />
+  <xs:complexType name="Envelope" >
+    <xs:sequence>
+      <xs:element ref="tns:Header" minOccurs="0" />
+      <xs:element ref="tns:Body" minOccurs="1" />
+      <xs:any namespace="##other" minOccurs="0" maxOccurs="unbounded" processContents="lax" />
+    </xs:sequence>
+    <xs:anyAttribute namespace="##other" processContents="lax" />
+  </xs:complexType>
+
+  <xs:element name="Header" type="tns:Header" />
+  <xs:complexType name="Header" >
+    <xs:sequence>
+      <xs:any namespace="##other" minOccurs="0" maxOccurs="unbounded" processContents="lax" />
+    </xs:sequence>
+    <xs:anyAttribute namespace="##other" processContents="lax" />
+  </xs:complexType>
+  
+  <xs:element name="Body" type="tns:Body" />
+  <xs:complexType name="Body" >
+    <xs:sequence>
+      <xs:any namespace="##any" minOccurs="0" maxOccurs="unbounded" processContents="strict" />
+    </xs:sequence>
+    <xs:anyAttribute namespace="##any" processContents="lax" >
+	  <xs:annotation>
+	    <xs:documentation>
+		  Prose in the spec does not specify that attributes are allowed on the Body element
+		</xs:documentation>
+	  </xs:annotation>
+	</xs:anyAttribute>
+  </xs:complexType>
+
+       
+  <!-- Global Attributes.  The following attributes are intended to be usable via qualified attribute names on any complex type referencing them.  -->
+  <xs:attribute name="mustUnderstand" >	
+     <xs:simpleType>
+     <xs:restriction base='xs:boolean'>
+	   <xs:pattern value='0|1' />
+	 </xs:restriction>
+   </xs:simpleType>
+  </xs:attribute>
+  <xs:attribute name="actor" type="xs:anyURI" />
+
+  <xs:simpleType name="encodingStyle" >
+    <xs:annotation>
+	  <xs:documentation>
+	    'encodingStyle' indicates any canonicalization conventions followed in the contents of the containing element.  For example, the value 'http://schemas.xmlsoap.org/soap/encoding/' indicates the pattern described in SOAP specification
+	  </xs:documentation>
+	</xs:annotation>
+    <xs:list itemType="xs:anyURI" />
+  </xs:simpleType>
+
+  <xs:attribute name="encodingStyle" type="tns:encodingStyle" />
+  <xs:attributeGroup name="encodingStyle" >
+    <xs:attribute ref="tns:encodingStyle" />
+  </xs:attributeGroup>
+
+  <xs:element name="Fault" type="tns:Fault" />
+  <xs:complexType name="Fault" final="extension" >
+    <xs:annotation>
+	  <xs:documentation>
+	    Fault reporting structure
+	  </xs:documentation>
+	</xs:annotation>
+    <xs:sequence>
+      <xs:element name="faultcode" type="xs:QName" />
+      <xs:element name="faultstring" type="xs:string" />
+      <xs:element name="faultactor" type="xs:anyURI" minOccurs="0" />
+      <xs:element name="detail" type="tns:detail" minOccurs="0" />      
+    </xs:sequence>
+  </xs:complexType>
+
+  <xs:complexType name="detail">
+    <xs:sequence>
+      <xs:any namespace="##any" minOccurs="0" maxOccurs="unbounded" processContents="lax" />
+    </xs:sequence>
+    <xs:anyAttribute namespace="##any" processContents="lax" /> 
+  </xs:complexType>
+
+</xs:schema>
+
+
+
+
+
+
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/ablaufendeauskunfssperren/ablaufendeauskunftssperrenrequest.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/ablaufendeauskunfssperren/ablaufendeauskunftssperrenrequest.xml
new file mode 100644
index 00000000..173c3894
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/ablaufendeauskunfssperren/ablaufendeauskunftssperrenrequest.xml
@@ -0,0 +1,22 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:zmr="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#" xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#" xmlns="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+xsi:schemaLocation="http://schemas.xmlsoap.org/soap/envelope/ ../../soapenv.xsd http://bmi.gv.at/namespace/zmr-su/base/20040201# ../../../xsd/allgemein/Service.xsd http://bmi.gv.at/namespace/zmr-su/zmr/20040201# ../../../xsd/zmr/ZMRProxy.xsd">
+<soap:Body>
+		<base:Request>
+			<base:WorkflowInfoClient>
+				<base:ProzessName>GP_Ablaufende_Auskunftssperren</base:ProzessName>
+				<base:VorgangName>ZPR_VO_Ablaufende_Auskunftssperren</base:VorgangName>
+			</base:WorkflowInfoClient>
+			<base:ClientInfo>
+				<base:Organisation>
+					<base:BehoerdenNr>000000</base:BehoerdenNr>
+				</base:Organisation>
+				<base:Client>Test</base:Client>
+			</base:ClientInfo>
+			<zmr:AblaufendeAuskunftssperrenSucheRequest>
+				<zmr:SperreBis>2005-01-01T00:00:00.000</zmr:SperreBis>
+				<base:AnzahlSaetze>10</base:AnzahlSaetze>
+			</zmr:AblaufendeAuskunftssperrenSucheRequest>
+		</base:Request>
+	</soap:Body>
+</soap:Envelope>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/ablaufendeauskunfssperren/ablaufendeauskunftssperrenresponse.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/ablaufendeauskunfssperren/ablaufendeauskunftssperrenresponse.xml
new file mode 100644
index 00000000..75fbd86f
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/ablaufendeauskunfssperren/ablaufendeauskunftssperrenresponse.xml
@@ -0,0 +1,194 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:zmr="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#" xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#" xmlns="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+xsi:schemaLocation="http://schemas.xmlsoap.org/soap/envelope/ ../../soapenv.xsd http://bmi.gv.at/namespace/zmr-su/base/20040201# ../../../xsd/allgemein/Service.xsd http://bmi.gv.at/namespace/zmr-su/zmr/20040201# ../../../xsd/zmr/ZMRProxy.xsd">
+<soap:Body>
+		<base:Response>
+			<base:WorkflowInfoServer>
+				<base:ProzessName>GP_Ablaufende_Auskunftssperren</base:ProzessName>
+				<base:ProzessInstanzID>1234</base:ProzessInstanzID>
+				<base:ProzessStatus>A</base:ProzessStatus>
+				<base:SequenzID>00034</base:SequenzID>
+				<base:Subprozess>
+					<base:VorgangName>ZPR_VO_Ablaufende_Auskunftssperren</base:VorgangName>
+					<base:VorgangStatus>A</base:VorgangStatus>
+					<base:Required>false</base:Required>
+					<base:Visible>true</base:Visible>
+				</base:Subprozess>
+			</base:WorkflowInfoServer>
+			<base:ServerInfo>
+				<base:GeneriertVon>ZMR Server</base:GeneriertVon>
+				<base:GeneriertAm>2004-01-26T00:00:00.000</base:GeneriertAm>
+				<base:ServerTransaktionNr>1234567</base:ServerTransaktionNr>
+			</base:ServerInfo>
+			<zmr:AblaufendeAuskunftssperrenSucheResponse>
+				<zmr:AblaufendeAuskunftssperrenSucheAnfrage>
+					<zmr:SperreBis>2005-01-01T00:00:00.000</zmr:SperreBis>
+					<base:AnzahlSaetze>10</base:AnzahlSaetze>					
+				</zmr:AblaufendeAuskunftssperrenSucheAnfrage>
+				<base:Message>
+					<base:Number>0003</base:Number>
+					<base:Text>Es wurde 1 Personen im ZMR gefunden</base:Text>
+				</base:Message>
+				<zmr:AblaufendeAuskunftssperreErgebnis>
+					<base:GefundeneSaetze>1</base:GefundeneSaetze>
+					<base:SaetzeVon>0</base:SaetzeVon>
+					<base:SaetzeBis>1</base:SaetzeBis>
+					<zmr:PersonErgebnisSatz>
+						<!-- 1. gelieferte Person im Suchergebnis (Personendaten + Meldedaten, historisch und aktuell) -->
+						<zmr:Personendaten>
+							<!-- Historienliste der Personendaten. Nur ein PersonErgebnis-Element, wenn nur aktuelle Daten -->
+							<zmr:PersonErgebnis>
+								<!-- aktueller Personendaten Gesamtdatensatz -->
+								<base:ErgebnissatzInfo>
+									<!-- letzter Änderungs-Zeitpunkt des Person-Gesamtdatensatzes (mit Staatsangehörigkeiten, ...)-->
+									<base:LetzteAenderung>2004-01-26T00:00:00.000</base:LetzteAenderung>
+								</base:ErgebnissatzInfo>								
+								<base:EntityErgebnisReferenz>
+									<base:Technisch>
+										<base:EntityID>0000001</base:EntityID>
+										<!-- letzter Änderungs-Zeitpunkt der Person-Entity (ohne Staatsangehörigkeiten, ...)-->
+										<base:LetzteAenderung>2004-01-26T00:00:00.000</base:LetzteAenderung>
+									</base:Technisch>
+									<base:Von>2004-01-26T00:00:00.000</base:Von>
+									<base:BeginnCode>AMKOR</base:BeginnCode>
+									<base:BeginnText>Amtliche Korrektur</base:BeginnText>
+									<base:DurchgefuehrtVon>
+										<base:Organisation>
+											<base:GemeindeNr>09999</base:GemeindeNr>
+										</base:Organisation>
+										<base:Benutzer>test@bmi.gv.at</base:Benutzer>
+									</base:DurchgefuehrtVon>
+								</base:EntityErgebnisReferenz>
+								<base:ZMRZahl>000111111111</base:ZMRZahl>
+								<zmr:NatuerlichePerson>
+									<zmr:PersonenName>
+										<Vorname>Maximilian</Vorname>
+										<Familienname>Mustermann</Familienname>
+									</zmr:PersonenName>
+									<Geschlecht>männlich</Geschlecht>
+									<Geburtsdatum>2001-05-07</Geburtsdatum>
+									<Geburtsort>Wien</Geburtsort>
+									<Geburtsbundesland>Wien</Geburtsbundesland>
+									<Geburtsstaat>Österreich</Geburtsstaat>
+									<zmr:Staatsangehoerigkeit>
+										<ISOCode3>AUT</ISOCode3>
+										<StaatsnameDE>Österreich</StaatsnameDE>
+										<base:EntityErgebnisReferenz>
+											<base:Technisch>
+												<base:EntityID>0000001</base:EntityID>
+												<base:LetzteAenderung>2003-01-01T00:00:00.000</base:LetzteAenderung>
+											</base:Technisch>
+											<base:Von>2003-01-01T00:00:00.000</base:Von>
+											<base:BeginnCode>REISEDOK_ANLEGEN</base:BeginnCode>
+											<base:BeginnText>Reisedokument anlegen</base:BeginnText>
+											<base:DurchgefuehrtVon>
+												<base:Organisation>
+													<base:GemeindeNr>09999</base:GemeindeNr>
+												</base:Organisation>
+												<base:Benutzer>test@bmi.gv.at</base:Benutzer>
+											</base:DurchgefuehrtVon>
+										</base:EntityErgebnisReferenz>
+									</zmr:Staatsangehoerigkeit>
+								</zmr:NatuerlichePerson>
+							</zmr:PersonErgebnis>
+							<zmr:PersonErgebnis>
+								<!-- historischer Personendaten Gesamtdatensatz (durch Vornamen-Änderung entstanden. Die Staatsagehörigkeit wurde nicht geändert und ist somit mit der im aktuellen Satz identisch-->
+								<base:ErgebnissatzInfo>
+									<base:LetzteAenderung>2004-01-26T00:00:00.000</base:LetzteAenderung>
+								</base:ErgebnissatzInfo>
+								<base:EntityErgebnisReferenz>								
+									<base:Technisch>
+										<base:EntityID>0000001</base:EntityID>
+										<base:LetzteAenderung>2004-01-26T00:00:00.000</base:LetzteAenderung>
+									</base:Technisch>
+									<base:Von>2003-01-01T00:00:00.000</base:Von>
+									<base:BeginnCode>GEBURT</base:BeginnCode>
+									<base:BeginnText>Geburt</base:BeginnText>
+									<base:Bis>2004-01-26T00:00:00.000</base:Bis>
+									<base:DurchgefuehrtVon>
+										<base:Organisation>
+											<base:GemeindeNr>09999</base:GemeindeNr>
+										</base:Organisation>
+										<base:Benutzer>test@bmi.gv.at</base:Benutzer>
+									</base:DurchgefuehrtVon>
+								</base:EntityErgebnisReferenz>
+								<base:ZMRZahl>000111111111</base:ZMRZahl>
+								<zmr:NatuerlichePerson>
+									<zmr:PersonenName>
+										<Vorname>Hans</Vorname>
+										<Familienname>Mustermann</Familienname>
+									</zmr:PersonenName>
+									<Geschlecht>männlich</Geschlecht>
+									<Geburtsdatum>2001-05-07</Geburtsdatum>
+									<Geburtsort>Wien</Geburtsort>
+									<Geburtsbundesland>Wien</Geburtsbundesland>
+									<Geburtsstaat>Österreich</Geburtsstaat>
+									<zmr:Staatsangehoerigkeit>
+										<ISOCode3>AUT</ISOCode3>
+										<StaatsnameDE>Österreich</StaatsnameDE>
+										<base:EntityErgebnisReferenz>
+											<base:Technisch>
+												<base:EntityID>0000001</base:EntityID>
+												<base:LetzteAenderung>2003-01-01T00:00:00.000</base:LetzteAenderung>
+											</base:Technisch>
+											<base:Von>2003-01-01T00:00:00.000</base:Von>
+											<base:BeginnCode>REISEDOK_ANLEGEN</base:BeginnCode>
+											<base:BeginnText>Reisedokument anlegen</base:BeginnText>
+											<base:DurchgefuehrtVon>
+												<base:Organisation>
+													<base:GemeindeNr>09999</base:GemeindeNr>
+												</base:Organisation>
+												<base:Benutzer>test@bmi.gv.at</base:Benutzer>
+											</base:DurchgefuehrtVon>
+										</base:EntityErgebnisReferenz>
+									</zmr:Staatsangehoerigkeit>
+								</zmr:NatuerlichePerson>
+							</zmr:PersonErgebnis>
+						</zmr:Personendaten>
+						<zmr:Meldedaten>
+							<!-- Historienliste einer Meldung. Nur ein MeldungErgebnis-Element, wenn nur aktuelle Daten -->							
+							<zmr:MeldungErgebnis>
+								<base:ErgebnissatzInfo>
+									<!-- letzter Änderungs-Zeitpunkt des Meldung-Gesamtdatensatzes (mit Auskunftssperren, ...)-->
+									<base:LetzteAenderung>2004-01-26T00:00:00.000</base:LetzteAenderung>
+								</base:ErgebnissatzInfo>							
+								<base:EntityErgebnisReferenz>
+									<base:Technisch>
+										<base:EntityID>00000002</base:EntityID>
+										<!-- letzter Änderungs-Zeitpunkt der Meldung-Entity (ohne Auskunftssperren, ...)-->
+										<base:LetzteAenderung>2004-01-26T00:00:00.000</base:LetzteAenderung>
+									</base:Technisch>
+									<base:Von>2004-01-26T00:00:00.000</base:Von>
+									<base:BeginnCode>WSANM</base:BeginnCode>
+									<base:BeginnText>Wohnsitz anmelden</base:BeginnText>
+									<base:DurchgefuehrtVon>
+										<base:Organisation>
+											<base:BehoerdenNr>099999</base:BehoerdenNr>
+										</base:Organisation>
+									</base:DurchgefuehrtVon>
+								</base:EntityErgebnisReferenz>
+								<zmr:Wohnsitz>
+									<zmr:PostAdresse>
+										<Postleitzahl>1245</Postleitzahl>
+										<Gemeinde>Testgemeinde</Gemeinde>
+										<Gemeindekennziffer>09999</Gemeindekennziffer>
+										<Ortschaft>Testort</Ortschaft>
+										<zmr:Zustelladresse>
+											<Strassenname>Teststrasse</Strassenname>
+											<Orientierungsnummer>1</Orientierungsnummer>
+											<Wohnsitzqualitaet>H</Wohnsitzqualitaet>
+										</zmr:Zustelladresse>
+									</zmr:PostAdresse>
+									<base:Adressstatus>XXX000</base:Adressstatus>
+								</zmr:Wohnsitz>
+								<base:GemeldetVon>2004-01-26T00:00:00.000</base:GemeldetVon>
+								<base:PeriodeCode>WSANM</base:PeriodeCode>
+								<base:PeriodeText>Wohnsitz anmelden</base:PeriodeText>
+							</zmr:MeldungErgebnis>
+						</zmr:Meldedaten>
+					</zmr:PersonErgebnisSatz>
+				</zmr:AblaufendeAuskunftssperreErgebnis>
+			</zmr:AblaufendeAuskunftssperrenSucheResponse>
+		</base:Response>
+	</soap:Body>
+</soap:Envelope>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/ablaufendeauskunfssperren/blaetternrequest.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/ablaufendeauskunfssperren/blaetternrequest.xml
new file mode 100644
index 00000000..50517e75
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/ablaufendeauskunfssperren/blaetternrequest.xml
@@ -0,0 +1,27 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:zmr="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#" xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#" xmlns="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+xsi:schemaLocation="http://schemas.xmlsoap.org/soap/envelope/ ../../soapenv.xsd http://bmi.gv.at/namespace/zmr-su/base/20040201# ../../../xsd/allgemein/Service.xsd http://bmi.gv.at/namespace/zmr-su/zmr/20040201# ../../../xsd/zmr/ZMRProxy.xsd">
+<soap:Body>
+		<base:Request>
+			<base:WorkflowInfoClient>
+				<base:ProzessName>GP_Ablaufende_Auskunftssperren</base:ProzessName>
+				<base:ProzessInstanzID>1234</base:ProzessInstanzID>
+				<!-- Die InstanzID der laufenden Prozesses muss hier übermittelt werden, um die Suche fortzusetzen (aus WorkflowInfoServer des ersten Suchergebnisses-->
+				<base:SequenzID>00034</base:SequenzID>
+				<base:VorgangName>ZPR_VO_Ablaufende_Auskunftssperren</base:VorgangName>
+			</base:WorkflowInfoClient>
+			<base:ClientInfo>
+				<base:Organisation>
+					<base:BehoerdenNr>000000</base:BehoerdenNr>
+				</base:Organisation>
+				<base:Client>Test</base:Client>
+			</base:ClientInfo>
+			<base:BlaetternRequest>
+				<base:BlaetternInfo>
+					<base:Richtung>Vor</base:Richtung>
+					<base:AnzahlSaetze>3</base:AnzahlSaetze>
+				</base:BlaetternInfo>
+			</base:BlaetternRequest>
+		</base:Request>
+	</soap:Body>
+</soap:Envelope>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/ablaufendeauskunfssperren/blaetternresponse.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/ablaufendeauskunfssperren/blaetternresponse.xml
new file mode 100644
index 00000000..add2f3ad
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/ablaufendeauskunfssperren/blaetternresponse.xml
@@ -0,0 +1,195 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:zmr="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#" xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#" xmlns="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+xsi:schemaLocation="http://schemas.xmlsoap.org/soap/envelope/ ../../soapenv.xsd http://bmi.gv.at/namespace/zmr-su/base/20040201# ../../../xsd/allgemein/Service.xsd http://bmi.gv.at/namespace/zmr-su/zmr/20040201# ../../../xsd/zmr/ZMRProxy.xsd">
+<soap:Body>
+		<base:Response>
+			<base:WorkflowInfoServer>
+				<base:ProzessName>GP_Ablaufende_Auskunftssperren</base:ProzessName>
+				<base:ProzessInstanzID>1234</base:ProzessInstanzID>
+				<base:ProzessStatus>A</base:ProzessStatus>
+				<base:SequenzID>00034</base:SequenzID>
+				<base:Subprozess>
+					<base:VorgangName>ZPR_VO_Ablaufende_Auskunftssperren</base:VorgangName>
+					<base:VorgangStatus>A</base:VorgangStatus>
+					<base:Required>false</base:Required>
+					<base:Visible>true</base:Visible>
+				</base:Subprozess>
+			</base:WorkflowInfoServer>
+			<base:ServerInfo>
+				<base:GeneriertVon>ZMR Server</base:GeneriertVon>
+				<base:GeneriertAm>2004-01-26T00:00:00.000</base:GeneriertAm>
+				<base:ServerTransaktionNr>1234567</base:ServerTransaktionNr>
+			</base:ServerInfo>
+			<zmr:AblaufendeAuskunftssperrenSucheResponse>
+				<zmr:AblaufendeAuskunftssperrenSucheAnfrage>
+					<zmr:SperreBis>2005-01-01T00:00:00.000</zmr:SperreBis>
+					<base:AnzahlSaetze>10</base:AnzahlSaetze>					
+				</zmr:AblaufendeAuskunftssperrenSucheAnfrage>
+				<base:Message>
+					<base:Number>0003</base:Number>
+					<base:Text>Es wurde 1 Personen im ZMR gefunden</base:Text>
+				</base:Message>
+				<zmr:AblaufendeAuskunftssperreErgebnis>
+					<base:GefundeneSaetze>4</base:GefundeneSaetze>
+					<base:SaetzeVon>3</base:SaetzeVon>
+					<!-- Es wurde weitergeblättert - der letzte Satz wird geliefert -->
+					<base:SaetzeBis>4</base:SaetzeBis>
+					<zmr:PersonErgebnisSatz>
+						<!-- 1. gelieferte Person im Suchergebnis (Personendaten + Meldedaten, historisch und aktuell) -->
+						<zmr:Personendaten>
+							<!-- Historienliste der Personendaten. Nur ein PersonErgebnis-Element, wenn nur aktuelle Daten -->
+							<zmr:PersonErgebnis>
+								<!-- aktueller Personendaten Gesamtdatensatz -->
+								<base:ErgebnissatzInfo>
+									<!-- letzter Änderungs-Zeitpunkt des Person-Gesamtdatensatzes (mit Staatsangehörigkeiten, ...)-->
+									<base:LetzteAenderung>2004-01-26T00:00:00.000</base:LetzteAenderung>
+								</base:ErgebnissatzInfo>
+								<base:EntityErgebnisReferenz>
+									<base:Technisch>
+										<base:EntityID>0000001</base:EntityID>
+										<!-- letzter Änderungs-Zeitpunkt der Person-Entity (ohne Staatsangehörigkeiten, ...)-->
+										<base:LetzteAenderung>2004-01-26T00:00:00.000</base:LetzteAenderung>
+									</base:Technisch>
+									<base:Von>2004-01-26T00:00:00.000</base:Von>
+									<base:BeginnCode>AMKOR</base:BeginnCode>
+									<base:BeginnText>Amtliche Korrektur</base:BeginnText>
+									<base:DurchgefuehrtVon>
+										<base:Organisation>
+											<base:GemeindeNr>09999</base:GemeindeNr>
+										</base:Organisation>
+										<base:Benutzer>test@bmi.gv.at</base:Benutzer>
+									</base:DurchgefuehrtVon>
+								</base:EntityErgebnisReferenz>
+								<base:ZMRZahl>000111111111</base:ZMRZahl>
+								<zmr:NatuerlichePerson>
+									<zmr:PersonenName>
+										<Vorname>Maximilian</Vorname>
+										<Familienname>Mustermann</Familienname>
+									</zmr:PersonenName>
+									<Geschlecht>männlich</Geschlecht>
+									<Geburtsdatum>2001-05-07</Geburtsdatum>
+									<Geburtsort>Wien</Geburtsort>
+									<Geburtsbundesland>Wien</Geburtsbundesland>
+									<Geburtsstaat>Österreich</Geburtsstaat>
+									<zmr:Staatsangehoerigkeit>
+										<ISOCode3>AUT</ISOCode3>
+										<StaatsnameDE>Österreich</StaatsnameDE>
+										<base:EntityErgebnisReferenz>
+											<base:Technisch>
+												<base:EntityID>0000001</base:EntityID>
+												<base:LetzteAenderung>2003-01-01T00:00:00.000</base:LetzteAenderung>
+											</base:Technisch>
+											<base:Von>2003-01-01T00:00:00.000</base:Von>
+											<base:BeginnCode>REISEDOK_ANLEGEN</base:BeginnCode>
+											<base:BeginnText>Reisedokument anlegen</base:BeginnText>
+											<base:DurchgefuehrtVon>
+												<base:Organisation>
+													<base:GemeindeNr>09999</base:GemeindeNr>
+												</base:Organisation>
+												<base:Benutzer>test@bmi.gv.at</base:Benutzer>
+											</base:DurchgefuehrtVon>
+										</base:EntityErgebnisReferenz>
+									</zmr:Staatsangehoerigkeit>
+								</zmr:NatuerlichePerson>
+							</zmr:PersonErgebnis>
+							<zmr:PersonErgebnis>
+								<!-- historischer Personendaten Gesamtdatensatz (durch Vornamen-Änderung entstanden. Die Staatsagehörigkeit wurde nicht geändert und ist somit mit der im aktuellen Satz identisch-->
+								<base:ErgebnissatzInfo>
+									<base:LetzteAenderung>2004-01-26T00:00:00.000</base:LetzteAenderung>
+								</base:ErgebnissatzInfo>
+								<base:EntityErgebnisReferenz>
+									<base:Technisch>
+										<base:EntityID>0000001</base:EntityID>
+										<base:LetzteAenderung>2004-01-26T00:00:00.000</base:LetzteAenderung>
+									</base:Technisch>
+									<base:Von>2003-01-01T00:00:00.000</base:Von>
+									<base:BeginnCode>GEBURT</base:BeginnCode>
+									<base:BeginnText>Geburt</base:BeginnText>
+									<base:Bis>2004-01-26T00:00:00.000</base:Bis>
+									<base:DurchgefuehrtVon>
+										<base:Organisation>
+											<base:GemeindeNr>09999</base:GemeindeNr>
+										</base:Organisation>
+										<base:Benutzer>test@bmi.gv.at</base:Benutzer>
+									</base:DurchgefuehrtVon>
+								</base:EntityErgebnisReferenz>
+								<base:ZMRZahl>000111111111</base:ZMRZahl>
+								<zmr:NatuerlichePerson>
+									<zmr:PersonenName>
+										<Vorname>Hans</Vorname>
+										<Familienname>Mustermann</Familienname>
+									</zmr:PersonenName>
+									<Geschlecht>männlich</Geschlecht>
+									<Geburtsdatum>2001-05-07</Geburtsdatum>
+									<Geburtsort>Wien</Geburtsort>
+									<Geburtsbundesland>Wien</Geburtsbundesland>
+									<Geburtsstaat>Österreich</Geburtsstaat>
+									<zmr:Staatsangehoerigkeit>
+										<ISOCode3>AUT</ISOCode3>
+										<StaatsnameDE>Österreich</StaatsnameDE>
+										<base:EntityErgebnisReferenz>
+											<base:Technisch>
+												<base:EntityID>0000001</base:EntityID>
+												<base:LetzteAenderung>2003-01-01T00:00:00.000</base:LetzteAenderung>
+											</base:Technisch>
+											<base:Von>2003-01-01T00:00:00.000</base:Von>
+											<base:BeginnCode>REISEDOK_ANLEGEN</base:BeginnCode>
+											<base:BeginnText>Reisedokument anlegen</base:BeginnText>
+											<base:DurchgefuehrtVon>
+												<base:Organisation>
+													<base:GemeindeNr>09999</base:GemeindeNr>
+												</base:Organisation>
+												<base:Benutzer>test@bmi.gv.at</base:Benutzer>
+											</base:DurchgefuehrtVon>
+										</base:EntityErgebnisReferenz>
+									</zmr:Staatsangehoerigkeit>
+								</zmr:NatuerlichePerson>
+							</zmr:PersonErgebnis>
+						</zmr:Personendaten>
+						<zmr:Meldedaten>
+							<!-- Historienliste einer Meldung. Nur ein MeldungErgebnis-Element, wenn nur aktuelle Daten -->
+							<zmr:MeldungErgebnis>
+								<base:ErgebnissatzInfo>
+									<!-- letzter Änderungs-Zeitpunkt des Meldung-Gesamtdatensatzes (mit Auskunftssperren, ...)-->
+									<base:LetzteAenderung>2004-01-26T00:00:00.000</base:LetzteAenderung>
+								</base:ErgebnissatzInfo>
+								<base:EntityErgebnisReferenz>
+									<base:Technisch>
+										<base:EntityID>00000002</base:EntityID>
+										<!-- letzter Änderungs-Zeitpunkt der Meldung-Entity (ohne Auskunftssperren, ...)-->
+										<base:LetzteAenderung>2004-01-26T00:00:00.000</base:LetzteAenderung>
+									</base:Technisch>
+									<base:Von>2004-01-26T00:00:00.000</base:Von>
+									<base:BeginnCode>WSANM</base:BeginnCode>
+									<base:BeginnText>Wohnsitz anmelden</base:BeginnText>
+									<base:DurchgefuehrtVon>
+										<base:Organisation>
+											<base:BehoerdenNr>099999</base:BehoerdenNr>
+										</base:Organisation>
+									</base:DurchgefuehrtVon>
+								</base:EntityErgebnisReferenz>
+								<zmr:Wohnsitz>
+									<zmr:PostAdresse>
+										<Postleitzahl>1245</Postleitzahl>
+										<Gemeinde>Testgemeinde</Gemeinde>
+										<Gemeindekennziffer>09999</Gemeindekennziffer>
+										<Ortschaft>Testort</Ortschaft>
+										<zmr:Zustelladresse>
+											<Strassenname>Teststrasse</Strassenname>
+											<Orientierungsnummer>1</Orientierungsnummer>
+											<Wohnsitzqualitaet>H</Wohnsitzqualitaet>
+										</zmr:Zustelladresse>
+									</zmr:PostAdresse>
+									<base:Adressstatus>XXX000</base:Adressstatus>
+								</zmr:Wohnsitz>
+								<base:GemeldetVon>2004-01-26T00:00:00.000</base:GemeldetVon>
+								<base:PeriodeCode>WSANM</base:PeriodeCode>
+								<base:PeriodeText>Wohnsitz anmelden</base:PeriodeText>
+							</zmr:MeldungErgebnis>
+						</zmr:Meldedaten>
+					</zmr:PersonErgebnisSatz>
+				</zmr:AblaufendeAuskunftssperreErgebnis>
+			</zmr:AblaufendeAuskunftssperrenSucheResponse>
+		</base:Response>
+	</soap:Body>
+</soap:Envelope>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/adoption/adoptionrequest.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/adoption/adoptionrequest.xml
new file mode 100644
index 00000000..9e8746ce
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/adoption/adoptionrequest.xml
@@ -0,0 +1,32 @@
+<?xml version="1.0" encoding="UTF-8"?>
+
+<soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:zmr="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#" xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#" xmlns="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+xsi:schemaLocation="http://schemas.xmlsoap.org/soap/envelope/ ../../soapenv.xsd http://bmi.gv.at/namespace/zmr-su/base/20040201# ../../../xsd/allgemein/Service.xsd http://bmi.gv.at/namespace/zmr-su/zmr/20040201# ../../../xsd/zmr/ZMRProxy.xsd">
+<soap:Body>
+		<base:Request>
+			<base:WorkflowInfoClient>
+				<base:ProzessName>GP_Adoption</base:ProzessName>
+				<base:VorgangName>ZPR_VO_Adoption</base:VorgangName>
+			</base:WorkflowInfoClient>
+			<base:ClientInfo>
+				<base:Organisation>
+					<base:BehoerdenNr>000000</base:BehoerdenNr>
+				</base:Organisation>
+				<base:Client>Test</base:Client>
+			</base:ClientInfo>
+			<zmr:AdoptionRequest>
+				<zmr:AdoptionInfo>
+					<base:Von>2004-01-26T00:00:00.000</base:Von>
+				</zmr:AdoptionInfo>
+				<zmr:PersonReferenz>
+					<base:Technisch>
+						<base:EntityID>2434</base:EntityID>
+						<base:LetzteAenderung>2003-03-01T00:00:00.000</base:LetzteAenderung>
+					</base:Technisch>
+					<base:ZMRZahl>000111111111</base:ZMRZahl>
+				</zmr:PersonReferenz>
+				<Familienname>MustermannAdoption</Familienname>
+			</zmr:AdoptionRequest>
+		</base:Request>
+	</soap:Body>
+</soap:Envelope>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/adoption/adoptionresponse.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/adoption/adoptionresponse.xml
new file mode 100644
index 00000000..466bdc2c
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/adoption/adoptionresponse.xml
@@ -0,0 +1,82 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:zmr="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#" xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#" xmlns="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+xsi:schemaLocation="http://schemas.xmlsoap.org/soap/envelope/ ../../soapenv.xsd http://bmi.gv.at/namespace/zmr-su/base/20040201# ../../../xsd/allgemein/Service.xsd http://bmi.gv.at/namespace/zmr-su/zmr/20040201# ../../../xsd/zmr/ZMRProxy.xsd">
+<soap:Body>
+		<base:Response>
+			<base:WorkflowInfoServer>
+				<base:ProzessName>GP_Adoption</base:ProzessName>
+				<base:ProzessInstanzID>1234</base:ProzessInstanzID>
+				<base:ProzessStatus>C</base:ProzessStatus>
+				<base:SequenzID>00034</base:SequenzID>
+				<base:Subprozess>
+					<base:VorgangName>ZPR_VO_Adoption</base:VorgangName>
+					<base:VorgangStatus>C</base:VorgangStatus>
+					<base:Required>false</base:Required>
+					<base:Visible>true</base:Visible>
+				</base:Subprozess>
+			</base:WorkflowInfoServer>
+			<base:ServerInfo>
+				<base:GeneriertVon>ZMR Server</base:GeneriertVon>
+				<base:GeneriertAm>2004-01-26T00:00:00.000</base:GeneriertAm>
+				<base:ServerTransaktionNr>1234567</base:ServerTransaktionNr>
+			</base:ServerInfo>
+			<zmr:AdoptionResponse>
+				<base:Message>
+					<base:Number>1234</base:Number>
+					<base:Text>Person wurde geändert</base:Text>
+				</base:Message>
+				<zmr:PersonErgebnis>
+					<base:ErgebnissatzInfo>
+						<base:LetzteAenderung>2004-01-26T00:00:00.000</base:LetzteAenderung>
+					</base:ErgebnissatzInfo>					
+					<base:EntityErgebnisReferenz>						
+						<base:Technisch>
+							<base:EntityID>0000001</base:EntityID>
+							<base:LetzteAenderung>2004-01-26T00:00:00.000</base:LetzteAenderung>
+						</base:Technisch>
+						<base:Von>2004-01-26T00:00:00.000</base:Von>
+						<base:BeginnCode>NAMENSAENDERUNG</base:BeginnCode>
+						<base:BeginnText>Namensänderung</base:BeginnText>
+						<base:DurchgefuehrtVon>
+							<base:Organisation>
+								<base:GemeindeNr>09999</base:GemeindeNr>
+							</base:Organisation>
+							<base:Benutzer>test@bmi.gv.at</base:Benutzer>
+						</base:DurchgefuehrtVon>
+					</base:EntityErgebnisReferenz>
+					<base:ZMRZahl>000111111111</base:ZMRZahl>
+					<zmr:NatuerlichePerson>
+						<zmr:PersonenName>
+							<Vorname>Anna</Vorname>
+							<Familienname>MustermannAdoption</Familienname>
+						</zmr:PersonenName>
+						<Geschlecht>weiblich</Geschlecht>
+						<Geburtsdatum>2001-05-07</Geburtsdatum>
+						<Geburtsort>Wien</Geburtsort>
+						<Geburtsbundesland>Wien</Geburtsbundesland>
+						<Geburtsstaat>Österreich</Geburtsstaat>
+						<zmr:Staatsangehoerigkeit>
+							<ISOCode3>AUT</ISOCode3>
+							<StaatsnameDE>Österreich</StaatsnameDE>
+							<base:EntityErgebnisReferenz>
+								<base:Technisch>
+									<base:EntityID>0000001</base:EntityID>
+									<base:LetzteAenderung>2003-01-01T00:00:00.000</base:LetzteAenderung>
+								</base:Technisch>
+								<base:Von>2003-01-01T00:00:00.000</base:Von>
+								<base:BeginnCode>REISEDOK_ANLEGEN</base:BeginnCode>
+								<base:BeginnText>Reisedokument anlegen</base:BeginnText>
+								<base:DurchgefuehrtVon>
+									<base:Organisation>
+										<base:GemeindeNr>09999</base:GemeindeNr>
+									</base:Organisation>
+									<base:Benutzer>test@bmi.gv.at</base:Benutzer>
+								</base:DurchgefuehrtVon>
+							</base:EntityErgebnisReferenz>
+						</zmr:Staatsangehoerigkeit>
+					</zmr:NatuerlichePerson>
+				</zmr:PersonErgebnis>
+			</zmr:AdoptionResponse>
+		</base:Response>
+	</soap:Body>
+</soap:Envelope>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/adresssuche/adresssucherequest.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/adresssuche/adresssucherequest.xml
new file mode 100644
index 00000000..b37c1ecf
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/adresssuche/adresssucherequest.xml
@@ -0,0 +1,32 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:zmr="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#" xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#" xmlns="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+xsi:schemaLocation="http://schemas.xmlsoap.org/soap/envelope/ ../../soapenv.xsd http://bmi.gv.at/namespace/zmr-su/base/20040201# ../../../xsd/allgemein/Service.xsd http://bmi.gv.at/namespace/zmr-su/zmr/20040201# ../../../xsd/zmr/ZMRProxy.xsd">
+	<soap:Body>
+		<base:Request>
+			<base:WorkflowInfoClient>
+				<base:ProzessName>Meldevorgang</base:ProzessName>
+				<base:VorgangName>Adresssuche</base:VorgangName>
+			</base:WorkflowInfoClient>
+			<base:ClientInfo>
+				<base:Organisation>
+					<base:BehoerdenNr>099999</base:BehoerdenNr>
+				</base:Organisation>			
+				<base:Client>ZMRHTMLClient V3.0</base:Client>
+			</base:ClientInfo>
+			<zmr:AdresssucheRequest>
+				<zmr:AdresssucheInfo>
+					<zmr:Suchart>ADRESSSUCHE</zmr:Suchart>
+				</zmr:AdresssucheInfo>
+				<zmr:Adressdaten>
+					<PostAdresse>
+						<Gemeindekennziffer>09999</Gemeindekennziffer>
+						<Ortschaft>Testort</Ortschaft>
+						<Zustelladresse>
+							<Strassenname>Teststraße</Strassenname>
+						</Zustelladresse>
+					</PostAdresse>
+				</zmr:Adressdaten>
+			</zmr:AdresssucheRequest>
+		</base:Request>
+	</soap:Body>
+</soap:Envelope>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/adresssuche/adresssucheresponse.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/adresssuche/adresssucheresponse.xml
new file mode 100644
index 00000000..53c04d79
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/adresssuche/adresssucheresponse.xml
@@ -0,0 +1,81 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:zmr="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#" xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#" xmlns="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+ xsi:schemaLocation="http://schemas.xmlsoap.org/soap/envelope/ ../../soapenv.xsd http://bmi.gv.at/namespace/zmr-su/base/20040201# ../../../xsd/allgemein/Service.xsd http://bmi.gv.at/namespace/zmr-su/zmr/20040201# ../../../xsd/zmr/ZMRProxy.xsd">
+	<soap:Body>
+		<base:Response>
+			<base:WorkflowInfoServer>
+				<base:ProzessName>Meldevorgang</base:ProzessName>
+				<base:ProzessInstanzID>1234</base:ProzessInstanzID>
+				<base:ProzessStatus>A</base:ProzessStatus>
+				<base:SequenzID>00034</base:SequenzID>
+				<base:Subprozess>
+					<base:VorgangName>Adresssuche</base:VorgangName>
+					<base:VorgangStatus>A</base:VorgangStatus>
+					<base:Required>true</base:Required>
+					<base:Visible>true</base:Visible>
+				</base:Subprozess>
+			</base:WorkflowInfoServer>
+			<base:ServerInfo>
+				<base:GeneriertVon>ZMR Server</base:GeneriertVon>
+				<base:GeneriertAm>2004-01-26T00:00:00.000</base:GeneriertAm>
+				<base:ServerTransaktionNr>1234567</base:ServerTransaktionNr>
+			</base:ServerInfo>
+			<zmr:AdresssucheResponse>
+				<zmr:AdresssucheAnfrage>
+					<zmr:AdresssucheInfo>
+						<zmr:Suchart>ADRESSSUCHE</zmr:Suchart>
+					</zmr:AdresssucheInfo>
+					<zmr:Adressdaten>
+						<PostAdresse>
+							<Gemeindekennziffer>09999</Gemeindekennziffer>
+							<Zustelladresse>
+								<Strassenname>Teststraße</Strassenname>
+							</Zustelladresse>
+						</PostAdresse>
+					</zmr:Adressdaten>
+				</zmr:AdresssucheAnfrage>
+				<base:Message>
+					<base:Number>123</base:Number>
+					<base:Text>Adressen gefunden.</base:Text>
+				</base:Message>				
+				<zmr:Adresssuchergebnis>
+					<zmr:Detailgrad>Orientierungsnummer</zmr:Detailgrad>
+					<base:GefundeneSaetze>3</base:GefundeneSaetze>
+					<zmr:Adressdaten>
+						<PostAdresse>
+							<Gemeinde>Testgemeinde</Gemeinde>
+							<Gemeindekennziffer>09999</Gemeindekennziffer>
+							<Ortschaft>Testort</Ortschaft>
+							<Zustelladresse>
+								<Strassenname>Teststraße</Strassenname>
+								<Orientierungsnummer>1</Orientierungsnummer>
+							</Zustelladresse>
+						</PostAdresse>
+					</zmr:Adressdaten>
+					<zmr:Adressdaten>
+						<PostAdresse>
+							<Gemeinde>Testgemeinde</Gemeinde>
+							<Gemeindekennziffer>09999</Gemeindekennziffer>
+							<Ortschaft>Testort</Ortschaft>
+							<Zustelladresse>
+								<Strassenname>Teststraße</Strassenname>
+								<Orientierungsnummer>2</Orientierungsnummer>
+							</Zustelladresse>
+						</PostAdresse>
+					</zmr:Adressdaten>
+					<zmr:Adressdaten>
+						<PostAdresse>
+							<Gemeinde>Testgemeinde</Gemeinde>
+							<Gemeindekennziffer>09999</Gemeindekennziffer>
+							<Ortschaft>Testort</Ortschaft>
+							<Zustelladresse>
+								<Strassenname>Teststraße</Strassenname>
+								<Orientierungsnummer>3</Orientierungsnummer>
+							</Zustelladresse>
+						</PostAdresse>
+					</zmr:Adressdaten>
+				</zmr:Adresssuchergebnis>
+			</zmr:AdresssucheResponse>
+		</base:Response>
+	</soap:Body>
+</soap:Envelope>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/behoerdenabfrage/behoerdenabfragerequestStufe1.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/behoerdenabfrage/behoerdenabfragerequestStufe1.xml
new file mode 100644
index 00000000..0aa8460b
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/behoerdenabfrage/behoerdenabfragerequestStufe1.xml
@@ -0,0 +1,33 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:zmr="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#" xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#" xmlns="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+xsi:schemaLocation="http://schemas.xmlsoap.org/soap/envelope/ ../../soapenv.xsd http://bmi.gv.at/namespace/zmr-su/base/20040201# ../../../xsd/allgemein/Service.xsd http://bmi.gv.at/namespace/zmr-su/zmr/20040201# ../../../xsd/zmr/ZMRProxy.xsd">
+<soap:Body>
+		<base:Request>
+			<base:WorkflowInfoClient>
+				<base:ProzessName>GP_Behoerdenabfrage_erstellen</base:ProzessName>
+				<base:VorgangName>ZMR_VO_Behoerdenabfrage_Ueberblick_erstellen</base:VorgangName>
+			</base:WorkflowInfoClient>
+			<base:ClientInfo>
+				<base:Organisation>
+					<base:BehoerdenNr>000000</base:BehoerdenNr>
+				</base:Organisation>
+				<base:Client>Test</base:Client>
+			</base:ClientInfo>
+			<zmr:BehoerdenabfrageRequest>
+				<zmr:BehoerdenabfrageInfo>
+					<base:Bezugsfeld>Test</base:Bezugsfeld>
+					<zmr:BehoerdenabfrageAction>SONSTIGES</zmr:BehoerdenabfrageAction>
+					<base:InclusivHistorie>false</base:InclusivHistorie>
+					<base:Formalisiert>false</base:Formalisiert>
+				</zmr:BehoerdenabfrageInfo>
+				<NatuerlichePerson>
+					<PersonenName>
+						<Vorname>Max</Vorname>
+						<Familienname>Mustermann</Familienname>
+					</PersonenName>
+					<Geburtsdatum>2000-01-01</Geburtsdatum>			
+				</NatuerlichePerson>
+			</zmr:BehoerdenabfrageRequest>
+		</base:Request>
+	</soap:Body>
+</soap:Envelope>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/behoerdenabfrage/behoerdenabfragerequestStufe2.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/behoerdenabfrage/behoerdenabfragerequestStufe2.xml
new file mode 100644
index 00000000..a68cd27d
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/behoerdenabfrage/behoerdenabfragerequestStufe2.xml
@@ -0,0 +1,27 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:zmr="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#" xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#" xmlns="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+xsi:schemaLocation="http://schemas.xmlsoap.org/soap/envelope/ ../../soapenv.xsd http://bmi.gv.at/namespace/zmr-su/base/20040201# ../../../xsd/allgemein/Service.xsd http://bmi.gv.at/namespace/zmr-su/zmr/20040201# ../../../xsd/zmr/ZMRProxy.xsd">
+<soap:Body>
+		<base:Request>
+			<base:WorkflowInfoClient>
+				<base:ProzessName>GP_Behoerdenabfrage_erstellen</base:ProzessName>
+				<base:VorgangName>ZMR_VO_Behoerdenabfrage_Detail_erstellen</base:VorgangName>
+			</base:WorkflowInfoClient>
+			<base:ClientInfo>
+				<base:Organisation>
+					<base:BehoerdenNr>000000</base:BehoerdenNr>
+				</base:Organisation>
+				<base:Client>Test</base:Client>
+			</base:ClientInfo>
+			<zmr:BehoerdenabfrageRequest>
+				<zmr:BehoerdenabfrageInfo>
+					<base:Bezugsfeld>Test</base:Bezugsfeld>
+					<zmr:BehoerdenabfrageAction>SONSTIGES</zmr:BehoerdenabfrageAction>
+					<base:InclusivHistorie>false</base:InclusivHistorie>
+					<base:Formalisiert>false</base:Formalisiert>
+				</zmr:BehoerdenabfrageInfo>
+				<zmr:PersonKey>1</zmr:PersonKey>
+			</zmr:BehoerdenabfrageRequest>
+		</base:Request>
+	</soap:Body>
+</soap:Envelope>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/behoerdenabfrage/behoerdenabfrageresponseStufe1.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/behoerdenabfrage/behoerdenabfrageresponseStufe1.xml
new file mode 100644
index 00000000..cf18458e
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/behoerdenabfrage/behoerdenabfrageresponseStufe1.xml
@@ -0,0 +1,76 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:zmr="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#" xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#" xmlns="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+xsi:schemaLocation="http://schemas.xmlsoap.org/soap/envelope/ ../../soapenv.xsd http://bmi.gv.at/namespace/zmr-su/base/20040201# ../../../xsd/allgemein/Service.xsd http://bmi.gv.at/namespace/zmr-su/zmr/20040201# ../../../xsd/zmr/ZMRProxy.xsd">
+<soap:Body>
+		<base:Response>
+			<base:WorkflowInfoServer>
+				<base:ProzessName>GP_Behoerdenabfrage_erstellen</base:ProzessName>
+				<base:ProzessInstanzID>1234</base:ProzessInstanzID>
+				<base:ProzessStatus>A</base:ProzessStatus>
+				<base:SequenzID>00034</base:SequenzID>
+				<base:Subprozess>
+					<base:VorgangName>ZPR_VO_Person_suchen_Meldevorgang</base:VorgangName>
+					<base:VorgangStatus>C</base:VorgangStatus>
+					<base:Required>false</base:Required>
+					<base:Visible>true</base:Visible>
+				</base:Subprozess>
+				<base:Subprozess>
+					<base:VorgangName>ZMR_VO_Behoerdenabfrage_Detail_erstellen</base:VorgangName>
+					<base:VorgangStatus>A</base:VorgangStatus>
+					<base:Required>false</base:Required>
+					<base:Visible>true</base:Visible>
+				</base:Subprozess>				
+			</base:WorkflowInfoServer>
+			<base:ServerInfo>
+				<base:GeneriertVon>ZMR Server</base:GeneriertVon>
+				<base:GeneriertAm>2004-01-26T00:00:00.000</base:GeneriertAm>
+				<base:ServerTransaktionNr>1234567</base:ServerTransaktionNr>
+			</base:ServerInfo>
+			<zmr:BehoerdenabfrageResponse>
+				<zmr:BehoerdenabfrageAnfrage>
+					<zmr:BehoerdenabfrageInfo>
+						<base:Bezugsfeld>Test</base:Bezugsfeld>
+						<zmr:BehoerdenabfrageAction>SONSTIGES</zmr:BehoerdenabfrageAction>
+						<base:InclusivHistorie>false</base:InclusivHistorie>
+						<base:Formalisiert>false</base:Formalisiert>
+					</zmr:BehoerdenabfrageInfo>
+					<NatuerlichePerson>
+						<PersonenName>
+							<Vorname>Max</Vorname>
+							<Familienname>Mustermann</Familienname>
+						</PersonenName>
+						<Geburtsdatum>2000-01-01</Geburtsdatum>			
+					</NatuerlichePerson>
+				</zmr:BehoerdenabfrageAnfrage>
+				<base:Message>
+					<base:Number>0003</base:Number>
+					<base:Text>Es wurden 3 Personen im ZMR gefunden</base:Text>
+				</base:Message>
+				<zmr:BehoerdenabfrageUeberblick>
+					<base:AnzahlSaetze>3</base:AnzahlSaetze>
+					<zmr:PersonUeberblick>
+						<zmr:PersonKey>0</zmr:PersonKey>
+						<Geburtsdatum>2001-01-01</Geburtsdatum>
+						<Geburtsort>Wien - Ottakring</Geburtsort>
+						<Postleitzahl>1010</Postleitzahl>
+						<Ortschaft>Wien - Innere Stadt</Ortschaft>
+					</zmr:PersonUeberblick>
+					<zmr:PersonUeberblick>
+						<zmr:PersonKey>1</zmr:PersonKey>
+						<Geburtsdatum>2001-01-01</Geburtsdatum>
+						<Geburtsort>Testort</Geburtsort>
+						<Postleitzahl>9999</Postleitzahl>
+						<Ortschaft>Testort</Ortschaft>
+					</zmr:PersonUeberblick>
+					<zmr:PersonUeberblick>
+						<zmr:PersonKey>2</zmr:PersonKey>
+						<Geburtsdatum>2001-01-01</Geburtsdatum>
+						<Geburtsort>Testort2</Geburtsort>
+						<Postleitzahl>8888</Postleitzahl>
+						<Ortschaft>Testort2</Ortschaft>
+					</zmr:PersonUeberblick>										
+				</zmr:BehoerdenabfrageUeberblick>
+			</zmr:BehoerdenabfrageResponse>
+		</base:Response>
+	</soap:Body>
+</soap:Envelope>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/behoerdenabfrage/behoerdenabfrageresponseStufe2.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/behoerdenabfrage/behoerdenabfrageresponseStufe2.xml
new file mode 100644
index 00000000..909c491e
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/behoerdenabfrage/behoerdenabfrageresponseStufe2.xml
@@ -0,0 +1,200 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:zmr="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#" xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#" xmlns="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+xsi:schemaLocation="http://schemas.xmlsoap.org/soap/envelope/ ../../soapenv.xsd http://bmi.gv.at/namespace/zmr-su/base/20040201# ../../../xsd/allgemein/Service.xsd http://bmi.gv.at/namespace/zmr-su/zmr/20040201# ../../../xsd/zmr/ZMRProxy.xsd">
+<soap:Body>
+		<base:Response>
+			<base:WorkflowInfoServer>
+				<base:ProzessName>GP_Behoerdenabfrage_erstellen</base:ProzessName>
+				<base:ProzessInstanzID>1234</base:ProzessInstanzID>
+				<base:ProzessStatus>C</base:ProzessStatus>
+				<base:SequenzID>00034</base:SequenzID>
+				<base:Subprozess>
+					<base:VorgangName>ZPR_VO_Person_suchen_Meldevorgang</base:VorgangName>
+					<base:VorgangStatus>C</base:VorgangStatus>
+					<base:Required>false</base:Required>
+					<base:Visible>true</base:Visible>
+				</base:Subprozess>
+				<base:Subprozess>
+					<base:VorgangName>ZMR_VO_Behoerdenabfrage_Detail_erstellen</base:VorgangName>
+					<base:VorgangStatus>C</base:VorgangStatus>
+					<base:Required>false</base:Required>
+					<base:Visible>true</base:Visible>
+				</base:Subprozess>				
+			</base:WorkflowInfoServer>
+			<base:ServerInfo>
+				<base:GeneriertVon>ZMR Server</base:GeneriertVon>
+				<base:GeneriertAm>2004-01-26T00:00:00.000</base:GeneriertAm>
+				<base:ServerTransaktionNr>1234567</base:ServerTransaktionNr>
+			</base:ServerInfo>
+			<zmr:BehoerdenabfrageResponse>
+				<zmr:BehoerdenabfrageAnfrage>
+					<zmr:BehoerdenabfrageInfo>
+						<base:Bezugsfeld>Test</base:Bezugsfeld>
+						<zmr:BehoerdenabfrageAction>SONSTIGES</zmr:BehoerdenabfrageAction>
+						<base:InclusivHistorie>false</base:InclusivHistorie>
+						<base:Formalisiert>false</base:Formalisiert>
+					</zmr:BehoerdenabfrageInfo>
+					<zmr:PersonKey>1</zmr:PersonKey>
+				</zmr:BehoerdenabfrageAnfrage>
+				<base:Message>
+					<base:Number>0003</base:Number>
+					<base:Text>Es wurde 1 Person im ZMR gefunden</base:Text>
+				</base:Message>
+				<zmr:BehoerdenabfrageDetail>
+					<zmr:Personendaten>
+						<!-- Historienliste der Personendaten. Nur ein PersonErgebnis-Element, wenn nur aktuelle Daten -->
+						<zmr:PersonErgebnis>
+							<!-- aktueller Personendaten Gesamtdatensatz -->
+							<base:ErgebnissatzInfo>
+								<!-- letzter Änderungs-Zeitpunkt des Person-Gesamtdatensatzes (mit Staatsangehörigkeiten, ...)-->
+								<base:LetzteAenderung>2004-01-26T00:00:00.000</base:LetzteAenderung>
+							</base:ErgebnissatzInfo>								
+							<base:EntityErgebnisReferenz>
+								<base:Technisch>
+									<base:EntityID>0000001</base:EntityID>
+									<!-- letzter Änderungs-Zeitpunkt der Person-Entity (ohne Staatsangehörigkeiten, ...)-->
+									<base:LetzteAenderung>2004-01-26T00:00:00.000</base:LetzteAenderung>
+								</base:Technisch>
+								<base:Von>2004-01-26T00:00:00.000</base:Von>
+								<base:BeginnCode>AMKOR</base:BeginnCode>
+								<base:BeginnText>Amtliche Korrektur</base:BeginnText>
+								<base:DurchgefuehrtVon>
+									<base:Organisation>
+										<base:GemeindeNr>09999</base:GemeindeNr>
+									</base:Organisation>
+									<base:Benutzer>test@bmi.gv.at</base:Benutzer>
+								</base:DurchgefuehrtVon>
+							</base:EntityErgebnisReferenz>
+							<base:ZMRZahl>000111111111</base:ZMRZahl>
+							<zmr:NatuerlichePerson>
+								<zmr:PersonenName>
+									<Vorname>Maximilian</Vorname>
+									<Familienname>Mustermann</Familienname>
+								</zmr:PersonenName>
+								<Geschlecht>männlich</Geschlecht>
+								<Geburtsdatum>2001-05-07</Geburtsdatum>
+								<Geburtsort>Wien</Geburtsort>
+								<Geburtsbundesland>Wien</Geburtsbundesland>
+								<Geburtsstaat>Österreich</Geburtsstaat>
+								<zmr:Staatsangehoerigkeit>
+									<ISOCode3>AUT</ISOCode3>
+									<StaatsnameDE>Österreich</StaatsnameDE>
+									<base:EntityErgebnisReferenz>
+										<base:Technisch>
+											<base:EntityID>0000001</base:EntityID>
+											<base:LetzteAenderung>2003-01-01T00:00:00.000</base:LetzteAenderung>
+										</base:Technisch>
+										<base:Von>2003-01-01T00:00:00.000</base:Von>
+										<base:BeginnCode>REISEDOK_ANLEGEN</base:BeginnCode>
+										<base:BeginnText>Reisedokument anlegen</base:BeginnText>
+										<base:DurchgefuehrtVon>
+											<base:Organisation>
+												<base:GemeindeNr>09999</base:GemeindeNr>
+											</base:Organisation>
+											<base:Benutzer>test@bmi.gv.at</base:Benutzer>
+										</base:DurchgefuehrtVon>
+									</base:EntityErgebnisReferenz>
+								</zmr:Staatsangehoerigkeit>
+							</zmr:NatuerlichePerson>
+						</zmr:PersonErgebnis>
+						<zmr:PersonErgebnis>
+							<!-- historischer Personendaten Gesamtdatensatz (durch Vornamen-Änderung entstanden. Die Staatsagehörigkeit wurde nicht geändert und ist somit mit der im aktuellen Satz identisch-->
+							<base:ErgebnissatzInfo>
+								<base:LetzteAenderung>2004-01-26T00:00:00.000</base:LetzteAenderung>
+							</base:ErgebnissatzInfo>
+							<base:EntityErgebnisReferenz>								
+								<base:Technisch>
+									<base:EntityID>0000001</base:EntityID>
+									<base:LetzteAenderung>2004-01-26T00:00:00.000</base:LetzteAenderung>
+								</base:Technisch>
+								<base:Von>2003-01-01T00:00:00.000</base:Von>
+								<base:BeginnCode>GEBURT</base:BeginnCode>
+								<base:BeginnText>Geburt</base:BeginnText>
+								<base:Bis>2004-01-26T00:00:00.000</base:Bis>
+								<base:DurchgefuehrtVon>
+									<base:Organisation>
+										<base:GemeindeNr>09999</base:GemeindeNr>
+									</base:Organisation>
+									<base:Benutzer>test@bmi.gv.at</base:Benutzer>
+								</base:DurchgefuehrtVon>
+							</base:EntityErgebnisReferenz>
+							<base:ZMRZahl>000111111111</base:ZMRZahl>
+							<zmr:NatuerlichePerson>
+								<zmr:PersonenName>
+									<Vorname>Hans</Vorname>
+									<Familienname>Mustermann</Familienname>
+								</zmr:PersonenName>
+								<Geschlecht>männlich</Geschlecht>
+								<Geburtsdatum>2001-05-07</Geburtsdatum>
+								<Geburtsort>Wien</Geburtsort>
+								<Geburtsbundesland>Wien</Geburtsbundesland>
+								<Geburtsstaat>Österreich</Geburtsstaat>
+								<zmr:Staatsangehoerigkeit>
+									<ISOCode3>AUT</ISOCode3>
+									<StaatsnameDE>Österreich</StaatsnameDE>
+									<base:EntityErgebnisReferenz>
+										<base:Technisch>
+											<base:EntityID>0000001</base:EntityID>
+											<base:LetzteAenderung>2003-01-01T00:00:00.000</base:LetzteAenderung>
+										</base:Technisch>
+										<base:Von>2003-01-01T00:00:00.000</base:Von>
+										<base:BeginnCode>REISEDOK_ANLEGEN</base:BeginnCode>
+										<base:BeginnText>Reisedokument anlegen</base:BeginnText>
+										<base:DurchgefuehrtVon>
+											<base:Organisation>
+												<base:GemeindeNr>09999</base:GemeindeNr>
+											</base:Organisation>
+											<base:Benutzer>test@bmi.gv.at</base:Benutzer>
+										</base:DurchgefuehrtVon>
+									</base:EntityErgebnisReferenz>
+								</zmr:Staatsangehoerigkeit>
+							</zmr:NatuerlichePerson>
+						</zmr:PersonErgebnis>
+					</zmr:Personendaten>
+					<zmr:Meldedaten>
+						<!-- Historienliste einer Meldung. Nur ein MeldungErgebnis-Element, wenn nur aktuelle Daten -->							
+						<zmr:MeldungErgebnis>
+							<base:ErgebnissatzInfo>
+								<!-- letzter Änderungs-Zeitpunkt des Meldung-Gesamtdatensatzes (mit Auskunftssperren, ...)-->
+								<base:LetzteAenderung>2004-01-26T00:00:00.000</base:LetzteAenderung>
+							</base:ErgebnissatzInfo>							
+							<base:EntityErgebnisReferenz>
+								<base:Technisch>
+									<base:EntityID>00000002</base:EntityID>
+									<!-- letzter Änderungs-Zeitpunkt der Meldung-Entity (ohne Auskunftssperren, ...)-->
+									<base:LetzteAenderung>2004-01-26T00:00:00.000</base:LetzteAenderung>
+								</base:Technisch>
+								<base:Von>2004-01-26T00:00:00.000</base:Von>
+								<base:BeginnCode>WSANM</base:BeginnCode>
+								<base:BeginnText>Wohnsitz anmelden</base:BeginnText>
+								<base:DurchgefuehrtVon>
+									<base:Organisation>
+										<base:BehoerdenNr>099999</base:BehoerdenNr>
+									</base:Organisation>
+								</base:DurchgefuehrtVon>
+							</base:EntityErgebnisReferenz>
+							<zmr:Wohnsitz>
+								<zmr:PostAdresse>
+									<Postleitzahl>1245</Postleitzahl>
+									<Gemeinde>Testgemeinde</Gemeinde>
+									<Gemeindekennziffer>09999</Gemeindekennziffer>
+									<Ortschaft>Testort</Ortschaft>
+									<zmr:Zustelladresse>
+										<Strassenname>Teststrasse</Strassenname>
+										<Orientierungsnummer>1</Orientierungsnummer>
+										<Wohnsitzqualitaet>H</Wohnsitzqualitaet>
+									</zmr:Zustelladresse>
+								</zmr:PostAdresse>
+								<base:Adressstatus>XXX000</base:Adressstatus>
+							</zmr:Wohnsitz>
+							<base:GemeldetVon>2004-01-26T00:00:00.000</base:GemeldetVon>
+							<base:PeriodeCode>WSANM</base:PeriodeCode>
+							<base:PeriodeText>Wohnsitz anmelden</base:PeriodeText>
+						</zmr:MeldungErgebnis>
+					</zmr:Meldedaten>
+					<zmr:PDFDaten>XXYY</zmr:PDFDaten>				
+				</zmr:BehoerdenabfrageDetail>
+			</zmr:BehoerdenabfrageResponse>
+		</base:Response>
+	</soap:Body>
+</soap:Envelope>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/bestandsaenderungen/bestandsaenderungenrequest.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/bestandsaenderungen/bestandsaenderungenrequest.xml
new file mode 100644
index 00000000..db6014cd
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/bestandsaenderungen/bestandsaenderungenrequest.xml
@@ -0,0 +1,26 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:zmr="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#" xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#" xmlns="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+xsi:schemaLocation="http://schemas.xmlsoap.org/soap/envelope/ ../../soapenv.xsd http://bmi.gv.at/namespace/zmr-su/base/20040201# ../../../xsd/allgemein/Service.xsd http://bmi.gv.at/namespace/zmr-su/zmr/20040201# ../../../xsd/zmr/ZMRProxy.xsd">
+<soap:Body>
+		<base:Request>
+			<base:WorkflowInfoClient>
+				<base:ProzessName>Abfragen</base:ProzessName>
+				<base:VorgangName>Bestandsaenderungen</base:VorgangName>
+			</base:WorkflowInfoClient>
+			<base:ClientInfo>
+				<base:Organisation>
+					<base:BehoerdenNr>099999</base:BehoerdenNr>
+				</base:Organisation>			
+				<base:Client>ZMRHTMLClient V3.0</base:Client>
+			</base:ClientInfo>
+			<zmr:BestandsaenderungenRequest>
+				<zmr:BestandsaenderungenInfo>
+					<zmr:AenderungenVon>2004-01-01T00:00:00.000</zmr:AenderungenVon>
+					<zmr:AenderungenBis>2004-07-01T00:00:00.000</zmr:AenderungenBis>
+					<zmr:InclusiveAdressen>true</zmr:InclusiveAdressen>
+					<zmr:Veraenderung>TYP_ZUGANG</zmr:Veraenderung>
+				</zmr:BestandsaenderungenInfo>
+			</zmr:BestandsaenderungenRequest>
+		</base:Request>
+	</soap:Body>
+</soap:Envelope>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/bestandsaenderungen/bestandsaenderungenresponse.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/bestandsaenderungen/bestandsaenderungenresponse.xml
new file mode 100644
index 00000000..b66a6636
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/bestandsaenderungen/bestandsaenderungenresponse.xml
@@ -0,0 +1,83 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:zmr="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#" xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#" xmlns="http://reference.e-government.gv.at/namespace/persondata/de/20040201#" 
+xsi:schemaLocation="http://schemas.xmlsoap.org/soap/envelope/ ../../soapenv.xsd http://bmi.gv.at/namespace/zmr-su/base/20040201# ../../../xsd/allgemein/Service.xsd http://bmi.gv.at/namespace/zmr-su/zmr/20040201# ../../../xsd/zmr/ZMRProxy.xsd">
+	<soap:Body>
+		<base:Response>
+			<base:WorkflowInfoServer>
+				<base:ProzessName>Abfragen</base:ProzessName>
+				<base:ProzessAnzeigeName>Bestandsaenderung</base:ProzessAnzeigeName>
+				<base:ProzessInstanzID>1234</base:ProzessInstanzID>
+				<base:ProzessStatus>A</base:ProzessStatus>
+				<base:SequenzID>00034</base:SequenzID>
+				<base:Subprozess>
+					<base:VorgangName>Bestandsaenderung</base:VorgangName>
+					<base:VorgangAnzeigeName>Bestandsaenderung</base:VorgangAnzeigeName>
+					<base:VorgangStatus>C</base:VorgangStatus>
+					<base:Required>true</base:Required>
+					<base:Visible>true</base:Visible>
+				</base:Subprozess>
+			</base:WorkflowInfoServer>
+			<base:ServerInfo>
+				<base:GeneriertVon>ZMR Server</base:GeneriertVon>
+				<base:GeneriertAm>2004-06-01T00:00:00.000</base:GeneriertAm>
+				<base:ServerTransaktionNr>1234567</base:ServerTransaktionNr>
+			</base:ServerInfo>
+			<zmr:BestandsaenderungenResponse>
+				<zmr:BestandsaenderungenAnfrage>
+					<zmr:BestandsaenderungenInfo>
+						<zmr:AenderungenVon>2004-01-01T00:00:00.000</zmr:AenderungenVon>
+						<zmr:AenderungenBis>2004-07-01T00:00:00.000</zmr:AenderungenBis>
+						<zmr:InclusiveAdressen>true</zmr:InclusiveAdressen>
+						<zmr:Veraenderung>TYP_ZUGANG</zmr:Veraenderung>
+					</zmr:BestandsaenderungenInfo>
+				</zmr:BestandsaenderungenAnfrage>
+				<base:Message>
+					<base:Number>0004</base:Number>
+					<base:Text>Die Abgleichdaten wurden erstellt</base:Text>
+				</base:Message>
+				<zmr:Bestandsaenderungen>
+					<base:GefundeneSaetze>230</base:GefundeneSaetze>
+					<base:AnzahlSaetze>2</base:AnzahlSaetze>
+					<zmr:BestandsaenderungSatz>
+						<zmr:Aenderungszeitpunkt>2004-01-01T08:00:00.000</zmr:Aenderungszeitpunkt>
+						<base:ZMRZahl>000111111111</base:ZMRZahl>
+						<Geburtsdatum>2001-05-07</Geburtsdatum>
+						<Geschlecht>männlich</Geschlecht>
+						<zmr:Bestandsaenderung>
+							<zmr:Veraenderung>TYP_ZUGANG</zmr:Veraenderung>
+							<PostAdresse>
+								<Gemeinde>Testgemeinde</Gemeinde>
+								<Gemeindekennziffer>09999</Gemeindekennziffer>
+								<Ortschaft>Testort</Ortschaft>
+								<Zustelladresse>
+									<Strassenname>Teststraße</Strassenname>
+									<Orientierungsnummer>3</Orientierungsnummer>
+									<Nutzungseinheit>7</Nutzungseinheit>
+								</Zustelladresse>
+							</PostAdresse>
+						</zmr:Bestandsaenderung>
+					</zmr:BestandsaenderungSatz>
+					<zmr:BestandsaenderungSatz>
+						<zmr:Aenderungszeitpunkt>2004-01-02T08:00:00.000</zmr:Aenderungszeitpunkt>
+						<base:ZMRZahl>000111111111</base:ZMRZahl>
+						<Geburtsdatum>2003-05-07</Geburtsdatum>
+						<Geschlecht>weiblich</Geschlecht>
+						<zmr:Bestandsaenderung>
+							<zmr:Veraenderung>TYP_ZUGANG</zmr:Veraenderung>
+							<PostAdresse>
+								<Gemeinde>Testgemeinde</Gemeinde>
+								<Gemeindekennziffer>09999</Gemeindekennziffer>
+								<Ortschaft>Testort</Ortschaft>
+								<Zustelladresse>
+									<Strassenname>Teststraße</Strassenname>
+									<Orientierungsnummer>3</Orientierungsnummer>
+									<Nutzungseinheit>3</Nutzungseinheit>
+								</Zustelladresse>
+							</PostAdresse>
+						</zmr:Bestandsaenderung>
+					</zmr:BestandsaenderungSatz>					
+				</zmr:Bestandsaenderungen>
+			</zmr:BestandsaenderungenResponse>
+		</base:Response>
+	</soap:Body>
+</soap:Envelope>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/bpabfrage/bpabfragerequest.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/bpabfrage/bpabfragerequest.xml
new file mode 100644
index 00000000..73c30b8b
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/bpabfrage/bpabfragerequest.xml
@@ -0,0 +1,31 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:zmr="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#" xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#" xmlns="http://reference.e-government.gv.at/namespace/persondata/de/20040201#" 
+xsi:schemaLocation="http://schemas.xmlsoap.org/soap/envelope/ ../../soapenv.xsd http://bmi.gv.at/namespace/zmr-su/base/20040201# ../../../xsd/allgemein/Service.xsd http://bmi.gv.at/namespace/zmr-su/zmr/20040201# ../../../xsd/zmr/ZMRProxy.xsd">
+	<soap:Body>
+		<base:Request>
+			<base:WorkflowInfoClient>
+				<base:ProzessName>GP_Businesspartnerabfrage_erstellen</base:ProzessName>
+				<base:VorgangName>ZMR_VO_Businesspartnerabfrage_erstellen</base:VorgangName>
+			</base:WorkflowInfoClient>
+			<base:ClientInfo>
+				<base:Organisation>
+					<base:BehoerdenNr>000000</base:BehoerdenNr>
+				</base:Organisation>
+				<base:Client>ZMRHTMLClient V4.0</base:Client>
+			</base:ClientInfo>
+			<zmr:BPAbfrageRequest>
+				<zmr:BPAbfrageInfo>
+					<base:Bezugsfeld>Test</base:Bezugsfeld>
+					<zmr:BPAbfrageAction>SONSTIGES</zmr:BPAbfrageAction>
+				</zmr:BPAbfrageInfo>
+				<NatuerlichePerson>
+					<PersonenName>
+						<Vorname>Max</Vorname>
+						<Familienname>Mustermann</Familienname>
+					</PersonenName>
+					<Geburtsdatum>2005-01-01</Geburtsdatum>
+				</NatuerlichePerson>
+			</zmr:BPAbfrageRequest>
+		</base:Request>
+	</soap:Body>
+</soap:Envelope>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/bpabfrage/bpabfrageresponse.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/bpabfrage/bpabfrageresponse.xml
new file mode 100644
index 00000000..bd7d3a22
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/bpabfrage/bpabfrageresponse.xml
@@ -0,0 +1,68 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:zmr="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#" xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#" xmlns="http://reference.e-government.gv.at/namespace/persondata/de/20040201#" 
+xsi:schemaLocation="http://schemas.xmlsoap.org/soap/envelope/ ../../soapenv.xsd http://bmi.gv.at/namespace/zmr-su/base/20040201# ../../../xsd/allgemein/Service.xsd http://bmi.gv.at/namespace/zmr-su/zmr/20040201# ../../../xsd/zmr/ZMRProxy.xsd">
+	<soap:Body>
+		<base:Response>
+			<ns1:WorkflowInfoServer xmlns:ns1="http://bmi.gv.at/namespace/zmr-su/base/20040201#">
+				<ns1:ProzessName>GP_Businesspartnerabfrage_erstellen</ns1:ProzessName>
+				<ns1:ProzessAnzeigeName>Businesspartnerabfragen</ns1:ProzessAnzeigeName>
+				<ns1:ProzessInstanzID>62700000000195</ns1:ProzessInstanzID>
+				<ns1:ProzessStatus>C</ns1:ProzessStatus>
+				<ns1:SequenzID>0</ns1:SequenzID>
+				<ns1:Subprozess>
+					<ns1:VorgangName>ZMR_VO_Businesspartnerabfrage_erstellen</ns1:VorgangName>
+					<ns1:VorgangAnzeigeName>Businesspartnerabfrage</ns1:VorgangAnzeigeName>
+					<ns1:VorgangStatus>C</ns1:VorgangStatus>
+					<ns1:Required>false</ns1:Required>
+					<ns1:Visible>true</ns1:Visible>
+				</ns1:Subprozess>
+			</ns1:WorkflowInfoServer>
+			<ns1:ServerInfo xmlns:ns1="http://bmi.gv.at/namespace/zmr-su/base/20040201#">
+				<ns1:GeneriertVon>ZMR-Server</ns1:GeneriertVon>
+				<ns1:GeneriertAm>2005-03-10T13:38:22.617</ns1:GeneriertAm>
+				<ns1:ServerTransaktionNr>32900000000018</ns1:ServerTransaktionNr>
+			</ns1:ServerInfo>
+			<zmr:BPAbfrageResponse>
+				<zmr:BPAbfrageAnfrage>
+					<zmr:BPAbfrageInfo>
+						<base:Bezugsfeld>Test</base:Bezugsfeld>
+						<zmr:BPAbfrageAction>SONSTIGES</zmr:BPAbfrageAction>
+					</zmr:BPAbfrageInfo>
+					<NatuerlichePerson>
+						<PersonenName>
+							<Vorname>Max</Vorname>
+							<Familienname>Mustermann</Familienname>
+						</PersonenName>
+						<Geburtsdatum>2005-01-01</Geburtsdatum>
+					</NatuerlichePerson>
+				</zmr:BPAbfrageAnfrage>
+				<base:Message>
+					<base:Number>5020</base:Number>
+					<base:Text>Person gefunden</base:Text>
+				</base:Message>
+				<zmr:BPAbfrageErgebnis>
+					<NatuerlichePerson>
+						<PersonenName>
+							<Vorname>Max</Vorname>
+							<Familienname>Mustermann</Familienname>
+						</PersonenName>
+						<Geburtsdatum>2005-01-01</Geburtsdatum>
+					</NatuerlichePerson>
+					<PostAdresse>
+						<Postleitzahl>1160</Postleitzahl>
+						<Ortschaft>Wien,Ottakring</Ortschaft>
+						<Zustelladresse>
+							<Strassenname>Ottakringer Straße</Strassenname>
+							<Orientierungsnummer>101</Orientierungsnummer>
+							<Nutzungseinheit>7</Nutzungseinheit>
+							<Abgabestelle>false</Abgabestelle>
+							<Nutzungseinheitlaufnummer>0003</Nutzungseinheitlaufnummer>
+						</Zustelladresse>
+					</PostAdresse>
+					<zmr:AktMeldesatz>true</zmr:AktMeldesatz>
+					<zmr:PDFDaten>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</zmr:PDFDaten>
+				</zmr:BPAbfrageErgebnis>
+			</zmr:BPAbfrageResponse>
+		</base:Response>
+	</soap:Body>
+</soap:Envelope>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/datenabgleich/datenabgleichrequest.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/datenabgleich/datenabgleichrequest.xml
new file mode 100644
index 00000000..07c501c6
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/datenabgleich/datenabgleichrequest.xml
@@ -0,0 +1,26 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:zmr="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#" xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#" xmlns="http://reference.e-government.gv.at/namespace/persondata/de/20040201#" 
+xsi:schemaLocation="http://schemas.xmlsoap.org/soap/envelope/ ../../soapenv.xsd http://bmi.gv.at/namespace/zmr-su/base/20040201# ../../../xsd/allgemein/Service.xsd http://bmi.gv.at/namespace/zmr-su/zmr/20040201# ../../../xsd/zmr/ZMRProxy.xsd">
+	<soap:Body>
+		<base:Request>
+			<base:WorkflowInfoClient>
+				<base:ProzessName>GP_Datenabgleich_anfordern</base:ProzessName>
+				<base:VorgangName>ZMR_VO_Datenabgleich_anfordern</base:VorgangName>			
+			</base:WorkflowInfoClient>
+			<base:ClientInfo>
+				<base:Organisation>
+					<base:BehoerdenNr>000000</base:BehoerdenNr>
+				</base:Organisation>
+				<base:Client>Test</base:Client>
+			</base:ClientInfo>
+			<zmr:DatenabgleichRequest>
+				<zmr:DatenabgleichInfo>
+					<base:GemeindeNr>91601</base:GemeindeNr>
+					<zmr:DatenabgleichAction>AENDERUNGEN</zmr:DatenabgleichAction>
+					<zmr:AbgleichVon>2004-01-01T00:00:00.000</zmr:AbgleichVon>
+					<zmr:AbgleichBis>2004-02-01T00:00:00.000</zmr:AbgleichBis>
+				</zmr:DatenabgleichInfo>
+			</zmr:DatenabgleichRequest>
+		</base:Request>
+	</soap:Body>
+</soap:Envelope>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/datenabgleich/datenabgleichresponse.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/datenabgleich/datenabgleichresponse.xml
new file mode 100644
index 00000000..86d96963
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/datenabgleich/datenabgleichresponse.xml
@@ -0,0 +1,91 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:zmr="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#" xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#" xmlns="http://reference.e-government.gv.at/namespace/persondata/de/20040201#" 
+xsi:schemaLocation="http://schemas.xmlsoap.org/soap/envelope/ ../../soapenv.xsd http://bmi.gv.at/namespace/zmr-su/base/20040201# ../../../xsd/allgemein/Service.xsd http://bmi.gv.at/namespace/zmr-su/zmr/20040201# ../../../xsd/zmr/ZMRProxy.xsd">
+	<soap:Body>
+		<base:Response>
+			<base:WorkflowInfoServer>
+				<base:ProzessName>GP_Datenabgleich_anfordern</base:ProzessName>
+				<base:ProzessInstanzID>1234</base:ProzessInstanzID>
+				<base:ProzessStatus>C</base:ProzessStatus>
+				<base:SequenzID>00034</base:SequenzID>
+				<base:Subprozess>
+					<base:VorgangName>ZMR_VO_Datenabgleich_anfordern</base:VorgangName>
+					<base:VorgangStatus>C</base:VorgangStatus>
+					<base:Required>false</base:Required>
+					<base:Visible>true</base:Visible>
+				</base:Subprozess>
+			</base:WorkflowInfoServer>
+			<base:ServerInfo>
+				<base:GeneriertVon>ZMR Server</base:GeneriertVon>
+				<base:GeneriertAm>2004-06-01T00:00:00.000</base:GeneriertAm>
+				<base:ServerTransaktionNr>1234567</base:ServerTransaktionNr>
+			</base:ServerInfo>
+			<zmr:DatenabgleichResponse>
+				<zmr:DatenabgleichAnfrage>
+					<zmr:DatenabgleichInfo>
+						<base:GemeindeNr>09999</base:GemeindeNr>
+						<zmr:DatenabgleichAction>AENDERUNGEN</zmr:DatenabgleichAction>
+						<zmr:AbgleichVon>2004-01-01T00:00:00.000</zmr:AbgleichVon>
+						<zmr:AbgleichBis>2004-02-01T00:00:00.000</zmr:AbgleichBis>
+						<base:InclusivHistorie>false</base:InclusivHistorie>
+					</zmr:DatenabgleichInfo>
+				</zmr:DatenabgleichAnfrage>
+				<base:Message>
+					<base:Number>0004</base:Number>
+					<base:Text>Die Abgleichdaten wurden erstellt</base:Text>
+				</base:Message>
+				<zmr:Datenabgleich>
+					<base:GefundeneSaetze>230</base:GefundeneSaetze>
+					<base:AnzahlSaetze>2</base:AnzahlSaetze>
+					<zmr:DatenabgleichSatz>
+						<zmr:Aenderungszeitpunkt>2004-01-01T08:00:00.000</zmr:Aenderungszeitpunkt>
+						<zmr:PersonReferenz>
+							<base:Technisch>
+								<base:EntityID>0000001</base:EntityID>
+								<base:LetzteAenderung>2004-01-26T00:00:00.000</base:LetzteAenderung>
+							</base:Technisch>
+							<base:ZMRZahl>000111111111</base:ZMRZahl>
+						</zmr:PersonReferenz>
+						<Familienname>Mustermann</Familienname>
+						<Vorname>Max</Vorname>
+						<Geburtsdatum>2001-05-07</Geburtsdatum>
+						<zmr:PersonAbgleich>
+							<zmr:DatenAktiv>
+								<zmr:Person>
+									<!-- geaenderte Personendaten (ohne Staatsbuergerschaft, Reisedokument, ... -->
+									<base:EntityErgebnisReferenz>
+										<base:Technisch>
+											<base:EntityID>0000001</base:EntityID>
+											<base:LetzteAenderung>2004-01-26T00:00:00.000</base:LetzteAenderung>
+										</base:Technisch>
+										<base:Von>2004-01-01T08:00:00.000</base:Von>
+										<base:BeginnCode>PAN</base:BeginnCode>
+										<base:BeginnText>Personensnlage</base:BeginnText>
+										<base:DurchgefuehrtVon>
+											<base:Organisation>
+												<base:GemeindeNr>09999</base:GemeindeNr>
+											</base:Organisation>
+											<base:Benutzer>test@bmi.gv.at</base:Benutzer>
+										</base:DurchgefuehrtVon>
+									</base:EntityErgebnisReferenz>
+									<base:ZMRZahl>000111111111</base:ZMRZahl>
+									<zmr:NatuerlichePerson>
+										<zmr:PersonenName>
+											<Vorname>Max</Vorname>
+											<Familienname>Mustermann</Familienname>
+										</zmr:PersonenName>
+										<Geschlecht>männlich</Geschlecht>
+										<Geburtsdatum>2001-05-07</Geburtsdatum>
+										<Geburtsort>Wien</Geburtsort>
+										<Geburtsbundesland>Wien</Geburtsbundesland>
+										<Geburtsstaat>Österreich</Geburtsstaat>
+									</zmr:NatuerlichePerson>								
+								</zmr:Person>							
+							</zmr:DatenAktiv>
+						</zmr:PersonAbgleich>
+					</zmr:DatenabgleichSatz>
+				</zmr:Datenabgleich>
+			</zmr:DatenabgleichResponse>
+		</base:Response>
+	</soap:Body>
+</soap:Envelope>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/fremdenabfrage/fremdenabfragerequest.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/fremdenabfrage/fremdenabfragerequest.xml
new file mode 100644
index 00000000..6e9ad235
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/fremdenabfrage/fremdenabfragerequest.xml
@@ -0,0 +1,31 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:zmr="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#" xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#" xmlns="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+xsi:schemaLocation="http://schemas.xmlsoap.org/soap/envelope/ ../../soapenv.xsd http://bmi.gv.at/namespace/zmr-su/base/20040201# ../../../xsd/allgemein/Service.xsd http://bmi.gv.at/namespace/zmr-su/zmr/20040201# ../../../xsd/zmr/ZMRProxy.xsd">
+<soap:Body>
+		<base:Request>
+			<base:WorkflowInfoClient>
+				<base:ProzessName>GP_Fremden_abfrage</base:ProzessName>
+				<base:VorgangName>ZPR_VO_Fremden_abfrage</base:VorgangName>
+			</base:WorkflowInfoClient>
+			<base:ClientInfo>
+				<base:Organisation>
+					<base:BehoerdenNr>000000</base:BehoerdenNr>
+				</base:Organisation>
+				<base:Client>Test</base:Client>
+			</base:ClientInfo>
+			<zmr:FremdenabfrageRequest>
+				<zmr:FremdenabfrageInfo>
+					<base:Bezugsfeld>Test</base:Bezugsfeld>
+					<zmr:FremdenabfrageAction>NICHT_OESTERREICH</zmr:FremdenabfrageAction>
+					<base:Bezirkskennung>916</base:Bezirkskennung>
+					<base:InclusivHistorie>false</base:InclusivHistorie>
+					<base:Formalisiert>false</base:Formalisiert>
+					<zmr:AlsDruck>true</zmr:AlsDruck>
+					<base:AnzahlSaetze>10</base:AnzahlSaetze>
+				</zmr:FremdenabfrageInfo>
+				<base:GemeldetVon>2004-01-01T00:00:00.000</base:GemeldetVon>
+				<base:GemeldetBis>2004-01-07T00:00:00.000</base:GemeldetBis>
+			</zmr:FremdenabfrageRequest>
+		</base:Request>
+	</soap:Body>
+</soap:Envelope>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/fremdenabfrage/fremdenabfrageresponse.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/fremdenabfrage/fremdenabfrageresponse.xml
new file mode 100644
index 00000000..7f0adb0d
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/fremdenabfrage/fremdenabfrageresponse.xml
@@ -0,0 +1,45 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:zmr="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#" xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#" xmlns="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+xsi:schemaLocation="http://schemas.xmlsoap.org/soap/envelope/ ../../soapenv.xsd http://bmi.gv.at/namespace/zmr-su/base/20040201# ../../../xsd/allgemein/Service.xsd http://bmi.gv.at/namespace/zmr-su/zmr/20040201# ../../../xsd/zmr/ZMRProxy.xsd">
+<soap:Body>
+		<base:Response>
+			<base:WorkflowInfoServer>
+				<base:ProzessName>GP_Fremden_abfrage</base:ProzessName>
+				<base:ProzessInstanzID>1234</base:ProzessInstanzID>
+				<base:ProzessStatus>A</base:ProzessStatus>
+				<base:SequenzID>00034</base:SequenzID>
+				<base:Subprozess>
+					<base:VorgangName>ZPR_VO_Fremden_abfrage</base:VorgangName>
+					<base:VorgangStatus>A</base:VorgangStatus>
+					<base:Required>false</base:Required>
+					<base:Visible>true</base:Visible>
+				</base:Subprozess>
+			</base:WorkflowInfoServer>
+			<base:ServerInfo>
+				<base:GeneriertVon>ZMR Server</base:GeneriertVon>
+				<base:GeneriertAm>2004-01-26T00:00:00.000</base:GeneriertAm>
+				<base:ServerTransaktionNr>1234567</base:ServerTransaktionNr>
+			</base:ServerInfo>
+			<zmr:FremdenabfrageResponse>
+				<zmr:FremdenabfrageAnfrage>
+					<zmr:FremdenabfrageInfo>
+						<base:Bezugsfeld>Test</base:Bezugsfeld>
+						<zmr:FremdenabfrageAction>NICHT_OESTERREICH</zmr:FremdenabfrageAction>
+						<base:Bezirkskennung>916</base:Bezirkskennung>
+						<base:InclusivHistorie>false</base:InclusivHistorie>
+						<base:Formalisiert>false</base:Formalisiert>
+						<zmr:AlsDruck>true</zmr:AlsDruck>
+						<base:AnzahlSaetze>10</base:AnzahlSaetze>
+					</zmr:FremdenabfrageInfo>
+					<base:GemeldetVon>2004-01-01T00:00:00.000</base:GemeldetVon>
+					<base:GemeldetBis>2004-01-07T00:00:00.000</base:GemeldetBis>					
+				</zmr:FremdenabfrageAnfrage>
+				<base:Message>
+					<base:Number>0003</base:Number>
+					<base:Text>Es wurde 1 Personen im ZMR gefunden</base:Text>
+				</base:Message>
+				<zmr:PDFDaten>XXYY</zmr:PDFDaten>
+			</zmr:FremdenabfrageResponse>
+		</base:Response>
+	</soap:Body>
+</soap:Envelope>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/gisadressabfrage/gisadressabfragerequest1.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/gisadressabfrage/gisadressabfragerequest1.xml
new file mode 100644
index 00000000..50bd6226
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/gisadressabfrage/gisadressabfragerequest1.xml
@@ -0,0 +1,30 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:zmr="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#" xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#" xmlns="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+xsi:schemaLocation="http://schemas.xmlsoap.org/soap/envelope/ ../../soapenv.xsd http://bmi.gv.at/namespace/zmr-su/base/20040201# ../../../xsd/allgemein/Service.xsd http://bmi.gv.at/namespace/zmr-su/zmr/20040201# ../../../xsd/zmr/ZMRProxy.xsd">
+	<soap:Body>
+		<base:Request>
+			<base:WorkflowInfoClient>
+				<base:ProzessName>GP_GIS_Adressabfrage</base:ProzessName>
+				<base:VorgangName>ZMR_VO_GIS_Adressabfrage</base:VorgangName>
+			</base:WorkflowInfoClient>
+			<base:ClientInfo>
+				<base:Organisation>
+					<base:BehoerdenNr>000000</base:BehoerdenNr>
+				</base:Organisation>
+				<base:Client>Test</base:Client>
+			</base:ClientInfo>
+			<zmr:GISAdressabfrageRequest>
+				<PostAdresse>
+					<Gemeinde>Testgemeinde</Gemeinde>
+					<Gemeindekennziffer>09999</Gemeindekennziffer>
+					<Ortschaft>Testort</Ortschaft>
+					<Zustelladresse>
+						<Strassenname>Teststraße</Strassenname>
+						<Orientierungsnummer>3</Orientierungsnummer>
+						<Nutzungseinheit>3</Nutzungseinheit>
+					</Zustelladresse>
+				</PostAdresse>
+			</zmr:GISAdressabfrageRequest>
+		</base:Request>
+	</soap:Body>
+</soap:Envelope>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/gisadressabfrage/gisadressabfragerequest2.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/gisadressabfrage/gisadressabfragerequest2.xml
new file mode 100644
index 00000000..86ddb20e
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/gisadressabfrage/gisadressabfragerequest2.xml
@@ -0,0 +1,23 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:zmr="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#" xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#" xmlns="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+xsi:schemaLocation="http://schemas.xmlsoap.org/soap/envelope/ ../../soapenv.xsd http://bmi.gv.at/namespace/zmr-su/base/20040201# ../../../xsd/allgemein/Service.xsd http://bmi.gv.at/namespace/zmr-su/zmr/20040201# ../../../xsd/zmr/ZMRProxy.xsd">
+	<soap:Body>
+		<base:Request>
+			<base:WorkflowInfoClient>
+				<base:ProzessName>GP_GIS_Adressabfrage</base:ProzessName>
+				<base:ProzessInstanzID>1234</base:ProzessInstanzID>
+				<base:SequenzID>00034</base:SequenzID>
+				<base:VorgangName>ZMR_VO_GIS_Adressabfrage_Druck</base:VorgangName>
+			</base:WorkflowInfoClient>
+			<base:ClientInfo>
+				<base:Organisation>
+					<base:BehoerdenNr>099999</base:BehoerdenNr>
+				</base:Organisation>			
+				<base:Client>ZMRHTMLClient V3.0</base:Client>
+			</base:ClientInfo>
+			<zmr:GISAdressabfrageDetailRequest>
+				<zmr:Bestaetigt>true</zmr:Bestaetigt>
+			</zmr:GISAdressabfrageDetailRequest>
+		</base:Request>
+	</soap:Body>
+</soap:Envelope>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/gisadressabfrage/gisadressabfrageresponse1.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/gisadressabfrage/gisadressabfrageresponse1.xml
new file mode 100644
index 00000000..f17c9596
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/gisadressabfrage/gisadressabfrageresponse1.xml
@@ -0,0 +1,50 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:zmr="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#" xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#" xmlns="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+xsi:schemaLocation="http://schemas.xmlsoap.org/soap/envelope/ ../../soapenv.xsd http://bmi.gv.at/namespace/zmr-su/base/20040201# ../../../xsd/allgemein/Service.xsd http://bmi.gv.at/namespace/zmr-su/zmr/20040201# ../../../xsd/zmr/ZMRProxy.xsd">
+	<soap:Body>
+		<base:Response>
+			<base:WorkflowInfoServer>
+				<base:ProzessName>GP_GIS_Adressabfrage</base:ProzessName>
+				<base:ProzessInstanzID>1234</base:ProzessInstanzID>
+				<base:ProzessStatus>A</base:ProzessStatus>
+				<base:SequenzID>00034</base:SequenzID>
+				<base:Subprozess>
+					<base:VorgangName>ZMR_VO_GIS_Adressabfrage</base:VorgangName>
+					<base:VorgangStatus>C</base:VorgangStatus>
+					<base:Required>false</base:Required>
+					<base:Visible>true</base:Visible>
+				</base:Subprozess>
+				<base:Subprozess>
+					<base:VorgangName>ZMR_VO_GIS_Adressabfrage_Druck</base:VorgangName>
+					<base:VorgangStatus>A</base:VorgangStatus>
+					<base:Required>false</base:Required>
+					<base:Visible>true</base:Visible>
+				</base:Subprozess>				
+			</base:WorkflowInfoServer>
+			<base:ServerInfo>
+				<base:GeneriertVon>ZMR Server</base:GeneriertVon>
+				<base:GeneriertAm>2004-01-26T00:00:00.000</base:GeneriertAm>
+				<base:ServerTransaktionNr>1234567</base:ServerTransaktionNr>
+			</base:ServerInfo>
+			<zmr:GISAdressabfrageResponse>
+				<zmr:GISAdressabfrageAnfrage>
+					<PostAdresse>
+						<Gemeinde>Testgemeinde</Gemeinde>
+						<Gemeindekennziffer>09999</Gemeindekennziffer>
+						<Ortschaft>Testort</Ortschaft>
+						<Zustelladresse>
+							<Strassenname>Teststraße</Strassenname>
+							<Orientierungsnummer>3</Orientierungsnummer>
+							<Nutzungseinheit>3</Nutzungseinheit>
+						</Zustelladresse>
+					</PostAdresse>				
+				</zmr:GISAdressabfrageAnfrage>
+				<base:Message>
+					<base:Number>023</base:Number>
+					<base:Text>Personen gefunden.</base:Text>
+				</base:Message>
+				<base:GefundeneSaetze>2</base:GefundeneSaetze>
+			</zmr:GISAdressabfrageResponse>
+		</base:Response>
+	</soap:Body>
+</soap:Envelope>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/gisadressabfrage/gisadressabfrageresponse2.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/gisadressabfrage/gisadressabfrageresponse2.xml
new file mode 100644
index 00000000..68018bfc
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/gisadressabfrage/gisadressabfrageresponse2.xml
@@ -0,0 +1,91 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:zmr="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#" xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#" xmlns="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+xsi:schemaLocation="http://schemas.xmlsoap.org/soap/envelope/ ../../soapenv.xsd http://bmi.gv.at/namespace/zmr-su/base/20040201# ../../../xsd/allgemein/Service.xsd http://bmi.gv.at/namespace/zmr-su/zmr/20040201# ../../../xsd/zmr/ZMRProxy.xsd">
+	<soap:Body>
+		<base:Response>
+			<base:WorkflowInfoServer>
+				<base:ProzessName>GP_GIS_Adressabfrage</base:ProzessName>
+				<base:ProzessInstanzID>1234</base:ProzessInstanzID>
+				<base:ProzessStatus>C</base:ProzessStatus>
+				<base:SequenzID>00134</base:SequenzID>
+				<base:Subprozess>
+					<base:VorgangName>ZMR_VO_GIS_Adressabfrage</base:VorgangName>
+					<base:VorgangStatus>C</base:VorgangStatus>
+					<base:Required>false</base:Required>
+					<base:Visible>true</base:Visible>
+				</base:Subprozess>
+				<base:Subprozess>
+					<base:VorgangName>ZMR_VO_GIS_Adressabfrage_Druck</base:VorgangName>
+					<base:VorgangStatus>C</base:VorgangStatus>
+					<base:Required>false</base:Required>
+					<base:Visible>true</base:Visible>
+				</base:Subprozess>				
+			</base:WorkflowInfoServer>
+			<base:ServerInfo>
+				<base:GeneriertVon>ZMR Server</base:GeneriertVon>
+				<base:GeneriertAm>2004-01-26T00:00:00.000</base:GeneriertAm>
+				<base:ServerTransaktionNr>1234567</base:ServerTransaktionNr>
+			</base:ServerInfo>
+			<zmr:GISAdressabfrageDetailResponse>
+				<zmr:GISAdressabfrageAnfrage>
+					<PostAdresse>
+						<Gemeinde>Testgemeinde</Gemeinde>
+						<Gemeindekennziffer>09999</Gemeindekennziffer>
+						<Ortschaft>Testort</Ortschaft>
+						<Zustelladresse>
+							<Strassenname>Teststraße</Strassenname>
+							<Orientierungsnummer>3</Orientierungsnummer>
+							<Nutzungseinheit>3</Nutzungseinheit>
+						</Zustelladresse>
+					</PostAdresse>				
+				</zmr:GISAdressabfrageAnfrage>
+				<base:Message>
+					<base:Number>023</base:Number>
+					<base:Text>Personen gefunden.</base:Text>
+				</base:Message>
+				<zmr:GISAdressabfrageErgebnis>
+					<base:GefundeneSaetze>2</base:GefundeneSaetze>
+					<PersonenDaten>
+						<NatuerlichePerson>
+							<PersonenName>
+								<Vorname>Max</Vorname>
+								<Familienname>Mustermann</Familienname>
+							</PersonenName>
+							<Geburtsdatum>2003-01-01</Geburtsdatum>	
+						</NatuerlichePerson>
+						<PostAdresse>
+							<Gemeinde>Testgemeinde</Gemeinde>
+							<Gemeindekennziffer>09999</Gemeindekennziffer>
+							<Ortschaft>Testort</Ortschaft>
+							<Zustelladresse>
+								<Strassenname>Teststraße</Strassenname>
+								<Orientierungsnummer>3</Orientierungsnummer>
+								<Nutzungseinheit>3</Nutzungseinheit>
+							</Zustelladresse>
+						</PostAdresse>							
+					</PersonenDaten>
+					<PersonenDaten>
+						<NatuerlichePerson>
+							<PersonenName>
+								<Vorname>Ida</Vorname>
+								<Familienname>Mustermann</Familienname>
+							</PersonenName>
+							<Geburtsdatum>2004-01-01</Geburtsdatum>	
+						</NatuerlichePerson>
+						<PostAdresse>
+							<Gemeinde>Testgemeinde</Gemeinde>
+							<Gemeindekennziffer>09999</Gemeindekennziffer>
+							<Ortschaft>Testort</Ortschaft>
+							<Zustelladresse>
+								<Strassenname>Teststraße</Strassenname>
+								<Orientierungsnummer>3</Orientierungsnummer>
+								<Nutzungseinheit>3</Nutzungseinheit>
+							</Zustelladresse>
+						</PostAdresse>							
+					</PersonenDaten>					
+					<zmr:PDFDaten>WFhYWVlZ</zmr:PDFDaten>
+				</zmr:GISAdressabfrageErgebnis>
+			</zmr:GISAdressabfrageDetailResponse>
+		</base:Response>
+	</soap:Body>
+</soap:Envelope>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/hauseigentuemerabfrage/hauseigentuemerabfragerequest.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/hauseigentuemerabfrage/hauseigentuemerabfragerequest.xml
new file mode 100644
index 00000000..c35e07e2
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/hauseigentuemerabfrage/hauseigentuemerabfragerequest.xml
@@ -0,0 +1,35 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:zmr="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#" xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#" xmlns="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+xsi:schemaLocation="http://schemas.xmlsoap.org/soap/envelope/ ../../soapenv.xsd http://bmi.gv.at/namespace/zmr-su/base/20040201# ../../../xsd/allgemein/Service.xsd http://bmi.gv.at/namespace/zmr-su/zmr/20040201# ../../../xsd/zmr/ZMRProxy.xsd">
+<soap:Body>
+		<base:Request>
+			<base:WorkflowInfoClient>
+				<base:ProzessName>GP_Hauseigentuemerabfrage_erstellen</base:ProzessName>
+				<base:VorgangName>ZMR_VO_Hauseigentuemerabfrage_erstellen</base:VorgangName>
+			</base:WorkflowInfoClient>
+			<base:ClientInfo>
+				<base:Organisation>
+					<base:BehoerdenNr>000000</base:BehoerdenNr>
+				</base:Organisation>
+				<base:Client>Test</base:Client>
+			</base:ClientInfo>
+			<zmr:HauseigentuemerAbfrageRequest>
+				<zmr:HauseigentuemerAbfrageInfo>
+					<base:Bezugsfeld>Test</base:Bezugsfeld>
+					<zmr:InclusiveAuskunftsgesperrt>false</zmr:InclusiveAuskunftsgesperrt>
+					<base:AnzahlSaetze>10</base:AnzahlSaetze>
+				</zmr:HauseigentuemerAbfrageInfo>
+				<PostAdresse>
+					<Postleitzahl>1245</Postleitzahl>
+					<Gemeinde>Testgemeinde</Gemeinde>
+					<Gemeindekennziffer>09999</Gemeindekennziffer>
+					<Ortschaft>Testort</Ortschaft>
+					<Zustelladresse>
+						<Strassenname>Teststrasse</Strassenname>
+						<Orientierungsnummer>1</Orientierungsnummer>
+					</Zustelladresse>
+				</PostAdresse>
+			</zmr:HauseigentuemerAbfrageRequest>
+		</base:Request>
+	</soap:Body>
+</soap:Envelope>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/hauseigentuemerabfrage/hauseigentuemerabfrageresponse.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/hauseigentuemerabfrage/hauseigentuemerabfrageresponse.xml
new file mode 100644
index 00000000..e954abd5
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/hauseigentuemerabfrage/hauseigentuemerabfrageresponse.xml
@@ -0,0 +1,213 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:zmr="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#" xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#" xmlns="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+xsi:schemaLocation="http://schemas.xmlsoap.org/soap/envelope/ ../../soapenv.xsd http://bmi.gv.at/namespace/zmr-su/base/20040201# ../../../xsd/allgemein/Service.xsd http://bmi.gv.at/namespace/zmr-su/zmr/20040201# ../../../xsd/zmr/ZMRProxy.xsd">
+<soap:Body>
+		<base:Response>
+			<base:WorkflowInfoServer>
+				<base:ProzessName>GP_Hauseigentuemerabfrage_erstellen</base:ProzessName>
+				<base:ProzessInstanzID>1234</base:ProzessInstanzID>
+				<base:ProzessStatus>A</base:ProzessStatus>
+				<base:SequenzID>00034</base:SequenzID>
+				<base:Subprozess>
+					<base:VorgangName>ZMR_VO_Hauseigentuemerabfrage_erstellen</base:VorgangName>
+					<base:VorgangStatus>A</base:VorgangStatus>
+					<base:Required>false</base:Required>
+					<base:Visible>true</base:Visible>
+				</base:Subprozess>
+				<base:Subprozess>
+					<base:VorgangName>ZMR_VO_Hauseigentuemerabfrage_Druck_erstellen</base:VorgangName>
+					<base:VorgangStatus>A</base:VorgangStatus>
+					<base:Required>false</base:Required>
+					<base:Visible>true</base:Visible>
+				</base:Subprozess>				
+			</base:WorkflowInfoServer>
+			<base:ServerInfo>
+				<base:GeneriertVon>ZMR Server</base:GeneriertVon>
+				<base:GeneriertAm>2004-01-26T00:00:00.000</base:GeneriertAm>
+				<base:ServerTransaktionNr>1234567</base:ServerTransaktionNr>
+			</base:ServerInfo>
+			<zmr:HauseigentuemerAbfrageResponse>
+				<zmr:HauseigentuemerAbfrageAnfrage>
+					<zmr:HauseigentuemerAbfrageInfo>
+						<base:Bezugsfeld>Test</base:Bezugsfeld>
+						<zmr:InclusiveAuskunftsgesperrt>false</zmr:InclusiveAuskunftsgesperrt>
+						<base:AnzahlSaetze>10</base:AnzahlSaetze>
+					</zmr:HauseigentuemerAbfrageInfo>
+					<PostAdresse>
+						<Postleitzahl>1245</Postleitzahl>
+						<Gemeinde>Testgemeinde</Gemeinde>
+						<Gemeindekennziffer>09999</Gemeindekennziffer>
+						<Ortschaft>Testort</Ortschaft>
+						<Zustelladresse>
+							<Strassenname>Teststrasse</Strassenname>
+							<Orientierungsnummer>1</Orientierungsnummer>
+						</Zustelladresse>
+					</PostAdresse>
+				</zmr:HauseigentuemerAbfrageAnfrage>
+				<base:Message>
+					<base:Number>0003</base:Number>
+					<base:Text>Es wurde 1 Personen im ZMR gefunden</base:Text>
+				</base:Message>
+				<zmr:HauseigentuemerAbfrageErgebnis>
+					<base:GefundeneSaetze>1</base:GefundeneSaetze>
+					<base:SaetzeVon>0</base:SaetzeVon>
+					<base:SaetzeBis>1</base:SaetzeBis>
+					<zmr:PersonErgebnisSatz>
+						<!-- 1. gelieferte Person im Suchergebnis (Personendaten + Meldedaten, historisch und aktuell) -->
+						<zmr:Personendaten>
+							<!-- Historienliste der Personendaten. Nur ein PersonErgebnis-Element, wenn nur aktuelle Daten -->
+							<zmr:PersonErgebnis>
+								<!-- aktueller Personendaten Gesamtdatensatz -->
+								<base:ErgebnissatzInfo>
+									<!-- letzter Änderungs-Zeitpunkt des Person-Gesamtdatensatzes (mit Staatsangehörigkeiten, ...)-->
+									<base:LetzteAenderung>2004-01-26T00:00:00.000</base:LetzteAenderung>
+								</base:ErgebnissatzInfo>								
+								<base:EntityErgebnisReferenz>
+									<base:Technisch>
+										<base:EntityID>0000001</base:EntityID>
+										<!-- letzter Änderungs-Zeitpunkt der Person-Entity (ohne Staatsangehörigkeiten, ...)-->
+										<base:LetzteAenderung>2004-01-26T00:00:00.000</base:LetzteAenderung>
+									</base:Technisch>
+									<base:Von>2004-01-26T00:00:00.000</base:Von>
+									<base:BeginnCode>AMKOR</base:BeginnCode>
+									<base:BeginnText>Amtliche Korrektur</base:BeginnText>
+									<base:DurchgefuehrtVon>
+										<base:Organisation>
+											<base:GemeindeNr>09999</base:GemeindeNr>
+										</base:Organisation>
+										<base:Benutzer>test@bmi.gv.at</base:Benutzer>
+									</base:DurchgefuehrtVon>
+								</base:EntityErgebnisReferenz>
+								<base:ZMRZahl>000111111111</base:ZMRZahl>
+								<zmr:NatuerlichePerson>
+									<zmr:PersonenName>
+										<Vorname>Maximilian</Vorname>
+										<Familienname>Mustermann</Familienname>
+									</zmr:PersonenName>
+									<Geschlecht>männlich</Geschlecht>
+									<Geburtsdatum>2001-05-07</Geburtsdatum>
+									<Geburtsort>Wien</Geburtsort>
+									<Geburtsbundesland>Wien</Geburtsbundesland>
+									<Geburtsstaat>Österreich</Geburtsstaat>
+									<zmr:Staatsangehoerigkeit>
+										<ISOCode3>AUT</ISOCode3>
+										<StaatsnameDE>Österreich</StaatsnameDE>
+										<base:EntityErgebnisReferenz>
+											<base:Technisch>
+												<base:EntityID>0000001</base:EntityID>
+												<base:LetzteAenderung>2003-01-01T00:00:00.000</base:LetzteAenderung>
+											</base:Technisch>
+											<base:Von>2003-01-01T00:00:00.000</base:Von>
+											<base:BeginnCode>REISEDOK_ANLEGEN</base:BeginnCode>
+											<base:BeginnText>Reisedokument anlegen</base:BeginnText>
+											<base:DurchgefuehrtVon>
+												<base:Organisation>
+													<base:GemeindeNr>09999</base:GemeindeNr>
+												</base:Organisation>
+												<base:Benutzer>test@bmi.gv.at</base:Benutzer>
+											</base:DurchgefuehrtVon>
+										</base:EntityErgebnisReferenz>
+									</zmr:Staatsangehoerigkeit>
+								</zmr:NatuerlichePerson>
+							</zmr:PersonErgebnis>
+							<zmr:PersonErgebnis>
+								<!-- historischer Personendaten Gesamtdatensatz (durch Vornamen-Änderung entstanden. Die Staatsagehörigkeit wurde nicht geändert und ist somit mit der im aktuellen Satz identisch-->
+								<base:ErgebnissatzInfo>
+									<base:LetzteAenderung>2004-01-26T00:00:00.000</base:LetzteAenderung>
+								</base:ErgebnissatzInfo>
+								<base:EntityErgebnisReferenz>								
+									<base:Technisch>
+										<base:EntityID>0000001</base:EntityID>
+										<base:LetzteAenderung>2004-01-26T00:00:00.000</base:LetzteAenderung>
+									</base:Technisch>
+									<base:Von>2003-01-01T00:00:00.000</base:Von>
+									<base:BeginnCode>GEBURT</base:BeginnCode>
+									<base:BeginnText>Geburt</base:BeginnText>
+									<base:Bis>2004-01-26T00:00:00.000</base:Bis>
+									<base:DurchgefuehrtVon>
+										<base:Organisation>
+											<base:GemeindeNr>09999</base:GemeindeNr>
+										</base:Organisation>
+										<base:Benutzer>test@bmi.gv.at</base:Benutzer>
+									</base:DurchgefuehrtVon>
+								</base:EntityErgebnisReferenz>
+								<base:ZMRZahl>000111111111</base:ZMRZahl>
+								<zmr:NatuerlichePerson>
+									<zmr:PersonenName>
+										<Vorname>Hans</Vorname>
+										<Familienname>Mustermann</Familienname>
+									</zmr:PersonenName>
+									<Geschlecht>männlich</Geschlecht>
+									<Geburtsdatum>2001-05-07</Geburtsdatum>
+									<Geburtsort>Wien</Geburtsort>
+									<Geburtsbundesland>Wien</Geburtsbundesland>
+									<Geburtsstaat>Österreich</Geburtsstaat>
+									<zmr:Staatsangehoerigkeit>
+										<ISOCode3>AUT</ISOCode3>
+										<StaatsnameDE>Österreich</StaatsnameDE>
+										<base:EntityErgebnisReferenz>
+											<base:Technisch>
+												<base:EntityID>0000001</base:EntityID>
+												<base:LetzteAenderung>2003-01-01T00:00:00.000</base:LetzteAenderung>
+											</base:Technisch>
+											<base:Von>2003-01-01T00:00:00.000</base:Von>
+											<base:BeginnCode>REISEDOK_ANLEGEN</base:BeginnCode>
+											<base:BeginnText>Reisedokument anlegen</base:BeginnText>
+											<base:DurchgefuehrtVon>
+												<base:Organisation>
+													<base:GemeindeNr>09999</base:GemeindeNr>
+												</base:Organisation>
+												<base:Benutzer>test@bmi.gv.at</base:Benutzer>
+											</base:DurchgefuehrtVon>
+										</base:EntityErgebnisReferenz>
+									</zmr:Staatsangehoerigkeit>
+								</zmr:NatuerlichePerson>
+							</zmr:PersonErgebnis>
+						</zmr:Personendaten>
+						<zmr:Meldedaten>
+							<!-- Historienliste einer Meldung. Nur ein MeldungErgebnis-Element, wenn nur aktuelle Daten -->							
+							<zmr:MeldungErgebnis>
+								<base:ErgebnissatzInfo>
+									<!-- letzter Änderungs-Zeitpunkt des Meldung-Gesamtdatensatzes (mit Auskunftssperren, ...)-->
+									<base:LetzteAenderung>2004-01-26T00:00:00.000</base:LetzteAenderung>
+								</base:ErgebnissatzInfo>							
+								<base:EntityErgebnisReferenz>
+									<base:Technisch>
+										<base:EntityID>00000002</base:EntityID>
+										<!-- letzter Änderungs-Zeitpunkt der Meldung-Entity (ohne Auskunftssperren, ...)-->
+										<base:LetzteAenderung>2004-01-26T00:00:00.000</base:LetzteAenderung>
+									</base:Technisch>
+									<base:Von>2004-01-26T00:00:00.000</base:Von>
+									<base:BeginnCode>WSANM</base:BeginnCode>
+									<base:BeginnText>Wohnsitz anmelden</base:BeginnText>
+									<base:DurchgefuehrtVon>
+										<base:Organisation>
+											<base:BehoerdenNr>099999</base:BehoerdenNr>
+										</base:Organisation>
+									</base:DurchgefuehrtVon>
+								</base:EntityErgebnisReferenz>
+								<zmr:Wohnsitz>
+									<zmr:PostAdresse>
+										<Postleitzahl>1245</Postleitzahl>
+										<Gemeinde>Testgemeinde</Gemeinde>
+										<Gemeindekennziffer>09999</Gemeindekennziffer>
+										<Ortschaft>Testort</Ortschaft>
+										<zmr:Zustelladresse>
+											<Strassenname>Teststrasse</Strassenname>
+											<Orientierungsnummer>1</Orientierungsnummer>
+											<Wohnsitzqualitaet>H</Wohnsitzqualitaet>
+										</zmr:Zustelladresse>
+									</zmr:PostAdresse>
+									<base:Adressstatus>XXX000</base:Adressstatus>
+								</zmr:Wohnsitz>
+								<base:GemeldetVon>2004-01-26T00:00:00.000</base:GemeldetVon>
+								<base:PeriodeCode>WSANM</base:PeriodeCode>
+								<base:PeriodeText>Wohnsitz anmelden</base:PeriodeText>
+							</zmr:MeldungErgebnis>
+						</zmr:Meldedaten>
+					</zmr:PersonErgebnisSatz>
+				</zmr:HauseigentuemerAbfrageErgebnis>
+			</zmr:HauseigentuemerAbfrageResponse>
+		</base:Response>
+	</soap:Body>
+</soap:Envelope>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/meldeauskunft/meldeauskunftrequest.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/meldeauskunft/meldeauskunftrequest.xml
new file mode 100644
index 00000000..f67f145e
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/meldeauskunft/meldeauskunftrequest.xml
@@ -0,0 +1,44 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:zmr="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#" xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#" xmlns="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+xsi:schemaLocation="http://schemas.xmlsoap.org/soap/envelope/ ../../soapenv.xsd http://bmi.gv.at/namespace/zmr-su/base/20040201# ../../../xsd/allgemein/Service.xsd http://bmi.gv.at/namespace/zmr-su/zmr/20040201# ../../../xsd/zmr/ZMRProxy.xsd">
+	<soap:Body>
+		<base:Request>
+			<base:WorkflowInfoClient>
+				<base:ProzessName>GP_Meldeauskunft_erstellen</base:ProzessName>
+				<base:VorgangName>ZMR_VO_Meldeauskunft_erstellen</base:VorgangName>
+			</base:WorkflowInfoClient>
+			<base:ClientInfo>
+				<base:Organisation>
+					<base:BehoerdenNr>000000</base:BehoerdenNr>
+				</base:Organisation>
+				<base:Client>Test</base:Client>
+			</base:ClientInfo>
+			<zmr:MeldeauskunftRequest>
+				<zmr:MeldeauskunftInfo>
+					<base:Bezugsfeld>Test</base:Bezugsfeld>
+					<zmr:Ergebnisdaten>
+						<zmr:AlleAktuellenWohnsitze>false</zmr:AlleAktuellenWohnsitze>
+						<zmr:OhneGeburtsdatum>false</zmr:OhneGeburtsdatum>
+					</zmr:Ergebnisdaten>
+					<base:DruckZusatztext>Testdruck 099999</base:DruckZusatztext>
+				</zmr:MeldeauskunftInfo>
+				<base:Bereichskennung>urn:publicid:gv.at:wbpk0009999999</base:Bereichskennung>
+				<base:BPK>000123456789</base:BPK>				
+				<NatuerlichePerson>
+					<PersonenName>
+						<Vorname>Max</Vorname>
+						<Familienname>Mustermann</Familienname>
+					</PersonenName>
+					<Geburtsdatum>2003-01-01</Geburtsdatum>	
+				</NatuerlichePerson>
+				<PostAdresse>
+					<Gemeindekennziffer>09999</Gemeindekennziffer>
+					<Ortschaft>Testort</Ortschaft>
+					<Zustelladresse>
+						<Strassenname>Teststraße</Strassenname>
+					</Zustelladresse>
+				</PostAdresse>
+			</zmr:MeldeauskunftRequest>
+		</base:Request>
+	</soap:Body>
+</soap:Envelope>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/meldeauskunft/meldeauskunftresponse.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/meldeauskunft/meldeauskunftresponse.xml
new file mode 100644
index 00000000..75273ec7
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/meldeauskunft/meldeauskunftresponse.xml
@@ -0,0 +1,75 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:zmr="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#" xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#" xmlns="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+xsi:schemaLocation="http://schemas.xmlsoap.org/soap/envelope/ ../../soapenv.xsd http://bmi.gv.at/namespace/zmr-su/base/20040201# ../../../xsd/allgemein/Service.xsd http://bmi.gv.at/namespace/zmr-su/zmr/20040201# ../../../xsd/zmr/ZMRProxy.xsd">
+	<soap:Body>
+		<base:Response>
+			<base:WorkflowInfoServer>
+				<base:ProzessName>GP_Meldeauskunft_erstellen</base:ProzessName>
+				<base:ProzessInstanzID>1234</base:ProzessInstanzID>
+				<base:ProzessStatus>A</base:ProzessStatus>
+				<base:SequenzID>00034</base:SequenzID>
+				<base:Subprozess>
+					<base:VorgangName>ZMR_VO_Meldeauskunft_erstellen</base:VorgangName>
+					<base:VorgangStatus>C</base:VorgangStatus>
+					<base:Required>false</base:Required>
+					<base:Visible>true</base:Visible>
+				</base:Subprozess>
+			</base:WorkflowInfoServer>
+			<base:ServerInfo>
+				<base:GeneriertVon>ZMR Server</base:GeneriertVon>
+				<base:GeneriertAm>2004-01-26T00:00:00.000</base:GeneriertAm>
+				<base:ServerTransaktionNr>1234567</base:ServerTransaktionNr>
+			</base:ServerInfo>
+			<zmr:MeldeauskunftResponse>
+				<zmr:MeldeauskunftAnfrage>
+					<zmr:MeldeauskunftInfo>
+						<base:Bezugsfeld>Test</base:Bezugsfeld>
+						<zmr:Ergebnisdaten>
+							<zmr:AlleAktuellenWohnsitze>false</zmr:AlleAktuellenWohnsitze>
+							<zmr:OhneGeburtsdatum>false</zmr:OhneGeburtsdatum>
+						</zmr:Ergebnisdaten>
+						<base:DruckZusatztext>Testdruck 099999</base:DruckZusatztext>
+					</zmr:MeldeauskunftInfo>
+					<base:Bereichskennung>urn:publicid:gv.at:wbpk0009999999</base:Bereichskennung>
+					<base:BPK>000123456789</base:BPK>						
+					<NatuerlichePerson>
+						<PersonenName>
+							<Vorname>Max</Vorname>
+							<Familienname>Mustermann</Familienname>
+						</PersonenName>
+						<Geburtsdatum>2003-01-01</Geburtsdatum>	
+					</NatuerlichePerson>
+					<PostAdresse>
+						<Gemeindekennziffer>09999</Gemeindekennziffer>
+						<Ortschaft>Testort</Ortschaft>
+						<Zustelladresse>
+							<Strassenname>Teststraße</Strassenname>
+						</Zustelladresse>
+					</PostAdresse>					
+				</zmr:MeldeauskunftAnfrage>
+				<base:Message>
+					<base:Number>123</base:Number>
+					<base:Text>Meldeauskunft erstellt.</base:Text>
+				</base:Message>
+				<zmr:Meldeauskunft>
+					<NatuerlichePerson>
+						<PersonenName>
+							<Vorname>Max</Vorname>
+							<Familienname>Mustermann</Familienname>
+						</PersonenName>
+						<Geburtsdatum>2003-01-01</Geburtsdatum>	
+					</NatuerlichePerson>
+					<PostAdresse>
+						<Gemeindekennziffer>09999</Gemeindekennziffer>
+						<Ortschaft>Testort</Ortschaft>
+						<Zustelladresse>
+							<Strassenname>Teststraße</Strassenname>
+						</Zustelladresse>
+					</PostAdresse>
+					<zmr:AktMeldesatz>true</zmr:AktMeldesatz>
+					<zmr:PDFDaten></zmr:PDFDaten>					
+				</zmr:Meldeauskunft>
+			</zmr:MeldeauskunftResponse>
+		</base:Response>
+	</soap:Body>
+</soap:Envelope>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/meldebestaetigung/meldebestaetigungrequest.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/meldebestaetigung/meldebestaetigungrequest.xml
new file mode 100644
index 00000000..312e16b7
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/meldebestaetigung/meldebestaetigungrequest.xml
@@ -0,0 +1,26 @@
+<?xml version="1.0" encoding="UTF-8"?>
+
+<soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:zmr="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#" xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#" xmlns="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+xsi:schemaLocation="http://schemas.xmlsoap.org/soap/envelope/ ../../soapenv.xsd http://bmi.gv.at/namespace/zmr-su/base/20040201# ../../../xsd/allgemein/Service.xsd http://bmi.gv.at/namespace/zmr-su/zmr/20040201# ../../../xsd/zmr/ZMRProxy.xsd">
+<soap:Body>
+		<base:Request>
+			<base:WorkflowInfoClient>
+				<base:ProzessName>GP_Meldebestaetigung_erstellen</base:ProzessName>
+				<base:VorgangName>ZMR_VO_Meldebestaetigung_erstellen</base:VorgangName>
+			</base:WorkflowInfoClient>
+			<base:ClientInfo>
+				<base:Organisation>
+					<base:BehoerdenNr>099999</base:BehoerdenNr>
+				</base:Organisation>			
+				<base:Client>ZMRHTMLClient V3.0</base:Client>
+			</base:ClientInfo>
+			<zmr:MeldebestaetigungRequest>
+				<zmr:MeldebestaetigungInfo>
+					<base:Bezugsfeld>Test</base:Bezugsfeld>
+					<zmr:MeldebestaetigungArt>AKTLETZT</zmr:MeldebestaetigungArt>
+				</zmr:MeldebestaetigungInfo>
+				<base:ZMRZahl>000111111111</base:ZMRZahl>
+			</zmr:MeldebestaetigungRequest>
+		</base:Request>
+	</soap:Body>
+</soap:Envelope>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/meldebestaetigung/meldebestaetigungresponse.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/meldebestaetigung/meldebestaetigungresponse.xml
new file mode 100644
index 00000000..e3e4a42b
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/meldebestaetigung/meldebestaetigungresponse.xml
@@ -0,0 +1,72 @@
+<?xml version="1.0" encoding="UTF-8"?>
+
+<soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/"
+	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+	xmlns:zmr="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+	xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+	xmlns="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+	xsi:schemaLocation="http://schemas.xmlsoap.org/soap/envelope/ ../../soapenv.xsd http://bmi.gv.at/namespace/zmr-su/base/20040201# ../../../xsd/allgemein/Service.xsd http://bmi.gv.at/namespace/zmr-su/zmr/20040201# ../../../xsd/zmr/ZMRProxy.xsd">
+	<soap:Body>
+		<base:Response>
+			<base:WorkflowInfoServer>
+				<base:ProzessName>GP_Meldebestaetigung_erstellen</base:ProzessName>
+				<base:ProzessInstanzID>1234</base:ProzessInstanzID>
+				<base:ProzessStatus>C</base:ProzessStatus>
+				<base:SequenzID>00034</base:SequenzID>
+				<base:Subprozess>
+					<base:VorgangName>ZMR_VO_Meldebestaetigung_erstellen</base:VorgangName>
+					<base:VorgangStatus>C</base:VorgangStatus>
+					<base:Required>true</base:Required>
+					<base:Visible>true</base:Visible>
+				</base:Subprozess>
+			</base:WorkflowInfoServer>
+			<base:ServerInfo>
+				<base:GeneriertVon>ZMR Server</base:GeneriertVon>
+				<base:GeneriertAm>2004-01-26T00:00:00.000</base:GeneriertAm>
+				<base:ServerTransaktionNr>1234567</base:ServerTransaktionNr>
+			</base:ServerInfo>		
+			<zmr:MeldebestaetigungResponse>
+				<zmr:MeldebestaetigungAnfrage>
+					<zmr:MeldebestaetigungInfo>
+						<base:Bezugsfeld>Test</base:Bezugsfeld>
+						<zmr:MeldebestaetigungArt>AKTLETZT</zmr:MeldebestaetigungArt>
+					</zmr:MeldebestaetigungInfo>
+					<base:ZMRZahl>000111111111</base:ZMRZahl>
+				</zmr:MeldebestaetigungAnfrage>
+				<base:Message>
+					<base:Number>01234</base:Number>
+					<base:Text>Die Meldebestätigung wurde erstellt</base:Text>
+				</base:Message>
+				<zmr:Meldebestaetigung>
+					<base:ZMRZahl>000111111111</base:ZMRZahl>
+					<NatuerlichePerson>
+						<PersonenName>
+							<Vorname>Max</Vorname>
+							<Familienname>Mustermann</Familienname>
+						</PersonenName>
+						<Geschlecht>männlich</Geschlecht>
+						<Geburtsdatum>2000-01-01</Geburtsdatum>
+						<Staatsangehoerigkeit>
+							<ISOCode3>AUT</ISOCode3>
+							<StaatsnameDE>Österreich</StaatsnameDE>
+						</Staatsangehoerigkeit>
+					</NatuerlichePerson>
+					<zmr:Meldung>
+						<PostAdresse>
+							<Gemeinde>Testgemeinde</Gemeinde>
+							<Gemeindekennziffer>09999</Gemeindekennziffer>
+							<Ortschaft>Testort</Ortschaft>
+							<Zustelladresse>
+								<Strassenname>Teststraße</Strassenname>
+								<Orientierungsnummer>3</Orientierungsnummer>
+							</Zustelladresse>
+						</PostAdresse>
+						<base:GemeldetVon>2000-01-01T00:00:00.000</base:GemeldetVon>
+					</zmr:Meldung>
+					<zmr:AktMeldesatz>true</zmr:AktMeldesatz>
+					<zmr:PDFDaten></zmr:PDFDaten>
+				</zmr:Meldebestaetigung>
+			</zmr:MeldebestaetigungResponse>
+		</base:Response>
+	</soap:Body>
+</soap:Envelope>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/militaerbehoerden/blaetternrequest.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/militaerbehoerden/blaetternrequest.xml
new file mode 100644
index 00000000..a5733f30
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/militaerbehoerden/blaetternrequest.xml
@@ -0,0 +1,27 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/"
+               xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+>
+    <soap:Body>
+        <base:Request>
+            <base:WorkflowInfoClient>
+                <base:ProzessName>GP_Militaerbehoerde</base:ProzessName>
+                <base:ProzessInstanzID>37300000000157</base:ProzessInstanzID>
+                <base:SequenzID>0</base:SequenzID>
+                <base:VorgangName>ZPR_VO_Wehrpflichtige_abfragen</base:VorgangName>
+            </base:WorkflowInfoClient>
+            <base:ClientInfo>
+                <base:Organisation>
+                    <base:GemeindeNr>09999</base:GemeindeNr>
+                </base:Organisation>
+                <base:Client>ZMRGUI v4_9_3-04</base:Client>
+            </base:ClientInfo>
+            <base:BlaetternRequest>
+                <base:BlaetternInfo>
+                    <base:Richtung>Vor</base:Richtung>
+                    <base:AnzahlSaetze>30</base:AnzahlSaetze>
+                </base:BlaetternInfo>
+            </base:BlaetternRequest>
+        </base:Request>
+    </soap:Body>
+</soap:Envelope>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/militaerbehoerden/wehrpflichtigeAbfragenRequst.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/militaerbehoerden/wehrpflichtigeAbfragenRequst.xml
new file mode 100644
index 00000000..1d4d1e1d
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/militaerbehoerden/wehrpflichtigeAbfragenRequst.xml
@@ -0,0 +1,31 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/"
+               xmlns:cio="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+               xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+               xmlns:zmr="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+>
+    <soap:Body>
+        <base:Request>
+            <base:WorkflowInfoClient>
+                <base:ProzessName>GP_Militaerbehoerde</base:ProzessName>
+                <base:VorgangName>ZPR_VO_Wehrpflichtige_abfragen</base:VorgangName>
+            </base:WorkflowInfoClient>
+            <base:ClientInfo>
+                <base:Organisation>
+                    <base:GemeindeNr>09999</base:GemeindeNr>
+                </base:Organisation>
+                <base:Client>ZMRGUI v4_9_3-04</base:Client>
+            </base:ClientInfo>
+            <zmr:WehrpflichtigeAbfragenRequest>
+                <zmr:WehrpflichtigeAbfragenInfo>
+                    <zmr:AlsDruck>false</zmr:AlsDruck>
+                    <base:AnzahlSaetze>30</base:AnzahlSaetze>
+                </zmr:WehrpflichtigeAbfragenInfo>
+                <cio:Bundesland>Wien</cio:Bundesland>
+                <zmr:GeburtsdatumVon>1980-01-01T00:00:00.000</zmr:GeburtsdatumVon>
+                <zmr:GeburtsdatumBis>1980-02-01T00:00:00.000</zmr:GeburtsdatumBis>
+                <cio:Familienname>A</cio:Familienname>
+            </zmr:WehrpflichtigeAbfragenRequest>
+        </base:Request>
+    </soap:Body>
+</soap:Envelope>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/natuerlicheperson.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/natuerlicheperson.xml
new file mode 100644
index 00000000..23958f84
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/natuerlicheperson.xml
@@ -0,0 +1,30 @@
+<?xml version="1.0" encoding="UTF-8"?>
+
+<NatuerlichePerson xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			xmlns="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+			xsi:schemaLocation="http://reference.e-government.gv.at/namespace/persondata/de/20040201# ../../xsd/eingebunden/PersonDataZMR.xsd">
+					
+	<Identification>
+		<Value>000111111111</Value>
+		<Type>ZMR</Type>
+	</Identification>
+	<PersonenName>
+		<Vorname>Max</Vorname>
+		<Familienname>Mustermann</Familienname>
+		<Affix typ="akademischerGrad" position="prefix">Mag. rer. nat.</Affix>
+	</PersonenName>
+	<AlternativName Type="NameVorErsterEhe">
+		<Familienname>Musterfrau</Familienname>
+	</AlternativName>
+	<Geschlecht>männlich</Geschlecht>
+	<Geburtsdatum>2001-05-07</Geburtsdatum>
+	<Geburtsort>Wien</Geburtsort>
+	<Geburtsbundesland>Wien</Geburtsbundesland>
+	<Geburtsstaat>Österreich</Geburtsstaat>
+	<Sterbedatum>2003-05-07</Sterbedatum>
+	<Staatsangehoerigkeit>
+		<ISOCode3>AUT</ISOCode3>
+		<StaatsnameDE>Österreich</StaatsnameDE>
+	</Staatsangehoerigkeit>
+</NatuerlichePerson>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/personaendern/personaendernrequest1.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/personaendern/personaendernrequest1.xml
new file mode 100644
index 00000000..62449f25
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/personaendern/personaendernrequest1.xml
@@ -0,0 +1,40 @@
+<?xml version="1.0" encoding="UTF-8"?>
+
+<soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:zmr="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#" xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#" xmlns="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+xsi:schemaLocation="http://schemas.xmlsoap.org/soap/envelope/ ../../soapenv.xsd http://bmi.gv.at/namespace/zmr-su/base/20040201# ../../../xsd/allgemein/Service.xsd http://bmi.gv.at/namespace/zmr-su/zmr/20040201# ../../../xsd/zmr/ZMRProxy.xsd">
+<soap:Body>
+		<base:Request>
+			<base:WorkflowInfoClient>
+				<base:ProzessName>GP_Person_aendern</base:ProzessName>
+				<base:VorgangName>ZPR_VO_Person_aendern</base:VorgangName>
+			</base:WorkflowInfoClient>
+			<base:ClientInfo>
+				<base:Organisation>
+					<base:BehoerdenNr>000000</base:BehoerdenNr>
+				</base:Organisation>
+				<base:Client>Test</base:Client>
+			</base:ClientInfo>
+			<zmr:PersonAendernRequest>
+				<zmr:PersonAendernInfo>
+					<base:Von>2004-01-26T00:00:00.000</base:Von>
+					<base:GrundCode>NAMENSAENDERUNG</base:GrundCode>
+				</zmr:PersonAendernInfo>
+				<zmr:PersonReferenz>
+					<base:Technisch>
+						<base:EntityID>2434</base:EntityID>
+						<base:LetzteAenderung>2003-03-01T00:00:00.000</base:LetzteAenderung>
+					</base:Technisch>
+					<base:ZMRZahl>000111111111</base:ZMRZahl>
+				</zmr:PersonReferenz>
+				<zmr:PersonAenderung>
+					<zmr:NatuerlichePerson>
+						<zmr:PersonenName>
+							<Vorname>Anna</Vorname> <!--Umbenennung auf Anna-->
+						</zmr:PersonenName>
+					</zmr:NatuerlichePerson>
+					<base:Titel></base:Titel> <!-- Feld Titel wird gelöscht-->
+				</zmr:PersonAenderung>
+			</zmr:PersonAendernRequest>
+		</base:Request>
+	</soap:Body>
+</soap:Envelope>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/personaendern/personaendernrequest2.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/personaendern/personaendernrequest2.xml
new file mode 100644
index 00000000..c93c5b72
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/personaendern/personaendernrequest2.xml
@@ -0,0 +1,42 @@
+<?xml version="1.0" encoding="UTF-8"?>
+
+<soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:zmr="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#" xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#" xmlns="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+xsi:schemaLocation="http://schemas.xmlsoap.org/soap/envelope/ ../../soapenv.xsd http://bmi.gv.at/namespace/zmr-su/base/20040201# ../../../xsd/allgemein/Service.xsd http://bmi.gv.at/namespace/zmr-su/zmr/20040201# ../../../xsd/zmr/ZMRProxy.xsd">
+<soap:Body>
+		<base:Request>
+			<base:WorkflowInfoClient>
+				<base:ProzessName>GP_Person_aendern</base:ProzessName>
+				<base:VorgangName>ZPR_VO_Person_aendern</base:VorgangName>
+			</base:WorkflowInfoClient>
+			<base:ClientInfo>
+				<base:Organisation>
+					<base:BehoerdenNr>000000</base:BehoerdenNr>
+				</base:Organisation>
+				<base:Client>Test</base:Client>
+			</base:ClientInfo>
+			<zmr:PersonAendernRequest>
+				<zmr:PersonAendernInfo>
+					<base:Von>2004-01-26T00:00:00.000</base:Von>
+					<base:GrundCode>XXX</base:GrundCode>
+				</zmr:PersonAendernInfo>
+				<zmr:PersonReferenz>
+					<base:Technisch>
+						<base:EntityID>2434</base:EntityID>
+						<base:LetzteAenderung>2003-03-01T00:00:00.000</base:LetzteAenderung>
+					</base:Technisch>
+					<base:ZMRZahl>000111111111</base:ZMRZahl>
+				</zmr:PersonReferenz>
+				<zmr:ReisedokumentAenderung>
+					<base:EntityReferenz>
+						<base:EntityID>0004</base:EntityID>
+					</base:EntityReferenz>
+					<base:Beendigung>true</base:Beendigung>
+					<!-- Das Reisedokument wird fachlich beendet, andere Felder werden nicht geändert.
+					Es könnten auch andere Felder hier zugleich mit der Beendigung noch verändert werden. 
+					Die Beendigung ist nicht an das Feld DokumentGiltBis gekoppelt
+					-->
+				</zmr:ReisedokumentAenderung>
+			</zmr:PersonAendernRequest>
+		</base:Request>
+	</soap:Body>
+</soap:Envelope>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/personaendern/personaendernresponse1.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/personaendern/personaendernresponse1.xml
new file mode 100644
index 00000000..dde7e494
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/personaendern/personaendernresponse1.xml
@@ -0,0 +1,85 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:zmr="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#" xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#" xmlns="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+xsi:schemaLocation="http://schemas.xmlsoap.org/soap/envelope/ ../../soapenv.xsd http://bmi.gv.at/namespace/zmr-su/base/20040201# ../../../xsd/allgemein/Service.xsd http://bmi.gv.at/namespace/zmr-su/zmr/20040201# ../../../xsd/zmr/ZMRProxy.xsd">
+<soap:Body>
+		<base:Response>
+			<base:WorkflowInfoServer>
+				<base:ProzessName>GP_Person_aendern</base:ProzessName>
+				<base:ProzessInstanzID>1234</base:ProzessInstanzID>
+				<base:ProzessStatus>A</base:ProzessStatus>
+				<base:SequenzID>00034</base:SequenzID>
+				<base:Subprozess>
+					<base:VorgangName>ZPR_VO_Person_aendern</base:VorgangName>
+					<base:VorgangStatus>C</base:VorgangStatus>
+					<base:Required>false</base:Required>
+					<base:Visible>true</base:Visible>
+				</base:Subprozess>
+			</base:WorkflowInfoServer>
+			<base:ServerInfo>
+				<base:GeneriertVon>ZMR Server</base:GeneriertVon>
+				<base:GeneriertAm>2004-01-26T00:00:00.000</base:GeneriertAm>
+				<base:ServerTransaktionNr>1234567</base:ServerTransaktionNr>
+			</base:ServerInfo>
+			<zmr:PersonAendernResponse>
+				<base:Message>
+					<base:Number>1234</base:Number>
+					<base:Text>Person wurde geändert</base:Text>
+				</base:Message>
+				<zmr:PersonErgebnis>
+					<base:ErgebnissatzInfo>
+						<base:LetzteAenderung>2004-01-26T00:00:00.000</base:LetzteAenderung>
+					</base:ErgebnissatzInfo>					
+					<base:EntityErgebnisReferenz>						
+						<base:Technisch>
+							<base:EntityID>0000001</base:EntityID>
+							<base:LetzteAenderung>2004-01-26T00:00:00.000</base:LetzteAenderung>
+						</base:Technisch>
+						<base:Von>2004-01-26T00:00:00.000</base:Von>
+						<base:BeginnCode>NAMENSAENDERUNG</base:BeginnCode>
+						<base:BeginnText>Namensänderung</base:BeginnText>
+						<base:DurchgefuehrtVon>
+							<base:Organisation>
+								<base:GemeindeNr>09999</base:GemeindeNr>
+							</base:Organisation>
+							<base:Benutzer>test@bmi.gv.at</base:Benutzer>
+						</base:DurchgefuehrtVon>
+					</base:EntityErgebnisReferenz>
+					<base:ZMRZahl>000111111111</base:ZMRZahl>
+					<zmr:NatuerlichePerson>
+						<zmr:PersonenName>
+							<Vorname>Anna</Vorname>
+							<Familienname>Mustermann</Familienname>
+						</zmr:PersonenName>
+						<AlternativName Type="NameVorErsterEhe">
+							<Familienname>Huber</Familienname>
+						</AlternativName>
+						<Geschlecht>weiblich</Geschlecht>
+						<Geburtsdatum>2001-05-07</Geburtsdatum>
+						<Geburtsort>Wien</Geburtsort>
+						<Geburtsbundesland>Wien</Geburtsbundesland>
+						<Geburtsstaat>Österreich</Geburtsstaat>
+						<zmr:Staatsangehoerigkeit>
+							<ISOCode3>AUT</ISOCode3>
+							<StaatsnameDE>Österreich</StaatsnameDE>
+							<base:EntityErgebnisReferenz>
+								<base:Technisch>
+									<base:EntityID>0000001</base:EntityID>
+									<base:LetzteAenderung>2003-01-01T00:00:00.000</base:LetzteAenderung>
+								</base:Technisch>
+								<base:Von>2003-01-01T00:00:00.000</base:Von>
+								<base:BeginnCode>REISEDOK_ANLEGEN</base:BeginnCode>
+								<base:BeginnText>Reisedokument anlegen</base:BeginnText>
+								<base:DurchgefuehrtVon>
+									<base:Organisation>
+										<base:GemeindeNr>09999</base:GemeindeNr>
+									</base:Organisation>
+									<base:Benutzer>test@bmi.gv.at</base:Benutzer>
+								</base:DurchgefuehrtVon>
+							</base:EntityErgebnisReferenz>
+						</zmr:Staatsangehoerigkeit>
+					</zmr:NatuerlichePerson>
+				</zmr:PersonErgebnis>
+			</zmr:PersonAendernResponse>
+		</base:Response>
+	</soap:Body>
+</soap:Envelope>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/personaendern/personaendernresponse2.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/personaendern/personaendernresponse2.xml
new file mode 100644
index 00000000..d824dfac
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/personaendern/personaendernresponse2.xml
@@ -0,0 +1,110 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:zmr="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#" xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#" xmlns="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+xsi:schemaLocation="http://schemas.xmlsoap.org/soap/envelope/ ../../soapenv.xsd http://bmi.gv.at/namespace/zmr-su/base/20040201# ../../../xsd/allgemein/Service.xsd http://bmi.gv.at/namespace/zmr-su/zmr/20040201# ../../../xsd/zmr/ZMRProxy.xsd">
+<soap:Body>
+		<base:Response>
+			<base:WorkflowInfoServer>
+				<base:ProzessName>GP_Person_aendern</base:ProzessName>
+				<base:ProzessInstanzID>1234</base:ProzessInstanzID>
+				<base:ProzessStatus>A</base:ProzessStatus>
+				<base:SequenzID>00034</base:SequenzID>
+				<base:Subprozess>
+					<base:VorgangName>ZPR_VO_Person_aendern</base:VorgangName>
+					<base:VorgangStatus>C</base:VorgangStatus>
+					<base:Required>false</base:Required>
+					<base:Visible>true</base:Visible>
+				</base:Subprozess>
+			</base:WorkflowInfoServer>
+			<base:ServerInfo>
+				<base:GeneriertVon>ZMR Server</base:GeneriertVon>
+				<base:GeneriertAm>2004-01-26T00:00:00.000</base:GeneriertAm>
+				<base:ServerTransaktionNr>1234567</base:ServerTransaktionNr>
+			</base:ServerInfo>
+			<zmr:PersonAendernResponse>	
+				<base:Message>
+					<base:Number>1234</base:Number>
+					<base:Text>Personendaten wurden geändert</base:Text>
+				</base:Message>
+				<zmr:PersonErgebnis>
+					<base:ErgebnissatzInfo>
+						<base:LetzteAenderung>2004-01-26T00:00:00.000</base:LetzteAenderung>
+					</base:ErgebnissatzInfo>				
+					<base:EntityErgebnisReferenz>
+						<base:Technisch>
+							<base:EntityID>2434</base:EntityID>
+							<base:LetzteAenderung>2003-01-01T00:00:00.000</base:LetzteAenderung>
+						</base:Technisch>
+						<base:Von>2003-01-01T00:00:00.000</base:Von>
+						<base:BeginnCode>GEBURT</base:BeginnCode>
+						<base:BeginnText>Geburt</base:BeginnText>
+						<base:DurchgefuehrtVon>
+							<base:Organisation>
+								<base:GemeindeNr>09999</base:GemeindeNr>
+							</base:Organisation>
+							<base:Benutzer>test@bmi.gv.at</base:Benutzer>
+						</base:DurchgefuehrtVon>
+					</base:EntityErgebnisReferenz>
+					<base:ZMRZahl>000111111111</base:ZMRZahl>
+					<zmr:NatuerlichePerson>
+						<zmr:PersonenName>
+							<Vorname>Anna</Vorname>
+							<Familienname>Mustermann</Familienname>
+						</zmr:PersonenName>
+						<AlternativName Type="NameVorErsterEhe">
+							<Familienname>Huber</Familienname>
+						</AlternativName>
+						<Geschlecht>weiblich</Geschlecht>
+						<Geburtsdatum>2001-05-07</Geburtsdatum>
+						<Geburtsort>Wien</Geburtsort>
+						<Geburtsbundesland>Wien</Geburtsbundesland>
+						<Geburtsstaat>Österreich</Geburtsstaat>
+						<zmr:Staatsangehoerigkeit>
+							<ISOCode3>AUT</ISOCode3>
+							<StaatsnameDE>Österreich</StaatsnameDE>
+							<base:EntityErgebnisReferenz>
+								<base:Technisch>
+									<base:EntityID>0004</base:EntityID>
+									<base:LetzteAenderung>2004-01-26T00:00:00.000</base:LetzteAenderung>
+								</base:Technisch>
+								
+								<base:Von>2003-01-01T00:00:00.000</base:Von>
+								<base:BeginnCode>STAATSANGEH_ANLEGEN</base:BeginnCode>
+								<base:BeginnText>Staatsangehörigkeit anlegen</base:BeginnText>						
+								<base:DurchgefuehrtVon>
+									<base:Organisation>
+										<base:GemeindeNr>09999</base:GemeindeNr>
+									</base:Organisation>
+									<base:Benutzer>test@bmi.gv.at</base:Benutzer>
+								</base:DurchgefuehrtVon>
+							</base:EntityErgebnisReferenz>
+						</zmr:Staatsangehoerigkeit>
+					</zmr:NatuerlichePerson>
+					<zmr:Reisedokument>
+						<base:EntityErgebnisReferenz>
+							<base:Technisch>
+								<base:EntityID>0004</base:EntityID>
+								<base:LetzteAenderung>2004-01-26T00:00:00.000</base:LetzteAenderung>
+							</base:Technisch>
+							<!-- Nulldauersatz des beendeten Reisedokuments -->
+							<base:Von>2004-01-26T00:00:00.000</base:Von>
+							<base:BeginnCode>REISEDOK_AENDERN</base:BeginnCode>
+							<base:BeginnText>Reisedokument geändert</base:BeginnText>
+							<base:Bis>2004-01-26T00:00:00.000</base:Bis>
+							<base:DurchgefuehrtVon>
+								<base:Organisation>
+									<base:GemeindeNr>09999</base:GemeindeNr>
+								</base:Organisation>
+								<base:Benutzer>test@bmi.gv.at</base:Benutzer>
+							</base:DurchgefuehrtVon>
+						</base:EntityErgebnisReferenz>
+						<base:DokumentArt>Reisedokument</base:DokumentArt>
+						<base:DokumentNummer>123</base:DokumentNummer>
+						<base:AusstellDatum>2003-01-01</base:AusstellDatum>
+						<base:Ausstellungsstaat>Libyen</base:Ausstellungsstaat>
+						<base:DokumentGiltBis>2004-01-26T00:00:00.000</base:DokumentGiltBis>
+					</zmr:Reisedokument>
+				</zmr:PersonErgebnis>
+			</zmr:PersonAendernResponse>
+		</base:Response>
+	</soap:Body>
+</soap:Envelope>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/personanlegen/personanlegenrequest.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/personanlegen/personanlegenrequest.xml
new file mode 100644
index 00000000..c9d604cd
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/personanlegen/personanlegenrequest.xml
@@ -0,0 +1,56 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:zmr="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#" xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#" xmlns="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+xsi:schemaLocation="http://schemas.xmlsoap.org/soap/envelope/ ../../soapenv.xsd http://bmi.gv.at/namespace/zmr-su/base/20040201# ../../../xsd/allgemein/Service.xsd http://bmi.gv.at/namespace/zmr-su/zmr/20040201# ../../../xsd/zmr/ZMRProxy.xsd">
+<soap:Body>
+		<base:Request>
+			<base:WorkflowInfoClient>
+				<base:ProzessName>GP_Person_anlegen</base:ProzessName>
+				<base:VorgangName>ZPR_VO_Person_anlegen</base:VorgangName>
+			</base:WorkflowInfoClient>
+			<base:ClientInfo>
+				<base:Organisation>
+					<base:BehoerdenNr>000000</base:BehoerdenNr>
+				</base:Organisation>
+				<base:Client>Test</base:Client>
+			</base:ClientInfo>
+			<zmr:PersonAnlegenRequest>
+				<zmr:PersonAnlegenInfo>
+					<base:Von>2004-01-26T00:00:00.000</base:Von>
+					<base:GrundCode>GEBURT</base:GrundCode>
+				</zmr:PersonAnlegenInfo>
+				<zmr:PersonAnlage>
+					<zmr:NatuerlichePerson>
+						<zmr:PersonenName>
+							<Vorname>Max</Vorname>
+							<Familienname>Mustermann</Familienname>
+						</zmr:PersonenName>
+						<Geschlecht>männlich</Geschlecht>
+						<Geburtsdatum>2001-05-07</Geburtsdatum>
+						<Geburtsort>Wien</Geburtsort>
+						<Geburtsbundesland>Wien</Geburtsbundesland>
+						<Geburtsstaat>Österreich</Geburtsstaat>
+						<zmr:Staatsangehoerigkeit>
+							<ISOCode3>AUT</ISOCode3>
+						</zmr:Staatsangehoerigkeit>
+					</zmr:NatuerlichePerson>
+				</zmr:PersonAnlage>
+				<zmr:MeldungAnlage>
+					<zmr:Wohnsitz>
+						<zmr:PostAdresse>
+							<Gemeindekennziffer>09999</Gemeindekennziffer>
+							<zmr:Zustelladresse>
+								<Wohnsitzqualitaet>H</Wohnsitzqualitaet>
+								<zmr:AdressRegisterEintrag>
+									<Adresscode>1234567</Adresscode>
+									<Subcode>111</Subcode>
+									<Objektnummer>1111111</Objektnummer>
+								</zmr:AdressRegisterEintrag>
+								<!-- Offizielle Adresse, es müssen nur die Adresscodes geschickt werden-->
+							</zmr:Zustelladresse>
+						</zmr:PostAdresse>
+					</zmr:Wohnsitz>
+				</zmr:MeldungAnlage>
+			</zmr:PersonAnlegenRequest>
+		</base:Request>
+	</soap:Body>
+</soap:Envelope>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/personanlegen/personanlegenresponse.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/personanlegen/personanlegenresponse.xml
new file mode 100644
index 00000000..dbc29ee8
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/personanlegen/personanlegenresponse.xml
@@ -0,0 +1,118 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:zmr="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#" xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#" xmlns="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+xsi:schemaLocation="http://schemas.xmlsoap.org/soap/envelope/ ../../soapenv.xsd http://bmi.gv.at/namespace/zmr-su/base/20040201# ../../../xsd/allgemein/Service.xsd http://bmi.gv.at/namespace/zmr-su/zmr/20040201# ../../../xsd/zmr/ZMRProxy.xsd">
+<soap:Body>
+		<base:Response>
+			<base:WorkflowInfoServer>
+				<base:ProzessName>GP_Person_anlegen</base:ProzessName>
+				<base:ProzessInstanzID>1234</base:ProzessInstanzID>
+				<base:ProzessStatus>A</base:ProzessStatus>
+				<base:SequenzID>00034</base:SequenzID>
+				<base:Subprozess>
+					<base:VorgangName>ZPR_VO_Person_anlegen</base:VorgangName>
+					<base:VorgangStatus>C</base:VorgangStatus>
+					<base:Required>false</base:Required>
+					<base:Visible>true</base:Visible>
+				</base:Subprozess>
+			</base:WorkflowInfoServer>
+			<base:ServerInfo>
+				<base:GeneriertVon>ZMR Server</base:GeneriertVon>
+				<base:GeneriertAm>2004-01-26T00:00:00.000</base:GeneriertAm>
+				<base:ServerTransaktionNr>1234567</base:ServerTransaktionNr>
+			</base:ServerInfo>
+			<zmr:PersonAnlegenResponse>
+				<base:Message>
+					<base:Number>1234</base:Number>
+					<base:Text>Person wurde angelegt</base:Text>
+				</base:Message>
+				<zmr:PersonErgebnis>
+					<base:ErgebnissatzInfo>
+						<base:LetzteAenderung>2004-01-26T00:00:00.000</base:LetzteAenderung>
+					</base:ErgebnissatzInfo>					
+					<base:EntityErgebnisReferenz>
+						<base:Technisch>
+							<base:EntityID>0000001</base:EntityID>
+							<base:LetzteAenderung>2004-01-26T00:00:00.000</base:LetzteAenderung>
+						</base:Technisch>
+						<base:Von>2004-01-26T00:00:00.000</base:Von>
+						<base:BeginnCode>GEBURT</base:BeginnCode>
+						<base:BeginnText>Geburt</base:BeginnText>
+						<base:DurchgefuehrtVon>
+							<base:Organisation>
+								<base:GemeindeNr>09999</base:GemeindeNr>
+							</base:Organisation>
+							<base:Benutzer>test@bmi.gv.at</base:Benutzer>
+						</base:DurchgefuehrtVon>
+					</base:EntityErgebnisReferenz>
+					<base:ZMRZahl>000111111111</base:ZMRZahl>
+					<zmr:NatuerlichePerson>
+						<zmr:PersonenName>
+							<Vorname>Max</Vorname>
+							<Familienname>Mustermann</Familienname>
+						</zmr:PersonenName>
+						<Geschlecht>männlich</Geschlecht>
+						<Geburtsdatum>2001-05-07</Geburtsdatum>
+						<Geburtsort>Wien</Geburtsort>
+						<Geburtsbundesland>Wien</Geburtsbundesland>
+						<Geburtsstaat>Österreich</Geburtsstaat>
+						<zmr:Staatsangehoerigkeit>
+							<ISOCode3>AUT</ISOCode3>
+							<StaatsnameDE>Österreich</StaatsnameDE>
+							<base:EntityErgebnisReferenz>
+								<base:Technisch>
+									<base:EntityID>0000001</base:EntityID>
+									<base:LetzteAenderung>2004-01-26T00:00:00.000</base:LetzteAenderung>
+								</base:Technisch>
+								<base:Von>2004-01-26T00:00:00.000</base:Von>
+								<base:BeginnCode>STAATSANGEH_ANLEGEN</base:BeginnCode>
+								<base:BeginnText>Staatsangehörigkeit angelegt</base:BeginnText>
+								<base:DurchgefuehrtVon>
+									<base:Organisation>
+										<base:GemeindeNr>09999</base:GemeindeNr>
+									</base:Organisation>
+									<base:Benutzer>test@bmi.gv.at</base:Benutzer>
+								</base:DurchgefuehrtVon>
+							</base:EntityErgebnisReferenz>
+						</zmr:Staatsangehoerigkeit>
+					</zmr:NatuerlichePerson>
+				</zmr:PersonErgebnis>
+				<zmr:MeldungErgebnis>
+					<base:ErgebnissatzInfo>
+						<base:LetzteAenderung>2004-01-26T00:00:00.000</base:LetzteAenderung>
+					</base:ErgebnissatzInfo>				
+					<base:EntityErgebnisReferenz>
+						<base:Technisch>
+							<base:EntityID>00000002</base:EntityID>
+							<base:LetzteAenderung>2004-01-26T00:00:00.000</base:LetzteAenderung>
+						</base:Technisch>
+						<base:Von>2004-01-26T00:00:00.000</base:Von>
+						<base:BeginnCode>WSANM</base:BeginnCode>
+						<base:BeginnText>Wohnsitz anmelden</base:BeginnText>
+						<base:DurchgefuehrtVon>
+							<base:Organisation>
+								<base:BehoerdenNr>099999</base:BehoerdenNr>
+							</base:Organisation>
+						</base:DurchgefuehrtVon>
+					</base:EntityErgebnisReferenz>
+					<zmr:Wohnsitz>
+						<zmr:PostAdresse>
+							<Postleitzahl>1245</Postleitzahl>
+							<Gemeinde>Testgemeinde</Gemeinde>
+							<Gemeindekennziffer>09999</Gemeindekennziffer>
+							<Ortschaft>Testort</Ortschaft>
+							<zmr:Zustelladresse>
+								<Strassenname>Teststrasse</Strassenname>
+								<Orientierungsnummer>1</Orientierungsnummer>
+								<Wohnsitzqualitaet>H</Wohnsitzqualitaet>
+							</zmr:Zustelladresse>
+						</zmr:PostAdresse>
+						<base:Adressstatus>XXX000</base:Adressstatus>
+					</zmr:Wohnsitz>
+					<base:GemeldetVon>2004-01-26T00:00:00.000</base:GemeldetVon>
+					<base:PeriodeCode>WSANM</base:PeriodeCode>
+					<base:PeriodeText>Wohnsitz anmelden</base:PeriodeText>
+				</zmr:MeldungErgebnis>
+			</zmr:PersonAnlegenResponse>
+		</base:Response>
+	</soap:Body>
+</soap:Envelope>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/personenabfrage/blaetternrequest.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/personenabfrage/blaetternrequest.xml
new file mode 100644
index 00000000..57395ab5
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/personenabfrage/blaetternrequest.xml
@@ -0,0 +1,27 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:zmr="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#" xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#" xmlns="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+xsi:schemaLocation="http://schemas.xmlsoap.org/soap/envelope/ ../../soapenv.xsd http://bmi.gv.at/namespace/zmr-su/base/20040201# ../../../xsd/allgemein/Service.xsd http://bmi.gv.at/namespace/zmr-su/zmr/20040201# ../../../xsd/zmr/ZMRProxy.xsd">
+<soap:Body>
+		<base:Request>
+			<base:WorkflowInfoClient>
+				<base:ProzessName>GP_Verknuepfungsanfrage</base:ProzessName>
+				<base:ProzessInstanzID>1234</base:ProzessInstanzID>
+				<!-- Die InstanzID der laufenden Prozesses muss hier übermittelt werden, um die Suche fortzusetzen (aus WorkflowInfoServer des ersten Suchergebnisses-->
+				<base:SequenzID>00034</base:SequenzID>
+				<base:VorgangName>ZPR_VO_Person_abfragen</base:VorgangName>
+			</base:WorkflowInfoClient>
+			<base:ClientInfo>
+				<base:Organisation>
+					<base:BehoerdenNr>000000</base:BehoerdenNr>
+				</base:Organisation>
+				<base:Client>Test</base:Client>
+			</base:ClientInfo>
+			<base:BlaetternRequest>
+				<base:BlaetternInfo>
+					<base:Richtung>Vor</base:Richtung>
+					<base:AnzahlSaetze>3</base:AnzahlSaetze>
+				</base:BlaetternInfo>
+			</base:BlaetternRequest>
+		</base:Request>
+	</soap:Body>
+</soap:Envelope>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/personenabfrage/blaetternresponse.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/personenabfrage/blaetternresponse.xml
new file mode 100644
index 00000000..50e831f2
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/personenabfrage/blaetternresponse.xml
@@ -0,0 +1,210 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:zmr="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#" xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#" xmlns="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+xsi:schemaLocation="http://schemas.xmlsoap.org/soap/envelope/ ../../soapenv.xsd http://bmi.gv.at/namespace/zmr-su/base/20040201# ../../../xsd/allgemein/Service.xsd http://bmi.gv.at/namespace/zmr-su/zmr/20040201# ../../../xsd/zmr/ZMRProxy.xsd">
+<soap:Body>
+		<base:Response>
+			<base:WorkflowInfoServer>
+				<base:ProzessName>GP_Verknuepfungsanfrage</base:ProzessName>
+				<base:ProzessInstanzID>1234</base:ProzessInstanzID>
+				<base:ProzessStatus>A</base:ProzessStatus>
+				<base:SequenzID>00034</base:SequenzID>
+				<base:Subprozess>
+					<base:VorgangName>ZPR_VO_Person_abfragen</base:VorgangName>
+					<base:VorgangStatus>A</base:VorgangStatus>
+					<base:Required>false</base:Required>
+					<base:Visible>true</base:Visible>
+				</base:Subprozess>
+			</base:WorkflowInfoServer>
+			<base:ServerInfo>
+				<base:GeneriertVon>ZMR Server</base:GeneriertVon>
+				<base:GeneriertAm>2004-01-26T00:00:00.000</base:GeneriertAm>
+				<base:ServerTransaktionNr>1234567</base:ServerTransaktionNr>
+			</base:ServerInfo>
+			<zmr:PersonenAbfrageResponse>
+				<zmr:PersonenAbfrageAnfrage>
+					<zmr:PersonenAbfrageInfo>
+						<base:Bezugsfeld>Test</base:Bezugsfeld>
+						<zmr:Suchkriterien>
+							<base:InclusivHistorie>false</base:InclusivHistorie>
+							<base:Formalisiert>false</base:Formalisiert>
+						</zmr:Suchkriterien>
+						<zmr:Ergebniskriterien>
+							<base:InclusivHistorie>true</base:InclusivHistorie>
+						</zmr:Ergebniskriterien>
+						<base:AnzahlSaetze>10</base:AnzahlSaetze>
+					</zmr:PersonenAbfrageInfo>
+					<NatuerlichePerson>
+						<PersonenName>
+							<Vorname>Max</Vorname>
+							<Familienname>Mustermann</Familienname>
+						</PersonenName>
+					</NatuerlichePerson>
+				</zmr:PersonenAbfrageAnfrage>
+				<base:Message>
+					<base:Number>0003</base:Number>
+					<base:Text>Es wurde 1 Personen im ZMR gefunden</base:Text>
+				</base:Message>
+				<zmr:PersonenAbfrageErgebnis>
+					<base:GefundeneSaetze>4</base:GefundeneSaetze>
+					<base:SaetzeVon>3</base:SaetzeVon>
+					<!-- Es wurde weitergeblättert - der letzte Satz wird geliefert -->
+					<base:SaetzeBis>4</base:SaetzeBis>
+					<zmr:PersonErgebnisSatz>
+						<!-- 1. gelieferte Person im Suchergebnis (Personendaten + Meldedaten, historisch und aktuell) -->
+						<zmr:Personendaten>
+							<!-- Historienliste der Personendaten. Nur ein PersonErgebnis-Element, wenn nur aktuelle Daten -->
+							<zmr:PersonErgebnis>
+								<!-- aktueller Personendaten Gesamtdatensatz -->
+								<base:ErgebnissatzInfo>
+									<!-- letzter Änderungs-Zeitpunkt des Person-Gesamtdatensatzes (mit Staatsangehörigkeiten, ...)-->
+									<base:LetzteAenderung>2004-01-26T00:00:00.000</base:LetzteAenderung>
+								</base:ErgebnissatzInfo>
+								<base:EntityErgebnisReferenz>
+									<base:Technisch>
+										<base:EntityID>0000001</base:EntityID>
+										<!-- letzter Änderungs-Zeitpunkt der Person-Entity (ohne Staatsangehörigkeiten, ...)-->
+										<base:LetzteAenderung>2004-01-26T00:00:00.000</base:LetzteAenderung>
+									</base:Technisch>
+									<base:Von>2004-01-26T00:00:00.000</base:Von>
+									<base:BeginnCode>AMKOR</base:BeginnCode>
+									<base:BeginnText>Amtliche Korrektur</base:BeginnText>
+									<base:DurchgefuehrtVon>
+										<base:Organisation>
+											<base:GemeindeNr>09999</base:GemeindeNr>
+										</base:Organisation>
+										<base:Benutzer>test@bmi.gv.at</base:Benutzer>
+									</base:DurchgefuehrtVon>
+								</base:EntityErgebnisReferenz>
+								<base:ZMRZahl>000111111111</base:ZMRZahl>
+								<zmr:NatuerlichePerson>
+									<zmr:PersonenName>
+										<Vorname>Maximilian</Vorname>
+										<Familienname>Mustermann</Familienname>
+									</zmr:PersonenName>
+									<Geschlecht>männlich</Geschlecht>
+									<Geburtsdatum>2001-05-07</Geburtsdatum>
+									<Geburtsort>Wien</Geburtsort>
+									<Geburtsbundesland>Wien</Geburtsbundesland>
+									<Geburtsstaat>Österreich</Geburtsstaat>
+									<zmr:Staatsangehoerigkeit>
+										<ISOCode3>AUT</ISOCode3>
+										<StaatsnameDE>Österreich</StaatsnameDE>
+										<base:EntityErgebnisReferenz>
+											<base:Technisch>
+												<base:EntityID>0000001</base:EntityID>
+												<base:LetzteAenderung>2003-01-01T00:00:00.000</base:LetzteAenderung>
+											</base:Technisch>
+											<base:Von>2003-01-01T00:00:00.000</base:Von>
+											<base:BeginnCode>REISEDOK_ANLEGEN</base:BeginnCode>
+											<base:BeginnText>Reisedokument anlegen</base:BeginnText>
+											<base:DurchgefuehrtVon>
+												<base:Organisation>
+													<base:GemeindeNr>09999</base:GemeindeNr>
+												</base:Organisation>
+												<base:Benutzer>test@bmi.gv.at</base:Benutzer>
+											</base:DurchgefuehrtVon>
+										</base:EntityErgebnisReferenz>
+									</zmr:Staatsangehoerigkeit>
+								</zmr:NatuerlichePerson>
+							</zmr:PersonErgebnis>
+							<zmr:PersonErgebnis>
+								<!-- historischer Personendaten Gesamtdatensatz (durch Vornamen-Änderung entstanden. Die Staatsagehörigkeit wurde nicht geändert und ist somit mit der im aktuellen Satz identisch-->
+								<base:ErgebnissatzInfo>
+									<base:LetzteAenderung>2004-01-26T00:00:00.000</base:LetzteAenderung>
+								</base:ErgebnissatzInfo>
+								<base:EntityErgebnisReferenz>
+									<base:Technisch>
+										<base:EntityID>0000001</base:EntityID>
+										<base:LetzteAenderung>2004-01-26T00:00:00.000</base:LetzteAenderung>
+									</base:Technisch>
+									<base:Von>2003-01-01T00:00:00.000</base:Von>
+									<base:BeginnCode>GEBURT</base:BeginnCode>
+									<base:BeginnText>Geburt</base:BeginnText>
+									<base:Bis>2004-01-26T00:00:00.000</base:Bis>
+									<base:DurchgefuehrtVon>
+										<base:Organisation>
+											<base:GemeindeNr>09999</base:GemeindeNr>
+										</base:Organisation>
+										<base:Benutzer>test@bmi.gv.at</base:Benutzer>
+									</base:DurchgefuehrtVon>
+								</base:EntityErgebnisReferenz>
+								<base:ZMRZahl>000111111111</base:ZMRZahl>
+								<zmr:NatuerlichePerson>
+									<zmr:PersonenName>
+										<Vorname>Hans</Vorname>
+										<Familienname>Mustermann</Familienname>
+									</zmr:PersonenName>
+									<Geschlecht>männlich</Geschlecht>
+									<Geburtsdatum>2001-05-07</Geburtsdatum>
+									<Geburtsort>Wien</Geburtsort>
+									<Geburtsbundesland>Wien</Geburtsbundesland>
+									<Geburtsstaat>Österreich</Geburtsstaat>
+									<zmr:Staatsangehoerigkeit>
+										<ISOCode3>AUT</ISOCode3>
+										<StaatsnameDE>Österreich</StaatsnameDE>
+										<base:EntityErgebnisReferenz>
+											<base:Technisch>
+												<base:EntityID>0000001</base:EntityID>
+												<base:LetzteAenderung>2003-01-01T00:00:00.000</base:LetzteAenderung>
+											</base:Technisch>
+											<base:Von>2003-01-01T00:00:00.000</base:Von>
+											<base:BeginnCode>REISEDOK_ANLEGEN</base:BeginnCode>
+											<base:BeginnText>Reisedokument anlegen</base:BeginnText>
+											<base:DurchgefuehrtVon>
+												<base:Organisation>
+													<base:GemeindeNr>09999</base:GemeindeNr>
+												</base:Organisation>
+												<base:Benutzer>test@bmi.gv.at</base:Benutzer>
+											</base:DurchgefuehrtVon>
+										</base:EntityErgebnisReferenz>
+									</zmr:Staatsangehoerigkeit>
+								</zmr:NatuerlichePerson>
+							</zmr:PersonErgebnis>
+						</zmr:Personendaten>
+						<zmr:Meldedaten>
+							<!-- Historienliste einer Meldung. Nur ein MeldungErgebnis-Element, wenn nur aktuelle Daten -->
+							<zmr:MeldungErgebnis>
+								<base:ErgebnissatzInfo>
+									<!-- letzter Änderungs-Zeitpunkt des Meldung-Gesamtdatensatzes (mit Auskunftssperren, ...)-->
+									<base:LetzteAenderung>2004-01-26T00:00:00.000</base:LetzteAenderung>
+								</base:ErgebnissatzInfo>
+								<base:EntityErgebnisReferenz>
+									<base:Technisch>
+										<base:EntityID>00000002</base:EntityID>
+										<!-- letzter Änderungs-Zeitpunkt der Meldung-Entity (ohne Auskunftssperren, ...)-->
+										<base:LetzteAenderung>2004-01-26T00:00:00.000</base:LetzteAenderung>
+									</base:Technisch>
+									<base:Von>2004-01-26T00:00:00.000</base:Von>
+									<base:BeginnCode>WSANM</base:BeginnCode>
+									<base:BeginnText>Wohnsitz anmelden</base:BeginnText>
+									<base:DurchgefuehrtVon>
+										<base:Organisation>
+											<base:BehoerdenNr>099999</base:BehoerdenNr>
+										</base:Organisation>
+									</base:DurchgefuehrtVon>
+								</base:EntityErgebnisReferenz>
+								<zmr:Wohnsitz>
+									<zmr:PostAdresse>
+										<Postleitzahl>1245</Postleitzahl>
+										<Gemeinde>Testgemeinde</Gemeinde>
+										<Gemeindekennziffer>09999</Gemeindekennziffer>
+										<Ortschaft>Testort</Ortschaft>
+										<zmr:Zustelladresse>
+											<Strassenname>Teststrasse</Strassenname>
+											<Orientierungsnummer>1</Orientierungsnummer>
+											<Wohnsitzqualitaet>H</Wohnsitzqualitaet>
+										</zmr:Zustelladresse>
+									</zmr:PostAdresse>
+									<base:Adressstatus>XXX000</base:Adressstatus>
+								</zmr:Wohnsitz>
+								<base:GemeldetVon>2004-01-26T00:00:00.000</base:GemeldetVon>
+								<base:PeriodeCode>WSANM</base:PeriodeCode>
+								<base:PeriodeText>Wohnsitz anmelden</base:PeriodeText>
+							</zmr:MeldungErgebnis>
+						</zmr:Meldedaten>
+					</zmr:PersonErgebnisSatz>
+				</zmr:PersonenAbfrageErgebnis>
+			</zmr:PersonenAbfrageResponse>
+		</base:Response>
+	</soap:Body>
+</soap:Envelope>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/personenabfrage/personenabfragedruckrequest.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/personenabfrage/personenabfragedruckrequest.xml
new file mode 100644
index 00000000..2a6cc5e0
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/personenabfrage/personenabfragedruckrequest.xml
@@ -0,0 +1,23 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:zmr="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#" xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#" xmlns="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+xsi:schemaLocation="http://schemas.xmlsoap.org/soap/envelope/ ../../soapenv.xsd http://bmi.gv.at/namespace/zmr-su/base/20040201# ../../../xsd/allgemein/Service.xsd http://bmi.gv.at/namespace/zmr-su/zmr/20040201# ../../../xsd/zmr/ZMRProxy.xsd">
+<soap:Body>
+		<base:Request>
+			<base:WorkflowInfoClient>
+				<base:ProzessName>GP_Verknuepfungsanfrage</base:ProzessName>
+				<base:VorgangName>ZPR_VO_Person_abfragen_drucken</base:VorgangName>
+			</base:WorkflowInfoClient>
+			<base:ClientInfo>
+				<base:Organisation>
+					<base:BehoerdenNr>000000</base:BehoerdenNr>
+				</base:Organisation>
+				<base:Client>Test</base:Client>
+			</base:ClientInfo>
+			<zmr:PersonenAbfrageDruckRequest>
+				<base:EntityID>00001</base:EntityID>
+				<base:EntityID>00008</base:EntityID>
+				<base:EntityID>00003</base:EntityID>
+			</zmr:PersonenAbfrageDruckRequest>
+		</base:Request>
+	</soap:Body>
+</soap:Envelope>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/personenabfrage/personenabfragedruckresponse.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/personenabfrage/personenabfragedruckresponse.xml
new file mode 100644
index 00000000..6463624b
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/personenabfrage/personenabfragedruckresponse.xml
@@ -0,0 +1,51 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:zmr="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#" xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#" xmlns="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+xsi:schemaLocation="http://schemas.xmlsoap.org/soap/envelope/ ../../soapenv.xsd http://bmi.gv.at/namespace/zmr-su/base/20040201# ../../../xsd/allgemein/Service.xsd http://bmi.gv.at/namespace/zmr-su/zmr/20040201# ../../../xsd/zmr/ZMRProxy.xsd">
+<soap:Body>
+		<base:Response>
+			<base:WorkflowInfoServer>
+				<base:ProzessName>GP_Verknuepfungsanfrage</base:ProzessName>
+				<base:ProzessInstanzID>1234</base:ProzessInstanzID>
+				<base:ProzessStatus>C</base:ProzessStatus>
+				<base:SequenzID>00034</base:SequenzID>
+				<base:Subprozess>
+					<base:VorgangName>ZPR_VO_Person_abfragen_drucken</base:VorgangName>
+					<base:VorgangStatus>C</base:VorgangStatus>
+					<base:Required>false</base:Required>
+					<base:Visible>true</base:Visible>
+				</base:Subprozess>
+			</base:WorkflowInfoServer>
+			<base:ServerInfo>
+				<base:GeneriertVon>ZMR Server</base:GeneriertVon>
+				<base:GeneriertAm>2004-01-26T00:00:00.000</base:GeneriertAm>
+				<base:ServerTransaktionNr>1234567</base:ServerTransaktionNr>
+			</base:ServerInfo>
+			<zmr:PersonenAbfrageDruckResponse>
+				<zmr:PersonenAbfrageAnfrage>
+					<zmr:PersonenAbfrageInfo>
+						<base:Bezugsfeld>Test</base:Bezugsfeld>
+						<zmr:Suchkriterien>
+							<base:InclusivHistorie>false</base:InclusivHistorie>
+							<base:Formalisiert>false</base:Formalisiert>
+						</zmr:Suchkriterien>
+						<zmr:Ergebniskriterien>
+							<base:InclusivHistorie>true</base:InclusivHistorie>
+						</zmr:Ergebniskriterien>
+						<base:AnzahlSaetze>10</base:AnzahlSaetze>
+					</zmr:PersonenAbfrageInfo>
+					<NatuerlichePerson>
+						<PersonenName>
+							<Vorname>Max</Vorname>
+							<Familienname>Mustermann</Familienname>
+						</PersonenName>
+					</NatuerlichePerson>
+				</zmr:PersonenAbfrageAnfrage>
+				<base:Message>
+					<base:Number>0003</base:Number>
+					<base:Text>Die Druckdaten wurden aufbereitet</base:Text>
+				</base:Message>
+				<zmr:PDFDaten>XXYY</zmr:PDFDaten>
+			</zmr:PersonenAbfrageDruckResponse>
+		</base:Response>
+	</soap:Body>
+</soap:Envelope>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/personenabfrage/personenabfragerequest.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/personenabfrage/personenabfragerequest.xml
new file mode 100644
index 00000000..a856e8ab
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/personenabfrage/personenabfragerequest.xml
@@ -0,0 +1,37 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:zmr="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#" xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#" xmlns="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+xsi:schemaLocation="http://schemas.xmlsoap.org/soap/envelope/ ../../soapenv.xsd http://bmi.gv.at/namespace/zmr-su/base/20040201# ../../../xsd/allgemein/Service.xsd http://bmi.gv.at/namespace/zmr-su/zmr/20040201# ../../../xsd/zmr/ZMRProxy.xsd">
+<soap:Body>
+		<base:Request>
+			<base:WorkflowInfoClient>
+				<base:ProzessName>GP_Verknuepfungsanfrage</base:ProzessName>
+				<base:VorgangName>ZPR_VO_Person_abfragen</base:VorgangName>
+			</base:WorkflowInfoClient>
+			<base:ClientInfo>
+				<base:Organisation>
+					<base:BehoerdenNr>000000</base:BehoerdenNr>
+				</base:Organisation>
+				<base:Client>Test</base:Client>
+			</base:ClientInfo>
+			<zmr:PersonenAbfrageRequest>
+				<zmr:PersonenAbfrageInfo>
+					<base:Bezugsfeld>Test</base:Bezugsfeld>
+					<zmr:Suchkriterien>
+						<base:InclusivHistorie>false</base:InclusivHistorie>
+						<base:Formalisiert>false</base:Formalisiert>
+					</zmr:Suchkriterien>
+					<zmr:Ergebniskriterien>
+						<base:InclusivHistorie>true</base:InclusivHistorie>
+					</zmr:Ergebniskriterien>
+					<base:AnzahlSaetze>10</base:AnzahlSaetze>
+				</zmr:PersonenAbfrageInfo>
+				<NatuerlichePerson>
+					<PersonenName>
+						<Vorname>Max</Vorname>
+						<Familienname>Mustermann</Familienname>
+					</PersonenName>					
+				</NatuerlichePerson>
+			</zmr:PersonenAbfrageRequest>
+		</base:Request>
+	</soap:Body>
+</soap:Envelope>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/personenabfrage/personenabfrageresponse.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/personenabfrage/personenabfrageresponse.xml
new file mode 100644
index 00000000..70b6aef3
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/personenabfrage/personenabfrageresponse.xml
@@ -0,0 +1,209 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:zmr="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#" xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#" xmlns="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+xsi:schemaLocation="http://schemas.xmlsoap.org/soap/envelope/ ../../soapenv.xsd http://bmi.gv.at/namespace/zmr-su/base/20040201# ../../../xsd/allgemein/Service.xsd http://bmi.gv.at/namespace/zmr-su/zmr/20040201# ../../../xsd/zmr/ZMRProxy.xsd">
+<soap:Body>
+		<base:Response>
+			<base:WorkflowInfoServer>
+				<base:ProzessName>GP_Verknuepfungsanfrage</base:ProzessName>
+				<base:ProzessInstanzID>1234</base:ProzessInstanzID>
+				<base:ProzessStatus>A</base:ProzessStatus>
+				<base:SequenzID>00034</base:SequenzID>
+				<base:Subprozess>
+					<base:VorgangName>ZPR_VO_Person_abfragen</base:VorgangName>
+					<base:VorgangStatus>A</base:VorgangStatus>
+					<base:Required>false</base:Required>
+					<base:Visible>true</base:Visible>
+				</base:Subprozess>
+			</base:WorkflowInfoServer>
+			<base:ServerInfo>
+				<base:GeneriertVon>ZMR Server</base:GeneriertVon>
+				<base:GeneriertAm>2004-01-26T00:00:00.000</base:GeneriertAm>
+				<base:ServerTransaktionNr>1234567</base:ServerTransaktionNr>
+			</base:ServerInfo>
+			<zmr:PersonenAbfrageResponse>
+				<zmr:PersonenAbfrageAnfrage>
+					<zmr:PersonenAbfrageInfo>
+						<base:Bezugsfeld>Test</base:Bezugsfeld>
+						<zmr:Suchkriterien>
+							<base:InclusivHistorie>false</base:InclusivHistorie>
+							<base:Formalisiert>false</base:Formalisiert>
+						</zmr:Suchkriterien>
+						<zmr:Ergebniskriterien>
+							<base:InclusivHistorie>true</base:InclusivHistorie>
+						</zmr:Ergebniskriterien>
+						<base:AnzahlSaetze>10</base:AnzahlSaetze>
+					</zmr:PersonenAbfrageInfo>
+					<NatuerlichePerson>
+						<PersonenName>
+							<Vorname>Max</Vorname>
+							<Familienname>Mustermann</Familienname>
+						</PersonenName>
+					</NatuerlichePerson>
+				</zmr:PersonenAbfrageAnfrage>
+				<base:Message>
+					<base:Number>0003</base:Number>
+					<base:Text>Es wurde 1 Personen im ZMR gefunden</base:Text>
+				</base:Message>
+				<zmr:PersonenAbfrageErgebnis>
+					<base:GefundeneSaetze>1</base:GefundeneSaetze>
+					<base:SaetzeVon>0</base:SaetzeVon>
+					<base:SaetzeBis>1</base:SaetzeBis>
+					<zmr:PersonErgebnisSatz>
+						<!-- 1. gelieferte Person im Suchergebnis (Personendaten + Meldedaten, historisch und aktuell) -->
+						<zmr:Personendaten>
+							<!-- Historienliste der Personendaten. Nur ein PersonErgebnis-Element, wenn nur aktuelle Daten -->
+							<zmr:PersonErgebnis>
+								<!-- aktueller Personendaten Gesamtdatensatz -->
+								<base:ErgebnissatzInfo>
+									<!-- letzter Änderungs-Zeitpunkt des Person-Gesamtdatensatzes (mit Staatsangehörigkeiten, ...)-->
+									<base:LetzteAenderung>2004-01-26T00:00:00.000</base:LetzteAenderung>
+								</base:ErgebnissatzInfo>								
+								<base:EntityErgebnisReferenz>
+									<base:Technisch>
+										<base:EntityID>0000001</base:EntityID>
+										<!-- letzter Änderungs-Zeitpunkt der Person-Entity (ohne Staatsangehörigkeiten, ...)-->
+										<base:LetzteAenderung>2004-01-26T00:00:00.000</base:LetzteAenderung>
+									</base:Technisch>
+									<base:Von>2004-01-26T00:00:00.000</base:Von>
+									<base:BeginnCode>AMKOR</base:BeginnCode>
+									<base:BeginnText>Amtliche Korrektur</base:BeginnText>
+									<base:DurchgefuehrtVon>
+										<base:Organisation>
+											<base:GemeindeNr>09999</base:GemeindeNr>
+										</base:Organisation>
+										<base:Benutzer>test@bmi.gv.at</base:Benutzer>
+									</base:DurchgefuehrtVon>
+								</base:EntityErgebnisReferenz>
+								<base:ZMRZahl>000111111111</base:ZMRZahl>
+								<zmr:NatuerlichePerson>
+									<zmr:PersonenName>
+										<Vorname>Maximilian</Vorname>
+										<Familienname>Mustermann</Familienname>
+									</zmr:PersonenName>
+									<Geschlecht>männlich</Geschlecht>
+									<Geburtsdatum>2001-05-07</Geburtsdatum>
+									<Geburtsort>Wien</Geburtsort>
+									<Geburtsbundesland>Wien</Geburtsbundesland>
+									<Geburtsstaat>Österreich</Geburtsstaat>
+									<zmr:Staatsangehoerigkeit>
+										<ISOCode3>AUT</ISOCode3>
+										<StaatsnameDE>Österreich</StaatsnameDE>
+										<base:EntityErgebnisReferenz>
+											<base:Technisch>
+												<base:EntityID>0000001</base:EntityID>
+												<base:LetzteAenderung>2003-01-01T00:00:00.000</base:LetzteAenderung>
+											</base:Technisch>
+											<base:Von>2003-01-01T00:00:00.000</base:Von>
+											<base:BeginnCode>REISEDOK_ANLEGEN</base:BeginnCode>
+											<base:BeginnText>Reisedokument anlegen</base:BeginnText>
+											<base:DurchgefuehrtVon>
+												<base:Organisation>
+													<base:GemeindeNr>09999</base:GemeindeNr>
+												</base:Organisation>
+												<base:Benutzer>test@bmi.gv.at</base:Benutzer>
+											</base:DurchgefuehrtVon>
+										</base:EntityErgebnisReferenz>
+									</zmr:Staatsangehoerigkeit>
+								</zmr:NatuerlichePerson>
+							</zmr:PersonErgebnis>
+							<zmr:PersonErgebnis>
+								<!-- historischer Personendaten Gesamtdatensatz (durch Vornamen-Änderung entstanden. Die Staatsagehörigkeit wurde nicht geändert und ist somit mit der im aktuellen Satz identisch-->
+								<base:ErgebnissatzInfo>
+									<base:LetzteAenderung>2004-01-26T00:00:00.000</base:LetzteAenderung>
+								</base:ErgebnissatzInfo>
+								<base:EntityErgebnisReferenz>								
+									<base:Technisch>
+										<base:EntityID>0000001</base:EntityID>
+										<base:LetzteAenderung>2004-01-26T00:00:00.000</base:LetzteAenderung>
+									</base:Technisch>
+									<base:Von>2003-01-01T00:00:00.000</base:Von>
+									<base:BeginnCode>GEBURT</base:BeginnCode>
+									<base:BeginnText>Geburt</base:BeginnText>
+									<base:Bis>2004-01-26T00:00:00.000</base:Bis>
+									<base:DurchgefuehrtVon>
+										<base:Organisation>
+											<base:GemeindeNr>09999</base:GemeindeNr>
+										</base:Organisation>
+										<base:Benutzer>test@bmi.gv.at</base:Benutzer>
+									</base:DurchgefuehrtVon>
+								</base:EntityErgebnisReferenz>
+								<base:ZMRZahl>000111111111</base:ZMRZahl>
+								<zmr:NatuerlichePerson>
+									<zmr:PersonenName>
+										<Vorname>Hans</Vorname>
+										<Familienname>Mustermann</Familienname>
+									</zmr:PersonenName>
+									<Geschlecht>männlich</Geschlecht>
+									<Geburtsdatum>2001-05-07</Geburtsdatum>
+									<Geburtsort>Wien</Geburtsort>
+									<Geburtsbundesland>Wien</Geburtsbundesland>
+									<Geburtsstaat>Österreich</Geburtsstaat>
+									<zmr:Staatsangehoerigkeit>
+										<ISOCode3>AUT</ISOCode3>
+										<StaatsnameDE>Österreich</StaatsnameDE>
+										<base:EntityErgebnisReferenz>
+											<base:Technisch>
+												<base:EntityID>0000001</base:EntityID>
+												<base:LetzteAenderung>2003-01-01T00:00:00.000</base:LetzteAenderung>
+											</base:Technisch>
+											<base:Von>2003-01-01T00:00:00.000</base:Von>
+											<base:BeginnCode>REISEDOK_ANLEGEN</base:BeginnCode>
+											<base:BeginnText>Reisedokument anlegen</base:BeginnText>
+											<base:DurchgefuehrtVon>
+												<base:Organisation>
+													<base:GemeindeNr>09999</base:GemeindeNr>
+												</base:Organisation>
+												<base:Benutzer>test@bmi.gv.at</base:Benutzer>
+											</base:DurchgefuehrtVon>
+										</base:EntityErgebnisReferenz>
+									</zmr:Staatsangehoerigkeit>
+								</zmr:NatuerlichePerson>
+							</zmr:PersonErgebnis>
+						</zmr:Personendaten>
+						<zmr:Meldedaten>
+							<!-- Historienliste einer Meldung. Nur ein MeldungErgebnis-Element, wenn nur aktuelle Daten -->							
+							<zmr:MeldungErgebnis>
+								<base:ErgebnissatzInfo>
+									<!-- letzter Änderungs-Zeitpunkt des Meldung-Gesamtdatensatzes (mit Auskunftssperren, ...)-->
+									<base:LetzteAenderung>2004-01-26T00:00:00.000</base:LetzteAenderung>
+								</base:ErgebnissatzInfo>							
+								<base:EntityErgebnisReferenz>
+									<base:Technisch>
+										<base:EntityID>00000002</base:EntityID>
+										<!-- letzter Änderungs-Zeitpunkt der Meldung-Entity (ohne Auskunftssperren, ...)-->
+										<base:LetzteAenderung>2004-01-26T00:00:00.000</base:LetzteAenderung>
+									</base:Technisch>
+									<base:Von>2004-01-26T00:00:00.000</base:Von>
+									<base:BeginnCode>WSANM</base:BeginnCode>
+									<base:BeginnText>Wohnsitz anmelden</base:BeginnText>
+									<base:DurchgefuehrtVon>
+										<base:Organisation>
+											<base:BehoerdenNr>099999</base:BehoerdenNr>
+										</base:Organisation>
+									</base:DurchgefuehrtVon>
+								</base:EntityErgebnisReferenz>
+								<zmr:Wohnsitz>
+									<zmr:PostAdresse>
+										<Postleitzahl>1245</Postleitzahl>
+										<Gemeinde>Testgemeinde</Gemeinde>
+										<Gemeindekennziffer>09999</Gemeindekennziffer>
+										<Ortschaft>Testort</Ortschaft>
+										<zmr:Zustelladresse>
+											<Strassenname>Teststrasse</Strassenname>
+											<Orientierungsnummer>1</Orientierungsnummer>
+											<Wohnsitzqualitaet>H</Wohnsitzqualitaet>
+										</zmr:Zustelladresse>
+									</zmr:PostAdresse>
+									<base:Adressstatus>XXX000</base:Adressstatus>
+								</zmr:Wohnsitz>
+								<base:GemeldetVon>2004-01-26T00:00:00.000</base:GemeldetVon>
+								<base:PeriodeCode>WSANM</base:PeriodeCode>
+								<base:PeriodeText>Wohnsitz anmelden</base:PeriodeText>
+							</zmr:MeldungErgebnis>
+						</zmr:Meldedaten>
+					</zmr:PersonErgebnisSatz>
+				</zmr:PersonenAbfrageErgebnis>
+			</zmr:PersonenAbfrageResponse>
+		</base:Response>
+	</soap:Body>
+</soap:Envelope>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/personensuche/blaetternrequest.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/personensuche/blaetternrequest.xml
new file mode 100644
index 00000000..4458527e
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/personensuche/blaetternrequest.xml
@@ -0,0 +1,27 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:zmr="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#" xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#" xmlns="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+xsi:schemaLocation="http://schemas.xmlsoap.org/soap/envelope/ ../../soapenv.xsd http://bmi.gv.at/namespace/zmr-su/base/20040201# ../../../xsd/allgemein/Service.xsd http://bmi.gv.at/namespace/zmr-su/zmr/20040201# ../../../xsd/zmr/ZMRProxy.xsd">
+<soap:Body>
+		<base:Request>
+			<base:WorkflowInfoClient>
+				<base:ProzessName>GP_Person_suchen_Meldevorgang</base:ProzessName>
+				<base:ProzessInstanzID>1234</base:ProzessInstanzID>
+				<!-- Die InstanzID der laufenden Prozesses muss hier übermittelt werden, um die Suche fortzusetzen (aus WorkflowInfoServer des ersten Suchergebnisses-->
+				<base:SequenzID>00034</base:SequenzID>
+				<base:VorgangName>ZPR_VO_Person_suchen_Meldevorgang</base:VorgangName>
+			</base:WorkflowInfoClient>
+			<base:ClientInfo>
+				<base:Organisation>
+					<base:BehoerdenNr>000000</base:BehoerdenNr>
+				</base:Organisation>
+				<base:Client>Test</base:Client>
+			</base:ClientInfo>
+			<base:BlaetternRequest>
+				<base:BlaetternInfo>
+					<base:Richtung>Vor</base:Richtung>
+					<base:AnzahlSaetze>3</base:AnzahlSaetze>
+				</base:BlaetternInfo>
+			</base:BlaetternRequest>
+		</base:Request>
+	</soap:Body>
+</soap:Envelope>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/personensuche/blaetternresponse.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/personensuche/blaetternresponse.xml
new file mode 100644
index 00000000..f082c3cc
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/personensuche/blaetternresponse.xml
@@ -0,0 +1,210 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:zmr="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#" xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#" xmlns="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+xsi:schemaLocation="http://schemas.xmlsoap.org/soap/envelope/ ../../soapenv.xsd http://bmi.gv.at/namespace/zmr-su/base/20040201# ../../../xsd/allgemein/Service.xsd http://bmi.gv.at/namespace/zmr-su/zmr/20040201# ../../../xsd/zmr/ZMRProxy.xsd">
+<soap:Body>
+		<base:Response>
+			<base:WorkflowInfoServer>
+				<base:ProzessName>GP_Person_suchen_Meldevorgang</base:ProzessName>
+				<base:ProzessInstanzID>1234</base:ProzessInstanzID>
+				<base:ProzessStatus>A</base:ProzessStatus>
+				<base:SequenzID>00034</base:SequenzID>
+				<base:Subprozess>
+					<base:VorgangName>ZPR_VO_Person_suchen_Meldevorgang</base:VorgangName>
+					<base:VorgangStatus>A</base:VorgangStatus>
+					<base:Required>false</base:Required>
+					<base:Visible>true</base:Visible>
+				</base:Subprozess>
+			</base:WorkflowInfoServer>
+			<base:ServerInfo>
+				<base:GeneriertVon>ZMR Server</base:GeneriertVon>
+				<base:GeneriertAm>2004-01-26T00:00:00.000</base:GeneriertAm>
+				<base:ServerTransaktionNr>1234567</base:ServerTransaktionNr>
+			</base:ServerInfo>
+			<zmr:PersonenAbfrageResponse>
+				<zmr:PersonenAbfrageAnfrage>
+					<zmr:PersonenAbfrageInfo>
+						<base:Bezugsfeld>Test</base:Bezugsfeld>
+						<zmr:Suchkriterien>
+							<base:InclusivHistorie>false</base:InclusivHistorie>
+							<base:Formalisiert>false</base:Formalisiert>
+						</zmr:Suchkriterien>
+						<zmr:Ergebniskriterien>
+							<base:InclusivHistorie>true</base:InclusivHistorie>
+						</zmr:Ergebniskriterien>
+						<base:AnzahlSaetze>10</base:AnzahlSaetze>
+					</zmr:PersonenAbfrageInfo>
+					<NatuerlichePerson>
+						<PersonenName>
+							<Vorname>Max</Vorname>
+							<Familienname>Mustermann</Familienname>
+						</PersonenName>
+					</NatuerlichePerson>
+				</zmr:PersonenAbfrageAnfrage>
+				<base:Message>
+					<base:Number>0003</base:Number>
+					<base:Text>Es wurde 1 Personen im ZMR gefunden</base:Text>
+				</base:Message>
+				<zmr:PersonenAbfrageErgebnis>
+					<base:GefundeneSaetze>4</base:GefundeneSaetze>
+					<base:SaetzeVon>3</base:SaetzeVon>
+					<!-- Es wurde weitergeblättert - der letzte Satz wird geliefert -->
+					<base:SaetzeBis>4</base:SaetzeBis>
+					<zmr:PersonErgebnisSatz>
+						<!-- 1. gelieferte Person im Suchergebnis (Personendaten + Meldedaten, historisch und aktuell) -->
+						<zmr:Personendaten>
+							<!-- Historienliste der Personendaten. Nur ein PersonErgebnis-Element, wenn nur aktuelle Daten -->
+							<zmr:PersonErgebnis>
+								<!-- aktueller Personendaten Gesamtdatensatz -->
+								<base:ErgebnissatzInfo>
+									<!-- letzter Änderungs-Zeitpunkt des Person-Gesamtdatensatzes (mit Staatsangehörigkeiten, ...)-->
+									<base:LetzteAenderung>2004-01-26T00:00:00.000</base:LetzteAenderung>
+								</base:ErgebnissatzInfo>
+								<base:EntityErgebnisReferenz>
+									<base:Technisch>
+										<base:EntityID>0000001</base:EntityID>
+										<!-- letzter Änderungs-Zeitpunkt der Person-Entity (ohne Staatsangehörigkeiten, ...)-->
+										<base:LetzteAenderung>2004-01-26T00:00:00.000</base:LetzteAenderung>
+									</base:Technisch>
+									<base:Von>2004-01-26T00:00:00.000</base:Von>
+									<base:BeginnCode>AMKOR</base:BeginnCode>
+									<base:BeginnText>Amtliche Korrektur</base:BeginnText>
+									<base:DurchgefuehrtVon>
+										<base:Organisation>
+											<base:GemeindeNr>09999</base:GemeindeNr>
+										</base:Organisation>
+										<base:Benutzer>test@bmi.gv.at</base:Benutzer>
+									</base:DurchgefuehrtVon>
+								</base:EntityErgebnisReferenz>
+								<base:ZMRZahl>000111111111</base:ZMRZahl>
+								<zmr:NatuerlichePerson>
+									<zmr:PersonenName>
+										<Vorname>Maximilian</Vorname>
+										<Familienname>Mustermann</Familienname>
+									</zmr:PersonenName>
+									<Geschlecht>männlich</Geschlecht>
+									<Geburtsdatum>2001-05-07</Geburtsdatum>
+									<Geburtsort>Wien</Geburtsort>
+									<Geburtsbundesland>Wien</Geburtsbundesland>
+									<Geburtsstaat>Österreich</Geburtsstaat>
+									<zmr:Staatsangehoerigkeit>
+										<ISOCode3>AUT</ISOCode3>
+										<StaatsnameDE>Österreich</StaatsnameDE>
+										<base:EntityErgebnisReferenz>
+											<base:Technisch>
+												<base:EntityID>0000001</base:EntityID>
+												<base:LetzteAenderung>2003-01-01T00:00:00.000</base:LetzteAenderung>
+											</base:Technisch>
+											<base:Von>2003-01-01T00:00:00.000</base:Von>
+											<base:BeginnCode>REISEDOK_ANLEGEN</base:BeginnCode>
+											<base:BeginnText>Reisedokument anlegen</base:BeginnText>
+											<base:DurchgefuehrtVon>
+												<base:Organisation>
+													<base:GemeindeNr>09999</base:GemeindeNr>
+												</base:Organisation>
+												<base:Benutzer>test@bmi.gv.at</base:Benutzer>
+											</base:DurchgefuehrtVon>
+										</base:EntityErgebnisReferenz>
+									</zmr:Staatsangehoerigkeit>
+								</zmr:NatuerlichePerson>
+							</zmr:PersonErgebnis>
+							<zmr:PersonErgebnis>
+								<!-- historischer Personendaten Gesamtdatensatz (durch Vornamen-Änderung entstanden. Die Staatsagehörigkeit wurde nicht geändert und ist somit mit der im aktuellen Satz identisch-->
+								<base:ErgebnissatzInfo>
+									<base:LetzteAenderung>2004-01-26T00:00:00.000</base:LetzteAenderung>
+								</base:ErgebnissatzInfo>
+								<base:EntityErgebnisReferenz>
+									<base:Technisch>
+										<base:EntityID>0000001</base:EntityID>
+										<base:LetzteAenderung>2004-01-26T00:00:00.000</base:LetzteAenderung>
+									</base:Technisch>
+									<base:Von>2003-01-01T00:00:00.000</base:Von>
+									<base:BeginnCode>GEBURT</base:BeginnCode>
+									<base:BeginnText>Geburt</base:BeginnText>
+									<base:Bis>2004-01-26T00:00:00.000</base:Bis>
+									<base:DurchgefuehrtVon>
+										<base:Organisation>
+											<base:GemeindeNr>09999</base:GemeindeNr>
+										</base:Organisation>
+										<base:Benutzer>test@bmi.gv.at</base:Benutzer>
+									</base:DurchgefuehrtVon>
+								</base:EntityErgebnisReferenz>
+								<base:ZMRZahl>000111111111</base:ZMRZahl>
+								<zmr:NatuerlichePerson>
+									<zmr:PersonenName>
+										<Vorname>Hans</Vorname>
+										<Familienname>Mustermann</Familienname>
+									</zmr:PersonenName>
+									<Geschlecht>männlich</Geschlecht>
+									<Geburtsdatum>2001-05-07</Geburtsdatum>
+									<Geburtsort>Wien</Geburtsort>
+									<Geburtsbundesland>Wien</Geburtsbundesland>
+									<Geburtsstaat>Österreich</Geburtsstaat>
+									<zmr:Staatsangehoerigkeit>
+										<ISOCode3>AUT</ISOCode3>
+										<StaatsnameDE>Österreich</StaatsnameDE>
+										<base:EntityErgebnisReferenz>
+											<base:Technisch>
+												<base:EntityID>0000001</base:EntityID>
+												<base:LetzteAenderung>2003-01-01T00:00:00.000</base:LetzteAenderung>
+											</base:Technisch>
+											<base:Von>2003-01-01T00:00:00.000</base:Von>
+											<base:BeginnCode>REISEDOK_ANLEGEN</base:BeginnCode>
+											<base:BeginnText>Reisedokument anlegen</base:BeginnText>
+											<base:DurchgefuehrtVon>
+												<base:Organisation>
+													<base:GemeindeNr>09999</base:GemeindeNr>
+												</base:Organisation>
+												<base:Benutzer>test@bmi.gv.at</base:Benutzer>
+											</base:DurchgefuehrtVon>
+										</base:EntityErgebnisReferenz>
+									</zmr:Staatsangehoerigkeit>
+								</zmr:NatuerlichePerson>
+							</zmr:PersonErgebnis>
+						</zmr:Personendaten>
+						<zmr:Meldedaten>
+							<!-- Historienliste einer Meldung. Nur ein MeldungErgebnis-Element, wenn nur aktuelle Daten -->
+							<zmr:MeldungErgebnis>
+								<base:ErgebnissatzInfo>
+									<!-- letzter Änderungs-Zeitpunkt des Meldung-Gesamtdatensatzes (mit Auskunftssperren, ...)-->
+									<base:LetzteAenderung>2004-01-26T00:00:00.000</base:LetzteAenderung>
+								</base:ErgebnissatzInfo>
+								<base:EntityErgebnisReferenz>
+									<base:Technisch>
+										<base:EntityID>00000002</base:EntityID>
+										<!-- letzter Änderungs-Zeitpunkt der Meldung-Entity (ohne Auskunftssperren, ...)-->
+										<base:LetzteAenderung>2004-01-26T00:00:00.000</base:LetzteAenderung>
+									</base:Technisch>
+									<base:Von>2004-01-26T00:00:00.000</base:Von>
+									<base:BeginnCode>WSANM</base:BeginnCode>
+									<base:BeginnText>Wohnsitz anmelden</base:BeginnText>
+									<base:DurchgefuehrtVon>
+										<base:Organisation>
+											<base:BehoerdenNr>099999</base:BehoerdenNr>
+										</base:Organisation>
+									</base:DurchgefuehrtVon>
+								</base:EntityErgebnisReferenz>
+								<zmr:Wohnsitz>
+									<zmr:PostAdresse>
+										<Postleitzahl>1245</Postleitzahl>
+										<Gemeinde>Testgemeinde</Gemeinde>
+										<Gemeindekennziffer>09999</Gemeindekennziffer>
+										<Ortschaft>Testort</Ortschaft>
+										<zmr:Zustelladresse>
+											<Strassenname>Teststrasse</Strassenname>
+											<Orientierungsnummer>1</Orientierungsnummer>
+											<Wohnsitzqualitaet>H</Wohnsitzqualitaet>
+										</zmr:Zustelladresse>
+									</zmr:PostAdresse>
+									<base:Adressstatus>XXX000</base:Adressstatus>
+								</zmr:Wohnsitz>
+								<base:GemeldetVon>2004-01-26T00:00:00.000</base:GemeldetVon>
+								<base:PeriodeCode>WSANM</base:PeriodeCode>
+								<base:PeriodeText>Wohnsitz anmelden</base:PeriodeText>
+							</zmr:MeldungErgebnis>
+						</zmr:Meldedaten>
+					</zmr:PersonErgebnisSatz>
+				</zmr:PersonenAbfrageErgebnis>
+			</zmr:PersonenAbfrageResponse>
+		</base:Response>
+	</soap:Body>
+</soap:Envelope>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/personensuche/personensucherequest.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/personensuche/personensucherequest.xml
new file mode 100644
index 00000000..ca8bf47e
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/personensuche/personensucherequest.xml
@@ -0,0 +1,37 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:zmr="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#" xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#" xmlns="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+xsi:schemaLocation="http://schemas.xmlsoap.org/soap/envelope/ ../../soapenv.xsd http://bmi.gv.at/namespace/zmr-su/base/20040201# ../../../xsd/allgemein/Service.xsd http://bmi.gv.at/namespace/zmr-su/zmr/20040201# ../../../xsd/zmr/ZMRProxy.xsd">
+<soap:Body>
+		<base:Request>
+			<base:WorkflowInfoClient>
+				<base:ProzessName>GP_Person_suchen_Meldevorgang</base:ProzessName>
+				<base:VorgangName>ZPR_VO_Person_suchen_Meldevorgang</base:VorgangName>
+			</base:WorkflowInfoClient>
+			<base:ClientInfo>
+				<base:Organisation>
+					<base:BehoerdenNr>000000</base:BehoerdenNr>
+				</base:Organisation>
+				<base:Client>Test</base:Client>
+			</base:ClientInfo>
+			<zmr:PersonSuchenRequest>
+				<zmr:PersonensucheInfo>
+					<base:Bezugsfeld>Test</base:Bezugsfeld>
+					<zmr:Suchkriterien>
+						<base:InclusivHistorie>false</base:InclusivHistorie>
+						<base:Formalisiert>false</base:Formalisiert>
+					</zmr:Suchkriterien>
+					<zmr:Ergebniskriterien>
+						<base:InclusivHistorie>true</base:InclusivHistorie>
+					</zmr:Ergebniskriterien>
+					<base:AnzahlSaetze>10</base:AnzahlSaetze>
+				</zmr:PersonensucheInfo>
+				<NatuerlichePerson>
+					<PersonenName>
+						<Vorname>Max</Vorname>
+						<Familienname>Mustermann</Familienname>
+					</PersonenName>					
+				</NatuerlichePerson>
+			</zmr:PersonSuchenRequest>
+		</base:Request>
+	</soap:Body>
+</soap:Envelope>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/personensuche/personensucheresponse.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/personensuche/personensucheresponse.xml
new file mode 100644
index 00000000..5a2526fa
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/personensuche/personensucheresponse.xml
@@ -0,0 +1,209 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:zmr="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#" xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#" xmlns="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+xsi:schemaLocation="http://schemas.xmlsoap.org/soap/envelope/ ../../soapenv.xsd http://bmi.gv.at/namespace/zmr-su/base/20040201# ../../../xsd/allgemein/Service.xsd http://bmi.gv.at/namespace/zmr-su/zmr/20040201# ../../../xsd/zmr/ZMRProxy.xsd">
+<soap:Body>
+		<base:Response>
+			<base:WorkflowInfoServer>
+				<base:ProzessName>GP_Person_suchen_Meldevorgang</base:ProzessName>
+				<base:ProzessInstanzID>1234</base:ProzessInstanzID>
+				<base:ProzessStatus>A</base:ProzessStatus>
+				<base:SequenzID>00034</base:SequenzID>
+				<base:Subprozess>
+					<base:VorgangName>ZPR_VO_Person_suchen_Meldevorgang</base:VorgangName>
+					<base:VorgangStatus>A</base:VorgangStatus>
+					<base:Required>false</base:Required>
+					<base:Visible>true</base:Visible>
+				</base:Subprozess>
+			</base:WorkflowInfoServer>
+			<base:ServerInfo>
+				<base:GeneriertVon>ZMR Server</base:GeneriertVon>
+				<base:GeneriertAm>2004-01-26T00:00:00.000</base:GeneriertAm>
+				<base:ServerTransaktionNr>1234567</base:ServerTransaktionNr>
+			</base:ServerInfo>
+			<zmr:PersonSuchenResponse>
+				<zmr:PersonensucheAnfrage>
+					<zmr:PersonensucheInfo>
+						<base:Bezugsfeld>Test</base:Bezugsfeld>
+						<zmr:Suchkriterien>
+							<base:InclusivHistorie>false</base:InclusivHistorie>
+							<base:Formalisiert>false</base:Formalisiert>
+						</zmr:Suchkriterien>
+						<zmr:Ergebniskriterien>
+							<base:InclusivHistorie>true</base:InclusivHistorie>
+						</zmr:Ergebniskriterien>
+						<base:AnzahlSaetze>10</base:AnzahlSaetze>
+					</zmr:PersonensucheInfo>
+					<NatuerlichePerson>
+						<PersonenName>
+							<Vorname>Max</Vorname>
+							<Familienname>Mustermann</Familienname>
+						</PersonenName>
+					</NatuerlichePerson>
+				</zmr:PersonensucheAnfrage>
+				<base:Message>
+					<base:Number>0003</base:Number>
+					<base:Text>Es wurde 1 Personen im ZMR gefunden</base:Text>
+				</base:Message>
+				<zmr:Personensuchergebnis>
+					<base:GefundeneSaetze>1</base:GefundeneSaetze>
+					<base:SaetzeVon>0</base:SaetzeVon>
+					<base:SaetzeBis>1</base:SaetzeBis>
+					<zmr:PersonErgebnisSatz>
+						<!-- 1. gelieferte Person im Suchergebnis (Personendaten + Meldedaten, historisch und aktuell) -->
+						<zmr:Personendaten>
+							<!-- Historienliste der Personendaten. Nur ein PersonErgebnis-Element, wenn nur aktuelle Daten -->
+							<zmr:PersonErgebnis>
+								<!-- aktueller Personendaten Gesamtdatensatz -->
+								<base:ErgebnissatzInfo>
+									<!-- letzter Änderungs-Zeitpunkt des Person-Gesamtdatensatzes (mit Staatsangehörigkeiten, ...)-->
+									<base:LetzteAenderung>2004-01-26T00:00:00.000</base:LetzteAenderung>
+								</base:ErgebnissatzInfo>								
+								<base:EntityErgebnisReferenz>
+									<base:Technisch>
+										<base:EntityID>0000001</base:EntityID>
+										<!-- letzter Änderungs-Zeitpunkt der Person-Entity (ohne Staatsangehörigkeiten, ...)-->
+										<base:LetzteAenderung>2004-01-26T00:00:00.000</base:LetzteAenderung>
+									</base:Technisch>
+									<base:Von>2004-01-26T00:00:00.000</base:Von>
+									<base:BeginnCode>AMKOR</base:BeginnCode>
+									<base:BeginnText>Amtliche Korrektur</base:BeginnText>
+									<base:DurchgefuehrtVon>
+										<base:Organisation>
+											<base:GemeindeNr>09999</base:GemeindeNr>
+										</base:Organisation>
+										<base:Benutzer>test@bmi.gv.at</base:Benutzer>
+									</base:DurchgefuehrtVon>
+								</base:EntityErgebnisReferenz>
+								<base:ZMRZahl>000111111111</base:ZMRZahl>
+								<zmr:NatuerlichePerson>
+									<zmr:PersonenName>
+										<Vorname>Maximilian</Vorname>
+										<Familienname>Mustermann</Familienname>
+									</zmr:PersonenName>
+									<Geschlecht>männlich</Geschlecht>
+									<Geburtsdatum>2001-05-07</Geburtsdatum>
+									<Geburtsort>Wien</Geburtsort>
+									<Geburtsbundesland>Wien</Geburtsbundesland>
+									<Geburtsstaat>Österreich</Geburtsstaat>
+									<zmr:Staatsangehoerigkeit>
+										<ISOCode3>AUT</ISOCode3>
+										<StaatsnameDE>Österreich</StaatsnameDE>
+										<base:EntityErgebnisReferenz>
+											<base:Technisch>
+												<base:EntityID>0000001</base:EntityID>
+												<base:LetzteAenderung>2003-01-01T00:00:00.000</base:LetzteAenderung>
+											</base:Technisch>
+											<base:Von>2003-01-01T00:00:00.000</base:Von>
+											<base:BeginnCode>REISEDOK_ANLEGEN</base:BeginnCode>
+											<base:BeginnText>Reisedokument anlegen</base:BeginnText>
+											<base:DurchgefuehrtVon>
+												<base:Organisation>
+													<base:GemeindeNr>09999</base:GemeindeNr>
+												</base:Organisation>
+												<base:Benutzer>test@bmi.gv.at</base:Benutzer>
+											</base:DurchgefuehrtVon>
+										</base:EntityErgebnisReferenz>
+									</zmr:Staatsangehoerigkeit>
+								</zmr:NatuerlichePerson>
+							</zmr:PersonErgebnis>
+							<zmr:PersonErgebnis>
+								<!-- historischer Personendaten Gesamtdatensatz (durch Vornamen-Änderung entstanden. Die Staatsagehörigkeit wurde nicht geändert und ist somit mit der im aktuellen Satz identisch-->
+								<base:ErgebnissatzInfo>
+									<base:LetzteAenderung>2004-01-26T00:00:00.000</base:LetzteAenderung>
+								</base:ErgebnissatzInfo>
+								<base:EntityErgebnisReferenz>								
+									<base:Technisch>
+										<base:EntityID>0000001</base:EntityID>
+										<base:LetzteAenderung>2004-01-26T00:00:00.000</base:LetzteAenderung>
+									</base:Technisch>
+									<base:Von>2003-01-01T00:00:00.000</base:Von>
+									<base:BeginnCode>GEBURT</base:BeginnCode>
+									<base:BeginnText>Geburt</base:BeginnText>
+									<base:Bis>2004-01-26T00:00:00.000</base:Bis>
+									<base:DurchgefuehrtVon>
+										<base:Organisation>
+											<base:GemeindeNr>09999</base:GemeindeNr>
+										</base:Organisation>
+										<base:Benutzer>test@bmi.gv.at</base:Benutzer>
+									</base:DurchgefuehrtVon>
+								</base:EntityErgebnisReferenz>
+								<base:ZMRZahl>000111111111</base:ZMRZahl>
+								<zmr:NatuerlichePerson>
+									<zmr:PersonenName>
+										<Vorname>Hans</Vorname>
+										<Familienname>Mustermann</Familienname>
+									</zmr:PersonenName>
+									<Geschlecht>männlich</Geschlecht>
+									<Geburtsdatum>2001-05-07</Geburtsdatum>
+									<Geburtsort>Wien</Geburtsort>
+									<Geburtsbundesland>Wien</Geburtsbundesland>
+									<Geburtsstaat>Österreich</Geburtsstaat>
+									<zmr:Staatsangehoerigkeit>
+										<ISOCode3>AUT</ISOCode3>
+										<StaatsnameDE>Österreich</StaatsnameDE>
+										<base:EntityErgebnisReferenz>
+											<base:Technisch>
+												<base:EntityID>0000001</base:EntityID>
+												<base:LetzteAenderung>2003-01-01T00:00:00.000</base:LetzteAenderung>
+											</base:Technisch>
+											<base:Von>2003-01-01T00:00:00.000</base:Von>
+											<base:BeginnCode>REISEDOK_ANLEGEN</base:BeginnCode>
+											<base:BeginnText>Reisedokument anlegen</base:BeginnText>
+											<base:DurchgefuehrtVon>
+												<base:Organisation>
+													<base:GemeindeNr>09999</base:GemeindeNr>
+												</base:Organisation>
+												<base:Benutzer>test@bmi.gv.at</base:Benutzer>
+											</base:DurchgefuehrtVon>
+										</base:EntityErgebnisReferenz>
+									</zmr:Staatsangehoerigkeit>
+								</zmr:NatuerlichePerson>
+							</zmr:PersonErgebnis>
+						</zmr:Personendaten>
+						<zmr:Meldedaten>
+							<!-- Historienliste einer Meldung. Nur ein MeldungErgebnis-Element, wenn nur aktuelle Daten -->							
+							<zmr:MeldungErgebnis>
+								<base:ErgebnissatzInfo>
+									<!-- letzter Änderungs-Zeitpunkt des Meldung-Gesamtdatensatzes (mit Auskunftssperren, ...)-->
+									<base:LetzteAenderung>2004-01-26T00:00:00.000</base:LetzteAenderung>
+								</base:ErgebnissatzInfo>							
+								<base:EntityErgebnisReferenz>
+									<base:Technisch>
+										<base:EntityID>00000002</base:EntityID>
+										<!-- letzter Änderungs-Zeitpunkt der Meldung-Entity (ohne Auskunftssperren, ...)-->
+										<base:LetzteAenderung>2004-01-26T00:00:00.000</base:LetzteAenderung>
+									</base:Technisch>
+									<base:Von>2004-01-26T00:00:00.000</base:Von>
+									<base:BeginnCode>WSANM</base:BeginnCode>
+									<base:BeginnText>Wohnsitz anmelden</base:BeginnText>
+									<base:DurchgefuehrtVon>
+										<base:Organisation>
+											<base:BehoerdenNr>099999</base:BehoerdenNr>
+										</base:Organisation>
+									</base:DurchgefuehrtVon>
+								</base:EntityErgebnisReferenz>
+								<zmr:Wohnsitz>
+									<zmr:PostAdresse>
+										<Postleitzahl>1245</Postleitzahl>
+										<Gemeinde>Testgemeinde</Gemeinde>
+										<Gemeindekennziffer>09999</Gemeindekennziffer>
+										<Ortschaft>Testort</Ortschaft>
+										<zmr:Zustelladresse>
+											<Strassenname>Teststrasse</Strassenname>
+											<Orientierungsnummer>1</Orientierungsnummer>
+											<Wohnsitzqualitaet>H</Wohnsitzqualitaet>
+										</zmr:Zustelladresse>
+									</zmr:PostAdresse>
+									<base:Adressstatus>XXX000</base:Adressstatus>
+								</zmr:Wohnsitz>
+								<base:GemeldetVon>2004-01-26T00:00:00.000</base:GemeldetVon>
+								<base:PeriodeCode>WSANM</base:PeriodeCode>
+								<base:PeriodeText>Wohnsitz anmelden</base:PeriodeText>
+							</zmr:MeldungErgebnis>
+						</zmr:Meldedaten>
+					</zmr:PersonErgebnisSatz>
+				</zmr:Personensuchergebnis>
+			</zmr:PersonSuchenResponse>
+		</base:Response>
+	</soap:Body>
+</soap:Envelope>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/persontrennen/persontrennenrequest.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/persontrennen/persontrennenrequest.xml
new file mode 100644
index 00000000..82643121
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/persontrennen/persontrennenrequest.xml
@@ -0,0 +1,37 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:zmr="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#" xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#" xmlns="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+xsi:schemaLocation="http://schemas.xmlsoap.org/soap/envelope/ ../../soapenv.xsd http://bmi.gv.at/namespace/zmr-su/base/20040201# ../../../xsd/allgemein/Service.xsd http://bmi.gv.at/namespace/zmr-su/zmr/20040201# ../../../xsd/zmr/ZMRProxy.xsd">
+<soap:Body>
+		<base:Request>
+			<base:WorkflowInfoClient>
+				<base:ProzessName>GP_Person_trennen</base:ProzessName>
+				<base:ProzessInstanzID>1234</base:ProzessInstanzID>
+				<!-- Die InstanzID der laufenden Prozesses muss hier übermittelt werden, um die Suche fortzusetzen (aus WorkflowInfoServer des ersten Suchergebnisses-->
+				<base:SequenzID>11111</base:SequenzID>				
+				<base:VorgangName>ZPR_VO_Person_trennen_durchfuehren</base:VorgangName>
+			</base:WorkflowInfoClient>
+			<base:ClientInfo>
+				<base:Organisation>
+					<base:BehoerdenNr>000000</base:BehoerdenNr>
+				</base:Organisation>
+				<base:Client>Test</base:Client>
+			</base:ClientInfo>
+			<zmr:PersonTrennenRequest>
+				<zmr:PersonReferenz>
+					<base:Technisch>
+						<base:EntityID>123</base:EntityID>
+						<base:LetzteAenderung>2004-01-01T00:00:00.000</base:LetzteAenderung>
+					</base:Technisch>
+					<base:ZMRZahl>000111111111</base:ZMRZahl>
+				</zmr:PersonReferenz>
+				<zmr:MeldungReferenz>
+					<base:Technisch>
+						<base:EntityID>1234</base:EntityID>
+						<base:LetzteAenderung>2004-01-01T00:00:00.000</base:LetzteAenderung>
+					</base:Technisch>
+					<Wohnsitzqualitaet>N</Wohnsitzqualitaet>			
+				</zmr:MeldungReferenz>
+			</zmr:PersonTrennenRequest>
+		</base:Request>
+	</soap:Body>
+</soap:Envelope>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/persontrennen/persontrennensucherequest.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/persontrennen/persontrennensucherequest.xml
new file mode 100644
index 00000000..2ab231dd
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/persontrennen/persontrennensucherequest.xml
@@ -0,0 +1,21 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:zmr="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#" xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#" xmlns="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+xsi:schemaLocation="http://schemas.xmlsoap.org/soap/envelope/ ../../soapenv.xsd http://bmi.gv.at/namespace/zmr-su/base/20040201# ../../../xsd/allgemein/Service.xsd http://bmi.gv.at/namespace/zmr-su/zmr/20040201# ../../../xsd/zmr/ZMRProxy.xsd">
+<soap:Body>
+		<base:Request>
+			<base:WorkflowInfoClient>
+				<base:ProzessName>GP_Person_trennen</base:ProzessName>
+				<base:VorgangName>ZPR_VO_Person_trennen_darstellen</base:VorgangName>
+			</base:WorkflowInfoClient>
+			<base:ClientInfo>
+				<base:Organisation>
+					<base:BehoerdenNr>000000</base:BehoerdenNr>
+				</base:Organisation>
+				<base:Client>Test</base:Client>
+			</base:ClientInfo>
+			<zmr:PersonTrennenSucheRequest>
+				<base:ZMRZahl>000111111111</base:ZMRZahl>
+			</zmr:PersonTrennenSucheRequest>
+		</base:Request>
+	</soap:Body>
+</soap:Envelope>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/personzusammenfuehren/personzusammenfuehrenrequest.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/personzusammenfuehren/personzusammenfuehrenrequest.xml
new file mode 100644
index 00000000..0442b0e0
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/personzusammenfuehren/personzusammenfuehrenrequest.xml
@@ -0,0 +1,37 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:zmr="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#" xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#" xmlns="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+xsi:schemaLocation="http://schemas.xmlsoap.org/soap/envelope/ ../../soapenv.xsd http://bmi.gv.at/namespace/zmr-su/base/20040201# ../../../xsd/allgemein/Service.xsd http://bmi.gv.at/namespace/zmr-su/zmr/20040201# ../../../xsd/zmr/ZMRProxy.xsd">
+<soap:Body>
+		<base:Request>
+			<base:WorkflowInfoClient>
+				<base:ProzessName>GP_Person_zusammenfuehren</base:ProzessName>
+				<base:ProzessInstanzID>1234</base:ProzessInstanzID>
+				<!-- Die InstanzID der laufenden Prozesses muss hier übermittelt werden, um die Suche fortzusetzen (aus WorkflowInfoServer des ersten Suchergebnisses-->
+				<base:SequenzID>11111</base:SequenzID>				
+				<base:VorgangName>ZPR_VO_Person_zusammenfuehren_durchfuehren</base:VorgangName>
+			</base:WorkflowInfoClient>
+			<base:ClientInfo>
+				<base:Organisation>
+					<base:BehoerdenNr>000000</base:BehoerdenNr>
+				</base:Organisation>
+				<base:Client>Test</base:Client>
+			</base:ClientInfo>
+			<zmr:PersonZusammenfuehrenRequest>
+				<zmr:QuellpersonReferenz>
+					<base:Technisch>
+						<base:EntityID>123</base:EntityID>
+						<base:LetzteAenderung>2004-01-01T00:00:00.000</base:LetzteAenderung>
+					</base:Technisch>
+					<base:ZMRZahl>000111111111</base:ZMRZahl>
+				</zmr:QuellpersonReferenz>
+				<zmr:ZielpersonReferenz>
+					<base:Technisch>
+						<base:EntityID>222</base:EntityID>
+						<base:LetzteAenderung>2004-02-01T00:00:00.000</base:LetzteAenderung>
+					</base:Technisch>
+					<base:ZMRZahl>000222222222</base:ZMRZahl>
+				</zmr:ZielpersonReferenz>				
+			</zmr:PersonZusammenfuehrenRequest>
+		</base:Request>
+	</soap:Body>
+</soap:Envelope>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/personzusammenfuehren/personzusammenfuehrensucherequest.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/personzusammenfuehren/personzusammenfuehrensucherequest.xml
new file mode 100644
index 00000000..be5b38ba
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/personzusammenfuehren/personzusammenfuehrensucherequest.xml
@@ -0,0 +1,22 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:zmr="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#" xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#" xmlns="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+xsi:schemaLocation="http://schemas.xmlsoap.org/soap/envelope/ ../../soapenv.xsd http://bmi.gv.at/namespace/zmr-su/base/20040201# ../../../xsd/allgemein/Service.xsd http://bmi.gv.at/namespace/zmr-su/zmr/20040201# ../../../xsd/zmr/ZMRProxy.xsd">
+<soap:Body>
+		<base:Request>
+			<base:WorkflowInfoClient>
+				<base:ProzessName>GP_Person_zusammenfuehren</base:ProzessName>
+				<base:VorgangName>ZPR_VO_Person_zusammenfuehren_darstellen</base:VorgangName>
+			</base:WorkflowInfoClient>
+			<base:ClientInfo>
+				<base:Organisation>
+					<base:BehoerdenNr>000000</base:BehoerdenNr>
+				</base:Organisation>
+				<base:Client>Test</base:Client>
+			</base:ClientInfo>
+			<zmr:PersonZusammenfuehrenSucheRequest>
+				<zmr:QuellpersonZMRZahl>000111111111</zmr:QuellpersonZMRZahl>
+				<zmr:ZielpersonZMRZahl>000222222222</zmr:ZielpersonZMRZahl>
+			</zmr:PersonZusammenfuehrenSucheRequest>
+		</base:Request>
+	</soap:Body>
+</soap:Envelope>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/wohnsitzabmelden/wohnsitzabmeldenrequest.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/wohnsitzabmelden/wohnsitzabmeldenrequest.xml
new file mode 100644
index 00000000..69675bd3
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/wohnsitzabmelden/wohnsitzabmeldenrequest.xml
@@ -0,0 +1,40 @@
+<?xml version="1.0" encoding="UTF-8"?>
+
+<soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:zmr="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#" xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#" xmlns="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+xsi:schemaLocation="http://schemas.xmlsoap.org/soap/envelope/ ../../soapenv.xsd http://bmi.gv.at/namespace/zmr-su/base/20040201# ../../../xsd/allgemein/Service.xsd http://bmi.gv.at/namespace/zmr-su/zmr/20040201# ../../../xsd/zmr/ZMRProxy.xsd">
+<soap:Body>
+		<base:Request>
+			<base:WorkflowInfoClient>
+				<base:ProzessName>GP_Wohnsitz_abmelden</base:ProzessName>
+				<base:VorgangName>ZMR_VO_Wohnsitz_abmelden</base:VorgangName>
+			</base:WorkflowInfoClient>
+			<base:ClientInfo>
+				<base:Organisation>
+					<base:BehoerdenNr>000000</base:BehoerdenNr>
+				</base:Organisation>
+				<base:Client>Test</base:Client>
+			</base:ClientInfo>
+			<zmr:WohnsitzAbmeldenRequest>
+				<zmr:WohnsitzAbmeldenInfo>
+					<!-- Fachlicher Zeitpunkt der Abmeldung -->
+					<base:Von>2004-01-26T00:00:00.000</base:Von>
+					<base:GrundCode>WSABM</base:GrundCode>
+				</zmr:WohnsitzAbmeldenInfo>
+				<zmr:PersonReferenz>
+					<base:Technisch>
+						<base:EntityID>0000001</base:EntityID>
+						<base:LetzteAenderung>2003-01-01T00:00:00.000</base:LetzteAenderung>
+					</base:Technisch>
+					<base:ZMRZahl>000111111111</base:ZMRZahl>
+				</zmr:PersonReferenz>
+				<zmr:MeldungReferenz>
+					<base:Technisch>
+						<base:EntityID>0000002</base:EntityID>
+						<base:LetzteAenderung>2003-01-01T00:00:00.000</base:LetzteAenderung>
+					</base:Technisch>
+					<Wohnsitzqualitaet>H</Wohnsitzqualitaet>
+				</zmr:MeldungReferenz>
+			</zmr:WohnsitzAbmeldenRequest>
+		</base:Request>
+	</soap:Body>
+</soap:Envelope>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/wohnsitzabmelden/wohnsitzabmeldenresponse.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/wohnsitzabmelden/wohnsitzabmeldenresponse.xml
new file mode 100644
index 00000000..a1f2a361
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/wohnsitzabmelden/wohnsitzabmeldenresponse.xml
@@ -0,0 +1,77 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:zmr="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#" xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#" xmlns="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+xsi:schemaLocation="http://schemas.xmlsoap.org/soap/envelope/ ../../soapenv.xsd http://bmi.gv.at/namespace/zmr-su/base/20040201# ../../../xsd/allgemein/Service.xsd http://bmi.gv.at/namespace/zmr-su/zmr/20040201# ../../../xsd/zmr/ZMRProxy.xsd">
+<soap:Body>
+		<base:Response>
+			<base:WorkflowInfoServer>
+				<base:ProzessName>GP_Wohnsitz_abmelden</base:ProzessName>
+				<base:ProzessInstanzID>1234</base:ProzessInstanzID>
+				<base:ProzessStatus>C</base:ProzessStatus>
+				<base:SequenzID>00034</base:SequenzID>
+				<base:Subprozess>
+					<base:VorgangName>ZMR_VO_Wohnsitz_abmelden</base:VorgangName>
+					<base:VorgangStatus>C</base:VorgangStatus>
+					<base:Required>false</base:Required>
+					<base:Visible>true</base:Visible>
+				</base:Subprozess>
+			</base:WorkflowInfoServer>
+			<base:ServerInfo>
+				<base:GeneriertVon>ZMR Server</base:GeneriertVon>
+				<base:GeneriertAm>2004-01-26T00:00:00.000</base:GeneriertAm>
+				<base:ServerTransaktionNr>1234567</base:ServerTransaktionNr>
+			</base:ServerInfo>
+			<zmr:WohnsitzAbmeldenResponse>
+				<base:Message>
+					<base:Number>1234</base:Number>
+					<base:Text>Der Wohnsitz wurde abgemeldet</base:Text>
+				</base:Message>
+				<zmr:PersonReferenz>
+					<base:Technisch>
+						<base:EntityID>0000001</base:EntityID>
+						<base:LetzteAenderung>2003-01-01T00:00:00.000</base:LetzteAenderung>
+					</base:Technisch>
+					<base:ZMRZahl>000111111111</base:ZMRZahl>
+				</zmr:PersonReferenz>
+				<zmr:MeldungErgebnis>
+					<base:ErgebnissatzInfo>
+						<base:LetzteAenderung>2004-01-26T00:00:00.000</base:LetzteAenderung>
+					</base:ErgebnissatzInfo>				
+					<base:EntityErgebnisReferenz>
+						<base:Technisch>
+							<base:EntityID>0000002</base:EntityID>
+							<base:LetzteAenderung>2004-01-26T00:00:00.000</base:LetzteAenderung>
+						</base:Technisch>
+						<!-- Nulldauersatz der abgemeldeten Meldung -->
+						<base:Von>2004-01-26T00:00:00.000</base:Von>
+						<base:BeginnCode>WSABM</base:BeginnCode>
+						<base:BeginnText>Wohnsitz abmelden</base:BeginnText>
+						<base:Bis>2004-01-26T00:00:00.000</base:Bis>
+						<base:DurchgefuehrtVon>
+							<base:Organisation>
+								<base:BehoerdenNr>099999</base:BehoerdenNr>
+							</base:Organisation>
+						</base:DurchgefuehrtVon>
+					</base:EntityErgebnisReferenz>
+					<zmr:Wohnsitz>
+						<zmr:PostAdresse>
+							<Postleitzahl>1245</Postleitzahl>
+							<Gemeinde>Testgemeinde</Gemeinde>
+							<Gemeindekennziffer>09999</Gemeindekennziffer>
+							<Ortschaft>Testort</Ortschaft>
+							<zmr:Zustelladresse>
+								<Strassenname>Teststrasse</Strassenname>
+								<Orientierungsnummer>1</Orientierungsnummer>
+								<Wohnsitzqualitaet>H</Wohnsitzqualitaet>
+							</zmr:Zustelladresse>
+						</zmr:PostAdresse>
+						<base:Adressstatus>XXX000</base:Adressstatus>
+					</zmr:Wohnsitz>
+					<base:GemeldetVon>2003-01-01T00:00:00.000</base:GemeldetVon>
+					<base:PeriodeCode>WSABM</base:PeriodeCode>
+					<base:PeriodeText>Wohnsitz abmelden</base:PeriodeText>
+					<base:GemeldetBis>2004-01-26T00:00:00.000</base:GemeldetBis>
+				</zmr:MeldungErgebnis>
+			</zmr:WohnsitzAbmeldenResponse>
+		</base:Response>
+	</soap:Body>
+</soap:Envelope>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/wohnsitzanmelden/wohnsitzanmeldenrequest.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/wohnsitzanmelden/wohnsitzanmeldenrequest.xml
new file mode 100644
index 00000000..44ebbb56
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/wohnsitzanmelden/wohnsitzanmeldenrequest.xml
@@ -0,0 +1,48 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:zmr="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#" xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#" xmlns="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+xsi:schemaLocation="http://schemas.xmlsoap.org/soap/envelope/ ../../soapenv.xsd http://bmi.gv.at/namespace/zmr-su/base/20040201# ../../../xsd/allgemein/Service.xsd http://bmi.gv.at/namespace/zmr-su/zmr/20040201# ../../../xsd/zmr/ZMRProxy.xsd">
+<soap:Body>
+		<base:Request>
+			<base:WorkflowInfoClient>
+				<base:ProzessName>GP_Wohnsitz_anmelden</base:ProzessName>
+				<base:VorgangName>ZMR_VO_Wohnsitz_anmelden</base:VorgangName>
+			</base:WorkflowInfoClient>
+			<base:ClientInfo>
+				<base:Organisation>
+					<base:BehoerdenNr>000000</base:BehoerdenNr>
+				</base:Organisation>
+				<base:Client>Test</base:Client>
+			</base:ClientInfo>
+			<zmr:WohnsitzAnmeldenRequest>
+				<zmr:WohnsitzAnmeldenInfo>
+					<!-- Fachlicher Zeitpunkt der Anmeldung -->
+					<base:Von>2004-01-26T00:00:00.000</base:Von>
+					<base:GrundCode>WSANM</base:GrundCode>
+				</zmr:WohnsitzAnmeldenInfo>
+				<zmr:PersonReferenz>
+					<base:Technisch>
+						<base:EntityID>0000001</base:EntityID>
+						<base:LetzteAenderung>2003-01-01T00:00:00.000</base:LetzteAenderung>
+					</base:Technisch>
+					<base:ZMRZahl>000111111111</base:ZMRZahl>
+				</zmr:PersonReferenz>
+				<zmr:MeldungAnlage>
+					<zmr:Wohnsitz>
+						<zmr:PostAdresse>
+							<Gemeindekennziffer>09999</Gemeindekennziffer>
+							<zmr:Zustelladresse>
+								<Wohnsitzqualitaet>H</Wohnsitzqualitaet>
+								<zmr:AdressRegisterEintrag>
+									<Adresscode>1234567</Adresscode>
+									<Subcode>111</Subcode>
+									<Objektnummer>1111111</Objektnummer>
+								</zmr:AdressRegisterEintrag>
+								<!-- Offizielle Adresse, es müssen nur die Adresscodes geschickt werden-->
+							</zmr:Zustelladresse>
+						</zmr:PostAdresse>
+					</zmr:Wohnsitz>
+				</zmr:MeldungAnlage>
+			</zmr:WohnsitzAnmeldenRequest>
+		</base:Request>
+	</soap:Body>
+</soap:Envelope>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/wohnsitzanmelden/wohnsitzanmeldenresponse.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/wohnsitzanmelden/wohnsitzanmeldenresponse.xml
new file mode 100644
index 00000000..ccbc350d
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/wohnsitzanmelden/wohnsitzanmeldenresponse.xml
@@ -0,0 +1,79 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:zmr="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#" xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#" xmlns="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+xsi:schemaLocation="http://schemas.xmlsoap.org/soap/envelope/ ../../soapenv.xsd http://bmi.gv.at/namespace/zmr-su/base/20040201# ../../../xsd/allgemein/Service.xsd http://bmi.gv.at/namespace/zmr-su/zmr/20040201# ../../../xsd/zmr/ZMRProxy.xsd">
+<soap:Body>
+		<base:Response>
+			<base:WorkflowInfoServer>
+				<base:ProzessName>GP_Wohnsitz_anmelden</base:ProzessName>
+				<base:ProzessInstanzID>1234</base:ProzessInstanzID>
+				<base:ProzessStatus>C</base:ProzessStatus>
+				<base:SequenzID>00034</base:SequenzID>
+				<base:Subprozess>
+					<base:VorgangName>ZMR_VO_Wohnsitz_anmelden</base:VorgangName>
+					<base:VorgangStatus>C</base:VorgangStatus>
+					<base:Required>false</base:Required>
+					<base:Visible>true</base:Visible>
+				</base:Subprozess>
+			</base:WorkflowInfoServer>
+			<base:ServerInfo>
+				<base:GeneriertVon>ZMR Server</base:GeneriertVon>
+				<base:GeneriertAm>2004-01-26T00:00:00.000</base:GeneriertAm>
+				<base:ServerTransaktionNr>1234567</base:ServerTransaktionNr>
+			</base:ServerInfo>
+			<zmr:WohnsitzAnmeldenResponse>
+				<base:Message>
+					<base:Number>1234</base:Number>
+					<base:Text>Der Wohnsitz wurde angemeldet</base:Text>
+				</base:Message>
+				<zmr:PersonReferenz>
+					<base:Technisch>
+						<base:EntityID>0000001</base:EntityID>
+						<base:LetzteAenderung>2003-01-01T00:00:00.000</base:LetzteAenderung>
+					</base:Technisch>
+					<base:ZMRZahl>000111111111</base:ZMRZahl>
+				</zmr:PersonReferenz>
+				<zmr:MeldungErgebnis>
+					<base:ErgebnissatzInfo>
+						<base:LetzteAenderung>2004-01-26T00:00:00.000</base:LetzteAenderung>
+					</base:ErgebnissatzInfo>						
+					<base:EntityErgebnisReferenz>
+						<base:Technisch>
+							<base:EntityID>00000002</base:EntityID>
+							<base:LetzteAenderung>2004-01-26T00:00:00.000</base:LetzteAenderung>
+						</base:Technisch>
+						<base:Von>2004-01-26T00:00:00.000</base:Von>
+						<base:BeginnCode>WSANM</base:BeginnCode>
+						<base:BeginnText>Wohnsitz anmelden</base:BeginnText>
+						<base:DurchgefuehrtVon>
+							<base:Organisation>
+								<base:BehoerdenNr>099999</base:BehoerdenNr>
+							</base:Organisation>
+						</base:DurchgefuehrtVon>
+					</base:EntityErgebnisReferenz>
+					<zmr:Wohnsitz>
+						<zmr:PostAdresse>
+							<Postleitzahl>1245</Postleitzahl>
+							<Gemeinde>Testgemeinde</Gemeinde>
+							<Gemeindekennziffer>09999</Gemeindekennziffer>
+							<Ortschaft>Testort</Ortschaft>
+							<zmr:Zustelladresse>
+								<Strassenname>Teststrasse</Strassenname>
+								<Orientierungsnummer>1</Orientierungsnummer>
+								<Wohnsitzqualitaet>H</Wohnsitzqualitaet>
+								<zmr:AdressRegisterEintrag>
+									<Adresscode>1234567</Adresscode>
+									<Subcode>111</Subcode>
+									<Objektnummer>1111111</Objektnummer>
+								</zmr:AdressRegisterEintrag>
+							</zmr:Zustelladresse>
+						</zmr:PostAdresse>
+						<base:Adressstatus>XXX000</base:Adressstatus>
+					</zmr:Wohnsitz>
+					<base:GemeldetVon>2004-01-26T00:00:00.000</base:GemeldetVon>
+					<base:PeriodeCode>WSANM</base:PeriodeCode>
+					<base:PeriodeText>Wohnsitz anmelden</base:PeriodeText>
+				</zmr:MeldungErgebnis>
+			</zmr:WohnsitzAnmeldenResponse>
+		</base:Response>
+	</soap:Body>
+</soap:Envelope>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/wohnsitzummelden/wohnsitzummeldenrequest.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/wohnsitzummelden/wohnsitzummeldenrequest.xml
new file mode 100644
index 00000000..039626bb
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/wohnsitzummelden/wohnsitzummeldenrequest.xml
@@ -0,0 +1,60 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:zmr="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#" xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#" xmlns="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+xsi:schemaLocation="http://schemas.xmlsoap.org/soap/envelope/ ../../soapenv.xsd http://bmi.gv.at/namespace/zmr-su/base/20040201# ../../../xsd/allgemein/Service.xsd http://bmi.gv.at/namespace/zmr-su/zmr/20040201# ../../../xsd/zmr/ZMRProxy.xsd">
+<soap:Body>
+		<base:Request>
+			<base:WorkflowInfoClient>
+				<base:ProzessName>GP_Wohnsitz_ummelden</base:ProzessName>
+				<base:VorgangName>ZMR_VO_Wohnsitz_ummelden</base:VorgangName>
+			</base:WorkflowInfoClient>
+			<base:ClientInfo>
+				<base:Organisation>
+					<base:BehoerdenNr>000000</base:BehoerdenNr>
+				</base:Organisation>
+				<base:Client>Test</base:Client>
+			</base:ClientInfo>
+			<zmr:WohnsitzUmmeldenRequest>
+				<zmr:WohnsitzUmmeldenInfo>
+					<base:Von>2004-01-26T00:00:00.000</base:Von>
+					<zmr:UmmeldungAktion>HWS_NWS_HWS</zmr:UmmeldungAktion>
+				</zmr:WohnsitzUmmeldenInfo>
+				<zmr:PersonReferenz>
+					<base:Technisch>
+						<base:EntityID>0000001</base:EntityID>
+						<base:LetzteAenderung>2003-01-01T00:00:00.000</base:LetzteAenderung>
+					</base:Technisch>
+					<base:ZMRZahl>000111111111</base:ZMRZahl>
+				</zmr:PersonReferenz>
+				<zmr:UMMVorgang1>
+					<!-- Hauptwohnsitz wird abgemeldet -->
+					<zmr:MeldungReferenz>
+						<base:Technisch>
+							<base:EntityID>0000003</base:EntityID>
+							<base:LetzteAenderung>2003-01-01T00:00:00.000</base:LetzteAenderung>
+						</base:Technisch>
+						<Wohnsitzqualitaet>H</Wohnsitzqualitaet>
+					</zmr:MeldungReferenz>
+				</zmr:UMMVorgang1>
+				<zmr:UMMVorgang2>
+					<!-- neuer Hauptwohnsitz wird angemeldet -->
+					<zmr:MeldungAnlage>
+						<zmr:Wohnsitz>
+							<zmr:PostAdresse>
+								<Gemeindekennziffer>09999</Gemeindekennziffer>
+								<zmr:Zustelladresse>
+									<Wohnsitzqualitaet>H</Wohnsitzqualitaet>
+									<zmr:AdressRegisterEintrag>
+										<Adresscode>1234567</Adresscode>
+										<Subcode>111</Subcode>
+										<Objektnummer>1111111</Objektnummer>
+									</zmr:AdressRegisterEintrag>
+									<!-- Offizielle Adresse, es müssen nur die Adresscodes geschickt werden-->
+								</zmr:Zustelladresse>
+							</zmr:PostAdresse>
+						</zmr:Wohnsitz>
+					</zmr:MeldungAnlage>
+				</zmr:UMMVorgang2>
+			</zmr:WohnsitzUmmeldenRequest>
+		</base:Request>
+	</soap:Body>
+</soap:Envelope>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/wohnsitzummelden/wohnsitzummeldenresponse.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/wohnsitzummelden/wohnsitzummeldenresponse.xml
new file mode 100644
index 00000000..1af5a374
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/wohnsitzummelden/wohnsitzummeldenresponse.xml
@@ -0,0 +1,124 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:zmr="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#" xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#" xmlns="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+xsi:schemaLocation="http://schemas.xmlsoap.org/soap/envelope/ ../../soapenv.xsd http://bmi.gv.at/namespace/zmr-su/base/20040201# ../../../xsd/allgemein/Service.xsd http://bmi.gv.at/namespace/zmr-su/zmr/20040201# ../../../xsd/zmr/ZMRProxy.xsd">
+<soap:Body>
+		<base:Response>
+			<base:WorkflowInfoServer>
+				<base:ProzessName>GP_Wohnsitz_ummelden</base:ProzessName>
+				<base:ProzessInstanzID>1234</base:ProzessInstanzID>
+				<base:ProzessStatus>C</base:ProzessStatus>
+				<base:SequenzID>00034</base:SequenzID>
+				<base:Subprozess>
+					<base:VorgangName>ZMR_VO_Wohnsitz_ummelden</base:VorgangName>
+					<base:VorgangStatus>C</base:VorgangStatus>
+					<base:Required>false</base:Required>
+					<base:Visible>true</base:Visible>
+				</base:Subprozess>
+			</base:WorkflowInfoServer>
+			<base:ServerInfo>
+				<base:GeneriertVon>ZMR Server</base:GeneriertVon>
+				<base:GeneriertAm>2004-01-26T00:00:00.000</base:GeneriertAm>
+				<base:ServerTransaktionNr>1234567</base:ServerTransaktionNr>
+			</base:ServerInfo>
+			<zmr:WohnsitzUmmeldenResponse>
+				<base:Message>
+					<base:Number>1234</base:Number>
+					<base:Text>Ummeldung erfolgreich durchgeführt</base:Text>
+				</base:Message>
+				<zmr:PersonReferenz>
+					<base:Technisch>
+						<base:EntityID>0000001</base:EntityID>
+						<base:LetzteAenderung>2003-01-01T00:00:00.000</base:LetzteAenderung>
+					</base:Technisch>
+					<base:ZMRZahl>000111111111</base:ZMRZahl>
+				</zmr:PersonReferenz>
+				<zmr:UMMErgebnis1>
+					<!-- Nulldauersatz des abgemelden Hauptwohnsitzes -->
+					<base:ErgebnissatzInfo>
+						<base:LetzteAenderung>2004-01-26T00:00:00.000</base:LetzteAenderung>
+					</base:ErgebnissatzInfo>				
+					<base:EntityErgebnisReferenz>
+						<base:Technisch>
+							<base:EntityID>0000003</base:EntityID>
+							<base:LetzteAenderung>2004-01-26T00:00:00.000</base:LetzteAenderung>
+						</base:Technisch>
+						<base:Von>2004-01-26T00:00:00.000</base:Von>
+						<base:BeginnCode>HWS_ABM_HWS</base:BeginnCode>
+						<base:BeginnText>Hauptwohnsitz wird abgemeldet, neuer Hauptwohnsitz</base:BeginnText>
+						<base:Bis>2004-01-26T00:00:00.000</base:Bis>
+						<base:DurchgefuehrtVon>
+							<base:Organisation>
+								<base:BehoerdenNr>099999</base:BehoerdenNr>
+							</base:Organisation>
+						</base:DurchgefuehrtVon>
+					</base:EntityErgebnisReferenz>
+					<zmr:Wohnsitz>
+						<zmr:PostAdresse>
+							<Postleitzahl>1245</Postleitzahl>
+							<Gemeinde>Testgemeinde</Gemeinde>
+							<Gemeindekennziffer>09999</Gemeindekennziffer>
+							<Ortschaft>Testort</Ortschaft>
+							<zmr:Zustelladresse>
+								<Strassenname>Teststrasse</Strassenname>
+								<Orientierungsnummer>2</Orientierungsnummer>
+								<Wohnsitzqualitaet>H</Wohnsitzqualitaet>
+								<zmr:AdressRegisterEintrag>
+									<Adresscode>1111111</Adresscode>
+									<Subcode>111</Subcode>
+									<Objektnummer>1111111</Objektnummer>
+								</zmr:AdressRegisterEintrag>
+							</zmr:Zustelladresse>
+						</zmr:PostAdresse>
+						<base:Adressstatus>XXX000</base:Adressstatus>
+					</zmr:Wohnsitz>
+					<base:GemeldetVon>2003-01-01T00:00:00.000</base:GemeldetVon>
+					<base:PeriodeCode>HWS_ABM_HWS</base:PeriodeCode>
+					<base:PeriodeText>Hauptwohnsitz wird abgemeldet, neuer Hauptwohnsitz</base:PeriodeText>
+					<base:GemeldetBis>2004-01-26T00:00:00.000</base:GemeldetBis>
+				</zmr:UMMErgebnis1>
+				<zmr:UMMErgebnis2>
+					<!-- Neu angemelder Hauptwohnsitz -->
+					<base:ErgebnissatzInfo>
+						<base:LetzteAenderung>2004-01-26T00:00:00.000</base:LetzteAenderung>
+					</base:ErgebnissatzInfo>				
+					<base:EntityErgebnisReferenz>
+						<base:Technisch>
+							<base:EntityID>0000012</base:EntityID>
+							<base:LetzteAenderung>2004-01-26T00:00:00.000</base:LetzteAenderung>
+						</base:Technisch>
+						<base:Von>2004-01-26T00:00:00.000</base:Von>
+						<base:BeginnCode>HWS_ABM_HWS</base:BeginnCode>
+						<base:BeginnText>Hauptwohnsitz wird abgemeldet, neuer Hauptwohnsitz</base:BeginnText>
+						<base:DurchgefuehrtVon>
+							<base:Organisation>
+								<base:BehoerdenNr>099999</base:BehoerdenNr>
+							</base:Organisation>
+						</base:DurchgefuehrtVon>
+					</base:EntityErgebnisReferenz>
+					<zmr:Wohnsitz>
+						<zmr:PostAdresse>
+							<Postleitzahl>1245</Postleitzahl>
+							<Gemeinde>Testgemeinde</Gemeinde>
+							<Gemeindekennziffer>09999</Gemeindekennziffer>
+							<Ortschaft>Testort</Ortschaft>
+							<zmr:Zustelladresse>
+								<Strassenname>Teststrasse</Strassenname>
+								<Orientierungsnummer>1</Orientierungsnummer>
+								<Wohnsitzqualitaet>H</Wohnsitzqualitaet>
+								<zmr:AdressRegisterEintrag>
+									<Adresscode>1234567</Adresscode>
+									<Subcode>111</Subcode>
+									<Objektnummer>1111111</Objektnummer>
+								</zmr:AdressRegisterEintrag>
+							</zmr:Zustelladresse>
+						</zmr:PostAdresse>
+						<base:Adressstatus>XXX000</base:Adressstatus>
+					</zmr:Wohnsitz>
+					<base:GemeldetVon>2004-01-26T00:00:00.000</base:GemeldetVon>
+					<base:PeriodeCode>HWS_ABM_HWS</base:PeriodeCode>
+					<base:PeriodeText>Hauptwohnsitz wird abgemeldet, neuer Hauptwohnsitz</base:PeriodeText>
+				</zmr:UMMErgebnis2>
+			</zmr:WohnsitzUmmeldenResponse>
+		</base:Response>
+	</soap:Body>
+</soap:Envelope>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/zuzugsbestaetigung/zuzugsbestaetigungrequest.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/zuzugsbestaetigung/zuzugsbestaetigungrequest.xml
new file mode 100644
index 00000000..35dae59d
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/zuzugsbestaetigung/zuzugsbestaetigungrequest.xml
@@ -0,0 +1,25 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:zmr="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#" xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#" xmlns="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+xsi:schemaLocation="http://schemas.xmlsoap.org/soap/envelope/ ../../soapenv.xsd http://bmi.gv.at/namespace/zmr-su/base/20040201# ../../../xsd/allgemein/Service.xsd http://bmi.gv.at/namespace/zmr-su/zmr/20040201# ../../../xsd/zmr/ZMRProxy.xsd">
+<soap:Body>
+		<base:Request>
+			<base:WorkflowInfoClient>
+				<base:ProzessName>GP_Zuzugsbestaetigung_anfordern</base:ProzessName>
+				<base:VorgangName>ZMR_VO_Zuzugsbestaetigung_anfordern</base:VorgangName>
+			</base:WorkflowInfoClient>
+			<base:ClientInfo>
+				<base:Organisation>
+					<base:BehoerdenNr>000000</base:BehoerdenNr>
+				</base:Organisation>
+				<base:Client>Test</base:Client>
+			</base:ClientInfo>
+			<zmr:ZuzugsbestaetigungRequest>
+				<zmr:ZuzugsbestaetigungInfo>
+					<base:GemeindeNr>09999</base:GemeindeNr>
+					<zmr:ZuzugsbestaetigungVon>2004-01-01T00:00:00.000</zmr:ZuzugsbestaetigungVon>
+					<zmr:ZuzugsbestaetigungBis>2004-01-05T00:00:00.000</zmr:ZuzugsbestaetigungBis>
+				</zmr:ZuzugsbestaetigungInfo>
+			</zmr:ZuzugsbestaetigungRequest>
+		</base:Request>
+	</soap:Body>
+</soap:Envelope>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/zuzugsbestaetigung/zuzugsbestaetigungresponse.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/zuzugsbestaetigung/zuzugsbestaetigungresponse.xml
new file mode 100644
index 00000000..a9ef5a38
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/testxml/zmr/zuzugsbestaetigung/zuzugsbestaetigungresponse.xml
@@ -0,0 +1,64 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:zmr="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#" xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#" xmlns="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+xsi:schemaLocation="http://schemas.xmlsoap.org/soap/envelope/ ../../soapenv.xsd http://bmi.gv.at/namespace/zmr-su/base/20040201# ../../../xsd/allgemein/Service.xsd http://bmi.gv.at/namespace/zmr-su/zmr/20040201# ../../../xsd/zmr/ZMRProxy.xsd">
+<soap:Body>
+		<base:Response>
+			<base:WorkflowInfoServer>
+				<base:ProzessName>GP_Zuzugsbestaetigung_anfordern</base:ProzessName>
+				<base:ProzessInstanzID>1234</base:ProzessInstanzID>
+				<base:ProzessStatus>C</base:ProzessStatus>
+				<base:SequenzID>00034</base:SequenzID>
+				<base:Subprozess>
+					<base:VorgangName>ZMR_VO_Zuzugsbestaetigung_anfordern</base:VorgangName>
+					<base:VorgangStatus>C</base:VorgangStatus>
+					<base:Required>false</base:Required>
+					<base:Visible>true</base:Visible>
+				</base:Subprozess>
+			</base:WorkflowInfoServer>
+			<base:ServerInfo>
+				<base:GeneriertVon>ZMR Server</base:GeneriertVon>
+				<base:GeneriertAm>2004-01-26T00:00:00.000</base:GeneriertAm>
+				<base:ServerTransaktionNr>1234567</base:ServerTransaktionNr>
+			</base:ServerInfo>
+			<zmr:ZuzugsbestaetigungResponse>
+				<zmr:ZuzugsbestaetigungAnfrage>
+					<zmr:ZuzugsbestaetigungInfo>
+						<base:GemeindeNr>09999</base:GemeindeNr>
+						<zmr:ZuzugsbestaetigungVon>2004-01-01T00:00:00.000</zmr:ZuzugsbestaetigungVon>
+						<zmr:ZuzugsbestaetigungBis>2004-01-05T00:00:00.000</zmr:ZuzugsbestaetigungBis>
+					</zmr:ZuzugsbestaetigungInfo>
+				</zmr:ZuzugsbestaetigungAnfrage>
+				<base:Message>
+					<base:Number>0012</base:Number>
+					<base:Text>Die Zuzugsdaten wurden erzeugt</base:Text>
+				</base:Message>						
+				<zmr:Zuzugsbestaetigung>
+					<base:GefundeneSaetze>100</base:GefundeneSaetze>
+					<base:AnzahlSaetze>2</base:AnzahlSaetze>
+					<zmr:ZuzugsbestaetigungSatz>
+						<zmr:ZugezogenPerson>
+							<base:ZMRZahl>000111111111</base:ZMRZahl>
+							<Familienname>Mustermann</Familienname>
+							<Vorname>Max</Vorname>
+							<Geburtsdatum>2000-01-01</Geburtsdatum>
+						</zmr:ZugezogenPerson>
+						<zmr:ZugezogenAm>2004-01-01T00:00:00.000</zmr:ZugezogenAm>
+						<zmr:ZugezogenGemeindeNr>09999</zmr:ZugezogenGemeindeNr>
+						<zmr:ZugezogenGemeinde>Testgemeinde</zmr:ZugezogenGemeinde>
+					</zmr:ZuzugsbestaetigungSatz>
+					<zmr:ZuzugsbestaetigungSatz>
+						<zmr:ZugezogenPerson>
+							<base:ZMRZahl>000111111112</base:ZMRZahl>
+							<Familienname>Mustermann</Familienname>
+							<Vorname>Ida</Vorname>
+							<Geburtsdatum>2001-01-01</Geburtsdatum>
+						</zmr:ZugezogenPerson>
+						<zmr:ZugezogenAm>2004-01-02T00:00:00.000</zmr:ZugezogenAm>
+						<zmr:ZugezogenGemeindeNr>09999</zmr:ZugezogenGemeindeNr>
+						<zmr:ZugezogenGemeinde>Testgemeinde</zmr:ZugezogenGemeinde>
+					</zmr:ZuzugsbestaetigungSatz>					
+				</zmr:Zuzugsbestaetigung>
+			</zmr:ZuzugsbestaetigungResponse>
+		</base:Response>
+	</soap:Body>
+</soap:Envelope>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/wsdl/Messages.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/wsdl/Messages.xsd
new file mode 100644
index 00000000..112598a4
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/wsdl/Messages.xsd
@@ -0,0 +1,215 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: Messages.xsd
+Zweck: Definiert die Message-Datentypen fuer Services Request und Response (siehe Service.wsdl)
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2010-09-29 teo: Schnittstellen-Liste aktualisiert
+2005-05-24 tsch: BPKPruefung hinzugefuegt
+2005-02-02 tsch: QKZBearbeiten, QKZAuswertung hinzugefuegt
+2005-01-14 tsch: Aviso aktivieren entfernt, Gleichstzungtabelle Warten hinzugefuegt
+2004-11-26 tsch: Adoption, Steuerfahndung, Aviso freischalten/aktivieren hinzugefuegt
+2004-11-22 tsch: Gerichtskommissaerabfrage hinzugefuegt
+2004-09-28 tsch: Wehrfplichtigenanfrage, ablaufende Auskunfssperren-Suche hinzugefuegt
+2004-09-27 tsch: Storno/Korrektur hinzugefuegt
+2004-09-09 tsch: SZR-Vorgaenge sowie Person trennen/zusammenfuehren hinzugefuegt
+2004-07-30 tsch: Erstellung
+-->
+
+<xsd:schema targetNamespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			xmlns:zmr="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	 
+	<xsd:include schemaLocation="../xsd/eingebunden/EingebundenProxy.xsd"/>
+	<xsd:include schemaLocation="../xsd/allgemein/GeschaeftsprozesseAuflisten.xsd"/>
+	<xsd:include schemaLocation="../xsd/allgemein/Benutzereinstellungen.xsd"/>
+	<xsd:include schemaLocation="../xsd/allgemein/Organisationseinstellungen.xsd"/>
+	<xsd:include schemaLocation="../xsd/allgemein/Auswertungen.xsd"/>
+	<xsd:include schemaLocation="../xsd/allgemein/BasTabelleAbfrage.xsd"/>
+	<xsd:import namespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#" schemaLocation="../xsd/zmr/ZMRProxy.xsd"/>
+	
+	
+	<xsd:complexType name="RequestType">
+		<xsd:sequence>
+			<xsd:element ref="base:WorkflowInfoClient"/>
+			<xsd:element ref="base:ClientInfo"/>
+			<xsd:choice>
+				<xsd:element ref="base:BlaetternRequest"/>
+				<xsd:element ref="base:WorkflowsAuflistenRequest"/>
+				<xsd:element ref="base:BenutzereinstellungenAbfragenRequest"/>
+				<xsd:element ref="base:BenutzereinstellungenAendernRequest"/>
+				<xsd:element ref="base:OrganisationseinstellungenAendernRequest"/>
+				<xsd:element ref="base:AuswertungenAuflistenRequest"/>
+				<xsd:element ref="base:AuswertungAbgeholtRequest"/>
+				<xsd:element ref="base:BasTabelleAbfrageRequest"/>
+				<xsd:element ref="zmr:PersonSuchenRequest"/>
+				<xsd:element ref="zmr:PersonAnlegenRequest"/>
+				<xsd:element ref="zmr:PersonAendernRequest"/>
+				<xsd:element ref="zmr:AdresssucheRequest"/>
+				<xsd:element ref="zmr:WohnsitzAnmeldenRequest"/>
+				<xsd:element ref="zmr:WohnsitzAbmeldenRequest"/>
+				<xsd:element ref="zmr:WohnsitzUmmeldenRequest"/>
+				<xsd:element ref="zmr:MeldebestaetigungRequest"/>
+				<xsd:element ref="zmr:MeldeauskunftRequest"/>
+				<xsd:element ref="zmr:DatenabgleichRequest"/>
+				<xsd:element ref="zmr:AvisosucheRequest"/>
+				<xsd:element ref="zmr:AvisoAnlegenRequest"/>
+				<xsd:element ref="zmr:AvisoAendernRequest"/>		
+				<xsd:element ref="zmr:AvisoBeendenRequest"/>
+				<xsd:element ref="zmr:AvisoFreigebenSucheRequest"/>
+				<xsd:element ref="zmr:AvisoFreigebenRequest"/>
+				<xsd:element ref="zmr:BPAbfrageRequest"/>
+				<xsd:element ref="zmr:BPAbfrageErweitertRequest"/>
+				<xsd:element ref="zmr:BusinesspartnerAnfrageRequest"/>
+				<xsd:element ref="zmr:BehoerdenabfrageRequest"/>
+				<xsd:element ref="zmr:BestandsaenderungenRequest"/>
+				<xsd:element ref="zmr:FremdenabfrageRequest"/>
+				<xsd:element ref="zmr:HauseigentuemerAbfrageRequest"/>
+				<xsd:element ref="zmr:HauseigentuemerAbfrageDruckRequest"/>
+				<xsd:element ref="zmr:PersonenAbfrageRequest"/>
+				<xsd:element ref="zmr:PersonenAbfrageDruckRequest"/>
+				<xsd:element ref="zmr:ZuzugsbestaetigungRequest"/>
+				<xsd:element ref="zmr:PersonTrennenSucheRequest"/>
+				<xsd:element ref="zmr:PersonTrennenRequest"/>
+				<xsd:element ref="zmr:PersonZusammenfuehrenSucheRequest"/>
+				<xsd:element ref="zmr:PersonZusammenfuehrenRequest"/>
+				<xsd:element ref="zmr:SZRPersonenbindungRequest"/>
+				<xsd:element ref="zmr:SzrAbfrageRequest"/>
+				<xsd:element ref="zmr:SZRPersonensucheRequest"/>
+				<xsd:element ref="zmr:SZREinzelabfrageRequest"/>
+				<xsd:element ref="zmr:BehoerdenattributeAendernRequest"/>
+				<xsd:element ref="zmr:StornoDarstellenRequest"/>
+				<xsd:element ref="zmr:StornoRequest"/>
+				<xsd:element ref="zmr:PersonKorrigierenRequest"/>
+				<xsd:element ref="zmr:WohnsitzKorrigierenRequest"/>
+				<xsd:element ref="zmr:WehrpflichtigeAbfragenRequest"/>
+				<xsd:element ref="zmr:AblaufendeAuskunftssperrenSucheRequest"/>
+				<xsd:element ref="zmr:GerichtskommissaerabfrageRequest"/>
+				<xsd:element ref="zmr:ObjektsucheSteuerfahndungRequest"/>
+				<xsd:element ref="zmr:ObjektsucheMindestsicherungRequest"/>
+				<xsd:element ref="zmr:AdoptionRequest"/>
+				<xsd:element ref="zmr:GleichsetzungAbfragenRequest"/>
+				<xsd:element ref="zmr:GleichsetzungAnlegenRequest"/>
+				<xsd:element ref="zmr:GleichsetzungLoeschenRequest"/>
+				<xsd:element ref="zmr:QKZBearbeitenRequest"/>
+				<xsd:element ref="zmr:QKZAuswertungRequest"/>
+				<xsd:element ref="zmr:BPKPruefungRequest"/>
+				<xsd:element ref="zmr:MeldungHistKorrigierenRequest"/>
+				<xsd:element ref="zmr:MeldebestaetigungenAnfordernRequest"/>
+				<xsd:element ref="zmr:TechnischeAnsichtRequest"/>
+				<xsd:element ref="zmr:AuskunftssperreAendernRequest"/>
+				<xsd:element ref="zmr:UmmSrvAbfrageRequest"/>
+				<xsd:element ref="zmr:GISSucheRequest"/>
+				<xsd:element ref="zmr:PersonenListenRequest"/>
+				<xsd:element ref="zmr:AnwendungsintegrationRequest"/>
+				<xsd:element ref="zmr:AnwendungsintegrationWiederholungRequest"/>
+				<xsd:element ref="zmr:ORFGISAnforderungRequest"/>
+				<xsd:element ref="zmr:IAPPersonenUeberblickRequest"/>
+				<xsd:element ref="zmr:IAPPersonenDetailRequest"/>
+				<xsd:element ref="zmr:ErnpRequest"/>
+				<xsd:element ref="zmr:BuergerPersonensucheRequest"/>
+				<xsd:element ref="zmr:BuergerMitbewohnersucheRequest"/>
+				<xsd:element ref="zmr:BuergerWohnsitzAnmeldenRequest"/>
+				<xsd:element ref="zmr:BuergerWohnsitzAbmeldenRequest"/>
+				<xsd:element ref="zmr:BuergerWohnsitzUmmeldenRequest"/>
+				<xsd:element ref="zmr:GemeindeeinstellungenRequest"/>
+				<xsd:element ref="zmr:GemeindeeinstellungenAendernRequest"/>
+				<xsd:element ref="zmr:SperrlisteRequest"/>
+				<xsd:element ref="zmr:SperrlisteAnlegenRequest"/>
+				<xsd:element ref="zmr:SperrlisteLoeschenRequest"/>
+			</xsd:choice>
+		</xsd:sequence>
+	</xsd:complexType>
+	
+	<xsd:complexType name="ResponseType">
+		<xsd:sequence>
+			<xsd:element ref="base:WorkflowInfoServer"/>
+			<xsd:element ref="base:ServerInfo"/>
+			<xsd:choice>
+				<xsd:element ref="base:WorkflowsAuflistenResponse"/>
+				<xsd:element ref="base:BenutzereinstellungenAbfragenResponse"/>
+				<xsd:element ref="base:BenutzereinstellungenAendernResponse"/>
+				<xsd:element ref="base:OrganisationseinstellungenAendernResponse"/>
+				<xsd:element ref="base:AuswertungenAuflistenResponse"/>
+				<xsd:element ref="base:AuswertungAbgeholtResponse"/>
+				<xsd:element ref="base:BasTabelleAbfrageResponse"/>
+				<xsd:element ref="zmr:PersonSuchenResponse"/>
+				<xsd:element ref="zmr:PersonAnlegenResponse"/>
+				<xsd:element ref="zmr:PersonAendernResponse"/>
+				<xsd:element ref="zmr:AdresssucheResponse"/>
+				<xsd:element ref="zmr:WohnsitzAnmeldenResponse"/>
+				<xsd:element ref="zmr:WohnsitzAbmeldenResponse"/>
+				<xsd:element ref="zmr:WohnsitzUmmeldenResponse"/>
+				<xsd:element ref="zmr:MeldebestaetigungResponse"/>
+				<xsd:element ref="zmr:MeldeauskunftResponse"/>
+				<xsd:element ref="zmr:DatenabgleichResponse"/>
+				<xsd:element ref="zmr:AvisosucheResponse"/>
+				<xsd:element ref="zmr:AvisoAnlegenResponse"/>
+				<xsd:element ref="zmr:AvisoAendernResponse"/>
+				<xsd:element ref="zmr:AvisoBeendenResponse"/>
+				<xsd:element ref="zmr:AvisoFreigebenSucheResponse"/>
+				<xsd:element ref="zmr:AvisoFreigebenResponse"/>			
+				<xsd:element ref="zmr:BPAbfrageResponse"/>
+				<xsd:element ref="zmr:BPAbfrageErweitertResponse"/>
+				<xsd:element ref="zmr:BusinesspartnerAnfrageResponse"/>
+				<xsd:element ref="zmr:BehoerdenabfrageResponse"/>
+				<xsd:element ref="zmr:BestandsaenderungenResponse"/>
+				<xsd:element ref="zmr:FremdenabfrageResponse"/>
+				<xsd:element ref="zmr:HauseigentuemerAbfrageResponse"/>
+				<xsd:element ref="zmr:HauseigentuemerAbfrageDruckResponse"/>
+				<xsd:element ref="zmr:PersonenAbfrageResponse"/>
+				<xsd:element ref="zmr:PersonenAbfrageDruckResponse"/>
+				<xsd:element ref="zmr:ZuzugsbestaetigungResponse"/>
+				<xsd:element ref="zmr:PersonTrennenSucheResponse"/>
+				<xsd:element ref="zmr:PersonTrennenResponse"/>
+				<xsd:element ref="zmr:PersonZusammenfuehrenSucheResponse"/>
+				<xsd:element ref="zmr:PersonZusammenfuehrenResponse"/>
+				<xsd:element ref="zmr:SZRPersonenbindungResponse"/>
+				<xsd:element ref="zmr:SzrAbfrageResponse"/>
+				<xsd:element ref="zmr:SZRPersonensucheResponse"/>
+				<xsd:element ref="zmr:BehoerdenattributeAendernResponse"/>
+				<xsd:element ref="zmr:StornoDarstellenResponse"/>
+				<xsd:element ref="zmr:StornoResponse"/>
+				<xsd:element ref="zmr:PersonKorrigierenResponse"/>
+				<xsd:element ref="zmr:WohnsitzKorrigierenResponse"/>
+				<xsd:element ref="zmr:WehrpflichtigeAbfragenResponse"/>
+				<xsd:element ref="zmr:AblaufendeAuskunftssperrenSucheResponse"/>
+				<xsd:element ref="zmr:GerichtskommissaerabfrageResponse"/>
+				<xsd:element ref="zmr:ObjektsucheSteuerfahndungResponse"/>
+				<xsd:element ref="zmr:ObjektsucheMindestsicherungResponse"/>
+				<xsd:element ref="zmr:AdoptionResponse"/>
+				<xsd:element ref="zmr:GleichsetzungAbfragenResponse"/>
+				<xsd:element ref="zmr:GleichsetzungAnlegenResponse"/>
+				<xsd:element ref="zmr:GleichsetzungLoeschenResponse"/>
+				<xsd:element ref="zmr:QKZBearbeitenResponse"/>
+				<xsd:element ref="zmr:QKZAuswertungResponse"/>
+				<xsd:element ref="zmr:BPKPruefungResponse"/>				
+				<xsd:element ref="zmr:MeldungHistKorrigierenResponse"/>
+				<xsd:element ref="zmr:MeldebestaetigungenAnfordernResponse"/>
+				<xsd:element ref="zmr:TechnischeAnsichtResponse"/>
+				<xsd:element ref="zmr:AuskunftssperreAendernResponse"/>
+				<xsd:element ref="zmr:UmmSrvAbfrageResponse"/>
+				<xsd:element ref="zmr:GISSucheResponse"/>
+				<xsd:element ref="zmr:PersonenListenResponse"/>
+				<xsd:element ref="zmr:AnwendungsintegrationResponse"/>
+				<xsd:element ref="zmr:AnwendungsintegrationWiederholungResponse"/>
+				<xsd:element ref="zmr:ORFGISAnforderungResponse"/>
+				<xsd:element ref="zmr:IAPPersonenUeberblickResponse"/>
+				<xsd:element ref="zmr:IAPPersonenDetailResponse"/>
+				<xsd:element ref="zmr:ErnpResponse"/>
+				<xsd:element ref="zmr:BuergerPersonensucheResponse"/>
+				<xsd:element ref="zmr:BuergerMitbewohnersucheResponse"/>
+				<xsd:element ref="zmr:BuergerWohnsitzserviceResponse"/>
+				<xsd:element ref="zmr:GemeindeeinstellungenResponse"/>
+				<xsd:element ref="zmr:GemeindeeinstellungenAendernResponse"/>
+				<xsd:element ref="zmr:SperrlisteResponse"/>
+				<xsd:element ref="zmr:SperrlisteUpdateResponse"/>
+			</xsd:choice>
+		</xsd:sequence>
+	</xsd:complexType>
+	
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/wsdl/Service.wsdl b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/wsdl/Service.wsdl
new file mode 100644
index 00000000..3dbeabc7
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/wsdl/Service.wsdl
@@ -0,0 +1,62 @@
+<definitions xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:soap="http://schemas.xmlsoap.org/wsdl/soap/"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			xmlns:wsse="http://schemas.xmlsoap.org/ws/2002/04/secext"
+			xmlns="http://schemas.xmlsoap.org/wsdl/"
+			targetNamespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" name="Service">
+	<types>
+		<xsd:schema xmlns="http://bmi.gv.at/namespace/zmr-su/base/20040201#" targetNamespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#">
+			<xsd:import namespace="http://schemas.xmlsoap.org/ws/2002/04/secext" schemaLocation="secext.xsd"/>			
+			<xsd:include schemaLocation="Messages.xsd"/>
+			<xsd:element name="Request" type="RequestType"/>
+			<xsd:element name="Response" type="ResponseType"/>
+			<xsd:element name="ServiceFault">
+				<xsd:complexType>
+					<xsd:sequence>
+						<xsd:element ref="ErrorCode"/>
+						<xsd:element ref="ErrorMessage"/>
+						<xsd:element ref="ServerTransaktionNr"/>
+					</xsd:sequence>
+				</xsd:complexType>
+			</xsd:element>
+		</xsd:schema>
+	</types>
+	<message name="ServiceRequest">
+		<part name="in" element="base:Request"/>
+		<part name="WSSEHeader" element="wsse:Security"/>
+	</message>
+	<message name="ServiceResponse">
+		<part name="out" element="base:Response"/>
+	</message>
+	<message name="ServiceFault">
+		<part name="servicefault" element="base:ServiceFault"/>
+	</message>	
+	<portType name="ServicePort">
+		<operation name="service">
+			<input message="base:ServiceRequest"/>
+			<output message="base:ServiceResponse"/>
+			<fault name="servicefault" message="base:ServiceFault"/>
+		</operation>
+	</portType>
+	<binding name="ServiceBinding" type="base:ServicePort">
+		<soap:binding style="document" transport="http://schemas.xmlsoap.org/soap/http"/>
+		<operation name="service">
+			<soap:operation style="document"/>
+			<input>
+				<soap:header message="base:ServiceRequest" part="WSSEHeader" use="literal"/>
+				<soap:body use="literal" parts="in"/>
+			</input>
+			<output>
+				<soap:body use="literal"/>
+			</output>
+			<fault name="servicefault">
+				<soap:fault name="servicefault" use="literal"/>
+			</fault>
+		</operation>
+	</binding>
+	<service name="Service">
+		<port name="Service" binding="base:ServiceBinding">
+			<soap:address location="https://pvawp.bmi.gv.at/bmi.gv.at/soap/zmr/soap/ZMRService"/>
+		</port>
+	</service>
+</definitions>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/wsdl/secext.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/wsdl/secext.xsd
new file mode 100644
index 00000000..1005b12a
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/wsdl/secext.xsd
@@ -0,0 +1,150 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!-- 
+Legal Disclaimer
+
+The presentation, distribution or other dissemination of the information 
+contained in this specification is not a license, either expressly or impliedly, 
+to any intellectual property owned or controlled by IBM or Microsoft and\or any other 
+third party.  IBM and Microsoft and\or any other third party may have patents, patent 
+applications, trademarks, copyrights, or other intellectual property rights 
+covering subject matter in this document.  The furnishing of this document 
+does not give you any license to IBM's and Microsoft's or any other third party's patents, 
+trademarks, copyrights, or other intellectual property.
+
+This specification and the information contained herein is provided on an "AS IS"
+ basis and to the maximum extent permitted by applicable law, IBM and Microsoft provides 
+the document AS IS AND WITH ALL FAULTS, and hereby disclaims all other warranties 
+and conditions, either express, implied or statutory, including, but not limited 
+to, any (if any) implied warranties, duties or conditions of merchantability, of 
+fitness for a particular purpose, of accuracy or completeness of responses, of 
+results, of workmanlike effort, of lack of viruses, and of lack of negligence, 
+all with regard to the document. ALSO, THERE IS NO WARRANTY OR CONDITION OF 
+TITLE, QUIET ENJOYMENT, QUIET POSSESSION, CORRESPONDENCE TO DESCRIPTION OR 
+NON-INFRINGEMENT OF ANY INTELLECTUAL PROPERTY RIGHTS WITH REGARD TO THE DOCUMENT.
+
+IN NO EVENT WILL IBM or MICROSOFT BE LIABLE TO ANY OTHER PARTY FOR THE COST OF PROCURING 
+SUBSTITUTE GOODS OR SERVICES, LOST PROFITS, LOSS OF USE, LOSS OF DATA, OR ANY 
+INCIDENTAL, CONSEQUENTIAL, DIRECT, INDIRECT, OR SPECIAL DAMAGES WHETHER UNDER 
+CONTRACT, TORT, WARRANTY, OR OTHERWISE, ARISING IN ANY WAY OUT OF THIS OR ANY 
+OTHER AGREEMENT RELATING TO THIS DOCUMENT, WHETHER OR NOT SUCH PARTY HAD ADVANCE 
+NOTICE OF THE POSSIBILITY OF SUCH DAMAGES.
+
+Copyright Notice
+
+Copyright 2001, 2002 IBM Corporation and Microsoft Corporation. All rights reserved.
+-->
+<xsd:schema targetNamespace="http://schemas.xmlsoap.org/ws/2002/04/secext" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:wsse="http://schemas.xmlsoap.org/ws/2002/04/secext" xmlns="http://schemas.xmlsoap.org/ws/2002/04/secext" xmlns:SOAP-ENV="http://schemas.xmlsoap.org/soap/envelope/" elementFormDefault="qualified" attributeFormDefault="unqualified" version="0.2">
+  <xsd:element name="Security">
+    <xsd:annotation>
+      <xsd:documentation>
+                This element defines header block to use for security-relevant data directed at a specific SOAP actor.
+           </xsd:documentation>
+    </xsd:annotation>
+    <xsd:complexType>
+      <xsd:sequence>
+        <xsd:any processContents="lax" minOccurs="0" maxOccurs="unbounded">
+          <xsd:annotation>
+            <xsd:documentation>
+                                The use of "any" is to allow extensibility and different forms of security data.
+                        </xsd:documentation>
+          </xsd:annotation>
+        </xsd:any>
+      </xsd:sequence>
+      <xsd:anyAttribute processContents="lax"/>
+    </xsd:complexType>
+  </xsd:element>
+  <xsd:element name="UsernameToken">
+    <xsd:complexType>
+      <xsd:sequence>
+        <xsd:element ref="Username"/>
+        <xsd:element ref="Password" minOccurs="0"/>
+      </xsd:sequence>
+      <xsd:attribute name="Id" type="xsd:ID"/>
+      <xsd:anyAttribute namespace="##other"/>
+    </xsd:complexType>
+  </xsd:element>
+  <xsd:element name="Username">
+    <xsd:complexType>
+      <xsd:simpleContent>
+        <xsd:extension base="xsd:string">
+          <xsd:anyAttribute namespace="##other"/>
+        </xsd:extension>
+      </xsd:simpleContent>
+    </xsd:complexType>
+  </xsd:element>
+  <xsd:element name="Password">
+    <xsd:complexType>
+      <xsd:simpleContent>
+        <xsd:extension base="xsd:string">
+          <xsd:attribute name="Type" type="xsd:QName"/>
+          <xsd:anyAttribute namespace="##other"/>
+        </xsd:extension>
+      </xsd:simpleContent>
+    </xsd:complexType>
+  </xsd:element>
+  <xsd:element name="BinarySecurityToken">
+    <xsd:annotation>
+      <xsd:documentation>A security token that is encoded in binary</xsd:documentation>
+    </xsd:annotation>
+    <xsd:complexType>
+      <xsd:simpleContent>
+        <xsd:extension base="xsd:string">
+          <xsd:attribute name="Id" type="xsd:ID"/>
+          <xsd:attribute name="ValueType" type="xsd:QName"/>
+          <xsd:attribute name="EncodingType" type="xsd:QName"/>
+          <xsd:anyAttribute namespace="##other" processContents="strict"/>
+        </xsd:extension>
+      </xsd:simpleContent>
+    </xsd:complexType>
+  </xsd:element>
+  <xsd:element name="SecurityTokenReference">
+    <xsd:annotation>
+      <xsd:documentation>
+            This element is used reference a security token.
+            </xsd:documentation>
+    </xsd:annotation>
+    <xsd:complexType>
+      <xsd:choice minOccurs="0" maxOccurs="unbounded">
+        <xsd:element ref="Reference"/>
+        <xsd:any namespace="##other" processContents="lax" minOccurs="0" maxOccurs="unbounded"/>
+      </xsd:choice>
+      <xsd:attribute name="Id" type="xsd:ID"/>
+      <xsd:anyAttribute namespace="##other" processContents="lax"/>
+    </xsd:complexType>
+  </xsd:element>
+  <xsd:element name="Reference">
+    <xsd:complexType>
+      <xsd:attribute name="URI" type="xsd:anyURI"/>
+    </xsd:complexType>
+  </xsd:element>
+  <xsd:simpleType name="PasswordTypeEnum">
+    <xsd:restriction base="xsd:QName">
+      <xsd:enumeration value="wsse:PasswordText"/>
+      <xsd:enumeration value="wsse:PasswordDigest"/>
+    </xsd:restriction>
+  </xsd:simpleType>
+  <xsd:simpleType name="ValueTypeEnum">
+    <xsd:restriction base="xsd:QName">
+      <xsd:enumeration value="wsse:X509v3"/>
+      <xsd:enumeration value="wsse:Kerberosv5TGT"/>
+      <xsd:enumeration value="wsse:Kerberosv5ST"/>
+    </xsd:restriction>
+  </xsd:simpleType>
+  <xsd:simpleType name="EncodingTypeEnum">
+    <xsd:restriction base="xsd:QName">
+      <xsd:enumeration value="wsse:Base64Binary"/>
+      <xsd:enumeration value="wsse:HexBinary"/>
+    </xsd:restriction>
+  </xsd:simpleType>
+  <xsd:simpleType name="FaultcodeEnum">
+    <xsd:restriction base="xsd:QName">
+      <xsd:enumeration value="wsse:UnsupportedSecurityToken"/>
+      <xsd:enumeration value="wsse:UnsupportedAlgorithm"/>
+      <xsd:enumeration value="wsse:InvalidSecurity"/>
+      <xsd:enumeration value="wsse:InvalidSecurityToken"/>
+      <xsd:enumeration value="wsse:FailedAuthentication"/>
+      <xsd:enumeration value="wsse:FailedCheck"/>
+      <xsd:enumeration value="wsse:SecurityTokenUnavailable"/>
+    </xsd:restriction>
+  </xsd:simpleType>
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/wsdl/secext_pvp.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/wsdl/secext_pvp.xsd
new file mode 100644
index 00000000..24896b99
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/wsdl/secext_pvp.xsd
@@ -0,0 +1,152 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!-- 
+Legal Disclaimer
+
+The presentation, distribution or other dissemination of the information 
+contained in this specification is not a license, either expressly or impliedly, 
+to any intellectual property owned or controlled by IBM or Microsoft and\or any other 
+third party.  IBM and Microsoft and\or any other third party may have patents, patent 
+applications, trademarks, copyrights, or other intellectual property rights 
+covering subject matter in this document.  The furnishing of this document 
+does not give you any license to IBM's and Microsoft's or any other third party's patents, 
+trademarks, copyrights, or other intellectual property.
+
+This specification and the information contained herein is provided on an "AS IS"
+ basis and to the maximum extent permitted by applicable law, IBM and Microsoft provides 
+the document AS IS AND WITH ALL FAULTS, and hereby disclaims all other warranties 
+and conditions, either express, implied or statutory, including, but not limited 
+to, any (if any) implied warranties, duties or conditions of merchantability, of 
+fitness for a particular purpose, of accuracy or completeness of responses, of 
+results, of workmanlike effort, of lack of viruses, and of lack of negligence, 
+all with regard to the document. ALSO, THERE IS NO WARRANTY OR CONDITION OF 
+TITLE, QUIET ENJOYMENT, QUIET POSSESSION, CORRESPONDENCE TO DESCRIPTION OR 
+NON-INFRINGEMENT OF ANY INTELLECTUAL PROPERTY RIGHTS WITH REGARD TO THE DOCUMENT.
+
+IN NO EVENT WILL IBM or MICROSOFT BE LIABLE TO ANY OTHER PARTY FOR THE COST OF PROCURING 
+SUBSTITUTE GOODS OR SERVICES, LOST PROFITS, LOSS OF USE, LOSS OF DATA, OR ANY 
+INCIDENTAL, CONSEQUENTIAL, DIRECT, INDIRECT, OR SPECIAL DAMAGES WHETHER UNDER 
+CONTRACT, TORT, WARRANTY, OR OTHERWISE, ARISING IN ANY WAY OUT OF THIS OR ANY 
+OTHER AGREEMENT RELATING TO THIS DOCUMENT, WHETHER OR NOT SUCH PARTY HAD ADVANCE 
+NOTICE OF THE POSSIBILITY OF SUCH DAMAGES.
+
+Copyright Notice
+
+Copyright 2001, 2002 IBM Corporation and Microsoft Corporation. All rights reserved.
+-->
+<xsd:schema targetNamespace="http://schemas.xmlsoap.org/ws/2002/04/secext" xmlns:pvp="http://egov.gv.at/pvp1.xsd" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:wsse="http://schemas.xmlsoap.org/ws/2002/04/secext" xmlns="http://schemas.xmlsoap.org/ws/2002/04/secext" xmlns:SOAP-ENV="http://schemas.xmlsoap.org/soap/envelope/" elementFormDefault="qualified" attributeFormDefault="unqualified" version="0.2">
+  <xsd:import namespace="http://egov.gv.at/pvp1.xsd" schemaLocation="../xsd/eingebunden/pvp1.xsd"/>
+  <xsd:element name="Security">
+    <xsd:annotation>
+      <xsd:documentation>
+                This element defines header block to use for security-relevant data directed at a specific SOAP actor.
+           </xsd:documentation>
+    </xsd:annotation>
+    <xsd:complexType>
+      <xsd:sequence>
+        <xsd:element ref="pvp:pvpToken" minOccurs="0"/>
+        <xsd:any processContents="lax" minOccurs="0" maxOccurs="unbounded">
+          <xsd:annotation>
+            <xsd:documentation>
+                                The use of "any" is to allow extensibility and different forms of security data.
+                        </xsd:documentation>
+          </xsd:annotation>
+        </xsd:any>
+      </xsd:sequence>
+      <xsd:anyAttribute processContents="lax"/>
+    </xsd:complexType>
+  </xsd:element>
+  <xsd:element name="UsernameToken">
+    <xsd:complexType>
+      <xsd:sequence>
+        <xsd:element ref="Username"/>
+        <xsd:element ref="Password" minOccurs="0"/>
+      </xsd:sequence>
+      <xsd:attribute name="Id" type="xsd:ID"/>
+      <xsd:anyAttribute namespace="##other"/>
+    </xsd:complexType>
+  </xsd:element>
+  <xsd:element name="Username">
+    <xsd:complexType>
+      <xsd:simpleContent>
+        <xsd:extension base="xsd:string">
+          <xsd:anyAttribute namespace="##other"/>
+        </xsd:extension>
+      </xsd:simpleContent>
+    </xsd:complexType>
+  </xsd:element>
+  <xsd:element name="Password">
+    <xsd:complexType>
+      <xsd:simpleContent>
+        <xsd:extension base="xsd:string">
+          <xsd:attribute name="Type" type="xsd:QName"/>
+          <xsd:anyAttribute namespace="##other"/>
+        </xsd:extension>
+      </xsd:simpleContent>
+    </xsd:complexType>
+  </xsd:element>
+  <xsd:element name="BinarySecurityToken">
+    <xsd:annotation>
+      <xsd:documentation>A security token that is encoded in binary</xsd:documentation>
+    </xsd:annotation>
+    <xsd:complexType>
+      <xsd:simpleContent>
+        <xsd:extension base="xsd:string">
+          <xsd:attribute name="Id" type="xsd:ID"/>
+          <xsd:attribute name="ValueType" type="xsd:QName"/>
+          <xsd:attribute name="EncodingType" type="xsd:QName"/>
+          <xsd:anyAttribute namespace="##other" processContents="strict"/>
+        </xsd:extension>
+      </xsd:simpleContent>
+    </xsd:complexType>
+  </xsd:element>
+  <xsd:element name="SecurityTokenReference">
+    <xsd:annotation>
+      <xsd:documentation>
+            This element is used reference a security token.
+            </xsd:documentation>
+    </xsd:annotation>
+    <xsd:complexType>
+      <xsd:choice minOccurs="0" maxOccurs="unbounded">
+        <xsd:element ref="Reference"/>
+        <xsd:any namespace="##other" processContents="lax" minOccurs="0" maxOccurs="unbounded"/>
+      </xsd:choice>
+      <xsd:attribute name="Id" type="xsd:ID"/>
+      <xsd:anyAttribute namespace="##other" processContents="lax"/>
+    </xsd:complexType>
+  </xsd:element>
+  <xsd:element name="Reference">
+    <xsd:complexType>
+      <xsd:attribute name="URI" type="xsd:anyURI"/>
+    </xsd:complexType>
+  </xsd:element>
+  <xsd:simpleType name="PasswordTypeEnum">
+    <xsd:restriction base="xsd:QName">
+      <xsd:enumeration value="wsse:PasswordText"/>
+      <xsd:enumeration value="wsse:PasswordDigest"/>
+    </xsd:restriction>
+  </xsd:simpleType>
+  <xsd:simpleType name="ValueTypeEnum">
+    <xsd:restriction base="xsd:QName">
+      <xsd:enumeration value="wsse:X509v3"/>
+      <xsd:enumeration value="wsse:Kerberosv5TGT"/>
+      <xsd:enumeration value="wsse:Kerberosv5ST"/>
+    </xsd:restriction>
+  </xsd:simpleType>
+  <xsd:simpleType name="EncodingTypeEnum">
+    <xsd:restriction base="xsd:QName">
+      <xsd:enumeration value="wsse:Base64Binary"/>
+      <xsd:enumeration value="wsse:HexBinary"/>
+    </xsd:restriction>
+  </xsd:simpleType>
+  <xsd:simpleType name="FaultcodeEnum">
+    <xsd:restriction base="xsd:QName">
+      <xsd:enumeration value="wsse:UnsupportedSecurityToken"/>
+      <xsd:enumeration value="wsse:UnsupportedAlgorithm"/>
+      <xsd:enumeration value="wsse:InvalidSecurity"/>
+      <xsd:enumeration value="wsse:InvalidSecurityToken"/>
+      <xsd:enumeration value="wsse:FailedAuthentication"/>
+      <xsd:enumeration value="wsse:FailedCheck"/>
+      <xsd:enumeration value="wsse:SecurityTokenUnavailable"/>
+    </xsd:restriction>
+  </xsd:simpleType>
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/allgemein/Auswertungen.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/allgemein/Auswertungen.xsd
new file mode 100644
index 00000000..c5efb2f6
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/allgemein/Auswertungen.xsd
@@ -0,0 +1,200 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: Auswertungen.xsd
+Zweck: Definiert Datentypen zum Auflisten und Abholen von Auswertungen aus dem ZMR
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2007-12-19 teo: +NurAbgeholte in AuswertungenAuflistenRequest (CR442)
+2005-05-17 tsch: AuswertungErzeugt hinzugefuegt
+2005-04-30 tsch: EntityID einer speziellen Auswertung optional zur Organisation
+2005-04-30 tsch: Feld GeneriertBis hinzugefuegt (Schätzung der Bereitstellungszeit, falls Auswertungsgenerierung in Arbeit)
+2005-04-29 tsch: Es können mehrere Auswertungen zugleich gelöscht werden
+2004-11-09 tsch: Auswertung-Langtext hinzugefuegt
+2004-09-27 tsch: Vom ZMR-Namespace nach BASE verschoben  
+2004-06-24 tsch: Erstellung
+-->
+
+<xsd:schema targetNamespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+			
+	<xsd:include schemaLocation="../eingebunden/EingebundenProxy.xsd"/>
+	
+	<xsd:element name="AuswertungenAuflistenRequest">
+		<xsd:annotation>
+			<xsd:documentation>
+			Request zum Auflisten der im ZMR für eine Organisation erzeugten Auswertungen
+			Ist InclusiveAbgeholte='true', werden auch die Auswerungen geliefert, die schon abgeholt wurden.
+			</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:choice>
+					<xsd:element ref="Organisation"/>
+					<xsd:element ref="EntityID"/>
+				</xsd:choice>
+				<xsd:element name="InclusiveAbgeholte" type="xsd:boolean"/>
+				<xsd:element name="NurAbgeholte" type="xsd:boolean" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="AuswertungenAuflistenResponse">
+		<xsd:annotation>
+			<xsd:documentation>
+			In der Response werden die für die Organisation erzeugten Auswertungen als Liste geliefert.
+			Die Auswertungen sind nach GeneriertAm aufsteigend sortiert
+			</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="Message"/>
+				<xsd:choice>
+					<xsd:element ref="Organisation"/>
+					<xsd:element ref="EntityID"/>
+				</xsd:choice>
+				<xsd:element ref="Auswertung" minOccurs="0" maxOccurs="unbounded"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="AuswertungAbgeholtRequest">
+		<xsd:annotation>
+			<xsd:documentation>
+			Wenn alle Teile (Auswertungsdaten) einer Auswertung abgeholt (mittels HTTP-Get) und erfolgreich
+			verarbeitet wurden, muss dieser Request zum 'Abschliessen' der Auswertung geschickt werden.
+			Abgeholte Auswertungen werden nur nuch dann geliefert, wenn InclusiveAbgeholte='true' gesetzt ist.
+			Es muss die EntityID der abgeholten Auswertung geschickt werden.
+			</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="EntityID" minOccurs="1" maxOccurs="unbounded"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="AuswertungAbgeholtResponse">
+		<xsd:annotation>
+			<xsd:documentation>
+			Response mit EntityID der abgeholten Auswertung
+			</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="Message"/>
+				<xsd:element ref="EntityID" minOccurs="1" maxOccurs="unbounded"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>	
+
+	<xsd:element name="AuswertungErzeugtRequest">
+		<xsd:annotation>
+			<xsd:documentation>
+			Sobald eine Auswertung erzeugt wurde, kann über diese Schnittstelle der Empfänger aktiv verständigt werden (PUSH-Mechanismus)
+			</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="Organisation"/>
+				<xsd:element ref="Auswertung"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="AuswertungErzeugtResponse">
+		<xsd:annotation>
+			<xsd:documentation>
+			Bestätigung des Empfängers, die Verstänfigung erhalten zu haben
+			</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="Message"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="Auswertung">
+		<xsd:annotation>
+			<xsd:documentation>
+			Innerhalb einer Auswertung werden die geteilten Files aufsteigend durchnummeriert geliefert.
+			Als erster Schüssel der Sortierung dient der Datentyp, als zweiter die Nummerierung
+			</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element name="Code">
+					<xsd:simpleType>
+						<xsd:restriction base="xsd:string">
+							<xsd:whiteSpace value="collapse"/>
+							<xsd:minLength value="1"/>
+							<xsd:maxLength value="20"/>	
+						</xsd:restriction>
+					</xsd:simpleType>
+				</xsd:element>
+				<xsd:element name="Langtext">				
+					<xsd:simpleType>
+						<xsd:restriction base="xsd:string">
+							<xsd:whiteSpace value="collapse"/>
+							<xsd:minLength value="1"/>
+							<xsd:maxLength value="50"/>	
+						</xsd:restriction>
+					</xsd:simpleType>
+				</xsd:element>				
+				<xsd:element ref="EntityID"/>
+				<xsd:choice>
+					<xsd:sequence>
+						<xsd:element ref="GeneriertAm"/>
+						<xsd:element ref="AuswertungAbgeholt" minOccurs="0"/>
+						<xsd:element ref="Auswertungsdaten" minOccurs="1" maxOccurs="unbounded"/>
+					</xsd:sequence>
+					<xsd:sequence>
+						<xsd:element name="BearbeitungsBeginn" type="TimestampType"/>
+					</xsd:sequence>
+				</xsd:choice>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="Auswertungsdaten">
+		<xsd:annotation>
+			<xsd:documentation>
+			Das File mit dem Auswertungsteil ist über den angegebenen (zur ZMR-Applikationsroot)
+			relativen URL referenziert und kann mittels HTTP-GET abgeholt werden.
+			</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element name="Langtext">				
+					<xsd:simpleType>
+						<xsd:restriction base="xsd:string">
+							<xsd:whiteSpace value="collapse"/>
+							<xsd:minLength value="1"/>
+							<xsd:maxLength value="50"/>	
+						</xsd:restriction>
+					</xsd:simpleType>
+				</xsd:element>
+				<xsd:element name="URL" type="xsd:string"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="AuswertungAbgeholt">
+		<xsd:annotation>
+			<xsd:documentation>
+			Falls die Auswertung schon einmal abgeholt wurde, wird dieser Datenteil mit den
+			Informationen zur Abholung (Organisation, Zeitpunkt) geliefert.
+			</xsd:documentation>
+		</xsd:annotation>	
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element name="AbgeholtAm" type="TimestampType"/>
+				<xsd:element ref="DurchgefuehrtVon"/>
+			</xsd:sequence>
+		</xsd:complexType>		
+	</xsd:element>	
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/allgemein/BasTabelleAbfrage.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/allgemein/BasTabelleAbfrage.xsd
new file mode 100644
index 00000000..4c2387d7
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/allgemein/BasTabelleAbfrage.xsd
@@ -0,0 +1,176 @@
+<?xml version="1.0" encoding="UTF-8"?>
+	<!--
+Name: BasTabellenAbfrage.xsd
+Zweck: Definiert Abfragerequest und -responses für die BAS-Tabellenabfrage
+Author(s): Fürnweger Andreas, ZMR-SU
+
+Aenderungshistorie:
+2012-08-08 xfu: Erstellt
+-->
+
+<xsd:schema targetNamespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#" xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#" elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	<xsd:include schemaLocation="../eingebunden/EingebundenProxy.xsd" />
+
+	<xsd:simpleType name="TabelleType">
+		<xsd:restriction base="xsd:string">
+			<xsd:enumeration value="AKADGRAD" />
+			<xsd:enumeration value="STAAT" />
+			<xsd:enumeration value="DOMAINCODE" />
+			<xsd:enumeration value="GEMNRBEHKZ" />
+			<xsd:enumeration value="TGEM" />
+			<xsd:enumeration value="GESCHAEFTSPROLLE" />
+		</xsd:restriction>
+	</xsd:simpleType>
+
+	<xsd:element name="BasTabelleAbfrageRequest">
+		<xsd:annotation>
+			<xsd:documentation>
+				Definiert welche Tabelle mit welchen Suchkriterien aufgelistet werden soll.
+				InclusivHistorie: bestimmt ob nur aktuelle oder auch (fachlich) historische Einträge aufgelistet werden sollen
+				LetzteAenderungNach: Gibt man hier ein Datum an, werden nur Einträge gelistet, deren LetzteAenderung Datum nach diesem ist
+			</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element name="Tabelle" type="base:TabelleType" />
+				<xsd:element ref="base:InclusivHistorie" />
+				<xsd:element name="LetzteAenderungNach" type="base:TimestampType" minOccurs="0" />
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="BasTabelleAbfrageResponse">
+		<xsd:annotation>
+			<xsd:documentation>Enthält alle gefunden Einträge der entsprechenden BAS-Tabelle</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:choice>
+				<xsd:element ref="base:BasStaat" minOccurs="0" maxOccurs="unbounded" />
+				<xsd:element ref="base:BasAkadGrad" minOccurs="0" maxOccurs="unbounded" />
+				<xsd:element ref="base:BasDomainCode" minOccurs="0" maxOccurs="unbounded" />
+				<xsd:element ref="base:GemnrBehkz" minOccurs="0" maxOccurs="unbounded" />
+				<xsd:element ref="base:BasTgem" minOccurs="0" maxOccurs="unbounded" />
+				<xsd:element ref="base:Rolle" minOccurs="0" maxOccurs="unbounded" />
+			</xsd:choice>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="BasStaat">
+		<xsd:complexType>
+			<xsd:annotation>
+				<xsd:documentation>Ein BAS.STAAT Eintrag mit den üblichen technischen und allen fachlichen Informationen</xsd:documentation>
+			</xsd:annotation>
+			<xsd:sequence>
+				<xsd:element ref="base:EntityErgebnisReferenz" />
+				<xsd:element name="ISOCode2" type="xsd:string" minOccurs="0" />
+				<xsd:element name="ISOCode3" type="xsd:string" minOccurs="0" />
+				<xsd:element name="StaatAnerkannt" type="xsd:boolean" minOccurs="0" />
+				<xsd:element name="Staatsbuerger" type="xsd:boolean" minOccurs="0" />  <!-- ZMR-2864 Staatsbuergerschaft -->
+				<xsd:element name="GebStaat" type="xsd:boolean" minOccurs="0" />
+				<xsd:element name="UmzugStaat" type="xsd:boolean" minOccurs="0" />
+				<xsd:element name="ReisedokStaat" type="xsd:boolean" minOccurs="0" />
+				<xsd:element name="ZugehoerigStaat" type="xsd:string" minOccurs="0" />
+				<xsd:element name="EwrStaat" type="xsd:boolean" minOccurs="0" />
+				<xsd:element name="EuStaat" type="xsd:boolean" minOccurs="0" />
+				<xsd:element name="EuStaatOffiziell" type="xsd:boolean" minOccurs="0" />
+				<xsd:element name="StaatName" type="xsd:string" minOccurs="0" />
+				<xsd:element name="StaatNameEinf" type="xsd:string" minOccurs="0" />
+				<xsd:element name="StaatNameLang" type="xsd:string" minOccurs="0" />
+				<xsd:element name="StaatNameNorm" type="xsd:string" minOccurs="0" />
+				<xsd:element name="StaatNummer" type="xsd:int" minOccurs="0" />
+				<xsd:element name="StaatKFZ" type="xsd:string" minOccurs="0" />
+				<xsd:element name="StaatEnglisch" type="xsd:string" minOccurs="0" />
+				<xsd:element name="UnStaat" type="xsd:boolean" minOccurs="0" />
+				<xsd:element name="PostStaat" type="xsd:boolean" minOccurs="0" />
+				<xsd:element name="PlzStaat" type="xsd:string" minOccurs="0" />
+				<xsd:element name="Kontinent" type="xsd:string" minOccurs="0" />
+				<xsd:element name="Region" type="xsd:string" minOccurs="0" />
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="BasAkadGrad">
+		<xsd:complexType>
+			<xsd:annotation>
+				<xsd:documentation>Ein BAS.AKADGRAD Eintrag mit den üblichen technischen und allen fachlichen Informationen</xsd:documentation>
+			</xsd:annotation>
+			<xsd:sequence>
+				<xsd:element ref="base:EntityErgebnisReferenz" />
+				<xsd:element ref="base:AkadGradStellung" minOccurs="0" />
+				<xsd:element ref="base:AkadGradReihung" minOccurs="0" />
+				<xsd:element name="Art" type="xsd:string" minOccurs="0" />
+				<xsd:element ref="base:AkadGradLang" minOccurs="0" />
+				<xsd:element ref="base:AkadGradKurz" minOccurs="0" />
+				<xsd:element name="ISOCode3" type="xsd:string" minOccurs="0" />
+				<xsd:element name="AkadGradNorm" type="xsd:string" minOccurs="0" />
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="BasDomainCode">
+		<xsd:complexType>
+			<xsd:annotation>
+				<xsd:documentation>Ein BAS.DOMAINCODE Eintrag mit den fürs ZMR3 relevanten Feldern</xsd:documentation>
+			</xsd:annotation>
+			<xsd:sequence>
+				<xsd:element name="Bereich" type="xsd:string" />
+				<xsd:element name="Code" type="xsd:string" />
+				<xsd:element name="CodeText" type="xsd:string" />
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="GemnrBehkz">
+		<xsd:complexType>
+			<xsd:annotation>
+				<xsd:documentation>Ein BAS.GEMNRBEHKZ Eintrag mit den fürs ZMR3 relevanten Feldern</xsd:documentation>
+			</xsd:annotation>
+			<xsd:attribute name="gem" type="xsd:int" />
+			<xsd:attribute name="beh" type="xsd:int" />
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="BasTgem">
+		<xsd:complexType>
+			<xsd:annotation>
+				<xsd:documentation>Ein GW2.TGEM Eintrag mit den fürs ZMR3 relevanten Feldern</xsd:documentation>
+			</xsd:annotation>
+			<xsd:attribute name="name" type="xsd:string" />
+			<xsd:attribute name="nr" type="xsd:int" />
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="Rolle">
+		<xsd:complexType>
+			<xsd:annotation>
+				<xsd:documentation>Eine Rolle mit den erlaubten Geschäftsprozessen</xsd:documentation>
+			</xsd:annotation>
+			<xsd:sequence>
+				<xsd:element ref="base:Geschaeftsprozess" minOccurs="0" maxOccurs="unbounded" />
+			</xsd:sequence>
+			<xsd:attribute name="Name" type="xsd:string" />
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="Geschaeftsprozess">
+		<xsd:complexType>
+			<xsd:annotation>
+				<xsd:documentation>Ein Geschäftsprozess zu einer Rolle mit optionaler Einschränkung auf bestimmte Vorgänge</xsd:documentation>
+			</xsd:annotation>
+			<xsd:sequence>
+				<xsd:element ref="base:Vorgang" minOccurs="0" maxOccurs="unbounded" />
+			</xsd:sequence>
+			<xsd:attribute name="Name" type="xsd:string" />
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="Vorgang">
+		<xsd:complexType>
+			<xsd:annotation>
+				<xsd:documentation>Ein Geschäftsprozess zu einer Rolle mit optionaler Einschränkung auf bestimmte Vorgänge</xsd:documentation>
+			</xsd:annotation>
+			<xsd:attribute name="Name" type="xsd:string" />
+		</xsd:complexType>
+	</xsd:element>
+
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/allgemein/Benutzereinstellungen.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/allgemein/Benutzereinstellungen.xsd
new file mode 100644
index 00000000..45bb9795
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/allgemein/Benutzereinstellungen.xsd
@@ -0,0 +1,102 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: Benutzereinstellungen.xsd
+Zweck: Definiert Datentypen für Benutzereinstellungen -Abfragen und Änderungen im ZMR
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2011-04-29  rp: LMR-905: +DefaultGemeindeNrSucheInclLMR
+2011-01-11 teo: LMR-837 Farbgestaltung Menü
+2010-01-27 teo: Suche mit Teilnamen (ZMR-1334)
+2009-12-10 mp: Suche inkl. LMR hinzugefügt (LMR-677)
+2008-04-08 xglettl: DruckOrtschaft und DruckPostort hinzu
+2006-08-24 tsch: 
+2006-08-16 tsch: EingeschraenkteHistorie hinzugefügt
+2004-09-28 tsch: BehoerdenNr entfernt
+2004-09-08 tsch: BenutzerName hinzugefügt
+2004-08-17 tsch: Erstellung
+-->
+
+<xsd:schema targetNamespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			xmlns:cio="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+			
+
+	<xsd:include schemaLocation="../eingebunden/EingebundenProxy.xsd"/>
+	<xsd:include schemaLocation="Organisationseinstellungen.xsd"/>
+	<xsd:import namespace="http://reference.e-government.gv.at/namespace/persondata/de/20040201#" schemaLocation="../eingebunden/PersonDataZMR.xsd"/>
+	
+	<xsd:element name="BenutzereinstellungenAbfragenRequest">
+		<xsd:complexType>
+			<xsd:annotation>
+				<xsd:documentation>Leerer Request, die Identifikation des Benutzers wird aus den Logindaten gewonnen</xsd:documentation>
+			</xsd:annotation>		
+			<xsd:sequence>
+				
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="BenutzereinstellungenAbfragenResponse">
+		<xsd:annotation>
+			<xsd:documentation>Benutzereinstellungsdaten des abfragenden Benutzers.</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="Benutzereinstellungen" minOccurs="1"/>
+				<xsd:element ref="Organisationseinstellungen" minOccurs="0" maxOccurs="unbounded"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="BenutzereinstellungenAendernRequest">
+		<xsd:complexType>
+			<xsd:annotation>
+				<xsd:documentation>geaenderte Benutzereinstellungen</xsd:documentation>
+			</xsd:annotation>		
+			<xsd:sequence>
+				<xsd:element ref="Benutzereinstellungen" minOccurs="1"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="BenutzereinstellungenAendernResponse">
+		<xsd:annotation>
+			<xsd:documentation>Benutzereinstellungsdaten des abfragenden Benutzers.</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="Benutzereinstellungen" minOccurs="1"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>	
+	
+	<xsd:element name="Benutzereinstellungen">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="Benutzer" minOccurs="0"/>
+				<xsd:element name="BenutzerName" type="BenutzerNameType" minOccurs="0"/>
+				<xsd:element ref="GemeindeNr" minOccurs="0"/>
+				<xsd:element ref="AnzahlSaetze" minOccurs="0"/>
+				<xsd:element name="SucheInclusivHistorie" type="xsd:boolean" minOccurs="0"/>
+				<xsd:element name="SucheFormalisiert" type="xsd:boolean" minOccurs="0"/>
+				<xsd:element name="SucheInclusivERnP" type="xsd:boolean" minOccurs="0"/>
+				<xsd:element name="SucheInclusivZMR" type="xsd:boolean" minOccurs="0"/>
+				<xsd:element name="SucheInclusivLMR" type="xsd:boolean" minOccurs="0"/>
+				<xsd:element name="SucheMitTeilnamen" type="xsd:boolean" minOccurs="0"/>
+				<xsd:element name="ErgebnisInclusivHistorie" type="xsd:boolean" minOccurs="0"/>
+				<xsd:element name="EingeschraenkteHistorie" type="xsd:boolean" minOccurs="0"/>
+				<xsd:element name="DruckOrtschaft" type="xsd:boolean" minOccurs="0"/>
+  			    <xsd:element name="DruckPostort" type="xsd:boolean" minOccurs="0"/>
+				<xsd:element ref="DruckZusatztext" minOccurs="0" maxOccurs="20"/>
+				<xsd:element ref="cio:ISOCode3" minOccurs="0" maxOccurs="2"/>
+				<xsd:element name="FarbigesMenue" type="xsd:boolean" minOccurs="0"/>
+				<xsd:element name="DefaultGemeindeNrSucheInclLMR" type="GemeindeNrType" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+						
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/allgemein/GeschaeftsprozesseAuflisten.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/allgemein/GeschaeftsprozesseAuflisten.xsd
new file mode 100644
index 00000000..34f8354c
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/allgemein/GeschaeftsprozesseAuflisten.xsd
@@ -0,0 +1,64 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: GeschaeftsprozesseAuflisten.xsd
+Zweck: Definiert Datentypen die Abfrage der im ZMR für den aktuellen User verfügbaren Geschaeftsprozesse 
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2015-05-20 xwelzl: ZMR-2194 Application-BuildID online abrufbar
+2008-12-11 teo:    NCR-493 Anzeige der Versionen für das Deployment
+2004-09-09 tsch:   VorgangRestriction hinzugefügt
+2004-08-17 tsch:   Erstellung
+-->
+
+<xsd:schema targetNamespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			xmlns:cio="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+			
+
+	<xsd:include schemaLocation="../eingebunden/EingebundenProxy.xsd"/>
+
+	<xsd:element name="WorkflowsAuflistenRequest">
+		<xsd:annotation>
+			<xsd:documentation>
+			Request zum Auflisten der für den aktiven User verfügbaren Geschäftsprozesse.
+			Dieses Feld wird, genauso wie z.B. PersonSuchenRequest, innerhalb eines base:Request geschickt.
+			</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="WorkflowsAuflistenResponse">
+		<xsd:annotation>
+			<xsd:documentation>
+			Enthält die Liste mit den für den User verfügbaren Geschäftsprozessen, sowie deren Sub-Prozesse (Vorgänge)
+			als Baumstruktur aufgebaut. Ein eintrag in der Liste enspricht einem Geschäftsprozess.
+			</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element name="Workflow" minOccurs="0" maxOccurs="unbounded">
+					<xsd:complexType>
+						<xsd:sequence>
+							<xsd:element ref="ProzessName" />
+							<xsd:element ref="ProzessAnzeigeName" minOccurs="0" />
+							<xsd:element ref="ProzessStatus" />
+							<xsd:element ref="VorgangRestriction" minOccurs="0" maxOccurs="unbounded" />
+							<xsd:element ref="Subprozess" minOccurs="1" maxOccurs="unbounded" />
+						</xsd:sequence>
+					</xsd:complexType>
+				</xsd:element>
+				<xsd:element name="WorkflowCreated" type="TimestampType" minOccurs="0" />
+				<xsd:element name="WorkflowLastUpdate" type="TimestampType" minOccurs="0" />
+				<xsd:element name="ApplicationBuildID" type="xsd:string" minOccurs="0" maxOccurs="unbounded" />
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>	
+			
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/allgemein/Messages.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/allgemein/Messages.xsd
new file mode 100644
index 00000000..47dcda53
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/allgemein/Messages.xsd
@@ -0,0 +1,27 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: Messages.xsd
+Zweck: Definiert die Message-Datentypen fuer Services Request und Response (siehe Service.wsdl)
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2012-08-09 xfu: +BasTabelleAbfrage.xsd
+2004-02-18 tsch: Erstellung
+-->
+
+<xsd:schema targetNamespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	 
+	<xsd:include schemaLocation="../eingebunden/InfoTechnisch.xsd"/>
+	<xsd:include schemaLocation="../eingebunden/Workflow.xsd"/>
+	<xsd:include schemaLocation="Benutzereinstellungen.xsd"/>
+	<xsd:include schemaLocation="Organisationseinstellungen.xsd"/>
+	<xsd:include schemaLocation="GeschaeftsprozesseAuflisten.xsd"/>
+	<xsd:include schemaLocation="Auswertungen.xsd"/>
+	<xsd:include schemaLocation="BasTabelleAbfrage.xsd"/>
+
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/allgemein/Organisationseinstellungen.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/allgemein/Organisationseinstellungen.xsd
new file mode 100644
index 00000000..b5058e1b
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/allgemein/Organisationseinstellungen.xsd
@@ -0,0 +1,151 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: Organisationseinstellungen.xsd
+Zweck: Definiert Datentypen für Organisationseinstellungen -Abfragen und Änderungen im ZMR
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2009-06-18 teo:  Einstellungen für Messenger hinzugefügt
+2005-02-10 tsch: Feld ParameterCode hinzugefügt
+2004-08-17 tsch: Erstellung
+-->
+
+<xsd:schema targetNamespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			xmlns:cio="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+			
+
+	<xsd:include schemaLocation="../eingebunden/EingebundenProxy.xsd"/>
+	
+	<xsd:element name="OrganisationseinstellungenAendernRequest">
+		<xsd:complexType>
+			<xsd:annotation>
+				<xsd:documentation>geaenderte Benutzereinstellungen</xsd:documentation>
+			</xsd:annotation>		
+			<xsd:sequence>
+				<xsd:element ref="Organisationseinstellungen" minOccurs="1"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="OrganisationseinstellungenAendernResponse">
+		<xsd:annotation>
+			<xsd:documentation>Benutzereinstellungsdaten des abfragenden Benutzers.</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="Organisationseinstellungen" minOccurs="1"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>	
+	
+	<xsd:element name="Organisationseinstellungen">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="BehoerdenNr" minOccurs="0"/>
+				<xsd:element name="KontaktOrganisation" minOccurs="0">
+					<xsd:complexType>
+						<xsd:sequence>
+							<xsd:element ref="KontaktPerson" minOccurs="0"/>
+							<xsd:element ref="KontaktEmail" minOccurs="0"/>
+							<xsd:element ref="KontaktTelefon" minOccurs="0"/>
+						</xsd:sequence>
+					</xsd:complexType>	
+				</xsd:element>				
+				<xsd:element name="KontaktTechnisch" minOccurs="0">
+					<xsd:complexType>
+						<xsd:sequence>
+							<xsd:element ref="KontaktPerson" minOccurs="0"/>
+							<xsd:element ref="KontaktEmail" minOccurs="0"/>
+							<xsd:element ref="KontaktTelefon" minOccurs="0"/>
+						</xsd:sequence>
+					</xsd:complexType>	
+				</xsd:element>	
+				<xsd:element name="Softwarepartner" minOccurs="0">
+					<xsd:simpleType>
+						<xsd:restriction base="xsd:string">
+							<xsd:whiteSpace value="collapse"/>
+							<xsd:minLength value="0"/>
+							<xsd:maxLength value="45"/>			
+						</xsd:restriction>
+					</xsd:simpleType>
+				</xsd:element>
+				<xsd:element ref="DruckZusatztext" minOccurs="0" maxOccurs="20"/>					
+				<xsd:element name="AbgleichZMR" type="xsd:boolean" minOccurs="0"/>
+				<xsd:element name="AbgleichZMR2" type="xsd:boolean" minOccurs="0"/>
+				<xsd:element ref="Batchvorgaben" minOccurs="0" maxOccurs="unbounded"/>
+				<xsd:element name="MessengerEinstellungen" minOccurs="0">
+					<xsd:complexType>
+						<xsd:sequence>
+							<xsd:element name="ZugriffUeberAuswertungen" type="xsd:boolean" minOccurs="0"/>
+							<xsd:element name="Empfaenger" type="BenutzerType" minOccurs="0" maxOccurs="3"/>
+						</xsd:sequence>
+					</xsd:complexType>
+				</xsd:element>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+
+	<xsd:element name="Batchvorgaben" type="BatchvorgabenType"/>
+	<xsd:complexType name="BatchvorgabenType">
+		<xsd:sequence>
+			<xsd:element name="Batchname">
+				<xsd:simpleType>
+					<xsd:restriction base="xsd:string">
+						<xsd:whiteSpace value="collapse"/>
+						<xsd:minLength value="0"/>
+						<xsd:maxLength value="20"/>			
+					</xsd:restriction>
+				</xsd:simpleType>			
+			</xsd:element>
+			<xsd:element name="Filegroesse" type="IntegerType" minOccurs="0"/>
+			<xsd:element name="FileformatXML" type="xsd:boolean" minOccurs="0"/>
+			<xsd:element name="FileformatCSV" type="xsd:boolean" minOccurs="0"/>
+			<xsd:element name="FileformatPDF" type="xsd:boolean" minOccurs="0"/>
+			<xsd:element name="FileformatXLS" type="xsd:boolean" minOccurs="0"/>
+			<xsd:element ref="BatchParameter" minOccurs="0" maxOccurs="unbounded"/>
+		</xsd:sequence>
+	</xsd:complexType>
+
+	<xsd:element name="BatchParameter" type="BatchParameterType"/>
+	<xsd:complexType name="BatchParameterType">
+		<xsd:sequence>
+			<xsd:element name="ParameterTyp" type="xsd:string" minOccurs="0"/>
+			<xsd:element name="ParameterCode" type="xsd:string"/>
+			<xsd:element name="ParameterName" type="xsd:string"/>
+			<xsd:element name="ParameterWert" type="xsd:string"/>
+		</xsd:sequence>
+	</xsd:complexType>
+		
+	<xsd:element name="KontaktPerson">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="45"/>			
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	<xsd:element name="KontaktEmail">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="45"/>			
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	<xsd:element name="KontaktTelefon">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="18"/>			
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>						
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/allgemein/Service.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/allgemein/Service.xsd
new file mode 100644
index 00000000..81cd3e80
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/allgemein/Service.xsd
@@ -0,0 +1,40 @@
+<?xml version="1.0" encoding="UTF-8"?>
+
+<!--
+Name: Service.xsd
+Zweck: Definiert die Serviceroot - Elemente base:Request und base:Response global
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2008-07-25 teo: +PDFResponse (optional! ZMR setzt dieses Feld bisher nicht!)
+2004-08-19 tsch: Erstellung
+-->
+
+<xsd:schema xmlns="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			targetNamespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+			
+	<xsd:include schemaLocation="Messages.xsd"/>
+	<xsd:include schemaLocation="../eingebunden/EingebundenProxy.xsd"/>
+	
+	<xsd:element name="Request">
+		<xsd:complexType>
+			<xsd:sequence>
+					<xsd:element ref="WorkflowInfoClient"/>
+					<xsd:element ref="ClientInfo"/>
+					<xsd:any processContents="lax"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>	
+	<xsd:element name="Response">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="WorkflowInfoServer"/>
+				<xsd:element name="PDFResponse" type="xsd:base64Binary" minOccurs="0"/>
+				<xsd:element ref="ServerInfo"/>
+				<xsd:any processContents="lax"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>	
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/eingebunden/AbfrageMuster.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/eingebunden/AbfrageMuster.xsd
new file mode 100644
index 00000000..c7163abe
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/eingebunden/AbfrageMuster.xsd
@@ -0,0 +1,140 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: AbfrageParameter.xsd
+Zweck: Definiert Datentypen für generische Suchabfragen mit simplen Operatoren
+Author(s): Tschurtschenthaler Thomas (basierend auf suchmuster.xsd von DI Heinz Töfferl - Comm-Unity Software Development GmbH & Co KG)
+Aenderungshistorie:
+2005-03-30 tsch: Erstellung
+-->
+<xsd:schema xmlns="http://bmi.gv.at/namespace/zmr-su/base/20040201#" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xsd="http://www.w3.org/2001/XMLSchema" targetNamespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	<xsd:element name="AbfrageMuster">
+		<xsd:annotation>
+			<xsd:documentation>Daten zu einem Suchmuster (Ausdruck)</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:choice>
+				<xsd:sequence>
+					<xsd:element ref="FeldAbfrage"/>
+					<xsd:element ref="SubFeldAbfrage" minOccurs="0" maxOccurs="unbounded"/>
+				</xsd:sequence>
+				<xsd:sequence>
+					<xsd:annotation>
+						<xsd:documentation>
+						Dient zur Klammerung von Suchmuster-Ausdrücken.
+						Muss erst dann unterstützt werden, wenn eine Klammerung nötig wird.
+						</xsd:documentation>
+					</xsd:annotation>
+					<xsd:element ref="AbfrageMuster"/>
+					<xsd:element ref="SubAbfrageMuster" minOccurs="0" maxOccurs="unbounded"/>
+				</xsd:sequence>
+			</xsd:choice>
+			<xsd:attribute name="AbfrageName" type="xsd:string" use="optional"/>
+		</xsd:complexType>
+	</xsd:element>
+	<xsd:element name="FeldAbfrage">
+		<xsd:annotation>
+			<xsd:documentation>Eine Sucheinschränkung (= Einschränkung für ein Feld)</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element name="Feld" type="xsd:string"/>
+				<xsd:element ref="Relation"/>
+				<xsd:element name="Wert" type="xsd:string"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	<xsd:element name="Operation" block="restriction" default="UND">
+		<xsd:annotation>
+			<xsd:documentation>Verknüpfung mit der nächsten Zeile (Default: AND)</xsd:documentation>
+		</xsd:annotation>
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:NMTOKEN">
+				<xsd:enumeration value="UND"/>
+				<xsd:enumeration value="ODER"/>
+				<xsd:enumeration value="ODER_SELF"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	<xsd:element name="Relation">
+		<xsd:annotation>
+			<xsd:documentation>Mögliche Vergleichsoperatoren.</xsd:documentation>
+		</xsd:annotation>
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:enumeration value="IST"/>
+				<xsd:enumeration value="IST NICHT"/>
+				<xsd:enumeration value="BEGINNT MIT"/>
+				<xsd:enumeration value="BEGINNT NICHT MIT"/>
+				<xsd:enumeration value="ENDET MIT"/>
+				<xsd:enumeration value="ENDET NICHT MIT"/>
+				<xsd:enumeration value="GRÖSSER ALS"/>
+				<xsd:enumeration value="GRÖSSER GLEICH"/>
+				<xsd:enumeration value="KLEINER ALS"/>
+				<xsd:enumeration value="KLEINER GLEICH"/>
+				<xsd:enumeration value="ENTHÄLT"/>
+				<xsd:enumeration value="ENTHÄLT NICHT"/>
+				<xsd:enumeration value="IST LEER"/>
+				<xsd:enumeration value="IST NICHT LEER"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	<xsd:element name="AbfrageSortierung">
+		<xsd:annotation>
+			<xsd:documentation>Daten zur Sortierung einer Abfrage</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="SortSchluessel" maxOccurs="unbounded"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	<xsd:element name="SortSchluessel">
+		<xsd:annotation>
+			<xsd:documentation>Sortierungsschluessel einer Abfrage</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element name="Feld" type="xsd:string"/>
+				<xsd:element name="Absteigend" type="xsd:boolean"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	<xsd:element name="SubFeldAbfrage">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="Operation"/>
+				<xsd:element ref="FeldAbfrage"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	<xsd:element name="SubAbfrageMuster">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="Operation"/>
+				<xsd:element ref="AbfrageMuster"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="AbfrageParameter">
+		<xsd:annotation>
+			<xsd:documentation>Daten zur Parametrisierung einer Abfrage</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="Parameter" maxOccurs="unbounded"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	<xsd:element name="Parameter">
+		<xsd:annotation>
+			<xsd:documentation>Ein einzelner Abfrageparameter</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element name="Name" type="xsd:string"/>
+				<xsd:element name="Wert" type="xsd:string"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+</xsd:schema>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/eingebunden/AkademischerGradFelder.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/eingebunden/AkademischerGradFelder.xsd
new file mode 100644
index 00000000..da73c389
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/eingebunden/AkademischerGradFelder.xsd
@@ -0,0 +1,61 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: AkademischerGradFelder.xsd
+Zweck: Definiert allgemein nutzbare Felder für akademische Grade
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2004-12-15 tsch: AkadGradReihung - Wertebereich erweitert
+2004-06-20 tsch: Erstellung
+-->
+
+<xsd:schema xmlns="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			targetNamespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema" 
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	
+	<xsd:include schemaLocation="SimpleTypes.xsd"/>
+
+	<xsd:element name="AkadGradStellung">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:enumeration value="VOR"/>
+				<xsd:enumeration value="NACH"/>		
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	
+	<xsd:element name="AkadGradReihung">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:enumeration value="0"/>
+				<xsd:enumeration value="1"/>
+				<xsd:enumeration value="2"/>
+				<xsd:enumeration value="2/3"/>
+				<xsd:enumeration value="3"/>			
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	
+	<xsd:element name="AkadGradLang">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="1"/>
+				<xsd:maxLength value="90"/>								
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	
+	<xsd:element name="AkadGradKurz">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="1"/>
+				<xsd:maxLength value="30"/>								
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	<xsd:element name="AkadGradKey" type="IDType"/>
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/eingebunden/Blaettern.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/eingebunden/Blaettern.xsd
new file mode 100644
index 00000000..943439b8
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/eingebunden/Blaettern.xsd
@@ -0,0 +1,56 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: Blaettern.xsd
+Zweck: Definiert Request-Typen für das allgemeine Blättern; Die Response hängt vom Workflow-Vorgang ab (Personensuchergebnis, Avisosuchergebnis, ...) 
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2006-04-19 toef: Richtungswerte 'Anfang' und 'Ende' hinzugefügt
+2005-09-20 tsch: Richtungswert 'Aktualisieren' hinzugefügt
+2004-06-14 tsch: Organisation nach ClientInfo verschoben
+2004-04-07 tsch: Erstellung
+-->
+
+<xsd:schema xmlns="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			targetNamespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	<xsd:include schemaLocation="InfoFachlich.xsd"/>
+
+	<xsd:element name="BlaetternRequest">
+		<xsd:annotation>
+			<xsd:documentation>
+			Für Suchvorgänge, in deren Ergebnisliste geblättert werden kann, stellt dieser Request
+			eine generische Schnittstelle zum Blättern dar. Er wird mit demselben Vorgang-Namen in der
+			Workflowschnittstelle geschickt, wie der ursprüngliche Suche-Request. Als Ergebnis wird
+			das Suchergebnis des ensprechenden Suchvorgangs analog zur rsprünglichen Suche-Response geliefert.
+			</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="BlaetternInfo"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="BlaetternInfo">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element name="ErgebnislisteName" type="xsd:string" minOccurs="0"/>
+				<xsd:element name="Richtung">
+					<xsd:simpleType>
+						<xsd:restriction base="xsd:string">
+							<xsd:enumeration value="Vor"/>
+							<xsd:enumeration value="Zurueck"/>
+							<xsd:enumeration value="Aktualisieren"/>
+							<xsd:enumeration value="Anfang"/>
+							<xsd:enumeration value="Ende"/>
+						</xsd:restriction>
+					</xsd:simpleType>
+				</xsd:element>
+				<xsd:element ref="AnzahlSaetze"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/eingebunden/DokumentFelder.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/eingebunden/DokumentFelder.xsd
new file mode 100644
index 00000000..0c38ec09
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/eingebunden/DokumentFelder.xsd
@@ -0,0 +1,74 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: DokumentFelder.xsd
+Zweck: Definiert allgemein nutzbare Felder für Dokumente/Reisedokumente
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2005-09-26 tsch: DokumentName hinzugefügt
+2004-09-29 tsch: Felder für Standard-Dokumente hinzugefügt
+2004-06-24 tsch: AusstellDatum: Timestamp wird xsd:date
+2004-01-22 tsch: Erstellung
+-->
+
+<xsd:schema xmlns="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			targetNamespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema" 
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	
+	<xsd:include schemaLocation="SimpleTypes.xsd"/>
+	
+	<xsd:element name="DokumentArt">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="1"/>
+				<xsd:maxLength value="55"/>			
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	<xsd:element name="DokumentNummer">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="256"/>			
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	<xsd:element name="EintragungsNummer">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="1"/>
+				<xsd:maxLength value="45"/>			
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	<xsd:element name="DokumentName">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="54"/>			
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>			
+	<xsd:element name="AusstellDatum" type="xsd:date"/>
+	<xsd:element name="AblaufDatum" type="xsd:date"/>
+	<xsd:element name="SterbeDatum" type="xsd:date"/>
+	<xsd:element name="SterbeUhrzeit" type="xsd:time"/>
+	<xsd:element name="AusstellBehoerde">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="90"/>			
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	<xsd:element name="Ausstellungsstaat" type="StaatenNameType"/>
+	<xsd:element name="DokumentGiltBis" type="TimestampType"/>
+	
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/eingebunden/EingebundenProxy.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/eingebunden/EingebundenProxy.xsd
new file mode 100644
index 00000000..de80a94f
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/eingebunden/EingebundenProxy.xsd
@@ -0,0 +1,28 @@
+<?xml version="1.0" encoding="UTF-8"?>
+
+<!--
+Name: EingebundenProxy.xsd
+Zweck: Fasst XSD-Files zusammen, die oft eingebunden werden
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2009-07-07 teo: +PersonExport
+2003-12-10 tsch: Erstellung
+-->
+
+<xsd:schema xmlns="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			targetNamespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+			
+	<xsd:include schemaLocation="InfoFachlich.xsd"/>
+	<xsd:include schemaLocation="InfoTechnisch.xsd"/>
+	<xsd:include schemaLocation="MeldungFelder.xsd"/>
+	<xsd:include schemaLocation="PersonFelder.xsd"/>
+	<xsd:include schemaLocation="DokumentFelder.xsd"/>
+	<xsd:include schemaLocation="Workflow.xsd"/>
+	<xsd:include schemaLocation="Blaettern.xsd"/>
+	<xsd:include schemaLocation="AkademischerGradFelder.xsd"/>
+	<xsd:include schemaLocation="AbfrageMuster.xsd"/>
+	<xsd:include schemaLocation="PersonExport.xsd"/>
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/eingebunden/Entity.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/eingebunden/Entity.xsd
new file mode 100644
index 00000000..a5fbac59
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/eingebunden/Entity.xsd
@@ -0,0 +1,135 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: Entity.xsd
+Zweck: Definiert allgemeine Datentypen für Entities (Person, Meldung, ...) der Register 
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2012-08-09 xfu:  Beginncode und -text ist optional
+2004-10-27 tsch: Behoerdenschluessel hinzugefügt
+2004-09-28 tsch: OrgBezeichnung hinzugefügt
+2004-06-21 tsch: EntityReferenz ohne LetzteAenderung
+2004-06-18 tsch: BeginnText hinzugefügt
+2004-01-22 tsch: EntityErgebnisReferenz statt Entity abstract
+2003-11-16 tsch: Erstellung
+-->
+<xsd:schema xmlns="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			targetNamespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	
+	<xsd:include schemaLocation="SimpleTypes.xsd"/>
+		
+	<xsd:element name="EntityErgebnisReferenz" type="EntityErgebnisReferenzType"/>
+	<xsd:complexType name="EntityErgebnisReferenzType">
+		<xsd:annotation>
+			<xsd:documentation>Referenziert eine Entity in der Datenbank für Suchergebnisse</xsd:documentation>
+		</xsd:annotation>
+
+		<xsd:sequence>
+			<xsd:sequence>
+				<xsd:element ref="Technisch"/>
+				<xsd:group ref="ErgebnisFachlichGroup"/>
+			</xsd:sequence>
+		</xsd:sequence>
+
+	</xsd:complexType> 
+
+	<xsd:element name="EntityReferenz" type="EntityReferenzType"/>
+	<xsd:complexType name="EntityReferenzType">
+		<xsd:annotation>
+			<xsd:documentation>Referenziert eine Entity in der Datenbank für Aenderungen (immer die aktuellste, das heisst jüngstes 'Von')</xsd:documentation>
+		</xsd:annotation>
+		<xsd:sequence>
+			<xsd:element ref="EntityID"/>
+		</xsd:sequence>	
+	</xsd:complexType>
+
+	<xsd:element name="Technisch">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="EntityID"/>
+				<xsd:element ref="LetzteAenderung"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:group name="ErgebnisFachlichGroup">
+		<xsd:sequence>
+			<xsd:element ref="Von"/>
+			<xsd:element ref="BeginnCode" minOccurs="0"/> <!-- Einträge in BAS.STAAT und BAS.AKADGRAD haben keinen Beginncode (werden aber in BasTabelleAbfrage.xsd abgerufen) -->
+			<xsd:element ref="BeginnText" minOccurs="0"/>
+			<xsd:element ref="BeginnFreitext" minOccurs="0"/>
+			<xsd:element ref="Bis" minOccurs="0"/>
+			<xsd:element ref="DurchgefuehrtVon"/>
+		</xsd:sequence>
+	</xsd:group>
+	
+	<xsd:element name="Von" type="TimestampType"/>
+	<xsd:element name="Bis" type="TimestampType"/>
+	<xsd:element name="BeginnCode" type="GrundCodeType"/>
+	<xsd:element name="BeginnText" type="GrundTextType"/>	
+	<xsd:element name="BeginnFreitext" type="GrundFreitextType"/>	
+	<xsd:element name="EntityID" type="ENTITYIDType"/>
+	<xsd:element name="LetzteAenderung" type="TimestampType"/>
+	<xsd:element name="DurchgefuehrtVon" type="DurchgefuehrtVonType"/>
+	<xsd:complexType name="DurchgefuehrtVonType">
+		<xsd:sequence>
+			<xsd:element ref="Organisation"/>
+			<xsd:element ref="Benutzer" minOccurs="0"/>
+		</xsd:sequence>
+	</xsd:complexType>
+	
+	<xsd:element name="Organisation">
+		<xsd:complexType>
+			<xsd:annotation>
+				<xsd:documentation>
+				Die derzeit bekannten Organisationen sind strikt definiert (BehoerdenNr, GemeindeNr, KundenNr);
+				neue, noch nicht definierte Organiationen, können mittels eines (Orgtyp, OrgCode)-Paares übermittelt werden.
+				</xsd:documentation>
+			</xsd:annotation>
+			<xsd:sequence>
+				<xsd:choice>
+					<xsd:choice>
+						<xsd:element ref="BehoerdenNr"/>
+						<xsd:element ref="GemeindeNr"/>
+						<xsd:element ref="KundenNr"/>
+						<xsd:element ref="Behoerdenschluessel"/>
+					</xsd:choice>
+					<xsd:sequence>
+						<xsd:element ref="OrgTyp"/>
+						<xsd:element ref="OrgCode"/>
+					</xsd:sequence>
+				</xsd:choice>
+				<xsd:element ref="OrgBezeichnung" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	<xsd:element name="BehoerdenNr" type="BehoerdenNrType"/>
+	<xsd:element name="Behoerdenschluessel" type="BehoerdenschluesselType"/>
+	<xsd:element name="GemeindeNr" type="GemeindeNrType"/>
+	<xsd:element name="KundenNr" type="KundenNrType"/>
+	<xsd:element name="OrgTyp" type="OrgTypType"/>
+	<xsd:element name="OrgCode" type="OrgCodeType"/>
+	<xsd:element name="Benutzer" type="BenutzerType"/>
+	<xsd:element name="OrgBezeichnung">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="1"/>
+				<xsd:maxLength value="80"/>	
+			</xsd:restriction>			
+		</xsd:simpleType>
+	</xsd:element>
+	<xsd:element name="BehoerdenBezeichnung">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="1"/>
+				<xsd:maxLength value="80"/>	
+			</xsd:restriction>			
+		</xsd:simpleType>
+	</xsd:element>
+
+</xsd:schema>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/eingebunden/InfoFachlich.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/eingebunden/InfoFachlich.xsd
new file mode 100644
index 00000000..20212cc2
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/eingebunden/InfoFachlich.xsd
@@ -0,0 +1,103 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: InfoFachlich.xsd
+Zweck: Definiert Typen für allgemeine fachliche Informationen der Usecases
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2006-08-08 tsch: Feld EingeschraenkteHistorie hinzugefügt
+2004-09-09 tsch: Register hinzugefügt
+2004-07-07 tsch: InfoFachlichType.Von optional, InfoFachlichType.GrundCode Mussfeld
+2004-06-22 tsch: SaetzeVon, SaetzeBis hinzugefügt
+2004-06-18 tsch: ErgebnissatzInfo, Beendigung hinzugefügt
+2004-04-17 tsch: Organisation entfernt
+2004-04-13 tsch: InfoFachlichType - GrundCode optional
+2003-11-16 tsch: Erstellung
+-->
+
+<xsd:schema xmlns="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			targetNamespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			xmlns:cio="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	<xsd:include schemaLocation="SimpleTypes.xsd"/>
+	<xsd:include schemaLocation="Entity.xsd"/>
+	<xsd:import namespace="http://reference.e-government.gv.at/namespace/persondata/de/20040201#" schemaLocation="PersonDataZMR.xsd"/>
+
+	<xsd:element name="ErgebnissatzInfo" type ="ErgebnissatzInfoType"/>
+	<xsd:complexType name="ErgebnissatzInfoType">
+		<xsd:sequence>
+			<xsd:annotation>
+				<xsd:documentation>
+					Letze-Änderung-Timestamp des Gesamt-Satzes (Jüngster Timestamp aller Entities im Satz),
+					Muss bei einem Änderungsvorgang als Letzte-Änderung-Timestamp geschickt werden.
+				</xsd:documentation>
+			</xsd:annotation>
+			<xsd:element ref="LetzteAenderung"/>
+		</xsd:sequence>
+	</xsd:complexType>
+
+	<xsd:element name="Message">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="Number"/>
+				<xsd:element ref="Text"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="Number" type="IntegerType"/>
+	<xsd:element name="Text">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="250"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	
+	<xsd:complexType name="InfoFachlichType" abstract="true">
+		<xsd:annotation>
+			<xsd:documentation>allgemeine fachliche Informationen</xsd:documentation>
+		</xsd:annotation>
+
+		<xsd:sequence>
+			<xsd:element ref="Von" minOccurs="0"/>
+			<xsd:element name="GrundCode" type="GrundCodeType"/>
+			<xsd:element ref="GrundFreitext" minOccurs="0"/>
+		</xsd:sequence>
+	</xsd:complexType>
+	
+	<xsd:element name="BPKPersonInfo" type="BPKPersonInfoType"/>
+	<xsd:complexType name="BPKPersonInfoType">
+		<xsd:annotation>
+			<xsd:documentation>Bereichspezifische Bürgerkarten-Information einer Person</xsd:documentation>
+		</xsd:annotation>
+		<xsd:sequence>
+			<xsd:element ref="cio:NatuerlichePerson"/>
+			<xsd:element ref="Bereichskennung"/>
+			<xsd:element ref="BPK"/>
+		</xsd:sequence>
+	</xsd:complexType>
+	
+	<xsd:element name="Beendigung" type="xsd:boolean"/>
+	<xsd:element name="Bezugsfeld" type="BezugsfeldType"/>
+	
+	<xsd:element name="Stichtag" type="TimestampType"/>
+	<xsd:element name="InclusivHistorie" type="xsd:boolean"/>
+	<xsd:element name="EingeschraenkteHistorie" type="xsd:boolean"/>
+	<xsd:element name="Formalisiert" type="xsd:boolean"/>
+	<xsd:element name="ErstellePDF"  type="xsd:boolean"/>
+	<xsd:element name="InclusivAusgeblendeteSaetze" type="xsd:boolean"/>
+	<xsd:element name="InclusivNameVorErsterEhe" type="xsd:boolean"/>
+	<xsd:element name="GefundeneSaetze" type="IntegerType"/>
+	<xsd:element name="AnzahlSaetze" type="IntegerType"/>
+	<xsd:element name="SaetzeVon" type="IntegerType"/>
+	<xsd:element name="SaetzeBis" type="IntegerType"/>
+	<xsd:element name="GrundFreitext" type="GrundFreitextType"/>
+	<xsd:element name="Bereichskennung" type="xsd:string"/>
+	<xsd:element name="BPK" type="xsd:string"/>
+	<xsd:element name="Register" type="RegisterType"/>
+
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/eingebunden/InfoTechnisch.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/eingebunden/InfoTechnisch.xsd
new file mode 100644
index 00000000..e23ff4fe
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/eingebunden/InfoTechnisch.xsd
@@ -0,0 +1,103 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: InfoTechnisch.xsd
+Zweck: Definiert Typen für allgemeine technische Informationen der Usecases
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2004-09-09 tsch: ErrorCode, ErrorMessage hinzugefügt
+2004-06-24 tsch: UserInfo als Message definiert
+2004-05-17 tsch: Organisation, Client dazugefügt; Softwarehaus, ClientVersion entfernt
+2003-11-16 tsch: Erstellung
+-->
+
+<xsd:schema targetNamespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	<xsd:include schemaLocation="InfoFachlich.xsd"/>
+	
+	<xsd:element name="ClientInfo" type="ClientInfoType"/>
+
+	<xsd:complexType name="ClientInfoType">
+		<xsd:annotation>
+			<xsd:documentation>Technische Client-Informationen</xsd:documentation>
+		</xsd:annotation>
+
+		<xsd:sequence>
+			<xsd:element ref="Organisation"/>
+			<xsd:element ref="Client">
+				<xsd:annotation>
+					<xsd:documentation>Herstellername der Client-Software inklusive Version (Bsp.: ZMRHTMLClient V3.0)</xsd:documentation>
+				</xsd:annotation>
+			</xsd:element>
+		</xsd:sequence>
+	</xsd:complexType>
+	
+	<xsd:element name="Client">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="1"/>
+				<xsd:maxLength value="18"/>				
+			</xsd:restriction>
+		</xsd:simpleType>	
+	</xsd:element>
+	
+
+	<xsd:element name="ServerInfo" type="ServerInfoType"/>
+	
+	<xsd:complexType name="ServerInfoType">
+		<xsd:annotation>
+			<xsd:documentation>Technische Server-Informationen</xsd:documentation>
+		</xsd:annotation>
+
+		<xsd:sequence>		
+			<xsd:element ref="GeneriertVon">
+				<xsd:annotation>
+					<xsd:documentation>Applikationsname und -version</xsd:documentation>
+				</xsd:annotation>
+			</xsd:element>
+			<xsd:element ref="GeneriertAm">
+				<xsd:annotation>
+					<xsd:documentation>Generierung Timestamp</xsd:documentation>
+				</xsd:annotation>
+			</xsd:element>								
+			<xsd:element ref="ServerTransaktionNr">
+				<xsd:annotation>
+					<xsd:documentation>Transaktionsnummer des Servers</xsd:documentation>
+				</xsd:annotation>
+			</xsd:element>					
+			<xsd:element ref="UserInfo" minOccurs="0">
+				<xsd:annotation>
+					<xsd:documentation>
+					Enthält neue User-Information (wie z.B. Information über Wartungarbeiten am ZMR)
+					Diese Info kann dem User am Bildschirm angezeigt werden.
+					</xsd:documentation>
+				</xsd:annotation>
+			</xsd:element>		
+		</xsd:sequence>
+	</xsd:complexType>
+
+	<xsd:element name="GeneriertVon">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="1"/>
+				<xsd:maxLength value="50"/>				
+			</xsd:restriction>
+		</xsd:simpleType>	
+	</xsd:element>
+	<xsd:element name="GeneriertAm" type="TimestampType"/>
+	<xsd:element name="ErrorCode" type="xsd:string"/>
+	<xsd:element name="ErrorMessage" type="xsd:string"/>
+	<xsd:element name="ServerTransaktionNr" type="IDType"/>
+	<xsd:element name="UserInfo">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="Message"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/eingebunden/MeldungFelder.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/eingebunden/MeldungFelder.xsd
new file mode 100644
index 00000000..2179baaf
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/eingebunden/MeldungFelder.xsd
@@ -0,0 +1,283 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: MeldungFelder.xsd
+Zweck: Definiert allgemein nutzbare Felder für Meldedaten
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2010-11-24 mp: +Infotext (ZMR-1513)
+2009-11-20 mp: Gebäudeeigenschaft und Nutzungsart hinzugefügt
+2006-06-26 tsch: OrientierungsnummerBis hinzugefügt
+2005-12-06 tsch: Detailfelder für GWR-Tueren hinzugefügt
+2004-12-09 tsch: OKZ und SKZ alphanumerisch
+2004-08-16 tsch: Bezirkskennung, DruckZusatztext hinzugefügt
+2004-08-02 tsch: PeriodeCode, PeriodeText, PeriodeFreitext hinzugefügt
+2004-07-30 tsch: HauptIdentadresse->HauptIdent; AdressZusatz enfernt; +OKZ; +SKZ; +Adressschluessel; +InfoMeldewesen
+2004-06-24 tsch: GBRRefkey, Postleitzahlgebiet hinzugefügt
+2004-01-27 tsch: Erstellung
+-->
+
+<xsd:schema xmlns="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			targetNamespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	<xsd:include schemaLocation="SimpleTypes.xsd"/>
+	
+
+	<xsd:element name="GemeldetVon" type="TimestampType"/>
+	<xsd:element name="GemeldetBis" type="TimestampType"/>
+
+	<xsd:element name="PeriodeCode" type="GrundCodeType"/>
+	<xsd:element name="PeriodeText" type="GrundTextType"/>
+	<xsd:element name="PeriodeFreitext" type="GrundFreitextType"/>
+
+	<xsd:element name="Unterkunftgeber">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="250"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+
+	<xsd:element name="ADRRefkey">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="1"/>
+				<xsd:maxLength value="12"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>	
+	<xsd:element name="GBRRefkey">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="1"/>
+				<xsd:maxLength value="12"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>	
+	
+	<xsd:element name="HauptIdent">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:enumeration value="H"/>
+				<xsd:enumeration value="I"/>
+				<xsd:enumeration value="B"/>
+			</xsd:restriction>
+		</xsd:simpleType>	
+	</xsd:element>
+
+	<xsd:element name="OKZ">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:pattern value="[0-9;A-Z]{5}"/>
+			</xsd:restriction>
+		</xsd:simpleType>	
+	</xsd:element>
+
+	<xsd:element name="SKZ">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:pattern value="[0-9;A-Z]{6}"/>
+			</xsd:restriction>
+		</xsd:simpleType>	
+	</xsd:element>
+
+	<xsd:element name="Adressstatus">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="1"/>
+				<xsd:maxLength value="9"/>
+			</xsd:restriction>
+		</xsd:simpleType>	
+	</xsd:element>
+	
+	<xsd:element name="Hofname">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="50"/>
+			</xsd:restriction>
+		</xsd:simpleType>	
+	</xsd:element>
+	
+	<xsd:element name="StrasseZweisprachig">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="108"/>
+			</xsd:restriction>
+		</xsd:simpleType>	
+	</xsd:element>
+
+	<xsd:element name="Gebaeudeunterscheidung">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="60"/>
+			</xsd:restriction>
+		</xsd:simpleType>	
+	</xsd:element>
+
+	<xsd:element name="Postleitzahlgebiet">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="54"/>
+			</xsd:restriction>
+		</xsd:simpleType>	
+	</xsd:element>
+
+	<xsd:element name="InfoMeldewesen">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="100"/>
+			</xsd:restriction>
+		</xsd:simpleType>	
+	</xsd:element>		
+
+	<xsd:element name="GBDUntteil" type="xsd:boolean"/>
+	
+	<xsd:element name="NameZuteil" type="xsd:boolean"/>
+
+	<xsd:element name="Adressschluessel">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="OKZ" minOccurs="0"/>
+				<xsd:element ref="SKZ" minOccurs="0"/>
+				<xsd:element ref="ADRRefkey" minOccurs="0"/>
+				<xsd:element ref="GBRRefkey" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="Bezirkskennung">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:pattern value="[0-9]{3}"/>
+			</xsd:restriction>
+		</xsd:simpleType>	
+	</xsd:element>
+
+	<xsd:element name="DruckZusatztext">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="230"/>
+			</xsd:restriction>
+		</xsd:simpleType>	
+	</xsd:element>
+	
+	<xsd:element name="Infotext">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="230"/>
+			</xsd:restriction>
+		</xsd:simpleType>	
+	</xsd:element>		
+
+	<xsd:element name="TuerNr">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="25"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>	
+
+	<xsd:element name="TopNr">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="25"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	
+	<xsd:element name="Lagebeschreibung">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="25"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+
+	<xsd:element name="NtzLage">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="1"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+
+	<xsd:element name="NtzStock">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="3"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+
+	<xsd:element name="NtzAdrart">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="1"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	
+	<xsd:element name="OrientierungsnummerBis">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="32"/>
+			</xsd:restriction>
+		</xsd:simpleType>	
+	</xsd:element>				
+	
+	<xsd:element name="GbdEigenschaft">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="2"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	
+	<xsd:element name="NtzArt">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="2"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/eingebunden/PersonDataZMR.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/eingebunden/PersonDataZMR.xsd
new file mode 100644
index 00000000..d5d2df47
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/eingebunden/PersonDataZMR.xsd
@@ -0,0 +1,741 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: PersonDataZMR.xsd
+Zweck: Striktere Redefinition des Generischen Schemas zum Speichern und Austauschen von Personendaten des Chief Information Office Austria, Stabsstelle IKT-Strategie des Bundes, BMÖLS
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2012-04-12 ee  : element "Adresse" entfernt, substitutionGroups darauf entfernt
+				-> mit wsdl2java wieder kompilierbar, sonst "Adresse is referenced but not defined." error
+2010-07-09 rp  : LMR-783: +GueltigVon, GueltigBis bei Staatsangehoerigkeit
+2009-11-25 teo : ZMR-1296 Anpassungen aufgrund Bundesgesetz über die eingetragene Partnerschaft (EPG)
+2006-04-18 woeg: Familienstand
+2005-09-26 tsch: Internetadresse, Telefonadresse übernommen, Postleitzahl alphanumerisch
+2004-01-31 tsch: maximale Feldlänge für Geburtsbundesland auf 72 erhöht, minimale auf 0.
+2004-12-09 tsch: Adresscode und Objektnummer alphanumerisch, Postleitzahl mit führender Null
+2004-11-02 tsch: Elemenent Affix in PersonenNameTyp Unbounded
+2004-08-24 tsch: Element PersonenDaten übernommen
+2004-07-30 tsch: Anpassungen von Personrecord-Feldern: +Adresszeile; Gebaeudeteil->Gebaeude; Nutzungseinheitnummer->Nutzungseinheit; NTZLNR->Nutzungseinheitlaufnummer; +Postfach; AdressRegEintrag->AdressRegisterEintrag;Gemeindekennzahl->Gemeindekennziffer
+2004-07-20 tsch: Staatsangehörigkeit-Felder optional
+2004-07-08 tsch: Region (Postleitzahlgebiet) hinzugefügt
+2004-06-24 tsch: StaatsCode, StaatsName in Postadresse übernommen
+2004-01-28 tsch: Adaptionen an neuen CIO-PersonDataDE Record
+2004-01-27 tsch: ZMRAdresse wird PostAdresse
+2004-01-15 tsch: Erstellung
+-->
+
+<xsd:schema targetNamespace="http://reference.e-government.gv.at/namespace/persondata/de/20040201#" xmlns="http://reference.e-government.gv.at/namespace/persondata/de/20040201#" xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	<xsd:import namespace="http://www.w3.org/2000/09/xmldsig#" schemaLocation="W3C-XMLDSig.xsd"/>
+	<xsd:annotation>
+		<xsd:documentation>This version of person deploys only global elements. All types derived from abstract types have been replaced by substitution groups</xsd:documentation>
+	</xsd:annotation>
+
+	<xsd:element name="Identification" type="IdentificationType">
+		<xsd:annotation>
+			<xsd:documentation>unique identification entities</xsd:documentation>
+		</xsd:annotation>
+	</xsd:element>
+	<xsd:complexType name="IdentificationType">
+		<xsd:annotation>
+			<xsd:documentation>unique identifier</xsd:documentation>
+		</xsd:annotation>
+		<xsd:sequence>
+			<xsd:element name="Value" type="xsd:string">
+				<xsd:annotation>
+					<xsd:documentation>actual value of the identifier.</xsd:documentation>
+				</xsd:annotation>
+			</xsd:element>
+			<xsd:element name="Type" type="xsd:anyURI">
+				<xsd:annotation>
+					<xsd:documentation>type of value (eg 'ZMR', 'SV-Nummer', 'Martrikelnummer', database identification, ...)</xsd:documentation>
+				</xsd:annotation>
+			</xsd:element>
+			<xsd:any namespace="##other" processContents="lax" minOccurs="0" maxOccurs="unbounded">
+				<xsd:annotation>
+					<xsd:documentation>zusätzliche felder</xsd:documentation>
+				</xsd:annotation>
+			</xsd:any>			
+		</xsd:sequence>
+	</xsd:complexType>
+
+	
+	<xsd:element name="PersonenDaten" type="PersonenDatenTyp">
+		<xsd:annotation>
+			<xsd:documentation>Personendatenstruktur</xsd:documentation>
+		</xsd:annotation>
+	</xsd:element>
+
+	<xsd:complexType name="PersonenDatenTyp">
+		<xsd:sequence>
+			<xsd:element ref="NatuerlichePerson"/>
+			<xsd:element ref="PostAdresse" minOccurs="0" maxOccurs="unbounded"/>
+		</xsd:sequence>
+	</xsd:complexType>
+	
+	
+	<xsd:element name="NatuerlichePerson" type="NatuerlichePersonTyp" substitutionGroup="Person">
+		<xsd:annotation>
+			<xsd:documentation>element of physical person type</xsd:documentation>
+		</xsd:annotation>
+	</xsd:element>
+	<xsd:element name="Person" type="AbstractPersonType">
+		<xsd:annotation>
+			<xsd:documentation>element of person type</xsd:documentation>
+		</xsd:annotation>
+	</xsd:element>
+
+	<xsd:complexType name="AbstractPersonType" abstract="true">
+		<xsd:annotation>
+			<xsd:documentation>main structure of person data</xsd:documentation>
+		</xsd:annotation>
+		<xsd:sequence minOccurs="0">
+			<xsd:element name="Identification" type="IdentificationType" minOccurs="0" maxOccurs="unbounded">
+				<xsd:annotation>
+					<xsd:documentation>unique identification entities</xsd:documentation>
+				</xsd:annotation>
+			</xsd:element>
+		</xsd:sequence>
+		<xsd:attribute name="Id" type="xsd:ID" use="optional"/>
+		<xsd:anyAttribute namespace="##other"/>
+	</xsd:complexType>	
+
+	<xsd:complexType name="NatuerlichePersonTyp">
+		<xsd:annotation>
+			<xsd:documentation>physical person</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexContent>
+			<xsd:extension base="AbstractPersonType">
+				<xsd:sequence minOccurs="0">
+					<xsd:element ref="PersonenName" minOccurs="0"/>
+					<xsd:element ref="AlternativName" minOccurs="0" maxOccurs="unbounded"/>
+					<xsd:element ref="Familienstand" minOccurs="0"/>
+					<xsd:element ref="Geschlecht" minOccurs="0"/>
+					<xsd:element ref="Geburtsdatum" minOccurs="0"/>
+					<xsd:element ref="Geburtsort" minOccurs="0"/>
+					<xsd:element ref="Geburtsbundesland" minOccurs="0"/>
+					<xsd:element ref="Geburtsstaat" minOccurs="0"/>
+					<xsd:element ref="Sterbedatum" minOccurs="0"/>
+					<xsd:element ref="Staatsangehoerigkeit" minOccurs="0" maxOccurs="unbounded"/>
+					<xsd:any namespace="##other" processContents="lax" minOccurs="0" maxOccurs="unbounded">
+						<xsd:annotation>
+							<xsd:documentation>any additional properties</xsd:documentation>
+						</xsd:annotation>
+					</xsd:any>
+				</xsd:sequence>
+			</xsd:extension>
+		</xsd:complexContent>
+	</xsd:complexType>
+
+	<xsd:element name="AlternativName">
+		<xsd:annotation>
+			<xsd:documentation>Former name, Artist name, changes of Given name ... type of name is given as attribute - choose from list or define new type</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>		
+				<xsd:element name="Familienname">
+					<xsd:simpleType>
+						<xsd:restriction base="xsd:string">
+							<xsd:whiteSpace value="collapse"/>
+							<xsd:minLength value="0"/>
+							<xsd:maxLength value="108"/>			
+						</xsd:restriction>
+					</xsd:simpleType>
+				</xsd:element>
+			</xsd:sequence>
+			<xsd:attribute name="Type" type="DefinierterAlternativNamensTypTyp" use="required"/>
+		</xsd:complexType>
+	</xsd:element>
+		
+	<xsd:simpleType name="DefinierterAlternativNamensTypTyp">
+		<xsd:annotation>
+			<xsd:documentation>known types of alternative names</xsd:documentation>
+		</xsd:annotation>
+		<xsd:restriction base="xsd:string">
+			<xsd:enumeration value="Kuenstlername"/>
+			<xsd:enumeration value="Spitzname"/>
+			<xsd:enumeration value="FruehererName"/>
+			<xsd:enumeration value="Alias"/>
+			<xsd:enumeration value="NameVorErsterEhe"/>
+		</xsd:restriction>
+	</xsd:simpleType>
+
+	<xsd:element name="PersonenName" type="PersonenNameTyp"/>
+	
+	<xsd:complexType name="PersonenNameTyp">
+		<xsd:sequence>
+			<xsd:element ref="Vorname" minOccurs="0"/>
+			<xsd:element ref="Familienname" minOccurs="0"/>
+			<xsd:element ref="Affix" minOccurs="0" maxOccurs="unbounded"/>
+		</xsd:sequence>
+	</xsd:complexType>
+	
+	
+	<xsd:element name="Familienname">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="1"/>
+				<xsd:maxLength value="108"/>			
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	<xsd:element name="Vorname" nillable="true">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="1"/>
+				<xsd:maxLength value="108"/>			
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	<xsd:element name="Affix">
+		<xsd:complexType>
+			<xsd:simpleContent>
+				<xsd:extension base="xsd:string">
+					<xsd:attribute name="typ" use="required">
+						<xsd:simpleType>
+							<xsd:restriction base="xsd:string">
+								<xsd:enumeration value="akademischerGrad"/>
+								<xsd:enumeration value="Adelstitel"/>
+								<xsd:enumeration value="FamiliennamenSuffix"/>
+								<xsd:enumeration value="Anrede"/>
+								<xsd:enumeration value="Generation"/>
+								<xsd:enumeration value="Qualifikation"/>
+							</xsd:restriction>
+						</xsd:simpleType>
+					</xsd:attribute>
+					<xsd:attribute name="position" use="required">
+						<xsd:simpleType>
+							<xsd:restriction base="xsd:string">
+								<xsd:enumeration value="prefix"/>
+								<xsd:enumeration value="suffix"/>
+							</xsd:restriction>
+						</xsd:simpleType>
+					</xsd:attribute>
+				</xsd:extension>
+			</xsd:simpleContent>
+		</xsd:complexType>
+	</xsd:element>	
+	<xsd:element name="Sterbedatum">
+		<xsd:simpleType>
+			<xsd:annotation>
+				<xsd:documentation>simple type for dates (union), which may omit day and/or month</xsd:documentation>
+			</xsd:annotation>
+			<xsd:union memberTypes="xsd:date xsd:gYearMonth xsd:gYear"/>
+		</xsd:simpleType>
+	</xsd:element>
+	<xsd:element name="Geburtsdatum">
+		<xsd:simpleType>
+			<xsd:annotation>
+				<xsd:documentation>simple type for dates (union), which may omit day and/or month</xsd:documentation>
+			</xsd:annotation>
+			<xsd:union memberTypes="xsd:date xsd:gYearMonth xsd:gYear"/>
+		</xsd:simpleType>
+	</xsd:element>	
+	
+	<xsd:element name="Familienstand">
+		<xsd:simpleType>
+			<xsd:annotation>
+				<xsd:documentation>simple type for marital status of a person</xsd:documentation>
+			</xsd:annotation>
+			<xsd:restriction base="xsd:token">
+				<xsd:enumeration value="ledig"/>
+				<xsd:enumeration value="verheiratet"/>
+				<xsd:enumeration value="in eingetragener Partnerschaft lebend"/>
+				<xsd:enumeration value="geschieden"/>
+				<xsd:enumeration value="eingetragene Partnerschaft aufgelöst oder für nichtig erklärt"/>
+<!-- 				<xsd:enumeration value="aufgelöste eingetragene Partnerschaft"/>  -->
+				<xsd:enumeration value="verwitwet"/>
+				<xsd:enumeration value="hinterbliebener eingetragener Partner"/>
+				<xsd:enumeration value="Ehe aufgehoben oder für nichtig erklärt"/>
+				<xsd:enumeration value="unbekannt"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>	
+	
+	<xsd:element name="Geschlecht">
+		<xsd:simpleType>
+			<xsd:annotation>
+				<xsd:documentation>simple type for sex (gender) of person</xsd:documentation>
+			</xsd:annotation>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="1"/>
+				<xsd:maxLength value="50"/>			
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+
+	<xsd:element name="Geburtsort">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="1"/>
+				<xsd:maxLength value="54"/>			
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	
+	<xsd:element name="Geburtsstaat">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="1"/>
+				<xsd:maxLength value="54"/>			
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	<xsd:element name="Geburtsbundesland">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="72"/>			
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	
+	<xsd:element name="Staatsangehoerigkeit">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="ISOCode3" minOccurs="0"/>
+				<xsd:element ref="StaatsnameDE" minOccurs="0"/>
+				<xsd:element ref="StaatsnameEN" minOccurs="0"/>
+				<xsd:element ref="StaatsnameFR" minOccurs="0"/>
+				<xsd:element name="GueltigVon" type="xsd:date" minOccurs="0"/>
+				<xsd:element name="GueltigBis" type="xsd:date" minOccurs="0"/>
+				<xsd:any namespace="##other" processContents="lax" minOccurs="0" maxOccurs="unbounded">
+					<xsd:annotation>
+						<xsd:documentation>any additional properties</xsd:documentation>
+					</xsd:annotation>
+				</xsd:any>				
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="StaatsnameDE">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="1"/>
+				<xsd:maxLength value="54"/>			
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+
+	<xsd:element name="StaatsnameEN">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="1"/>
+				<xsd:maxLength value="54"/>			
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>	
+
+	<xsd:element name="StaatsnameFR">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="1"/>
+				<xsd:maxLength value="54"/>			
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>		
+
+	<xsd:element name="PostAdresse" type="PostAdresseTyp" >
+		<xsd:annotation>
+			<xsd:documentation>Post oder ZMR Adresse, entspricht PostalAddress</xsd:documentation>
+		</xsd:annotation>
+	</xsd:element>
+	<xsd:complexType name="AbstractAddressType" abstract="true">
+		<xsd:annotation>
+			<xsd:documentation>main structure of address data</xsd:documentation>
+		</xsd:annotation>
+		<xsd:sequence minOccurs="0">
+			<xsd:element name="Identification" type="IdentificationType" minOccurs="0" maxOccurs="unbounded">
+				<xsd:annotation>
+					<xsd:documentation>unique identification entities</xsd:documentation>
+				</xsd:annotation>
+			</xsd:element>
+		</xsd:sequence>
+		<xsd:attribute name="Id" type="xsd:ID" use="optional"/>
+		<xsd:anyAttribute namespace="##other"/>
+	</xsd:complexType>
+	<xsd:complexType name="PostAdresseTyp">
+		<xsd:annotation>
+			<xsd:documentation>postal address</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexContent>
+			<xsd:extension base="AbstractAddressType">
+				<xsd:sequence>
+					<xsd:element ref="Staatscode" minOccurs="0"/>
+					<xsd:element ref="Staatsname" minOccurs="0"/>
+				
+					<xsd:element ref="Postleitzahl" minOccurs="0"/>
+					<xsd:element ref="Region" minOccurs="0"/>
+					<xsd:element ref="Bundesland" minOccurs="0"/>
+					<xsd:element ref="Gemeinde" minOccurs="0"/>
+					<xsd:element ref="Gemeindekennziffer" minOccurs="0"/>
+					<xsd:element ref="Ortschaft" minOccurs="0"/>
+					<xsd:element ref="OrtschaftZweisprachig" minOccurs="0"/>
+					<xsd:element name="Zustelladresse" type="ZustelladresseTyp" minOccurs="0"/>
+					
+					<xsd:any namespace="##other" processContents="lax" minOccurs="0" maxOccurs="unbounded">
+						<xsd:annotation>
+							<xsd:documentation>any additional properties</xsd:documentation>
+						</xsd:annotation>
+					</xsd:any>
+				</xsd:sequence>
+			</xsd:extension>
+		</xsd:complexContent>
+	</xsd:complexType>
+
+	<xsd:complexType name="ZustelladresseTyp">
+		<xsd:sequence>
+			<xsd:element ref="Adresszeile" minOccurs="0"/>
+			<xsd:element ref="Strassenname" minOccurs="0"/>
+			<xsd:element ref="Orientierungsnummer" minOccurs="0"/>
+			<xsd:element ref="Gebaeude" minOccurs="0"/>
+			<xsd:element ref="Nutzungseinheit" minOccurs="0"/>
+			<xsd:element ref="Postfach" minOccurs="0"/>
+			<xsd:element ref="Wohnsitzqualitaet" minOccurs="0"/>
+			<xsd:element ref="Abgabestelle" minOccurs="0"/>
+			<xsd:element ref="Nutzungseinheitlaufnummer" minOccurs="0"/>
+			<xsd:element name="AdressRegisterEintrag" minOccurs="0">
+				<xsd:complexType>
+					<xsd:sequence>
+						<xsd:element ref="Adresscode" minOccurs="0"/>
+						<xsd:element ref="Subcode" minOccurs="0"/>
+						<xsd:element ref="Objektnummer" minOccurs="0"/>
+					</xsd:sequence>
+				</xsd:complexType>
+			</xsd:element>
+		</xsd:sequence>
+	</xsd:complexType>			
+
+	<xsd:element name="InternetAdresse" type="InternetAdresseTyp" >
+		<xsd:annotation>
+			<xsd:documentation>Entspricht InternetAddress</xsd:documentation>
+		</xsd:annotation>
+	</xsd:element>
+	<xsd:element name="TelefonAdresse" type="TelefonAdresseTyp" >
+		<xsd:annotation>
+			<xsd:documentation>Container für Telefonnummern, entspricht TelephoneAddress</xsd:documentation>
+		</xsd:annotation>
+	</xsd:element>
+
+	<xsd:complexType name="InternetAdresseTyp">
+		<xsd:annotation>
+			<xsd:documentation>internet based communication</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexContent>
+			<xsd:extension base="AbstractAddressType">
+				<xsd:sequence minOccurs="0">
+					<xsd:element ref="dsig:KeyInfo" minOccurs="0">
+						<xsd:annotation>
+							<xsd:documentation>certificate for secure communication</xsd:documentation>
+						</xsd:annotation>
+					</xsd:element>
+					<xsd:element name="Adresse">
+						<xsd:annotation>
+							<xsd:documentation>eURI: mail-Adresse, Web, FTP, LDAP, ..., entspricht Address</xsd:documentation>
+						</xsd:annotation>
+						<xsd:simpleType>
+							<xsd:restriction base="xsd:anyURI">
+								<xsd:minLength value="0"/>
+								<xsd:maxLength value="60"/>								
+							</xsd:restriction>
+						</xsd:simpleType>
+					</xsd:element>
+					<xsd:any namespace="##other" processContents="lax" minOccurs="0" maxOccurs="unbounded">
+						<xsd:annotation>
+							<xsd:documentation>any additional properties</xsd:documentation>
+						</xsd:annotation>
+					</xsd:any>
+				</xsd:sequence>
+			</xsd:extension>
+		</xsd:complexContent>
+	</xsd:complexType>
+
+	<xsd:complexType name="TelefonAdresseTyp">
+		<xsd:annotation>
+			<xsd:documentation>phone numbers</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexContent>
+			<xsd:extension base="AbstractAddressType">
+				<xsd:sequence>
+					<xsd:element name="Typ">
+						<xsd:annotation>
+							<xsd:documentation>type of phononumber - category (eg 'Festnetz', 'Mobile', 'fax', ...)</xsd:documentation>
+						</xsd:annotation>
+						<xsd:simpleType>
+							<xsd:restriction base="xsd:string">
+								<xsd:enumeration value="Festnetz"/>
+								<xsd:enumeration value="Mobil"/>
+								<xsd:enumeration value="Fax"/>
+							</xsd:restriction>
+						</xsd:simpleType>
+					</xsd:element>
+					<xsd:element name="Nummer" type="TelekomNummerTyp">
+						<xsd:annotation>
+							<xsd:documentation>phonenumber</xsd:documentation>
+						</xsd:annotation>
+					</xsd:element>
+					<xsd:any namespace="##other" processContents="lax" minOccurs="0" maxOccurs="unbounded">
+						<xsd:annotation>
+							<xsd:documentation>any additional properties</xsd:documentation>
+						</xsd:annotation>
+					</xsd:any>
+				</xsd:sequence>
+			</xsd:extension>
+		</xsd:complexContent>
+	</xsd:complexType>
+
+	<xsd:complexType name="TelekomNummerTyp">
+		<xsd:choice>
+			<xsd:element ref="FormatierteNummer"/>
+			<xsd:group ref="TelekomNummernGruppe"/>
+		</xsd:choice>
+	</xsd:complexType>
+
+	<xsd:group name="TelekomNummernGruppe">
+		<xsd:sequence>
+			<xsd:element ref="InternationalerLaendercode" minOccurs="0"/>
+			<xsd:element ref="NationalNummer" minOccurs="0"/>
+			<xsd:element ref="Vorwahl" minOccurs="0"/>
+			<xsd:element ref="Anschlussnummer"/>
+			<xsd:element ref="Klappe" minOccurs="0"/>
+		</xsd:sequence>
+	</xsd:group>
+
+	<xsd:element name="InternationalerLaendercode" type="xsd:string">
+		<xsd:annotation>
+			<xsd:documentation>entspricht InternationalCountryCode</xsd:documentation>
+		</xsd:annotation>
+	</xsd:element>
+	<xsd:element name="NationalNummer" type="xsd:string">
+		<xsd:annotation>
+			<xsd:documentation>entspricht NationalNumber</xsd:documentation>
+		</xsd:annotation>
+	</xsd:element>
+	<xsd:element name="Vorwahl" type="xsd:string">
+		<xsd:annotation>
+			<xsd:documentation>entspricht AreaCityCode</xsd:documentation>
+		</xsd:annotation>
+	</xsd:element>
+	<xsd:element name="Anschlussnummer" type="xsd:string">
+		<xsd:annotation>
+			<xsd:documentation>entspricht SubscriberNumber</xsd:documentation>
+		</xsd:annotation>
+	</xsd:element>
+	<xsd:element name="FormatierteNummer">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="25"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>	
+	<xsd:element name="Klappe" type="xsd:string">
+		<xsd:annotation>
+			<xsd:documentation>entspricht Extension</xsd:documentation>
+		</xsd:annotation>
+	</xsd:element>
+	
+
+	<xsd:element name="Abgabestelle" type="xsd:boolean"/>
+	
+	<xsd:element name="Wohnsitzqualitaet">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:enumeration value="H"/>
+				<xsd:enumeration value="N"/>
+				<xsd:enumeration value="O"/>
+			</xsd:restriction>
+		</xsd:simpleType>		
+	</xsd:element>
+	<xsd:element name="ISOCode3">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:pattern value="[A-Z]{3}"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	<xsd:element name="Staatscode">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:pattern value="[A-Z]{3}"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>	
+	<xsd:element name="Staatsname">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="54"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>	
+	<xsd:element name="Postleitzahl">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="10"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	<xsd:element name="Region">
+		<xsd:annotation>
+			<xsd:documentation>entspricht Region</xsd:documentation>
+		</xsd:annotation>
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="54"/>
+			</xsd:restriction>
+		</xsd:simpleType>		
+	</xsd:element>
+	
+	<xsd:element name="Bundesland">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:enumeration value="Wien"/>
+				<xsd:enumeration value="Niederösterreich"/>
+				<xsd:enumeration value="Burgenland"/>
+				<xsd:enumeration value="Oberösterreich"/>
+				<xsd:enumeration value="Steiermark"/>
+				<xsd:enumeration value="Salzburg"/>
+				<xsd:enumeration value="Kärnten"/>
+				<xsd:enumeration value="Tirol"/>
+				<xsd:enumeration value="Vorarlberg"/>	
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	<xsd:element name="Gemeinde">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="1"/>
+				<xsd:maxLength value="54"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	<xsd:element name="Gemeindekennziffer">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:pattern value="[0-9]{5}"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	<xsd:element name="Ortschaft">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:minLength value="1"/>
+				<xsd:maxLength value="54"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	<xsd:element name="OrtschaftZweisprachig">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="45"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>		
+
+	<xsd:element name="Adresscode">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:pattern value="[0-9;A-Z]{7}"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	<xsd:element name="Subcode">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:pattern value="[0-9]{3}"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	<xsd:element name="Nutzungseinheitlaufnummer">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:pattern value="[0-9]{4}"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>			
+	<xsd:element name="Objektnummer">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:pattern value="[0-9;A-Z]{7}"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	
+	<xsd:element name="Strassenname">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="54"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>		
+
+	<xsd:element name="Orientierungsnummer">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="32"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>	
+
+	<xsd:element name="Gebaeude">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="75"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>	
+
+	<xsd:element name="Nutzungseinheit">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="40"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+
+	<xsd:element name="Adresszeile">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="54"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+
+	<xsd:element name="Postfach">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="20"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>				
+
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/eingebunden/PersonExport.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/eingebunden/PersonExport.xsd
new file mode 100644
index 00000000..5987d099
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/eingebunden/PersonExport.xsd
@@ -0,0 +1,107 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+    Name: PersonExport.xsd
+    Zweck: Definiert allgemein nutzbare Export-Schnittstelle um eine Liste von Personen abzubilden.
+    Author(s): Ehrenmüller Oliver, ZMR-SU
+    
+    Aenderungshistorie:
+    2009-07-20 teo: Ãœberarbeitung PersonExportElementType
+    2009-07-08 teo: erstellt
+-->
+
+<xsd:schema xmlns="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+    targetNamespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+    xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+    xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+    elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+    <xsd:annotation>
+        <xsd:documentation>Definiert allgemein nutzbare Export-Schnittstelle um eine Liste von Personen abzubilden.</xsd:documentation>
+    </xsd:annotation>
+    <xsd:include schemaLocation="InfoFachlich.xsd"/>
+    
+    <xsd:element name="PersonExport" type="PersonExportType">
+        <xsd:annotation>
+            <xsd:documentation>Root-Element des Personenexports.</xsd:documentation>
+        </xsd:annotation>
+    </xsd:element>
+    
+    <xsd:complexType name="PersonExportType">
+        <xsd:annotation>
+            <xsd:documentation>Root-Element des Personenexports.</xsd:documentation>
+        </xsd:annotation>
+        <xsd:sequence>
+            <xsd:element ref="Message"/>
+            <xsd:element ref="Stichtag"/>
+            <xsd:element name="Database">
+                <xsd:simpleType>
+                    <xsd:restriction base="xsd:string">
+                        <xsd:minLength value="1"/>
+                        <xsd:maxLength value="20"/>
+                    </xsd:restriction>
+                </xsd:simpleType>
+            </xsd:element>
+            <xsd:element name="Person" type="PersonExportElementType" minOccurs="0" maxOccurs="unbounded">
+                <xsd:annotation>
+                    <xsd:documentation>
+                        Gruppiert nach Personen werden alle Elemente in dieser
+                        Liste abgebildet.
+                    </xsd:documentation>
+                </xsd:annotation>
+            </xsd:element>
+        </xsd:sequence>
+    </xsd:complexType>
+    
+    <xsd:complexType name="PersonExportElementType">
+        <xsd:annotation>
+            <xsd:documentation>Dieser Type beinhaltet alle Elemente die zu einer Person gehören.</xsd:documentation>
+        </xsd:annotation>
+        <xsd:sequence>
+            <xsd:element name="ID" type="ENTITYIDType"/>
+            <xsd:element name="Typ" type="xsd:string"/>
+            <xsd:element name="Satz" type="PersonExportSatzType" minOccurs="0" maxOccurs="unbounded">
+                <xsd:annotation>
+                    <xsd:documentation>
+                        Diese Liste beinhaltet alle Sätze die zu einer
+                        Person gehören. Unabhängig von der Tabelle oder
+                        Strang-Historie.
+                        Fehlt die Liste, ist die Entity zu löschen.
+                    </xsd:documentation>
+                </xsd:annotation>
+            </xsd:element>
+        </xsd:sequence>
+    </xsd:complexType>
+    
+    <xsd:complexType name="PersonExportSatzType">
+        <xsd:annotation>
+            <xsd:documentation>
+                Dieser Type beinhaltet alle Elemente die sich auf einen Eintrag
+                in einer beliebigen Tabelle beziehen.
+            </xsd:documentation>
+        </xsd:annotation>
+        <xsd:sequence>
+            <xsd:element name="Tabelle">
+                <xsd:simpleType>
+                    <xsd:restriction base="xsd:string">
+                        <xsd:minLength value="1"/>
+                        <xsd:maxLength value="20"/>
+                    </xsd:restriction>
+                </xsd:simpleType>
+            </xsd:element>
+            <xsd:element ref="EntityID"/>
+            <xsd:element name="RecID" type="ENTITYIDType"/>
+            <xsd:element name="Created" type="TimestampType"/>
+            <xsd:element name="Feld" type="PersonExportFeldType" maxOccurs="unbounded"/>
+        </xsd:sequence>
+    </xsd:complexType>
+    
+    <xsd:complexType name="PersonExportFeldType">
+        <xsd:annotation>
+            <xsd:documentation>Generiersche Name/Wert-Paare für Export</xsd:documentation>
+        </xsd:annotation>
+        <xsd:sequence>
+            <xsd:element name="Name" type="xsd:string"/>
+            <xsd:element name="Wert" type="xsd:string"/>
+        </xsd:sequence>
+    </xsd:complexType>
+    
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/eingebunden/PersonFelder.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/eingebunden/PersonFelder.xsd
new file mode 100644
index 00000000..600e01c3
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/eingebunden/PersonFelder.xsd
@@ -0,0 +1,70 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: PersonFelder.xsd
+Zweck: Definiert allgemein nutzbare Felder für Personendaten
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2006-06-26 tsch: GeburtsdatumBis hinzugefügt
+2005-08-30 tsch: OrdnungsZahlType hinzugefügt
+2004-01-15 tsch: SVNummer hinzugefügt
+2004-06-24 tsch: OrdnungsZahl, Titel hinzugefügt
+2004-01-27 tsch: Erstellung
+-->
+
+<xsd:schema xmlns="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			targetNamespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	<xsd:include schemaLocation="SimpleTypes.xsd"/>
+
+	<xsd:annotation>
+		<xsd:documentation>Personendaten-Felder</xsd:documentation>
+	</xsd:annotation>	
+	<xsd:element name="ZMRZahl" type="ZMRZahlType"/>
+
+	<xsd:simpleType name="ZMRZahlType">
+		<xsd:restriction base="xsd:string">
+			<xsd:pattern value="[0-9]{12}"/>
+		</xsd:restriction>
+	</xsd:simpleType>
+	
+	<xsd:element name="OrdnungsZahl" type="OrdnungsZahlType"/>
+	
+	<xsd:simpleType name="OrdnungsZahlType">
+		<xsd:restriction base="xsd:string">
+			<xsd:pattern value="[0-9]{12}"/>
+		</xsd:restriction>
+	</xsd:simpleType>
+	
+	<xsd:element name="SVNummer">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:pattern value="[0-9]{10}"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+
+	<xsd:element name="Titel">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="45"/>			
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>	
+	
+	<xsd:element name="StaatZugezogen" type="StaatenNameType"/>
+	<xsd:element name="StaatVerzogen" type="StaatenNameType"/>
+
+	<xsd:element name="GeburtsdatumBis">
+		<xsd:simpleType>
+			<xsd:annotation>
+				<xsd:documentation>simple type for dates (union), which may omit day and/or month</xsd:documentation>
+			</xsd:annotation>
+			<xsd:union memberTypes="xsd:date xsd:gYearMonth xsd:gYear"/>
+		</xsd:simpleType>
+	</xsd:element>			
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/eingebunden/Protokollierung.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/eingebunden/Protokollierung.xsd
new file mode 100644
index 00000000..c9bc3b1a
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/eingebunden/Protokollierung.xsd
@@ -0,0 +1,496 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<schema xmlns="http://www.w3.org/2001/XMLSchema" targetNamespace="http://www.example.org/Protokoll"
+	xmlns:prot="http://bmi.gv.at/namespace/zmr-su/protokoll/20091125#" elementFormDefault="qualified"
+	attributeFormDefault="qualified">
+
+	<element name="sprotokoll" type="prot:SProtokollType" />
+	<complexType name="SProtokollType">
+		<sequence>
+			<element ref="prot:header" />
+			<element ref="prot:user" />
+			<element ref="prot:application" />
+		</sequence>
+	</complexType>
+
+	<element name="dienststelle" type="prot:DienststelleType" />
+	<complexType name="DienststelleType">
+		<annotation>
+			<documentation>Das Element Dienststelle identifiziert die Dienststelle mit den verschiedenen definierten
+				Codes und Kennzeichen.</documentation>
+		</annotation>
+		<sequence>
+			<element name="dstcode" minOccurs="0">
+				<annotation>
+					<documentation>3-Stelliger Dienststellencode. Wird im neuen Portal wegfallen???
+					</documentation>
+				</annotation>
+				<simpleType>
+					<restriction base="string">
+						<length value="3" />
+					</restriction>
+				</simpleType>
+			</element>
+
+			<element name="dstname" type="string" minOccurs="0">
+				<annotation>
+					<documentation>Klartextname der durchfuehrenden Dienststelle. PVP.ou</documentation>
+				</annotation>
+			</element>
+
+			<element name="mail" minOccurs="0">
+				<annotation>
+					<documentation>Emailadresse der Organisationseinheit/Dienststelle</documentation>
+				</annotation>
+				<complexType>
+					<simpleContent>
+						<extension base="string">
+							<attribute name="art">
+								<simpleType>
+									<restriction base="string">
+										<enumeration value="organisationseinheit" />
+									</restriction>
+								</simpleType>
+							</attribute>
+						</extension>
+					</simpleContent>
+				</complexType>
+			</element>
+			<element name="participant_id" type="string">
+				<annotation>
+					<documentation>Verwaltungskennzeichen (VKZ) der durchfuehrenden Dienststelle
+						(PVP-Header). Kunde fuer Verrechnung</documentation>
+				</annotation>
+			</element>
+			<element name="gvouid" type="string" minOccurs="0">
+				<annotation>
+					<documentation>Bundesweite eindeutige ID der Dienststelle (vom Portal) fuer Verrechnung.
+						PVP.gvOuId - bleibt das?</documentation>
+				</annotation>
+			</element>
+			<element name="kostcenter_id" type="string" minOccurs="0">
+				<annotation>
+					<documentation>Verwaltungskennzeichen (VKZ) der Kostenstelle des Users aus
+						PVP-Header normalerweise der Kunde (BMI Kundennummer) fuer Verrechnung. PVP.CostCenterId</documentation>
+				</annotation>
+			</element>
+			<element name="invoice_receipt_id" type="string" minOccurs="0">
+				<annotation>
+					<documentation>Verwaltungskennzeichen (VKZ) des Rechnungsempfaengers aus PVP-Header
+						Provider fuer Verrechnung. PVP.invoiceReceiptId</documentation>
+				</annotation>
+			</element>
+			<element name="charge_code" type="string" minOccurs="0">
+				<annotation>
+					<documentation>Liste von Codes aus PVP-Header fuer Verrechnung. PVP.ChargeCode</documentation>
+				</annotation>
+			</element>
+		</sequence>
+	</complexType>
+
+	<element name="header" type="prot:HeaderType" />
+	<complexType name="HeaderType">
+		<sequence>
+			<element name="protdatum" type="prot:DatumRedType"></element>
+			<element name="protzeit" type="prot:TimeRedType"></element>
+			<element name="application" type="string">
+				<annotation>
+					<documentation>Applikationskurzzeichen, Beispiel: "X02"</documentation>
+				</annotation>
+			</element>
+			<element name="applicationVersion" type="string">
+				<annotation>
+					<documentation>Versionsnummer wie sie auch im GUI angezeigt wird</documentation>
+				</annotation>
+			</element>
+
+			<element name="verarbeitungsart" type="string">
+				<annotation>
+					<documentation>Applikationskurzzeichen-Verarbeitungsbezeichnung
+					</documentation>
+				</annotation>
+			</element>
+
+			<element name="kzanfrage">
+				<annotation>
+					<documentation>If (Anfrage oder Auskunft)="1" Else="0" </documentation>
+				</annotation>
+				<simpleType>
+					<restriction base="string">
+						<pattern value="[01]" />
+					</restriction>
+				</simpleType>
+			</element>
+
+			<element name="kzupdate" minOccurs="0">
+				<annotation>
+					<documentation>If Update="1" Else "0"</documentation>
+				</annotation>
+				<simpleType>
+					<restriction base="string">
+						<pattern value="[01]" />
+					</restriction>
+				</simpleType>
+			</element>
+
+			<element name="fundstellen" type="integer" minOccurs="0">
+				<annotation>
+					<documentation>Summe der Anzahl der Treffer</documentation>
+				</annotation>
+			</element>
+
+			<element name="ergebnis" minOccurs="0">
+				<annotation>
+					<documentation>If Treffer="P", If Kein Treffer="N", If Treffer mit abweichenden Personendaten="I"
+					</documentation>
+				</annotation>
+				<simpleType>
+					<restriction base="string">
+						<pattern value="[INP]" />
+					</restriction>
+				</simpleType>
+			</element>
+
+			<element name="trancode" minOccurs="0">
+				<annotation>
+					<documentation>z.B.: "X02A" "X02B" analog zu den Hosttransaktionen</documentation>
+				</annotation>
+				<simpleType>
+					<restriction base="string">
+						<pattern value="[0-9A-Z _\-]{4}" />
+					</restriction>
+				</simpleType>
+			</element>
+
+			<element name="trannr" type="string" minOccurs="0">
+				<annotation>
+					<documentation>Transaktionsnummer</documentation>
+				</annotation>
+			</element>
+
+			<element name="behoerde" type="string" minOccurs="0">
+				<annotation>
+					<documentation>Behoerdenschluessel der durchfuehrenden Behoerde. Wenn in Applikation
+						geprueft, dann MUSS es vorhanden sein, sonst 000000</documentation>
+				</annotation>
+			</element>
+
+			<element name="systemid" type="string" minOccurs="0">
+				<annotation>
+					<documentation>Entiwcklungsumgebung=WEBS, Testumgebung=WEBT,
+						Produktionsumgebung=WEBP</documentation>
+				</annotation>
+			</element>
+		</sequence>
+	</complexType>
+
+	<element name="user" type="prot:UserType" />
+	<complexType name="UserType">
+		<annotation>
+			<documentation>Das Element User identifiziert den User, der den Request ausgelöst hat und die
+				Dienststelle, welcher der Request zuzuordnen ist.</documentation>
+		</annotation>
+		<sequence>
+			<element name="globalid" type="string" minOccurs="0">
+				<annotation>
+					<documentation>gvgid im Sinne des Portalverbundes, Wert der "OPK". PVP.gvGid</documentation>
+				</annotation>
+			</element>
+			<element name="commname" type="string" minOccurs="0">
+				<annotation>
+					<documentation>Familienname und Vorname. PVP.cn</documentation>
+				</annotation>
+			</element>
+			<element name="userid" type="string">
+				<annotation>
+					<documentation>Anmeldename des durchführenden Benutzers. PVP.userId</documentation>
+				</annotation>
+			</element>
+			<element name="mail" minOccurs="0">
+				<annotation>
+					<documentation>Emailadresse des Users aus PVP-Header. PVP.mail</documentation>
+				</annotation>
+				<complexType>
+					<simpleContent>
+						<extension base="string">
+							<attribute name="art">
+								<simpleType>
+									<restriction base="string">
+										<enumeration value="user"></enumeration>
+									</restriction>
+								</simpleType>
+							</attribute>
+						</extension>
+					</simpleContent>
+				</complexType>
+			</element>
+			<element ref="prot:dienststelle">
+				<annotation>
+					<documentation>Dienststelle</documentation>
+				</annotation>
+			</element>
+		</sequence>
+	</complexType>
+
+	<complexType name="ReferenzType">
+		<annotation>
+			<documentation>Vordefinierte Werte für Referenzarten:
+				* edv_zahl
+				* dastazahl
+				* numerator_nr
+				* geschaeftszahl</documentation>
+		</annotation>
+		<sequence>
+			<element name="transactionid" type="string">
+				<annotation>
+					<documentation>Transaktionsnummer</documentation>
+				</annotation>
+			</element>
+		</sequence>
+	</complexType>
+
+	<element name="application" type="prot:ApplicationType" />
+	<complexType name="ApplicationType">
+		<sequence>
+
+			<element name="bezug" type="string">
+				<annotation>
+					<documentation>String-Begruendung der Anfrage fuer den User "hilfreich" bei
+						DS-Rueckfrage. Manuelle Eingabe oder Vorgangsbeschreibung.</documentation>
+				</annotation>
+			</element>
+
+			<element ref="prot:person" minOccurs="0" />
+
+			<element name="referenzen" type="prot:ReferenzType" minOccurs="0" maxOccurs="unbounded">
+				<annotation>
+					<documentation>Protokoll:Referenz</documentation>
+				</annotation>
+			</element>
+
+			<element name="request" type="string" minOccurs="0">
+				<annotation>
+					<documentation>SOAP Request im Fall von Abfragen, Suchen. Parameter wenn es sich um eine
+						Batchanforderung handelt, sonst leer.
+						Weitere applikationsspezifische Daten, allenfalls notwendige Tags
+						sind mit IV/2 abzustimmen.
+						Datumselemente: Art ist mit IV/2 abzustimmen.</documentation>
+				</annotation>
+			</element>
+
+		</sequence>
+	</complexType>
+
+	<element name="person" type="prot:PersonType" />
+	<complexType name="PersonType">
+		<annotation>
+			<documentation>Zurueckgelieferte Person.</documentation>
+		</annotation>
+		<sequence>
+			<element name="rolle" type="prot:RolleType">
+				<annotation>
+					<documentation>im ZMR: "ZMR-Meldung", "Meldepflichtiger". ERnP??? Definition???
+						Attribute
+						art="personenrolle"</documentation>
+				</annotation>
+			</element>
+			<element name="familienname" type="string" minOccurs="0">
+				<annotation>
+					<documentation>Familienname der Person. ZPR.famname</documentation>
+				</annotation>
+			</element>
+			<element name="vorname" type="string" minOccurs="0">
+				<annotation>
+					<documentation>Vorname der Person. ZPR.vorname</documentation>
+				</annotation>
+			</element>
+			<element name="geburtsort" type="string" minOccurs="0">
+				<annotation>
+					<documentation>Geburtsort</documentation>
+				</annotation>
+			</element>
+			<element ref="prot:geburtsdaten" minOccurs="0" />
+			<element name="akademischer_grad" type="string" minOccurs="0">
+				<annotation>
+					<documentation>Zu klären:
+						* was vom Akademischen Grad
+						* welche Grade
+						* Reihenfolge
+						* Kurzform, nur
+						vorangestellte?</documentation>
+				</annotation>
+			</element>
+			<element name="geschlecht" type="prot:GeschlechtType" minOccurs="0">
+				<annotation>
+					<documentation>Kennzeichen Geschlecht.</documentation>
+				</annotation>
+			</element>
+			<element name="geburtsstaat" type="string" minOccurs="0">
+				<annotation>
+					<documentation>Geburtsstaat. Normierung?</documentation>
+				</annotation>
+			</element>
+			<element name="speicherdatum" type="string" minOccurs="0">
+				<annotation>
+					<documentation>JJJJMMTT created: Letztes Aenderungsdatum der Person.</documentation>
+				</annotation>
+			</element>
+			<element name="zmrzahl" minOccurs="0">
+				<annotation>
+					<documentation>zmrzahl</documentation>
+				</annotation>
+				<simpleType>
+					<restriction base="string">
+						<length value="12"></length>
+					</restriction>
+				</simpleType>
+			</element>
+			<element ref="prot:adressen" minOccurs="0" />
+		</sequence>
+	</complexType>
+
+	<element name="adressen" type="prot:AdressenType" />
+	<complexType name="AdressenType">
+		<annotation>
+			<documentation>Liste von Adressen. Es wird nur eine Adresse ausgegeben (bisherige Logik)
+			</documentation>
+		</annotation>
+		<sequence>
+			<element ref="prot:adresse" maxOccurs="unbounded" />
+		</sequence>
+	</complexType>
+
+	<element name="adresse" type="prot:AdresseType"/>
+	<complexType name="AdresseType">
+		<sequence>
+			<element name="plz" type="string" minOccurs="0">
+				<annotation>
+					<documentation>Postleitzahl. Meldung.plz</documentation>
+				</annotation>
+			</element>
+			<element name="ortname" type="string" minOccurs="0">
+				<annotation>
+					<documentation>Ortname (vereinfacht?). Meldung.ortname</documentation>
+				</annotation>
+			</element>
+			<element name="strasse" type="string" minOccurs="0">
+				<annotation>
+					<documentation>Strassenname. Meldung.strname</documentation>
+				</annotation>
+			</element>
+			<element name="hausnummer" type="string" minOccurs="0">
+				<annotation>
+					<documentation>Hausnummer. Meldung.hausnummer</documentation>
+				</annotation>
+			</element>
+		</sequence>
+	</complexType>
+
+	<complexType name="GeburtsdatenType">
+		<choice>
+			<element name="geburtsdatum" type="prot:DatumRedType">
+				<annotation>
+					<documentation>JJJJMMTT: Gebdatum</documentation>
+				</annotation>
+			</element>
+			<sequence>
+				<element name="geburtsdatum_von" type="string" minOccurs="0">
+					<annotation>
+						<documentation>JJJJMMTT: Suche mit unvollständigem Datum (Jahr)</documentation>
+					</annotation>
+				</element>
+				<element name="geburtsdatum_bis" type="string" minOccurs="0">
+					<annotation>
+						<documentation>JJJJMMTT: Suche mit unvollständigem Datum (Jahr)</documentation>
+					</annotation>
+				</element>
+			</sequence>
+		</choice>
+	</complexType>
+
+	<element name="geburtsdaten" type="prot:GeburtsdatenType">
+		<annotation>
+			<documentation>Geburstsdatum oder Suchintervall</documentation>
+		</annotation>
+	</element>
+
+
+	<simpleType name="DatumRedType">
+		<annotation>
+			<documentation>
+				DatumRedType: Format JJJJMMTT richtet sich nach
+				xsd:date, '00' bei Monat und Tag erlaubt.
+				Keine
+				Trennzeichen
+			</documentation>
+		</annotation>
+		<restriction base="string">
+			<pattern value="[2-9][0-9]{3}[01][0-9][0-3][0-9]" />
+		</restriction>
+	</simpleType>
+
+	<simpleType name="TimeRedType">
+		<annotation>
+			<documentation>
+				TimeRedType: Format (mindestens HHMMSS) richtet sich
+				nach xsd:dateTime, ohne Datumsanteil und
+				ohne
+				Trennzeichen. 0 bis 3 Nachkommastellen sind zulaessig
+			</documentation>
+		</annotation>
+		<restriction base="string">
+			<pattern value="[0-2][0-9][0-6][0-9][0-6][0-9][0-9]{0,3}" />
+		</restriction>
+	</simpleType>
+
+	<simpleType name="GeschlechtType">
+		<annotation>
+			<documentation>Maennlich="1", Weiblich="2", Unbekannt="3", Juristische Person="4".
+				"Juristische Person" ist nur in enstprechenden Anwendungen/Anwendungsfaellen zulaessig.</documentation>
+		</annotation>
+		<restriction base="string">
+			<enumeration value="1">
+				<annotation>
+					<documentation>maennlich</documentation>
+				</annotation>
+			</enumeration>
+			<enumeration value="2">
+				<annotation>
+					<documentation>weiblich</documentation>
+				</annotation>
+			</enumeration>
+			<enumeration value="3">
+				<annotation>
+					<documentation>unbekannt</documentation>
+				</annotation>
+			</enumeration>
+			<enumeration value="4">
+				<annotation>
+					<documentation>juristische Person</documentation>
+				</annotation>
+			</enumeration>
+		</restriction>
+	</simpleType>
+
+	<complexType name="RolleType">
+		<annotation>
+			<documentation>im ZMR: "ZMR-Meldung", "Meldepflichtiger". ERnP???
+				Definition??? Attribute
+				art="personenrolle"</documentation>
+		</annotation>
+		<simpleContent>
+			<extension base="string">
+				<attribute name="art" type="string"></attribute>
+			</extension>
+		</simpleContent>
+	</complexType>
+
+	<attribute name="mailAttribute">
+		<simpleType>
+			<restriction base="string">
+				<enumeration value="user"></enumeration>
+				<enumeration value="organisationseinheit"></enumeration>
+			</restriction>
+		</simpleType>
+	</attribute>
+
+</schema>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/eingebunden/SimpleTypes.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/eingebunden/SimpleTypes.xsd
new file mode 100644
index 00000000..77b3e59e
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/eingebunden/SimpleTypes.xsd
@@ -0,0 +1,173 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: SimpleTypes.xsd
+Zweck: Definiert allgemein nutzbare simple Datentypen
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+2010-08-25 teo:  ZMR-339: ID 343 - USERID DB-Feld erweitern
+2006-05-03 tsch: KGNummerType hinzugefügt
+2004-10-27 tsch: BehoerdenschluesselType hinzugefügt
+2004-09-09 tsch: RegisterType hinzugefügt
+2004-09-08 tsch: BenutzerNameType hinzugefügt
+2004-08-17 tsch: GemeindeNrType hinzugefügt
+2004-06-18 tsch: GrundTextType hinzugefügt
+-->
+
+<xsd:schema xmlns="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			targetNamespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+
+	<xsd:simpleType name="IntegerType">
+		<xsd:annotation>
+			<xsd:documentation>IntegerType: nicht negativer Integer mit Maximalwert 2^31-1 (Beschränkung durch Datenbank)</xsd:documentation> 
+		</xsd:annotation>
+		<xsd:restriction base="xsd:nonNegativeInteger">
+			<xsd:maxExclusive value="2147483648"/>
+		</xsd:restriction>
+	</xsd:simpleType>	
+
+	<xsd:simpleType name="DatumType">
+		<xsd:annotation>
+			<xsd:documentation>DatumType: Format richtet sich nach xsd:date, '00' bei Monat und Tag erlaubt</xsd:documentation> 
+		</xsd:annotation>
+		<xsd:restriction base="xsd:string">
+			<xsd:pattern value="[0-9]{4}[\-][0-9]{2}[\-][0-9]{2}"/>
+		</xsd:restriction>
+	</xsd:simpleType>	
+	
+
+	<xsd:simpleType name="TimestampType">
+		<xsd:annotation>
+			<xsd:documentation>TimestampType: Format richtet sich nach xsd:dateTime, Angabe der Millisekunden ist Pflicht, Zeitzone nicht erlaubt</xsd:documentation>
+		</xsd:annotation>
+		<xsd:restriction base="xsd:dateTime">
+		<xsd:pattern value="[0-9]{4}[\-][0-9]{2}[\-][0-9]{2}[T][0-9]{2}[:][0-9]{2}[:][0-9]{2}[.][0-9]{3}"/>
+		</xsd:restriction>
+	</xsd:simpleType>
+	
+	<xsd:simpleType name="IDType">
+		<xsd:annotation>
+			<xsd:documentation>IDs</xsd:documentation>
+		</xsd:annotation>
+		<xsd:restriction base="xsd:unsignedLong">
+		</xsd:restriction>
+	</xsd:simpleType>
+	<xsd:simpleType name="ENTITYIDType">
+		<xsd:annotation>
+			<xsd:documentation>Entity-IDs (können auch alphanumerisch sein, z.B. alte edvzahlen)</xsd:documentation>
+		</xsd:annotation>
+		<xsd:restriction base="xsd:string">
+			<xsd:whiteSpace value="collapse"/>
+			<xsd:minLength value="1"/>
+			<xsd:maxLength value="64"/>
+		</xsd:restriction>
+	</xsd:simpleType>
+
+	<xsd:simpleType name="StaatenNameType">
+		<xsd:restriction base="xsd:string">
+			<xsd:whiteSpace value="collapse"/>
+			<xsd:minLength value="0"/>
+			<xsd:maxLength value="45"/>			
+		</xsd:restriction>
+	</xsd:simpleType>
+	
+	<xsd:simpleType name="GrundCodeType">
+		<xsd:restriction base="xsd:string" >
+			<xsd:whiteSpace value="collapse"/>
+			<xsd:minLength value="1"/>
+			<xsd:maxLength value="20"/>				
+		</xsd:restriction>
+	</xsd:simpleType>
+	<xsd:simpleType name="GrundTextType">
+		<xsd:restriction base="xsd:string">
+			<xsd:minLength value="1"/>
+			<xsd:maxLength value="50"/>				
+		</xsd:restriction>
+	</xsd:simpleType>			
+	<xsd:simpleType name="GrundFreitextType">
+		<xsd:restriction base="xsd:string">
+			<xsd:minLength value="0"/>
+			<xsd:maxLength value="228"/>				
+		</xsd:restriction>
+	</xsd:simpleType>	
+
+	<xsd:simpleType name="BehoerdenNrType">
+		<xsd:restriction base="xsd:string">
+			<xsd:pattern value="[0-9]{6}"/>
+		</xsd:restriction>
+	</xsd:simpleType>
+	<xsd:simpleType name="BehoerdenschluesselType">
+		<xsd:restriction base="xsd:string">
+			<xsd:pattern value="[0-9]{6}|C[0-9]{5}"/>
+		</xsd:restriction>
+	</xsd:simpleType>
+	<xsd:simpleType name="GemeindeNrType">
+		<xsd:restriction base="xsd:string">
+			<xsd:pattern value="[0-9]{5}"/>
+		</xsd:restriction>
+	</xsd:simpleType>
+	<xsd:simpleType name="KGNummerType">
+		<xsd:restriction base="xsd:string">
+			<xsd:minLength value="5"/>
+			<xsd:maxLength value="5"/>
+		</xsd:restriction>
+	</xsd:simpleType>	
+	<xsd:simpleType name="GemeindenameType">
+		<xsd:restriction base="xsd:string">
+			<xsd:whiteSpace value="collapse"/>
+			<xsd:minLength value="1"/>
+			<xsd:maxLength value="54"/>
+		</xsd:restriction>
+	</xsd:simpleType>
+	<xsd:simpleType name="KundenNrType">
+		<xsd:restriction base="xsd:string">
+			<xsd:pattern value="[0-9]{5,6}"/>
+		</xsd:restriction>
+	</xsd:simpleType>
+	<xsd:simpleType name="OrgTypType">
+		<xsd:restriction base="xsd:string">
+			<xsd:whiteSpace value="collapse"/>
+			<xsd:minLength value="1"/>
+			<xsd:maxLength value="20"/>	
+		</xsd:restriction>
+	</xsd:simpleType>
+	<xsd:simpleType name="OrgCodeType">
+		<xsd:restriction base="xsd:string">
+			<xsd:whiteSpace value="collapse"/>
+			<xsd:minLength value="1"/>
+			<xsd:maxLength value="20"/>	
+		</xsd:restriction>
+	</xsd:simpleType>
+	<xsd:simpleType name="BezugsfeldType">
+		<xsd:restriction base="xsd:string">
+			<xsd:whiteSpace value="collapse"/>
+			<xsd:minLength value="1"/>
+			<xsd:maxLength value="50"/>	
+		</xsd:restriction>
+	</xsd:simpleType>			
+	<xsd:simpleType name="BenutzerType">
+		<xsd:restriction base="xsd:string">
+			<xsd:whiteSpace value="collapse"/>
+			<xsd:minLength value="1"/>
+			<xsd:maxLength value="100"/>	
+		</xsd:restriction>
+	</xsd:simpleType>
+	<xsd:simpleType name="BenutzerNameType">
+		<xsd:restriction base="xsd:string">
+			<xsd:whiteSpace value="collapse"/>
+			<xsd:minLength value="1"/>
+			<xsd:maxLength value="45"/>	
+		</xsd:restriction>
+	</xsd:simpleType>	
+	<xsd:simpleType name="RegisterType">
+		<xsd:restriction base="xsd:string">
+			<xsd:enumeration value="ZMR"/>
+			<xsd:enumeration value="EGR"/>
+			<xsd:enumeration value="LMR"/>
+			<xsd:enumeration value="ZPR"/>
+		</xsd:restriction>
+	</xsd:simpleType>	
+	
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/eingebunden/W3C-XMLDSig.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/eingebunden/W3C-XMLDSig.xsd
new file mode 100644
index 00000000..63440043
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/eingebunden/W3C-XMLDSig.xsd
@@ -0,0 +1,274 @@
+<?xml version="1.0" encoding="utf-8"?>
+<!-- PUBLIC "-//W3C//DTD XMLSchema 200102//EN" "http://www.w3.org/2001/XMLSchema.dtd"
+ -->
+<!--<!DOCTYPE schema
+  [
+	<!ATTLIST schema
+	xmlns:ds CDATA #FIXED "http://www.w3.org/2000/09/xmldsig#"
+>
+	<!ENTITY dsig 'http://www.w3.org/2000/09/xmldsig#'>
+	<!ENTITY % p ''>
+	<!ENTITY % s ''>
+]> -->
+<!-- Schema for XML Signatures
+    http://www.w3.org/2000/09/xmldsig#
+    $Revision: 1.1 $ on $Date: 2002/11/11 16:24:27 $ by $Author: Linauer $
+
+    Copyright 2001 The Internet Society and W3C (Massachusetts Institute
+    of Technology, Institut National de Recherche en Informatique et en
+    Automatique, Keio University). All Rights Reserved.
+    http://www.w3.org/Consortium/Legal/
+
+    This document is governed by the W3C Software License [1] as described
+    in the FAQ [2].
+
+    [1] http://www.w3.org/Consortium/Legal/copyright-software-19980720
+    [2] http://www.w3.org/Consortium/Legal/IPR-FAQ-20000620.html#DTD
+-->
+<schema targetNamespace="http://www.w3.org/2000/09/xmldsig#" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns="http://www.w3.org/2001/XMLSchema" elementFormDefault="qualified" version="0.1">
+	<!-- Basic Types Defined for Signatures -->
+	<!-- modified to ensure that whiteSpace is preserved
+<simpleType name="CryptoBinary">
+  <restriction base="base64Binary">
+  </restriction>
+</simpleType>
+ -->
+	<simpleType name="CryptoBinary">
+		<restriction base="string">
+			<whiteSpace value="preserve"/>
+			<pattern value="[A-Za-z0-9\+/=\n\r\t ]*"/>
+		</restriction>
+	</simpleType>
+	<!-- Start Signature -->
+	<element name="Signature" type="ds:SignatureType"/>
+	<complexType name="SignatureType">
+		<sequence>
+			<element ref="ds:SignedInfo"/>
+			<element ref="ds:SignatureValue"/>
+			<element ref="ds:KeyInfo" minOccurs="0"/>
+			<element ref="ds:Object" minOccurs="0" maxOccurs="unbounded"/>
+		</sequence>
+		<attribute name="Id" type="ID" use="optional"/>
+	</complexType>
+	<element name="SignatureValue" type="ds:SignatureValueType"/>
+	<complexType name="SignatureValueType">
+		<simpleContent>
+			<extension base="ds:CryptoBinary">
+				<attribute name="Id" type="ID" use="optional"/>
+			</extension>
+		</simpleContent>
+	</complexType>
+	<!-- Start SignedInfo -->
+	<element name="SignedInfo" type="ds:SignedInfoType"/>
+	<complexType name="SignedInfoType">
+		<sequence>
+			<element ref="ds:CanonicalizationMethod"/>
+			<element ref="ds:SignatureMethod"/>
+			<element ref="ds:Reference" maxOccurs="unbounded"/>
+		</sequence>
+		<attribute name="Id" type="ID" use="optional"/>
+	</complexType>
+	<element name="CanonicalizationMethod" type="ds:CanonicalizationMethodType"/>
+	<complexType name="CanonicalizationMethodType" mixed="true">
+		<sequence>
+			<any namespace="##any" minOccurs="0" maxOccurs="unbounded"/>
+			<!-- (0,unbounded) elements from (1,1) namespace -->
+		</sequence>
+		<attribute name="Algorithm" type="anyURI" use="required"/>
+	</complexType>
+	<element name="SignatureMethod" type="ds:SignatureMethodType"/>
+	<complexType name="SignatureMethodType" mixed="true">
+		<sequence>
+			<element name="HMACOutputLength" type="ds:HMACOutputLengthType" minOccurs="0"/>
+			<any namespace="##other" minOccurs="0" maxOccurs="unbounded"/>
+			<!-- (0,unbounded) elements from (1,1) external namespace -->
+		</sequence>
+		<attribute name="Algorithm" type="anyURI" use="required"/>
+	</complexType>
+	<!-- Start Reference -->
+	<element name="Reference" type="ds:ReferenceType"/>
+	<complexType name="ReferenceType">
+		<sequence>
+			<element ref="ds:Transforms" minOccurs="0"/>
+			<element ref="ds:DigestMethod"/>
+			<element ref="ds:DigestValue"/>
+		</sequence>
+		<attribute name="Id" type="ID" use="optional"/>
+		<attribute name="URI" type="anyURI" use="optional"/>
+		<attribute name="Type" type="anyURI" use="optional"/>
+	</complexType>
+	<element name="Transforms" type="ds:TransformsType"/>
+	<complexType name="TransformsType">
+		<sequence>
+			<element ref="ds:Transform" maxOccurs="unbounded"/>
+		</sequence>
+	</complexType>
+	<element name="Transform" type="ds:TransformType"/>
+	<complexType name="TransformType" mixed="true">
+		<choice minOccurs="0" maxOccurs="unbounded">
+			<any namespace="##other" processContents="lax"/>
+			<element name="XPath" type="string"/>
+			<!-- (1,1) elements from (0,unbounded) namespaces -->
+		</choice>
+		<attribute name="Algorithm" type="anyURI" use="required"/>
+	</complexType>
+	<!-- End Reference -->
+	<element name="DigestMethod" type="ds:DigestMethodType"/>
+	<complexType name="DigestMethodType" mixed="true">
+		<sequence>
+			<any namespace="##other" processContents="lax" minOccurs="0" maxOccurs="unbounded"/>
+		</sequence>
+		<attribute name="Algorithm" type="anyURI" use="required"/>
+	</complexType>
+	<element name="DigestValue" type="ds:DigestValueType"/>
+	<simpleType name="DigestValueType">
+		<restriction base="ds:CryptoBinary"/>
+	</simpleType>
+	<!-- End SignedInfo -->
+	<!-- Start KeyInfo -->
+	<element name="KeyInfo" type="ds:KeyInfoType"/>
+	<complexType name="KeyInfoType" mixed="true">
+		<choice maxOccurs="unbounded">
+			<element ref="ds:KeyName"/>
+			<element ref="ds:KeyValue"/>
+			<element ref="ds:RetrievalMethod"/>
+			<element ref="ds:X509Data"/>
+			<element ref="ds:PGPData"/>
+			<element ref="ds:SPKIData"/>
+			<element ref="ds:MgmtData"/>
+			<any namespace="##other" processContents="lax"/>
+			<!-- (1,1) elements from (0,unbounded) namespaces -->
+		</choice>
+		<attribute name="Id" type="ID" use="optional"/>
+	</complexType>
+	<element name="KeyName" type="string"/>
+	<element name="MgmtData" type="string"/>
+	<element name="KeyValue" type="ds:KeyValueType"/>
+	<complexType name="KeyValueType" mixed="true">
+		<choice>
+			<element ref="ds:DSAKeyValue"/>
+			<element ref="ds:RSAKeyValue"/>
+			<any namespace="##other" processContents="lax"/>
+		</choice>
+	</complexType>
+	<element name="RetrievalMethod" type="ds:RetrievalMethodType"/>
+	<complexType name="RetrievalMethodType">
+		<sequence>
+			<element name="Transforms" type="ds:TransformsType" minOccurs="0"/>
+		</sequence>
+		<attribute name="URI" type="anyURI"/>
+		<attribute name="Type" type="anyURI" use="optional"/>
+	</complexType>
+	<!-- Start X509Data -->
+	<element name="X509Data" type="ds:X509DataType"/>
+	<complexType name="X509DataType">
+		<sequence maxOccurs="unbounded">
+			<choice>
+				<element name="X509IssuerSerial" type="ds:X509IssuerSerialType"/>
+				<element name="X509SKI" type="ds:CryptoBinary"/>
+				<element name="X509SubjectName" type="string"/>
+				<element name="X509Certificate" type="ds:CryptoBinary"/>
+				<element name="X509CRL" type="ds:CryptoBinary"/>
+				<any namespace="##other" processContents="lax"/>
+			</choice>
+		</sequence>
+	</complexType>
+	<complexType name="X509IssuerSerialType">
+		<sequence>
+			<element name="X509IssuerName" type="string"/>
+			<element name="X509SerialNumber" type="integer"/>
+		</sequence>
+	</complexType>
+	<!-- End X509Data -->
+	<!-- Begin PGPData -->
+	<element name="PGPData" type="ds:PGPDataType"/>
+	<complexType name="PGPDataType">
+		<choice>
+			<sequence>
+				<element name="PGPKeyID" type="ds:CryptoBinary"/>
+				<element name="PGPKeyPacket" type="ds:CryptoBinary" minOccurs="0"/>
+				<any namespace="##other" processContents="lax" minOccurs="0" maxOccurs="unbounded"/>
+			</sequence>
+			<sequence>
+				<element name="PGPKeyPacket" type="ds:CryptoBinary"/>
+				<any namespace="##other" processContents="lax" minOccurs="0" maxOccurs="unbounded"/>
+			</sequence>
+		</choice>
+	</complexType>
+	<!-- End PGPData -->
+	<!-- Begin SPKIData -->
+	<element name="SPKIData" type="ds:SPKIDataType"/>
+	<complexType name="SPKIDataType">
+		<sequence maxOccurs="unbounded">
+			<element name="SPKISexp" type="ds:CryptoBinary"/>
+			<any namespace="##other" processContents="lax" minOccurs="0"/>
+		</sequence>
+	</complexType>
+	<!-- End SPKIData -->
+	<!-- End KeyInfo -->
+	<!-- Start Object (Manifest, SignatureProperty) -->
+	<element name="Object" type="ds:ObjectType"/>
+	<complexType name="ObjectType" mixed="true">
+		<sequence minOccurs="0" maxOccurs="unbounded">
+			<any namespace="##any" processContents="lax"/>
+		</sequence>
+		<attribute name="Id" type="ID" use="optional"/>
+		<attribute name="MimeType" type="string" use="optional"/>
+		<attribute name="Encoding" type="anyURI" use="optional"/>
+		<!-- add a grep facet -->
+	</complexType>
+	<element name="Manifest" type="ds:ManifestType"/>
+	<complexType name="ManifestType">
+		<sequence>
+			<element ref="ds:Reference" maxOccurs="unbounded"/>
+		</sequence>
+		<attribute name="Id" type="ID" use="optional"/>
+	</complexType>
+	<element name="SignatureProperties" type="ds:SignaturePropertiesType"/>
+	<complexType name="SignaturePropertiesType">
+		<sequence>
+			<element ref="ds:SignatureProperty" maxOccurs="unbounded"/>
+		</sequence>
+		<attribute name="Id" type="ID" use="optional"/>
+	</complexType>
+	<element name="SignatureProperty" type="ds:SignaturePropertyType"/>
+	<complexType name="SignaturePropertyType" mixed="true">
+		<choice maxOccurs="unbounded">
+			<any namespace="##other" processContents="lax"/>
+			<!-- (1,1) elements from (1,unbounded) namespaces -->
+		</choice>
+		<attribute name="Target" type="anyURI" use="required"/>
+		<attribute name="Id" type="ID" use="optional"/>
+	</complexType>
+	<!-- End Object (Manifest, SignatureProperty) -->
+	<!-- Start Algorithm Parameters -->
+	<simpleType name="HMACOutputLengthType">
+		<restriction base="integer"/>
+	</simpleType>
+	<!-- Start KeyValue Element-types -->
+	<element name="DSAKeyValue" type="ds:DSAKeyValueType"/>
+	<complexType name="DSAKeyValueType">
+		<sequence>
+			<sequence minOccurs="0">
+				<element name="P" type="ds:CryptoBinary"/>
+				<element name="Q" type="ds:CryptoBinary"/>
+			</sequence>
+			<element name="J" type="ds:CryptoBinary" minOccurs="0"/>
+			<element name="G" type="ds:CryptoBinary" minOccurs="0"/>
+			<element name="Y" type="ds:CryptoBinary"/>
+			<sequence minOccurs="0">
+				<element name="Seed" type="ds:CryptoBinary"/>
+				<element name="PgenCounter" type="ds:CryptoBinary"/>
+			</sequence>
+		</sequence>
+	</complexType>
+	<element name="RSAKeyValue" type="ds:RSAKeyValueType"/>
+	<complexType name="RSAKeyValueType">
+		<sequence>
+			<element name="Modulus" type="ds:CryptoBinary"/>
+			<element name="Exponent" type="ds:CryptoBinary"/>
+		</sequence>
+	</complexType>
+	<!-- End KeyValue Element-types -->
+	<!-- End Signature -->
+</schema>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/eingebunden/Workflow.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/eingebunden/Workflow.xsd
new file mode 100644
index 00000000..729b61ee
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/eingebunden/Workflow.xsd
@@ -0,0 +1,200 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: Workflow.xsd
+Zweck: Definiert Datentypen für die Geschäftsprozesssteuerung der Usecases
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2004-08-02 tsch: Vorgang WorkflowsAuflisten hinzugefügt
+2004-06-29 tsch: Subprozess Struktur vereinfacht
+2004-06-14 tsch: ProzessAnzeigeenamen hinzugefügt
+2004-06-14 tsch: Optionale VerlassenerProzessInstanzID hinzugefügt
+2004-05-19 tsch: SequenceID hinzugefügt, Umbenennung Process->Prozess
+2004-05-17 tsch: Umbenennungen: Activity nach Vorgang, Workflowitems nach Subprozesse
+2004-05-04 tsch: ProcessID->ProcessName, ActivityID->ActivityName
+2003-12-12 tsch: Erstellung
+-->
+
+<xsd:schema targetNamespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	
+	<xsd:include schemaLocation="SimpleTypes.xsd"/>
+
+
+	<xsd:element name="WorkflowInfoClient">
+		<xsd:annotation>
+			<xsd:documentation>Workflowinformationen des Clients</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="ProzessName"/>
+				<xsd:sequence minOccurs="0">
+					<xsd:annotation>
+						<xsd:documentation>
+						Wenn der Geschäftsprozess aus mehreren Vorgängen besteht,
+						müssen die ProzessinstanzID und SequenzID aus der letzten 
+						Server-Response vom Client geschickt werden.
+						Beim ersten Vorgang eines neuen Geschäftsprozesses dürfen die beiden
+						Felder nicht geschickt werden.
+						Bei Beginn einen neuen  Geschäftsprozesses SOLLTE die InstanzID des letztzen
+						Prozesses als VerlassenerProzessInstanzID mitgeschickt werden
+						</xsd:documentation>
+					</xsd:annotation>
+					<xsd:element ref="ProzessInstanzID"/>
+					<xsd:element ref="VerlassenerProzessInstanzID" minOccurs="0"/>
+					<xsd:element ref="SequenzID"/>
+				</xsd:sequence>
+				<xsd:element ref="VorgangName"/>
+			</xsd:sequence>	
+		</xsd:complexType>	
+	</xsd:element>
+		
+	<xsd:element name="WorkflowInfoServer">
+		<xsd:annotation>
+			<xsd:documentation>Workflowinformationen des Servers</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:annotation>
+					<xsd:documentation>
+					Der Prozessname dient zur technischen Identifikation des Prozesses, der ProzessAnzeigeName
+					kann zur Anzeige auf der Benutzeroberfläche verwendet werden.
+					</xsd:documentation>
+				</xsd:annotation>
+				<xsd:element ref="ProzessName"/>
+				<xsd:element ref="ProzessAnzeigeName" minOccurs="0"/>	
+				<xsd:element ref="ProzessInstanzID"/>
+				<xsd:element ref="ProzessStatus"/>
+				<xsd:element ref="SequenzID"/>
+				<xsd:element ref="Subprozess" minOccurs="1" maxOccurs="unbounded"/>
+			</xsd:sequence>	
+		</xsd:complexType>	
+	</xsd:element>
+	
+	<xsd:complexType name="SubprozessType">
+		<xsd:sequence>
+				<xsd:annotation>
+					<xsd:documentation>
+					Der VorgangName dient zur technischen Identifikation des Vorgangs, der VorgangAnzeigeName
+					kann zur Anzeige auf der Benutzeroberfläche verwendet werden.
+					Die Elemente VorgangRestriction und VorgangConditions werden in näherer Zukunft nicht implementiert
+					und können ignoriert werden (werden nicht befüllt).
+					</xsd:documentation>
+				</xsd:annotation>		
+			<xsd:element ref="VorgangName"/>
+			<xsd:element ref="VorgangAnzeigeName" minOccurs="0"/>
+			<xsd:element ref="VorgangStatus"/>
+			<xsd:element ref="VorgangRestriction" minOccurs="0" maxOccurs="unbounded"/>
+			<xsd:element ref="VorgangConditions" minOccurs="0"/>
+			<xsd:element name="Required" type="xsd:boolean"/>
+			<xsd:element name="Visible" type="xsd:boolean"/>
+			<xsd:element ref="Subprozess" minOccurs="0" maxOccurs="unbounded"/>
+		</xsd:sequence>
+	</xsd:complexType>
+	
+	<xsd:element name="Subprozess" type="SubprozessType"/>
+
+	<xsd:element name="ProzessInstanzID" type="IDType"/>
+	<xsd:element name="VerlassenerProzessInstanzID" type="IDType"/>
+	<xsd:element name="SequenzID" type="IDType"/>
+	
+	<xsd:element name="ProzessName">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="1"/>
+				<xsd:maxLength value="90"/>	
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+
+	<xsd:element name="ProzessAnzeigeName">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="1"/>
+				<xsd:maxLength value="90"/>	
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>	
+	
+	<xsd:element name="ProzessStatus">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:enumeration value="O"/>
+				<xsd:enumeration value="A"/>
+				<xsd:enumeration value="C"/>
+				<xsd:enumeration value="E"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+
+	<xsd:element name="VorgangName">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="1"/>
+				<xsd:maxLength value="90"/>	
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+
+	<xsd:element name="VorgangAnzeigeName">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="1"/>
+				<xsd:maxLength value="90"/>	
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+
+	<xsd:element name="VorgangStatus">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:enumeration value="O"/>
+				<xsd:enumeration value="A"/>
+				<xsd:enumeration value="C"/>
+				<xsd:enumeration value="E"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	
+	<xsd:element name="VorgangRestriction">
+		<xsd:annotation>
+			<xsd:documentation>regionale Restriktion, die fuer den Vorgang gilt (z.B. Gemeindenummer, fuer die Personen angemeldet werden duerfen.</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element name="RestrictionType" type="xsd:string"/>
+				<xsd:element name="RestrictionValue" type="xsd:string"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	
+	<xsd:element name="VorgangConditions">
+		<xsd:annotation>
+			<xsd:documentation>Liste von Bedingungen, unter denen das Item aktiv wird.</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element name="SelectedItems" minOccurs="1" maxOccurs="unbounded">
+					<xsd:annotation>
+						<xsd:documentation>Liste von alternativen Voraussetzungen (ODER) für die Anwählbarkeit der Activity. Ein Eintrag repräsentiert eine Reihe von Objekten, die im Suchergebnis ausgewählt sein müssen (UND).</xsd:documentation>
+					</xsd:annotation>
+					<xsd:complexType>
+						<xsd:sequence>
+							<xsd:element name="SelectedItem" type="xsd:string" minOccurs="1" maxOccurs="unbounded"/>
+						</xsd:sequence>
+					</xsd:complexType>
+				</xsd:element>				
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+</xsd:schema>
+	
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/eingebunden/gis-schnittstelle.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/eingebunden/gis-schnittstelle.xsd
new file mode 100644
index 00000000..4228c88f
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/eingebunden/gis-schnittstelle.xsd
@@ -0,0 +1,171 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<xsd:schema xmlns:xsd="http://www.w3.org/2001/XMLSchema" targetNamespace="http://bmi.gv.at/namespace/zmr-su/gis/20070725#" xmlns="http://bmi.gv.at/namespace/zmr-su/gis/20070725#" elementFormDefault="qualified">
+
+	<xsd:element name="GISListe">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="GISDaten" maxOccurs="unbounded"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="GISDaten" type="GISDatenType"/>
+	<xsd:complexType name="GISDatenType">
+		<xsd:sequence>
+			<xsd:element ref="Erstellungsdatum" minOccurs="0"/>
+			<xsd:element ref="Stichtagsdatum" minOccurs="0"/>
+			<xsd:element ref="Filter" minOccurs="0"/>
+			<xsd:element ref="Gemeindekennziffer" minOccurs="0"/>
+			<xsd:element ref="Ortkennziffer" minOccurs="0"/>
+			<xsd:element ref="Strassekennziffer" minOccurs="0"/>
+			<xsd:element ref="Adresscode" minOccurs="0"/>
+			<xsd:element ref="Subcode" minOccurs="0"/>
+			<xsd:element ref="AdresscodeSubcode" minOccurs="0"/>
+			<xsd:element ref="Objektnummer" minOccurs="0"/>
+			<xsd:element ref="Nutzungseinheitlaufnummer" minOccurs="0"/>
+			<xsd:element ref="Grundstuecknummer" minOccurs="0"/>
+			<xsd:element ref="GisMeridian" minOccurs="0"/>
+			<xsd:element name="KoordinatenADRCD" type="KoordinatenType" minOccurs="0"/>
+			<xsd:element name="KoordinatenSUBCD" type="KoordinatenType" minOccurs="0"/>
+			<xsd:element ref="Postleitzahl" minOccurs="0"/>
+			<xsd:element ref="Strassenname" minOccurs="0"/>
+			<xsd:element ref="Hausnummer" minOccurs="0"/>
+			<xsd:element ref="Stiege" minOccurs="0"/>
+			<xsd:element ref="Tuer" minOccurs="0"/>
+			<xsd:element ref="ErweitertesAttribut" minOccurs="0" maxOccurs="unbounded"/>
+		</xsd:sequence>
+	</xsd:complexType>
+
+	<xsd:element name="Erstellungsdatum" type="xsd:date"/>
+	<xsd:element name="Stichtagsdatum" type="xsd:date"/>
+	<xsd:element name="Filter" type="xsd:string"/>
+	
+	<xsd:element name="Gemeindekennziffer">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:pattern value="[0-9]{5}"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	<xsd:element name="Ortkennziffer">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:pattern value="[0-9]{5}"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	<xsd:element name="Strassekennziffer">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:pattern value="[0-9]{6}"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+
+	<xsd:element name="Adresscode">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:pattern value="[0-9;A-Z]{7}"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	<xsd:element name="Subcode">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:pattern value="[0-9]{3}"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	<xsd:element name="AdresscodeSubcode">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:pattern value="[0-9;A-Z]{7}[0-9]{3}"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	<xsd:element name="Objektnummer">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:pattern value="[0-9;A-Z]{7}"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	<xsd:element name="Nutzungseinheitlaufnummer">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:pattern value="[0-9]{4}"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>			
+	<xsd:element name="Grundstuecknummer">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element name="Katastralgemnr" type="xsd:string"/>
+				<xsd:element name="Haupt" type="xsd:string"/>
+				<xsd:element name="Sub" type="xsd:string"/>
+				<xsd:element name="Punkt" type="xsd:string"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	<xsd:element name="GisMeridian" type="xsd:string"/>
+	<xsd:complexType name="KoordinatenType">
+		<xsd:sequence>
+			<xsd:element name="X" type="xsd:float"/>
+			<xsd:element name="Y" type="xsd:float"/>
+		</xsd:sequence>
+	</xsd:complexType>
+	<xsd:element name="Postleitzahl">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="10"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	<xsd:element name="Strassenname">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="54"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>		
+	<xsd:element name="Hausnummer">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="54"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>		
+	<xsd:element name="Stiege">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="54"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>		
+	<xsd:element name="Tuer">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="54"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	<xsd:element name="ErweitertesAttribut">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element name="Code" type="xsd:string"/>
+				<xsd:element name="Beschreibung" type="xsd:string"/>
+				<xsd:element name="Wert" type="xsd:string"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/eingebunden/pvp1.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/eingebunden/pvp1.xsd
new file mode 100644
index 00000000..68a1115d
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/eingebunden/pvp1.xsd
@@ -0,0 +1,174 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<xs:schema targetNamespace="http://egov.gv.at/pvp1.xsd" xmlns="http://egov.gv.at/pvp1.xsd" xmlns:xs="http://www.w3.org/2001/XMLSchema" elementFormDefault="qualified" attributeFormDefault="unqualified">
+	<xs:element name="pvpToken">
+		<xs:complexType>
+			<xs:complexContent>
+				<xs:extension base="pvpTokenType" />
+			</xs:complexContent>
+		</xs:complexType>
+	</xs:element>
+	<xs:complexType name="pvpTokenType">
+		<xs:sequence>
+			<xs:element name="authenticate">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element name="participantId" type="xs:string" />
+						<xs:element name="gvOuDomain" type="xs:string" minOccurs="0" maxOccurs="1" />
+						<xs:choice>
+							<xs:element name="userPrincipal">
+								<xs:complexType>
+									<xs:complexContent>
+										<xs:extension base="pvpPrincipalType">
+											<xs:sequence>
+												<xs:element name="gvGid" type="xs:string" />
+												<xs:element name="mail" type="xs:string" minOccurs="0" maxOccurs="1" />
+												<xs:element name="tel" type="xs:string" minOccurs="0" maxOccurs="1" />
+												<xs:element name="bpk" type="xs:string" minOccurs="0" maxOccurs="1" />
+												<xs:element name="gvFunction" type="xs:string" minOccurs="0" maxOccurs="1" />
+											</xs:sequence>
+										</xs:extension>
+									</xs:complexContent>
+								</xs:complexType>
+							</xs:element>
+							<xs:element name="systemPrincipal" type="pvpPrincipalType" />
+						</xs:choice>
+						<xs:any namespace="##other" processContents="lax" minOccurs="0" maxOccurs="unbounded">
+							<xs:annotation>
+								<xs:documentation>additional authentication properties</xs:documentation>
+							</xs:annotation>
+						</xs:any>
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:element name="authorize" minOccurs="0" maxOccurs="1">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:sequence minOccurs="0">
+							<xs:element name="gvOuId" type="xs:string" />
+							<xs:element name="ou" type="xs:string" />
+						</xs:sequence>
+						<xs:element name="role" maxOccurs="unbounded">
+							<xs:complexType>
+								<xs:sequence>
+									<xs:element name="param" minOccurs="0" maxOccurs="unbounded">
+										<xs:complexType>
+											<xs:sequence>
+												<xs:element name="key" type="xs:string" />
+												<xs:element name="value" type="xs:string" />
+											</xs:sequence>
+										</xs:complexType>
+									</xs:element>
+								</xs:sequence>
+								<xs:attribute name="value" type="xs:string" use="required" />
+							</xs:complexType>
+						</xs:element>
+						<xs:any namespace="##other" processContents="lax" minOccurs="0" maxOccurs="unbounded">
+							<xs:annotation>
+								<xs:documentation>additional authorization properties</xs:documentation>
+							</xs:annotation>
+						</xs:any>
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:element name="accounting" minOccurs="0">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element name="invoiceRecptId" type="xs:string" />
+						<xs:element name="CostCenterId" maxOccurs="unbounded">
+							<xs:complexType>
+								<xs:simpleContent>
+									<xs:extension base="xs:string">
+										<xs:attribute name="default" type="xs:boolean" use="optional" default="false" />
+									</xs:extension>
+								</xs:simpleContent>
+							</xs:complexType>
+						</xs:element>
+						<xs:element name="ChargeCode" maxOccurs="unbounded">
+							<xs:complexType>
+								<xs:simpleContent>
+									<xs:extension base="xs:string">
+										<xs:attribute name="default" type="xs:boolean" use="optional" default="false" />
+									</xs:extension>
+								</xs:simpleContent>
+							</xs:complexType>
+						</xs:element>
+						<xs:any namespace="##other" processContents="lax" minOccurs="0" maxOccurs="unbounded">
+							<xs:annotation>
+								<xs:documentation>additional properties</xs:documentation>
+							</xs:annotation>
+						</xs:any>
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+			<xs:element name="pvpChainedToken" type="pvpTokenType" minOccurs="0" />
+			<xs:element name="pvpExtension" block="extension" minOccurs="0">
+				<xs:complexType>
+					<xs:sequence>
+						<xs:element name="orig-host" minOccurs="0" maxOccurs="1">
+							<xs:complexType>
+								<xs:sequence>
+									<xs:element name="scheme" type="xs:string" />
+									<xs:element name="hostinfo" type="xs:string" />
+									<xs:element name="uri" type="xs:string" />
+								</xs:sequence>
+							</xs:complexType>
+						</xs:element>
+						<xs:element name="debug-ticket" minOccurs="0" maxOccurs="1">
+							<xs:complexType>
+								<xs:sequence>
+									<xs:element name="txid" type="xs:string" />
+									<xs:element name="log-level" type="logLevelType" minOccurs="0" maxOccurs="1" />
+								</xs:sequence>
+							</xs:complexType>
+						</xs:element>
+						<xs:any namespace="##any" processContents="lax" maxOccurs="unbounded" />
+					</xs:sequence>
+				</xs:complexType>
+			</xs:element>
+		</xs:sequence>
+		<xs:attribute name="version" type="gvVersionType" use="required" />
+		<xs:anyAttribute namespace="##any" processContents="lax" />
+	</xs:complexType>
+	<xs:complexType name="pvpPrincipalType">
+		<xs:sequence>
+			<xs:element name="userId" type="xs:string" />
+			<xs:element name="cn" type="xs:string" />
+			<xs:element name="gvOuId" type="xs:string" />
+			<xs:element name="ou" type="xs:string" />
+			<xs:element name="gvSecClass" type="gvSecClassType" minOccurs="0" />
+			<xs:any namespace="##other" processContents="lax" minOccurs="0" maxOccurs="unbounded">
+				<xs:annotation>
+					<xs:documentation>additional principal attributes</xs:documentation>
+				</xs:annotation>
+			</xs:any>
+		</xs:sequence>
+		<xs:anyAttribute namespace="##any" processContents="lax" />
+	</xs:complexType>
+	<xs:simpleType name="gvSecClassType">
+		<xs:restriction base="xs:integer">
+			<xs:enumeration value="0" />
+			<xs:enumeration value="1" />
+			<xs:enumeration value="2" />
+			<xs:enumeration value="3" />
+		</xs:restriction>
+	</xs:simpleType>
+	<xs:simpleType name="gvVersionType">
+		<xs:restriction base="xs:string">
+			<xs:enumeration value="1.0" />
+			<xs:enumeration value="1.1" />
+			<xs:enumeration value="1.2" />
+			<xs:enumeration value="1.8" />
+			<xs:enumeration value="1.9" />
+		</xs:restriction>
+	</xs:simpleType>
+	<xs:simpleType name="logLevelType">
+		<xs:restriction base="xs:integer">
+			<xs:enumeration value="0" />
+			<xs:enumeration value="1" />
+			<xs:enumeration value="2" />
+			<xs:enumeration value="3" />
+			<xs:enumeration value="4" />
+			<xs:enumeration value="5" />
+		</xs:restriction>
+	</xs:simpleType>
+</xs:schema>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/eingebunden/secext.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/eingebunden/secext.xsd
new file mode 100644
index 00000000..1005b12a
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/eingebunden/secext.xsd
@@ -0,0 +1,150 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!-- 
+Legal Disclaimer
+
+The presentation, distribution or other dissemination of the information 
+contained in this specification is not a license, either expressly or impliedly, 
+to any intellectual property owned or controlled by IBM or Microsoft and\or any other 
+third party.  IBM and Microsoft and\or any other third party may have patents, patent 
+applications, trademarks, copyrights, or other intellectual property rights 
+covering subject matter in this document.  The furnishing of this document 
+does not give you any license to IBM's and Microsoft's or any other third party's patents, 
+trademarks, copyrights, or other intellectual property.
+
+This specification and the information contained herein is provided on an "AS IS"
+ basis and to the maximum extent permitted by applicable law, IBM and Microsoft provides 
+the document AS IS AND WITH ALL FAULTS, and hereby disclaims all other warranties 
+and conditions, either express, implied or statutory, including, but not limited 
+to, any (if any) implied warranties, duties or conditions of merchantability, of 
+fitness for a particular purpose, of accuracy or completeness of responses, of 
+results, of workmanlike effort, of lack of viruses, and of lack of negligence, 
+all with regard to the document. ALSO, THERE IS NO WARRANTY OR CONDITION OF 
+TITLE, QUIET ENJOYMENT, QUIET POSSESSION, CORRESPONDENCE TO DESCRIPTION OR 
+NON-INFRINGEMENT OF ANY INTELLECTUAL PROPERTY RIGHTS WITH REGARD TO THE DOCUMENT.
+
+IN NO EVENT WILL IBM or MICROSOFT BE LIABLE TO ANY OTHER PARTY FOR THE COST OF PROCURING 
+SUBSTITUTE GOODS OR SERVICES, LOST PROFITS, LOSS OF USE, LOSS OF DATA, OR ANY 
+INCIDENTAL, CONSEQUENTIAL, DIRECT, INDIRECT, OR SPECIAL DAMAGES WHETHER UNDER 
+CONTRACT, TORT, WARRANTY, OR OTHERWISE, ARISING IN ANY WAY OUT OF THIS OR ANY 
+OTHER AGREEMENT RELATING TO THIS DOCUMENT, WHETHER OR NOT SUCH PARTY HAD ADVANCE 
+NOTICE OF THE POSSIBILITY OF SUCH DAMAGES.
+
+Copyright Notice
+
+Copyright 2001, 2002 IBM Corporation and Microsoft Corporation. All rights reserved.
+-->
+<xsd:schema targetNamespace="http://schemas.xmlsoap.org/ws/2002/04/secext" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:wsse="http://schemas.xmlsoap.org/ws/2002/04/secext" xmlns="http://schemas.xmlsoap.org/ws/2002/04/secext" xmlns:SOAP-ENV="http://schemas.xmlsoap.org/soap/envelope/" elementFormDefault="qualified" attributeFormDefault="unqualified" version="0.2">
+  <xsd:element name="Security">
+    <xsd:annotation>
+      <xsd:documentation>
+                This element defines header block to use for security-relevant data directed at a specific SOAP actor.
+           </xsd:documentation>
+    </xsd:annotation>
+    <xsd:complexType>
+      <xsd:sequence>
+        <xsd:any processContents="lax" minOccurs="0" maxOccurs="unbounded">
+          <xsd:annotation>
+            <xsd:documentation>
+                                The use of "any" is to allow extensibility and different forms of security data.
+                        </xsd:documentation>
+          </xsd:annotation>
+        </xsd:any>
+      </xsd:sequence>
+      <xsd:anyAttribute processContents="lax"/>
+    </xsd:complexType>
+  </xsd:element>
+  <xsd:element name="UsernameToken">
+    <xsd:complexType>
+      <xsd:sequence>
+        <xsd:element ref="Username"/>
+        <xsd:element ref="Password" minOccurs="0"/>
+      </xsd:sequence>
+      <xsd:attribute name="Id" type="xsd:ID"/>
+      <xsd:anyAttribute namespace="##other"/>
+    </xsd:complexType>
+  </xsd:element>
+  <xsd:element name="Username">
+    <xsd:complexType>
+      <xsd:simpleContent>
+        <xsd:extension base="xsd:string">
+          <xsd:anyAttribute namespace="##other"/>
+        </xsd:extension>
+      </xsd:simpleContent>
+    </xsd:complexType>
+  </xsd:element>
+  <xsd:element name="Password">
+    <xsd:complexType>
+      <xsd:simpleContent>
+        <xsd:extension base="xsd:string">
+          <xsd:attribute name="Type" type="xsd:QName"/>
+          <xsd:anyAttribute namespace="##other"/>
+        </xsd:extension>
+      </xsd:simpleContent>
+    </xsd:complexType>
+  </xsd:element>
+  <xsd:element name="BinarySecurityToken">
+    <xsd:annotation>
+      <xsd:documentation>A security token that is encoded in binary</xsd:documentation>
+    </xsd:annotation>
+    <xsd:complexType>
+      <xsd:simpleContent>
+        <xsd:extension base="xsd:string">
+          <xsd:attribute name="Id" type="xsd:ID"/>
+          <xsd:attribute name="ValueType" type="xsd:QName"/>
+          <xsd:attribute name="EncodingType" type="xsd:QName"/>
+          <xsd:anyAttribute namespace="##other" processContents="strict"/>
+        </xsd:extension>
+      </xsd:simpleContent>
+    </xsd:complexType>
+  </xsd:element>
+  <xsd:element name="SecurityTokenReference">
+    <xsd:annotation>
+      <xsd:documentation>
+            This element is used reference a security token.
+            </xsd:documentation>
+    </xsd:annotation>
+    <xsd:complexType>
+      <xsd:choice minOccurs="0" maxOccurs="unbounded">
+        <xsd:element ref="Reference"/>
+        <xsd:any namespace="##other" processContents="lax" minOccurs="0" maxOccurs="unbounded"/>
+      </xsd:choice>
+      <xsd:attribute name="Id" type="xsd:ID"/>
+      <xsd:anyAttribute namespace="##other" processContents="lax"/>
+    </xsd:complexType>
+  </xsd:element>
+  <xsd:element name="Reference">
+    <xsd:complexType>
+      <xsd:attribute name="URI" type="xsd:anyURI"/>
+    </xsd:complexType>
+  </xsd:element>
+  <xsd:simpleType name="PasswordTypeEnum">
+    <xsd:restriction base="xsd:QName">
+      <xsd:enumeration value="wsse:PasswordText"/>
+      <xsd:enumeration value="wsse:PasswordDigest"/>
+    </xsd:restriction>
+  </xsd:simpleType>
+  <xsd:simpleType name="ValueTypeEnum">
+    <xsd:restriction base="xsd:QName">
+      <xsd:enumeration value="wsse:X509v3"/>
+      <xsd:enumeration value="wsse:Kerberosv5TGT"/>
+      <xsd:enumeration value="wsse:Kerberosv5ST"/>
+    </xsd:restriction>
+  </xsd:simpleType>
+  <xsd:simpleType name="EncodingTypeEnum">
+    <xsd:restriction base="xsd:QName">
+      <xsd:enumeration value="wsse:Base64Binary"/>
+      <xsd:enumeration value="wsse:HexBinary"/>
+    </xsd:restriction>
+  </xsd:simpleType>
+  <xsd:simpleType name="FaultcodeEnum">
+    <xsd:restriction base="xsd:QName">
+      <xsd:enumeration value="wsse:UnsupportedSecurityToken"/>
+      <xsd:enumeration value="wsse:UnsupportedAlgorithm"/>
+      <xsd:enumeration value="wsse:InvalidSecurity"/>
+      <xsd:enumeration value="wsse:InvalidSecurityToken"/>
+      <xsd:enumeration value="wsse:FailedAuthentication"/>
+      <xsd:enumeration value="wsse:FailedCheck"/>
+      <xsd:enumeration value="wsse:SecurityTokenUnavailable"/>
+    </xsd:restriction>
+  </xsd:simpleType>
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/eingebunden/soapenv.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/eingebunden/soapenv.xsd
new file mode 100644
index 00000000..a5db77f5
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/eingebunden/soapenv.xsd
@@ -0,0 +1,129 @@
+<?xml version='1.0' encoding='UTF-8' ?>
+
+<!-- Schema for the SOAP/1.1 envelope
+
+     This schema has been produced using W3C's SOAP Version 1.2 schema
+     found at:
+
+     http://www.w3.org/2001/06/soap-envelope
+
+     Copyright 2001 Martin Gudgin, Developmentor.
+
+     Changes made are the following:
+     - reverted namespace to http://schemas.xmlsoap.org/soap/envelope/
+     - reverted mustUnderstand to only allow 0 and 1 as lexical values
+	 - made encodingStyle a global attribute 20020825
+
+	 Further changes:
+
+	 - removed default value from mustUnderstand attribute declaration - 20030314
+
+     Original copyright:
+     
+     Copyright 2001 W3C (Massachusetts Institute of Technology,
+     Institut National de Recherche en Informatique et en Automatique,
+     Keio University). All Rights Reserved.
+     http://www.w3.org/Consortium/Legal/
+
+     This document is governed by the W3C Software License [1] as
+     described in the FAQ [2].
+
+     [1] http://www.w3.org/Consortium/Legal/copyright-software-19980720
+     [2] http://www.w3.org/Consortium/Legal/IPR-FAQ-20000620.html#DTD
+-->
+
+<!--
+2004-12-13 tsch: Content-Validierung im Body-Element von lax auf strict geändert (Element MUSS bekannt sein) 
+-->
+<xs:schema xmlns:xs="http://www.w3.org/2001/XMLSchema"
+           xmlns:tns="http://schemas.xmlsoap.org/soap/envelope/"
+           targetNamespace="http://schemas.xmlsoap.org/soap/envelope/" >
+
+     
+  <!-- Envelope, header and body -->
+  <xs:element name="Envelope" type="tns:Envelope" />
+  <xs:complexType name="Envelope" >
+    <xs:sequence>
+      <xs:element ref="tns:Header" minOccurs="0" />
+      <xs:element ref="tns:Body" minOccurs="1" />
+      <xs:any namespace="##other" minOccurs="0" maxOccurs="unbounded" processContents="lax" />
+    </xs:sequence>
+    <xs:anyAttribute namespace="##other" processContents="lax" />
+  </xs:complexType>
+
+  <xs:element name="Header" type="tns:Header" />
+  <xs:complexType name="Header" >
+    <xs:sequence>
+      <xs:any namespace="##other" minOccurs="0" maxOccurs="unbounded" processContents="lax" />
+    </xs:sequence>
+    <xs:anyAttribute namespace="##other" processContents="lax" />
+  </xs:complexType>
+  
+  <xs:element name="Body" type="tns:Body" />
+  <xs:complexType name="Body" >
+    <xs:sequence>
+      <xs:any namespace="##any" minOccurs="0" maxOccurs="unbounded" processContents="strict" />
+    </xs:sequence>
+    <xs:anyAttribute namespace="##any" processContents="lax" >
+	  <xs:annotation>
+	    <xs:documentation>
+		  Prose in the spec does not specify that attributes are allowed on the Body element
+		</xs:documentation>
+	  </xs:annotation>
+	</xs:anyAttribute>
+  </xs:complexType>
+
+       
+  <!-- Global Attributes.  The following attributes are intended to be usable via qualified attribute names on any complex type referencing them.  -->
+  <xs:attribute name="mustUnderstand" >	
+     <xs:simpleType>
+     <xs:restriction base='xs:boolean'>
+	   <xs:pattern value='0|1' />
+	 </xs:restriction>
+   </xs:simpleType>
+  </xs:attribute>
+  <xs:attribute name="actor" type="xs:anyURI" />
+
+  <xs:simpleType name="encodingStyle" >
+    <xs:annotation>
+	  <xs:documentation>
+	    'encodingStyle' indicates any canonicalization conventions followed in the contents of the containing element.  For example, the value 'http://schemas.xmlsoap.org/soap/encoding/' indicates the pattern described in SOAP specification
+	  </xs:documentation>
+	</xs:annotation>
+    <xs:list itemType="xs:anyURI" />
+  </xs:simpleType>
+
+  <xs:attribute name="encodingStyle" type="tns:encodingStyle" />
+  <xs:attributeGroup name="encodingStyle" >
+    <xs:attribute ref="tns:encodingStyle" />
+  </xs:attributeGroup>
+
+  <xs:element name="Fault" type="tns:Fault" />
+  <xs:complexType name="Fault" final="extension" >
+    <xs:annotation>
+	  <xs:documentation>
+	    Fault reporting structure
+	  </xs:documentation>
+	</xs:annotation>
+    <xs:sequence>
+      <xs:element name="faultcode" type="xs:QName" />
+      <xs:element name="faultstring" type="xs:string" />
+      <xs:element name="faultactor" type="xs:anyURI" minOccurs="0" />
+      <xs:element name="detail" type="tns:detail" minOccurs="0" />      
+    </xs:sequence>
+  </xs:complexType>
+
+  <xs:complexType name="detail">
+    <xs:sequence>
+      <xs:any namespace="##any" minOccurs="0" maxOccurs="unbounded" processContents="lax" />
+    </xs:sequence>
+    <xs:anyAttribute namespace="##any" processContents="lax" /> 
+  </xs:complexType>
+
+</xs:schema>
+
+
+
+
+
+
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/AblaufendeAuskunftssperrenSuche.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/AblaufendeAuskunftssperrenSuche.xsd
new file mode 100644
index 00000000..cf5a661e
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/AblaufendeAuskunftssperrenSuche.xsd
@@ -0,0 +1,76 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: AblaufendeAuskunftssperrenSuche.xsd
+Zweck: Definiert Datentypen für die Suche nach Personen mit ablaufenden Auskunftssperren im ZMR
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2005-02-07 tsch: AnzahlSaetze hinzugefügt
+2004-09-28 tsch: Erstellung
+-->
+
+<xsd:schema xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:cio="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+			targetNamespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	
+	<xsd:import namespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" schemaLocation="../eingebunden/EingebundenProxy.xsd"/>		
+	<xsd:import namespace="http://reference.e-government.gv.at/namespace/persondata/de/20040201#" schemaLocation="../eingebunden/PersonDataZMR.xsd"/>
+	<xsd:include schemaLocation="Personenabfrage.xsd"/>
+	
+	<xsd:element name="AblaufendeAuskunftssperrenSucheRequest">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="SperreBis"/>
+				<xsd:element ref="base:AnzahlSaetze"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="AblaufendeAuskunftssperrenSucheResponse">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="AblaufendeAuskunftssperrenSucheAnfrage"/>
+				<xsd:element ref="base:Message"/>
+				<xsd:element ref="AblaufendeAuskunftssperreErgebnis" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="AblaufendeAuskunftssperrenSucheAnfrage">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="SperreBis"/>
+				<xsd:element ref="base:AnzahlSaetze"/>	
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="AblaufendeAuskunftssperreErgebnis" type="AblaufendeAuskunftssperreErgebnisType"/>
+	<xsd:complexType name="AblaufendeAuskunftssperreErgebnisType">
+		<xsd:annotation>
+			<xsd:documentation>Enthält je einen 'PersonErgebnisSatz' pro gefundener Person. Wird keine Person gefunden, befindet sich eine entprechende Text-Message in 'PersonensucheMsg'</xsd:documentation>
+		</xsd:annotation>
+		<xsd:sequence>
+			<xsd:element ref="base:GefundeneSaetze">
+				<xsd:annotation>
+					<xsd:documentation>Gesamtanzahl der in der Datenbank gefundenen Personen</xsd:documentation>
+				</xsd:annotation>
+			</xsd:element>
+			<xsd:element ref="base:SaetzeVon">
+			<xsd:annotation>
+					<xsd:documentation>Beginn-Index dieser Ergebnisliste im Gesamtergebnis (bei Blaettern); Start mit 1</xsd:documentation>
+				</xsd:annotation>			
+			</xsd:element>
+			<xsd:element ref="base:SaetzeBis">
+			<xsd:annotation>
+					<xsd:documentation>Ende-Index dieser Ergebnisliste im Gesamtergebnis (bei Blaettern)</xsd:documentation>
+				</xsd:annotation>			
+			</xsd:element>
+			<xsd:element name="PersonErgebnisSatz" type="PAbfrageErgebnisSatzType" minOccurs="1" maxOccurs="unbounded"/>		
+		</xsd:sequence>
+	</xsd:complexType>
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Adoption.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Adoption.xsd
new file mode 100644
index 00000000..81a29052
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Adoption.xsd
@@ -0,0 +1,63 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: Adoption.xsd
+Zweck: Definiert Datentypen für Adoption einer Person im ZMR
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2005-02-07 tsch: AdoptionInfo optional
+2004-11-25 tsch: Erstellt
+-->
+
+<xsd:schema xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:cio="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+			targetNamespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	
+	<xsd:import namespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" schemaLocation="../eingebunden/EingebundenProxy.xsd"/>
+	<xsd:import namespace="http://reference.e-government.gv.at/namespace/persondata/de/20040201#" schemaLocation="../eingebunden/PersonDataZMR.xsd"/>
+	<xsd:include schemaLocation="../zmr/entities/Person.xsd"/>
+
+	<xsd:element name="AdoptionRequest">
+		<xsd:annotation>
+			<xsd:documentation>Es können die Person und deren abhängige Entities (z.B. Staatsangehoerigkeit) unabhängig geändert werden. Felder, die nicht geschickt werden, bleiben unverändert, leer geschickte Felder werden gelöscht.</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="AdoptionInfo" minOccurs="0"/>
+				<xsd:element ref="PersonReferenz"/>
+				<xsd:element ref="cio:Familienname"/>
+				<xsd:element ref="cio:AlternativName" minOccurs="0"/>				
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="AdoptionResponse">
+		<xsd:annotation>
+			<xsd:documentation>Server-Antwort zur Adoption</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="base:Message"/>
+				<xsd:element ref="PersonErgebnis">
+					<xsd:annotation>
+						<xsd:documentation>Gesamtdatensatz der geänderten (adoptierten) Person (mit EntityIDs der Person und deren abhängigen Entities)</xsd:documentation>
+					</xsd:annotation>
+				</xsd:element>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="AdoptionInfo" type="AdoptionInfoType"/>
+	<xsd:complexType name="AdoptionInfoType">
+		<xsd:annotation>
+			<xsd:documentation>allgemeine Fachliche Informationen zur Adoption</xsd:documentation>
+		</xsd:annotation>
+		<xsd:sequence>
+			<xsd:element ref="base:Von" minOccurs="0"/>
+		</xsd:sequence>
+	</xsd:complexType>
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Adresssuche.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Adresssuche.xsd
new file mode 100644
index 00000000..41dab2e2
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Adresssuche.xsd
@@ -0,0 +1,128 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: Adresssuche.xsd
+Zweck: Definiert Datentypen für die Suche nach offiziellen STATA-Adressen im ZMR
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2009-11-20 mp: +Gebäudeeigenschaft, +Nutzungsart
+2005-06-15 pwag: CQ1370: Suchart ADRESSPRUEFUNG hinzugefügt
+2004-11-15 tsch: Detailgrad Gemeinde hinzugefügt
+2004-07-30 tsch: HauptIdentadresse->HauptIdent; Felder hinzu: Adressstatus, Adressschlüssel, HauptIdent, Hofname, Gebaeudeunterscheidung, GBDUntteil, InfoMeldewesen
+2004-07-08 tsch: Felder Adresszusatz, HauptIdentadresse hinzugefügt
+2004-06-24 tsch: GBRRefkey hinzugefügt
+2004-05-17 tsch: Organisation entfernt
+2004-01-27 tsch: Erstellung
+-->
+
+<xsd:schema  targetNamespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			xmlns:cio="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	 
+	<xsd:import namespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" schemaLocation="../eingebunden/EingebundenProxy.xsd"/>
+	<xsd:import namespace="http://reference.e-government.gv.at/namespace/persondata/de/20040201#" schemaLocation="../eingebunden/PersonDataZMR.xsd"/>
+	
+	<xsd:element name="AdresssucheRequest">
+		<xsd:annotation>
+			<xsd:documentation>Suchdaten für die STATA - Adresssuche im ZMR</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="AdresssucheInfo"/>
+				<xsd:element ref="Adressdaten"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="AdresssucheResponse">
+		<xsd:annotation>
+			<xsd:documentation>Anfragedaten, sowie Suchergebnis oder Text-Meldung (falls nichts gefunden)</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="AdresssucheAnfrage"/>
+				<xsd:element ref="base:Message"/>
+				<!--  gibt an, ob Klaerungsadressen erlaubt sind oder nicht -->
+				<xsd:element name="inclKlaerungsadressen" type="xsd:boolean" minOccurs="0"/>
+				<xsd:element ref="Adresssuchergebnis"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="AdresssucheAnfrage">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="AdresssucheInfo"/>
+				<xsd:element ref="Adressdaten"/>
+			</xsd:sequence>
+		</xsd:complexType>	
+	</xsd:element>
+	
+	<xsd:element name="AdresssucheInfo" type="AdresssucheInfoType"/>
+	<xsd:complexType name="AdresssucheInfoType">
+		<xsd:annotation>
+			<xsd:documentation>Fachliche Informationen zur Adresssuche</xsd:documentation>
+		</xsd:annotation>
+		<xsd:sequence>
+			<xsd:element name="Suchart">
+				<xsd:simpleType>
+					<xsd:restriction base="xsd:string">
+						<xsd:enumeration value="ADRESSSUCHE"/>
+						<xsd:enumeration value="IDENTEADRESSENSUCHE"/>
+						<xsd:enumeration value="ADRESSPRUEFUNG"/>
+					</xsd:restriction>
+				</xsd:simpleType>
+			</xsd:element>
+		</xsd:sequence>
+	</xsd:complexType>	
+	
+	<xsd:element name="Adresssuchergebnis" type="AdresssuchergebnisType"/>
+	<xsd:complexType name="AdresssuchergebnisType">
+		<xsd:sequence>
+			<xsd:element name="Detailgrad">
+				<xsd:annotation>
+					<xsd:documentation>Gibt der Detailgrad der Adressen im Suchergebnis an</xsd:documentation>
+				</xsd:annotation>
+				<xsd:simpleType>
+					<xsd:restriction base="xsd:string">
+						<xsd:enumeration value="Gemeinde"/>
+						<xsd:enumeration value="Ortschaft"/>
+						<xsd:enumeration value="Strassenname"/>
+						<xsd:enumeration value="Orientierungsnummer"/>
+						<xsd:enumeration value="Gebaeudeteil"/>
+						<xsd:enumeration value="Tuer"/>
+						<xsd:enumeration value="Gesamtadresse"/>						
+					</xsd:restriction>
+				</xsd:simpleType>
+			</xsd:element>
+			<xsd:element ref="base:GefundeneSaetze">
+				<xsd:annotation>
+					<xsd:documentation>Gesamtanzahl der gefundenen Sätze</xsd:documentation>
+				</xsd:annotation>
+			</xsd:element>		
+			<xsd:element ref="Adressdaten" minOccurs="0" maxOccurs="unbounded"/>
+		</xsd:sequence>
+	</xsd:complexType>
+
+	<xsd:element name="Adressdaten">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="cio:PostAdresse" minOccurs="0"/>
+				<xsd:element ref="base:Adressstatus" minOccurs="0"/>
+				<xsd:element ref="base:Adressschluessel" minOccurs="0"/>
+				<xsd:element ref="base:HauptIdent" minOccurs="0"/>
+				<xsd:element ref="base:NameZuteil" minOccurs="0"/>		
+				<xsd:element ref="base:Hofname" minOccurs="0"/>
+				<xsd:element ref="base:Gebaeudeunterscheidung" minOccurs="0"/>
+				<xsd:element ref="base:GBDUntteil" minOccurs="0"/>
+				<xsd:element ref="base:InfoMeldewesen" minOccurs="0"/>
+				<xsd:element ref="base:GbdEigenschaft" minOccurs="0"/>
+				<xsd:element ref="base:NtzArt" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>	
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Anwendungsintegration.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Anwendungsintegration.xsd
new file mode 100644
index 00000000..4bdd43c5
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Anwendungsintegration.xsd
@@ -0,0 +1,97 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: Anwendungsintegration.xsd
+Zweck: Definiert Datentypen für den Usecase "ZMR Anwendungsintegration" im ZMR
+Author(s): Ehrenmüller Oliver, ZMR-SU
+
+Aenderungshistorie:
+2007-09-04 teo: erstellt.
+-->
+
+<xsd:schema targetNamespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:cio="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+			
+	<xsd:import namespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" schemaLocation="../eingebunden/EingebundenProxy.xsd"/>
+	<xsd:import namespace="http://reference.e-government.gv.at/namespace/persondata/de/20040201#" schemaLocation="../eingebunden/PersonDataZMR.xsd"/>
+
+	<xsd:include schemaLocation="Personensuche.xsd"/>
+	<xsd:include schemaLocation="Behoerdenabfrage.xsd"/>
+
+	<xsd:element name="AnwendungsintegrationRequest">
+		<xsd:annotation>
+			<xsd:documentation>Suchkriterien für die Anwendungsintegration im ZMR/ERnP (Personendaten + Adressdaten)</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="AnwendungsintegrationInfo"/>
+				<xsd:element ref="PersonKey" minOccurs="0"/>
+				<xsd:element ref="cio:NatuerlichePerson" minOccurs="0"/>
+				<xsd:element ref="cio:PostAdresse" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="AnwendungsintegrationResponse">
+		<xsd:annotation>
+			<xsd:documentation>In der Response werden die Anfragedaten aus dem Request, und das Suchergebnis bzw. eine Text-Meldung geliefert (Falls keine Person gefunden)</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="AnwendungsintegrationAnfrage"/>
+				<xsd:element ref="base:Message"/>
+				<xsd:element ref="AnwendungsintegrationUeberblick" minOccurs="0"/>
+				<xsd:element ref="AnwendungsintegrationDetail" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="AnwendungsintegrationInfo">
+		<xsd:complexType>
+			<xsd:annotation>
+				<xsd:documentation>Fachliche Informationen zur Anwendungsintegration</xsd:documentation>
+			</xsd:annotation>	
+			<xsd:sequence>
+				<xsd:element ref="base:Bezugsfeld"/>
+				<xsd:element name="BezugsfeldDokumente">
+					<xsd:simpleType>
+						<xsd:restriction base="xsd:string">
+							<xsd:enumeration value="BUERGERZUSTIMMUNG"/>
+							<xsd:enumeration value="BUNDESGESETZ"/>
+						</xsd:restriction>
+					</xsd:simpleType>
+				</xsd:element>
+				<xsd:element name="Geburtsurkunde" type="xsd:boolean" minOccurs="0"/>
+				<xsd:element name="Heiratsurkunde" type="xsd:boolean" minOccurs="0"/>
+				<xsd:element name="Staatsbuergerschaftsnachweis" type="xsd:boolean" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="AnwendungsintegrationUeberblick">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="base:AnzahlSaetze"/>
+				<xsd:element ref="PersonUeberblick" minOccurs="1" maxOccurs="unbounded"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="AnwendungsintegrationAnfrage">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="AnwendungsintegrationInfo"/>
+				<xsd:element ref="PersonKey" minOccurs="0"/>
+				<xsd:element ref="cio:NatuerlichePerson" minOccurs="0"/>
+				<xsd:element ref="cio:PostAdresse" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>	
+	</xsd:element>
+
+	<xsd:element name="AnwendungsintegrationDetail" type="PersonErgebnisSatzType"/>
+	
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/AnwendungsintegrationWiederholung.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/AnwendungsintegrationWiederholung.xsd
new file mode 100644
index 00000000..6bbd038d
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/AnwendungsintegrationWiederholung.xsd
@@ -0,0 +1,117 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: AnwendungsintegrationWiederholung.xsd
+Zweck: Definiert Datentypen für den Usecase "ZMR Anwendungsintegration Wiederholungsanfrage" im ZMR
+Author(s): Ehrenmüller Oliver, ZMR-SU
+
+Aenderungshistorie:
+2007-11-28 teo: erstellt.
+-->
+
+<xsd:schema targetNamespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:cio="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+			
+	<xsd:import namespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" schemaLocation="../eingebunden/EingebundenProxy.xsd"/>
+	<xsd:import namespace="http://reference.e-government.gv.at/namespace/persondata/de/20040201#" schemaLocation="../eingebunden/PersonDataZMR.xsd"/>
+
+	<xsd:include schemaLocation="Anwendungsintegration.xsd"/>
+
+	<xsd:element name="AnwendungsintegrationWiederholungRequest">
+		<xsd:annotation>
+			<xsd:documentation>Sammel-Token für die AnwendungsintegrationWiederholung im ZMR/ERnP (Personendaten + Adressdaten)</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="AnwendungsintegrationWiederholungInfo"/>
+				<xsd:element ref="AnwendungsintegrationWiederholungAbfrage" maxOccurs="10"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="AnwendungsintegrationWiederholungInfo">
+		<xsd:complexType>
+			<xsd:annotation>
+				<xsd:documentation>Fachliche Informationen zur AnwendungsintegrationWiederholung</xsd:documentation>
+			</xsd:annotation>	
+			<xsd:sequence>
+				<xsd:element ref="base:Bezugsfeld"/>
+				<xsd:element name="Ergebnisoption">
+					<xsd:simpleType>
+						<xsd:restriction base="xsd:string">
+							<xsd:enumeration value="PERSONENDATEN"/>
+							<xsd:enumeration value="PERSONENDATENBPK"/>
+							<xsd:enumeration value="BPK"/>
+						</xsd:restriction>
+					</xsd:simpleType>
+				</xsd:element>
+				<xsd:element name="Verfahrensbereich" minOccurs="0">
+					<xsd:annotation>
+						<xsd:documentation>Verfahrensbereich inkl. Prefix für den die bPK errechnet werden soll (zb. urn:publicid:gv.at:cdid+PV)</xsd:documentation>
+					</xsd:annotation>
+					<xsd:simpleType>
+						<xsd:restriction base="xsd:string">
+							<xsd:whiteSpace value="collapse"/>
+							<xsd:minLength value="26"/>
+							<xsd:maxLength value="29"/>	
+						</xsd:restriction>
+					</xsd:simpleType>			
+				</xsd:element>
+				<xsd:element name="Fremdbereich" minOccurs="0" maxOccurs="10">
+					<xsd:annotation>
+						<xsd:documentation>Fremd-bPKs die miterzeugt werden sollen. (zb. urn:publicid:gv.at:ecdid+BMI+ZP)</xsd:documentation>
+					</xsd:annotation>
+					<xsd:simpleType>
+						<xsd:restriction base="xsd:string">
+							<xsd:whiteSpace value="collapse"/>
+							<xsd:minLength value="28"/>
+							<xsd:maxLength value="50"/>	
+						</xsd:restriction>
+					</xsd:simpleType>
+				</xsd:element>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="AnwendungsintegrationWiederholungAbfrage">
+		<xsd:annotation>
+			<xsd:documentation>Suchkriterien für die Anwendungsintegration/Wiederholungsabfrage im ZMR/ERnP (Personendaten + Adressdaten)</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="cio:NatuerlichePerson" minOccurs="0"/>
+				<xsd:element ref="cio:PostAdresse" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+
+	<xsd:element name="AnwendungsintegrationWiederholungResponse">
+		<xsd:annotation>
+			<xsd:documentation>In der Response werden die Anfragedaten aus dem Request, und das Suchergebnis bzw. eine Text-Meldung geliefert (Falls keine Person gefunden)</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="AnwendungsintegrationWiederholungAnfrage"/>
+				<xsd:element ref="base:Message"/>
+				<xsd:element ref="AnwendungsintegrationWiederholungDetail" minOccurs="0" maxOccurs="10"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="AnwendungsintegrationWiederholungAnfrage">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="AnwendungsintegrationWiederholungInfo"/>
+				<xsd:element ref="AnwendungsintegrationWiederholungAbfrage" maxOccurs="10"/>
+			</xsd:sequence>
+		</xsd:complexType>	
+	</xsd:element>
+
+	<xsd:element name="AnwendungsintegrationWiederholungDetail" type="PersonErgebnisSatzType"/>
+	
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/AuskunftssperreAendern.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/AuskunftssperreAendern.xsd
new file mode 100644
index 00000000..9e29f2f2
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/AuskunftssperreAendern.xsd
@@ -0,0 +1,55 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: AuskunftssperreAendern.xsd
+Zweck: Definiert Datentypen für den Usecase "Wohnsitz Auskunftssperre Ändern" im ZMR
+Author(s): Ehrenmüller Oliver, ZMR-SU
+
+Aenderungshistorie:
+2009-08-06 teo: Erstellt
+-->
+
+<xsd:schema targetNamespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns:cio="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+			xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	 
+	<xsd:import namespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" schemaLocation="../eingebunden/EingebundenProxy.xsd"/>
+	<xsd:import namespace="http://reference.e-government.gv.at/namespace/persondata/de/20040201#" schemaLocation="../eingebunden/PersonDataZMR.xsd"/>
+	<xsd:include schemaLocation="../zmr/entities/Person.xsd"/>
+	<xsd:include schemaLocation="../zmr/entities/Meldung.xsd"/>
+	<xsd:include schemaLocation="../zmr/entities/Auskunftssperre.xsd"/>
+	
+	<xsd:element name="AuskunftssperreAendernRequest">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="PersonReferenz"/>
+				<xsd:element ref="MeldungReferenz"/>
+				<xsd:element ref="AuskunftssperreAenderung" minOccurs="0" maxOccurs="unbounded"/>
+				<xsd:element ref="AuskunftssperreAnlage" minOccurs="0" maxOccurs="unbounded"/>			
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="AuskunftssperreAendernResponse">
+		<xsd:complexType>
+			<xsd:annotation>
+				<xsd:documentation>Server-Antwort zur Änderung von Auskunftssperren auf Meldungen</xsd:documentation>
+			</xsd:annotation>
+			<xsd:sequence>
+				<xsd:element ref="base:Message"/>
+				<xsd:sequence minOccurs="0">	
+					<xsd:element ref="PersonReferenz"/>
+					<xsd:element ref="MeldungErgebnis">
+						<xsd:annotation>
+							<xsd:documentation>Gesamtdatensatz der korrigierten Meldung (mit EntityIDs der Meldung und deren abhängigen Entities)</xsd:documentation>
+						</xsd:annotation>			
+					</xsd:element>
+				</xsd:sequence>	
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/AvisoAendern.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/AvisoAendern.xsd
new file mode 100644
index 00000000..37a3ac98
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/AvisoAendern.xsd
@@ -0,0 +1,93 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: AvisoAendern.xsd
+Zweck: Definiert Datentypen für die Änderung von Avisi
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2004-11-26 tsch: Avisotreffer, AvisoBeenden hinzugefügt
+2004-04-13 tsch: Erstellung
+-->
+
+<xsd:schema  targetNamespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			xmlns:cio="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	
+	<xsd:include schemaLocation="../zmr/entities/Aviso.xsd"/>
+	<xsd:import namespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" schemaLocation="../eingebunden/EingebundenProxy.xsd"/>
+	
+	<xsd:element name="AvisoAendernRequest">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="AvisoAendernInfo"/>
+				<xsd:element ref="AvisoReferenz"/>
+				<xsd:choice>
+					<xsd:sequence>
+						<xsd:element ref="AvisoAenderung"/>
+						<xsd:element ref="AvisoTrefferAenderung" minOccurs="0" maxOccurs="unbounded"/>
+					</xsd:sequence>
+					<xsd:sequence>
+						<xsd:element ref="AvisoTrefferAenderung" maxOccurs="unbounded"/>
+					</xsd:sequence>					
+				</xsd:choice>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="AvisoAendernResponse">
+		<xsd:annotation>
+			<xsd:documentation>Server-Antwort zur Avisonänderung</xsd:documentation>
+		</xsd:annotation>	
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="base:Message"/>	
+				<xsd:element ref="AvisoErgebnis">
+					<xsd:annotation>
+						<xsd:documentation>Gesamtdatensatz des geänderten Aviso</xsd:documentation>
+					</xsd:annotation>
+				</xsd:element>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="AvisoBeendenRequest">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="AvisoReferenz" minOccurs="1" maxOccurs="unbounded"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="AvisoBeendenResponse">
+		<xsd:annotation>
+			<xsd:documentation>Server-Antwort zur Avisobeendugung</xsd:documentation>
+		</xsd:annotation>	
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="base:Message"/>
+				<xsd:element ref="AvisoErgebnis" minOccurs="1" maxOccurs="unbounded">
+					<xsd:annotation>
+						<xsd:documentation>Gesamtdatensätze der beendeten Avisi</xsd:documentation>
+					</xsd:annotation>
+				</xsd:element>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="AvisoAendernInfo" type="AvisoAendernInfoType"/>
+	<xsd:complexType name="AvisoAendernInfoType">
+		<xsd:annotation>
+			<xsd:documentation>Fachliche Informationen zur Avisoaenderung</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexContent>
+			<xsd:extension base="base:InfoFachlichType">
+							
+			</xsd:extension>
+		</xsd:complexContent>
+		
+	</xsd:complexType>
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/AvisoAnlegen.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/AvisoAnlegen.xsd
new file mode 100644
index 00000000..92c37432
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/AvisoAnlegen.xsd
@@ -0,0 +1,60 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: AvisoAnlegen.xsd
+Zweck: Definiert Datentypen für die Anlage von Avisi
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2004-04-13 tsch: Erstellung
+-->
+
+<xsd:schema  targetNamespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			xmlns:cio="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	
+	<xsd:include schemaLocation="../zmr/entities/Aviso.xsd"/>
+	<xsd:import namespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" schemaLocation="../eingebunden/EingebundenProxy.xsd"/>
+	
+	<xsd:element name="AvisoAnlegenRequest">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="AvisoAnlegenInfo"/>
+				<xsd:element ref="AvisoAnlage"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="AvisoAnlegenResponse">
+		<xsd:annotation>
+			<xsd:documentation>Server-Antwort zur Avisonanlage</xsd:documentation>
+		</xsd:annotation>	
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="base:Message"/>	
+				<xsd:element ref="AvisoErgebnis">
+					<xsd:annotation>
+						<xsd:documentation>Gesamtdatensatz des im ZMR angelegten Aviso</xsd:documentation>
+					</xsd:annotation>
+				</xsd:element>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="AvisoAnlegenInfo" type="AvisoAnlegenInfoType"/>
+	<xsd:complexType name="AvisoAnlegenInfoType">
+		<xsd:annotation>
+			<xsd:documentation>Fachliche Informationen zur Avisoanlage</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexContent>
+			<xsd:extension base="base:InfoFachlichType">
+							
+			</xsd:extension>
+		</xsd:complexContent>
+		
+	</xsd:complexType>	
+	
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/AvisoFreigeben.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/AvisoFreigeben.xsd
new file mode 100644
index 00000000..6291dd58
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/AvisoFreigeben.xsd
@@ -0,0 +1,69 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: AvisoFreigeben.xsd
+Zweck: Definiert Datentypen für die Freigabe von Avisi durch die Meldebehörde
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2005-01-14 tsch: Freigabe Suche erweitert
+2004-11-26 tsch: Erstellung
+-->
+
+<xsd:schema  targetNamespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			xmlns:cio="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	
+	
+	<xsd:import namespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" schemaLocation="../eingebunden/EingebundenProxy.xsd"/>
+	<xsd:include schemaLocation="../zmr/Avisosuche.xsd"/>
+
+	<xsd:element name="AvisoFreigebenSucheRequest">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="base:AnzahlSaetze"/>
+				<xsd:element ref="AvisoSuche" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="AvisoFreigebenSucheResponse">
+		<xsd:annotation>
+			<xsd:documentation>Server-Antwort mit den zu aktivierenden Avisi</xsd:documentation>
+		</xsd:annotation>	
+		<xsd:complexType>
+			<xsd:sequence>	
+				<xsd:element ref="base:Message"/>
+				<xsd:element ref="Avisosuchergebnis" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="AvisoFreigebenRequest">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element name="Freigegeben" type="xsd:boolean"/>
+				<xsd:element ref="AvisoReferenz" minOccurs="1" maxOccurs="unbounded"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="AvisoFreigebenResponse">
+		<xsd:annotation>
+			<xsd:documentation>Server-Antwort zur Aviso-Aktivierung</xsd:documentation>
+		</xsd:annotation>	
+		<xsd:complexType>
+			<xsd:sequence>	
+				<xsd:element ref="base:Message"/>
+				<xsd:element ref="AvisoErgebnis" minOccurs="1" maxOccurs="unbounded">
+					<xsd:annotation>
+						<xsd:documentation>Gesamtdatensätze der freigegebenen/abgelehnten Avisi</xsd:documentation>
+					</xsd:annotation>
+				</xsd:element>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>		
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Avisosuche.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Avisosuche.xsd
new file mode 100644
index 00000000..82e48c49
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Avisosuche.xsd
@@ -0,0 +1,124 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: Avisosuche.xsd
+Zweck: Definiert Datentypen für die Avisosuche
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2005-01-14 tsch: Feld NurHistorische hinzugefügt
+2004-11-26 tsch: Erweiterung um Avisotreffer
+2004-06-22 tsch: SaetzeVon und SaetzeBis im Ergebnis
+2004-05-17 tsch: Organisation entfernt
+2004-04-06 tsch: Erstellung
+-->
+
+<xsd:schema  targetNamespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			xmlns:cio="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	
+	<xsd:include schemaLocation="../zmr/entities/Aviso.xsd"/>
+	<xsd:import namespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" schemaLocation="../eingebunden/EingebundenProxy.xsd"/>
+	<xsd:import namespace="http://reference.e-government.gv.at/namespace/persondata/de/20040201#" schemaLocation="../eingebunden/PersonDataZMR.xsd"/>
+	
+	<xsd:element name="AvisosucheRequest">
+		<xsd:annotation>
+			<xsd:documentation>Suchedaten fuer die Suche nach existierenden Avisi, sowie nach Personen im ZPR</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="AvisosucheInfo"/>
+				<xsd:element ref="AvisoSuche" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="AvisosucheResponse">
+		<xsd:annotation>
+			<xsd:documentation>Anfragedaten, sowie Suchergebnis oder Text-Meldung (falls nichts gefunden)</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="AvisosucheAnfrage"/>
+				<xsd:element ref="base:Message"/>
+				<xsd:element ref="Avisosuchergebnis" minOccurs="0"/>
+				<xsd:element ref="PersonenAbfrageErgebnis" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="AvisosucheAnfrage">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="AvisosucheInfo"/>
+				<xsd:element ref="AvisoSuche" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>	
+	</xsd:element>
+	
+	<xsd:element name="AvisosucheInfo" type="AvisosucheInfoType"/>
+	<xsd:complexType name="AvisosucheInfoType">
+		<xsd:annotation>
+			<xsd:documentation>Fachliche Informationen zur Avisosuche</xsd:documentation>
+		</xsd:annotation>
+		<xsd:sequence>
+			<xsd:element ref="base:InclusivHistorie"/>
+			<xsd:element ref="base:Formalisiert"/>
+			<xsd:element name="InclusivSucheZMR" type="xsd:boolean"/>
+			<xsd:element name="NurAvisoTreffer" type="xsd:boolean"/>
+			<xsd:element name="UnbearbeiteteAnzeigen" type="xsd:boolean"/>
+			<xsd:element name="NurHistorische" type="xsd:boolean"/>
+			<xsd:element ref="base:AnzahlSaetze"/>
+		</xsd:sequence>
+	</xsd:complexType>	
+	
+	<xsd:element name="AvisoSuche" type="AvisoSucheType"/>
+	<xsd:complexType name="AvisoSucheType">
+		<xsd:annotation>
+			<xsd:documentation>Aviso-Struktur für die Suche nach Avisi bzw. Personen</xsd:documentation>
+		</xsd:annotation>
+		<xsd:sequence>
+			<xsd:element ref="AvisoAktenzahl" minOccurs="0"/>
+			<xsd:element ref="base:BehoerdenNr" minOccurs="0"/>
+			<xsd:element ref="AvisoZahl" minOccurs="0"/>
+			<xsd:element ref="AvisoSuchdaten" minOccurs="0"/>
+			<xsd:element ref="AvisoStatus" minOccurs="0"/>
+			<xsd:element name="AblaufZeitraum" minOccurs="0">
+				<xsd:complexType>
+					<xsd:sequence>
+						<xsd:element name="Von" type="base:TimestampType"/>
+						<xsd:element name="Bis" type="base:TimestampType"/>
+					</xsd:sequence>
+				</xsd:complexType>
+			</xsd:element>
+		</xsd:sequence>
+	</xsd:complexType>
+
+	<xsd:element name="Avisosuchergebnis" type="AvisosuchergebnisType"/>
+	<xsd:complexType name="AvisosuchergebnisType">
+		<xsd:annotation>
+			<xsd:documentation>Aviso-Struktur für Neuanlagen von Avisi im ZMR</xsd:documentation>
+		</xsd:annotation>
+		<xsd:sequence>
+			<xsd:element ref="base:GefundeneSaetze">
+				<xsd:annotation>
+					<xsd:documentation>Gesamtanzahl der in der Datenbank gefundenen Avisi</xsd:documentation>
+				</xsd:annotation>
+			</xsd:element>
+			<xsd:element ref="base:SaetzeVon">
+			<xsd:annotation>
+					<xsd:documentation>Beginn-Index dieser Ergebnisliste im Gesamtergebnis (bei Blaettern); Start mit 1</xsd:documentation>
+				</xsd:annotation>			
+			</xsd:element>
+			<xsd:element ref="base:SaetzeBis">
+			<xsd:annotation>
+					<xsd:documentation>Ende-Index dieser Ergebnisliste im Gesamtergebnis (bei Blaettern)</xsd:documentation>
+				</xsd:annotation>			
+			</xsd:element>			
+			<xsd:element ref="AvisoErgebnis" minOccurs="1" maxOccurs="unbounded"/>						
+		</xsd:sequence>
+	</xsd:complexType>	
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/BKMeldeauskunft.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/BKMeldeauskunft.xsd
new file mode 100644
index 00000000..b82fae63
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/BKMeldeauskunft.xsd
@@ -0,0 +1,69 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: BKMeldeauskunft.xsd
+Zweck: Definiert Datentypen für die Meldeauskunft mit Bür aus dem ZMR
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2004-10-27 tsch: Meldeauskunft aus Mussfeld im Ergebnis
+2004-05-17 tsch: ZMR-Zahl hinzugefügt
+2004-04-01 tsch: Erstellung
+-->
+
+<xsd:schema xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:cio="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+			targetNamespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+			
+	<xsd:import namespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" schemaLocation="../eingebunden/EingebundenProxy.xsd"/>
+	<xsd:import namespace="http://reference.e-government.gv.at/namespace/persondata/de/20040201#" schemaLocation="../eingebunden/PersonDataZMR.xsd"/>
+	
+	<xsd:include schemaLocation="Meldeauskunft.xsd"/>
+	
+	<xsd:element name="BKMeldeauskunftRequest">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="BKMeldeauskunftInfo"/>
+				<xsd:element ref="base:ZMRZahl" minOccurs="0"/>
+				<xsd:element ref="cio:NatuerlichePerson"/>
+				<xsd:element ref="cio:PostAdresse" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="BKMeldeauskunftResponse">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="BKMeldeauskunftAnfrage"/>
+				<xsd:element ref="base:Message"/>
+				<xsd:element ref="Meldeauskunft" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="BKMeldeauskunftAnfrage">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="BKMeldeauskunftInfo"/>
+				<xsd:element ref="base:ZMRZahl" minOccurs="0"/>	
+				<xsd:element ref="cio:NatuerlichePerson" minOccurs="0"/>
+				<xsd:element ref="cio:PostAdresse" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>	
+	</xsd:element>
+
+	<xsd:element name="BKMeldeauskunftInfo" type="BKMeldeauskunftInfoType"/>
+	<xsd:complexType name="BKMeldeauskunftInfoType">
+		<xsd:annotation>
+			<xsd:documentation>allgemeine Fachliche Informationen für die Meldeauskunft</xsd:documentation>
+		</xsd:annotation>
+		<xsd:sequence>
+			<xsd:element ref="base:Bezugsfeld"/>
+			<xsd:element ref="base:BPKPersonInfo"/>
+		</xsd:sequence>
+	</xsd:complexType>
+	
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/BPKPruefung.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/BPKPruefung.xsd
new file mode 100644
index 00000000..eb9b3798
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/BPKPruefung.xsd
@@ -0,0 +1,76 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: BPKPruefung.xsd
+Zweck: Definiert Datentypen für die BPK-Prüfung im ZMR
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2005-05-24 tsch: Erstellung
+-->
+
+<xsd:schema xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:cio="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+			targetNamespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	
+	<xsd:import namespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" schemaLocation="../eingebunden/EingebundenProxy.xsd"/>		
+	<xsd:import namespace="http://reference.e-government.gv.at/namespace/persondata/de/20040201#" schemaLocation="../eingebunden/PersonDataZMR.xsd"/>
+	
+	
+	<xsd:element name="BPKPruefungRequest">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="BPKPruefungInfo"/>
+				<xsd:element ref="base:Bereichskennung"/>
+				<xsd:element ref="base:BPK"/>			
+				<xsd:element ref="cio:NatuerlichePerson"/>	
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="BPKPruefungResponse">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="BPKPruefungAnfrage"/>
+				<xsd:element ref="base:Message"/>
+				<xsd:element ref="BPKPruefungErgebnis" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="BPKPruefungAnfrage">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="BPKPruefungInfo"/>
+				<xsd:element ref="base:Bereichskennung"/>
+				<xsd:element ref="base:BPK"/>
+				<xsd:element ref="cio:NatuerlichePerson"/>
+			</xsd:sequence>
+		</xsd:complexType>	
+	</xsd:element>
+
+	<xsd:element name="BPKPruefungInfo" type="BPKPruefungInfoType"/>
+	<xsd:complexType name="BPKPruefungInfoType">
+		<xsd:annotation>
+			<xsd:documentation>allgemeine Fachliche Informationen für die BPK-Pruefung</xsd:documentation>
+		</xsd:annotation>
+		<xsd:sequence>
+			<xsd:element ref="base:Bezugsfeld"/>		
+		</xsd:sequence>
+	</xsd:complexType>
+	
+	
+	<xsd:element name="BPKPruefungErgebnis">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="cio:NatuerlichePerson" minOccurs="0"/>
+				<xsd:element ref="cio:PostAdresse" minOccurs="0" maxOccurs="unbounded"/>
+				<xsd:element name="AktMeldesatz" type="xsd:boolean"/>
+				<xsd:element ref="base:GemeldetBis" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>	
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Behoerdenabfrage.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Behoerdenabfrage.xsd
new file mode 100644
index 00000000..6e764562
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Behoerdenabfrage.xsd
@@ -0,0 +1,126 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: Behoerdenabfrage.xsd
+Zweck: Definiert Datentypen für die Behoerdenabfrage des ZMR
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2005-01-04 tsch: Feld Personendaten in BehoerdenabfrageDetail optional für Negativdruckauskunft
+2004-12-13 tsch: StandarddokumenteLiefern hinzugefügt
+2004-08-02 tsch: Erstellung
+-->
+
+<xsd:schema xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:cio="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+			targetNamespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	
+	<xsd:import namespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" schemaLocation="../eingebunden/EingebundenProxy.xsd"/>		
+	<xsd:import namespace="http://reference.e-government.gv.at/namespace/persondata/de/20040201#" schemaLocation="../eingebunden/PersonDataZMR.xsd"/>
+	
+	<xsd:include schemaLocation="Personensuche.xsd"/>
+	
+	<xsd:element name="BehoerdenabfrageRequest">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="BehoerdenabfrageInfo"/>
+				<xsd:element ref="PersonKey" minOccurs="0"/>
+				<xsd:element ref="base:ZMRZahl" minOccurs="0"/>					
+				<xsd:element ref="cio:NatuerlichePerson" minOccurs="0"/>
+				<xsd:element ref="cio:PostAdresse" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="BehoerdenabfrageResponse">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="BehoerdenabfrageAnfrage"/>
+				<xsd:element ref="base:Message"/>
+				<xsd:choice minOccurs="0">
+					<xsd:element ref="BehoerdenabfrageUeberblick"/>
+					<xsd:element ref="BehoerdenabfrageDetail"/>
+				</xsd:choice>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="BehoerdenabfrageAnfrage">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="BehoerdenabfrageInfo"/>
+				<xsd:element ref="PersonKey" minOccurs="0"/>
+				<xsd:element ref="base:ZMRZahl" minOccurs="0"/>	
+				<xsd:element ref="cio:NatuerlichePerson" minOccurs="0"/>
+				<xsd:element ref="cio:PostAdresse" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>	
+	</xsd:element>
+
+	<xsd:element name="BehoerdenabfrageInfo" type="BehoerdenabfrageInfoType"/>
+	<xsd:complexType name="BehoerdenabfrageInfoType">
+		<xsd:annotation>
+			<xsd:documentation>allgemeine Fachliche Informationen für die Behördenabfrage</xsd:documentation>
+		</xsd:annotation>
+		<xsd:sequence>
+			<xsd:element ref="base:Bezugsfeld" minOccurs="0"/>
+			<xsd:element name="BehoerdenabfrageAction">
+				<xsd:simpleType>
+					<xsd:restriction base="xsd:string">
+						<xsd:enumeration value="BUNDGESETZ"/>
+						<xsd:enumeration value="SONSTIGES"/>
+					</xsd:restriction>
+				</xsd:simpleType>
+			</xsd:element>
+			<xsd:element name="StandarddokumenteLiefern" minOccurs="0">
+				<xsd:simpleType>
+					<xsd:restriction base="xsd:string">
+						<xsd:enumeration value="BUERGER"/>
+						<xsd:enumeration value="GESETZ"/>
+					</xsd:restriction>
+				</xsd:simpleType>
+			</xsd:element>			
+			<xsd:element ref="base:InclusivHistorie"/>
+			<xsd:element ref="base:Formalisiert"/>
+			<xsd:element ref="base:ErstellePDF" minOccurs="0"/>
+			<xsd:element name="berechneBpk" type="xsd:boolean" default="false" minOccurs="0"/>
+		</xsd:sequence>
+	</xsd:complexType>
+	
+	<xsd:element name="BehoerdenabfrageUeberblick">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="base:AnzahlSaetze"/>
+				<xsd:element ref="PersonUeberblick" minOccurs="1" maxOccurs="unbounded"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="PersonUeberblick">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="PersonKey" />
+				<xsd:element ref="cio:Geburtsdatum" />
+				<xsd:element ref="cio:Geburtsort" minOccurs="0" />
+				<xsd:element ref="cio:Postleitzahl" minOccurs="0" />
+				<xsd:element ref="cio:Ortschaft" minOccurs="0" />
+				<xsd:element ref="cio:Gemeinde" minOccurs="0" />
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="BehoerdenabfrageDetail">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="Personendaten" minOccurs="0"/>
+				<xsd:element ref="Meldedaten" minOccurs="0" maxOccurs="unbounded"/>				
+				<xsd:element name="PDFDaten" type="xsd:base64Binary"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="PersonKey" type="base:IDType"/>
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/BehoerdenattributeAendern.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/BehoerdenattributeAendern.xsd
new file mode 100644
index 00000000..aa4b2bbf
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/BehoerdenattributeAendern.xsd
@@ -0,0 +1,68 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: BehoerdenattributeAendern.xsd
+Zweck: Definiert Datentypen für Änderungen an den Behördenattribute der Meldungen im ZMR
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2004-09-27 tsch: Erstellt
+-->
+
+<xsd:schema xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:cio="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+			targetNamespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	
+	<xsd:import namespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" schemaLocation="../eingebunden/EingebundenProxy.xsd"/>
+	<xsd:include schemaLocation="../zmr/entities/Person.xsd"/>
+	<xsd:include schemaLocation="../zmr/entities/Meldung.xsd"/>
+
+	<xsd:element name="BehoerdenattributeAendernRequest">
+		<xsd:annotation>
+			<xsd:documentation>
+			Referenz-Daten der betroffenen Person und der Meldung, sowie die geänderten Behördenattribute.
+			Nicht übermittelte Felder bleiben unverändert, Felder, die als Leer-Tags geschickt werden, werden gelöscht.
+			</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="BehoerdenattributeAendernInfo"/>
+				<xsd:element ref="PersonReferenz"/>
+				<xsd:element ref="MeldungReferenz"/>
+				<xsd:element name="BehoerdenattributeSetzen" type="BehoerdenattributeSetzenType"/>	
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="BehoerdenattributeAendernResponse">
+		<xsd:annotation>
+			<xsd:documentation>Server-Antwort zum Änderungsvorgang</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="base:Message"/>
+				<xsd:element ref="PersonReferenz"/>
+				<xsd:element ref="MeldungErgebnis">
+					<xsd:annotation>
+						<xsd:documentation>Gesamtdatensatz der geänderten Meldung (geänderte Behördenattribute)</xsd:documentation>
+					</xsd:annotation>			
+				</xsd:element>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="BehoerdenattributeAendernInfo" type="BehoerdenattributeAendernInfoType"/>
+	<xsd:complexType name="BehoerdenattributeAendernInfoType">
+		<xsd:annotation>
+			<xsd:documentation>allgemeine Fachliche Informationen zur Änderung der Behördenattribute</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexContent>
+			<xsd:extension base="base:InfoFachlichType">
+							
+			</xsd:extension>
+		</xsd:complexContent>
+	</xsd:complexType>
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Bestandsaenderungen.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Bestandsaenderungen.xsd
new file mode 100644
index 00000000..8abbbedf
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Bestandsaenderungen.xsd
@@ -0,0 +1,140 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: Zuzugsbestaetigung.xsd
+Zweck: Definiert Datentypen für die Zuzugsbetätigungen aus dem ZMR
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2005-01-11 tsch: Feld InclusiveAdressen hinzugefügt
+2004-08-23 tsch: Kapselung der Bestandsänderungssätze im Element Bestandsaenderung
+2004-08-20 tsch: GeburtsdatumVon, GeburtsdatumBis, Geschlecht in Anforderung optional
+2004-08-17 tsch: Erstellung
+-->
+
+<xsd:schema targetNamespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:cio="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+			
+
+	<xsd:import namespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" schemaLocation="../eingebunden/EingebundenProxy.xsd"/>
+	<xsd:import namespace="http://reference.e-government.gv.at/namespace/persondata/de/20040201#" schemaLocation="../eingebunden/PersonDataZMR.xsd"/>
+	
+	<xsd:element name="BestandsaenderungenRequest">
+		<xsd:annotation>
+			<xsd:documentation>Anfragedaten der Bestandsaenderungen-Anforderung</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="BestandsaenderungenInfo"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="BestandsaenderungenResponse">
+		<xsd:annotation>
+			<xsd:documentation>In der Response werden die Anfragedaten aus dem Request und das Abgleichergebnis geliefert.</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="BestandsaenderungenAnfrage"/>
+				<xsd:element ref="base:Message"/>
+				<xsd:element ref="Bestandsaenderungen" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="BestandsaenderungenInfo" type="BestandsaenderungenInfoType"/>
+	
+	<xsd:complexType name="BestandsaenderungenInfoType">
+		<xsd:sequence>
+			<xsd:element name="AenderungenVon" type="base:TimestampType"/>
+			<xsd:element name="AenderungenBis" type="base:TimestampType"/>
+			<xsd:element name="InclusiveAdressen" type="xsd:boolean"/>
+			<xsd:element name="GeburtsdatumVon" type="base:DatumType" minOccurs="0"/>
+			<xsd:element name="GeburtsdatumBis" type="base:DatumType" minOccurs="0"/>
+			<xsd:element ref="cio:Geschlecht" minOccurs="0"/>
+			<xsd:element ref="Veraenderung" maxOccurs="unbounded"/>
+		</xsd:sequence>
+	</xsd:complexType>
+	
+	<xsd:element name="BestandsaenderungenAnfrage">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="BestandsaenderungenInfo"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="Bestandsaenderungen" type="BestandsaenderungenType"/>
+	
+	<xsd:complexType name="BestandsaenderungenType">
+		<xsd:sequence>
+			<xsd:element ref="base:GefundeneSaetze">
+				<xsd:annotation>
+					<xsd:documentation>Gesamtanzahl der Bestandsaenderung-Saetze für diese Anfrage</xsd:documentation>
+				</xsd:annotation>
+			</xsd:element>
+			<xsd:element ref="base:AnzahlSaetze">
+				<xsd:annotation>
+					<xsd:documentation>Anzahl der im File gelieferten Bestandsaenderung-Saetze</xsd:documentation>
+				</xsd:annotation>			
+			</xsd:element>
+			<xsd:element ref="BestandsaenderungSatz" maxOccurs="unbounded"/>
+		</xsd:sequence>
+	</xsd:complexType>	
+
+	<xsd:element name="BestandsaenderungSatz" type="BestandsaenderungSatzType"/>
+	<xsd:complexType name="BestandsaenderungSatzType">
+		<xsd:sequence>
+			<xsd:element name="Aenderungszeitpunkt" type="base:TimestampType"/>
+			<xsd:element ref="base:ZMRZahl"/>
+			<xsd:element ref="cio:Identification" minOccurs="0" maxOccurs="3"/>
+			<xsd:element ref="KitQuelleBpk" minOccurs="0"/>
+			<xsd:element ref="KitZielBpk" minOccurs="0"/>
+			<xsd:element ref="cio:Familienname"/>
+			<xsd:element ref="cio:Geburtsdatum"/>
+			<xsd:element ref="cio:Geschlecht"/>
+			<xsd:element ref="Bestandsaenderung" maxOccurs="unbounded"/>
+		</xsd:sequence>
+	</xsd:complexType>
+	
+	<xsd:element name="KitQuelleBpk">
+		<xsd:complexType>
+			<xsd:sequence>
+			  <xsd:element ref="cio:Identification" minOccurs="0" maxOccurs="3"/>
+			  </xsd:sequence>
+		</xsd:complexType>				
+	</xsd:element>
+		
+	<xsd:element name="KitZielBpk">
+		<xsd:complexType>
+			<xsd:sequence>
+			  <xsd:element ref="cio:Identification" minOccurs="0" maxOccurs="3"/>
+			  </xsd:sequence>
+		</xsd:complexType>				
+	</xsd:element>
+		
+	<xsd:element name="Veraenderung">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="1"/>
+				<xsd:maxLength value="50"/>
+			</xsd:restriction>
+		</xsd:simpleType>				
+	</xsd:element>
+	
+					
+	<xsd:element name="Bestandsaenderung">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="Veraenderung"/>
+				<xsd:element ref="cio:PostAdresse" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/BusinesspartnerAnfrage.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/BusinesspartnerAnfrage.xsd
new file mode 100644
index 00000000..249aa0c0
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/BusinesspartnerAnfrage.xsd
@@ -0,0 +1,131 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: BusinesspartnerAnfrage.xsd
+Zweck: Definiert Datentypen fuer alle BusinesspartnerAbfragen im ZMR
+       soll Businesspartnerabfrage.xsd und BusinesspartnerabfrageErweitert.xsd ersetzen
+Author(s): Richard Mayrhofer
+-->
+
+<xsd:schema xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:cio="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+			targetNamespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+
+	<xsd:include schemaLocation="../zmr/Businesspartnerabfrage.xsd"/>
+	<xsd:import namespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" schemaLocation="../eingebunden/EingebundenProxy.xsd"/>
+	<xsd:import namespace="http://reference.e-government.gv.at/namespace/persondata/de/20040201#" schemaLocation="../eingebunden/PersonDataZMR.xsd"/>
+
+	<xsd:element name="BusinesspartnerAnfrageRequest">
+		<xsd:complexType>
+			<xsd:sequence minOccurs="1">
+				<xsd:element ref="BusinesspartnerAnfrage"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="BusinesspartnerAnfrage">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element name="AnfrageGrund" type="xsd:string" />
+				<xsd:element ref="AnfrageOptionen" minOccurs="1"/>
+				<xsd:element ref="AnfrageArgumente" minOccurs="1"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="AnfrageArgumente">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="base:ZMRZahl" minOccurs="0"/>
+				<xsd:sequence minOccurs="0">
+					<xsd:element ref="base:Bereichskennung"/>
+					<xsd:element ref="base:BPK"/>
+				</xsd:sequence>
+				<xsd:element ref="cio:NatuerlichePerson"/>
+				<xsd:element ref="cio:PostAdresse" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="AnfrageOptionen">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element name="mitPDF" type="xsd:boolean" minOccurs="0"/>
+				<xsd:element ref="AnfrageRegister"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="AnfrageRegister">
+		<xsd:complexType>
+			<xsd:sequence minOccurs="1" maxOccurs="2">
+				<xsd:element name="Register" type="RegisterValues"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:simpleType name="RegisterValues">
+		<xsd:restriction base="xsd:string">
+			<xsd:enumeration value="ZMR"/>
+			<xsd:enumeration value="ZPS"/>
+		</xsd:restriction>
+	</xsd:simpleType>
+
+	<xsd:element name="BusinesspartnerAnfrageResponse">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="BusinesspartnerAnfrage"/>
+				<xsd:element ref="base:Message"/>
+				<xsd:element ref="BusinesspartnerAnfrageErgebnis" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="BusinesspartnerAnfrageErgebnis">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="Person"/>
+				<xsd:element ref="Meldung" minOccurs="0" maxOccurs="unbounded"/>
+				<xsd:element name="PDFDokument" type="xsd:base64Binary" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="Meldung">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="cio:PostAdresse"/>
+				<xsd:element ref="base:GemeldetVon"  minOccurs="0"/>
+				<xsd:element ref="base:GemeldetBis" minOccurs="0"/>
+				<xsd:element name="istAktuell" type="xsd:boolean"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="Person">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="cio:NatuerlichePerson" minOccurs="0"/>
+				<xsd:element name="istAktuell" type="xsd:boolean"/>
+				<xsd:element ref="SterbeInfo" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="SterbeInfo">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element name="SterbeDatum" type="xsd:string" minOccurs="0"/>
+				<xsd:element name="SterbeZeit" type="xsd:string" minOccurs="0"/>
+				<xsd:element name="SterbeGemeinde" type="xsd:string" minOccurs="0"/>
+				<xsd:element name="SterbeGemeindekennzahl" type="xsd:string" minOccurs="0"/>
+				<xsd:element name="SterbeStaatsname" type="xsd:string" minOccurs="0"/>
+				<xsd:element name="SterbeStaatscode" type="xsd:string" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Businesspartnerabfrage.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Businesspartnerabfrage.xsd
new file mode 100644
index 00000000..2831a33d
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Businesspartnerabfrage.xsd
@@ -0,0 +1,94 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: Businesspartnerabfrage.xsd
+Zweck: Definiert Datentypen fuer die Abfrage für Businesspartner im ZMR
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2004-12-15 tsch: NatuerlichePerson optional im Ergebnis (bei Negativauskunft)
+2004-08-02 tsch: Erstellung
+-->
+
+<xsd:schema xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:cio="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+			targetNamespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+
+	<xsd:import namespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" schemaLocation="../eingebunden/EingebundenProxy.xsd"/>
+	<xsd:import namespace="http://reference.e-government.gv.at/namespace/persondata/de/20040201#" schemaLocation="../eingebunden/PersonDataZMR.xsd"/>
+
+	<xsd:element name="BPAbfrageRequest">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="BPAbfrageInfo"/>
+				<xsd:sequence minOccurs="0">
+					<xsd:element ref="base:Bereichskennung"/>
+					<xsd:element ref="base:BPK"/>
+				</xsd:sequence>
+				<xsd:element ref="base:ZMRZahl" minOccurs="0"/>
+				<xsd:element ref="cio:NatuerlichePerson"/>
+				<xsd:element ref="cio:PostAdresse" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="BPAbfrageResponse">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="BPAbfrageAnfrage"/>
+				<xsd:element ref="base:Message"/>
+				<xsd:element ref="BPAbfrageErgebnis" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="BPAbfrageAnfrage">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="BPAbfrageInfo"/>
+				<xsd:sequence minOccurs="0">
+					<xsd:element ref="base:Bereichskennung"/>
+					<xsd:element ref="base:BPK"/>
+				</xsd:sequence>
+				<xsd:element ref="base:ZMRZahl" minOccurs="0"/>	
+				<xsd:element ref="cio:NatuerlichePerson"/>
+				<xsd:element ref="cio:PostAdresse" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="BPAbfrageInfo" type="BPAbfrageInfoType"/>
+	<xsd:complexType name="BPAbfrageInfoType">
+		<xsd:annotation>
+			<xsd:documentation>allgemeine Fachliche Informationen für die BP-Abfrage</xsd:documentation>
+		</xsd:annotation>
+		<xsd:sequence>
+			<xsd:element ref="base:Bezugsfeld"/>
+			<xsd:element name="BPAbfrageAction">
+				<xsd:simpleType>
+					<xsd:restriction base="xsd:string">
+						<xsd:enumeration value="BEFREIT"/>
+						<xsd:enumeration value="SONSTIGES"/>
+					</xsd:restriction>
+				</xsd:simpleType>
+			</xsd:element>
+			<xsd:element ref="base:ErstellePDF" minOccurs="0"/>
+		</xsd:sequence>
+	</xsd:complexType>
+
+
+	<xsd:element name="BPAbfrageErgebnis">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="cio:NatuerlichePerson" minOccurs="0"/>
+				<xsd:element ref="cio:PostAdresse" minOccurs="0" maxOccurs="unbounded"/>
+				<xsd:element name="AktMeldesatz" type="xsd:boolean"/>
+				<xsd:element ref="base:GemeldetBis" minOccurs="0"/>
+				<xsd:element name="PDFDaten" type="xsd:base64Binary"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+</xsd:schema>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/BusinesspartnerabfrageErweitert.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/BusinesspartnerabfrageErweitert.xsd
new file mode 100644
index 00000000..75daf516
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/BusinesspartnerabfrageErweitert.xsd
@@ -0,0 +1,67 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: BusinesspartnerabfrageErweitert.xsd
+Zweck: Definiert Datentypen für die erweiterte Abfrage für Businesspartner im ZMR
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2005-08-31 tsch: Erstellung
+-->
+
+<xsd:schema xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:cio="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+			targetNamespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	
+	<xsd:include schemaLocation="../zmr/Businesspartnerabfrage.xsd"/>
+	<xsd:import namespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" schemaLocation="../eingebunden/EingebundenProxy.xsd"/>		
+	<xsd:import namespace="http://reference.e-government.gv.at/namespace/persondata/de/20040201#" schemaLocation="../eingebunden/PersonDataZMR.xsd"/>
+	
+	<xsd:element name="BPAbfrageErweitertRequest">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="BPAbfrageInfo"/>
+				<xsd:sequence minOccurs="0">
+					<xsd:element ref="base:Bereichskennung"/>
+					<xsd:element ref="base:BPK"/>
+				</xsd:sequence>
+				<xsd:element ref="base:ZMRZahl" minOccurs="0"/>					
+				<xsd:element ref="cio:NatuerlichePerson"/>
+				<xsd:element ref="cio:PostAdresse" minOccurs="0"/>				
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="BPAbfrageErweitertResponse">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="BPAbfrageAnfrage"/>
+				<xsd:element ref="base:Message"/>
+				<xsd:element ref="BPAbfrageErweitertErgebnis" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="BPAbfrageErweitertErgebnis">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="cio:NatuerlichePerson" minOccurs="0"/>
+				<xsd:element name="Meldung" minOccurs="0" maxOccurs="unbounded">
+					<xsd:complexType>
+						<xsd:sequence>
+							<xsd:element ref="cio:PostAdresse"/>
+							<xsd:element ref="base:GemeldetVon"/>
+							<xsd:element ref="base:GemeldetBis" minOccurs="0"/>
+						</xsd:sequence>
+					</xsd:complexType>
+				</xsd:element>
+				<xsd:element name="AktMeldesatz" type="xsd:boolean"/>
+				<xsd:element ref="base:GemeldetBis" minOccurs="0"/>
+				<xsd:element name="PDFDaten" type="xsd:base64Binary"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>	
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Datenabgleich.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Datenabgleich.xsd
new file mode 100644
index 00000000..b953f052
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Datenabgleich.xsd
@@ -0,0 +1,280 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: Datenabgleich.xsd
+Zweck: Definiert Datentypen für den ZMR-Datenabgleich
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2006-02-16 tsch: ERnP-Personendaten hinzugefügt
+2005-03-24 tsch: Standarddokumente hinzugefügt
+2004-08-17 tsch: Grundsätzliche Änderung der Datenanlieferung: nicht mehr Gesamtdatensätze, sondern nur geänderte Sätze bei VON-BIS Anforderungen liefern
+2004-06-07 tsch: Erstellung
+-->
+
+<xsd:schema targetNamespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:cio="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+			
+	<xsd:include schemaLocation="../zmr/entities/Meldung.xsd"/>
+	<xsd:include schemaLocation="../zmr/entities/Person.xsd"/>
+	<xsd:include schemaLocation="../zmr/entities/ERnPPerson.xsd"/>
+	<xsd:import namespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" schemaLocation="../eingebunden/EingebundenProxy.xsd"/>
+	<xsd:import namespace="http://reference.e-government.gv.at/namespace/persondata/de/20040201#" schemaLocation="../eingebunden/PersonDataZMR.xsd"/>
+	
+	<xsd:element name="DatenabgleichRequest">
+		<xsd:annotation>
+			<xsd:documentation>Anfragedaten des Datenabgleichs (täglich, von-bis oder aktuell)</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="DatenabgleichInfo"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="DatenabgleichResponse">
+		<xsd:annotation>
+			<xsd:documentation>In der Response werden die Anfragedaten aus dem Request und das Abgleichergebnis geliefert.</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="DatenabgleichAnfrage"/>
+				<xsd:element ref="base:Message"/>
+				<xsd:choice minOccurs="0">
+					<xsd:element ref="Datenabgleich"/>
+					<xsd:element ref="Wohnsitzverzeichnis"/>
+				</xsd:choice>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="DatenabgleichInfo" type="DatenabgleichInfoType"/>
+	
+	<xsd:complexType name="DatenabgleichInfoType">
+		<xsd:sequence>
+			<xsd:element ref="base:GemeindeNr"/>
+			<xsd:element ref="DatenabgleichAction"/>
+			<xsd:sequence minOccurs="0">
+				<xsd:element name="AbgleichVon" type="base:TimestampType"/>
+				<xsd:element name="AbgleichBis" type="base:TimestampType"/>
+			</xsd:sequence>
+			<xsd:element ref="base:Stichtag" minOccurs="0"/>
+			<xsd:element ref="base:InclusivHistorie" minOccurs="0"/>
+			<xsd:element name="InclusivNWS" type="xsd:boolean" minOccurs="0"/>
+		</xsd:sequence>
+	</xsd:complexType>
+	
+	<xsd:element name="DatenabgleichAnfrage">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="DatenabgleichInfo"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="DatenabgleichAction">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:enumeration value="AENDERUNGEN"/>
+				<xsd:enumeration value="WOHNSITZVERZEICHNIS"/>
+				<xsd:enumeration value="GEMEINDEABZUG"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	
+	<xsd:element name="Datenabgleich" type="DatenabgleichType"/>
+	
+	<xsd:complexType name="DatenabgleichType">
+		<xsd:sequence>
+			<xsd:element ref="base:GefundeneSaetze">
+				<xsd:annotation>
+					<xsd:documentation>Gesamtanzahl der Abgleichsätze für diese Anfrage</xsd:documentation>
+				</xsd:annotation>
+			</xsd:element>
+			<xsd:element ref="base:AnzahlSaetze">
+				<xsd:annotation>
+					<xsd:documentation>Anzahl der im File gelieferten Abgleichsätze</xsd:documentation>
+				</xsd:annotation>			
+			</xsd:element>
+			<xsd:element name="DatenabgleichSatz" type="DatenabgleichSatzType" minOccurs="1" maxOccurs="unbounded"/>	
+		</xsd:sequence>
+	</xsd:complexType>
+	
+	<xsd:complexType name="DatenabgleichSatzType">
+		<xsd:sequence>
+			<xsd:element name="Aenderungszeitpunkt" type="base:TimestampType"/>
+			<xsd:element ref="PersonReferenz"/>
+			<xsd:element ref="cio:Familienname"/>
+			<xsd:element ref="cio:Vorname"/>
+			<xsd:element ref="cio:Geburtsdatum"/>	
+			<xsd:element ref="PersonAbgleich" minOccurs="0"/>
+			<xsd:element ref="MeldungAbgleich" minOccurs="0" maxOccurs="unbounded"/>
+			<xsd:element ref="ERnPPersonAbgleich" minOccurs="0"/>
+		</xsd:sequence>
+	</xsd:complexType>
+	
+	<xsd:element name="PersonAbgleich">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element name="DatenAktiv" type="PersonAbgleichdaten" minOccurs="0"/>
+				<xsd:element name="DatenGeloescht" type="PersonAbgleichdaten" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:complexType name="PersonAbgleichdaten">
+		<xsd:sequence>
+				<xsd:element name="Person" type="PersonAbgleichErgebnisType" minOccurs="0" maxOccurs="unbounded"/>
+				<xsd:element name="Staatsangehoerigkeit" type="StaatsangehoerigkeitErgebnisType" minOccurs="0" maxOccurs="unbounded"/>				
+				<xsd:element name="Reisedokument" type="ReisedokumentErgebnisType" minOccurs="0" maxOccurs="unbounded"/>
+				<xsd:element name="Behoerdenattribute" type="BehoerdenattributeErgebnisType" minOccurs="0"/>
+				<xsd:element name="Auskunftssperre" type="AuskunftssperreErgebnisType" minOccurs="0" maxOccurs="unbounded"/>
+				<xsd:element name="Qualifikationskennzeichen" type="QualifikationskennzeichenErgebnisType" minOccurs="0" maxOccurs="unbounded"/>
+				<xsd:element name="AkademischerGrad" type="AkademischerGradErgebnisType" minOccurs="0" maxOccurs="unbounded"/>
+				<xsd:element name="Standarddokument" type="StandarddokumentErgebnisType" minOccurs="0" maxOccurs="unbounded"/>
+		</xsd:sequence>
+	</xsd:complexType>
+	
+	<xsd:element name="MeldungAbgleich">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="MeldungReferenz"/>
+				<xsd:element name="DatenAktiv" type="MeldungAbgleichdaten" minOccurs="0"/>
+				<xsd:element name="DatenGeloescht" type="MeldungAbgleichdaten" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:complexType name="MeldungAbgleichdaten">
+		<xsd:sequence>
+			<xsd:element name="Meldung" type="MeldungAbgleichErgebnisType" minOccurs="0" maxOccurs="unbounded"/>
+			<xsd:element name="Behoerdenattribute" type="BehoerdenattributeErgebnisType" minOccurs="0" maxOccurs="unbounded"/>
+			<xsd:element name="Auskunftssperre" type="AuskunftssperreErgebnisType" minOccurs="0" maxOccurs="unbounded"/>
+			<xsd:element name="Qualifikationskennzeichen" type="QualifikationskennzeichenErgebnisType" minOccurs="0" maxOccurs="unbounded"/>
+		</xsd:sequence>
+	</xsd:complexType>
+	
+	<xsd:element name="Wohnsitzverzeichnis" type="WohnsitzverzeichnisType"/>
+	
+	<xsd:complexType name="WohnsitzverzeichnisType">
+		<xsd:sequence>
+			<xsd:element ref="base:GefundeneSaetze">
+				<xsd:annotation>
+					<xsd:documentation>Gesamtanzahl der Abgleichsätze für diese Anfrage</xsd:documentation>
+				</xsd:annotation>
+			</xsd:element>
+			<xsd:element ref="base:AnzahlSaetze">
+				<xsd:annotation>
+					<xsd:documentation>Anzahl der im File gelieferten Abgleichsätze</xsd:documentation>
+				</xsd:annotation>			
+			</xsd:element>
+			<xsd:element ref="SummeHWS"/>
+			<xsd:element ref="SummeNWS"/>
+			<xsd:element name="WohnsitzSatz" type="WohnsitzSatzType" minOccurs="1" maxOccurs="unbounded"/>	
+		</xsd:sequence>
+	</xsd:complexType>
+	
+	<xsd:complexType name="WohnsitzSatzType">
+		<xsd:sequence>
+			<xsd:element ref="base:ZMRZahl"/>
+			<xsd:element ref="SummeHWS"/>
+			<xsd:element ref="SummeNWS"/>			
+		</xsd:sequence>
+	</xsd:complexType>
+	<xsd:element name="SummeHWS" type="base:IntegerType"/>
+	<xsd:element name="SummeNWS" type="base:IntegerType"/>
+	
+	
+	<xsd:complexType name="PersonAbgleichErgebnisType">
+		<xsd:annotation>
+			<xsd:documentation>Person-Struktur für Datenabgleich-Ergebnisse aus dem ZMR</xsd:documentation>
+		</xsd:annotation>
+		<xsd:sequence>
+			<xsd:element ref="base:EntityErgebnisReferenz"/>
+			<xsd:element ref="base:ZMRZahl"/>
+			<xsd:element name="NatuerlichePerson" type="NatuerlichePersonAbgleichErgebnisType"/>		
+			<xsd:element ref="base:Titel" minOccurs="0"/>
+			<xsd:element ref="base:StaatZugezogen" minOccurs="0"/>
+			<xsd:element ref="base:StaatVerzogen" minOccurs="0"/>
+			<xsd:element name="ReferenziertePersonen" type="ReferenziertePersonenErgebnisType" minOccurs="0"/>
+		</xsd:sequence>				
+	</xsd:complexType>
+
+	<xsd:complexType name="NatuerlichePersonAbgleichErgebnisType">
+		<xsd:annotation>
+			<xsd:documentation>Natuerliche Person (Suchergebnis)</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexContent>
+			<xsd:extension base="cio:AbstractPersonType">
+				<xsd:sequence>
+					<xsd:element name="PersonenName">
+						<xsd:complexType>
+							<xsd:sequence>
+								<xsd:element ref="cio:Vorname"/>
+								<xsd:element ref="cio:Familienname"/>						
+							</xsd:sequence>
+						</xsd:complexType>
+					</xsd:element>
+					<xsd:element ref="cio:AlternativName" minOccurs="0"/>
+					<xsd:element ref="cio:Familienstand" minOccurs="0"/>
+					<xsd:element ref="cio:Geschlecht"/>
+					<xsd:element ref="cio:Geburtsdatum"/>
+					<xsd:element ref="cio:Geburtsort"/>
+					<xsd:element ref="cio:Geburtsbundesland" minOccurs="0"/>
+					<xsd:element ref="cio:Geburtsstaat"/>
+					<xsd:element ref="cio:Sterbedatum" minOccurs="0"/>
+				</xsd:sequence>
+			</xsd:extension>
+		</xsd:complexContent>
+	</xsd:complexType>	
+
+	<xsd:complexType name="MeldungAbgleichErgebnisType">
+		<xsd:annotation>
+			<xsd:documentation>Meldung-Struktur für Suchergebnisse aus dem ZMR</xsd:documentation>
+		</xsd:annotation>
+		<xsd:sequence>
+			<xsd:element ref="base:EntityErgebnisReferenz"/>
+			<xsd:element name="Wohnsitz" type="WohnsitzErgebnisType"/>
+			<xsd:element ref="base:GemeldetVon"/>
+			<xsd:element ref="base:PeriodeCode"/>
+			<xsd:element ref="base:PeriodeText"/>
+			<xsd:element ref="base:PeriodeFreitext" minOccurs="0"/>			
+			<xsd:element ref="base:GemeldetBis" minOccurs="0"/>
+			<xsd:element ref="base:Unterkunftgeber" minOccurs="0"/>
+		</xsd:sequence>				
+	</xsd:complexType>
+	
+	<xsd:element name="ERnPPersonAbgleich">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element name="DatenAktiv" type="ERnPPersonAbgleichdaten" minOccurs="0"/>
+				<xsd:element name="DatenGeloescht" type="ERnPPersonAbgleichdaten" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:complexType name="ERnPPersonAbgleichdaten">
+		<xsd:sequence>
+			<xsd:element name="Person" type="ERnPPersonAbgleichErgebnisType" minOccurs="0" maxOccurs="unbounded"/>
+			<xsd:element name="Staatsangehoerigkeit" type="StaatsangehoerigkeitErgebnisType" minOccurs="0" maxOccurs="unbounded"/>				
+			<xsd:element name="Reisedokument" type="ERnPReisedokumentErgebnisType" minOccurs="0" maxOccurs="unbounded"/>
+			<xsd:element name="Dokument" type="ERnPDokumentErgebnisType" minOccurs="0" maxOccurs="unbounded"/>
+			<xsd:element name="Anschrift" type="ERnPAnschriftErgebnisType" minOccurs="0"/>
+		</xsd:sequence>
+	</xsd:complexType>
+
+	<xsd:complexType name="ERnPPersonAbgleichErgebnisType">
+		<xsd:annotation>
+			<xsd:documentation>Person-Struktur für Datenabgleich-Ergebnisse aus dem ZMR</xsd:documentation>
+		</xsd:annotation>
+		<xsd:sequence>
+			<xsd:element ref="base:EntityErgebnisReferenz"/>
+			<xsd:element ref="base:OrdnungsZahl"/>
+			<xsd:element name="NatuerlichePerson" type="NatuerlichePersonAbgleichErgebnisType"/>
+		</xsd:sequence>				
+	</xsd:complexType>		
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/ErnpAbfrage.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/ErnpAbfrage.xsd
new file mode 100644
index 00000000..db36e0d5
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/ErnpAbfrage.xsd
@@ -0,0 +1,161 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!-- 
+Name: ErnpAbfrage.xsd 
+Zweck: ersetzt Szr_Einzel und Kombi-Abfrage, wird aus Ernp3 aufgerufen 
+Author(s): Richard Mayrhofer xmayrh2 
+-->
+<xsd:schema targetNamespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+	xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#" 
+	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+	xmlns:xsd="http://www.w3.org/2001/XMLSchema" 
+	xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+	xmlns:cio="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+	elementFormDefault="qualified" attributeFormDefault="unqualified"
+	version="1.0">
+	
+	<xsd:import namespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" schemaLocation="../eingebunden/EingebundenProxy.xsd" />
+	<xsd:import namespace="http://reference.e-government.gv.at/namespace/persondata/de/20040201#" schemaLocation="../eingebunden/PersonDataZMR.xsd" />
+
+	<xsd:include schemaLocation="Personenabfrage.xsd" />
+	
+	<xsd:element name="ErnpRequest">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="ErnpAbfrageInfo"/>
+				<xsd:element name="ErnpSuchPerson" minOccurs="1" maxOccurs="100">
+					<xsd:complexType>
+						<xsd:sequence>
+							<xsd:element ref="base:ZMRZahl" minOccurs="0" />
+							<xsd:element ref="cio:NatuerlichePerson" minOccurs="0" />
+							<xsd:element ref="cio:PostAdresse" minOccurs="0" />
+							<xsd:element ref="DokumentSuchdaten" minOccurs="0" />
+						</xsd:sequence>	
+					</xsd:complexType>	
+				</xsd:element>	
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="ErnpAbfrageInfo">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element name="ErnpRequestId" type="xsd:string" minOccurs="0" />
+				<xsd:element name="TrefferLimit" type="xsd:int"/>
+				<xsd:element ref="base:Bezugsfeld" />
+				<xsd:element name="Suchkriterien" type="SuchkriterienType"/>
+				<xsd:element ref="ErgebnisKriterienPerson"/>
+				<xsd:element ref="ErgebnisKriterienMeldung"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+
+	<xsd:element name="ErgebnisKriterienPerson" >
+		<xsd:complexType>
+			<xsd:sequence>
+				<!-- OhneHistorie: default=true -->
+				<xsd:element name="InklusiveHistorische" type="xsd:boolean"/>
+				<!-- ohneSperren: wenn true, werden Auskunftssperren gefiltert -->
+				<xsd:element name="InklusiveAuskunftsgesperrte" type="xsd:boolean"/>
+				<!-- Kitverfolgung: sollen gekittete Personen bis zur aktuellsten Person verfolgt werden, default: true -->
+				<xsd:element name="Kitverfolgung" type="xsd:boolean"/>
+				<!-- Liste von auszufilternden BeginnCodes  -->
+				<xsd:element name="ExklusiveBeginnCodes" type="BeginnCode"/>
+				<!-- Liste der zu liefernden Sub-Entitaeten einer Person -->	
+				<xsd:element name="AbhaengigeEntitaeten" type="EntitaetenPerson"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="ErgebnisKriterienMeldung">
+		<xsd:complexType>
+			<xsd:sequence>
+				<!-- OhneHistorie: default=true -->
+				<xsd:element name="InklusiveHistorische" type="xsd:boolean"/>
+				<!-- ohneSperren: wenn true, werden Auskunftssperren gefiltert -->
+				<xsd:element name="InklusiveAuskunftsgesperrte" type="xsd:boolean"/>
+				<!--  wie werden die Wohnsitze gereiht (geliefert wird nur der erste)  -->
+				<xsd:element name="WohnsitzPrioritaet" type="WohnsitzPrioritaet"/>
+				<!-- Liste der zu liefernden Sub-Entitaeten einer Meldung -->	
+				<xsd:element name="AbhaengigeEntitaeten" type="EntitaetenMeldung"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+		
+	<xsd:simpleType name="WohnsitzPrioritaet"> 
+		<xsd:restriction base="xsd:string">
+			<!-- nur aktuellster Hauptwohnsitz -->
+			<xsd:enumeration value="juengsterHWS" />
+			<!-- aktuellster Wohnsitz, Reihenfolge Haupt- oder Nebenwohnsitz oder Obdachlos -->
+			<xsd:enumeration value="juengsterHNO" />
+		</xsd:restriction>
+	</xsd:simpleType>
+	
+	<xsd:simpleType name="BeginnCode">
+  		<xsd:list itemType="xsd:string" />
+	</xsd:simpleType>
+
+	<!-- Liste der gewählten Sub-Entities einer Person -->
+	<xsd:simpleType name="EntitaetenMeldung">
+		<xsd:list itemType="EntitaetMeldung"/>
+	</xsd:simpleType>
+	
+	<!-- Liste der moeglichen Sub-Entities einer Meldung -->
+	<xsd:simpleType name="EntitaetMeldung">
+		<xsd:restriction base="xsd:string">
+			<xsd:enumeration value="ORGFELD"/>
+			<xsd:enumeration value="AUSKUNFTSSPERRE"/>
+		</xsd:restriction>
+	</xsd:simpleType>
+	
+	<!-- Liste der gewählten Sub-Entities einer Person -->
+	<xsd:simpleType name="EntitaetenPerson">
+		<xsd:list itemType="EntitaetPerson"/>
+	</xsd:simpleType>
+	
+	<!-- Liste der moeglichen Sub-Entities einer Person -->
+	<xsd:simpleType name="EntitaetPerson">
+		<xsd:restriction base="xsd:string">
+			<xsd:enumeration value="AKADGRAD" />
+			<xsd:enumeration value="QUALIFIKATIONSKENNZEICHEN" />
+			<xsd:enumeration value="REISEDOKUMENT" />
+			<xsd:enumeration value="STDDOKUMENT" />
+			<xsd:enumeration value="STAATSANGEHOERIGKEIT" />
+			<xsd:enumeration value="AUSKUNFTSSPERRE"/>
+		</xsd:restriction>
+	</xsd:simpleType>
+
+	<xsd:element name="ErnpResponse">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="base:Message"/>
+				<xsd:element ref="base:ServerTransaktionNr"/>
+				<xsd:element ref="ErnpPersonResult" maxOccurs="unbounded"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="ErnpPersonResult">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="base:Message"/>
+				<xsd:choice>
+					<xsd:element ref="Ergebnissatz" minOccurs="0" maxOccurs="unbounded"/>
+					<xsd:element name="ZMRZahlen" type="xsd:string" minOccurs="0" maxOccurs="unbounded" />
+				</xsd:choice>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="Ergebnissatz">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element name="PersonErgebnis" type="PersonErgebnisType" minOccurs="0"/>
+				<xsd:element name="AuskunftssperrePerson" type="xsd:boolean" default="false"/>
+				<xsd:element name="Meldedaten" type="MeldedatenType" minOccurs="0"/>
+				<xsd:element name="AuskunftssperreMeldung" type="xsd:boolean" default="false"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+</xsd:schema>	
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Fremdenabfrage.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Fremdenabfrage.xsd
new file mode 100644
index 00000000..e4a610ae
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Fremdenabfrage.xsd
@@ -0,0 +1,108 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: Fremdenabfrage.xsd
+Zweck: Definiert Datentypen für die Fremdenabfrage im ZMR
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2004-08-16 tsch: Erstellung
+-->
+
+<xsd:schema xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:cio="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+			targetNamespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	
+	<xsd:import namespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" schemaLocation="../eingebunden/EingebundenProxy.xsd"/>		
+	<xsd:import namespace="http://reference.e-government.gv.at/namespace/persondata/de/20040201#" schemaLocation="../eingebunden/PersonDataZMR.xsd"/>
+	<xsd:include schemaLocation="Personenabfrage.xsd"/>
+	
+	<xsd:element name="FremdenabfrageRequest">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="FremdenabfrageInfo"/>
+				<xsd:element ref="base:ZMRZahl" minOccurs="0"/>					
+				<xsd:element ref="cio:NatuerlichePerson" minOccurs="0"/>
+				<xsd:element ref="base:GemeldetVon" minOccurs="0"/>
+				<xsd:element ref="base:GemeldetBis" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="FremdenabfrageResponse">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="FremdenabfrageAnfrage"/>
+				<xsd:element ref="base:Message"/>
+				<xsd:element ref="FremdenabfrageErgebnis" minOccurs="0"/>
+				<xsd:element name="PDFDaten" type="xsd:base64Binary" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="FremdenabfrageAnfrage">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="FremdenabfrageInfo"/>
+				<xsd:element ref="base:ZMRZahl" minOccurs="0"/>	
+				<xsd:element ref="cio:NatuerlichePerson" minOccurs="0"/>
+				<xsd:element ref="base:GemeldetVon" minOccurs="0"/>
+				<xsd:element ref="base:GemeldetBis" minOccurs="0"/>				
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="FremdenabfrageInfo" type="FremdenabfrageInfoType"/>
+	<xsd:complexType name="FremdenabfrageInfoType">
+		<xsd:annotation>
+			<xsd:documentation>allgemeine Fachliche Informationen für die Fremdenabfrage</xsd:documentation>
+		</xsd:annotation>
+		<xsd:sequence>
+			<xsd:element ref="base:Bezugsfeld"/>
+			<xsd:element ref="FremdenabfrageAction"/>
+			<xsd:element ref="base:Bezirkskennung"/>
+			<xsd:element ref="base:InclusivHistorie"/>
+			<xsd:element ref="base:Formalisiert"/>
+			<xsd:element name="AlsDruck" type="xsd:boolean"/>
+			<xsd:element ref="base:AnzahlSaetze"/>
+		</xsd:sequence>
+	</xsd:complexType>
+	
+	<xsd:element name="FremdenabfrageAction">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:enumeration value="NICHT_OESTERREICH"/>
+				<xsd:enumeration value="EU_OHNE_OESTERREICH"/>
+				<xsd:enumeration value="NICHT_EU"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	
+	<xsd:element name="FremdenabfrageErgebnis" type="FremdenabfrageErgebnisType"/>
+	<xsd:complexType name="FremdenabfrageErgebnisType">
+		<xsd:annotation>
+			<xsd:documentation>Enthält je einen 'PersonErgebnisSatz' pro gefundener Person. Wird keine Person gefunden, befindet sich eine entprechende Text-Message in 'base:Message'</xsd:documentation>
+		</xsd:annotation>
+		<xsd:sequence>
+			<xsd:element ref="base:GefundeneSaetze">
+				<xsd:annotation>
+					<xsd:documentation>Gesamtanzahl der in der Datenbank gefundenen Personen</xsd:documentation>
+				</xsd:annotation>
+			</xsd:element>
+			<xsd:element ref="base:SaetzeVon">
+			<xsd:annotation>
+					<xsd:documentation>Beginn-Index dieser Ergebnisliste im Gesamtergebnis (bei Blaettern); Start mit 0</xsd:documentation>
+				</xsd:annotation>			
+			</xsd:element>
+			<xsd:element ref="base:SaetzeBis">
+			<xsd:annotation>
+					<xsd:documentation>Ende-Index dieser Ergebnisliste im Gesamtergebnis (bei Blaettern)</xsd:documentation>
+				</xsd:annotation>			
+			</xsd:element>
+			<xsd:element name="PersonErgebnisSatz" type="PAbfrageErgebnisSatzType" minOccurs="1" maxOccurs="unbounded"/>	
+		</xsd:sequence>
+	</xsd:complexType>	
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/GISAdressabfrage.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/GISAdressabfrage.xsd
new file mode 100644
index 00000000..3f5bbe7f
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/GISAdressabfrage.xsd
@@ -0,0 +1,79 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: GISAdressabfrage.xsd
+Zweck: Definiert Datentypen für die GIS-Adressabfrage aus dem ZMR
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2004-08-24 tsch: Erstellung
+-->
+
+<xsd:schema xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:cio="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+			targetNamespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	
+	<xsd:import namespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" schemaLocation="../eingebunden/EingebundenProxy.xsd"/>		
+	<xsd:import namespace="http://reference.e-government.gv.at/namespace/persondata/de/20040201#" schemaLocation="../eingebunden/PersonDataZMR.xsd"/>
+	
+	<xsd:element name="GISAdressabfrageRequest">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="cio:PostAdresse" minOccurs="1"/>				
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="GISAdressabfrageResponse">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="GISAdressabfrageAnfrage"/>
+				<xsd:element ref="base:Message"/>
+				<xsd:element ref="base:GefundeneSaetze"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="GISAdressabfrageDetailRequest">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element name="Bestaetigt" type="xsd:boolean"/>				
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="GISAdressabfrageDetailResponse">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="GISAdressabfrageAnfrage"/>
+				<xsd:element ref="base:Message"/>
+				<xsd:element ref="GISAdressabfrageErgebnis" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>	
+
+	<xsd:element name="GISAdressabfrageAnfrage">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="cio:PostAdresse" minOccurs="1"/>
+			</xsd:sequence>
+		</xsd:complexType>	
+	</xsd:element>
+	
+	<xsd:element name="GISAdressabfrageErgebnis">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="base:GefundeneSaetze">
+					<xsd:annotation>
+						<xsd:documentation>Gesamtanzahl der in der Datenbank gefundenen Personen</xsd:documentation>
+					</xsd:annotation>
+				</xsd:element>
+				<xsd:element ref="cio:PersonenDaten" minOccurs="1" maxOccurs="unbounded"/>
+				<xsd:element name="PDFDaten" type="xsd:base64Binary"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/GISSuche.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/GISSuche.xsd
new file mode 100644
index 00000000..4989b13c
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/GISSuche.xsd
@@ -0,0 +1,74 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: GISSuche.xsd
+Zweck: Schnittstelle für die Suche von Personen mittels GIS-Daten
+Author(s): Ehrenmüller Oliver
+
+Aenderungshistorie:
+2009-02-06 teo: +GISSucheInfo
+2009-01-21 teo: erstellt.
+-->
+
+<xsd:schema xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			xmlns:gis="http://bmi.gv.at/namespace/zmr-su/gis/20070725#"
+			xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			targetNamespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	
+	<xsd:import namespace="http://bmi.gv.at/namespace/zmr-su/gis/20070725#" schemaLocation="../eingebunden/gis-schnittstelle.xsd"/>
+	<xsd:import namespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" schemaLocation="../eingebunden/EingebundenProxy.xsd"/>
+	<xsd:include schemaLocation="Personensuche.xsd"/>
+	
+	<xsd:element name="GISSucheRequest">
+		<xsd:annotation>
+			<xsd:documentation>Request zum Suchen von Personen mittels GIS-Daten</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="GISSucheInfo"/>
+				<xsd:element ref="GISSuche"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="GISSuche">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="gis:GISListe"/>
+			</xsd:sequence>	
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="GISSucheInfo">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="base:AnzahlSaetze"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="GISSucheAnfrage">
+		<xsd:annotation>
+			<xsd:documentation>Request zum Suchen von Personen mittels GIS-Daten</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="GISSucheInfo"/>
+				<xsd:element ref="GISSuche"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="GISSucheResponse">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="GISSucheAnfrage"/>
+				<xsd:element ref="base:Message"/>
+				<xsd:element ref="Personensuchergebnis" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Gemeindeeinstellungen.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Gemeindeeinstellungen.xsd
new file mode 100644
index 00000000..5096e120
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Gemeindeeinstellungen.xsd
@@ -0,0 +1,71 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: Gemeindeeinstellungen
+Zweck: Definiert Requests/Responses und Datentypen für die Gemeindeeinstellungen und Adress-Sperrlisten.
+Author(s): Richie Mayrhofer, ZMR
+-->
+
+<xsd:schema targetNamespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:cio="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+			xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+			
+	<xsd:include schemaLocation="../zmr/entities/Meldung.xsd"/>
+	<xsd:include schemaLocation="../zmr/entities/Person.xsd"/>
+	<xsd:include schemaLocation="../zmr/WohnsitzUmmelden.xsd"/>
+	
+	<xsd:import namespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" schemaLocation="../eingebunden/EingebundenProxy.xsd"/>
+	<xsd:import namespace="http://reference.e-government.gv.at/namespace/persondata/de/20040201#" schemaLocation="../eingebunden/PersonDataZMR.xsd"/>
+	
+	<xsd:element name="GemeindeeinstellungenRequest">
+		<xsd:annotation>
+			<xsd:documentation>Lesen der Gemeindeeinstellungen</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="cio:Gemeindekennziffer"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="GemeindeeinstellungenResponse">
+		<xsd:annotation>
+			<xsd:documentation>Lesen der Gemeindeeinstellungen</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="base:Message"/>
+				<xsd:element ref="cio:Gemeindekennziffer"/>
+				<xsd:element name="inclKlaerung" type="xsd:boolean"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="GemeindeeinstellungenAendernRequest">
+		<xsd:annotation>
+			<xsd:documentation>Aendern der Gemeindeeinstellungen</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="cio:Gemeindekennziffer"/>
+				<xsd:element name="inclKlaerung" type="xsd:boolean"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="GemeindeeinstellungenAendernResponse">
+		<xsd:annotation>
+			<xsd:documentation>Aendern der Gemeindeeinstellungen Ergebnismeldung</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="base:Message"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Gerichtskommissaerabfrage.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Gerichtskommissaerabfrage.xsd
new file mode 100644
index 00000000..6eacf127
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Gerichtskommissaerabfrage.xsd
@@ -0,0 +1,93 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: Gerichtskommissaerabfrage.xsd
+Zweck: Definiert Datentypen für die Gerichtskommissaerabfrage des ZMR
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2004-11-22 tsch: Erstellung
+-->
+
+<xsd:schema xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:cio="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+			targetNamespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	
+	<xsd:import namespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" schemaLocation="../eingebunden/EingebundenProxy.xsd"/>		
+	<xsd:import namespace="http://reference.e-government.gv.at/namespace/persondata/de/20040201#" schemaLocation="../eingebunden/PersonDataZMR.xsd"/>
+	
+	<xsd:include schemaLocation="Behoerdenabfrage.xsd"/>
+	
+	<xsd:element name="GerichtskommissaerabfrageRequest">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="GerichtskommissaerabfrageInfo"/>
+				<xsd:element ref="PersonKey" minOccurs="0"/>
+				<xsd:element ref="base:ZMRZahl" minOccurs="0"/>					
+				<xsd:element ref="cio:NatuerlichePerson" minOccurs="0"/>
+				<xsd:element ref="cio:PostAdresse" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="GerichtskommissaerabfrageResponse">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="GerichtskommissaerabfrageAnfrage"/>
+				<xsd:element ref="base:Message"/>
+				<xsd:choice minOccurs="0">
+					<xsd:element ref="GerichtskommissaerabfrageUeberblick"/>
+					<xsd:element ref="GerichtskommissaerabfrageDetail"/>
+				</xsd:choice>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="GerichtskommissaerabfrageAnfrage">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="GerichtskommissaerabfrageInfo"/>
+				<xsd:element ref="PersonKey" minOccurs="0"/>
+				<xsd:element ref="base:ZMRZahl" minOccurs="0"/>	
+				<xsd:element ref="cio:NatuerlichePerson" minOccurs="0"/>
+				<xsd:element ref="cio:PostAdresse" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>	
+	</xsd:element>
+
+	<xsd:element name="GerichtskommissaerabfrageInfo" type="GerichtskommissaerabfrageInfoType"/>
+	<xsd:complexType name="GerichtskommissaerabfrageInfoType">
+		<xsd:annotation>
+			<xsd:documentation>allgemeine Fachliche Informationen für die Behördenabfrage</xsd:documentation>
+		</xsd:annotation>
+		<xsd:sequence>
+			<xsd:element ref="base:Bezugsfeld" minOccurs="0"/>
+			<xsd:element ref="base:InclusivHistorie"/>
+			<xsd:element ref="base:Formalisiert"/>
+		</xsd:sequence>
+	</xsd:complexType>
+	
+	<xsd:element name="GerichtskommissaerabfrageUeberblick">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="base:AnzahlSaetze"/>
+				<xsd:element ref="PersonUeberblick" minOccurs="1" maxOccurs="unbounded"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	
+	<xsd:element name="GerichtskommissaerabfrageDetail">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="Personendaten" minOccurs="0"/>
+				<xsd:element ref="Meldedaten" minOccurs="0" maxOccurs="unbounded"/>				
+				<xsd:element name="PDFDaten" type="xsd:base64Binary"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/GleichsetzungstabelleWarten.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/GleichsetzungstabelleWarten.xsd
new file mode 100644
index 00000000..f5cd55cd
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/GleichsetzungstabelleWarten.xsd
@@ -0,0 +1,185 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: GleichsetzungstabelleWarten.xsd
+Zweck: Definiert Datentypen für die Wartung der Gleichstzungstabelle im ZMR
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2005-01-14 tsch: Erstellung
+-->
+
+<xsd:schema  targetNamespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			xmlns:cio="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	
+	
+	<xsd:import namespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" schemaLocation="../eingebunden/EingebundenProxy.xsd"/>
+	
+	<xsd:element name="GleichsetzungAbfragenRequest">
+		<xsd:annotation>
+			<xsd:documentation>Suchedaten fuer die Suche nach Einträgen in der Gleichsetzungstabelle</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="GleichsetzungAbfragenInfo"/>
+				<xsd:choice>
+					<xsd:element ref="base:ZMRZahl"/>
+					<xsd:element ref="base:SVNummer"/>
+				</xsd:choice>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="GleichsetzungAbfragenResponse">
+		<xsd:annotation>
+			<xsd:documentation>Anfragedaten, sowie Suchergebnis oder Text-Meldung (falls nichts gefunden)</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="GleichsetzungAbfragenAnfrage"/>
+				<xsd:element ref="base:Message"/>
+				<xsd:element ref="Gleichsetzungabfrageergebnis" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="GleichsetzungAnlegenRequest">
+		<xsd:annotation>
+			<xsd:documentation>Suchedaten fuer die Suche nach Einträgen in der Gleichsetzungstabelle</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="GleichsetzungAnlegenInfo"/>
+				<xsd:element ref="base:ZMRZahl"/>
+				<xsd:element ref="base:SVNummer"/>
+				<xsd:element ref="Zuordnungsqualitaet" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="GleichsetzungAnlegenResponse">
+		<xsd:annotation>
+			<xsd:documentation>Daten der angelegeten Gleichsetzung, sowie Erfolgsmeldung</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="base:Message"/>
+				<xsd:element ref="GleichsetzungErgebnis"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>	
+
+	<xsd:element name="GleichsetzungLoeschenRequest">
+		<xsd:annotation>
+			<xsd:documentation>Suchedaten fuer die Suche nach Einträgen in der Gleichsetzungstabelle</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="GleichsetzungLoeschenInfo"/>
+				<xsd:element ref="base:EntityReferenz"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="GleichsetzungLoeschenResponse">
+		<xsd:annotation>
+			<xsd:documentation>Daten der angelegeten Gleichsetzung, sowie Erfolgsmeldung</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="base:Message"/>
+				<xsd:element ref="GleichsetzungErgebnis"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="GleichsetzungAbfragenAnfrage">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="GleichsetzungAbfragenInfo"/>
+				<xsd:choice>
+					<xsd:element ref="base:ZMRZahl"/>
+					<xsd:element ref="base:SVNummer"/>
+				</xsd:choice>
+			</xsd:sequence>
+		</xsd:complexType>	
+	</xsd:element>
+	
+	<xsd:element name="GleichsetzungAbfragenInfo" type="GleichsetzungAbfragenInfoType"/>
+	<xsd:complexType name="GleichsetzungAbfragenInfoType">
+		<xsd:annotation>
+			<xsd:documentation>Fachliche Informationen zur Gleichsetzungstabelle - Abfrage</xsd:documentation>
+		</xsd:annotation>
+		<xsd:sequence>
+			<xsd:element ref="base:InclusivHistorie"/>
+		</xsd:sequence>
+	</xsd:complexType>	
+
+	<xsd:element name="Gleichsetzungabfrageergebnis" type="GleichsetzungabfrageergebnisType"/>
+	<xsd:complexType name="GleichsetzungabfrageergebnisType">
+		<xsd:annotation>
+			<xsd:documentation>Gleichsetzungstabelle - Suchereggebnis</xsd:documentation>
+		</xsd:annotation>
+		<xsd:sequence>
+			<xsd:element ref="base:GefundeneSaetze">
+				<xsd:annotation>
+					<xsd:documentation>Gesamtanzahl der in der Datenbank gefundenen Einträge</xsd:documentation>
+				</xsd:annotation>
+			</xsd:element>		
+			<xsd:element ref="GleichsetzungErgebnis" minOccurs="1" maxOccurs="unbounded"/>					
+		</xsd:sequence>
+	</xsd:complexType>
+
+	<xsd:element name="GleichsetzungErgebnis" type="GleichsetzungErgebnisType"/>
+	<xsd:complexType name="GleichsetzungErgebnisType">
+		<xsd:annotation>
+			<xsd:documentation>Gleichsetzungstabelleneintrag</xsd:documentation>
+		</xsd:annotation>
+		<xsd:sequence>
+			<xsd:element ref="base:EntityErgebnisReferenz"/>
+			<xsd:element ref="base:ZMRZahl"/>
+			<xsd:element ref="base:SVNummer"/>
+			<xsd:element ref="Zuordnungsqualitaet" minOccurs="0"/>						
+		</xsd:sequence>
+	</xsd:complexType>	
+	
+	<xsd:element name="Zuordnungsqualitaet">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="45"/>				
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+
+	<xsd:element name="GleichsetzungAnlegenInfo" type="GleichsetzungAnlegenInfoType"/>
+	<xsd:complexType name="GleichsetzungAnlegenInfoType">
+		<xsd:annotation>
+			<xsd:documentation>Fachliche Informationen einer Anlage in der Gleichsetzungstabelle</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexContent>
+			<xsd:extension base="base:InfoFachlichType">
+							
+			</xsd:extension>
+		</xsd:complexContent>
+		
+	</xsd:complexType>
+
+	<xsd:element name="GleichsetzungLoeschenInfo" type="GleichsetzungLoeschenInfoType"/>
+	<xsd:complexType name="GleichsetzungLoeschenInfoType">
+		<xsd:annotation>
+			<xsd:documentation>Fachliche Informationen für das Löschen eines Eintrages der Gleichsetzungstabelle</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexContent>
+			<xsd:extension base="base:InfoFachlichType">
+							
+			</xsd:extension>
+		</xsd:complexContent>
+		
+	</xsd:complexType>				
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Hauseigentuemerabfrage.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Hauseigentuemerabfrage.xsd
new file mode 100644
index 00000000..b72bea37
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Hauseigentuemerabfrage.xsd
@@ -0,0 +1,117 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: Hauseigentuemerabfrage.xsd
+Zweck: Definiert Datentypen für die Hauseigentuemerabfrage im ZMR
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2006-09-27 tsch: AlleDrucken hinzugefügt
+2004-08-18 tsch: Erstellung
+-->
+
+<xsd:schema xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:cio="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+			targetNamespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	
+	<xsd:import namespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" schemaLocation="../eingebunden/EingebundenProxy.xsd"/>		
+	<xsd:import namespace="http://reference.e-government.gv.at/namespace/persondata/de/20040201#" schemaLocation="../eingebunden/PersonDataZMR.xsd"/>
+	<xsd:include schemaLocation="Personenabfrage.xsd"/>
+	
+	<xsd:element name="HauseigentuemerAbfrageRequest">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="HauseigentuemerAbfrageInfo"/>				
+				<xsd:element ref="cio:PostAdresse"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="HauseigentuemerAbfrageResponse">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="HauseigentuemerAbfrageAnfrage"/>
+				<xsd:element ref="base:Message"/>
+				<xsd:element ref="HauseigentuemerAbfrageErgebnis" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	<xsd:element name="HauseigentuemerAbfrageDruckRequest">
+		<xsd:annotation>
+			<xsd:documentation>Hauseigentuemerabfrage-Druckrequest (muss nach einer Hauseigentuemerabfrage mit derselben ProzessInstanzID aufgerufen werden)</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:annotation>
+					<xsd:documentation>Liste der EntityIDs der zu druckenden Meldungen (aus der vorangegangenen Hauseigentuemerabfrage)</xsd:documentation>
+				</xsd:annotation>
+				<xsd:choice>
+					<xsd:element name="AlleDrucken" type="xsd:boolean"/> 
+					<xsd:element ref="base:EntityID" minOccurs="1" maxOccurs="unbounded"/> 
+				</xsd:choice>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="HauseigentuemerAbfrageDruckResponse">
+		<xsd:annotation>
+			<xsd:documentation>In der Response werden die Anfragedaten aus dem Request, und das Suchergebnis bzw. eine Text-Meldung geliefert (Falls keine Person gefunden)</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="HauseigentuemerAbfrageAnfrage"/>
+				<xsd:element ref="base:Message"/>
+				<xsd:element name="PDFDaten" type="xsd:base64Binary"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="HauseigentuemerAbfrageAnfrage">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="HauseigentuemerAbfrageInfo"/>				
+				<xsd:element ref="cio:PostAdresse"/>			
+			</xsd:sequence>
+		</xsd:complexType>	
+	</xsd:element>
+
+	<xsd:element name="HauseigentuemerAbfrageInfo" type="HauseigentuemerAbfrageInfoType"/>
+	<xsd:complexType name="HauseigentuemerAbfrageInfoType">
+		<xsd:annotation>
+			<xsd:documentation>allgemeine Fachliche Informationen für die Hauseigentuemerabfrage</xsd:documentation>
+		</xsd:annotation>
+		<xsd:sequence>
+			<xsd:element ref="base:Bezugsfeld" minOccurs="0"/>
+			<xsd:element name="InclusiveAuskunftsgesperrt" type="xsd:boolean"/>
+			<xsd:element ref="base:AnzahlSaetze"/>
+		</xsd:sequence>
+	</xsd:complexType>
+	
+	<xsd:element name="HauseigentuemerAbfrageErgebnis" type="HauseigentuemerAbfrageErgebnisType"/>
+	<xsd:complexType name="HauseigentuemerAbfrageErgebnisType">
+		<xsd:annotation>
+			<xsd:documentation>Enthält je einen 'PersonErgebnisSatz' pro gefundener Person. Wird keine Person gefunden, befindet sich eine entprechende Text-Message in 'base:Message'</xsd:documentation>
+		</xsd:annotation>
+		<xsd:sequence>
+			<xsd:element ref="base:GefundeneSaetze">
+				<xsd:annotation>
+					<xsd:documentation>Gesamtanzahl der in der Datenbank gefundenen Personen</xsd:documentation>
+				</xsd:annotation>
+			</xsd:element>
+			<xsd:element ref="base:SaetzeVon">
+			<xsd:annotation>
+					<xsd:documentation>Beginn-Index dieser Ergebnisliste im Gesamtergebnis (bei Blaettern); Start mit 1</xsd:documentation>
+				</xsd:annotation>			
+			</xsd:element>
+			<xsd:element ref="base:SaetzeBis">
+			<xsd:annotation>
+					<xsd:documentation>Ende-Index dieser Ergebnisliste im Gesamtergebnis (bei Blaettern)</xsd:documentation>
+				</xsd:annotation>			
+			</xsd:element>
+			<xsd:element name="PersonErgebnisSatz" type="PAbfrageErgebnisSatzType" minOccurs="1" maxOccurs="unbounded"/>	
+		</xsd:sequence>
+	</xsd:complexType>	
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/IAPPersonenabfrage.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/IAPPersonenabfrage.xsd
new file mode 100644
index 00000000..26165d66
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/IAPPersonenabfrage.xsd
@@ -0,0 +1,120 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!-- 
+Name: IAPPersonenabfrage.xsd 
+Zweck: Erweitert die Datentypen für den Usecase "Personenabfrage" im ZMR 
+Author(s): Richard Mayrhofer xmayrh2 
+-->
+<xsd:schema targetNamespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+	xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+	xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+	xmlns:cio="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+	elementFormDefault="qualified" attributeFormDefault="unqualified"
+	version="1.0">
+	
+	<xsd:import namespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" schemaLocation="../eingebunden/EingebundenProxy.xsd" />
+	<xsd:import namespace="http://reference.e-government.gv.at/namespace/persondata/de/20040201#" schemaLocation="../eingebunden/PersonDataZMR.xsd" />
+
+	<xsd:include schemaLocation="Personenabfrage.xsd" />
+	<xsd:include schemaLocation="Behoerdenabfrage.xsd" />
+	
+	<xsd:element name="IAPPersonenUeberblickRequest">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="PersonenAbfrageInfo" />
+				<xsd:element ref="base:ZMRZahl" minOccurs="0" />
+				<xsd:element ref="cio:NatuerlichePerson" minOccurs="0" />
+				<xsd:element ref="cio:PostAdresse" minOccurs="0" />
+				<xsd:element ref="IAPRequestExtension" />
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="IAPRequestExtension">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element name="IAPTyp">
+					<xsd:simpleType>
+						<xsd:restriction base="xsd:string">
+							<xsd:enumeration value="KURZAUSKUNFT" />
+							<xsd:enumeration value="VOLLAUSKUNFT" />
+							<xsd:enumeration value="NEGATIVAUSKUNFT" />
+						</xsd:restriction>
+					</xsd:simpleType>
+				</xsd:element>
+				<xsd:element name="IAPFormat" minOccurs="0">
+					<xsd:simpleType>
+						<xsd:restriction base="xsd:string">
+							<xsd:enumeration value="HTML" />
+							<xsd:enumeration value="PDF" />
+							<xsd:enumeration value="XML" />
+						</xsd:restriction>
+					</xsd:simpleType>
+				</xsd:element>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="IAPPersonenUeberblickResponse">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="IAPRequestExtension" />
+				<xsd:element ref="base:Message" />
+				<xsd:element ref="IAPPersonAbfrageUeberblick" minOccurs="0" maxOccurs="1"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="IAPPersonAbfrageUeberblick">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="base:AnzahlSaetze" />
+				<xsd:element ref="IAPPersonUeberblick" minOccurs="1" maxOccurs="1000"/>
+			</xsd:sequence>	
+		</xsd:complexType>	
+	</xsd:element>
+	
+	<xsd:element name="IAPPersonUeberblick">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="PersonKey" />
+				<xsd:element ref="cio:Geburtsdatum"/>
+				<xsd:element ref="cio:Familienname"/>
+				<xsd:element ref="cio:Vorname"/>
+				<xsd:element ref="cio:Geschlecht"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="IAPPersonenDetailRequest">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="PersonKey" minOccurs="0" maxOccurs="1"/>
+				<xsd:element ref="IAPRequestExtension" />
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="IAPPersonenDetailResponse">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="IAPRequestExtension" />
+				<xsd:element ref="base:Message" />
+				<xsd:element ref="IAPXmlResponse" minOccurs="0" />
+				<xsd:element ref="IAPHtmlResponse" minOccurs="0" />
+				<xsd:element ref="PDFDaten" minOccurs="0" />
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="IAPXmlResponse">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="PersonenAbfrageResponse" />
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="IAPHtmlResponse" type="xsd:string" />
+	<xsd:element name="PDFDaten" type="xsd:base64Binary" />
+	
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Meldeauskunft.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Meldeauskunft.xsd
new file mode 100644
index 00000000..df262baf
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Meldeauskunft.xsd
@@ -0,0 +1,102 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: Meldeauskunft.xsd
+Zweck: Definiert Datentypen für die Meldeauskunft aus dem ZMR
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2010-11-24 mp: ZMR-1513 Aufdruck einer zusätzlichen Zeile auf Meldebestätigung und Meldeauskunft
+2010-04-02 teo:  ZMR-1373 CLM-1505 Meldedruck Erweiterungstext
+2004-10-27 tsch: Meldeauskunft aus Mussfeld im Ergebnis, cio:NatuerlichePerson optional
+2004-08-17 tsch: Druckzusatztext aus Base-Namespace referenziert
+2004-05-17 tsch: Organisation entfernt, ZMR-Zahl hinzugefügt
+2004-04-13 tsch: AktHistMeldesatz, GemeldetBis hinzugefügt
+2004-04-01 tsch: Erstellung
+-->
+
+<xsd:schema xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:cio="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+			targetNamespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	
+	<xsd:import namespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" schemaLocation="../eingebunden/EingebundenProxy.xsd"/>		
+	<xsd:import namespace="http://reference.e-government.gv.at/namespace/persondata/de/20040201#" schemaLocation="../eingebunden/PersonDataZMR.xsd"/>
+	
+	
+	<xsd:element name="MeldeauskunftRequest">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="MeldeauskunftInfo"/>
+				<xsd:sequence minOccurs="0">
+					<xsd:element ref="base:Bereichskennung"/>
+					<xsd:element ref="base:BPK"/>
+				</xsd:sequence>
+				<xsd:element ref="base:ZMRZahl" minOccurs="0"/>					
+				<xsd:element ref="cio:NatuerlichePerson"/>
+				<xsd:element ref="cio:PostAdresse" minOccurs="0"/>				
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="MeldeauskunftResponse">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="MeldeauskunftAnfrage"/>
+				<xsd:element ref="base:Message"/>
+				<xsd:element ref="Meldeauskunft"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="MeldeauskunftAnfrage">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="MeldeauskunftInfo"/>
+				<xsd:sequence minOccurs="0">
+					<xsd:element ref="base:Bereichskennung"/>
+					<xsd:element ref="base:BPK"/>
+				</xsd:sequence>
+				<xsd:element ref="base:ZMRZahl" minOccurs="0"/>	
+				<xsd:element ref="cio:NatuerlichePerson"/>
+				<xsd:element ref="cio:PostAdresse" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>	
+	</xsd:element>
+
+	<xsd:element name="MeldeauskunftInfo" type="MeldeauskunftInfoType"/>
+	<xsd:complexType name="MeldeauskunftInfoType">
+		<xsd:annotation>
+			<xsd:documentation>allgemeine Fachliche Informationen für die Meldeauskunft</xsd:documentation>
+		</xsd:annotation>
+		<xsd:sequence>
+			<xsd:element ref="base:Bezugsfeld"/>
+			<xsd:element ref="Ergebnisdaten"/>
+			<xsd:element ref="base:DruckZusatztext" minOccurs="0" maxOccurs="unbounded"/>
+			<xsd:element ref="base:Infotext" minOccurs="0"/>
+		</xsd:sequence>
+	</xsd:complexType>
+	
+	<xsd:element name="Ergebnisdaten">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element name="AlleAktuellenWohnsitze" type="xsd:boolean"/>
+				<xsd:element name="OhneGeburtsdatum" type="xsd:boolean"/>			
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="Meldeauskunft">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="cio:NatuerlichePerson" minOccurs="0"/>
+				<xsd:element ref="cio:PostAdresse" minOccurs="0" maxOccurs="unbounded"/>
+				<xsd:element name="AktMeldesatz" type="xsd:boolean"/>
+				<xsd:element ref="base:GemeldetBis" minOccurs="0"/>
+				<xsd:element name="PDFDaten" type="xsd:base64Binary"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>	
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Meldebestaetigung.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Meldebestaetigung.xsd
new file mode 100644
index 00000000..4f8b6f93
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Meldebestaetigung.xsd
@@ -0,0 +1,127 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: Meldebestaetigung.xsd
+Zweck: Definiert Datentypen für Meldebestaetigungen aus dem ZMR
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Achtung: Es sollte bedacht werden, dass diese Datei fast 1:1 nach LMR/MeldebestaetigungFamilie.xsd kopiert wurde
+		und Anpassungen in dieser Datei evtl. dort nachgezogen werden müssen! Dies ist vor allem der Fall, wenn
+		es sich um oberflächenrelevante Änderungen handelt.
+
+Aenderungshistorie:
+2010-11-24 mp: ZMR-1513 Aufdruck einer zusätzlichen Zeile auf Meldebestätigung und Meldeauskunft
+2010-04-20 teo:  ZMR-1374 CLM-1900 Meldebestätigung für Rechtsanwälte
+2010-04-02 teo:  ZMR-1373 CLM-1505 Meldedruck Erweiterungstext
+2009-04-28 teo:  +MeldebestaetigungUmmeldeservice
+2008-03-19 teo:  CQ#3013: +Druckoption für Ortanzeige
+2004-11-02 tsch: GemeindeNr entfernt
+2004-08-17 tsch: Druckzusatztext aus Base-Namespace referenziert
+2004-05-17 tsch: Organisation entfernt
+2004-04-15 tsch: Erstellung
+-->
+<xsd:schema targetNamespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#" xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#" xmlns:cio="http://reference.e-government.gv.at/namespace/persondata/de/20040201#" elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	
+	<xsd:import namespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" schemaLocation="../eingebunden/EingebundenProxy.xsd"/>
+	<xsd:import namespace="http://reference.e-government.gv.at/namespace/persondata/de/20040201#" schemaLocation="../eingebunden/PersonDataZMR.xsd"/>
+	<xsd:element name="MeldebestaetigungRequest">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="MeldebestaetigungInfo"/>
+				<xsd:element ref="base:ZMRZahl"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	<xsd:element name="MeldebestaetigungResponse">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="MeldebestaetigungAnfrage"/>
+				<xsd:element ref="base:Message"/>
+				<xsd:element ref="Meldebestaetigung" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	<xsd:element name="MeldebestaetigungAnfrage">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="MeldebestaetigungInfo"/>
+				<xsd:element ref="base:ZMRZahl"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	<xsd:element name="MeldebestaetigungInfo" type="MeldebestaetigungInfoType"/>
+	<xsd:complexType name="MeldebestaetigungInfoType">
+		<xsd:annotation>
+			<xsd:documentation>allgemeine Fachliche Informationen für die Meldebestaetigung</xsd:documentation>
+		</xsd:annotation>
+		<xsd:sequence>
+			<xsd:element ref="base:Bezugsfeld" minOccurs="0"/>
+			<xsd:element ref="MeldebestaetigungArt"/>
+			<xsd:element ref="base:DruckZusatztext" minOccurs="0" maxOccurs="unbounded"/>
+			<xsd:element ref="base:Infotext" minOccurs="0"/>
+			<xsd:element ref="MeldebestaetigungDruckoptionOrt" minOccurs="0"/>
+			<xsd:element ref="MeldebestaetigungUmmeldeservice" minOccurs="0"/>
+			<xsd:element name="ZeitraumVon" type="base:TimestampType" minOccurs="0"/>
+			<xsd:element name="ZeitraumBis" type="base:TimestampType" minOccurs="0"/>
+		</xsd:sequence>
+	</xsd:complexType>
+	<xsd:element name="MeldebestaetigungArt">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:enumeration value="AKTLETZT"/>
+				<xsd:enumeration value="GEM_AKT"/>
+				<xsd:enumeration value="GEM_AKTHIST"/>
+				<xsd:enumeration value="GEM_ZEITRAUM"/>
+				<xsd:enumeration value="GES_AKT"/>
+				<xsd:enumeration value="GES_BETR"/>
+				<xsd:enumeration value="GES_AKTHIST"/>
+				<xsd:enumeration value="GES_AKTHIST_Z"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	<xsd:element name="MeldebestaetigungUmmeldeservice">
+	<xsd:complexType>
+		<xsd:annotation>
+			<xsd:documentation>allgemeine Fachliche Informationen für die Meldebestaetigung</xsd:documentation>
+		</xsd:annotation>
+		<xsd:sequence>
+			<xsd:element name="ServiceCode">
+				<xsd:simpleType>
+					<xsd:restriction base="xsd:string">
+						<xsd:minLength value="1"/>
+						<xsd:maxLength value="20"/>
+					</xsd:restriction>
+				</xsd:simpleType>
+			</xsd:element> 
+			<xsd:element ref="base:ServerTransaktionNr"/>
+		</xsd:sequence>
+	</xsd:complexType>
+	</xsd:element>
+	<xsd:element name="MeldebestaetigungDruckoptionOrt">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:enumeration value="ORTSNAME"/>
+				<xsd:enumeration value="POSTORT"/>
+				<xsd:enumeration value="ALLE"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	<xsd:element name="Meldebestaetigung">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="base:ZMRZahl"/>
+				<xsd:element ref="cio:NatuerlichePerson"/>
+				<xsd:element name="Meldung" type="MeldungMeldebestaetigungType" minOccurs="0" maxOccurs="unbounded"/>
+				<xsd:element name="AktMeldesatz" type="xsd:boolean"/>
+				<xsd:element ref="base:GemeldetBis" minOccurs="0"/>
+				<xsd:element name="PDFDaten" type="xsd:base64Binary"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	<xsd:complexType name="MeldungMeldebestaetigungType">
+		<xsd:sequence>
+			<xsd:element ref="cio:PostAdresse"/>
+			<xsd:element ref="base:GemeldetVon"/>
+			<xsd:element ref="base:GemeldetBis" minOccurs="0"/>
+		</xsd:sequence>
+	</xsd:complexType>
+</xsd:schema>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/MeldebestaetigungenAnfordern.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/MeldebestaetigungenAnfordern.xsd
new file mode 100644
index 00000000..0e08efd2
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/MeldebestaetigungenAnfordern.xsd
@@ -0,0 +1,55 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: MeldebestaetigungenAnfordern.xsd
+Zweck: Definiert Datentypen für das Anfordern von Massen-Meldebestätigungen innerhalb einer Gemeinde
+Author(s): Ehrenmüller Oliver, ZMR-SU
+
+Aenderungshistorie:
+2010-02-01 Erstellt
+-->
+
+<xsd:schema xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:cio="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+			targetNamespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	
+	<xsd:import namespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" schemaLocation="../eingebunden/EingebundenProxy.xsd"/>
+
+	<xsd:element name="MeldebestaetigungenAnfordernRequest">
+		<xsd:annotation>
+			<xsd:documentation>Meldebestätigungen für alle Personen in der angegebenen Gemeinde.</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="base:GemeindeNr"/>
+				<xsd:element name="StichtagVon" type="base:TimestampType" minOccurs="0"/>
+				<xsd:element name="StichtagBis" type="base:TimestampType" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="MeldebestaetigungenAnfordernAnfrage">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="base:GemeindeNr"/>
+				<xsd:element name="StichtagVon" type="base:TimestampType" minOccurs="0"/>
+				<xsd:element name="StichtagBis" type="base:TimestampType" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="MeldebestaetigungenAnfordernResponse">
+		<xsd:annotation>
+			<xsd:documentation>Server-Antwort zur Anforderung von Massen-Meldebestätigungen</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="MeldebestaetigungenAnfordernAnfrage"/>
+				<xsd:element ref="base:Message"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/MeldungHistKorrigieren.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/MeldungHistKorrigieren.xsd
new file mode 100644
index 00000000..b322b1b0
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/MeldungHistKorrigieren.xsd
@@ -0,0 +1,112 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: MeldungHistKorrigieren.xsd.xsd
+Zweck: Definiert Datentypen für den Usecase "Historische Meldung korrigieren" im ZMR
+Author(s): Ehrenmüller Oliver, ZMR-SU
+
+Aenderungshistorie:
+2011-03-23 mp: ZMR-1568: Zuzugs-/Verzugsstaat vorerst auskommentiert
+2011-01-24 mp: Meldungreferenz optional (für hist. Wohnsitzanmeldung)
+2011-01-17 mp: Angepasst für hist. Wohnsitzanlage
+2010-03-10 mp: Meldung im Response nun optional (notw. für Strang löschen)
+2010-03-09 mp: Personreferenz im Response auf Personergebnis geändert
+2010-03-09 mp: Umbenannt auf MeldungHistKorrigieren, um Verwechslungen zu vermeiden
+2010-03-08 teo: erstellt
+-->
+
+<xsd:schema targetNamespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns:cio="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+			xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	 
+	<xsd:import namespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" schemaLocation="../eingebunden/EingebundenProxy.xsd"/>
+	<xsd:import namespace="http://reference.e-government.gv.at/namespace/persondata/de/20040201#" schemaLocation="../eingebunden/PersonDataZMR.xsd"/>
+	<xsd:include schemaLocation="../zmr/entities/Person.xsd"/>
+	<xsd:include schemaLocation="../zmr/entities/Meldung.xsd"/>
+	<xsd:include schemaLocation="../zmr/entities/Behoerdenattribute.xsd"/>
+	<xsd:include schemaLocation="../zmr/entities/Auskunftssperre.xsd"/>
+	
+	<xsd:element name="MeldungHistKorrigierenRequest">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="MeldungHistKorrigierenInfo"/>
+				<xsd:element ref="PersonReferenz"/>
+				<xsd:element ref="MeldungReferenz" minOccurs="0"/>
+				<xsd:element name="Wohnsitz" type="WohnsitzAnlageType" minOccurs="0"/>
+				<xsd:element ref="base:GemeldetVon" minOccurs="0"/>
+				<xsd:element ref="base:GemeldetBis" minOccurs="0"/>
+				<xsd:element ref="base:Unterkunftgeber" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="MeldungHistKorrigierenResponse">
+		<xsd:complexType>
+			<xsd:annotation>
+				<xsd:documentation>Server-Antwort zur Meldungkorrektur</xsd:documentation>
+			</xsd:annotation>
+			<xsd:sequence>
+				<xsd:element ref="MeldungHistKorrigierenAnfrage"/>
+				<xsd:element ref="base:Message"/>
+				<xsd:sequence minOccurs="0">	
+					<xsd:element ref="PersonErgebnis"/>
+					<xsd:element ref="MeldungErgebnis" minOccurs="0">
+						<xsd:annotation>
+							<xsd:documentation>Gesamtdatensatz der korrigierten Meldung (mit EntityIDs der Meldung und deren abhängigen Entities)</xsd:documentation>
+						</xsd:annotation>			
+					</xsd:element>
+				</xsd:sequence>	
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="MeldungHistKorrigierenAnfrage">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="MeldungHistKorrigierenInfo"/>
+				<xsd:element ref="PersonReferenz"/>
+				<xsd:element ref="MeldungReferenz" minOccurs="0"/>
+				<xsd:element name="Wohnsitz" type="WohnsitzAnlageType" minOccurs="0"/>
+				<xsd:element ref="base:GemeldetVon" minOccurs="0"/>
+				<xsd:element ref="base:GemeldetBis" minOccurs="0"/>
+				<xsd:element ref="base:Unterkunftgeber" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="MeldungHistKorrigierenInfo" type="MeldungHistKorrigierenInfoType"/>
+	<xsd:complexType name="MeldungHistKorrigierenInfoType">
+		<xsd:annotation>
+			<xsd:documentation>Meta-Informationen zur Meldungkorrektur</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexContent>
+			<xsd:extension base="base:InfoFachlichType">
+				<xsd:sequence>		
+					<xsd:element name="MeldungHistKorrigierenBezug" type="MeldungHistKorrigierenBezugType"/>
+					<!-- ZMR-1568  
+					<xsd:element ref="base:StaatZugezogen" minOccurs="0"/>
+					<xsd:element ref="base:StaatVerzogen" minOccurs="0"/>
+					-->
+				</xsd:sequence>				
+			</xsd:extension>
+		</xsd:complexContent>
+	</xsd:complexType>
+	
+	<xsd:simpleType name="MeldungHistKorrigierenBezugType">
+		<xsd:annotation>
+			<xsd:documentation>mögliche Korrekturen für eine historische Meldung</xsd:documentation>
+		</xsd:annotation>
+		<xsd:restriction base="xsd:string">
+			<xsd:enumeration value="GemeldetPeriode"/>
+			<xsd:enumeration value="Unterkunftgeber"/>
+			<xsd:enumeration value="Adressaenderung"/>
+			<xsd:enumeration value="StrangLoeschen"/>
+			<xsd:enumeration value="SatzLoeschen"/>
+			<xsd:enumeration value="HistWohnsitzanlage"/>
+		</xsd:restriction>
+	</xsd:simpleType>
+
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/ORFGISAnforderung.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/ORFGISAnforderung.xsd
new file mode 100644
index 00000000..90e6d34a
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/ORFGISAnforderung.xsd
@@ -0,0 +1,65 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: ORFGISAnforderung.xsd
+Zweck: Definiert Datentypen für den ZMR-ORFGISAnforderung
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2006-11-06 tsch: Erstellung
+-->
+
+<xsd:schema targetNamespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:cio="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	
+	<xsd:import namespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" schemaLocation="../eingebunden/EingebundenProxy.xsd"/>
+	<xsd:import namespace="http://reference.e-government.gv.at/namespace/persondata/de/20040201#" schemaLocation="../eingebunden/PersonDataZMR.xsd"/>
+	
+	<xsd:element name="ORFGISAnforderungRequest">
+		<xsd:annotation>
+			<xsd:documentation>Anfragedaten der ORFGISAnforderung</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="ORFGISAnforderungInfo"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="ORFGISAnforderungResponse">
+		<xsd:annotation>
+			<xsd:documentation>In der Response werden die Anfragedaten aus dem Request und die Meldung geliefert, dass die Daten bereit gestellt werden.</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="ORFGISAnforderungAnfrage"/>
+				<xsd:element ref="base:Message"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="ORFGISAnforderungInfo" type="ORFGISAnforderungInfoType"/>
+	
+	<xsd:complexType name="ORFGISAnforderungInfoType">
+		<xsd:sequence>
+			<xsd:element name="Gemeindenummern" type="xsd:string" />
+			<xsd:element name="DurchfuehrungsZeitpunkt"
+				type="base:TimestampType" minOccurs="0" />
+			<xsd:element name="AnmeldungenAb" type="base:TimestampType"
+				minOccurs="0" />
+			<xsd:element name="Ortskennzeichen" type="xsd:boolean"></xsd:element>
+		</xsd:sequence>
+	</xsd:complexType>
+	
+	<xsd:element name="ORFGISAnforderungAnfrage">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="ORFGISAnforderungInfo"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/ObjektsucheMindestsicherung.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/ObjektsucheMindestsicherung.xsd
new file mode 100644
index 00000000..2e91cacf
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/ObjektsucheMindestsicherung.xsd
@@ -0,0 +1,88 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: ObjektsucheMindestsicherung.xsd
+Zweck: Definiert Datentypen für die Mindestsicherung - Objektsuche im ZMR
+Author(s): Polster Martin, ZMR-SU
+
+Aenderungshistorie:
+2011-02-09 mp: ObjektsucheMindestsicherungInfo optional
+2010-07-29 mp: Erweitert um Adressstatus
+2010-07-27 mp: Erstellung
+-->
+
+<xsd:schema xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:cio="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+			targetNamespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	
+	<xsd:import namespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" schemaLocation="../eingebunden/EingebundenProxy.xsd"/>		
+	<xsd:import namespace="http://reference.e-government.gv.at/namespace/persondata/de/20040201#" schemaLocation="../eingebunden/PersonDataZMR.xsd"/>
+	
+	<xsd:include schemaLocation="Personensuche.xsd"/>
+	
+	<xsd:element name="ObjektsucheMindestsicherungRequest">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="ObjektsucheMindestsicherungInfo" minOccurs="0"/>
+				<xsd:element ref="cio:PostAdresse"/>
+				<xsd:element ref="base:Adressstatus"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="ObjektsucheMindestsicherungResponse">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="ObjektsucheMindestsicherungAnfrage"/>
+				<xsd:element ref="base:Message"/>
+				<xsd:element ref="ObjektsucheMindestsicherungErgebnis" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="ObjektsucheMindestsicherungAnfrage">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="ObjektsucheMindestsicherungInfo" minOccurs="0"/>
+				<xsd:element ref="cio:PostAdresse"/>
+				<xsd:element ref="base:Adressstatus"/>
+			</xsd:sequence>
+		</xsd:complexType>	
+	</xsd:element>
+
+	<xsd:element name="ObjektsucheMindestsicherungInfo">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="base:Stichtag" minOccurs="0"/>			
+				<xsd:element ref="base:AnzahlSaetze" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>	
+	</xsd:element>	
+	
+	<xsd:element name="ObjektsucheMindestsicherungErgebnis">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="base:GefundeneSaetze">
+					<xsd:annotation>
+						<xsd:documentation>Gesamtanzahl der in der Datenbank gefundenen Personen</xsd:documentation>
+					</xsd:annotation>
+				</xsd:element>
+				<xsd:element ref="base:SaetzeVon">
+				<xsd:annotation>
+						<xsd:documentation>Beginn-Index dieser Ergebnisliste im Gesamtergebnis (bei Blaettern); Start mit 0</xsd:documentation>
+					</xsd:annotation>			
+				</xsd:element>
+				<xsd:element ref="base:SaetzeBis">
+				<xsd:annotation>
+						<xsd:documentation>Ende-Index dieser Ergebnisliste im Gesamtergebnis (bei Blaettern)</xsd:documentation>
+					</xsd:annotation>			
+				</xsd:element>
+				<xsd:element name="PersonErgebnisSatz" type="PersonErgebnisSatzType" minOccurs="1" maxOccurs="unbounded"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/ObjektsucheSteuerfahndung.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/ObjektsucheSteuerfahndung.xsd
new file mode 100644
index 00000000..0e0e5355
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/ObjektsucheSteuerfahndung.xsd
@@ -0,0 +1,91 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: ObjektsucheSteuerfahndung.xsd
+Zweck: Definiert Datentypen für die Steuerfahndungs - Objektsuche im ZMR
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2004-11-25 tsch: Erstellung
+-->
+
+<xsd:schema xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:cio="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+			targetNamespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	
+	<xsd:import namespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" schemaLocation="../eingebunden/EingebundenProxy.xsd"/>		
+	<xsd:import namespace="http://reference.e-government.gv.at/namespace/persondata/de/20040201#" schemaLocation="../eingebunden/PersonDataZMR.xsd"/>
+	
+	<xsd:element name="ObjektsucheSteuerfahndungRequest">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="ObjektsucheSteuerfahndungInfo"/>
+				<xsd:element ref="cio:PostAdresse" minOccurs="0"/>
+				<xsd:element ref="base:Unterkunftgeber" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="ObjektsucheSteuerfahndungResponse">
+		<xsd:annotation>
+			<xsd:documentation>
+			Es wir entweder das Feld PDFDaten (Anforderung als Druck) mit allen gefundenen Datensätzen,
+			oder ObjektsucheSteuerfahndungErgebnis mit der aktuell geblätterten Seite geliefert.
+			</xsd:documentation>
+		</xsd:annotation>		
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="ObjektsucheSteuerfahndungAnfrage"/>
+				<xsd:element ref="base:Message"/>
+				<xsd:element ref="ObjektsucheSteuerfahndungErgebnis" minOccurs="0"/>
+				<xsd:element name="PDFDaten" type="xsd:base64Binary" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="ObjektsucheSteuerfahndungAnfrage">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="ObjektsucheSteuerfahndungInfo"/>
+				<xsd:element ref="cio:PostAdresse" minOccurs="0"/>
+				<xsd:element ref="base:Unterkunftgeber" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>	
+	</xsd:element>
+
+	<xsd:element name="ObjektsucheSteuerfahndungInfo">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="base:Formalisiert"/>
+				<xsd:element name="AlsDruck" type="xsd:boolean"/>
+				<xsd:element ref="base:AnzahlSaetze" minOccurs="0"/>				
+			</xsd:sequence>
+		</xsd:complexType>	
+	</xsd:element>	
+	
+	<xsd:element name="ObjektsucheSteuerfahndungErgebnis">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="base:GefundeneSaetze">
+					<xsd:annotation>
+						<xsd:documentation>Gesamtanzahl der in der Datenbank gefundenen Personen</xsd:documentation>
+					</xsd:annotation>
+				</xsd:element>
+				<xsd:element ref="base:SaetzeVon">
+				<xsd:annotation>
+						<xsd:documentation>Beginn-Index dieser Ergebnisliste im Gesamtergebnis (bei Blaettern); Start mit 0</xsd:documentation>
+					</xsd:annotation>			
+				</xsd:element>
+				<xsd:element ref="base:SaetzeBis">
+				<xsd:annotation>
+						<xsd:documentation>Ende-Index dieser Ergebnisliste im Gesamtergebnis (bei Blaettern)</xsd:documentation>
+					</xsd:annotation>			
+				</xsd:element>
+				<xsd:element ref="cio:PersonenDaten" minOccurs="1" maxOccurs="unbounded"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/PersonAendern.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/PersonAendern.xsd
new file mode 100644
index 00000000..c29e8e06
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/PersonAendern.xsd
@@ -0,0 +1,78 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: PersonAendern.xsd
+Zweck: Definiert Datentypen für Personendaten-Änderungen im ZMR
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2004-09-29 tsch: Standarddokumente hinzugefügt
+2004-06-24 tsch: akademische Grade hinzugefügt, PersonAendernMsg entfernt
+2004-06-14 tsch: Behördenattribute hinzugefügt
+2004-01-28 tsch: Gesamtdatensatz der geaenderten Person in der Response-Message
+-->
+
+<xsd:schema xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:cio="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+			targetNamespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	
+	<xsd:import namespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" schemaLocation="../eingebunden/EingebundenProxy.xsd"/>
+	<xsd:include schemaLocation="../zmr/entities/Person.xsd"/>
+
+	<xsd:element name="PersonAendernRequest">
+		<xsd:annotation>
+			<xsd:documentation>Es können die Person und deren abhängige Entities (z.B. Staatsangehoerigkeit) unabhängig geändert werden. Felder, die nicht geschickt werden, bleiben unverändert, leer geschickte Felder werden gelöscht.</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="PersonAendernInfo"/>
+				<xsd:element ref="PersonReferenz"/>
+				<xsd:element ref="PersonAenderung" minOccurs="0"/>
+				<xsd:element ref="StaatsangehoerigkeitAenderung" minOccurs="0" maxOccurs="unbounded"/>
+				<xsd:element ref="StaatsangehoerigkeitAnlage" minOccurs="0" maxOccurs="unbounded"/>
+				<xsd:element ref="ReisedokumentAenderung" minOccurs="0" maxOccurs="unbounded"/>
+				<xsd:element ref="ReisedokumentAnlage" minOccurs="0" maxOccurs="unbounded"/>
+				<xsd:element name="BehoerdenattributeSetzen" type="BehoerdenattributeSetzenType" minOccurs="0"/>
+				<xsd:element ref="AuskunftssperreAenderung" minOccurs="0" maxOccurs="unbounded"/>
+				<xsd:element ref="AuskunftssperreAnlage" minOccurs="0" maxOccurs="unbounded"/>
+				<xsd:element ref="AkademischerGradAenderung" minOccurs="0" maxOccurs="unbounded"/>
+				<xsd:element ref="AkademischerGradAnlage" minOccurs="0" maxOccurs="unbounded"/>
+				<xsd:element ref="StandarddokumentAenderung" minOccurs="0" maxOccurs="unbounded"/>
+				<xsd:element ref="StandarddokumentAnlage" minOccurs="0" maxOccurs="unbounded"/>								
+				<xsd:element ref="EidasIdentitaetAenderung" minOccurs="0" maxOccurs="unbounded"/>
+				<xsd:element ref="EidasIdentitaetAnlage" minOccurs="0" maxOccurs="unbounded"/>								
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="PersonAendernResponse">
+		<xsd:annotation>
+			<xsd:documentation>Server-Antwort zur Personenänderung</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="base:Message"/>
+				<xsd:element ref="PersonErgebnis">
+					<xsd:annotation>
+						<xsd:documentation>Gesamtdatensatz der geänderten Person (mit EntityIDs der Person und deren abhängigen Entities)</xsd:documentation>
+					</xsd:annotation>
+				</xsd:element>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="PersonAendernInfo" type="PersonAendernInfoType"/>
+	<xsd:complexType name="PersonAendernInfoType">
+		<xsd:annotation>
+			<xsd:documentation>allgemeine Fachliche Informationen zur Personenänderung</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexContent>
+			<xsd:extension base="base:InfoFachlichType">
+							
+			</xsd:extension>
+		</xsd:complexContent>
+	</xsd:complexType>
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/PersonAnlegen.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/PersonAnlegen.xsd
new file mode 100644
index 00000000..e3131165
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/PersonAnlegen.xsd
@@ -0,0 +1,67 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: PersonAnlegen.xsd
+Zweck: Definiert Datentypen für den Usecase "Person anlegen" im ZMR
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2004-06-24 tsch: PersonAnlegenMsg entfernt
+2004-01-28 tsch: Gesamtdatensatz der neuen Person in der Response-Message
+-->
+
+<xsd:schema targetNamespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:cio="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	
+	<xsd:include schemaLocation="../zmr/entities/Person.xsd"/>
+	<xsd:include schemaLocation="WohnsitzAnmelden.xsd"/>
+	<xsd:import namespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" schemaLocation="../eingebunden/EingebundenProxy.xsd"/>
+
+	<xsd:element name="PersonAnlegenRequest">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="PersonAnlegenInfo"/>
+				<xsd:element ref="PersonAnlage"/>
+				<xsd:element ref="MeldungAnlage"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="PersonAnlegenResponse">
+		<xsd:complexType>
+			<xsd:annotation>
+				<xsd:documentation>Server-Antwort zur Personenanlage</xsd:documentation>
+			</xsd:annotation>
+			<xsd:sequence>
+				<xsd:element ref="base:Message"/>	
+				<xsd:element ref="PersonErgebnis">
+					<xsd:annotation>
+						<xsd:documentation>Gesamtdatensatz der im ZMR angelegten Person (mit EntityIDs der Person und deren abhängigen Entities)</xsd:documentation>
+					</xsd:annotation>
+				</xsd:element>
+				<xsd:element ref="MeldungErgebnis">
+					<xsd:annotation>
+						<xsd:documentation>Gesamtdatensatz der angelegten Meldung (mit EntityIDs der Meldung und deren abhängigen Entities)</xsd:documentation>
+					</xsd:annotation>			
+				</xsd:element>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="PersonAnlegenInfo" type="PersonAnlegenInfoType"/>
+	<xsd:complexType name="PersonAnlegenInfoType">
+		<xsd:annotation>
+			<xsd:documentation>allgemeine Fachliche Informationen zur Personenanlage</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexContent>
+			<xsd:extension base="base:InfoFachlichType">
+							
+			</xsd:extension>
+		</xsd:complexContent>
+	</xsd:complexType>
+
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/PersonExport.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/PersonExport.xsd
new file mode 100644
index 00000000..a91e9f5a
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/PersonExport.xsd
@@ -0,0 +1,74 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: PersonExport.xsd
+Zweck: Definiert Datentypen für den Usecase "Person export" im LMR
+-->
+
+<xsd:schema targetNamespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:cio="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	
+	<xsd:include schemaLocation="../zmr/entities/Person.xsd"/>
+	<xsd:include schemaLocation="Personensuche.xsd"/>
+	<xsd:import namespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" schemaLocation="../eingebunden/EingebundenProxy.xsd"/>
+
+	<xsd:element name="PersonExportRequest">
+	    <xsd:complexType>
+	        <xsd:annotation>
+	            <xsd:documentation>Request für PersonExport</xsd:documentation>
+	        </xsd:annotation>
+	        <xsd:sequence>
+	            <xsd:element ref="base:EntityID"/>
+	            <xsd:element ref="ExportOption"/>
+	        </xsd:sequence>
+	    </xsd:complexType>    
+	</xsd:element>
+	
+	<xsd:element name="PersonExportResponse">
+	    <xsd:complexType>
+	        <xsd:annotation>
+	            <xsd:documentation>Response für PersonExport</xsd:documentation>
+	        </xsd:annotation>
+	        <xsd:sequence>
+	        	<xsd:element ref="base:Message"/>
+	        	<xsd:element ref="ExportOption"/>
+	            <xsd:element ref="base:PersonExport"/>
+	        </xsd:sequence>
+	    </xsd:complexType>   	
+    </xsd:element>
+    
+    <xsd:element name="ExportOption">
+    	<xsd:complexType>
+	        <xsd:sequence>
+	            <xsd:element ref="ExportErgebnisOption"/>
+	            <xsd:element ref="ExportMeldungOption"/>
+	            <xsd:element ref="base:LetzteAenderung" minOccurs="0" maxOccurs="1"/>  
+	        </xsd:sequence>    
+		</xsd:complexType>
+    </xsd:element>
+    
+    <xsd:element name="ExportMeldungOption">
+      	<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:enumeration value="ALLE" />
+				<xsd:enumeration value="GEMEINDE" />
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>	
+	
+    <xsd:element name="ExportErgebnisOption">
+      	<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:enumeration value="ALLE" />
+				<xsd:enumeration value="AKTUELL" />
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>	
+	
+	
+	
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/PersonKorrigieren.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/PersonKorrigieren.xsd
new file mode 100644
index 00000000..3f163231
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/PersonKorrigieren.xsd
@@ -0,0 +1,74 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: PersonKorrigieren.xsd
+Zweck: Definiert Datentypen für Korrekturen von Personendaten im ZMR
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2004-09-29 tsch: Standarddokumente hinzugefügt
+2004-09-27 tsch: Erstellt
+-->
+
+<xsd:schema xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:cio="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+			targetNamespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	
+	<xsd:import namespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" schemaLocation="../eingebunden/EingebundenProxy.xsd"/>
+	<xsd:include schemaLocation="../zmr/entities/Person.xsd"/>
+
+	<xsd:element name="PersonKorrigierenRequest">
+		<xsd:annotation>
+			<xsd:documentation>Es können die Person und deren abhängige Entities (z.B. Staatsangehoerigkeit) unabhängig geändert werden. Felder, die nicht geschickt werden, bleiben unverändert, leer geschickte Felder werden gelöscht.</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="PersonKorrigierenInfo"/>
+				<xsd:element ref="PersonReferenz"/>
+				<xsd:element ref="PersonAenderung" minOccurs="0"/>
+				<xsd:element ref="StaatsangehoerigkeitAenderung" minOccurs="0" maxOccurs="unbounded"/>
+				<xsd:element ref="StaatsangehoerigkeitAnlage" minOccurs="0" maxOccurs="unbounded"/>
+				<xsd:element ref="ReisedokumentAenderung" minOccurs="0" maxOccurs="unbounded"/>
+				<xsd:element ref="ReisedokumentAnlage" minOccurs="0" maxOccurs="unbounded"/>
+				<xsd:element name="BehoerdenattributeSetzen" type="BehoerdenattributeSetzenType" minOccurs="0"/>
+				<xsd:element ref="AuskunftssperreAenderung" minOccurs="0" maxOccurs="unbounded"/>
+				<xsd:element ref="AuskunftssperreAnlage" minOccurs="0" maxOccurs="unbounded"/>
+				<xsd:element ref="AkademischerGradAenderung" minOccurs="0" maxOccurs="unbounded"/>
+				<xsd:element ref="AkademischerGradAnlage" minOccurs="0" maxOccurs="unbounded"/>
+				<xsd:element ref="StandarddokumentAenderung" minOccurs="0" maxOccurs="unbounded"/>
+				<xsd:element ref="StandarddokumentAnlage" minOccurs="0" maxOccurs="unbounded"/>							
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="PersonKorrigierenResponse">
+		<xsd:annotation>
+			<xsd:documentation>Server-Antwort zur Personenkorrektur</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="base:Message"/>
+				<xsd:element ref="PersonErgebnis">
+					<xsd:annotation>
+						<xsd:documentation>Gesamtdatensatz der korrigierten Person (mit EntityIDs der Person und deren abhängigen Entities)</xsd:documentation>
+					</xsd:annotation>
+				</xsd:element>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="PersonKorrigierenInfo" type="PersonKorrigierenInfoType"/>
+	<xsd:complexType name="PersonKorrigierenInfoType">
+		<xsd:annotation>
+			<xsd:documentation>allgemeine Fachliche Informationen zur Personenkorrektur</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexContent>
+			<xsd:extension base="base:InfoFachlichType">
+							
+			</xsd:extension>
+		</xsd:complexContent>
+	</xsd:complexType>
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/PersonTrennen.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/PersonTrennen.xsd
new file mode 100644
index 00000000..ceba2041
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/PersonTrennen.xsd
@@ -0,0 +1,75 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: PersonTrennen.xsd
+Zweck: Definiert Datentypen für den Usecase "Person_Trennen (SPLIT)" im ZMR
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2004-09-09 tsch: Erstellung
+-->
+
+<xsd:schema targetNamespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:cio="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+			
+	
+	<xsd:import namespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" schemaLocation="../eingebunden/EingebundenProxy.xsd"/>
+	
+	<xsd:include schemaLocation="Personenabfrage.xsd"/>
+	
+	<xsd:element name="PersonTrennenSucheRequest">
+		<xsd:annotation>
+			<xsd:documentation>ZMR-Zahl der Person, die gesplittet werden soll</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="base:ZMRZahl"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="PersonTrennenSucheResponse">
+		<xsd:annotation>
+			<xsd:documentation>Personen- und Medledaten des SPLIT-Kandidaten (es werden nur die zuletzt fachlich gültigen Sätze - sowohl der Person, als auch der Meldungen geliefert)</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="base:Message"/>
+				<xsd:element name="PersonTrennenSuchergebnis" type="PAbfrageErgebnisSatzType" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+
+	<xsd:element name="PersonTrennenRequest">
+		<xsd:annotation>
+			<xsd:documentation>
+			Zweiter Schritt der Personentrennung nach der Suche/Anzeige der zu trennenden Person (Trennung durchführen)
+			Enthält die Person-Referenz und die Liste der auf die neue Person zu übertragenden Meldungen
+			</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="PersonReferenz"/>
+				<xsd:element ref="MeldungReferenz" minOccurs="1" maxOccurs="unbounded"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="PersonTrennenResponse">
+		<xsd:annotation>
+			<xsd:documentation>Personen- und Meldedaten der getrennten Personen, es wird die gesamte fachl. Historie geliefert</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="base:Message"/>
+				<xsd:element name="PersonTrennenErgebnis" type="PAbfrageErgebnisSatzType" minOccurs="2" maxOccurs="2"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/PersonZusammenfuehren.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/PersonZusammenfuehren.xsd
new file mode 100644
index 00000000..b44943d7
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/PersonZusammenfuehren.xsd
@@ -0,0 +1,75 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: PersonZusammenfuehren.xsd
+Zweck: Definiert Datentypen für den Usecase "Person_Zusammenfuehren (KIT)" im ZMR
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2004-09-09 tsch: Erstellung
+-->
+
+<xsd:schema targetNamespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:cio="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+			
+	
+	<xsd:import namespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" schemaLocation="../eingebunden/EingebundenProxy.xsd"/>
+	
+	<xsd:include schemaLocation="Personenabfrage.xsd"/>
+	
+	<xsd:element name="PersonZusammenfuehrenSucheRequest">
+		<xsd:annotation>
+			<xsd:documentation>ZMR-Zahl der Person, die gesplittet werden soll</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element name="QuellpersonZMRZahl" type="base:ZMRZahlType"/>
+				<xsd:element name="ZielpersonZMRZahl" type="base:ZMRZahlType"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="PersonZusammenfuehrenSucheResponse">
+		<xsd:annotation>
+			<xsd:documentation>Personen- und Medledaten der KIT-Kandidaten (es werden nur die zuletzt fachlich gültigen Sätze - sowohl der Person, als auch der Meldungen geliefert)</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="base:Message"/>
+				<xsd:sequence minOccurs="0">
+					<xsd:element name="PersonZusammenfuehrenSuchergebnis" type="PAbfrageErgebnisSatzType" minOccurs="2" maxOccurs="2"/>
+				</xsd:sequence>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+
+	<xsd:element name="PersonZusammenfuehrenRequest">
+		<xsd:annotation>
+			<xsd:documentation>Zweiter Schritt der Personenzusammenführung nach der Suche/Anzeige der zusammenzuführenden Personen (Zusammenführung durchführen)</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element name="QuellpersonReferenz" type="PersonReferenzType"/>
+				<xsd:element name="ZielpersonReferenz" type="PersonReferenzType"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="PersonZusammenfuehrenResponse">
+		<xsd:annotation>
+			<xsd:documentation>Personen- und Meldedaten zusammengeführten Person, es wird die gesamte fachl. Historie geliefert</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="base:Message"/>
+				<xsd:element name="PersonZusammenfuehrenErgebnis" type="PAbfrageErgebnisSatzType"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/PersonenIndex.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/PersonenIndex.xsd
new file mode 100644
index 00000000..72b3d3f2
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/PersonenIndex.xsd
@@ -0,0 +1,73 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: PersonenIndex.xsd
+Zweck: Definiert Datentypen für den Personenindex mit verschl. bPKs
+Author(s): Oliver Ehrenmüller, ZMR-SU
+
+Aenderungshistorie:
+2011-09-05 teo Änderungsdienst ZWR (PN126)
+2011-08-05 teo Request/Response vertauscht, +Register-Info
+2011-08-02 teo erstellt.
+-->
+
+<xsd:schema targetNamespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:cio="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+			
+	<xsd:import namespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" schemaLocation="../eingebunden/EingebundenProxy.xsd"/>
+	<xsd:import namespace="http://reference.e-government.gv.at/namespace/persondata/de/20040201#" schemaLocation="../eingebunden/PersonDataZMR.xsd"/>
+	
+	<xsd:element name="PersonenIndexRequest">
+		<xsd:annotation>
+			<xsd:documentation>
+				Im Request werden Meta-Informationen zum Batch und die verschlüsselten BPKs geliefert
+				ECDID steht für "encrypted context dependend id" aus.
+			</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="base:Message"/>
+				<xsd:element ref="PersonenIndexInfo"/>
+				<xsd:element name="ECDID" type="xsd:string" minOccurs="0" maxOccurs="unbounded"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="PersonenIndexResponse">
+		<xsd:annotation>
+			<xsd:documentation>Es werden keine Responsedaten erwartet.</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence/>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="PersonenIndexInfo" type="PersonenIndexInfoType"/>
+	
+	<xsd:complexType name="PersonenIndexInfoType">
+		<xsd:annotation>
+			<xsd:documentation>
+				Meta-Informationen zum ausgelieferten Index:
+				BatchCode/Name, Organisation, Bereich, Zeitraum, etc...
+			</xsd:documentation>
+		</xsd:annotation>
+		<xsd:sequence>
+			<xsd:element name="BatchCode" type="xsd:string"/>
+			<xsd:element name="BatchName" type="xsd:string"/>
+			<xsd:element ref="base:Organisation"/>
+			<xsd:element name="Register" type="xsd:string"/>
+			<xsd:sequence minOccurs="0">
+				<xsd:element name="AbgleichVon" type="base:TimestampType"/>
+				<xsd:element name="AbgleichBis" type="base:TimestampType"/>
+			</xsd:sequence>
+			<xsd:element name="Bereich" type="xsd:string"/>
+			<xsd:element name="PackageID" type="base:ENTITYIDType"/>
+			<xsd:element ref="base:AnzahlSaetze"/>
+		</xsd:sequence>
+	</xsd:complexType>
+	
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Personenabfrage.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Personenabfrage.xsd
new file mode 100644
index 00000000..c1b579ce
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Personenabfrage.xsd
@@ -0,0 +1,139 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: Personenabfrage.xsd
+Zweck: Definiert Datentypen für den Usecase "Personenabfrage" im ZMR
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2004-12-09 tsch: Liste der EntityIDs bei Druck optional (für Negativauskunft)
+2004-08-17 tsch: Erstellung
+-->
+
+<xsd:schema targetNamespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:cio="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+			
+	
+	<xsd:import namespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" schemaLocation="../eingebunden/EingebundenProxy.xsd"/>
+	<xsd:import namespace="http://reference.e-government.gv.at/namespace/persondata/de/20040201#" schemaLocation="../eingebunden/PersonDataZMR.xsd"/>
+	<xsd:include schemaLocation="Personensuche.xsd"/>
+	
+	<xsd:element name="PersonenAbfrageRequest">
+		<xsd:annotation>
+			<xsd:documentation>Suchkriterien für die Personensuche im ZMR(Personendaten + Adressdaten)</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="PersonenAbfrageInfo"/>
+				<xsd:element ref="base:ZMRZahl" minOccurs="0"/>
+				<xsd:element ref="cio:NatuerlichePerson" minOccurs="0"/>
+				<xsd:element ref="cio:PostAdresse" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="PersonenAbfrageResponse">
+		<xsd:annotation>
+			<xsd:documentation>In der Response werden die Anfragedaten aus dem Request, und das Suchergebnis bzw. eine Text-Meldung geliefert (Falls keine Person gefunden)</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="PersonenAbfrageAnfrage"/>
+				<xsd:element ref="base:Message"/>
+				<xsd:element ref="PersonenAbfrageErgebnis" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="PersonenAbfrageDruckRequest">
+		<xsd:annotation>
+			<xsd:documentation>Suchkriterien für die Personensuche im ZMR (Personendaten + Adressdaten)</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:annotation>
+					<xsd:documentation>Liste der EntityIDs der zu druckenden Personen</xsd:documentation>
+				</xsd:annotation>
+				<xsd:element ref="base:EntityID" minOccurs="0" maxOccurs="unbounded"/> 
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="PersonenAbfrageDruckResponse">
+		<xsd:annotation>
+			<xsd:documentation>In der Response werden die Anfragedaten aus dem Request, und das Suchergebnis bzw. eine Text-Meldung geliefert (Falls keine Person gefunden)</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="PersonenAbfrageAnfrage"/>
+				<xsd:element ref="base:Message"/>
+				<xsd:element name="PDFDaten" type="xsd:base64Binary"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="PersonenAbfrageInfo" type="PersonenAbfrageInfoType"/>
+	<xsd:element name="PersonenAbfrageErgebnis" type="PersonenAbfrageErgebnisType"/>
+	
+	<xsd:element name="PersonenAbfrageAnfrage">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="PersonenAbfrageInfo"/>
+				<xsd:element ref="base:ZMRZahl" minOccurs="0"/>
+				<xsd:element ref="cio:NatuerlichePerson" minOccurs="0"/>
+				<xsd:element ref="cio:PostAdresse" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>	
+	</xsd:element>
+	<xsd:complexType name="PersonenAbfrageInfoType">
+		<xsd:annotation>
+			<xsd:documentation>Fachliche Informationen zur Personensuche</xsd:documentation>
+		</xsd:annotation>	
+		<xsd:sequence>
+			<xsd:element ref="base:Bezugsfeld"/>
+			<xsd:element name="Suchkriterien" type="SuchkriterienType"/>
+			<xsd:element name="Ergebniskriterien" type="ErgebniskriterienType"/>
+			<xsd:element name="berechneBpk" type="xsd:boolean" default="false" minOccurs="0"/>
+			<xsd:element ref="base:AnzahlSaetze"/>
+		</xsd:sequence>
+	</xsd:complexType>
+
+	<xsd:complexType name="PersonenAbfrageErgebnisType">
+		<xsd:annotation>
+			<xsd:documentation>Enthält je einen 'PersonErgebnisSatz' pro gefundener Person. Wird keine Person gefunden, befindet sich eine entprechende Text-Message in 'PersonensucheMsg'</xsd:documentation>
+		</xsd:annotation>
+		<xsd:sequence>
+			<xsd:element ref="base:GefundeneSaetze">
+				<xsd:annotation>
+					<xsd:documentation>Gesamtanzahl der in der Datenbank gefundenen Personen</xsd:documentation>
+				</xsd:annotation>
+			</xsd:element>
+			<xsd:element ref="base:SaetzeVon">
+			<xsd:annotation>
+					<xsd:documentation>Beginn-Index dieser Ergebnisliste im Gesamtergebnis (bei Blaettern); Start mit 1</xsd:documentation>
+				</xsd:annotation>			
+			</xsd:element>
+			<xsd:element ref="base:SaetzeBis">
+			<xsd:annotation>
+					<xsd:documentation>Ende-Index dieser Ergebnisliste im Gesamtergebnis (bei Blaettern)</xsd:documentation>
+				</xsd:annotation>			
+			</xsd:element>
+			<xsd:element name="PersonErgebnisSatz" type="PAbfrageErgebnisSatzType" minOccurs="1" maxOccurs="unbounded"/>		
+		</xsd:sequence>
+	</xsd:complexType>
+	
+	<xsd:complexType name="PAbfrageErgebnisSatzType">
+		<xsd:annotation>
+			<xsd:documentation>Enthält die Ergebnisdaten zu einer gefundenen Person.</xsd:documentation>
+		</xsd:annotation>
+		<xsd:sequence>
+			<xsd:element ref="Personendaten"/>
+			<xsd:element ref="Meldedaten" minOccurs="0" maxOccurs="unbounded"/>
+		</xsd:sequence>
+	</xsd:complexType>
+	
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Personenlisten.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Personenlisten.xsd
new file mode 100644
index 00000000..e7f18752
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Personenlisten.xsd
@@ -0,0 +1,131 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: Personenlisten.xsd
+Zweck: Definiert Datentypen für den Usecase "Personenlisten" im ZMR. Soll ein generischer Ansatz für
+Suche nach aktuellen Personendaten mit v-bPKs sein. Erstnutzer der Schnittstelle ist der VVO (mit VVOAbfrage)
+Author(s): Ehrenmüller Oliver, ZMR-SU
+
+Aenderungshistorie:
+2009-11-16 teo: +Flag für Suchwizard
+2008-02-26 teo: erstellt.
+-->
+
+<xsd:schema targetNamespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:cio="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+			
+	<xsd:include schemaLocation="../zmr/Personensuche.xsd"/>
+	<xsd:import namespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" schemaLocation="../eingebunden/EingebundenProxy.xsd"/>
+	<xsd:import namespace="http://reference.e-government.gv.at/namespace/persondata/de/20040201#" schemaLocation="../eingebunden/PersonDataZMR.xsd"/>
+	
+	<xsd:element name="PersonenListenRequest">
+		<xsd:annotation>
+			<xsd:documentation>Suchkriterien für den PersonenListen-Request im ZMR (Personendaten + Adressdaten)</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="PersonenListenInfo"/>
+				<xsd:element ref="base:ZMRZahl" minOccurs="0"/>
+				<xsd:element ref="cio:NatuerlichePerson" minOccurs="0"/>
+				<xsd:element ref="cio:PostAdresse" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="PersonenListenResponse">
+		<xsd:annotation>
+			<xsd:documentation>In der Response werden die Anfragedaten aus dem Request, und das 
+			Suchergebnis bzw. eine Text-Meldung geliefert (Falls keine Person gefunden)</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="PersonenListenAnfrage"/>
+				<xsd:element ref="base:Message"/>
+				<xsd:element ref="PersonenListenErgebnis" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="PersonenListenInfo" type="PersonenListenInfoType"/>
+	<xsd:element name="PersonenListenErgebnis" type="PersonenListenErgebnisType"/>
+	
+	<xsd:element name="PersonenListenAnfrage">
+		<xsd:annotation>
+			<xsd:documentation>Anfragedaten, entsprechen den Suchdaten des Requests</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="PersonenListenInfo"/>
+				<xsd:element ref="base:ZMRZahl" minOccurs="0"/>
+				<xsd:element ref="cio:NatuerlichePerson" minOccurs="0"/>
+				<xsd:element ref="cio:PostAdresse" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>	
+	</xsd:element>
+	
+	<xsd:complexType name="PersonenListenInfoType">
+		<xsd:annotation>
+			<xsd:documentation>Fachliche Informationen zur PersonenListen</xsd:documentation>
+		</xsd:annotation>	
+		<xsd:sequence>
+			<xsd:element ref="base:Bezugsfeld"/>
+			<xsd:element name="Suchkriterien" type="PersonenListenSuchkriterienType"/>
+			<xsd:element name="Ergebniskriterien" type="PersonenListenErgebniskriterienType"/>
+		</xsd:sequence>
+	</xsd:complexType>
+
+	<xsd:complexType name="PersonenListenSuchkriterienType">
+		<xsd:annotation>
+			<xsd:documentation>Suchkriterien</xsd:documentation>
+		</xsd:annotation>
+		<xsd:sequence>
+			<xsd:element ref="base:InclusivHistorie"/>
+			<xsd:element ref="base:Formalisiert"/>
+			<xsd:element name="Suchwizard" type="xsd:boolean" minOccurs="0"/>
+		</xsd:sequence>
+	</xsd:complexType>
+
+	<xsd:complexType name="PersonenListenErgebniskriterienType">
+		<xsd:annotation>
+			<xsd:documentation>Ergebniskriterien</xsd:documentation>
+		</xsd:annotation>
+		<xsd:sequence>
+			<xsd:element name="vbPKAnfrage" minOccurs="0" maxOccurs="10">
+				<xsd:annotation>
+					<xsd:documentation>v-bPKs die miterzeugt werden sollen. (zb. urn:publicid:gv.at:ecdid+BMI+ZP)</xsd:documentation>
+				</xsd:annotation>
+				<xsd:simpleType>
+					<xsd:restriction base="xsd:string">
+						<xsd:whiteSpace value="collapse"/>
+						<xsd:minLength value="28"/>
+						<xsd:maxLength value="50"/>	
+					</xsd:restriction>
+				</xsd:simpleType>
+			</xsd:element>
+		</xsd:sequence>
+	</xsd:complexType>
+
+	<xsd:complexType name="PersonenListenErgebnisType">
+		<xsd:annotation>
+			<xsd:documentation>PersonenListenErgebnisType beinhaltet die Liste der gefundenen Personen.
+			Derzeit wird die Liste auf 50 Sätze begrenzt.</xsd:documentation>
+		</xsd:annotation>
+		<xsd:sequence>
+			<xsd:element name="PersonenListenSatz" type="PersonenListenSatzType" maxOccurs="unbounded"/>
+		</xsd:sequence>
+	</xsd:complexType>
+	
+	<xsd:complexType name="PersonenListenSatzType">
+		<xsd:annotation>
+			<xsd:documentation>Beinhaltet als einen Ergebnissatz eine Personen und ihre aktuellen Meldungen</xsd:documentation>
+		</xsd:annotation>
+		<xsd:sequence>
+			<xsd:group ref="ZMRPersonErgebnissatzGroup"/>
+		</xsd:sequence>
+	</xsd:complexType>
+
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Personensuche.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Personensuche.xsd
new file mode 100644
index 00000000..31606d6f
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Personensuche.xsd
@@ -0,0 +1,255 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: Personensuche.xsd
+Zweck: Definiert Datentypen für den Usecase "Person suchen Meldevorgang" im ZMR
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2010-10-15 mp:   ZMR-1473: Personensuche erweitert um Dokumentsuche
+2010-04-02 teo:  ZMR-1356: ZMR-Suchergebnis: die Aufteilung in ZMR- und ERnP-Treffer fehlt
+2010-01-26 teo:  ZMR-1334: Umbau der Suche mit Namensteilen auf eigene Suchoption
+2009-12-15 teo:  LMR-712 Übernahme LMR Auslandsösterreicher ins ERnP
+2009-07-02 rp:   LMR-660: +Sortierung
+2008-03-20 teo:  CQ#2960 rückgängig gemacht.
+2008-02-25 teo:  CQ#2960: +Dummy-Attribut für .Net-Umgebungen
+2006-08-08 tsch: Feld EingeschraenkteHistorie hinzugefügt
+2005-10-06 tsch: Suchkriterium InclusivERnP hinzugefügt, Umbenennung EGR->ERnP
+2004-06-22 tsch: Akademische Grade hinzugefügt; SaetzeVon und SaetzeBis im Ergebnis
+2004-06-18 tsch: Stichtag hinzugefügt
+2004-06-08 tsch: Message immer im Ergebnis
+2004-05-17 tsch: Organisation entfernt
+2004-05-04 tsch: InclusivAusgeblendeteSaetze entfernt
+2004-04-15 tsch: ZMR-Zahl bei Suchanfrage dazu (ZMR-Zahl-Suche nicht über NatuerlichePerson.Identification)
+2004-01-27 tsch: Personen- und Kontaktadressdaten aus dem Ergänzungsregister im Suchergebnis definiert
+2004-01-26 tsch: Integration der CIO-Personendaten Struktur (http://reference.e-government.gv.at/namespace/persondata/de/20040201#)
+-->
+
+<xsd:schema targetNamespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:cio="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+			
+	<xsd:include schemaLocation="../zmr/entities/Meldung.xsd"/>
+	<xsd:include schemaLocation="../zmr/entities/Person.xsd"/>
+	<xsd:include schemaLocation="../zmr/entities/ERnPPerson.xsd"/>
+	
+	<xsd:import namespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" schemaLocation="../eingebunden/EingebundenProxy.xsd"/>
+	<xsd:import namespace="http://reference.e-government.gv.at/namespace/persondata/de/20040201#" schemaLocation="../eingebunden/PersonDataZMR.xsd"/>
+	
+	<xsd:element name="PersonSuchenRequest">
+		<xsd:annotation>
+			<xsd:documentation>Suchkriterien für die Personensuche im ZMR/ERnP (Personendaten + Adressdaten)</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="PersonensucheInfo"/>
+				<xsd:element ref="base:ZMRZahl" minOccurs="0"/>
+				<xsd:element ref="cio:NatuerlichePerson" minOccurs="0"/>
+				<xsd:element ref="cio:PostAdresse" minOccurs="0"/>
+				<xsd:element ref="DokumentSuchdaten" minOccurs="0"/>
+				<xsd:element ref="EidasSuchdaten" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="PersonSuchenResponse">
+		<xsd:annotation>
+			<xsd:documentation>In der Response werden die Anfragedaten aus dem Request, und das Suchergebnis bzw. eine Text-Meldung geliefert (Falls keine Person gefunden)</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="PersonensucheAnfrage"/>
+				<xsd:element ref="base:Message"/>
+				<xsd:element ref="Personensuchergebnis" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="PersonensucheInfo" type="PersonensucheInfoType"/>
+	<xsd:element name="Personensuchergebnis" type="PersonensuchergebnisType"/>
+	
+	<xsd:element name="PersonensucheAnfrage">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="PersonensucheInfo"/>
+				<xsd:element ref="base:ZMRZahl" minOccurs="0"/>
+				<xsd:element ref="cio:NatuerlichePerson" minOccurs="0"/>
+				<xsd:element ref="cio:PostAdresse" minOccurs="0"/>
+				<xsd:element ref="DokumentSuchdaten" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>	
+	</xsd:element>
+	<xsd:complexType name="PersonensucheInfoType">
+		<xsd:annotation>
+			<xsd:documentation>Fachliche Informationen zur Personensuche</xsd:documentation>
+		</xsd:annotation>	
+		<xsd:sequence>
+			<xsd:element ref="base:Bezugsfeld"/>
+			<xsd:element name="Suchkriterien" type="SuchkriterienType"/>
+			<xsd:element name="Ergebniskriterien" type="ErgebniskriterienType"/>
+			<xsd:element ref="base:AnzahlSaetze"/>
+		</xsd:sequence>
+	</xsd:complexType>
+
+	<xsd:complexType name="SuchkriterienType">
+		<xsd:annotation>
+			<xsd:documentation>Datenbank-Suchkriterien für Personen- und Meldedaten der Personensuche</xsd:documentation>
+		</xsd:annotation>	
+		<xsd:sequence>
+			<xsd:element ref="base:Stichtag" minOccurs="0"/>
+			<xsd:element ref="base:InclusivHistorie"/>
+			<xsd:element ref="base:Formalisiert"/>
+			<xsd:element name="ErweitereSuchoptionen" minOccurs="0">
+				<xsd:simpleType>
+					<xsd:restriction base="xsd:string">
+						<xsd:enumeration value="Teilnamen"/>
+					</xsd:restriction>
+				</xsd:simpleType>
+			</xsd:element>
+			<xsd:element name="InclusivERnP" type="xsd:boolean" minOccurs="0"/>
+		</xsd:sequence>
+	</xsd:complexType>
+
+	<xsd:complexType name="ErgebniskriterienType">
+		<xsd:annotation>
+			<xsd:documentation>Anzeigekriterien für Personen- und Meldedaten im Personensuchergebnis</xsd:documentation>
+		</xsd:annotation>	
+		<xsd:sequence>
+			<xsd:choice>
+				<xsd:element ref="base:InclusivHistorie"/>
+				<xsd:element ref="base:EingeschraenkteHistorie"/>
+			</xsd:choice>
+			<xsd:element ref="Sortierung" minOccurs="0"/>
+		</xsd:sequence>
+	</xsd:complexType>	
+
+	<xsd:element name="Sortierung">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:enumeration value="Person">
+					<xsd:annotation>
+						<xsd:documentation>Sortierung nach Familienname, Vorname, Geburtsdatum (Default)</xsd:documentation>
+					</xsd:annotation>
+				</xsd:enumeration>
+				<xsd:enumeration value="Adresse">
+					<xsd:annotation>
+						<xsd:documentation>
+							Sortierung nach PLZ, Straße, Hausnummer, Stiege, Tür, Familienname, Vorname, 
+							Geburtsdatum.
+							Die Sortierung wirkt auf die Adresse, nach der gesucht wurde, d.h. es sollte 
+							auf eine eingeschränkt werden (z.B. Suche in Objekt).
+						</xsd:documentation>
+					</xsd:annotation>
+				</xsd:enumeration>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	
+	<xsd:complexType name="PersonensuchergebnisType">
+		<xsd:annotation>
+			<xsd:documentation>Enthält je einen 'PersonErgebnisSatz' pro gefundener Person. Wird keine Person gefunden, befindet sich eine entprechende Text-Message in 'PersonensucheMsg'</xsd:documentation>
+		</xsd:annotation>
+		<xsd:sequence>
+			<xsd:element ref="base:GefundeneSaetze">
+				<xsd:annotation>
+					<xsd:documentation>Gesamtanzahl der in der Datenbank gefundenen Personen</xsd:documentation>
+				</xsd:annotation>
+			</xsd:element>
+			<xsd:element name="GefundeneSaetzeERnP" type="base:IntegerType" minOccurs="0">
+				<xsd:annotation>
+					<xsd:documentation>Gesamtanzahl der in der ERnP-Datenbank gefundenen Personen</xsd:documentation>
+				</xsd:annotation>
+			</xsd:element>						
+			<xsd:element ref="base:SaetzeVon">
+			<xsd:annotation>
+					<xsd:documentation>Beginn-Index dieser Ergebnisliste im Gesamtergebnis (bei Blaettern); Start mit 1</xsd:documentation>
+				</xsd:annotation>			
+			</xsd:element>
+			<xsd:element ref="base:SaetzeBis">
+			<xsd:annotation>
+					<xsd:documentation>Ende-Index dieser Ergebnisliste im Gesamtergebnis (bei Blaettern)</xsd:documentation>
+				</xsd:annotation>			
+			</xsd:element>
+			<xsd:element name="PersonErgebnisSatz" type="PersonErgebnisSatzType" minOccurs="1" maxOccurs="unbounded"/>		
+		</xsd:sequence>
+	</xsd:complexType>
+	
+	<xsd:complexType name="PersonErgebnisSatzType">
+		<xsd:annotation>
+			<xsd:documentation>Enthält die Ergebnisdaten zu einer gefundenen Person.</xsd:documentation>
+		</xsd:annotation>
+		<xsd:choice>
+			<xsd:group ref="ZMRPersonErgebnissatzGroup"/>
+			<xsd:group ref="ERnPPersonErgebnissatzGroup"/>
+		</xsd:choice>
+	</xsd:complexType>
+	
+	<xsd:group name="ZMRPersonErgebnissatzGroup">
+		<xsd:annotation>
+			<xsd:documentation>Fasst die gefundenen Daten einer Person aus dem Melderegister (aktuelle und historische Personendaten, sowie aktuelle und historische Meldedaten)</xsd:documentation>
+		</xsd:annotation>
+		<xsd:sequence>
+			<xsd:element ref="Personendaten"/>
+			<xsd:element ref="Meldedaten" minOccurs="0" maxOccurs="unbounded"/>
+		</xsd:sequence>
+	</xsd:group>	
+
+	<xsd:element name="Personendaten">
+		<xsd:annotation>
+			<xsd:documentation>Historienliste der Personendaten (Erklärung Historienliste siehe Dokument ZMR2Schnittstellen-Richtlinien.doc</xsd:documentation>
+		</xsd:annotation>
+
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="PersonErgebnis" minOccurs="1" maxOccurs="unbounded"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="Meldedaten" type="MeldedatenType">
+		<xsd:annotation>
+			<xsd:documentation>gelieferte Meldungen der Person (ein Strang = ein Element 'Meldedaten')</xsd:documentation>
+		</xsd:annotation>
+	</xsd:element>		
+	
+	<xsd:complexType name="MeldedatenType">
+		<xsd:annotation>
+			<xsd:documentation>Historienliste der Meldedaten einer Meldung</xsd:documentation>
+		</xsd:annotation>
+		<xsd:sequence>
+			<xsd:element ref="MeldungErgebnis" minOccurs="1" maxOccurs="unbounded"/>
+		</xsd:sequence>
+	</xsd:complexType>
+
+	<xsd:group name="ERnPPersonErgebnissatzGroup">
+		<xsd:annotation>
+			<xsd:documentation>Fasst die gefundenen Daten einer Person aus dem Ergänzungsregister (ERnP) (aktuelle und historische Personendaten, sowie aktuelle und historische Kontaktadressen)</xsd:documentation>
+		</xsd:annotation>
+		<xsd:sequence>
+			<xsd:element name="ERnPPersonendaten">
+				<xsd:annotation>
+					<xsd:documentation>Historienliste der Personendaten (Erklärung Historienliste siehe Dokument ZMR2Schnittstellen-Richtlinien.doc</xsd:documentation>
+				</xsd:annotation>
+
+				<xsd:complexType>
+					<xsd:sequence>
+						<xsd:element ref="ERnPPersonErgebnis" minOccurs="1" maxOccurs="unbounded"/>
+					</xsd:sequence>
+				</xsd:complexType>
+			</xsd:element>
+			<xsd:element name="ERnPHistLMRMeldungen" type="MeldedatenType" minOccurs="0" maxOccurs="unbounded">
+				<xsd:annotation>
+					<xsd:documentation>
+						LMR-Histmeldungen für ERnP-Personen werden bei der LMR-Suche benötigt. 
+						Sonst nicht verwenden, ausbauen, wenn Schnittstelle an externe Partner 
+						geliefert wird!!!
+					</xsd:documentation>
+				</xsd:annotation>
+			</xsd:element>
+		</xsd:sequence>	
+	</xsd:group>	
+		
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/QKZAuswertung.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/QKZAuswertung.xsd
new file mode 100644
index 00000000..e6dafecd
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/QKZAuswertung.xsd
@@ -0,0 +1,82 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: QKZAuswertung.xsd
+Zweck: Definiert Datentypen für das Anfordern einer QKZ-Auswertung innerhalb einer Gemeinde (Die Auswertung steht in PDF-Form in den Auswertungen bereit)
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2010-06-15 ZMR-171 XML-Schnittstelle für Qualifikationskennzeichenliste
+2005-02-02 Erstellt
+-->
+
+<xsd:schema xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:cio="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+			targetNamespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	
+	<xsd:import namespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" schemaLocation="../eingebunden/EingebundenProxy.xsd"/>
+	<xsd:import namespace="http://reference.e-government.gv.at/namespace/persondata/de/20040201#" schemaLocation="../eingebunden/PersonDataZMR.xsd"/>
+	<xsd:include schemaLocation="../zmr/entities/Qualifikationskennzeichen.xsd"/>
+
+	<xsd:element name="QKZAuswertungRequest">
+		<xsd:annotation>
+			<xsd:documentation>Die Auswertung läuft über alle Personen mit den angegebene QKZ in der angegebenen Gemeinde.</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="base:GemeindeNr"/>
+				<xsd:element ref="QualifikationskennzeichenCode" minOccurs="0" maxOccurs="unbounded"/>				
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="QKZAuswertungAnfrage">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="base:GemeindeNr"/>
+				<xsd:element ref="QualifikationskennzeichenCode" minOccurs="0" maxOccurs="unbounded"/>			
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="QKZAuswertungResponse">
+		<xsd:annotation>
+			<xsd:documentation>Server-Antwort zur Anforderung einer QKZ-Auswertung</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="QKZAuswertungAnfrage"/>
+				<xsd:element ref="base:Message"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="QKZAuswertung">
+		<xsd:annotation>
+			<xsd:documentation>Auswertungs-XML für QKZs laut ZMR-171</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="base:Message"/>
+				<xsd:element name="Qualifikationskennzeichen" type="QualifikationskennzeichenAnlageType" minOccurs="0" maxOccurs="unbounded"/>
+				<xsd:element ref="QKZZuordnung" minOccurs="0" maxOccurs="unbounded"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="QKZZuordnung">
+		<xsd:annotation>
+			<xsd:documentation>Definiert eine Zuordnung zwischen einer Person und einem QKZ für die XML-Auswertung laut ZMR-171</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="QualifikationskennzeichenCode"/>
+				<xsd:element ref="base:GemeindeNr"/>
+				<xsd:element ref="cio:NatuerlichePerson"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/QKZBearbeiten.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/QKZBearbeiten.xsd
new file mode 100644
index 00000000..2f97c8b8
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/QKZBearbeiten.xsd
@@ -0,0 +1,71 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: QKZWarten.xsd
+Zweck: Definiert Datentypen für Wartung von Qualifikationskennzeichen im ZMR/ZPR
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2005-05-10 Löschen und Anlegen von mehreren QKZ in einem Request
+2005-02-02 Erstellt
+-->
+
+<xsd:schema xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:cio="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+			targetNamespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	
+	<xsd:import namespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" schemaLocation="../eingebunden/EingebundenProxy.xsd"/>
+	<xsd:include schemaLocation="../zmr/entities/Person.xsd"/>
+	<xsd:include schemaLocation="../zmr/entities/Meldung.xsd"/>
+	<xsd:include schemaLocation="../zmr/entities/Qualifikationskennzeichen.xsd"/>
+
+	<xsd:element name="QKZBearbeitenRequest">
+		<xsd:annotation>
+			<xsd:documentation>Mit einem Request können Qualifikationskennzeichen angelegt oder gelöscht werden.</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="QKZBearbeitenInfo"/>
+				<xsd:choice>
+					<xsd:annotation>
+						<xsd:documentation>Referenz auf das Objekt, für das die QKZ-Wartung durchgeführt wird (Person oder Meldung)</xsd:documentation>
+					</xsd:annotation>
+					<xsd:element ref="PersonReferenz"/>
+					<xsd:element ref="MeldungReferenz"/>
+				</xsd:choice>
+				<xsd:element ref="QualifikationskennzeichenAnlage" minOccurs="0" maxOccurs="unbounded"/>
+				<xsd:element ref="QualifikationskennzeichenLoeschen" minOccurs="0" maxOccurs="unbounded"/>			
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="QKZBearbeitenResponse">
+		<xsd:annotation>
+			<xsd:documentation>Server-Antwort zur QKZ-Wartung</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="base:Message"/>
+				<xsd:element name="Qualifikationskennzeichen" type="QualifikationskennzeichenErgebnisType" minOccurs="1" maxOccurs="unbounded">
+					<xsd:annotation>
+						<xsd:documentation>Datensatz der angelegten/gelöschten Qualifikationskennzeichen</xsd:documentation>
+					</xsd:annotation>
+				</xsd:element>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="QKZBearbeitenInfo" type="QKZBearbeitenInfoType"/>
+	<xsd:complexType name="QKZBearbeitenInfoType">
+		<xsd:annotation>
+			<xsd:documentation>allgemeine Fachliche Informationen zur QKZ-Wartung</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexContent>
+			<xsd:extension base="base:InfoFachlichType">			
+			</xsd:extension>
+		</xsd:complexContent>
+	</xsd:complexType>
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/SZREinzelabfrage.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/SZREinzelabfrage.xsd
new file mode 100644
index 00000000..f0cc9d26
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/SZREinzelabfrage.xsd
@@ -0,0 +1,85 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: SZREinzelabfrage.xsd
+Zweck: Definiert Datentypen für die Einzalabfrage des Stammzahlenregisters im ZMR
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2009-10-27 teo: SZR-Verordnung 2009
+2006-03-21 tsch: Ordnungszahl hinzugefügt
+2004-09-09 tsch: Erstellung
+-->
+
+<xsd:schema xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:cio="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+			targetNamespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	
+	<xsd:import namespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" schemaLocation="../eingebunden/EingebundenProxy.xsd"/>		
+	<xsd:import namespace="http://reference.e-government.gv.at/namespace/persondata/de/20040201#" schemaLocation="../eingebunden/PersonDataZMR.xsd"/>
+	<xsd:include schemaLocation="SZRPersonenbindung.xsd"/>
+	
+	<xsd:element name="SZREinzelabfrageRequest">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="SZREinzelabfrageInfo"/>
+				<xsd:element ref="base:OrdnungsZahl" minOccurs="0"/>
+				<xsd:element ref="cio:NatuerlichePerson" minOccurs="0"/>
+				<xsd:element ref="cio:PostAdresse" minOccurs="0"/>
+				<xsd:element ref="DokumentSuchdaten" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="SZREinzelabfrageResponse">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="SZREinzelabfrageAnfrage"/>
+				<xsd:element ref="base:Message"/>
+				<xsd:element ref="SZREinzelabfrageErgebnis" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="SZREinzelabfrageAnfrage">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="SZREinzelabfrageInfo"/>
+				<xsd:element ref="cio:NatuerlichePerson" minOccurs="0"/>
+				<xsd:element ref="cio:PostAdresse" minOccurs="0"/>
+				<xsd:element ref="DokumentSuchdaten" minOccurs="0"/>				
+			</xsd:sequence>
+		</xsd:complexType>	
+	</xsd:element>
+
+	<xsd:element name="SZREinzelabfrageInfo" type="SZREinzelabfrageInfoType"/>
+	<xsd:complexType name="SZREinzelabfrageInfoType">
+		<xsd:annotation>
+			<xsd:documentation>allgemeine Fachliche Informationen für die SZR - Einzelabfrage</xsd:documentation>
+		</xsd:annotation>
+		<xsd:sequence>
+			<xsd:element ref="base:Bezugsfeld"/>
+			<xsd:element ref="base:Behoerdenschluessel" minOccurs="0"/>
+			<xsd:element name="ListePersonenWennNichtEindeutig" type="xsd:boolean" minOccurs="0"/>
+		</xsd:sequence>
+	</xsd:complexType>
+	
+	<xsd:element name="SZREinzelabfrageErgebnis">
+		<xsd:complexType>
+			<xsd:choice>
+				<xsd:sequence>
+					<xsd:element ref="base:OrdnungsZahl"/>
+					<xsd:element ref="base:Register"/>
+					<xsd:element name="PersonHistorisch" type="xsd:boolean"/>
+				</xsd:sequence>
+				<xsd:sequence>
+					<xsd:element ref="SZRPersonenbindungErgebnis" maxOccurs="10"/>
+				</xsd:sequence>
+			</xsd:choice>
+		</xsd:complexType>
+	</xsd:element>
+
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/SZRPersonenbindung.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/SZRPersonenbindung.xsd
new file mode 100644
index 00000000..81a836d6
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/SZRPersonenbindung.xsd
@@ -0,0 +1,84 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: SZRPersonenbindung.xsd
+Zweck: Definiert Datentypen für die Personenbindungs-Suche Anfrage des Stammzahlenregisters ins ZMR
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2009-10-27 teo: SZR-Verordnung 2009
+2008-11-12 teo:  +ERnPEintragWennNotwendig, SZRPersonenbindungErgebnis als Array für Ergebnisliste
+2006-03-21 tsch: Ordnungszahl hinzugefügt
+2004-09-09 tsch: Erstellung
+-->
+
+<xsd:schema xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:cio="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+			targetNamespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	
+	<xsd:import namespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" schemaLocation="../eingebunden/EingebundenProxy.xsd"/>		
+	<xsd:import namespace="http://reference.e-government.gv.at/namespace/persondata/de/20040201#" schemaLocation="../eingebunden/PersonDataZMR.xsd"/>
+	<xsd:include schemaLocation="../zmr/entities/Reisedokument.xsd"/>
+	
+	<xsd:element name="SZRPersonenbindungRequest">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="SZRPersonenbindungInfo"/>
+				<xsd:element ref="base:OrdnungsZahl" minOccurs="0"/>
+				<xsd:element ref="cio:NatuerlichePerson" minOccurs="0"/>
+				<xsd:element ref="cio:PostAdresse" minOccurs="0"/>
+				<xsd:element ref="DokumentSuchdaten" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="SZRPersonenbindungResponse">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="SZRPersonenbindungAnfrage"/>
+				<xsd:element ref="base:Message"/>
+				<xsd:element ref="SZRPersonenbindungErgebnis" minOccurs="0" maxOccurs="unbounded"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="SZRPersonenbindungAnfrage">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="SZRPersonenbindungInfo"/>
+				<xsd:element ref="cio:NatuerlichePerson" minOccurs="0"/>
+				<xsd:element ref="cio:PostAdresse" minOccurs="0"/>
+				<xsd:element ref="DokumentSuchdaten" minOccurs="0"/>				
+			</xsd:sequence>
+		</xsd:complexType>	
+	</xsd:element>
+
+	<xsd:element name="SZRPersonenbindungInfo" type="SZRPersonenbindungInfoType"/>
+	<xsd:complexType name="SZRPersonenbindungInfoType">
+		<xsd:annotation>
+			<xsd:documentation>allgemeine Fachliche Informationen für die Personenbindungsanfrage</xsd:documentation>
+		</xsd:annotation>
+		<xsd:sequence>
+			<xsd:element ref="base:Bezugsfeld"/>
+			<xsd:element ref="base:Behoerdenschluessel" minOccurs="0"/>
+			<xsd:element name="ERnPEintragBeiBedarf" type="xsd:boolean" minOccurs="0"/>
+		</xsd:sequence>
+	</xsd:complexType>
+	
+	<xsd:element name="SZRPersonenbindungErgebnis">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="cio:PersonenDaten"/>
+				<xsd:element ref="base:Register"/>
+				<xsd:element ref="base:Adressschluessel" minOccurs="0"/>
+				<xsd:element name="WohnsitzHistorisch" type="xsd:boolean"/>
+				<xsd:element name="AuskunftssperreGesetzt" type="xsd:boolean"/>
+				<xsd:element name="ERnPEintragAngelegt" type="xsd:boolean" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/SZRPersonensuche.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/SZRPersonensuche.xsd
new file mode 100644
index 00000000..7e1050e5
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/SZRPersonensuche.xsd
@@ -0,0 +1,75 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: SZRPersonensuche.xsd
+Zweck: Definiert Datentypen für die Personensuche - Abfrage des Stammzahlenregisters ins ZMR
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2006-03-21 tsch: Ordnungszahl hinzugefügt
+2004-09-09 tsch: Erstellung
+-->
+
+<xsd:schema xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:cio="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+			targetNamespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	
+	<xsd:import namespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" schemaLocation="../eingebunden/EingebundenProxy.xsd"/>		
+	<xsd:import namespace="http://reference.e-government.gv.at/namespace/persondata/de/20040201#" schemaLocation="../eingebunden/PersonDataZMR.xsd"/>
+	<xsd:include schemaLocation="SZRPersonenbindung.xsd"/>
+	
+	<xsd:element name="SZRPersonensucheRequest">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="SZRPersonensucheInfo"/>
+				<xsd:element ref="base:OrdnungsZahl" minOccurs="0"/>
+				<xsd:element ref="cio:NatuerlichePerson" minOccurs="0"/>
+				<xsd:element ref="cio:PostAdresse" minOccurs="0"/>
+				<xsd:element ref="DokumentSuchdaten" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="SZRPersonensucheResponse">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="SZRPersonensucheAnfrage"/>
+				<xsd:element ref="base:Message"/>
+				<xsd:element ref="SZRPersonensucheErgebnis" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="SZRPersonensucheAnfrage">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="SZRPersonensucheInfo"/>
+				<xsd:element ref="cio:NatuerlichePerson" minOccurs="0"/>
+				<xsd:element ref="cio:PostAdresse" minOccurs="0"/>
+				<xsd:element ref="DokumentSuchdaten" minOccurs="0"/>				
+			</xsd:sequence>
+		</xsd:complexType>	
+	</xsd:element>
+
+	<xsd:element name="SZRPersonensucheInfo" type="SZRPersonensucheInfoType"/>
+	<xsd:complexType name="SZRPersonensucheInfoType">
+		<xsd:annotation>
+			<xsd:documentation>allgemeine Fachliche Informationen für die SZR - Personensuche</xsd:documentation>
+		</xsd:annotation>
+		<xsd:sequence>
+			<xsd:element ref="base:Bezugsfeld"/>
+		</xsd:sequence>
+	</xsd:complexType>
+	
+	<xsd:element name="SZRPersonensucheErgebnis">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="base:GefundeneSaetze"/>
+				<xsd:element ref="base:OrdnungsZahl" minOccurs="1" maxOccurs="unbounded"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/SZRSammelabfrage.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/SZRSammelabfrage.xsd
new file mode 100644
index 00000000..0608fa38
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/SZRSammelabfrage.xsd
@@ -0,0 +1,54 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: SZRSammelabfrage.xsd
+Zweck: Definiert Datentypen für Sammelrequests des Stammzahlenregisters ins ZMR
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2006-03-21 tsch: Erstellung
+-->
+
+<xsd:schema xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:cio="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+			targetNamespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	
+	<xsd:include schemaLocation="../zmr/SZRPersonenbindung.xsd"/>
+	<xsd:include schemaLocation="../zmr/SZREinzelabfrage.xsd"/>
+	<xsd:include schemaLocation="../zmr/SZRPersonensuche.xsd"/>
+	
+	<xsd:element name="SZRSammelRequest">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element name="Item" minOccurs="0" maxOccurs="unbounded">
+					<xsd:complexType>
+						<xsd:choice>
+							<xsd:element ref="SZRPersonenbindungRequest"/>
+							<xsd:element ref="SZREinzelabfrageRequest"/>
+							<xsd:element ref="SZRPersonensucheRequest"/>
+						</xsd:choice>
+					</xsd:complexType>
+				</xsd:element>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="SZRSammelResponse">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element name="Item" minOccurs="0" maxOccurs="unbounded">
+					<xsd:complexType>
+						<xsd:choice>
+							<xsd:element ref="SZRPersonenbindungResponse"/>
+							<xsd:element ref="SZREinzelabfrageResponse"/>
+							<xsd:element ref="SZRPersonensucheResponse"/>
+						</xsd:choice>
+					</xsd:complexType>
+				</xsd:element>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Sperrliste.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Sperrliste.xsd
new file mode 100644
index 00000000..624919ff
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Sperrliste.xsd
@@ -0,0 +1,129 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: Adresssperrliste
+Zweck: Definiert Requests/Responses zum Lesen/Erfassen/Löschen von Adressen, an denen eine 
+       Wohnsitzanmeldung nicht erlaubt ist. 
+Author(s): Richie Mayrhofer, ZMR
+-->
+
+<xsd:schema targetNamespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:cio="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+			xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+			
+	<xsd:include schemaLocation="../zmr/entities/Meldung.xsd"/>
+	<xsd:include schemaLocation="../zmr/entities/Person.xsd"/>
+	<xsd:include schemaLocation="../zmr/WohnsitzUmmelden.xsd"/>
+	
+	<xsd:import namespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" schemaLocation="../eingebunden/EingebundenProxy.xsd"/>
+	<xsd:import namespace="http://reference.e-government.gv.at/namespace/persondata/de/20040201#" schemaLocation="../eingebunden/PersonDataZMR.xsd"/>
+	
+	<xsd:element name="SperrlisteRequest">
+		<xsd:annotation>
+			<xsd:documentation>Auflisten der gesperrten Adressen für die angegebene Gemeinde</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="cio:Gemeindekennziffer"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="SperrlisteResponse">
+		<xsd:annotation>
+			<xsd:documentation>Response der Personensuche im ZMR. Geliefert werden die ID-Daten sowie alle Staatsangehoerigkeiten</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="base:Message"/>
+				<xsd:element ref="SperradresseErgebnis" minOccurs="0" maxOccurs="unbounded"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="SperrlisteAnlegenRequest">
+		<xsd:annotation>
+			<xsd:documentation>Anlegen einer neuen Adressen für die angegebene Gemeinde</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="Sperradresse" minOccurs="1" maxOccurs="unbounded"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="SperrlisteUpdateResponse">
+		<xsd:annotation>
+			<xsd:documentation>Message fuer das Update einer Sperradresse</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="base:Message"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="SperrlisteLoeschenRequest">
+		<xsd:annotation>
+			<xsd:documentation>Loeschen von Sperradressen</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence minOccurs="1" maxOccurs="unbounded">
+				<xsd:element ref="SperradresseId"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="SperradresseId">
+		<xsd:annotation>
+			<xsd:documentation>Id der Sperradresse</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element name="EntityId" type="xsd:long"/>
+				<xsd:element ref="base:LetzteAenderung"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="SperradresseErgebnis">
+		<xsd:annotation>
+			<xsd:documentation>gespeicherte Sperradresse</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element name="EntityId" type="xsd:long"/>
+				<xsd:element ref="base:LetzteAenderung"/>
+				<xsd:element ref="Sperradresse"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="Sperradresse">
+		<xsd:annotation>
+			<xsd:documentation>Adresse</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="cio:Postleitzahl"/>
+				<xsd:element ref="cio:Gemeinde"/>
+				<xsd:element ref="cio:Gemeindekennziffer"/>
+				<xsd:element ref="cio:Ortschaft" minOccurs="0"/>
+				<xsd:element ref="cio:Strassenname"/>
+				<xsd:element name="Hausnummer" type="xsd:string" minOccurs="0"/>
+				<xsd:element name="Stiege" type="xsd:string" minOccurs="0"/>
+				<xsd:element name="Tuer" type="xsd:string" minOccurs="0"/>
+				<xsd:element ref="AdressRegisterEintrag" minOccurs="1"/>
+				<xsd:element ref="cio:Nutzungseinheitlaufnummer" minOccurs="0"/>
+                <xsd:element ref="base:OKZ" minOccurs="0"/>
+                <xsd:element ref="base:SKZ" minOccurs="0"/>
+                <xsd:element ref="base:Gebaeudeunterscheidung" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Storno.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Storno.xsd
new file mode 100644
index 00000000..50b6f1f4
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Storno.xsd
@@ -0,0 +1,146 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: Storno.xsd
+Zweck: Definiert Datentypen für den Usecase "Person und/oder Wohnsitz Stornieren" im ZMR
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2010-04-16 teo: ZMR-1397: Anzeige von Details in der Storno Voransicht (Personenstorno)
+2009-07-23 teo: Mehrfachstorno / Undo
+2004-09-27 tsch: Erstellt
+-->
+
+<xsd:schema targetNamespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns:cio="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+			xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	 
+	<xsd:import namespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" schemaLocation="../eingebunden/EingebundenProxy.xsd"/>
+	<xsd:include schemaLocation="Personensuche.xsd"/>
+
+	<xsd:element name="StornoDarstellenRequest">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="StornoModus" minOccurs="0">
+					<xsd:annotation>
+						<xsd:documentation>
+							Ãœber den Storno-Modus kann gesteuert werden, ob
+							der Storno normal durchgeführt werden soll, oder 
+							zb. ob der letzte Storno rückgängig gemacht werden soll.
+							Fehlt der Storno-Modus wird das Storno normal
+							durchgeführt.
+						</xsd:documentation>
+					</xsd:annotation>
+				</xsd:element>
+				<xsd:element ref="PersonReferenz"/>
+				<xsd:element ref="MeldungReferenz" minOccurs="0">
+					<xsd:annotation>
+						<xsd:documentation>
+						Falls eine bestimmte Meldung storniert werden soll,
+						müssen hier ihre Referenzdaten geschickt werden.
+						Wird nur die Personreferenz geschickt, wird die Person storniert
+						</xsd:documentation>
+					</xsd:annotation>
+				</xsd:element>
+						
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="StornoDarstellenResponse">
+		<xsd:complexType>
+			<xsd:annotation>
+				<xsd:documentation>Stellt den Stornovorgang für den User dar</xsd:documentation>
+			</xsd:annotation>
+			<xsd:sequence>
+				<xsd:element ref="base:Message"/>
+				<xsd:sequence minOccurs="0">
+					<xsd:annotation>
+						<xsd:documentation>
+						Für jede in den Storno involvierte Person wird ein Element StornoVergleich geliefert.
+						Hier wird der Person-Gesamtdatensatz vor und nach dem Storno dargestellt.
+						Auch wenn aussschließlich Meldedaten vom Storno betroffen sind, wird die gesamte Person geliefert.
+						</xsd:documentation>
+					</xsd:annotation>
+					<xsd:element name="StornoVergleich" type="StornoVergleichType" minOccurs="0" maxOccurs="unbounded"/>
+				</xsd:sequence>	
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:complexType name="StornoVergleichType">
+		<xsd:sequence>
+			<xsd:element name="PersonSatzVorStorno" type="PersonErgebnisSatzType"/>
+			<xsd:element name="PersonSatzNachStorno" type="PersonErgebnisSatzType" minOccurs="0"/>
+			<xsd:element name="WeitereBetroffenePerson" type="base:ZMRZahlType" minOccurs="0" maxOccurs="unbounded">
+				<xsd:annotation>
+					<xsd:documentation>
+						Bei einem Storno kann vorkommen, dass mehrere Personen involviert sind.
+						Zum Beispiel bei einem Kit-Fall. Um davor zu warnen, wird hier explizit
+						eine Liste von ZMR-Zahlen geliefert, die Personen anzeigen, bei denen das
+						Storno ebenfalls eine Änderung bewirken würde.
+					</xsd:documentation>
+				</xsd:annotation>
+			</xsd:element>
+		</xsd:sequence>
+	</xsd:complexType>
+	
+	<xsd:element name="StornoRequest">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="StornoModus" minOccurs="0">
+					<xsd:annotation>
+						<xsd:documentation>
+							Ãœber den Storno-Modus kann gesteuert werden, ob
+							der Storno normal durchgeführt werden soll, oder 
+							zb. ob der letzte Storno rückgängig gemacht werden soll.
+							Fehlt der Storno-Modus wird das Storno normal
+							durchgeführt.
+						</xsd:documentation>
+					</xsd:annotation>
+				</xsd:element>
+				<xsd:element ref="PersonReferenz"/>
+				<xsd:element ref="MeldungReferenz" minOccurs="0">
+					<xsd:annotation>
+						<xsd:documentation>
+						Falls eine bestimmte Meldung storniert werden soll,
+						müssen hier ihre Referenzdaten geschickt werden.
+						Wird nur die Personreferenz geschickt, wird die Person storniert
+						</xsd:documentation>
+					</xsd:annotation>
+				</xsd:element>
+						
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="StornoResponse">
+		<xsd:complexType>
+			<xsd:annotation>
+				<xsd:documentation>Server-Antwort des Storno-Vorgangs</xsd:documentation>
+			</xsd:annotation>
+			<xsd:sequence>
+				<xsd:element ref="base:Message"/>
+				<xsd:element name="PersonSatzNachStorno" type="PersonErgebnisSatzType" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="StornoModus">
+		<xsd:annotation>
+			<xsd:documentation>
+				Stellt Steuerungsmöglichkeiten für den Storno zur Verfügung.
+				zb. normales Storno, letztes Storno rückgängig machen (Storno vom Storno)
+			</xsd:documentation>
+		</xsd:annotation>
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:enumeration value="NORMAL"/>
+				<xsd:enumeration value="RUECKGAENGIG"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/SzrAbfrage.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/SzrAbfrage.xsd
new file mode 100644
index 00000000..1e8261ab
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/SzrAbfrage.xsd
@@ -0,0 +1,59 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<xsd:schema xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+	xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" 
+	xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+	xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+	xmlns:cio="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+	targetNamespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+	elementFormDefault="qualified" attributeFormDefault="unqualified"
+	version="1.0">
+
+	<xsd:import namespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" schemaLocation="../eingebunden/EingebundenProxy.xsd" />
+	<xsd:import namespace="http://reference.e-government.gv.at/namespace/persondata/de/20040201#" schemaLocation="../eingebunden/PersonDataZMR.xsd" />
+	<xsd:include schemaLocation="../zmr/entities/Reisedokument.xsd" />
+
+	<xsd:element name="SzrAbfrageRequest">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element name="Art" type="AbfrageArt" />
+				<xsd:element name="SzrTransactionId" type="xsd:string" />
+				<xsd:element ref="cio:NatuerlichePerson" minOccurs="0" />
+				<xsd:element ref="cio:PostAdresse" minOccurs="0" />
+				<xsd:element ref="DokumentSuchdaten" minOccurs="0" />
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:simpleType name="AbfrageArt">
+		<xsd:restriction base="xsd:string">
+			<xsd:enumeration value="EinzelMitList" />
+			<xsd:enumeration value="EinzelOhneList" />
+			<xsd:enumeration value="Kombi" />
+			<xsd:enumeration value="Persbin" />
+			<xsd:enumeration value="Suche" />
+		</xsd:restriction>
+	</xsd:simpleType>
+
+	<xsd:element name="SzrAbfrageResponse">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="base:Message" />
+				<xsd:element ref="SzrAbfrageErgebnis" minOccurs="0" maxOccurs="unbounded" />
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="SzrAbfrageErgebnis">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="cio:PersonenDaten" />
+				<xsd:element ref="base:Register" />
+				<xsd:element name="Basiszahl" type="xsd:string" />
+				<xsd:element ref="base:Adressschluessel" minOccurs="0" />
+				<xsd:element name="WohnsitzHistorisch" type="xsd:boolean" minOccurs="0" />
+				<xsd:element name="AuskunftssperreGesetzt" type="xsd:boolean" minOccurs="0" />
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/TechnischeAnsicht.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/TechnischeAnsicht.xsd
new file mode 100644
index 00000000..a8d09153
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/TechnischeAnsicht.xsd
@@ -0,0 +1,132 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: TechnischeAnsicht.xsd
+Zweck: Definiert Datentypen für die technische Ansicht eines Personensatzes mit Meldungen
+Author(s): Ehrenmüller Oliver, ZMR-SU
+
+Aenderungshistorie:
+2009-10-27 mp: Schnittstelle überarbeitet, Person und Meldung getrennt
+2009-08-24 mp: Bei TechnischeAnsichtInfo minOccurs=0 gesetzt
+2009-08-19 teo: Erstellung
+-->
+
+<xsd:schema xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:cio="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+			targetNamespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	
+	<xsd:import namespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" schemaLocation="../eingebunden/EingebundenProxy.xsd"/>
+	<xsd:import namespace="http://reference.e-government.gv.at/namespace/persondata/de/20040201#" schemaLocation="../eingebunden/PersonDataZMR.xsd"/>
+	<xsd:include schemaLocation="../zmr/entities/Person.xsd"/>
+	<xsd:include schemaLocation="../zmr/entities/Meldung.xsd"/>
+	
+	<xsd:element name="TechnischeAnsichtRequest">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="TechnischeAnsichtInfo" minOccurs="0"/>
+				<xsd:element ref="PersonReferenz"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="TechnischeAnsichtResponse">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="TechnischeAnsichtAnfrage"/>
+				<xsd:element ref="base:Message"/>
+				<xsd:element ref="TechnischeAnsichtErgebnisPerson"/>
+				<xsd:element ref="TechnischeAnsichtErgebnisMeldung"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="TechnischeAnsichtAnfrage">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="TechnischeAnsichtInfo" minOccurs="0"/>
+				<xsd:element ref="PersonReferenz"/>
+			</xsd:sequence>
+		</xsd:complexType>	
+	</xsd:element>
+
+	<xsd:element name="TechnischeAnsichtInfo" type="TechnischeAnsichtInfoType"/>
+	<xsd:complexType name="TechnischeAnsichtInfoType">
+		<xsd:annotation>
+			<xsd:documentation>allgemeine Fachliche Informationen für die Abfrage zur technischen Ansicht</xsd:documentation>
+		</xsd:annotation>
+		<xsd:sequence>
+		</xsd:sequence>
+	</xsd:complexType>
+	
+	<xsd:element name="TechnischeAnsichtErgebnisPerson">
+		<xsd:complexType>
+			<xsd:annotation>
+				<xsd:documentation>Enthält alle Personenzustände (für eine Person) zu einem bestimmten techn. Änderungszeitpunkt.</xsd:documentation>
+			</xsd:annotation>
+			<xsd:sequence>
+				<xsd:element ref="TechnischeAnsichtPerson" maxOccurs="unbounded"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="TechnischeAnsichtErgebnisMeldung">
+		<xsd:complexType>
+			<xsd:annotation>
+				<xsd:documentation>Enthält alle Meldungszustände (für eine Meldung) zu einem bestimmten techn. Änderungszeitpunkt.</xsd:documentation>
+			</xsd:annotation>
+			<xsd:sequence>
+				<xsd:element ref="TechnischeAnsichtMeldung" minOccurs="0" maxOccurs="unbounded"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="TechnischeAnsichtPerson">
+		<xsd:complexType>
+			<xsd:annotation>
+				<xsd:documentation>Liste der technischen Zustände einer Person zu einem Zeitpunkt.</xsd:documentation>
+			</xsd:annotation>
+			<xsd:sequence>
+				<xsd:element name="TechnischerZeitpunkt" type="base:TimestampType"/>
+				<xsd:element ref="PersonErgebnisTechnisch" maxOccurs="unbounded"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+		
+	<xsd:element name="TechnischeAnsichtMeldung">
+		<xsd:complexType>
+			<xsd:annotation>
+				<xsd:documentation>Liste der technischen Zustände einer Meldung</xsd:documentation>
+			</xsd:annotation>
+			<xsd:sequence>
+				<xsd:element name="TechnischerZeitpunkt" type="base:TimestampType"/>
+				<xsd:element ref="MeldungErgebnisTechnisch" maxOccurs="unbounded"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="PersonErgebnisTechnisch">
+		<xsd:complexType>
+			<xsd:annotation>
+				<xsd:documentation>komplette Personendaten mit Information für den technischen Stichzeitpunkt</xsd:documentation>
+			</xsd:annotation>
+			<xsd:sequence>
+				<xsd:element ref="PersonErgebnis"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="MeldungErgebnisTechnisch">
+		<xsd:complexType>
+			<xsd:annotation>
+				<xsd:documentation>komplette Meldung mit Information für den technischen Stichzeitpunkt</xsd:documentation>
+			</xsd:annotation>
+			<xsd:sequence>
+				<xsd:element ref="MeldungErgebnis"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Ummeldeserviceabfrage.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Ummeldeserviceabfrage.xsd
new file mode 100644
index 00000000..8f459931
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Ummeldeserviceabfrage.xsd
@@ -0,0 +1,79 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: Ummeldeserviceabfrage.xsd
+Zweck: Definiert Datentypen für die Abfrage für Ummeldeservices im ZMR
+Author(s): Ehrenmüller Oliver, ZMR-SU
+
+Aenderungshistorie:
+2009-05-07 teo: Erstellung
+-->
+
+<xsd:schema xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:cio="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+			targetNamespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	
+	<xsd:import namespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" schemaLocation="../eingebunden/EingebundenProxy.xsd"/>		
+	<xsd:import namespace="http://reference.e-government.gv.at/namespace/persondata/de/20040201#" schemaLocation="../eingebunden/PersonDataZMR.xsd"/>
+	
+	
+	<xsd:element name="UmmSrvAbfrageRequest">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="UmmSrvAbfrageInfo"/>
+				<xsd:element ref="cio:NatuerlichePerson"/>
+				<xsd:element ref="cio:PostAdresse" minOccurs="0"/>				
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="UmmSrvAbfrageResponse">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="UmmSrvAbfrageAnfrage"/>
+				<xsd:element ref="base:Message"/>
+				<xsd:element ref="UmmSrvAbfrageErgebnis" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="UmmSrvAbfrageAnfrage">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="UmmSrvAbfrageInfo"/>
+				<xsd:element ref="cio:NatuerlichePerson"/>
+				<xsd:element ref="cio:PostAdresse" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>	
+	</xsd:element>
+
+	<xsd:element name="UmmSrvAbfrageInfo" type="UmmSrvAbfrageInfoType"/>
+	<xsd:complexType name="UmmSrvAbfrageInfoType">
+		<xsd:annotation>
+			<xsd:documentation>allgemeine Fachliche Informationen für die BP-Abfrage</xsd:documentation>
+		</xsd:annotation>
+		<xsd:sequence>
+			<xsd:element name="Pin">
+				<xsd:simpleType>
+					<xsd:restriction base="xsd:string">
+						<xsd:minLength value="6"/>
+						<xsd:maxLength value="6"/>
+					</xsd:restriction>
+				</xsd:simpleType>
+			</xsd:element>			
+		</xsd:sequence>
+	</xsd:complexType>
+	
+	
+	<xsd:element name="UmmSrvAbfrageErgebnis">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="cio:NatuerlichePerson" minOccurs="0"/>
+				<xsd:element ref="cio:PostAdresse" minOccurs="0" maxOccurs="unbounded"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>	
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/WehrpflichtigeAbfragen.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/WehrpflichtigeAbfragen.xsd
new file mode 100644
index 00000000..9a5e6e1a
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/WehrpflichtigeAbfragen.xsd
@@ -0,0 +1,99 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: WehrpflichtigeAbfragen.xsd
+Zweck: Definiert Datentypen für die Wehrpflichtigenabfrage im ZMR
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2004-09-28 tsch: Erstellung
+-->
+
+<xsd:schema xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:cio="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+			targetNamespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	
+	<xsd:import namespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" schemaLocation="../eingebunden/EingebundenProxy.xsd"/>		
+	<xsd:import namespace="http://reference.e-government.gv.at/namespace/persondata/de/20040201#" schemaLocation="../eingebunden/PersonDataZMR.xsd"/>
+	<xsd:include schemaLocation="Personenabfrage.xsd"/>
+	
+	<xsd:element name="WehrpflichtigeAbfragenRequest">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="WehrpflichtigeAbfragenInfo"/>
+				<xsd:element ref="cio:Bundesland"/>
+				<xsd:element name="GeburtsdatumVon" type="base:TimestampType"/>
+				<xsd:element name="GeburtsdatumBis" type="base:TimestampType"/>
+				<xsd:element ref="cio:Familienname"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="WehrpflichtigeAbfragenResponse">
+		<xsd:annotation>
+			<xsd:documentation>
+			Es wir entweder das Feld PDFDaten (Anforderung als Druck) mit allen gefundenen Datensätzen,
+			oder WehrpflichtigeAbfragenErgebnis mit der aktuell geblätterten Seite geliefert.
+			</xsd:documentation>
+		</xsd:annotation>	
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="WehrpflichtigeAbfragenAnfrage"/>
+				<xsd:element ref="base:Message"/>
+				<xsd:element ref="WehrpflichtigeAbfragenErgebnis" minOccurs="0"/>
+				<xsd:element name="PDFDaten" type="xsd:base64Binary" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="WehrpflichtigeAbfragenAnfrage">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="WehrpflichtigeAbfragenInfo"/>
+				<xsd:element ref="cio:Bundesland"/>
+				<xsd:element name="GeburtsdatumVon" type="base:TimestampType"/>
+				<xsd:element name="GeburtsdatumBis" type="base:TimestampType"/>
+				<xsd:element ref="cio:Familienname"/>				
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="WehrpflichtigeAbfragenInfo" type="WehrpflichtigeAbfragenInfoType"/>
+	<xsd:complexType name="WehrpflichtigeAbfragenInfoType">
+		<xsd:annotation>
+			<xsd:documentation>allgemeine Fachliche Informationen für die Wehrpflichtigenabfrage</xsd:documentation>
+		</xsd:annotation>
+		<xsd:sequence>
+			<xsd:element name="AlsDruck" type="xsd:boolean"/>
+			<xsd:element ref="base:AnzahlSaetze" minOccurs="0"/>
+		</xsd:sequence>
+	</xsd:complexType>
+	
+	<xsd:element name="WehrpflichtigeAbfragenErgebnis" type="WehrpflichtigeAbfragenErgebnisType"/>
+	<xsd:complexType name="WehrpflichtigeAbfragenErgebnisType">
+		<xsd:annotation>
+			<xsd:documentation>Enthält je einen 'PersonErgebnisSatz' pro gefundener Person. Wird keine Person gefunden, befindet sich eine entprechende Text-Message in 'base:Message'</xsd:documentation>
+		</xsd:annotation>
+		<xsd:sequence>
+			<xsd:element ref="base:GefundeneSaetze">
+				<xsd:annotation>
+					<xsd:documentation>Gesamtanzahl der in der Datenbank gefundenen Personen</xsd:documentation>
+				</xsd:annotation>
+			</xsd:element>
+			<xsd:element ref="base:SaetzeVon">
+			<xsd:annotation>
+					<xsd:documentation>Beginn-Index dieser Ergebnisliste im Gesamtergebnis (bei Blaettern); Start mit 0</xsd:documentation>
+				</xsd:annotation>			
+			</xsd:element>
+			<xsd:element ref="base:SaetzeBis">
+			<xsd:annotation>
+					<xsd:documentation>Ende-Index dieser Ergebnisliste im Gesamtergebnis (bei Blaettern)</xsd:documentation>
+				</xsd:annotation>			
+			</xsd:element>
+			<xsd:element name="PersonErgebnisSatz" type="PAbfrageErgebnisSatzType" minOccurs="1" maxOccurs="unbounded"/>	
+		</xsd:sequence>
+	</xsd:complexType>	
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/WohnsitzAbmelden.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/WohnsitzAbmelden.xsd
new file mode 100644
index 00000000..5d3b7cc2
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/WohnsitzAbmelden.xsd
@@ -0,0 +1,68 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: WohnsitzAbmelden.xsd
+Zweck: Definiert Datentypen für den Usecase "Wohnsitz abmelden" im ZMR
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2004-06-24 tsch: WohnsitzAbmeldenMsg entfernt
+2004-01-28 tsch: Gesamtdatensatz der neuen Meldung in der Response-Message
+-->
+
+<xsd:schema targetNamespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	 
+	<xsd:import namespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" schemaLocation="../eingebunden/EingebundenProxy.xsd"/>
+	<xsd:include schemaLocation="../zmr/entities/Person.xsd"/>
+	<xsd:include schemaLocation="../zmr/entities/Meldung.xsd"/>
+	<xsd:include schemaLocation="../zmr/entities/Behoerdenattribute.xsd"/>
+
+	<xsd:element name="WohnsitzAbmeldenRequest">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="WohnsitzAbmeldenInfo"/>
+				<xsd:element ref="PersonReferenz"/>
+				<xsd:element ref="MeldungReferenz"/>
+				<xsd:element name="BehoerdenattributeSetzen" type="BehoerdenattributeSetzenType" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="WohnsitzAbmeldenResponse">
+		<xsd:complexType>
+			<xsd:annotation>
+				<xsd:documentation>Server-Antwort zur Wohnsitzabmeldung</xsd:documentation>
+			</xsd:annotation>
+			<xsd:sequence>
+				<xsd:element ref="base:Message"/>
+				<xsd:sequence minOccurs="0">	
+					<xsd:element ref="PersonReferenz"/>
+					<xsd:element ref="MeldungErgebnis">
+						<xsd:annotation>
+							<xsd:documentation>Gesamtdatensatz der abgemeldeten Meldung (mit EntityIDs der Meldung und deren abhängigen Entities)</xsd:documentation>
+						</xsd:annotation>			
+					</xsd:element>
+				</xsd:sequence>	
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="WohnsitzAbmeldenInfo" type="WohnsitzAbmeldenInfoType"/>
+	<xsd:complexType name="WohnsitzAbmeldenInfoType">
+		<xsd:annotation>
+			<xsd:documentation>Fachliche Informationen zur Wohnsitzabmeldung</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexContent>
+			<xsd:extension base="base:InfoFachlichType">
+				<xsd:sequence>		
+					<xsd:element ref="base:StaatVerzogen" minOccurs="0"/>
+				</xsd:sequence>				
+			</xsd:extension>
+		</xsd:complexContent>
+	</xsd:complexType>
+
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/WohnsitzAnmelden.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/WohnsitzAnmelden.xsd
new file mode 100644
index 00000000..75670c47
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/WohnsitzAnmelden.xsd
@@ -0,0 +1,68 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: WohnsitzAnmelden.xsd
+Zweck: Definiert Datentypen für den Usecase "Wohnsitz anmelden" im ZMR
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2004-06-24 tsch: WohnsitzAnmeldenMsg entfernt
+2004-01-28 tsch: Gesamtdatensatz der abgemeldeten Meldung in der Response-Message
+-->
+
+<xsd:schema targetNamespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			xmlns:cio="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	 
+	<xsd:import namespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" schemaLocation="../eingebunden/EingebundenProxy.xsd"/>
+	<xsd:include schemaLocation="../zmr/entities/Person.xsd"/>
+	<xsd:include schemaLocation="../zmr/entities/Meldung.xsd"/>
+
+	<xsd:element name="WohnsitzAnmeldenRequest">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="WohnsitzAnmeldenInfo"/>
+				<xsd:element ref="PersonReferenz"/>
+				<xsd:element ref="MeldungAnlage"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="WohnsitzAnmeldenResponse">
+		<xsd:complexType>
+			<xsd:annotation>
+				<xsd:documentation>Server-Antwort zur Wohnsitzanmeldung</xsd:documentation>
+			</xsd:annotation>
+			<xsd:sequence>
+				<xsd:element ref="base:Message"/>
+				<xsd:sequence minOccurs="0">	
+					<xsd:element ref="PersonReferenz"/>
+					<xsd:element ref="MeldungErgebnis">
+						<xsd:annotation>
+							<xsd:documentation>Gesamtdatensatz der angelegten Meldung (mit EntityIDs der Meldung und deren abhängigen Entities)</xsd:documentation>
+						</xsd:annotation>			
+					</xsd:element>
+				</xsd:sequence>	
+			</xsd:sequence>
+		</xsd:complexType>	
+	</xsd:element>
+
+	<xsd:element name="WohnsitzAnmeldenInfo" type="WohnsitzAnmeldenInfoType"/>
+	
+	<xsd:complexType name="WohnsitzAnmeldenInfoType">
+		<xsd:annotation>
+			<xsd:documentation>allgemeine Fachliche Informationen zur Wohnsitzanmeldung</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexContent>
+			<xsd:extension base="base:InfoFachlichType">
+				<xsd:sequence>		
+					<xsd:element ref="base:StaatZugezogen" minOccurs="0"/>
+				</xsd:sequence>				
+			</xsd:extension>
+		</xsd:complexContent>
+	</xsd:complexType>
+			
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/WohnsitzKorrigieren.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/WohnsitzKorrigieren.xsd
new file mode 100644
index 00000000..90153232
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/WohnsitzKorrigieren.xsd
@@ -0,0 +1,73 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: WohnsitzKorrigieren.xsd
+Zweck: Definiert Datentypen für den Usecase "Wohnsitz korrigieren" im ZMR
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2004-09-27 tsch: Erstellt
+-->
+
+<xsd:schema targetNamespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns:cio="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+			xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	 
+	<xsd:import namespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" schemaLocation="../eingebunden/EingebundenProxy.xsd"/>
+	<xsd:import namespace="http://reference.e-government.gv.at/namespace/persondata/de/20040201#" schemaLocation="../eingebunden/PersonDataZMR.xsd"/>
+	<xsd:include schemaLocation="../zmr/entities/Person.xsd"/>
+	<xsd:include schemaLocation="../zmr/entities/Meldung.xsd"/>
+	<xsd:include schemaLocation="../zmr/entities/Behoerdenattribute.xsd"/>
+	<xsd:include schemaLocation="../zmr/entities/Auskunftssperre.xsd"/>
+	
+	<xsd:element name="WohnsitzKorrigierenRequest">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="WohnsitzKorrigierenInfo"/>
+				<xsd:element ref="PersonReferenz"/>
+				<xsd:element ref="MeldungReferenz"/>
+				<xsd:element name="BehoerdenattributeSetzen" type="BehoerdenattributeSetzenType" minOccurs="0"/>
+				<xsd:element ref="AuskunftssperreAenderung" minOccurs="0" maxOccurs="unbounded"/>
+				<xsd:element ref="AuskunftssperreAnlage" minOccurs="0" maxOccurs="unbounded"/>			
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="WohnsitzKorrigierenResponse">
+		<xsd:complexType>
+			<xsd:annotation>
+				<xsd:documentation>Server-Antwort zur Wohnsitzkorrektur</xsd:documentation>
+			</xsd:annotation>
+			<xsd:sequence>
+				<xsd:element ref="base:Message"/>
+				<xsd:sequence minOccurs="0">	
+					<xsd:element ref="PersonReferenz"/>
+					<xsd:element ref="MeldungErgebnis">
+						<xsd:annotation>
+							<xsd:documentation>Gesamtdatensatz der korrigierten Meldung (mit EntityIDs der Meldung und deren abhängigen Entities)</xsd:documentation>
+						</xsd:annotation>			
+					</xsd:element>
+				</xsd:sequence>	
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="WohnsitzKorrigierenInfo" type="WohnsitzKorrigierenInfoType"/>
+	<xsd:complexType name="WohnsitzKorrigierenInfoType">
+		<xsd:annotation>
+			<xsd:documentation>Fachliche Informationen zur Wohnsitzkorrektur</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexContent>
+			<xsd:extension base="base:InfoFachlichType">
+				<xsd:sequence>		
+					<xsd:element ref="base:Unterkunftgeber" minOccurs="0"/>
+					<xsd:element ref="cio:Abgabestelle" minOccurs="0"/>
+				</xsd:sequence>				
+			</xsd:extension>
+		</xsd:complexContent>
+	</xsd:complexType>
+
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/WohnsitzUmmelden.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/WohnsitzUmmelden.xsd
new file mode 100644
index 00000000..48128ade
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/WohnsitzUmmelden.xsd
@@ -0,0 +1,126 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: WohnsitzUmmelden.xsd
+Zweck: Definiert Datentypen für den Usecase "Wohnsitz ummelden" im ZMR (siehe Messages.xsd)
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2009-12-10 mp: Änderungsmöglichkeit d. Unterkunftgebers bei Ummeldung
+2009-08-06 teo: Auskunftssperre auf Meldung
+2004-07-06 tsch: WohnsitzUmmeldenInfo.Von optional
+2004-06-24 tsch: WohnsitzUmmeldenMsg entfernt
+2004-01-28 tsch: Gesamtdatensaetze der involvierten Meldungen in der Response-Message
+2004-01-25 tsch: BehoerdenattributeAendern wird BehoerdenattributeSetzen
+-->
+
+
+<xsd:schema targetNamespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+
+	<xsd:import namespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" schemaLocation="../eingebunden/EingebundenProxy.xsd"/>
+	<xsd:include schemaLocation="../zmr/entities/Person.xsd"/>
+	<xsd:include schemaLocation="../zmr/entities/Meldung.xsd"/>
+	<xsd:include schemaLocation="../zmr/entities/Behoerdenattribute.xsd"/>
+	<xsd:include schemaLocation="../zmr/entities/Auskunftssperre.xsd"/>
+	
+	<xsd:element name="WohnsitzUmmeldenRequest">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="WohnsitzUmmeldenInfo"/>
+				<xsd:element ref="PersonReferenz"/>
+				<xsd:element name="UMMVorgang1">
+					<xsd:annotation>
+						<xsd:documentation>Referenz auf die erste in den Ummeldevorgang involvierte Meldung (wird entweder umgemeldet, oder abgemeldet), sowie deren evtl. geänderten Behördenattribute</xsd:documentation>
+					</xsd:annotation>
+					<xsd:complexType>
+						<xsd:sequence>
+							<xsd:element ref="MeldungReferenz"/>
+							<xsd:element name="BehoerdenattributeSetzen" type="BehoerdenattributeSetzenType" minOccurs="0"/>
+							<xsd:element ref="AuskunftssperreAenderung" minOccurs="0" maxOccurs="unbounded"/>
+							<xsd:element ref="AuskunftssperreAnlage" minOccurs="0" maxOccurs="unbounded"/>
+							<xsd:element ref="base:Unterkunftgeber" minOccurs="0"/>
+						</xsd:sequence>
+					</xsd:complexType>
+				</xsd:element>
+				<xsd:element name="UMMVorgang2" minOccurs="0">
+					<xsd:annotation>
+						<xsd:documentation>Zweite in den Ummeldevorgang involvierte Meldung (wird entweder umgemeldet, oder angemeldet - entsprechend entweder Referenz oder MeldungAnlage), sowie deren Behördenattribute (bei Ummeldung)</xsd:documentation>
+					</xsd:annotation>			
+					<xsd:complexType>
+						<xsd:sequence>
+							<xsd:choice>
+								<xsd:element ref="MeldungAnlage"/>
+								<xsd:sequence>
+									<xsd:element ref="MeldungReferenz"/>
+									<xsd:element name="BehoerdenattributeSetzen" type="BehoerdenattributeSetzenType" minOccurs="0"/>
+									<xsd:element ref="AuskunftssperreAenderung" minOccurs="0" maxOccurs="unbounded"/>
+									<xsd:element ref="AuskunftssperreAnlage" minOccurs="0" maxOccurs="unbounded"/>
+									<xsd:element ref="base:Unterkunftgeber" minOccurs="0"/>
+								</xsd:sequence>
+							</xsd:choice>
+						</xsd:sequence>
+					</xsd:complexType>
+				</xsd:element>			
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="WohnsitzUmmeldenResponse">
+		<xsd:annotation>
+			<xsd:documentation>Server-Antwort zur Wohnsitzummeldung</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="base:Message"/>
+				<xsd:sequence minOccurs="0">	
+					<xsd:element ref="PersonReferenz"/>
+					<xsd:element name="UMMErgebnis1" type="MeldungErgebnisType">
+						<xsd:annotation>
+							<xsd:documentation>Gesamtdatensatz der umgemeldeten Meldung (mit EntityIDs der Meldung und deren abhängigen Entities)</xsd:documentation>
+						</xsd:annotation>
+					</xsd:element>
+					<xsd:element name="UMMErgebnis2" type="MeldungErgebnisType" minOccurs="0">
+						<xsd:annotation>
+							<xsd:documentation>Gesamtdatensatz der umgemeldeten oder neuen Meldung (mit EntityIDs der Meldung und deren abhängigen Entities)</xsd:documentation>
+						</xsd:annotation>
+					</xsd:element>
+				</xsd:sequence>	
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="WohnsitzUmmeldenInfo" type="WohnsitzUmmeldenInfoType"/>
+	<xsd:complexType name="WohnsitzUmmeldenInfoType">
+		<xsd:annotation>
+			<xsd:documentation>Fachliche Informationen zur Wohnsitzummeldung</xsd:documentation>
+		</xsd:annotation>
+		<xsd:sequence>
+			<xsd:element ref="base:Von" minOccurs="0"/>
+			<xsd:element ref="base:GrundFreitext" minOccurs="0"/>
+			<xsd:element ref="UmmeldungAktion"/>
+			<xsd:choice>
+				<xsd:element ref="base:StaatZugezogen" minOccurs="0"/>
+				<xsd:element ref="base:StaatVerzogen" minOccurs="0"/>
+			</xsd:choice>
+		</xsd:sequence>				
+	</xsd:complexType>
+	
+	<xsd:element name="UmmeldungAktion">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:enumeration value="HWS_NWS_HWS"/>
+				<xsd:enumeration value="HWS_NWS"/>
+				<xsd:enumeration value="HWS_ABM_HWS"/>
+				<xsd:enumeration value="NWS_HWS"/>
+				<xsd:enumeration value="HWS_ABM_NWS_HWS"/>
+				<xsd:enumeration value="HWS_NWS_NWS_HWS"/>
+				<xsd:enumeration value="NWS_ABM_NWS"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/ZMRDatenauszug.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/ZMRDatenauszug.xsd
new file mode 100644
index 00000000..cdab5654
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/ZMRDatenauszug.xsd
@@ -0,0 +1,32 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: ZMRDatenauszug.xsd
+Zweck: Definiert Datentypen für den Datenabgleich externer Partner mit dem ZMR. 
+       Die Partner übermitteln eine csv-Datei mit Suchbegriffen, diese xsd definiert die Struktur des Antwort-XML. 
+Author(s): Richard Mayrhofer
+
+-->
+
+<xsd:schema targetNamespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:cio="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+			
+	<xsd:include schemaLocation="../zmr/Personensuche.xsd"/>
+	<xsd:import namespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" schemaLocation="../eingebunden/EingebundenProxy.xsd"/>
+	<xsd:import namespace="http://reference.e-government.gv.at/namespace/persondata/de/20040201#" schemaLocation="../eingebunden/PersonDataZMR.xsd"/>
+	
+	<xsd:element name="ZMRDatenauszug">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="cio:Identification" minOccurs="0" maxOccurs="unbounded"/>
+				<xsd:element ref="Personendaten" minOccurs="1"/>
+				<xsd:element ref="Meldedaten" minOccurs="0" maxOccurs="unbounded"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/ZMRProxy.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/ZMRProxy.xsd
new file mode 100644
index 00000000..bb0583ef
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/ZMRProxy.xsd
@@ -0,0 +1,96 @@
+<?xml version="1.0" encoding="UTF-8"?>
+
+<!--
+Name: ZMRProxy.xsd
+Zweck: Fasst alle ZMR-Vorgangs XSD-Files zusammen
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2011-09-05 teo: Änderungsdienst ZWR (PN126)
+2010-03-08 teo: Historische Meldungskorrektur
+2010-02-01 teo: MeldebestätigungenAnforderung hinzugefügt
+2009-08-24 mp: TechnischeAnsicht hinzugefügt
+2009-08-06 teo: Auskunftssperre ändern hinzugefügt
+2009-05-07 teo: Ummeldeserviceabfrage hinzugefügt
+2009-01-23 teo: GISSuche hinzugefügt
+2006-11-06 tsch: ORFGISAnforderung hinzugefügt
+2006-03-21 tsch: SZRSammelabfrage hinzugefügt
+2005-01-14 tsch: Aviso aktivieren entfernt, Gleichstzungtabelle Warten hinzugefügt
+2004-11-22 tsch: Gerichtskommissaerabfrage hinzugefügt
+2004-09-28 tsch: Wehrfplichtigenanfrage, ablaufende Auskunfssperren-Suche hinzugefügt
+2004-09-27 tsch: Storno/Korrektur hinzugefügt
+2004-09-09 tsch: SZR-Vorgänge sowie Person trennen/zusammenführen hinzugefügt
+2004-08-24 tsch: GISAdressabfrage hinzugefügt
+2004-08-17 tsch: Erstellung
+-->
+
+<xsd:schema xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			targetNamespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+			
+	<xsd:include schemaLocation="../zmr/Personensuche.xsd"/>
+	<xsd:include schemaLocation="../zmr/PersonAnlegen.xsd"/>
+	<xsd:include schemaLocation="../zmr/PersonAendern.xsd"/>
+	<xsd:include schemaLocation="../zmr/WohnsitzAnmelden.xsd"/>
+	<xsd:include schemaLocation="../zmr/WohnsitzAbmelden.xsd"/>
+	<xsd:include schemaLocation="../zmr/WohnsitzUmmelden.xsd"/>
+	<xsd:include schemaLocation="../zmr/Adresssuche.xsd"/>
+	<xsd:include schemaLocation="../zmr/Meldeauskunft.xsd"/>
+	<xsd:include schemaLocation="../zmr/BKMeldeauskunft.xsd"/>
+	<xsd:include schemaLocation="../zmr/Meldebestaetigung.xsd"/>
+	<xsd:include schemaLocation="../zmr/Avisosuche.xsd"/>
+	<xsd:include schemaLocation="../zmr/AvisoAnlegen.xsd"/>
+	<xsd:include schemaLocation="../zmr/AvisoAendern.xsd"/>
+	<xsd:include schemaLocation="../zmr/AvisoFreigeben.xsd"/>
+	<xsd:include schemaLocation="../zmr/Datenabgleich.xsd"/>
+	<xsd:include schemaLocation="../zmr/Behoerdenabfrage.xsd"/>
+	<xsd:include schemaLocation="../zmr/Businesspartnerabfrage.xsd"/>
+	<xsd:include schemaLocation="../zmr/BusinesspartnerabfrageErweitert.xsd"/>
+	<xsd:include schemaLocation="../zmr/BusinesspartnerAnfrage.xsd"/>
+	<xsd:include schemaLocation="../zmr/Bestandsaenderungen.xsd"/>
+	<xsd:include schemaLocation="../zmr/Fremdenabfrage.xsd"/>
+	<xsd:include schemaLocation="../zmr/Hauseigentuemerabfrage.xsd"/>
+	<xsd:include schemaLocation="../zmr/IAPPersonenabfrage.xsd"/>
+	<xsd:include schemaLocation="../zmr/Personenabfrage.xsd"/>
+	<xsd:include schemaLocation="../zmr/Zuzugsbestaetigung.xsd"/>
+	<xsd:include schemaLocation="../zmr/GISAdressabfrage.xsd"/>
+	<xsd:include schemaLocation="../zmr/PersonZusammenfuehren.xsd"/>
+	<xsd:include schemaLocation="../zmr/PersonTrennen.xsd"/>
+	<xsd:include schemaLocation="../zmr/SZREinzelabfrage.xsd"/>	
+	<xsd:include schemaLocation="../zmr/SZRPersonenbindung.xsd"/>	
+	<xsd:include schemaLocation="../zmr/SzrAbfrage.xsd"/>	
+	<xsd:include schemaLocation="../zmr/SZRPersonensuche.xsd"/>
+	<xsd:include schemaLocation="../zmr/SZRSammelabfrage.xsd"/>
+	<xsd:include schemaLocation="../zmr/BehoerdenattributeAendern.xsd"/>
+	<xsd:include schemaLocation="../zmr/Storno.xsd"/>
+	<xsd:include schemaLocation="../zmr/PersonKorrigieren.xsd"/>
+	<xsd:include schemaLocation="../zmr/WohnsitzKorrigieren.xsd"/>
+	<xsd:include schemaLocation="../zmr/WehrpflichtigeAbfragen.xsd"/>
+	<xsd:include schemaLocation="../zmr/AblaufendeAuskunftssperrenSuche.xsd"/>
+	<xsd:include schemaLocation="../zmr/Gerichtskommissaerabfrage.xsd"/>
+	<xsd:include schemaLocation="../zmr/ObjektsucheSteuerfahndung.xsd"/>
+	<xsd:include schemaLocation="../zmr/Adoption.xsd"/>
+	<xsd:include schemaLocation="../zmr/GleichsetzungstabelleWarten.xsd"/>
+	<xsd:include schemaLocation="../zmr/QKZBearbeiten.xsd"/>
+	<xsd:include schemaLocation="../zmr/QKZAuswertung.xsd"/>
+	<xsd:include schemaLocation="../zmr/BPKPruefung.xsd"/>
+	<xsd:include schemaLocation="../zmr/ORFGISAnforderung.xsd"/>
+	<xsd:include schemaLocation="../zmr/Anwendungsintegration.xsd"/>
+	<xsd:include schemaLocation="../zmr/AnwendungsintegrationWiederholung.xsd"/>
+	<xsd:include schemaLocation="../zmr/Personenlisten.xsd"/>
+	<xsd:include schemaLocation="../zmr/GISSuche.xsd"/>
+	<xsd:include schemaLocation="../zmr/Ummeldeserviceabfrage.xsd"/>
+	<xsd:include schemaLocation="../zmr/AuskunftssperreAendern.xsd"/>
+	<xsd:include schemaLocation="../zmr/TechnischeAnsicht.xsd"/>
+	<xsd:include schemaLocation="../zmr/MeldebestaetigungenAnfordern.xsd"/>
+	<xsd:include schemaLocation="../zmr/MeldungHistKorrigieren.xsd"/>
+	<xsd:include schemaLocation="../zmr/ObjektsucheMindestsicherung.xsd"/>
+	<xsd:include schemaLocation="../zmr/PersonenIndex.xsd"/>
+	<xsd:include schemaLocation="../zmr/PersonExport.xsd"/>
+	<xsd:include schemaLocation="../zmr/ErnpAbfrage.xsd"/>		
+	<xsd:include schemaLocation="../zmr/ZMRDatenauszug.xsd"/>
+	<xsd:include schemaLocation="../zmr/ZmrBuergerService.xsd"/>
+	<xsd:include schemaLocation="../zmr/Gemeindeeinstellungen.xsd"/>
+	<xsd:include schemaLocation="../zmr/Sperrliste.xsd"/>
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/ZmrBuergerService.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/ZmrBuergerService.xsd
new file mode 100644
index 00000000..9732778d
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/ZmrBuergerService.xsd
@@ -0,0 +1,373 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: ZmrBuergerService.xsd
+Zweck: Definiert Requests/Responses und Datentypen für die Usecases des ZMR-Buergerservice mit Buergerkarte.
+Author(s): Richie Mayrhofer, ZMR
+-->
+
+<xsd:schema targetNamespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:cio="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+			xmlns:dsig="http://www.w3.org/2000/09/xmldsig#"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+			
+	<xsd:include schemaLocation="../zmr/entities/Meldung.xsd"/>
+	<xsd:include schemaLocation="../zmr/entities/Person.xsd"/>
+	<xsd:include schemaLocation="../zmr/WohnsitzUmmelden.xsd"/>
+	
+	<xsd:import namespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" schemaLocation="../eingebunden/EingebundenProxy.xsd"/>
+	<xsd:import namespace="http://reference.e-government.gv.at/namespace/persondata/de/20040201#" schemaLocation="../eingebunden/PersonDataZMR.xsd"/>
+	
+	<xsd:element name="BuergerPersonensucheRequest">
+		<xsd:annotation>
+			<xsd:documentation>Suchkriterien für die Personensuche im ZMR</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="TrackingInfo" minOccurs="0"/>
+				<xsd:element ref="cio:Familienname" minOccurs="1"/>
+				<xsd:element ref="cio:Vorname" minOccurs="1"/>
+				<xsd:element ref="cio:Geburtsdatum" minOccurs="1"/>
+				<xsd:element ref="bpkZP" minOccurs="1"/>
+				<xsd:element ref="base:Stichtag" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="BuergerPersonensucheResponse">
+		<xsd:annotation>
+			<xsd:documentation>Response der Personensuche im ZMR. Geliefert werden die ID-Daten sowie alle Staatsangehoerigkeiten</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="base:Message"/>
+				<xsd:element ref="PersonendatenBuerger" minOccurs="0" maxOccurs="1"/>
+				<xsd:element ref="MeldedatenBuerger" minOccurs="0" maxOccurs="unbounded"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="BuergerMitbewohnersucheRequest">
+		<xsd:annotation>
+			<xsd:documentation>Suchkriterien für die Mitbewohnersuche im ZMR</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="TrackingInfo" minOccurs="0"/>
+				<xsd:element ref="bpkZP"/>
+				<xsd:element ref="EntityIdPerson"/>
+				<xsd:element ref="EntityIdMeldung"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="BuergerMitbewohnersucheResponse">
+		<xsd:annotation>
+			<xsd:documentation>Response der Mitbewohnersuche im ZMR. Geliefert wird die angefragte Adresse sowie die ID-Daten aller Personen an der Adresse</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="base:Message"/>
+				<xsd:element ref="Suchperson" minOccurs="1" maxOccurs="1"/>
+				<xsd:element ref="MinderjaehrigePerson" minOccurs="0" maxOccurs="unbounded"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="BuergerWohnsitzAnmeldenRequest">
+		<xsd:annotation>
+			<xsd:documentation>Suchkriterien für die Wohnsitzanmeldung im ZMR. bPK/ZP der </xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="TrackingInfo" minOccurs="0"/>
+				<xsd:element name="Signatur" type="xsd:base64Binary"/>
+				<xsd:element ref="bpkZP"/>
+				<xsd:element ref="cio:Wohnsitzqualitaet"/>
+				<xsd:element ref="Adressinfo"/>
+				<xsd:element ref="AnmeldedatenPerson" minOccurs="1" maxOccurs="unbounded"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="BuergerWohnsitzAbmeldenRequest">
+		<xsd:annotation>
+			<xsd:documentation>Suchkriterien für die Wohnsitzanmeldung im ZMR</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="TrackingInfo" minOccurs="0"/>
+				<xsd:element name="Signatur" type="xsd:base64Binary"/>
+				<xsd:element ref="bpkZP"/>
+				<xsd:element ref="Abmeldedaten" minOccurs="1" maxOccurs="unbounded"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="BuergerWohnsitzUmmeldenRequest">
+		<xsd:annotation>
+			<xsd:documentation>Suchkriterien für die Wohnsitzanmeldung im ZMR</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="TrackingInfo" minOccurs="0"/>
+				<xsd:element name="Signatur" type="xsd:base64Binary"/>
+				<xsd:element ref="bpkZP"/>
+				<xsd:element ref="UmmeldungAktion" />
+				<!-- neue Adresse, leer UmmeldeAktion wenn nicht HWS_ABM_NWS_HWS oder HWS_NWS_NWS_HWS -->
+				<xsd:element ref="AnmeldeAdresse" minOccurs="0" maxOccurs="1"/>
+				<xsd:element ref="Ummeldedaten" minOccurs="1" maxOccurs="unbounded"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="TrackingInfo">
+		<xsd:annotation>
+			<xsd:documentation>Transaction- und UUID des Service Clients</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element name="TransactionId" type="xsd:string"/>
+				<xsd:element name="UUID" type="xsd:string"/>
+			</xsd:sequence> 
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="AnmeldeAdresse">
+		<xsd:annotation>
+			<xsd:documentation>neue Meldung bei HWS_ABM_NWS_HWS und HWS_NWS_NWS_HWS</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="Adressinfo"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="BuergerWohnsitzserviceResponse">
+		<xsd:annotation>
+			<xsd:documentation>Response der Wohnsitzabmeldung im ZMR. Geliefert wird der MessageCode, die Anzahl der an/ab/umgemeldeten Personen und die Meldebestaetigungen</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="base:Message"/>
+				<xsd:element ref="base:AnzahlSaetze"/>
+				<xsd:element name="PDF" type="xsd:base64Binary" minOccurs="0" maxOccurs="unbounded"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="bpkZP" type="xsd:string"/>
+	<xsd:element name="EntityIdPerson" type="xsd:long"/>
+	<xsd:element name="EntityIdMeldung" type="xsd:long"/>
+	
+	<xsd:element name="PersonendatenBuerger">
+		<xsd:annotation>
+			<xsd:documentation>aktuelle Personendaten</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="EntityIdPerson"/>
+				<xsd:element ref="base:LetzteAenderung"/>
+				<xsd:element ref="cio:Familienname"/>
+				<xsd:element ref="cio:Vorname"/>
+				<xsd:element ref="cio:Geburtsdatum"/>
+				<xsd:element ref="cio:Geburtsort"/>
+				<xsd:element ref="cio:Geschlecht"/>
+				<xsd:element ref="Staatsangehoerigkeit" minOccurs="0" maxOccurs="unbounded"/>
+				<xsd:element ref="bpkZP" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="Staatsangehoerigkeit">
+		<xsd:annotation>
+			<xsd:documentation>Staatsangehoerigkeiten der Person, mindestens eine (ISO-Code3 + Name)</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="cio:Staatscode"/>
+				<xsd:element ref="cio:Staatsname"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="MeldedatenBuerger">
+		<xsd:annotation>
+			<xsd:documentation>aktuelle Meldungen zur Person</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="MeldungKurzinfo"/>
+				<xsd:element ref="Adressinfo"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="MeldungKurzinfo">
+		<xsd:annotation>
+			<xsd:documentation>aktuelle Meldungen zur Person</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="EntityIdMeldung"/>
+				<xsd:element ref="base:LetzteAenderung"/>
+				<xsd:element ref="cio:Wohnsitzqualitaet"/>
+				<xsd:element ref="base:GemeldetVon"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="Adressinfo">
+		<xsd:annotation>
+			<xsd:documentation>Adresse</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="cio:Postleitzahl"/>
+				<xsd:element ref="cio:Gemeinde"/>
+				<xsd:element ref="cio:Gemeindekennziffer"/>
+				<xsd:element ref="cio:Ortschaft" minOccurs="0"/>
+				<xsd:element ref="cio:Strassenname"/>
+				<xsd:element name="Hausnummer" type="xsd:string" minOccurs="0"/>
+				<xsd:element name="Stiege" type="xsd:string" minOccurs="0"/>
+				<xsd:element name="Tuer" type="xsd:string" minOccurs="0"/>
+				<xsd:element ref="AdressRegisterEintrag" minOccurs="0"/>
+				<xsd:element ref="cio:Nutzungseinheitlaufnummer" minOccurs="0"/>
+				<xsd:element ref="base:Unterkunftgeber" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="Suchperson">
+		<xsd:annotation>
+			<xsd:documentation>Personen- und Meldedaten der abfragenden Person</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="PersonendatenBuerger"/>
+				<xsd:element ref="MeldedatenBuerger"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="MinderjaehrigePerson">
+		<xsd:annotation>
+			<xsd:documentation>Personen- und Meldedaten der minderjaehrigen Kinder</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="PersonendatenBuerger"/>
+				<xsd:element ref="MeldungKurzinfo"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="Abmeldedaten">
+		<xsd:annotation>
+			<xsd:documentation>Personen- und Meldedaten fuer eine abzumeldende Person </xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<!-- Id der abzumeldenden Meldung -->
+				<xsd:element ref="Wohnsitz"/>
+				<!-- Id der abzumeldenden Person -->
+				<xsd:element ref="EntityIdPerson"/>
+				<!-- Timestamp letzte Aenderung Person -->
+				<xsd:element ref="base:LetzteAenderung"/>
+				<xsd:element ref="VerzugsstaatIso3" minOccurs="0"/> 
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>			
+	
+	<xsd:element name="Ummeldedaten">
+		<xsd:annotation>
+			<xsd:documentation>Personen- und Meldedaten fuer eine umzumeldende Person </xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<!-- Id der umzumeldenden Person -->
+				<xsd:element ref="UmmeldedatenPerson"/>
+				<!--  Zuzugs- oder Verzugsstaat -->
+				<xsd:choice>
+					<xsd:element ref="ZuzugsstaatIso3" minOccurs="0"/> 
+					<xsd:element ref="VerzugsstaatIso3" minOccurs="0"/> 
+				</xsd:choice>
+				<!-- alte/bisherige Meldung -->
+				<xsd:element ref="Abmeldung" minOccurs="1"/>
+				<!-- neue/Ziel-Meldung bei Wechsel der WohnsitzQualitaet -->
+				<xsd:element ref="Anmeldung" minOccurs="0" maxOccurs="1"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>			
+	
+	<xsd:element name="Abmeldung">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="Wohnsitz"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="Anmeldung">
+		<xsd:annotation>
+			<xsd:documentation>neue Meldung bei HWS_ABM_NWS_HWS und HWS_NWS_NWS_HWS</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="Wohnsitz"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="Wohnsitz">
+		<xsd:annotation>
+			<xsd:documentation>Id der zu aendernden Meldung sowie Datum der letzten Aenderung </xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="EntityIdMeldung"/>
+				<xsd:element ref="base:LetzteAenderung"/>
+			</xsd:sequence>	
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="ZuzugsstaatIso3" type="StaatscodeType"/>
+	<xsd:element name="VerzugsstaatIso3" type="StaatscodeType"/>
+
+	<xsd:simpleType name="StaatscodeType">
+		<xsd:restriction base="xsd:string">
+			<xsd:pattern value="[A-Z]{3}"/>
+		</xsd:restriction>
+	</xsd:simpleType>	
+	
+	<xsd:element name="AnmeldedatenPerson">
+		<xsd:annotation>
+			<xsd:documentation>Zuzugsstaat und Ummeldedaten</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="ZuzugsstaatIso3" minOccurs="0" />
+				<xsd:element ref="UmmeldedatenPerson"/>
+			</xsd:sequence>
+		</xsd:complexType>		
+	</xsd:element>
+	
+	
+	<xsd:element name="UmmeldedatenPerson">
+		<xsd:annotation>
+			<xsd:documentation>Id der Person und Religionsbekenntnis</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="EntityIdPerson"/>
+				<xsd:element name="Religionsbekenntnis" type="xsd:string"/>
+				<xsd:element ref="base:LetzteAenderung"/>
+			</xsd:sequence>
+		</xsd:complexType>		
+	</xsd:element>
+	
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Zuzugsbestaetigung.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Zuzugsbestaetigung.xsd
new file mode 100644
index 00000000..d557ae50
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Zuzugsbestaetigung.xsd
@@ -0,0 +1,105 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: Zuzugsbestaetigung.xsd
+Zweck: Definiert Datentypen für die Zuzugsbetätigungen aus dem ZMR
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2011-09-13 teo: ZMR-1656 Zuzugsbestätigung aufgrund Wahlrechtsänderung anpassen
+2004-08-20 tsch: Kapselung der Zuzugssätze im Element Zuzugsbestaetigung
+2004-08-17 tsch: Erstellung
+-->
+
+<xsd:schema targetNamespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:cio="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+			
+
+	<xsd:import namespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" schemaLocation="../eingebunden/EingebundenProxy.xsd"/>
+	<xsd:import namespace="http://reference.e-government.gv.at/namespace/persondata/de/20040201#" schemaLocation="../eingebunden/PersonDataZMR.xsd"/>
+	
+	<xsd:element name="ZuzugsbestaetigungRequest">
+		<xsd:annotation>
+			<xsd:documentation>Anfragedaten der Zuzugsbestaetigung</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="ZuzugsbestaetigungInfo"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="ZuzugsbestaetigungResponse">
+		<xsd:annotation>
+			<xsd:documentation>In der Response werden die Anfragedaten aus dem Request und das Abgleichergebnis geliefert.</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="ZuzugsbestaetigungAnfrage"/>
+				<xsd:element ref="base:Message"/>
+				<xsd:element ref="Zuzugsbestaetigung" minOccurs="0" maxOccurs="unbounded"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="ZuzugsbestaetigungInfo" type="ZuzugsbestaetigungInfoType"/>
+	
+	<xsd:complexType name="ZuzugsbestaetigungInfoType">
+		<xsd:sequence>
+			<xsd:element ref="base:GemeindeNr"/>
+			<xsd:element name="ZuzugsbestaetigungVon" type="base:TimestampType"/>
+			<xsd:element name="ZuzugsbestaetigungBis" type="base:TimestampType"/>
+		</xsd:sequence>
+	</xsd:complexType>
+	
+	<xsd:element name="ZuzugsbestaetigungAnfrage">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="ZuzugsbestaetigungInfo"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="Zuzugsbestaetigung" type="ZuzugsbestaetigungType"/>
+	
+	<xsd:complexType name="ZuzugsbestaetigungType">
+		<xsd:sequence>
+			<xsd:element ref="base:GefundeneSaetze">
+				<xsd:annotation>
+					<xsd:documentation>Gesamtanzahl der Zuzugs-Saetze für diese Anfrage</xsd:documentation>
+				</xsd:annotation>
+			</xsd:element>
+			<xsd:element ref="base:AnzahlSaetze">
+				<xsd:annotation>
+					<xsd:documentation>Anzahl der im File gelieferten Zuzugs-Saetze</xsd:documentation>
+				</xsd:annotation>			
+			</xsd:element>
+			<xsd:element ref="ZuzugsbestaetigungSatz" maxOccurs="unbounded"/>
+		</xsd:sequence>
+	</xsd:complexType>	
+
+	<xsd:element name="ZuzugsbestaetigungSatz" type="ZuzugsbestaetigungSatzType"/>
+	<xsd:complexType name="ZuzugsbestaetigungSatzType">
+		<xsd:sequence>
+			<xsd:element name="ZugezogenPerson" type="ZugezogenPersonType"/>
+			<xsd:element name="ZugezogenAm" type="base:TimestampType"/>
+			<xsd:element name="ZugezogenGemeindeNr" type="base:GemeindeNrType"/>
+			<xsd:element name="ZugezogenGemeinde" type="base:GemeindenameType"/>
+			<xsd:element name="HaftAnschrift" type="cio:PostAdresseTyp" minOccurs="0"/>
+			<xsd:element name="ZuLoeschenAm" type="base:TimestampType" minOccurs="0"/>
+		</xsd:sequence>
+	</xsd:complexType>
+	
+	<xsd:complexType name="ZugezogenPersonType">
+		<xsd:sequence>
+			<xsd:element ref="base:ZMRZahl"/>
+			<xsd:element ref="cio:Familienname"/>
+			<xsd:element ref="cio:Vorname"/>
+			<xsd:element ref="cio:Geburtsdatum"/>
+		</xsd:sequence>
+	</xsd:complexType>
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/entities/AkademischerGrad.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/entities/AkademischerGrad.xsd
new file mode 100644
index 00000000..3ebf0c0a
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/entities/AkademischerGrad.xsd
@@ -0,0 +1,84 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: AkademischerGrad.xsd
+Zweck: Definiert Datentypen für die akademischen Grade einer Person im ZMR
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2005-03-01 tsch: Feld AusstellBehoerde optional
+2004-06-20 tsch: Erstellt
+-->
+
+<xsd:schema xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			targetNamespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	<xsd:import namespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" schemaLocation="../../eingebunden/EingebundenProxy.xsd"/>
+	
+	<xsd:complexType name="AkademischerGradErgebnisType">
+		<xsd:annotation>
+			<xsd:documentation>Suchergebnisse-Struktur akademischer Grade einer Person</xsd:documentation>
+		</xsd:annotation>	 
+		
+		<xsd:sequence>
+			<xsd:element ref="base:EntityErgebnisReferenz"/>
+			<xsd:element ref="base:AkadGradKey"/>
+			<xsd:element ref="base:AkadGradStellung"/>
+			<xsd:element ref="base:AkadGradReihung"/>
+			<xsd:element ref="base:AkadGradLang"/>
+			<xsd:element ref="base:AkadGradKurz"/>
+			<xsd:element ref="base:AusstellDatum" minOccurs="0"/>
+			<xsd:element ref="base:AusstellBehoerde" minOccurs="0"/>
+			<xsd:element ref="base:Ausstellungsstaat"/>
+		</xsd:sequence>				
+	</xsd:complexType>
+
+	<xsd:element name="AkademischerGradAnlage" type="AkademischerGradAnlageType"/>
+	<xsd:complexType name="AkademischerGradAnlageType">
+		<xsd:annotation>
+			<xsd:documentation>Struktur für Anlagen von akademischen Graden im ZMR</xsd:documentation>
+		</xsd:annotation>		
+		<xsd:sequence>
+			<xsd:choice>
+				<xsd:annotation>
+					<xsd:documentation>
+					Bei Anlage eines offiziellen akademischer Grades muss der AkadGradKey des Grades geschickt werden,
+					die einzelnen Felder (ohne AkadGradKey) sind nur bei Anlage eines "händischen", nicht offiziellen
+					Grades zu befüllen.
+					</xsd:documentation>
+				</xsd:annotation>
+				<xsd:element ref="base:AkadGradKey"/>
+				<xsd:sequence>
+					<xsd:element ref="base:AkadGradStellung"/>
+					<xsd:element ref="base:AkadGradReihung"/>
+					<xsd:element ref="base:AkadGradLang"/>
+					<xsd:element ref="base:AkadGradKurz"/>
+				</xsd:sequence>
+			</xsd:choice>
+			<xsd:element ref="base:AusstellDatum" minOccurs="0"/>
+			<xsd:element ref="base:AusstellBehoerde" minOccurs="0"/>
+			<xsd:element ref="base:Ausstellungsstaat"/>
+		</xsd:sequence>
+	</xsd:complexType>
+	
+	<xsd:element name="AkademischerGradAenderung" type="AkademischerGradAenderungType"/>
+	<xsd:complexType name="AkademischerGradAenderungType">
+		<xsd:annotation>
+			<xsd:documentation>
+			Struktur für Änderungen von akademischen Graden im ZMR.
+			Die Felder AkadGradLang und AkadGradKurz lassen sich nur bei nicht-offiziellen Graden (kein AkadGradKey) ändern.
+			</xsd:documentation>
+		</xsd:annotation>	
+		<xsd:sequence>
+			<xsd:element ref="base:EntityReferenz"/>
+			<xsd:element ref="base:AkadGradLang" minOccurs="0"/>
+			<xsd:element ref="base:AkadGradKurz" minOccurs="0"/>
+			<xsd:element ref="base:AusstellDatum" minOccurs="0"/>
+			<xsd:element ref="base:AusstellBehoerde" minOccurs="0"/>
+			<xsd:element ref="base:Beendigung"/>
+		</xsd:sequence>
+	</xsd:complexType>	
+	
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/entities/Auskunftssperre.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/entities/Auskunftssperre.xsd
new file mode 100644
index 00000000..30dafed3
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/entities/Auskunftssperre.xsd
@@ -0,0 +1,95 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: Auskunftssperre.xsd
+Zweck: Definiert Auskunftssperren für ZMR-Entities (Person und Meldung)
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2004-10-27 tsch: Felder bei Änderung optional, Beendigung hinzugefügt
+2004-08-06 tsch: SperrText in AuskunftssperreErgebnisType hinzugefügt
+2004-06-14 tsch: Handling mehrerer Auskunftssperren
+2004-01-22 tsch: Auskunftssperre->AuskunftssperreErgebnisType
+-->
+
+<xsd:schema xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			targetNamespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	  
+	<xsd:import namespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" schemaLocation="../../eingebunden/EingebundenProxy.xsd"/>
+	
+	<xsd:complexType name="AuskunftssperreErgebnisType">
+		<xsd:annotation>
+			<xsd:documentation>Auskunftssperre-Struktur für Suchergebnisse</xsd:documentation>
+		</xsd:annotation>	
+		<xsd:sequence>
+			<xsd:element ref="base:EntityErgebnisReferenz"/>
+			<xsd:element ref="SperreVon"/>
+			<xsd:element ref="SperreBis"/>
+			<xsd:element ref="SperrCode"/>
+			<xsd:element ref="SperrText"/>
+			<xsd:element ref="SperrFreitext" minOccurs="0"/>
+		</xsd:sequence>
+	</xsd:complexType>
+
+	<xsd:element name="AuskunftssperreAnlage" type="AuskunftssperreAnlageType"/>
+	<xsd:complexType name="AuskunftssperreAnlageType">
+		<xsd:annotation>
+			<xsd:documentation>Struktur für Anlagen von Auskunftssperren</xsd:documentation>
+		</xsd:annotation>	
+		<xsd:sequence>
+			<xsd:element ref="SperreVon"/>
+			<xsd:element ref="SperreBis"/>
+			<xsd:element ref="SperrCode"/>
+			<xsd:element ref="SperrFreitext" minOccurs="0"/>
+		</xsd:sequence>	
+	</xsd:complexType>
+
+	<xsd:element name="AuskunftssperreAenderung" type="AuskunftssperreAenderungType"/>
+	<xsd:complexType name="AuskunftssperreAenderungType">
+		<xsd:annotation>
+			<xsd:documentation>Struktur für Änderungen von Auskunftssperren</xsd:documentation>
+		</xsd:annotation>	
+		<xsd:sequence>
+			<xsd:element ref="base:EntityReferenz"/>
+			<xsd:element ref="SperreVon" minOccurs="0"/>
+			<xsd:element ref="SperreBis" minOccurs="0"/>
+			<xsd:element ref="SperrCode" minOccurs="0"/>
+			<xsd:element ref="SperrFreitext" minOccurs="0"/>
+			<xsd:element ref="base:Beendigung"/>
+		</xsd:sequence>	
+	</xsd:complexType>
+		
+	<xsd:element name="SperreVon" type="base:TimestampType"/>
+	<xsd:element name="SperreBis" type="base:TimestampType"/>
+
+	<xsd:element name="SperrCode">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:minLength value="1"/>
+				<xsd:maxLength value="15"/>				
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	
+	<xsd:element name="SperrFreitext">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="240"/>				
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+
+	<xsd:element name="SperrText">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:minLength value="1"/>
+				<xsd:maxLength value="50"/>				
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/entities/Aviso.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/entities/Aviso.xsd
new file mode 100644
index 00000000..dff1d5eb
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/entities/Aviso.xsd
@@ -0,0 +1,176 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: Aviso.xsd
+Zweck: Definiert Datentypen für die Anlage, Aenderung und Suche von Avisi
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2010-06-02 mp: ZMR-1142: AvisoAktenzahl für case-insensitive Suche auf bestimmte Zeichen begrenzt
+2005-01-14 tsch: Adaptionen bei Änderung; Abfragerhythmus entfernt
+2004-11-26 tsch: Erweiterung um Avisotreffer
+2004-04-06 tsch: Erstellung
+-->
+
+<xsd:schema xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:cio="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+			targetNamespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	
+	<xsd:include schemaLocation="../Personenabfrage.xsd"/>
+	<xsd:import namespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" schemaLocation="../../eingebunden/EingebundenProxy.xsd"/>
+	<xsd:import namespace="http://reference.e-government.gv.at/namespace/persondata/de/20040201#" schemaLocation="../../eingebunden/PersonDataZMR.xsd"/>
+
+	<xsd:element name="AvisoReferenz" type="AvisoReferenzType"/>
+	<xsd:complexType name="AvisoReferenzType">
+		<xsd:annotation>
+			<xsd:documentation>Typ für Referenzdaten eines Aviso (immer das aktuellste, das heisst jüngstes 'Von'), mit Avisozahl zur Kontrolle</xsd:documentation>
+		</xsd:annotation>
+		<xsd:sequence>
+			<xsd:element ref="base:Technisch"/>
+			<xsd:element ref="AvisoZahl"/>
+		</xsd:sequence>
+	</xsd:complexType>
+	
+	<xsd:element name="AvisoErgebnis" type="AvisoErgebnisType"/>
+	
+	
+	<xsd:complexType name="AvisoErgebnisType">
+		<xsd:annotation>
+			<xsd:documentation>Aviso-Struktur für Suchergebnisse der Avisosuchen</xsd:documentation>
+		</xsd:annotation>
+		<xsd:sequence>
+			<xsd:element ref="base:EntityErgebnisReferenz"/>
+			<xsd:element ref="AvisoZahl"/>
+			<xsd:element ref="AvisoAktenzahl" minOccurs="0"/>
+			<xsd:element ref="base:Behoerdenschluessel"/>
+			<xsd:element ref="base:BehoerdenBezeichnung" minOccurs="0"/>
+			
+			<xsd:element ref="ZustaendigeMeldebehoerde"/>
+			
+			<xsd:element ref="AvisoStart"/>
+			<xsd:element ref="AvisoEnde"/>
+			<xsd:element ref="AvisoStatus"/>
+			
+			<xsd:element ref="AvisoSuchkriterien"/>
+			<xsd:element ref="AvisoSuchdaten"/>
+			
+			<xsd:element ref="AvisoTreffer" minOccurs="0" maxOccurs="unbounded"/>
+		</xsd:sequence>				
+	</xsd:complexType>
+
+	<xsd:element name="AvisoTreffer" type="AvisoTrefferType"/>
+	<xsd:complexType name="AvisoTrefferType">
+		<xsd:annotation>
+			<xsd:documentation>Struktur für gefundenen Treffer des Aviso im ZMR (ein Treffer repräsentiert eine gefundene Person)</xsd:documentation>
+		</xsd:annotation>
+		<xsd:sequence>
+			<xsd:element ref="AvisoTrefferStatus"/>
+			<xsd:element name="AvisoTrefferAusgeschlossen" type="xsd:boolean"/>
+			<xsd:element name="AvisoTrefferPersonendaten" type="PAbfrageErgebnisSatzType"/>
+		</xsd:sequence>
+	</xsd:complexType>
+
+	<xsd:element name="AvisoAnlage" type="AvisoAnlageType"/>
+	<xsd:complexType name="AvisoAnlageType">
+		<xsd:annotation>
+			<xsd:documentation>Aviso-Struktur für Neuanlagen von Avisi im ZMR</xsd:documentation>
+		</xsd:annotation>
+		<xsd:sequence>
+			<xsd:element ref="base:BehoerdenNr" minOccurs="0"/>
+			<xsd:element ref="AvisoAktenzahl" minOccurs="0"/>
+			<xsd:element ref="ZustaendigeMeldebehoerde"/>
+			
+			<xsd:element ref="AvisoStart"/>
+			<xsd:element ref="AvisoEnde"/>
+			
+			<xsd:element ref="AvisoSuchkriterien"/>
+			<xsd:element ref="AvisoSuchdaten"/>					
+		</xsd:sequence>
+	</xsd:complexType>
+	
+	<xsd:element name="AvisoAenderung" type="AvisoAenderungType"/>
+	<xsd:complexType name="AvisoAenderungType">
+		<xsd:annotation>
+			<xsd:documentation>Aviso-Struktur  für Aenderungen von Avisdaten</xsd:documentation>
+		</xsd:annotation>	
+		<xsd:sequence>
+			<xsd:element ref="AvisoStart" minOccurs="0"/>
+			<xsd:element ref="AvisoEnde" minOccurs="0"/>
+			<xsd:element ref="base:Beendigung"/>	
+		</xsd:sequence>
+	</xsd:complexType>
+
+	<xsd:element name="AvisoTrefferAenderung" type="AvisoTrefferAenderungType"/>
+	<xsd:complexType name="AvisoTrefferAenderungType">
+		<xsd:annotation>
+			<xsd:documentation>Struktur zum Ein/Ausschliessen von Avisotreffern eines Aviso</xsd:documentation>
+		</xsd:annotation>	
+		<xsd:sequence>
+			<xsd:element ref="PersonReferenz"/>
+			<xsd:element ref="base:Bezugsfeld" minOccurs="0"/>
+			<xsd:element name="AvisoTrefferAusschliessen" type="xsd:boolean"/>
+		</xsd:sequence>
+	</xsd:complexType>	
+	
+	<xsd:element name="AvisoSuchkriterien">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="base:Formalisiert"/>
+				<xsd:element ref="base:InclusivNameVorErsterEhe"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="AvisoSuchdaten">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="base:ZMRZahl" minOccurs="0"/>
+				<xsd:element ref="cio:NatuerlichePerson" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>	
+
+	<xsd:element name="AvisoZahl">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:pattern value="[0-9]{9}"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	<xsd:element name="AvisoAktenzahl">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="72"/>
+				<xsd:pattern value="[a-zA-Z0-9ÄÖÜäöüß^°!&quot;§$&amp;/(){}\[\]=?\\´`*+~#',;.:\-_@ ]*"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	
+	<xsd:element name="AvisoStart" type="base:TimestampType"/>
+	<xsd:element name="AvisoEnde" type="base:TimestampType"/>
+
+	<xsd:element name="AvisoStatus">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:enumeration value="N"/>
+				<xsd:enumeration value="A"/>
+				<xsd:enumeration value="D"/>
+				<xsd:enumeration value="H"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	<xsd:element name="AvisoTrefferStatus">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:enumeration value="A"/>
+				<xsd:enumeration value="H"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>	
+	<xsd:element name="ZustaendigeMeldebehoerde" type="base:GemeindeNrType"/>
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/entities/Behoerdenattribute.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/entities/Behoerdenattribute.xsd
new file mode 100644
index 00000000..0b2cc6b8
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/entities/Behoerdenattribute.xsd
@@ -0,0 +1,67 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: Behoerdenattribute.xsd
+Zweck: Definiert die Struktur von Behördenattributen für Meldungen
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2004-12-01 tsch: Attribut6 hinzugefügt
+2004-01-22 tsch: Erstellt
+-->
+
+<xsd:schema xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			targetNamespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	<xsd:import namespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" schemaLocation="../../eingebunden/EingebundenProxy.xsd"/>
+
+	<xsd:complexType name="BehoerdenattributeErgebnisType">
+		<xsd:annotation>
+			<xsd:documentation>Behördenattribute-Struktur für Suchergebnisse</xsd:documentation>
+		</xsd:annotation>	 
+		<xsd:sequence>
+			<xsd:element ref="base:EntityErgebnisReferenz"/>
+			<xsd:sequence>
+				<xsd:element ref="Attribut1" minOccurs="0"/>
+				<xsd:element ref="Attribut2" minOccurs="0"/>
+				<xsd:element ref="Attribut3" minOccurs="0"/>
+				<xsd:element ref="Attribut4" minOccurs="0"/>
+				<xsd:element ref="Attribut5" minOccurs="0"/>
+				<xsd:element ref="Attribut6" minOccurs="0"/>
+				<xsd:element ref="OMRNummer" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:sequence>
+	</xsd:complexType>
+
+	<xsd:complexType name="BehoerdenattributeSetzenType">
+		<xsd:annotation>
+			<xsd:documentation>Behördenattribute-Struktur zum Setzen der Behördenattribute einer Meldung</xsd:documentation>
+		</xsd:annotation>	
+		<xsd:sequence>
+			<xsd:element ref="Attribut1" minOccurs="0"/>
+			<xsd:element ref="Attribut2" minOccurs="0"/>
+			<xsd:element ref="Attribut3" minOccurs="0"/>
+			<xsd:element ref="Attribut4" minOccurs="0"/>
+			<xsd:element ref="Attribut5" minOccurs="0"/>
+			<xsd:element ref="Attribut6" minOccurs="0"/>
+			<xsd:element ref="OMRNummer" minOccurs="0"/>
+		</xsd:sequence>
+	</xsd:complexType>
+
+	<xsd:element name="Attribut1" type="AttributType"/> 
+	<xsd:element name="Attribut2" type="AttributType"/> 
+	<xsd:element name="Attribut3" type="AttributType"/> 
+	<xsd:element name="Attribut4" type="AttributType"/> 
+	<xsd:element name="Attribut5" type="AttributType"/>
+	<xsd:element name="Attribut6" type="AttributType"/> 
+	<xsd:element name="OMRNummer" type="AttributType"/> 	
+	
+	<xsd:simpleType name="AttributType">
+		<xsd:restriction base="xsd:string">
+			<xsd:minLength value="0"/>
+			<xsd:maxLength value="240"/>
+		</xsd:restriction>
+	</xsd:simpleType>		
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/entities/ERnPAnschrift.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/entities/ERnPAnschrift.xsd
new file mode 100644
index 00000000..0fb07b9b
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/entities/ERnPAnschrift.xsd
@@ -0,0 +1,73 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: ERnPAnschrift.xsd
+Zweck: Definiert Anschriftntypen für Suchergebnisse aus dem ERnP der übergreifenden ZMR-Suche
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2005-11-29 tsch: Firmenname, Ansprechpartner hinzugefügt
+2005-10-11 tsch: Umbenennung Anschrift->Anschrift
+2005-10-06 tsch: Umbenennung EGR->ERnP
+2005-08-30 tsch: Anpassungen an neu erstellte Schnittstelle des ERnP
+2004-01-27 tsch: Erstellung (Diese Struktur der EGR-Anschrift ist vorläufig, und wird noch angepasst!)
+-->
+
+<xsd:schema  targetNamespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			xmlns:cio="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	 
+	<xsd:import namespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" schemaLocation="../../eingebunden/EingebundenProxy.xsd"/>
+	<xsd:import namespace="http://reference.e-government.gv.at/namespace/persondata/de/20040201#" schemaLocation="../../eingebunden/PersonDataZMR.xsd"/>
+
+	<xsd:element name="ERnPAnschriftErgebnis" type="ERnPAnschriftErgebnisType"/>
+	<xsd:complexType name="ERnPAnschriftErgebnisType">
+		<xsd:annotation>
+			<xsd:documentation>Anschrift-Struktur für Suchergebnisse aus dem ERnP</xsd:documentation>
+		</xsd:annotation>
+		<xsd:sequence>
+			<xsd:element ref="base:EntityErgebnisReferenz"/>
+			<xsd:element ref="cio:PostAdresse" minOccurs="0"/>
+			<xsd:element ref="PostleitzahlStaat" minOccurs="0"/>
+			<xsd:element ref="base:Adressstatus" minOccurs="0"/>
+			<xsd:element ref="base:Adressschluessel" minOccurs="0"/>
+			<xsd:element ref="base:HauptIdent" minOccurs="0"/>
+			<xsd:element ref="base:StrasseZweisprachig" minOccurs="0"/>
+			<xsd:element ref="base:Postleitzahlgebiet" minOccurs="0"/>
+			<xsd:element ref="cio:TelefonAdresse" minOccurs="0" maxOccurs="3"/>
+			<xsd:element ref="cio:InternetAdresse" minOccurs="0"/>
+			<xsd:element name="Firmenname1"	type="FirmennameType" minOccurs="0"/>
+			<xsd:element name="Firmenname2"	type="FirmennameType" minOccurs="0"/>
+			<xsd:element ref="Ansprechpartner" minOccurs="0"/>				
+		</xsd:sequence>				
+	</xsd:complexType>
+
+	<xsd:element name="PostleitzahlStaat">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:pattern value="[A-Z]{3}"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+
+	<xsd:simpleType name="FirmennameType">
+		<xsd:restriction base="xsd:string">
+			<xsd:whiteSpace value="collapse"/>
+			<xsd:minLength value="0"/>
+			<xsd:maxLength value="54"/>			
+		</xsd:restriction>
+	</xsd:simpleType>
+
+	<xsd:element name="Ansprechpartner">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="54"/>			
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>			
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/entities/ERnPPerson.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/entities/ERnPPerson.xsd
new file mode 100644
index 00000000..d4b83b63
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/entities/ERnPPerson.xsd
@@ -0,0 +1,114 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: ERnPPerson.xsd
+Zweck: Definiert Persondatentypen für Suchergebnisse aus dem ERnP der übergreifenden ZMR-Suche
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2010-04-02 teo: +Kit-Informationen
+2010-02-25 mp: +Akad. Grad
+2006-01-12 tsch: Anschrift optional
+2005-10-06 tsch: Umbenennung EGR->ERnP
+2005-08-30 tsch: Anpassungen an neu erstellte Schnittstelle des ERnP
+2004-01-27 tsch: Erstellung (Diese Struktur der EGR-Person ist vorläufig, und wird noch angepasst!)
+-->
+
+<xsd:schema xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:cio="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+			targetNamespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+
+	<xsd:import namespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" schemaLocation="../../eingebunden/EingebundenProxy.xsd"/>
+	<xsd:import namespace="http://reference.e-government.gv.at/namespace/persondata/de/20040201#" schemaLocation="../../eingebunden/PersonDataZMR.xsd"/>
+	<xsd:include schemaLocation="ERnPAnschrift.xsd"/>
+	
+	<xsd:element name="ERnPPersonErgebnis" type="ERnPPersonErgebnisType"/>
+	
+	<xsd:complexType name="ERnPPersonErgebnisType">
+		<xsd:annotation>
+			<xsd:documentation>Person-Struktur für Suchergebnisse aus dem ERnP</xsd:documentation>
+		</xsd:annotation>
+		<xsd:sequence>
+			<xsd:element ref="base:ErgebnissatzInfo"/>
+			<xsd:element ref="base:EntityErgebnisReferenz"/>
+			<xsd:element ref="base:OrdnungsZahl" minOccurs="0"/>
+			<xsd:element ref="cio:NatuerlichePerson"/>
+			<xsd:element name="ReferenziertePersonen" type="ERnPReferenziertePersonenErgebnisType" minOccurs="0"/>
+			<xsd:element name="Reisedokument" type="ERnPReisedokumentErgebnisType" minOccurs="0" maxOccurs="unbounded"/>
+			<xsd:element name="Dokument" type="ERnPDokumentErgebnisType" minOccurs="0" maxOccurs="unbounded"/>
+			<xsd:element name="PersonGeprueft" type="xsd:boolean"/>
+			<xsd:element name="Anschrift" type="ERnPAnschriftErgebnisType" minOccurs="0"/>
+			<xsd:element name="AkadGrad" type="ERnPAkademischerGradErgebnisType" minOccurs="0" maxOccurs="unbounded"/>
+		</xsd:sequence>				
+	</xsd:complexType>
+
+	<xsd:complexType name="ERnPDokumentErgebnisType">
+		<xsd:annotation>
+			<xsd:documentation>Dokument-Struktur für Suchergebnisse</xsd:documentation>
+		</xsd:annotation>	 
+		
+		<xsd:sequence>
+			<xsd:element ref="base:EntityErgebnisReferenz"/>
+			<xsd:element ref="base:DokumentArt"/>
+			<xsd:element ref="base:DokumentNummer"/>
+			<xsd:element ref="base:AusstellDatum"/>
+			<xsd:element ref="base:AusstellBehoerde"/>
+			<xsd:element ref="base:Ausstellungsstaat" minOccurs="0"/>
+			<xsd:element ref="base:SterbeDatum" minOccurs="0"/>
+		</xsd:sequence>				
+	</xsd:complexType>
+
+	<xsd:complexType name="ERnPReisedokumentErgebnisType">
+		<xsd:annotation>
+			<xsd:documentation>Reisedokument-Struktur für Suchergebnisse</xsd:documentation>
+		</xsd:annotation>	 
+		
+		<xsd:sequence>
+			<xsd:element ref="base:EntityErgebnisReferenz"/>
+			<xsd:element ref="base:DokumentArt"/>
+			<xsd:element ref="base:DokumentNummer" minOccurs="0"/>
+			<xsd:element ref="base:AusstellDatum" minOccurs="0"/>
+			<xsd:element ref="base:AusstellBehoerde" minOccurs="0"/>
+			<xsd:element ref="base:Ausstellungsstaat" minOccurs="0"/>
+			<xsd:element ref="base:DokumentGiltBis" minOccurs="0"/>
+		</xsd:sequence>				
+	</xsd:complexType>	
+	
+	<xsd:complexType name="ERnPAkademischerGradErgebnisType">
+		<xsd:annotation>
+			<xsd:documentation>Akademischer-Grad-Struktur für Suchergebnisse</xsd:documentation>
+		</xsd:annotation>	 
+		<xsd:sequence>
+			<xsd:element ref="base:EntityErgebnisReferenz"/>
+			<xsd:element ref="base:AkadGradKey"/>
+			<xsd:element ref="base:AkadGradStellung"/>
+			<xsd:element ref="base:AkadGradReihung"/>
+			<xsd:element ref="base:AkadGradLang"/>
+			<xsd:element ref="base:AkadGradKurz"/>
+			<xsd:element ref="base:AusstellDatum" minOccurs="0"/>
+			<xsd:element ref="base:AusstellBehoerde" minOccurs="0"/>
+			<xsd:element ref="base:Ausstellungsstaat"/>
+		</xsd:sequence>				
+	</xsd:complexType>
+
+	<xsd:complexType name="ERnPReferenziertePersonenErgebnisType">
+		<xsd:annotation>
+			<xsd:documentation>
+				Hier befinden sich Referenzan auf Personen, die mit der Person in technischer Beziehung stehen.
+				- KITQuelle, KITZiel, SPLITQuelle, SPLITZiel1 und SPLITZiel2 sind Referenzen auf geKITete
+				bzw. geSPLITete Quellpersonen- bzw. Zielpersonen und entsprechend befüllt (siehe Beschreibung KIT/SPLIT)
+			</xsd:documentation>
+		</xsd:annotation>
+		<xsd:sequence>
+			<xsd:element name="KitQuelle" type="base:OrdnungsZahlType" minOccurs="0"/>
+			<xsd:element name="KitZiel" type="base:OrdnungsZahlType" minOccurs="0"/>
+			<xsd:element name="SplitQuelle" type="base:OrdnungsZahlType" minOccurs="0"/>
+			<xsd:element name="SplitZiel1" type="base:OrdnungsZahlType" minOccurs="0"/>
+			<xsd:element name="SplitZiel2" type="base:OrdnungsZahlType" minOccurs="0"/>
+		</xsd:sequence>
+	</xsd:complexType>
+	
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/entities/EidasIdentitaet.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/entities/EidasIdentitaet.xsd
new file mode 100644
index 00000000..cd07bd8a
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/entities/EidasIdentitaet.xsd
@@ -0,0 +1,106 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: EidasIdentitaet.xsd
+Zweck: Definiert Datentypen für die EidasIdentitaeten einer Person im ZMR
+Author(s): Richard Mayrhofer
+-->
+
+<xsd:schema xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-iEidasce"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			targetNamespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	<xsd:import namespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" schemaLocation="../../eingebunden/EingebundenProxy.xsd"/>
+	
+	<xsd:complexType name="EidasIdentitaetErgebnisType">
+		<xsd:annotation>
+			<xsd:documentation>EIDAS-Identitaet-Struktur für Suchergebnisse</xsd:documentation>
+		</xsd:annotation>	 
+		<xsd:sequence>
+			<xsd:element ref="base:EntityErgebnisReferenz"/>
+			<xsd:element ref="EidasArt"/>
+			<xsd:element ref="Staatscode3" minOccurs="0"/>
+			<xsd:element ref="base:AusstellBehoerde" minOccurs="0"/>
+			<xsd:element ref="base:DokumentNummer" minOccurs="0"/>
+			<xsd:element ref="base:AusstellDatum" minOccurs="0"/>
+			<xsd:element ref="base:AblaufDatum" minOccurs="0"/>
+		</xsd:sequence>				
+	</xsd:complexType>
+
+	<xsd:element name="EidasIdentitaetAnlage" type="EidasIdentitaetAnlageType"/>
+	<xsd:complexType name="EidasIdentitaetAnlageType">
+		<xsd:annotation>
+			<xsd:documentation>EIDAS-Identitaet-Struktur für Identitaetanlagen im ZMR</xsd:documentation>
+		</xsd:annotation>		
+		<xsd:sequence>
+			<xsd:element ref="EidasArt"/>
+			<xsd:element ref="Staatscode3"/>
+			<xsd:element ref="base:AusstellBehoerde" minOccurs="0"/>
+			<xsd:element ref="EidasNummer" minOccurs="0"/>
+			<xsd:element ref="base:AusstellDatum" minOccurs="0"/>
+			<xsd:element ref="base:AblaufDatum" minOccurs="0"/>
+			<xsd:element ref="image" minOccurs="0"/>
+		</xsd:sequence>
+	</xsd:complexType>
+	
+	<xsd:element name="EidasIdentitaetAenderung" type="EidasIdentitaetAenderungType"/>
+	<xsd:complexType name="EidasIdentitaetAenderungType">
+		<xsd:annotation>
+			<xsd:documentation>EidasIdentitaet-Struktur für Änderungen von Identitaeten im ZMR</xsd:documentation>
+		</xsd:annotation>	
+		<xsd:sequence>
+			<xsd:element ref="base:Technisch"/>
+			<xsd:element ref="EidasArt" minOccurs="0"/>
+			<xsd:element ref="Staatscode3" minOccurs="0"/>
+			<xsd:element ref="base:AusstellBehoerde" minOccurs="0"/>
+			<xsd:element ref="EidasNummer" minOccurs="0"/>
+			<xsd:element ref="base:AusstellDatum" minOccurs="0"/>
+			<xsd:element ref="base:AblaufDatum" minOccurs="0"/>
+			<xsd:element ref="image" minOccurs="0"/>
+			<xsd:element ref="base:Beendigung"/>
+		</xsd:sequence>
+	</xsd:complexType>	
+	
+	<xsd:element name="EidasSuchdaten" type="EidasSuchdatenType"/>
+	<xsd:complexType name="EidasSuchdatenType">
+		<xsd:annotation>
+			<xsd:documentation>EidasIdentitaet-Struktur für EidasIdentitensuche im ZMR</xsd:documentation>
+		</xsd:annotation>		
+		<xsd:sequence>
+			<xsd:element ref="EidasArt" minOccurs="0"/>
+			<xsd:element ref="EidasNummer" minOccurs="0"/>
+		</xsd:sequence>
+	</xsd:complexType>	
+	
+	<xsd:element name="Staatscode3">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="3"/>
+				<xsd:maxLength value="3"/>			
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	<xsd:element name="EidasArt">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="1"/>
+				<xsd:maxLength value="55"/>			
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	<xsd:element name="EidasNummer">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="54"/>			
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	<xsd:element name="image" type="xsd:base64Binary"/>
+	
+
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/entities/EidasIdentitaet.xsd.svntmp b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/entities/EidasIdentitaet.xsd.svntmp
new file mode 100644
index 00000000..cd07bd8a
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/entities/EidasIdentitaet.xsd.svntmp
@@ -0,0 +1,106 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: EidasIdentitaet.xsd
+Zweck: Definiert Datentypen für die EidasIdentitaeten einer Person im ZMR
+Author(s): Richard Mayrhofer
+-->
+
+<xsd:schema xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-iEidasce"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			targetNamespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	<xsd:import namespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" schemaLocation="../../eingebunden/EingebundenProxy.xsd"/>
+	
+	<xsd:complexType name="EidasIdentitaetErgebnisType">
+		<xsd:annotation>
+			<xsd:documentation>EIDAS-Identitaet-Struktur für Suchergebnisse</xsd:documentation>
+		</xsd:annotation>	 
+		<xsd:sequence>
+			<xsd:element ref="base:EntityErgebnisReferenz"/>
+			<xsd:element ref="EidasArt"/>
+			<xsd:element ref="Staatscode3" minOccurs="0"/>
+			<xsd:element ref="base:AusstellBehoerde" minOccurs="0"/>
+			<xsd:element ref="base:DokumentNummer" minOccurs="0"/>
+			<xsd:element ref="base:AusstellDatum" minOccurs="0"/>
+			<xsd:element ref="base:AblaufDatum" minOccurs="0"/>
+		</xsd:sequence>				
+	</xsd:complexType>
+
+	<xsd:element name="EidasIdentitaetAnlage" type="EidasIdentitaetAnlageType"/>
+	<xsd:complexType name="EidasIdentitaetAnlageType">
+		<xsd:annotation>
+			<xsd:documentation>EIDAS-Identitaet-Struktur für Identitaetanlagen im ZMR</xsd:documentation>
+		</xsd:annotation>		
+		<xsd:sequence>
+			<xsd:element ref="EidasArt"/>
+			<xsd:element ref="Staatscode3"/>
+			<xsd:element ref="base:AusstellBehoerde" minOccurs="0"/>
+			<xsd:element ref="EidasNummer" minOccurs="0"/>
+			<xsd:element ref="base:AusstellDatum" minOccurs="0"/>
+			<xsd:element ref="base:AblaufDatum" minOccurs="0"/>
+			<xsd:element ref="image" minOccurs="0"/>
+		</xsd:sequence>
+	</xsd:complexType>
+	
+	<xsd:element name="EidasIdentitaetAenderung" type="EidasIdentitaetAenderungType"/>
+	<xsd:complexType name="EidasIdentitaetAenderungType">
+		<xsd:annotation>
+			<xsd:documentation>EidasIdentitaet-Struktur für Änderungen von Identitaeten im ZMR</xsd:documentation>
+		</xsd:annotation>	
+		<xsd:sequence>
+			<xsd:element ref="base:Technisch"/>
+			<xsd:element ref="EidasArt" minOccurs="0"/>
+			<xsd:element ref="Staatscode3" minOccurs="0"/>
+			<xsd:element ref="base:AusstellBehoerde" minOccurs="0"/>
+			<xsd:element ref="EidasNummer" minOccurs="0"/>
+			<xsd:element ref="base:AusstellDatum" minOccurs="0"/>
+			<xsd:element ref="base:AblaufDatum" minOccurs="0"/>
+			<xsd:element ref="image" minOccurs="0"/>
+			<xsd:element ref="base:Beendigung"/>
+		</xsd:sequence>
+	</xsd:complexType>	
+	
+	<xsd:element name="EidasSuchdaten" type="EidasSuchdatenType"/>
+	<xsd:complexType name="EidasSuchdatenType">
+		<xsd:annotation>
+			<xsd:documentation>EidasIdentitaet-Struktur für EidasIdentitensuche im ZMR</xsd:documentation>
+		</xsd:annotation>		
+		<xsd:sequence>
+			<xsd:element ref="EidasArt" minOccurs="0"/>
+			<xsd:element ref="EidasNummer" minOccurs="0"/>
+		</xsd:sequence>
+	</xsd:complexType>	
+	
+	<xsd:element name="Staatscode3">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="3"/>
+				<xsd:maxLength value="3"/>			
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	<xsd:element name="EidasArt">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="1"/>
+				<xsd:maxLength value="55"/>			
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	<xsd:element name="EidasNummer">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="54"/>			
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	<xsd:element name="image" type="xsd:base64Binary"/>
+	
+
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/entities/Meldung.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/entities/Meldung.xsd
new file mode 100644
index 00000000..0ea75355
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/entities/Meldung.xsd
@@ -0,0 +1,189 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: Meldung.xsd
+Zweck: Definiert Meldedatentypen für das ZMR
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2004-08-18 tsch: Qualifikationskennzeichen hinzugefügt
+2004-08-02 tsch: Adressschluessel hinzugefügt; StrasseZweisprachig, Postleitzahlgebiet, weitere optionale Adresssfelder bei MeldungErgebnis hinzugefügt
+2004-08-02 tsch: Adressdaten in Struktur-Feld 'Wohnsitz' gekapselt
+2004-07-30 tsch: PostAdresseAnlageKlaerung entfernt, Keys und Adressfelde in PostadresseAnlage optional, Felder an neue Personrecord angepasst
+2004-07-14 tsch: Postleitzahl in Klärungsadresse optional
+2004-07-08 tsch: Felder Adresszusatz, HauptIdentadresse hinzugefügt
+2004-06-24 tsch: Bezeichung Beharrungsadresse->Klaerungsadresse
+2004-06-18 tsch: ErgebnissatzInfo hinzugefügt
+2004-06-14 tsch: Handling mehrerer Auskunftssperren
+2004-04-14 tsch: MeldungAnlageType: Korrekturen bei Beharrungsadresse/offizielle Adresse
+2004-01-27 tsch: ZMRAdresse wird PostAdresse
+2004-01-22 tsch: Integration der CIO-Personendaten Struktur (http://reference.e-government.gv.at/namespace/persondata/de/20040201#)
+-->
+
+<xsd:schema  targetNamespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			xmlns:cio="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	 
+	<xsd:import namespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" schemaLocation="../../eingebunden/EingebundenProxy.xsd"/>
+	<xsd:import namespace="http://reference.e-government.gv.at/namespace/persondata/de/20040201#" schemaLocation="../../eingebunden/PersonDataZMR.xsd"/>
+	<xsd:include schemaLocation="Behoerdenattribute.xsd"/>
+	<xsd:include schemaLocation="Auskunftssperre.xsd"/>
+	<xsd:include schemaLocation="Qualifikationskennzeichen.xsd"/>
+
+	<xsd:element name="MeldungReferenz" type="MeldungReferenzType"/>
+	<xsd:complexType name="MeldungReferenzType">
+		<xsd:annotation>
+			<xsd:documentation>Typ für Referenzdaten einer Meldung, (immer die aktuellste, das heisst jüngstes 'Von') mit WS-Qualität zur Kontrolle)</xsd:documentation>
+		</xsd:annotation>	
+		<xsd:sequence>
+			<xsd:element ref="base:Technisch">
+				<xsd:annotation>
+					<xsd:documentation>
+						Bei einer Änderung von Meldedaten müssen hier die EntityID der Meldung, sowie der
+						Zeitpunkt der letzten Änderung am Meldungssatz (Meldung-Entity und abhängige Entities wie Behördenattribute)
+						geschickt werden.
+						Der LetzteAenderung-Timestamp muss mit dem LetzteAenderung-Timestamp im Feld ErgebnissatzInfo
+						aus dem Suchergebnissatz übereinstimmen
+					</xsd:documentation>
+				</xsd:annotation>			
+			</xsd:element>
+			<xsd:element ref="cio:Wohnsitzqualitaet">
+				<xsd:annotation>
+					<xsd:documentation>
+					Die Wohnsitzqualität der Meldung muss zur Kontrolle unverändert
+					mitgeschickt werden.
+					</xsd:documentation>
+				</xsd:annotation>
+			</xsd:element>
+		</xsd:sequence>
+	</xsd:complexType>
+	
+	<xsd:element name="MeldungErgebnis" type="MeldungErgebnisType"/>
+	<xsd:complexType name="MeldungErgebnisType">
+		<xsd:annotation>
+			<xsd:documentation>Meldung-Struktur für Suchergebnisse aus dem ZMR</xsd:documentation>
+		</xsd:annotation>
+		<xsd:sequence>
+			<xsd:element ref="base:ErgebnissatzInfo"/>
+			<xsd:element ref="base:EntityErgebnisReferenz"/>
+			<xsd:element name="Wohnsitz" type="WohnsitzErgebnisType"/>
+			<xsd:element ref="base:GemeldetVon"/>
+			<xsd:element ref="base:PeriodeCode"/>
+			<xsd:element ref="base:PeriodeText"/>
+			<xsd:element ref="base:PeriodeFreitext" minOccurs="0"/>			
+			<xsd:element ref="base:GemeldetBis" minOccurs="0"/>
+			<xsd:element ref="base:Unterkunftgeber" minOccurs="0"/>					
+			<xsd:element name="Behoerdenattribute" type="BehoerdenattributeErgebnisType" minOccurs="0"/>
+			<xsd:element name="Auskunftssperre" type="AuskunftssperreErgebnisType" minOccurs="0" maxOccurs="unbounded"/>
+			<xsd:element name="Qualifikationskennzeichen" type="QualifikationskennzeichenErgebnisType" minOccurs="0" maxOccurs="unbounded"/>
+		</xsd:sequence>				
+	</xsd:complexType>
+
+	<xsd:complexType name="PostAdresseErgebnisType">
+		<xsd:annotation>
+			<xsd:documentation>ZMR-Adresse (Suchergebnis)</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexContent>
+			<xsd:extension base="cio:AbstractAddressType">
+				<xsd:sequence>
+					<xsd:element ref="cio:Postleitzahl"/>
+					<xsd:element ref="cio:Gemeinde"/>
+					<xsd:element ref="cio:Gemeindekennziffer"/>
+					<xsd:element ref="cio:Ortschaft" minOccurs="0"/>
+					<xsd:element ref="cio:OrtschaftZweisprachig" minOccurs="0"/>					
+					<xsd:element name="Zustelladresse">
+						<xsd:complexType>
+							<xsd:sequence>
+								<xsd:element ref="cio:Adresszeile" minOccurs="0"/>
+								<xsd:element ref="cio:Strassenname"/>
+								<xsd:element ref="cio:Orientierungsnummer"/>
+								<xsd:element ref="cio:Gebaeude" minOccurs="0"/>
+								<xsd:element ref="cio:Nutzungseinheit" minOccurs="0"/>
+								<xsd:element ref="cio:Wohnsitzqualitaet"/>
+								<xsd:element ref="cio:Abgabestelle" minOccurs="0"/>
+								<xsd:element ref="cio:Nutzungseinheitlaufnummer" minOccurs="0"/>
+								<xsd:element ref="AdressRegisterEintrag" minOccurs="0"/>
+							</xsd:sequence>
+						</xsd:complexType>
+					</xsd:element>	
+					
+				</xsd:sequence>
+			</xsd:extension>
+		</xsd:complexContent>
+	</xsd:complexType>
+	
+	<xsd:complexType name="WohnsitzErgebnisType">
+		<xsd:sequence>
+			<xsd:element name="PostAdresse" type="PostAdresseErgebnisType"/>
+			<xsd:element ref="base:Adressstatus"/>
+			<xsd:element ref="base:Adressschluessel" minOccurs="0"/>
+			<xsd:element ref="base:HauptIdent" minOccurs="0"/>
+			<xsd:element ref="base:StrasseZweisprachig" minOccurs="0"/>
+			<xsd:element ref="base:Postleitzahlgebiet" minOccurs="0"/>
+		</xsd:sequence>
+	</xsd:complexType>
+	
+	<xsd:element name="MeldungAnlage" type="MeldungAnlageType"/>
+	<xsd:complexType name="MeldungAnlageType">
+		<xsd:annotation>
+			<xsd:documentation>Meldung-Struktur zur Wohnsitzanmeldung im ZMR</xsd:documentation>
+		</xsd:annotation>
+		<xsd:sequence>
+			<xsd:element name="Wohnsitz" type="WohnsitzAnlageType"/>
+			<xsd:element ref="base:Unterkunftgeber" minOccurs="0"/>					
+			<xsd:element name="Behoerdenattribute" type="BehoerdenattributeSetzenType" minOccurs="0"/>
+			<xsd:element name="Auskunftssperre" type="AuskunftssperreAnlageType" minOccurs="0" maxOccurs="unbounded"/>
+		</xsd:sequence>				
+	</xsd:complexType>
+	
+	<xsd:complexType name="WohnsitzAnlageType">
+		<xsd:sequence>
+			<xsd:element name="PostAdresse" type="PostAdresseAnlageType"/>
+		</xsd:sequence>
+	</xsd:complexType>
+
+	<xsd:complexType name="PostAdresseAnlageType">
+		<xsd:annotation>
+			<xsd:documentation>ZMR-Adresse (für Wohnsitzanlage)</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexContent>
+			<xsd:extension base="cio:AbstractAddressType">
+				<xsd:sequence>
+					<xsd:element ref="cio:Postleitzahl"  minOccurs="0"/>
+					<xsd:element ref="cio:Gemeindekennziffer"  minOccurs="0"/>
+					<xsd:element ref="cio:Ortschaft" minOccurs="0"/>
+					<xsd:element ref="cio:OrtschaftZweisprachig" minOccurs="0"/>					
+					<xsd:element name="Zustelladresse">
+						<xsd:complexType>
+							<xsd:sequence>
+								<xsd:element ref="cio:Adresszeile" minOccurs="0"/>
+								<xsd:element ref="cio:Strassenname"  minOccurs="0"/>
+								<xsd:element ref="cio:Orientierungsnummer"  minOccurs="0"/>
+								<xsd:element ref="cio:Gebaeude" minOccurs="0"/>
+								<xsd:element ref="cio:Nutzungseinheit" minOccurs="0"/>
+								<xsd:element ref="cio:Wohnsitzqualitaet"/>
+								<xsd:element ref="cio:Abgabestelle" minOccurs="0"/>
+								<xsd:element ref="cio:Nutzungseinheitlaufnummer" minOccurs="0"/>
+								<xsd:element ref="AdressRegisterEintrag" minOccurs="0"/>
+							</xsd:sequence>
+						</xsd:complexType>
+					</xsd:element>	
+					
+				</xsd:sequence>
+			</xsd:extension>
+		</xsd:complexContent>
+	</xsd:complexType>
+
+	<xsd:element name="AdressRegisterEintrag">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="cio:Adresscode" minOccurs="1"/>
+				<xsd:element ref="cio:Subcode" minOccurs="0"/>
+				<xsd:element ref="cio:Objektnummer" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>	
+</xsd:schema>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/entities/Person.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/entities/Person.xsd
new file mode 100644
index 00000000..8e3e55ee
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/entities/Person.xsd
@@ -0,0 +1,233 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: Person.xsd
+Zweck: Definiert Persondatentypen für das Personenregister
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2006-04-18 woeg: +optionales Feld Familienstand
+2004-12-17 tsch: optionales Feld Affix in NatuerlichePersonErgebnisType hinzugefügt
+2004-09-29 tsch: Standarddokumente hinzugefügt
+2004-06-22 tsch: StaatZugezogen bei PersonAenderung hinzugefügt, akademische Grade hinzugefügt, Titel hinzugefügt
+2004-06-18 tsch: ErgebnissatzInfo hinzugefügt
+2004-06-14 tsch: Behördenattribute hinzugefügt
+2004-06-14 tsch: Handling mehrerer Auskunftssperren 
+2004-01-22 tsch: Integration der CIO-Personendaten Struktur (http://reference.e-government.gv.at/namespace/persondata/de/20040201#)
+-->
+
+<xsd:schema xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:cio="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+			targetNamespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+			
+	<xsd:import namespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" schemaLocation="../../eingebunden/EingebundenProxy.xsd"/>
+	<xsd:import namespace="http://reference.e-government.gv.at/namespace/persondata/de/20040201#" schemaLocation="../../eingebunden/PersonDataZMR.xsd"/>
+	<xsd:include schemaLocation="Reisedokument.xsd"/>
+	<xsd:include schemaLocation="Behoerdenattribute.xsd"/>
+	<xsd:include schemaLocation="Auskunftssperre.xsd"/>
+	<xsd:include schemaLocation="Qualifikationskennzeichen.xsd"/>
+	<xsd:include schemaLocation="Staatsangehoerigkeit.xsd"/>
+	<xsd:include schemaLocation="AkademischerGrad.xsd"/>
+	<xsd:include schemaLocation="Standarddokument.xsd"/>
+	<xsd:include schemaLocation="EidasIdentitaet.xsd"/>
+
+	<xsd:element name="PersonReferenz" type="PersonReferenzType"/>
+	<xsd:complexType name="PersonReferenzType">
+		<xsd:annotation>
+			<xsd:documentation>Typ für Referenzdaten einer Person (immer die aktuellste, das heisst jüngstes 'Von'), mit ZMR-Zahl zur Kontrolle</xsd:documentation>
+		</xsd:annotation>
+		<xsd:sequence>
+			<xsd:element ref="base:Technisch">
+				<xsd:annotation>
+					<xsd:documentation>
+						Bei einer Änderung von Personendaten müssen hier die EntityID der Person, sowie der
+						Zeitpunkt der letzten Änderung am Personensatz (Person-Entity und abhängige Entities wie Reisedokumente)
+						geschickt werden.
+						Der LetzteAenderung-Timestamp muss mit dem LetzteAenderung-Timestamp im Feld ErgebnissatzInfo
+						aus dem Suchergebnissatz übereinstimmen
+					</xsd:documentation>
+				</xsd:annotation>
+			</xsd:element>
+			
+			<xsd:element ref="base:ZMRZahl">
+				<xsd:annotation>
+					<xsd:documentation>
+						Die ZMR-Zahl der Person muss zur Kontrolle unverändert
+						mitgeschickt werden.
+					</xsd:documentation>
+				</xsd:annotation>
+			</xsd:element>
+		</xsd:sequence>
+	</xsd:complexType>
+	
+	<xsd:element name="PersonErgebnis" type="PersonErgebnisType"/>
+	
+	
+	<xsd:complexType name="PersonErgebnisType">
+		<xsd:annotation>
+			<xsd:documentation>Person-Struktur für Suchergebnisse aus dem ZMR</xsd:documentation>
+		</xsd:annotation>
+		<xsd:sequence>
+			<xsd:element ref="base:ErgebnissatzInfo"/>
+			<xsd:element ref="base:EntityErgebnisReferenz"/>
+			<xsd:element ref="base:ZMRZahl" minOccurs="0"/>
+			<xsd:element name="NatuerlichePerson" type="NatuerlichePersonErgebnisType"/>		
+			<xsd:element ref="base:Titel" minOccurs="0"/>
+			<xsd:element ref="base:StaatZugezogen" minOccurs="0"/>
+			<xsd:element ref="base:StaatVerzogen" minOccurs="0"/>
+			<xsd:element name="ReferenziertePersonen" type="ReferenziertePersonenErgebnisType" minOccurs="0"/>
+			<xsd:element name="Reisedokument" type="ReisedokumentErgebnisType" minOccurs="0" maxOccurs="unbounded"/>
+			<xsd:element name="Behoerdenattribute" type="BehoerdenattributeErgebnisType" minOccurs="0"/>
+			<xsd:element name="Auskunftssperre" type="AuskunftssperreErgebnisType" minOccurs="0" maxOccurs="unbounded"/>
+			<xsd:element name="Qualifikationskennzeichen" type="QualifikationskennzeichenErgebnisType" minOccurs="0" maxOccurs="unbounded"/>
+			<xsd:element name="AkademischerGrad" type="AkademischerGradErgebnisType" minOccurs="0" maxOccurs="unbounded"/>
+			<xsd:element name="Standarddokument" type="StandarddokumentErgebnisType" minOccurs="0" maxOccurs="unbounded"/>
+			<xsd:element name="EidasIdentitaet" type="EidasIdentitaetErgebnisType" minOccurs="0" maxOccurs="unbounded"/>
+		</xsd:sequence>				
+	</xsd:complexType>
+
+	<xsd:complexType name="NatuerlichePersonErgebnisType">
+		<xsd:annotation>
+			<xsd:documentation>Natuerliche Person (Suchergebnis)</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexContent>
+			<xsd:extension base="cio:AbstractPersonType">
+				<xsd:sequence>
+					<xsd:element name="PersonenName">
+						<xsd:complexType>
+							<xsd:sequence>
+								<xsd:element ref="cio:Vorname"/>
+								<xsd:element ref="cio:Familienname"/>
+								<xsd:element ref="cio:Affix" minOccurs="0" maxOccurs="unbounded"/>				
+							</xsd:sequence>
+						</xsd:complexType>
+					</xsd:element>
+					<xsd:element ref="cio:AlternativName" minOccurs="0"/>
+					<xsd:element ref="cio:Familienstand" minOccurs="0"/>
+					<xsd:element ref="cio:Geschlecht"/>
+					<xsd:element ref="cio:Geburtsdatum"/>
+					<xsd:element ref="cio:Geburtsort"/>
+					<xsd:element ref="cio:Geburtsbundesland" minOccurs="0"/>
+					<xsd:element ref="cio:Geburtsstaat"/>
+					<xsd:element ref="cio:Sterbedatum" minOccurs="0"/>
+					<xsd:element name="Staatsangehoerigkeit" type="StaatsangehoerigkeitErgebnisType" minOccurs="1" maxOccurs="unbounded"/>
+				</xsd:sequence>
+			</xsd:extension>
+		</xsd:complexContent>
+	</xsd:complexType>
+
+	<xsd:complexType name="ReferenziertePersonenErgebnisType">
+		<xsd:annotation>
+			<xsd:documentation>
+			Hier befinden sich Referenzan auf Personen, die mit der Person in technischer Beziehung stehen.
+			- Die Ordnungszahl verweist auf den Personenzatz im Ergänzungsregister, falls die Person vom
+			vom EGR ins ZMR übernommen wurde.
+			- KITQuelle, KITZiel, SPLITQuelle, SPLITZiel1 und SPLITZiel2 sind Referenzen auf geKITete
+			bzw. geSPLITete Quellpersonen- bzw. Zielpersonen und entsprechend befüllt (siehe Beschreibung KIT/SPLIT)
+			</xsd:documentation>
+		</xsd:annotation>
+		<xsd:sequence>
+			<xsd:element ref="base:OrdnungsZahl" minOccurs="0"/>
+			<xsd:element name="KitQuelle" type="base:ZMRZahlType" minOccurs="0"/>
+			<xsd:element name="KitQuelleBpk" type="cio:IdentificationType" minOccurs="0"/>
+			<xsd:element name="KitZiel" type="base:ZMRZahlType" minOccurs="0"/>
+			<xsd:element name="KitZielBpk" type="cio:IdentificationType" minOccurs="0"/>
+			<xsd:element name="SplitQuelle" type="base:ZMRZahlType" minOccurs="0"/>
+			<xsd:element name="SplitZiel1" type="base:ZMRZahlType" minOccurs="0"/>
+			<xsd:element name="SplitZiel2" type="base:ZMRZahlType" minOccurs="0"/>
+		</xsd:sequence>
+	</xsd:complexType>
+
+	<xsd:element name="PersonAnlage" type="PersonAnlageType"/>
+	<xsd:complexType name="PersonAnlageType">
+		<xsd:annotation>
+			<xsd:documentation>Person-Struktur für Personenanlagen im ZMR</xsd:documentation>
+		</xsd:annotation>
+		<xsd:sequence>
+			<xsd:element name="NatuerlichePerson" type="NatuerlichePersonAnlageType"/>	
+			<xsd:element ref="base:Titel" minOccurs="0"/>
+			<xsd:element ref="base:StaatZugezogen" minOccurs="0"/>
+			<xsd:element name="Reisedokument" type="ReisedokumentAnlageType" minOccurs="0" maxOccurs="unbounded"/>
+			<xsd:element name="Behoerdenattribute" type="BehoerdenattributeSetzenType" minOccurs="0"/>
+			<xsd:element name="Auskunftssperre" type="AuskunftssperreAnlageType" minOccurs="0" maxOccurs="unbounded"/>
+			<xsd:element name="AkademischerGrad" type="AkademischerGradAnlageType" minOccurs="0" maxOccurs="unbounded"/>
+			<xsd:element name="Standarddokument" type="StandarddokumentAnlageType" minOccurs="0" maxOccurs="unbounded"/>			
+			<xsd:element name="EidasIdentitaet" type="EidasIdentitaetAnlageType" minOccurs="0" maxOccurs="unbounded"/>			
+		</xsd:sequence>
+	</xsd:complexType>
+	
+	<xsd:complexType name="NatuerlichePersonAnlageType">
+		<xsd:annotation>
+			<xsd:documentation>Natuerliche Person (Personenanlage)</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexContent>
+			<xsd:extension base="cio:AbstractPersonType">
+				<xsd:sequence>
+					<xsd:element name="PersonenName">
+						<xsd:complexType>
+							<xsd:sequence>
+								<xsd:element ref="cio:Vorname"/>
+								<xsd:element ref="cio:Familienname"/>							
+							</xsd:sequence>
+						</xsd:complexType>
+					</xsd:element>
+					<xsd:element ref="cio:AlternativName" minOccurs="0"/>
+					<xsd:element ref="cio:Familienstand" minOccurs="0"/>
+					<xsd:element ref="cio:Geschlecht"/>
+					<xsd:element ref="cio:Geburtsdatum"/>
+					<xsd:element ref="cio:Geburtsort"/>
+					<xsd:element ref="cio:Geburtsbundesland" minOccurs="0"/>
+					<xsd:element ref="cio:Geburtsstaat"/>
+					<xsd:element name="Staatsangehoerigkeit" type="StaatsangehoerigkeitAnlageType" minOccurs="1" maxOccurs="unbounded"/>
+				</xsd:sequence>
+			</xsd:extension>
+		</xsd:complexContent>
+	</xsd:complexType>
+
+	<xsd:element name="PersonAenderung" type="PersonAenderungType"/>
+	<xsd:complexType name="PersonAenderungType">
+		<xsd:annotation>
+			<xsd:documentation>Person-Struktur für Personendatenänderungen im ZMR</xsd:documentation>
+		</xsd:annotation>	
+		<xsd:sequence>
+			<xsd:element name="NatuerlichePerson" type="NatuerlichePersonAenderungTyp" minOccurs="0"/>
+			<xsd:element ref="base:Titel" minOccurs="0"/>
+			<xsd:choice>
+				<xsd:element ref="base:StaatZugezogen" minOccurs="0"/>
+				<xsd:element ref="base:StaatVerzogen" minOccurs="0"/>
+			</xsd:choice>
+		</xsd:sequence>
+	</xsd:complexType>
+	
+	<xsd:complexType name="NatuerlichePersonAenderungTyp">
+		<xsd:annotation>
+			<xsd:documentation>Natuerliche Person (Änderung)</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexContent>
+			<xsd:extension base="cio:AbstractPersonType">
+				<xsd:sequence>
+					<xsd:element name="PersonenName" minOccurs="0">
+						<xsd:complexType>
+							<xsd:sequence>
+								<xsd:element ref="cio:Vorname" minOccurs="0"/>
+								<xsd:element ref="cio:Familienname" minOccurs="0"/>							
+							</xsd:sequence>
+						</xsd:complexType>
+					</xsd:element>
+					<xsd:element ref="cio:AlternativName" minOccurs="0"/>
+					<xsd:element ref="cio:Familienstand" minOccurs="0"/>
+					<xsd:element ref="cio:Geschlecht" minOccurs="0"/>
+					<xsd:element ref="cio:Geburtsdatum" minOccurs="0"/>
+					<xsd:element ref="cio:Geburtsort" minOccurs="0"/>
+					<xsd:element ref="cio:Geburtsbundesland" minOccurs="0"/>
+					<xsd:element ref="cio:Geburtsstaat" minOccurs="0"/>
+					<xsd:element ref="cio:Sterbedatum" minOccurs="0"/>			
+				</xsd:sequence>
+			</xsd:extension>
+		</xsd:complexContent>
+	</xsd:complexType>	
+		
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/entities/Qualifikationskennzeichen.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/entities/Qualifikationskennzeichen.xsd
new file mode 100644
index 00000000..044452c6
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/entities/Qualifikationskennzeichen.xsd
@@ -0,0 +1,75 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: Qualifikationskennzeichen.xsd
+Zweck: Definiert Datentypen für die Qualifikationskennzeichen einer Person im ZMR
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2004-02-02 tsch: Umbennenung auf QualifikationskennzeichenCode, QualifikationskennzeichenText, Adaptionen
+2004-01-22 tsch: Erstellung
+-->
+
+<xsd:schema xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			targetNamespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	<xsd:import namespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" schemaLocation="../../eingebunden/EingebundenProxy.xsd"/>
+
+	<xsd:complexType name="QualifikationskennzeichenErgebnisType">
+		<xsd:annotation>
+			<xsd:documentation>Qualifikationskennzeichen-Struktur für Suchergebnisse</xsd:documentation>
+		</xsd:annotation>	 
+		<xsd:sequence>
+			<xsd:element ref="base:EntityErgebnisReferenz"/>
+			<xsd:sequence>
+				<xsd:element ref="QualifikationskennzeichenCode"/>
+				<xsd:element ref="QualifikationskennzeichenText" minOccurs="0"/>
+				<xsd:element ref="QualifikationskennzeichenGiltAb" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:sequence>				
+	</xsd:complexType>
+
+	<xsd:element name="QualifikationskennzeichenAnlage" type="QualifikationskennzeichenAnlageType"/>	
+	<xsd:complexType name="QualifikationskennzeichenAnlageType">
+		<xsd:annotation>
+			<xsd:documentation>Struktur für Anlagen von Qualifikationskennzeichen</xsd:documentation>
+		</xsd:annotation>	
+		<xsd:sequence>
+			<xsd:element ref="QualifikationskennzeichenCode" minOccurs="1"/>
+			<xsd:element ref="QualifikationskennzeichenText" minOccurs="0"/>
+			<xsd:element ref="QualifikationskennzeichenGiltAb" minOccurs="0"/>
+		</xsd:sequence>
+	</xsd:complexType>
+	
+	<xsd:element name="QualifikationskennzeichenLoeschen" type="QualifikationskennzeichenLoeschenType"/>
+	<xsd:complexType name="QualifikationskennzeichenLoeschenType">
+		<xsd:annotation>
+			<xsd:documentation>Struktur für Änderungen von Qualifikationskennzeichen</xsd:documentation>
+		</xsd:annotation>	
+		<xsd:sequence>
+			<xsd:element ref="base:EntityReferenz"/>
+		</xsd:sequence>
+	</xsd:complexType>		
+
+	<xsd:element name="QualifikationskennzeichenCode">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="1"/>
+				<xsd:maxLength value="35"/>			
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	<xsd:element name="QualifikationskennzeichenText">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="1"/>
+				<xsd:maxLength value="55"/>			
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	<xsd:element name="QualifikationskennzeichenGiltAb" type="xsd:date"/>
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/entities/Reisedokument.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/entities/Reisedokument.xsd
new file mode 100644
index 00000000..edbbcc8c
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/entities/Reisedokument.xsd
@@ -0,0 +1,82 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: Reisedokument.xsd
+Zweck: Definiert Datentypen für die Reisedokumente einer Person im ZMR
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2010-03-16 teo: LMR-756/CLM-1504 Reisedokument gültig bis erfassen
+2004-01-22 tsch: Reisedokument->ReisedokumentErgebnisType
+-->
+
+<xsd:schema xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			targetNamespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	<xsd:import namespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" schemaLocation="../../eingebunden/EingebundenProxy.xsd"/>
+	
+	<xsd:complexType name="ReisedokumentErgebnisType">
+		<xsd:annotation>
+			<xsd:documentation>Reisedokument-Struktur für Suchergebnisse</xsd:documentation>
+		</xsd:annotation>	 
+		
+		<xsd:sequence>
+			<xsd:element ref="base:EntityErgebnisReferenz"/>
+			<xsd:element ref="base:DokumentArt"/>
+			<xsd:element ref="base:DokumentNummer" minOccurs="0"/>
+			<xsd:element ref="base:AusstellDatum" minOccurs="0"/>
+			<xsd:element ref="base:AusstellBehoerde" minOccurs="0"/>
+			<xsd:element ref="base:Ausstellungsstaat" minOccurs="0"/>
+			<xsd:element ref="base:DokumentGiltBis" minOccurs="0"/>
+		</xsd:sequence>				
+	</xsd:complexType>
+
+	<xsd:element name="ReisedokumentAnlage" type="ReisedokumentAnlageType"/>
+	<xsd:complexType name="ReisedokumentAnlageType">
+		<xsd:annotation>
+			<xsd:documentation>Reisedokument-Struktur für Reisedokumentanlagen im ZMR</xsd:documentation>
+		</xsd:annotation>		
+		<xsd:sequence>
+			<xsd:element ref="base:DokumentArt"/>
+			<xsd:element ref="base:DokumentNummer" minOccurs="0"/>
+			<xsd:element ref="base:AusstellDatum" minOccurs="0"/>
+			<xsd:element ref="base:AusstellBehoerde" minOccurs="0"/>
+			<xsd:element ref="base:Ausstellungsstaat" minOccurs="0"/>
+			<xsd:element ref="base:DokumentGiltBis" minOccurs="0"/>
+		</xsd:sequence>
+	</xsd:complexType>
+	
+	<xsd:element name="ReisedokumentAenderung" type="ReisedokumentAenderungType"/>
+	<xsd:complexType name="ReisedokumentAenderungType">
+		<xsd:annotation>
+			<xsd:documentation>Reisedokument-Struktur für Änderungen von Reisedokumenten im ZMR</xsd:documentation>
+		</xsd:annotation>	
+		<xsd:sequence>
+			<xsd:element ref="base:EntityReferenz"/>
+			<xsd:element ref="base:DokumentArt" minOccurs="0"/>
+			<xsd:element ref="base:DokumentNummer" minOccurs="0"/>
+			<xsd:element ref="base:AusstellDatum" minOccurs="0"/>
+			<xsd:element ref="base:AusstellBehoerde" minOccurs="0"/>
+			<xsd:element ref="base:Ausstellungsstaat" minOccurs="0"/>
+			<xsd:element ref="base:DokumentGiltBis" minOccurs="0"/>
+			<xsd:element ref="base:Beendigung"/>
+		</xsd:sequence>
+	</xsd:complexType>	
+	
+	<xsd:element name="DokumentSuchdaten" type="DokumentSuchdatenType"/>
+	<xsd:complexType name="DokumentSuchdatenType">
+		<xsd:annotation>
+			<xsd:documentation>Reisedokument-Struktur für Reisedokumentanlagen im ZMR</xsd:documentation>
+		</xsd:annotation>		
+		<xsd:sequence>
+			<xsd:element ref="base:DokumentArt" minOccurs="0"/>
+			<xsd:element ref="base:DokumentNummer" minOccurs="0"/>
+			<xsd:element ref="base:AusstellDatum" minOccurs="0"/>
+			<xsd:element ref="base:AusstellBehoerde" minOccurs="0"/>
+			<xsd:element ref="base:Ausstellungsstaat" minOccurs="0"/>
+		</xsd:sequence>
+	</xsd:complexType>	
+
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/entities/Staatsangehoerigkeit.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/entities/Staatsangehoerigkeit.xsd
new file mode 100644
index 00000000..2dcdee66
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/entities/Staatsangehoerigkeit.xsd
@@ -0,0 +1,73 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: Staatsangehoerigkeit.xsd
+Zweck: Definiert Datentypen für die Staatsangehoerigkeiten einer Person im ZMR
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2010-03-15 teo: +GueltigVon, +GueltigBis: Gültigkeitsdatum für Staatsangehörigkeiten
+2004-12-20 tsch: ISOCode3 in StaatsangehoerigkeitErgebnisType optional (für historische Staaten)
+2004-08-04 tsch: StaatsangehoerigkeitAenderungType: EntityReferenz optional (Staatsangeh. kann auch uber ISOCode3 identifiziert werden)
+2004-01-26 tsch: Erstellung
+-->
+
+<xsd:schema xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:cio="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+			targetNamespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	<xsd:import namespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" schemaLocation="../../eingebunden/EingebundenProxy.xsd"/>
+	<xsd:import namespace="http://reference.e-government.gv.at/namespace/persondata/de/20040201#" schemaLocation="../../eingebunden/PersonDataZMR.xsd"/>
+	
+	<xsd:complexType name="StaatsangehoerigkeitErgebnisType">
+		<xsd:annotation>
+			<xsd:documentation>Staatsangehoerigkeit-Struktur für Suchergebnisse</xsd:documentation>
+		</xsd:annotation>	 	
+		<xsd:sequence>
+			<xsd:element ref="cio:ISOCode3" minOccurs="0"/>
+			<xsd:element ref="cio:StaatsnameDE" minOccurs="1"/>
+			<xsd:element ref="cio:StaatsnameEN" minOccurs="0"/>
+			<xsd:element ref="cio:StaatsnameFR" minOccurs="0"/>
+			<xsd:element name="GueltigVon" type="xsd:date" minOccurs="0"/>
+			<xsd:element name="GueltigBis" type="xsd:date" minOccurs="0"/>
+			<xsd:element ref="base:EntityErgebnisReferenz"/>
+		</xsd:sequence>		
+	</xsd:complexType>
+
+	<xsd:element name="StaatsangehoerigkeitAnlage" type="StaatsangehoerigkeitAnlageType"/>	
+	<xsd:complexType name="StaatsangehoerigkeitAnlageType">
+		<xsd:annotation>
+			<xsd:documentation>Staatsangehoerigkeit-Struktur für Anlagen im ZMR</xsd:documentation>
+		</xsd:annotation>	
+		<xsd:sequence>
+			<xsd:element ref="cio:ISOCode3"/>
+			<xsd:element name="GueltigVon" type="xsd:date" minOccurs="0"/>
+			<xsd:element name="GueltigBis" type="xsd:date" minOccurs="0"/>
+		</xsd:sequence>
+	</xsd:complexType>
+
+	<xsd:element name="StaatsangehoerigkeitAenderung" type="StaatsangehoerigkeitAenderungType"/>	
+	<xsd:complexType name="StaatsangehoerigkeitAenderungType">
+		<xsd:annotation>
+			<xsd:documentation>Staatsangehoerigkeit-Struktur für Änderungen im ZMR</xsd:documentation>
+		</xsd:annotation>	
+		<xsd:sequence>
+			<xsd:choice>
+				<xsd:annotation>
+					<xsd:documentation>
+						Wenn der Schlüssel (EntityID) der Staatsbürgerschaft nicht bekannt ist,
+						kann alternativ der ISO-Code geschickt werden.
+					</xsd:documentation>
+				</xsd:annotation>
+				<xsd:element ref="base:EntityReferenz"/>
+				<xsd:element ref="cio:ISOCode3"/>
+			</xsd:choice>
+			<xsd:element name="GueltigVon" type="xsd:date" minOccurs="0"/>
+			<xsd:element name="GueltigBis" type="xsd:date" minOccurs="0"/>
+			<xsd:element ref="base:Beendigung"/>
+		</xsd:sequence>
+	</xsd:complexType>	
+
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/entities/Standarddokument.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/entities/Standarddokument.xsd
new file mode 100644
index 00000000..5b14bcc4
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/entities/Standarddokument.xsd
@@ -0,0 +1,74 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: Standarddokument.xsd
+Zweck: Definiert Datentypen für die Standarddokumente einer Person im ZMR
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2004-11-03 tsch: Ausstellungsstaat hinzugefügt
+2004-09-29 tsch: Erstellt
+-->
+
+<xsd:schema xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			targetNamespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	<xsd:import namespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" schemaLocation="../../eingebunden/EingebundenProxy.xsd"/>
+	
+	<xsd:complexType name="StandarddokumentErgebnisType">
+		<xsd:annotation>
+			<xsd:documentation>Standarddokument-Struktur für Suchergebnisse</xsd:documentation>
+		</xsd:annotation>	 
+		
+		<xsd:sequence>
+			<xsd:element ref="base:EntityErgebnisReferenz"/>
+			<xsd:element ref="base:DokumentArt"/>
+			<xsd:element ref="base:EintragungsNummer"/>
+			<xsd:element ref="base:AusstellDatum"/>
+			<xsd:element ref="base:AblaufDatum" minOccurs="0"/>
+			<xsd:element ref="base:AusstellBehoerde"/>
+			<xsd:element ref="base:Ausstellungsstaat" minOccurs="0"/>
+			<xsd:element ref="base:SterbeDatum" minOccurs="0"/>
+			<xsd:element ref="base:SterbeUhrzeit" minOccurs="0"/>
+		</xsd:sequence>				
+	</xsd:complexType>
+
+	<xsd:element name="StandarddokumentAnlage" type="StandarddokumentAnlageType"/>
+	<xsd:complexType name="StandarddokumentAnlageType">
+		<xsd:annotation>
+			<xsd:documentation>Standarddokument-Struktur für Standarddokumentanlagen</xsd:documentation>
+		</xsd:annotation>		
+		<xsd:sequence>
+			<xsd:element ref="base:DokumentArt"/>
+			<xsd:element ref="base:EintragungsNummer"/>
+			<xsd:element ref="base:AusstellDatum"/>
+			<xsd:element ref="base:AblaufDatum" minOccurs="0"/>
+			<xsd:element ref="base:AusstellBehoerde"/>
+			<xsd:element ref="base:Ausstellungsstaat" minOccurs="0"/>
+			<xsd:element ref="base:SterbeDatum" minOccurs="0"/>
+			<xsd:element ref="base:SterbeUhrzeit" minOccurs="0"/>
+		</xsd:sequence>
+	</xsd:complexType>
+	
+	<xsd:element name="StandarddokumentAenderung" type="StandarddokumentAenderungType"/>
+	<xsd:complexType name="StandarddokumentAenderungType">
+		<xsd:annotation>
+			<xsd:documentation>Standarddokument-Struktur für Änderungen von Standarddokumenten</xsd:documentation>
+		</xsd:annotation>	
+		<xsd:sequence>
+			<xsd:element ref="base:EntityReferenz"/>
+			<xsd:element ref="base:DokumentArt" minOccurs="0"/>
+			<xsd:element ref="base:EintragungsNummer" minOccurs="0"/>
+			<xsd:element ref="base:AusstellDatum" minOccurs="0"/>
+			<xsd:element ref="base:AblaufDatum" minOccurs="0"/>
+			<xsd:element ref="base:AusstellBehoerde" minOccurs="0"/>
+			<xsd:element ref="base:Ausstellungsstaat" minOccurs="0"/>
+			<xsd:element ref="base:SterbeDatum" minOccurs="0"/>
+			<xsd:element ref="base:SterbeUhrzeit" minOccurs="0"/>
+			<xsd:element ref="base:Beendigung"/>
+		</xsd:sequence>
+	</xsd:complexType>	
+	
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/SzrClientTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/SzrClientTest.java
index d861006e..2d493091 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/SzrClientTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/SzrClientTest.java
@@ -25,10 +25,10 @@ package at.asitplus.eidas.specific.modules.auth.eidas.v2.test;
 
 import at.asitplus.eidas.specific.connector.test.config.dummy.MsConnectorDummyConfigMap;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.clients.szr.SzrClient;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidasSAuthenticationException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.SzrCommunicationException;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.szr.SzrClient;
 import at.gv.egiz.eaaf.core.api.data.EaafConstants;
 import at.gv.egiz.eaaf.core.api.idp.auth.data.IIdentityLink;
 import at.gv.egiz.eaaf.core.exceptions.EaafParserException;
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/SzrClientTestProduction.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/SzrClientTestProduction.java
index e50044c6..b9cc77b1 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/SzrClientTestProduction.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/SzrClientTestProduction.java
@@ -24,10 +24,10 @@
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.test;
 
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.clients.szr.SzrClient;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidasSAuthenticationException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.SzrCommunicationException;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.szr.SzrClient;
 import at.gv.egiz.eaaf.core.api.data.EaafConstants;
 import at.gv.egiz.eaaf.core.api.idp.IConfiguration;
 import at.gv.egiz.eaaf.core.api.idp.auth.data.IIdentityLink;
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskTest.java
index 643afb90..34bca782 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskTest.java
@@ -23,20 +23,59 @@
 
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.test.tasks;
 
+import static org.apache.commons.lang3.RandomStringUtils.randomAlphabetic;
+import static org.junit.Assert.assertThrows;
+import static org.mockito.ArgumentMatchers.any;
+import static org.mockito.ArgumentMatchers.eq;
+
+import java.math.BigInteger;
+import java.net.URI;
+import java.net.URISyntaxException;
+import java.util.ArrayList;
+import java.util.Arrays;
+import java.util.Collections;
+import java.util.List;
+import java.util.Map;
+import java.util.Random;
+
+import javax.xml.namespace.QName;
+
+import org.apache.commons.lang3.RandomStringUtils;
+import org.jetbrains.annotations.NotNull;
+import org.junit.Assert;
+import org.junit.Before;
+import org.junit.Test;
+import org.junit.runner.RunWith;
+import org.mockito.Mock;
+import org.mockito.Mockito;
+import org.mockito.MockitoAnnotations;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.mock.web.MockHttpServletRequest;
+import org.springframework.mock.web.MockHttpServletResponse;
+import org.springframework.test.annotation.DirtiesContext;
+import org.springframework.test.annotation.DirtiesContext.ClassMode;
+import org.springframework.test.context.ContextConfiguration;
+import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
+import org.springframework.web.context.request.RequestContextHolder;
+import org.springframework.web.context.request.ServletRequestAttributes;
+
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.clients.zmr.IZmrClient;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.clients.zmr.ZmrSoapClient.ZmrRegisterResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernp.IErnpClient;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidPostProcessingException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidasAttributeException;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.ManualFixNecessaryException;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.DeSpecificDetailSearchProcessor;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidasSAuthenticationException;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.WorkflowException;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.CountrySpecificDetailSearchProcessor;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.GenericEidProcessor;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.ItSpecificDetailSearchProcessor;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.ICcSpecificEidProcessingService;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.RegisterSearchService;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.InitialSearchTask;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr.IZmrClient;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.MatchingTaskUtils;
+import at.gv.bmi.namespace.zmr_su.zmr._20040201.PersonSuchenRequest;
 import at.gv.egiz.eaaf.core.api.IRequest;
 import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
 import at.gv.egiz.eaaf.core.exceptions.EaafStorageException;
@@ -49,34 +88,6 @@ import eu.eidas.auth.commons.attribute.ImmutableAttributeMap;
 import eu.eidas.auth.commons.attribute.PersonType;
 import eu.eidas.auth.commons.light.impl.LightRequest;
 import eu.eidas.auth.commons.protocol.impl.AuthenticationResponse;
-import org.apache.commons.lang3.RandomStringUtils;
-import org.jetbrains.annotations.NotNull;
-import org.junit.Assert;
-import org.junit.Before;
-import org.junit.Test;
-import org.junit.runner.RunWith;
-import org.mockito.Mock;
-import org.mockito.Mockito;
-import org.mockito.MockitoAnnotations;
-import org.springframework.mock.web.MockHttpServletRequest;
-import org.springframework.mock.web.MockHttpServletResponse;
-import org.springframework.test.annotation.DirtiesContext;
-import org.springframework.test.annotation.DirtiesContext.ClassMode;
-import org.springframework.test.context.ContextConfiguration;
-import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
-import org.springframework.web.context.request.RequestContextHolder;
-import org.springframework.web.context.request.ServletRequestAttributes;
-
-import javax.xml.namespace.QName;
-import java.net.URI;
-import java.net.URISyntaxException;
-import java.util.ArrayList;
-import java.util.Collections;
-import java.util.Map;
-import java.util.Random;
-
-import static org.apache.commons.lang3.RandomStringUtils.randomAlphabetic;
-import static org.junit.Assert.assertThrows;
 
 @RunWith(SpringJUnit4ClassRunner.class)
 @ContextConfiguration(locations = {
@@ -86,22 +97,32 @@ import static org.junit.Assert.assertThrows;
 @DirtiesContext(classMode = ClassMode.BEFORE_CLASS)
 public class InitialSearchTaskTest {
 
-  private static final String DE_ST = "de/st/";
-  private static final String IT_ST = "it/st/";
+  
+  private static final String EE = "EE";
+  private static final String DE = "DE";
+  private static final String IT = "IT";
+  
+  private static final String EE_ST = EE + "/ST/";
+  private static final String DE_ST = DE + "/ST/";
+  private static final String IT_ST = IT + "/ST/";
 
-  private InitialSearchTask task;
   @Mock
   private IZmrClient zmrClient;
   @Mock
   private IErnpClient ernpClient;
-  private final ICcSpecificEidProcessingService eidPostProcessor = createEidPostProcessor();
+  
+  @Autowired private List<CountrySpecificDetailSearchProcessor> handlers;  
   private RegisterSearchService registerSearchService;
-
+  
+  private final ICcSpecificEidProcessingService eidPostProcessor = createEidPostProcessor();  
+  private InitialSearchTask task;
+  
   final ExecutionContext executionContext = new ExecutionContextImpl();
   private TestRequestImpl pendingReq;
   private final String randomBpk = RandomStringUtils.randomNumeric(6);
-  private final String randomIdentifier = RandomStringUtils.randomNumeric(10);
-  private final String randomPseudonym = DE_ST + randomIdentifier;
+  private final String randomPsydonym = RandomStringUtils.randomNumeric(10);
+  private final String randomPersonalIdentifier_DE = DE_ST + randomPsydonym;
+  private final String randomPersonalIdentifier_EE = EE_ST + randomPsydonym;
   private final String randomFamilyName = randomAlphabetic(10);
   private final String randomGivenName = randomAlphabetic(10);
   private final String randomPlaceOfBirth = randomAlphabetic(10);
@@ -114,8 +135,9 @@ public class InitialSearchTaskTest {
   @Before
   public void setUp() throws URISyntaxException, EaafStorageException {
     MockitoAnnotations.initMocks(this);
-    registerSearchService = new RegisterSearchService(zmrClient, ernpClient);
-    task = new InitialSearchTask(new ArrayList<>(), registerSearchService, eidPostProcessor);
+      
+    registerSearchService = new RegisterSearchService(handlers, zmrClient, ernpClient);
+    task = new InitialSearchTask(registerSearchService, eidPostProcessor);
 
     MockHttpServletRequest httpReq = new MockHttpServletRequest("POST", "https://localhost/authhandler");
     MockHttpServletResponse httpResp = new MockHttpServletResponse();
@@ -153,73 +175,119 @@ public class InitialSearchTaskTest {
   @DirtiesContext
   public void testNode100_UserIdentifiedUpdateNecessary_a() throws Exception {
     String newFirstName = randomAlphabetic(10);
-    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.singletonList(
-        new RegisterResult(randomBpk, randomIdentifier, newFirstName, randomFamilyName, randomBirthDate)));
-    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
-
+    Mockito.when(zmrClient.searchWithPersonIdentifier(null, randomPersonalIdentifier_DE)).thenReturn(
+        new ZmrRegisterResult(Collections.singletonList(
+            RegisterResult.builder()
+                .bpk(randomBpk)
+                .pseudonym(Arrays.asList(randomPsydonym))
+                .givenName(newFirstName)
+                .familyName(randomFamilyName)
+                .dateOfBirth(randomBirthDate)
+                .build()),
+            generateRandomProcessId()));
     task.execute(pendingReq, executionContext);
     String bPk = readBpkFromSessionData(pendingReq);
 
-    Assert.assertEquals("Wrong bpk", bPk, randomBpk);
+    Assert.assertEquals("Wrong bpk", randomBpk, bPk);
   }
 
   /**
    * One match, but register update needed
+   * @throws EidasSAuthenticationException 
    */
   @Test
   @DirtiesContext
-  public void testNode100_UserIdentifiedUpdateNecessary_b() throws TaskExecutionException {
-    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
+  public void testNode100_UserIdentifiedUpdateNecessary_b() throws TaskExecutionException, EidasSAuthenticationException {
+    Mockito.when(zmrClient.searchWithPersonIdentifier(null, randomPersonalIdentifier_DE)).thenReturn(
+        new ZmrRegisterResult(Collections.emptyList(), generateRandomProcessId()));
+    
     String newRandomGivenName = randomAlphabetic(10);
-    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.singletonList(
-        new RegisterResult(randomBpk, randomIdentifier, newRandomGivenName, randomFamilyName, randomBirthDate)));
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomPersonalIdentifier_DE)).thenReturn(Collections.singletonList(
+        RegisterResult.builder()
+        .bpk(randomBpk)
+        .pseudonym(Arrays.asList(randomPsydonym))
+        .givenName(newRandomGivenName)
+        .familyName(randomFamilyName)
+        .dateOfBirth(randomBirthDate)
+        .build()));
 
     task.execute(pendingReq, executionContext);
     String bPk = readBpkFromSessionData(pendingReq);
 
-    Assert.assertEquals("Wrong bpk", bPk, randomBpk);
+    Assert.assertEquals("Wrong bpk", randomBpk, bPk);
   }
 
   /**
    * Two matches found in ZMR
+   * @throws EidasSAuthenticationException 
    */
   @Test
   @DirtiesContext
-  public void testNode101_ManualFixNecessary_a() {
+  public void testNode101_ManualFixNecessary_a() throws EidasSAuthenticationException {
     ArrayList<RegisterResult> zmrResult = new ArrayList<>();
-    zmrResult.add(new RegisterResult(randomBpk, randomIdentifier, randomGivenName, randomFamilyName, randomBirthDate));
+    zmrResult.add(
+        RegisterResult.builder()
+        .bpk(randomBpk)
+        .pseudonym(Arrays.asList(randomPsydonym))
+        .givenName(randomGivenName)
+        .familyName(randomFamilyName)
+        .dateOfBirth(randomBirthDate)
+        .build());
     String newRandomGivenName = randomGivenName + randomAlphabetic(2);
-    zmrResult.add(new RegisterResult(randomBpk, randomIdentifier, newRandomGivenName, randomFamilyName, randomBirthDate));
-    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(zmrResult);
-    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
+    zmrResult.add(
+        RegisterResult.builder()
+        .bpk(randomBpk)
+        .pseudonym(Arrays.asList(randomPsydonym))
+        .givenName(newRandomGivenName)
+        .familyName(randomFamilyName)
+        .dateOfBirth(randomBirthDate)
+        .build());
+    Mockito.when(zmrClient.searchWithPersonIdentifier(null, randomPersonalIdentifier_DE)).thenReturn(
+        new ZmrRegisterResult(zmrResult, generateRandomProcessId()));
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomPersonalIdentifier_DE)).thenReturn(Collections.emptyList());
 
     TaskExecutionException exception = assertThrows(TaskExecutionException.class,
         () -> task.execute(pendingReq, executionContext));
 
     Throwable origE = exception.getOriginalException();
-    Assert.assertTrue("Wrong exception", (origE instanceof ManualFixNecessaryException));
+    Assert.assertTrue("Wrong exception", (origE instanceof WorkflowException));
   }
 
 
   /**
    * Two matches found in ErnP
+   * @throws EidasSAuthenticationException 
    */
   @Test
   @DirtiesContext
-  public void testNode101_ManualFixNecessary_b() {
-    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
+  public void testNode101_ManualFixNecessary_b() throws EidasSAuthenticationException {
+    Mockito.when(zmrClient.searchWithPersonIdentifier(null, randomPersonalIdentifier_DE)).thenReturn(
+        new ZmrRegisterResult(Collections.emptyList(), generateRandomProcessId()));
     ArrayList<RegisterResult> ernpResult = new ArrayList<>();
-    ernpResult.add(new RegisterResult(randomBpk, randomPseudonym, randomGivenName, randomFamilyName, randomBirthDate));
+    ernpResult.add(
+        RegisterResult.builder()
+        .bpk(randomBpk)
+        .pseudonym(Arrays.asList(randomPsydonym))
+        .givenName(randomGivenName)
+        .familyName(randomFamilyName)
+        .dateOfBirth(randomBirthDate)
+        .build());
     String newRandomGivenName = randomGivenName + randomAlphabetic(2);
     ernpResult.add(
-        new RegisterResult(randomBpk, randomIdentifier, newRandomGivenName, randomFamilyName, randomBirthDate));
-    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(ernpResult);
+        RegisterResult.builder()
+        .bpk(randomBpk)
+        .pseudonym(Arrays.asList(randomPsydonym))
+        .givenName(newRandomGivenName)
+        .familyName(randomFamilyName)
+        .dateOfBirth(randomBirthDate)
+        .build());
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomPersonalIdentifier_DE)).thenReturn(ernpResult);
 
     TaskExecutionException exception = assertThrows(TaskExecutionException.class,
         () -> task.execute(pendingReq, executionContext));
 
     Throwable origE = exception.getOriginalException();
-    Assert.assertTrue("Wrong exception", (origE instanceof ManualFixNecessaryException));
+    Assert.assertTrue("Wrong exception", (origE instanceof WorkflowException));
   }
 
   /**
@@ -228,13 +296,20 @@ public class InitialSearchTaskTest {
   @Test
   @DirtiesContext
   public void testNode102_UserIdentified_a() throws Exception {
-    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
-    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.singletonList(
-        new RegisterResult(randomBpk, randomIdentifier, randomGivenName, randomFamilyName, randomBirthDate)));
+    Mockito.when(zmrClient.searchWithPersonIdentifier(null, randomPersonalIdentifier_DE)).thenReturn(
+        new ZmrRegisterResult(Collections.emptyList(), generateRandomProcessId()));
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomPersonalIdentifier_DE)).thenReturn(Collections.singletonList(
+        RegisterResult.builder()
+        .bpk(randomBpk)
+        .pseudonym(Arrays.asList(randomPsydonym))
+        .givenName(randomGivenName)
+        .familyName(randomFamilyName)
+        .dateOfBirth(randomBirthDate)
+        .build()));
 
     task.execute(pendingReq, executionContext);
     String bPk = readBpkFromSessionData(pendingReq);
-    Assert.assertEquals("Wrong bpk", bPk, randomBpk);
+    Assert.assertEquals("Wrong bpk", randomBpk, bPk);
   }
 
   /**
@@ -243,41 +318,22 @@ public class InitialSearchTaskTest {
   @Test
   @DirtiesContext
   public void testNode102_UserIdentified_b() throws Exception {
-    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.singletonList(
-        new RegisterResult(randomBpk, randomIdentifier, randomGivenName, randomFamilyName, randomBirthDate)));
-    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
+    Mockito.when(zmrClient.searchWithPersonIdentifier(null, randomPersonalIdentifier_DE)).thenReturn(
+        new ZmrRegisterResult(Collections.singletonList(
+            RegisterResult.builder()
+                .bpk(randomBpk)
+                .pseudonym(Arrays.asList(randomPsydonym))
+                .givenName(randomGivenName)
+                .familyName(randomFamilyName)
+                .dateOfBirth(randomBirthDate)
+                .build()),
+            generateRandomProcessId()));
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomPersonalIdentifier_DE)).thenReturn(Collections.emptyList());
 
     task.execute(pendingReq, executionContext);
 
     String bPk = readBpkFromSessionData(pendingReq);
-    Assert.assertEquals("Wrong bpk", bPk, randomBpk);
-  }
-
-  /**
-   * One match found in ZMR and ErnP with detail search
-   */
-  @Test
-  @DirtiesContext
-  public void testNode103_UserIdentified_IT() throws Exception {
-    String taxNumber = RandomStringUtils.randomNumeric(14);
-    final AuthenticationResponse response = buildDummyAuthResponseRandomPersonIT_Tax(taxNumber);
-    TestRequestImpl pendingReq1 = new TestRequestImpl();
-    pendingReq1.getSessionData(AuthProcessDataWrapper.class)
-        .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
-    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
-    String newRandomIdentifier = randomIdentifier + RandomStringUtils.randomNumeric(2);
-    Mockito.when(zmrClient.searchItSpecific(taxNumber)).thenReturn(Collections.singletonList(
-        new RegisterResult(randomBpk, newRandomIdentifier, randomGivenName, randomFamilyName,
-            randomBirthDate, null, null, taxNumber, null)));
-    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
-    task = new InitialSearchTask(
-        Collections.singletonList(new ItSpecificDetailSearchProcessor(registerSearchService)),
-        registerSearchService, eidPostProcessor);
-
-    task.execute(pendingReq1, executionContext);
-
-    String bPk = readBpkFromSessionData(pendingReq1);
-    Assert.assertEquals("Wrong bpk", bPk, randomBpk);
+    Assert.assertEquals("Wrong bpk", randomBpk, bPk);
   }
 
   /**
@@ -285,27 +341,38 @@ public class InitialSearchTaskTest {
    */
   @Test
   @DirtiesContext
-  public void testNode103_UserIdentified_DE() throws Exception {
+  public void testNode103_UserIdentified_DE() throws Exception {        
     final AuthenticationResponse response = buildDummyAuthResponseDE(randomGivenName, randomFamilyName,
-        randomPseudonym,
+        randomPersonalIdentifier_DE,
         randomBirthDate, randomPlaceOfBirth, randomBirthName);
-    TestRequestImpl pendingReq1 = new TestRequestImpl();
+    TestRequestImpl pendingReq1 = new TestRequestImpl();    
     pendingReq1.getSessionData(AuthProcessDataWrapper.class)
         .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
-    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
-    Mockito.when(zmrClient.searchDeSpecific(randomGivenName, randomFamilyName, randomBirthDate, randomPlaceOfBirth,
-        randomBirthName))
-        .thenReturn(Collections.singletonList(new RegisterResult(randomBpk, randomIdentifier, randomGivenName,
-            randomFamilyName, randomBirthDate, randomPlaceOfBirth, randomBirthName, null, null)));
-    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
-    task = new InitialSearchTask(
-        Collections.singletonList(new DeSpecificDetailSearchProcessor(registerSearchService)),
-        registerSearchService, eidPostProcessor);
-
+    
+    BigInteger zmrProcessId = generateRandomProcessId();    
+    Mockito.when(zmrClient.searchWithPersonIdentifier(null, randomPersonalIdentifier_DE)).thenReturn(
+        new ZmrRegisterResult(Collections.emptyList(), zmrProcessId));    
+    Mockito.when(zmrClient.searchCountrySpecific(eq(zmrProcessId), any(PersonSuchenRequest.class), eq(DE))).thenReturn(
+        new ZmrRegisterResult(Collections.singletonList(
+            RegisterResult.builder()
+            .bpk(randomBpk)
+            .pseudonym(Arrays.asList(randomPsydonym))
+            .givenName(randomGivenName)
+            .familyName(randomFamilyName)
+            .dateOfBirth(randomBirthDate)
+            .placeOfBirth(randomPlaceOfBirth)
+            .birthName(randomBirthName)
+            .build())
+        ,zmrProcessId));
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomPersonalIdentifier_DE)).thenReturn(Collections.emptyList());
+
+    // execute test
     task.execute(pendingReq1, executionContext);
 
+    // validate state
     String resultBpk = readBpkFromSessionData(pendingReq1);
-    Assert.assertEquals("Wrong bpk", resultBpk, randomBpk);
+    Assert.assertEquals("Wrong bpk", randomBpk, resultBpk);
+    
   }
 
   /**
@@ -314,76 +381,70 @@ public class InitialSearchTaskTest {
   @Test
   @DirtiesContext
   public void testNode104_ManualFixNecessary_DE() throws Exception {
-    String newRandomPseudonym = randomPseudonym + RandomStringUtils.randomNumeric(2);
+    String newRandomPseudonym = randomPersonalIdentifier_DE + RandomStringUtils.randomNumeric(2);
     String newRandomBpk = randomBpk + RandomStringUtils.randomNumeric(6);
     final AuthenticationResponse response = buildDummyAuthResponseDE(randomGivenName, randomFamilyName,
-        randomPseudonym,
+        randomPersonalIdentifier_DE,
         randomBirthDate, randomPlaceOfBirth, randomBirthName);
     TestRequestImpl pendingReq1 = new TestRequestImpl();
     pendingReq1.getSessionData(AuthProcessDataWrapper.class)
         .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
-    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
-    ArrayList<RegisterResult> zmrResultSpecific = new ArrayList<>();
-    zmrResultSpecific.add(
-        new RegisterResult(randomBpk, randomIdentifier, randomGivenName, randomFamilyName, randomBirthDate,
-            randomPlaceOfBirth, randomBirthName, null, null));
-    zmrResultSpecific.add(new RegisterResult(newRandomBpk, newRandomPseudonym, randomGivenName, randomFamilyName, randomBirthDate,
-        randomPlaceOfBirth, randomBirthName, null, null));
-    Mockito.when(zmrClient.searchDeSpecific(randomGivenName, randomFamilyName, randomBirthDate, randomPlaceOfBirth,
-        randomBirthName)).thenReturn(zmrResultSpecific);
-    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
-    task = new InitialSearchTask(
-        Collections.singletonList(new DeSpecificDetailSearchProcessor(registerSearchService)),
-        registerSearchService, eidPostProcessor);
-
+    
+    BigInteger zmrProcessId = generateRandomProcessId();    
+    Mockito.when(zmrClient.searchWithPersonIdentifier(null, randomPersonalIdentifier_DE)).thenReturn(
+        new ZmrRegisterResult(Collections.emptyList(), zmrProcessId));    
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomPersonalIdentifier_DE)).thenReturn(Collections.emptyList());            
+    Mockito.when(zmrClient.searchCountrySpecific(eq(zmrProcessId), any(PersonSuchenRequest.class), eq(DE))).thenReturn(
+        new ZmrRegisterResult(Arrays.asList(
+            RegisterResult.builder()
+                .bpk(randomBpk)
+                .pseudonym(Arrays.asList(randomPsydonym))
+                .givenName(randomGivenName)
+                .familyName(randomFamilyName)
+                .dateOfBirth(randomBirthDate)
+                .placeOfBirth(randomPlaceOfBirth)
+                .birthName(randomBirthName)
+                .build(),
+            RegisterResult.builder()
+                .bpk(newRandomBpk)
+                .pseudonym(Arrays.asList(newRandomPseudonym))
+                .givenName(randomGivenName)
+                .familyName(randomFamilyName)
+                .dateOfBirth(randomBirthDate)
+                .placeOfBirth(randomPlaceOfBirth)
+                .birthName(randomBirthName)
+                .build())
+            ,zmrProcessId)); 
+                
+    
+    // execute test
     TaskExecutionException exception = assertThrows(TaskExecutionException.class,
         () -> task.execute(pendingReq1, executionContext));
 
+    // check error 
     Throwable origE = exception.getOriginalException();
-    Assert.assertTrue("Wrong exception", (origE instanceof ManualFixNecessaryException));
-  }
-
-  /**
-   * Multiple matches found in ZMR and ErnP with detail search
-   */
-  @Test
-  @DirtiesContext
-  public void testNode104_ManualFixNecessary_IT() throws Exception {
-    String randomTaxNumber = RandomStringUtils.randomNumeric(14);
-    final AuthenticationResponse response = buildDummyAuthResponseRandomPersonIT_Tax(randomTaxNumber);
-    TestRequestImpl pendingReq1 = new TestRequestImpl();
-    pendingReq1.getSessionData(AuthProcessDataWrapper.class)
-        .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
-    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
-    ArrayList<RegisterResult> zmrResultSpecific = new ArrayList<>();
-    String randomPseudonym = IT_ST + randomIdentifier + "4";
-    zmrResultSpecific.add(new RegisterResult(randomBpk, randomPseudonym, randomGivenName,
-        randomFamilyName, randomBirthDate, null, null, randomTaxNumber, null));
-    String newRandomPseudonym = IT_ST + randomIdentifier + "5";
-    String newRandomBpk = RandomStringUtils.randomNumeric(6);
-    zmrResultSpecific.add(new RegisterResult(newRandomBpk, newRandomPseudonym, randomGivenName,
-        randomFamilyName, randomBirthDate, null, null, randomTaxNumber, null));
-    Mockito.when(zmrClient.searchItSpecific(randomTaxNumber)).thenReturn(zmrResultSpecific);
-    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
-    task = new InitialSearchTask(
-        Collections.singletonList(new ItSpecificDetailSearchProcessor(registerSearchService)),
-        registerSearchService, eidPostProcessor);
-
-    TaskExecutionException exception = assertThrows(TaskExecutionException.class,
-        () -> task.execute(pendingReq1, executionContext));
-
-    Throwable origE = exception.getOriginalException();
-    Assert.assertTrue("Wrong exception", (origE instanceof ManualFixNecessaryException));
+    Assert.assertTrue("Wrong exception", (origE instanceof WorkflowException));
   }
 
   /**
    * NO match found in ZMR and ErnP with Initial and MDS search
+   * @throws EidasSAuthenticationException 
+   * @throws URISyntaxException 
+   * @throws EaafStorageException 
    */
   @Test
   @DirtiesContext
-  public void testNode505_TransitionToErnbTask() throws TaskExecutionException {
-    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
-    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
+  public void testNode505_TransitionToInsertErnbTask() throws TaskExecutionException, EidasSAuthenticationException, URISyntaxException, EaafStorageException {
+    BigInteger zmrProcessId = generateRandomProcessId();
+    pendingReq.getSessionData(AuthProcessDataWrapper.class)
+        .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, 
+            buildDummyAuthResponse(randomGivenName, randomFamilyName, randomPersonalIdentifier_EE, randomBirthDate));
+    Mockito.when(zmrClient.searchWithPersonIdentifier(null, randomPersonalIdentifier_EE)).thenReturn(
+        new ZmrRegisterResult(Collections.emptyList(), zmrProcessId)); 
+    Mockito.when(zmrClient.searchWithMds(zmrProcessId, randomGivenName, randomFamilyName, randomBirthDate, EE)).thenReturn(
+        new ZmrRegisterResult(Collections.emptyList(), zmrProcessId)); 
+    
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomPersonalIdentifier_EE)).thenReturn(Collections.emptyList());
 
     task.execute(pendingReq, executionContext);
 
@@ -398,21 +459,37 @@ public class InitialSearchTaskTest {
 
   /**
    * NO match found in ZMR and ErnP with Initial search, one match with MDS search in Ernb
+   * @throws EidasSAuthenticationException 
+   * @throws URISyntaxException 
+   * @throws EaafStorageException 
    */
   @Test
   @DirtiesContext
-  public void testNode505_TransitionToGUI_Ernb() throws TaskExecutionException {
-    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
-    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
-
+  public void testNode505_TransitionToGUI_Ernb() throws TaskExecutionException, EidasSAuthenticationException, URISyntaxException, EaafStorageException {
+    BigInteger zmrProcessId = generateRandomProcessId();
+    pendingReq.getSessionData(AuthProcessDataWrapper.class)
+        .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, 
+              buildDummyAuthResponse(randomGivenName, randomFamilyName, randomPersonalIdentifier_EE, randomBirthDate));
+    
+    Mockito.when(zmrClient.searchWithPersonIdentifier(null, randomPersonalIdentifier_EE)).thenReturn(
+        new ZmrRegisterResult(Collections.emptyList(), zmrProcessId)); 
+    Mockito.when(zmrClient.searchWithMds(zmrProcessId, randomGivenName, randomFamilyName, randomBirthDate, EE)).thenReturn(
+        new ZmrRegisterResult(Collections.emptyList(), zmrProcessId));
+    
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomPersonalIdentifier_EE)).thenReturn(Collections.emptyList());
     Mockito.when(ernpClient.searchWithMds(randomGivenName, randomFamilyName, randomBirthDate)).thenReturn(
         Collections.singletonList(
-            new RegisterResult(randomBpk, randomIdentifier, randomGivenName, randomFamilyName, randomBirthDate)));
+            RegisterResult.builder()
+                .bpk(randomBpk)
+                .pseudonym(Arrays.asList(randomPsydonym))
+                .givenName(randomGivenName)
+                .familyName(randomFamilyName)
+                .dateOfBirth(randomBirthDate)
+                .build()));
 
     task.execute(pendingReq, executionContext);
 
-    String bPk = readBpkFromSessionData(pendingReq);
-    Assert.assertNull("Wrong bpk", bPk);
+    assertThrows(WorkflowException.class, () -> readBpkFromSessionData(pendingReq));
     Boolean transitionGUI = (Boolean) executionContext.get(Constants.TRANSITION_TO_GENERATE_OTHER_LOGIN_METHOD_GUI_TASK);
     Assert.assertTrue("Wrong transition", transitionGUI);
     Boolean transitionErnb = (Boolean) executionContext.get(Constants.TRANSITION_TO_CREATE_NEW_ERNP_ENTRY_TASK);
@@ -421,21 +498,29 @@ public class InitialSearchTaskTest {
 
   /**
    * NO match found in ZMR and ErnP with Initial search, one match with MDS search in ZMR
+   * @throws EidasSAuthenticationException 
    */
   @Test
   @DirtiesContext
-  public void testNode505_TransitionToGUI_Zmr() throws TaskExecutionException {
-    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
-    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
-
-    Mockito.when(zmrClient.searchWithMds(randomGivenName, randomFamilyName, randomBirthDate)).thenReturn(
-        Collections.singletonList(
-            new RegisterResult(randomBpk, randomIdentifier, randomGivenName, randomFamilyName, randomBirthDate)));
+  public void testNode505_TransitionToGUI_Zmr() throws TaskExecutionException, EidasSAuthenticationException {
+    BigInteger zmrProcessId = generateRandomProcessId();    
+    Mockito.when(zmrClient.searchWithPersonIdentifier(null, randomPersonalIdentifier_DE)).thenReturn(
+        new ZmrRegisterResult(Collections.emptyList(), zmrProcessId)); 
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomPersonalIdentifier_DE)).thenReturn(Collections.emptyList());
+
+    Mockito.when(zmrClient.searchWithMds(zmrProcessId, randomGivenName, randomFamilyName, randomBirthDate, DE)).thenReturn(
+        new ZmrRegisterResult(Collections.singletonList(RegisterResult.builder()
+            .bpk(randomBpk)
+            .pseudonym(Arrays.asList(randomPsydonym))
+            .givenName(randomGivenName)
+            .familyName(randomFamilyName)
+            .dateOfBirth(randomBirthDate)
+            .build()),
+            zmrProcessId));
 
     task.execute(pendingReq, executionContext);
 
-    String bPk = readBpkFromSessionData(pendingReq);
-    Assert.assertNull("Wrong bpk", bPk);
+    assertThrows(WorkflowException.class, () -> readBpkFromSessionData(pendingReq));
     Boolean transitionGUI = (Boolean) executionContext.get(Constants.TRANSITION_TO_GENERATE_OTHER_LOGIN_METHOD_GUI_TASK);
     Assert.assertTrue("Wrong transition", transitionGUI);
     Boolean transitionErnb = (Boolean) executionContext.get(Constants.TRANSITION_TO_CREATE_NEW_ERNP_ENTRY_TASK);
@@ -444,23 +529,40 @@ public class InitialSearchTaskTest {
 
   /**
    * NO match found in ZMR and ErnP with Initial search, multiple matches found with MDS search
+   * @throws EidasSAuthenticationException 
    */
   @Test
   @DirtiesContext
-  public void testNode505_TransitionToGUI_Ernb_multi() throws TaskExecutionException {
-    Mockito.when(zmrClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
-    Mockito.when(ernpClient.searchWithPersonIdentifier(randomIdentifier)).thenReturn(Collections.emptyList());
-    ArrayList<RegisterResult> ernbResult = new ArrayList<>();
-    ernbResult.add(new RegisterResult(randomBpk, randomIdentifier, randomGivenName, randomFamilyName,
-        randomBirthDate));
-    ernbResult.add(new RegisterResult(randomBpk + "1", randomIdentifier, randomGivenName, randomFamilyName,
-        randomBirthDate));
-    Mockito.when(ernpClient.searchWithMds(randomGivenName, randomFamilyName, randomBirthDate)).thenReturn(ernbResult);
+  public void testNode505_TransitionToGUI_Ernb_multi() throws TaskExecutionException, EidasSAuthenticationException {
+    BigInteger zmrProcessId = generateRandomProcessId();    
+    Mockito.when(zmrClient.searchWithPersonIdentifier(null, randomPersonalIdentifier_DE)).thenReturn(
+        new ZmrRegisterResult(Collections.emptyList(), zmrProcessId)); 
+    Mockito.when(zmrClient.searchCountrySpecific(eq(zmrProcessId), any(PersonSuchenRequest.class), any(String.class))).thenReturn(
+        new ZmrRegisterResult(Collections.emptyList(), zmrProcessId));
+    Mockito.when(zmrClient.searchWithMds(zmrProcessId, randomGivenName, randomFamilyName, randomBirthDate, DE)).thenReturn(
+        new ZmrRegisterResult(Collections.emptyList(), zmrProcessId));
+        
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomPersonalIdentifier_DE)).thenReturn(Collections.emptyList());            
+    Mockito.when(ernpClient.searchWithMds(randomGivenName, randomFamilyName, randomBirthDate)).thenReturn(
+        Arrays.asList(
+            RegisterResult.builder()
+                .bpk(randomBpk)
+                .pseudonym(Arrays.asList(randomPsydonym))
+                .givenName(randomGivenName)
+                .familyName(randomFamilyName)
+                .dateOfBirth(randomBirthDate)
+                .build(),
+            RegisterResult.builder()
+                .bpk(randomBpk + "1")
+                .pseudonym(Arrays.asList(randomPsydonym))
+                .givenName(randomGivenName)
+                .familyName(randomFamilyName)
+                .dateOfBirth(randomBirthDate)
+                .build()));
 
     task.execute(pendingReq, executionContext);
 
-    String bPk = readBpkFromSessionData(pendingReq);
-    Assert.assertNull("Wrong bpk", bPk);
+    assertThrows(WorkflowException.class, () -> readBpkFromSessionData(pendingReq));
     Boolean transitionGUI = (Boolean) executionContext.get(Constants.TRANSITION_TO_GENERATE_OTHER_LOGIN_METHOD_GUI_TASK);
     Assert.assertTrue("Wrong transition", transitionGUI);
     Boolean transitionErnb = (Boolean) executionContext.get(Constants.TRANSITION_TO_CREATE_NEW_ERNP_ENTRY_TASK);
@@ -469,15 +571,14 @@ public class InitialSearchTaskTest {
 
   @NotNull
   private AuthenticationResponse buildDummyAuthResponseRandomPerson() throws URISyntaxException {
-    return buildDummyAuthResponse(randomGivenName, randomFamilyName, DE_ST + randomIdentifier, randomBirthDate);
+    return buildDummyAuthResponse(randomGivenName, randomFamilyName, DE_ST + randomPsydonym, randomBirthDate);
   }
 
-  private AuthenticationResponse buildDummyAuthResponseRandomPersonIT_Tax(String taxNumber)
-      throws URISyntaxException {
-    return buildDummyAuthResponse(randomGivenName, randomFamilyName, IT_ST + randomIdentifier, randomBirthDate,
-        taxNumber, null, null);
+  private BigInteger generateRandomProcessId() {
+    return new BigInteger(RandomStringUtils.randomNumeric(10));
+    
   }
-
+  
   @NotNull
   private AuthenticationResponse buildDummyAuthResponse(String givenName, String familyName, String identifier,
                                                         String dateOfBirth) throws URISyntaxException {
@@ -545,8 +646,10 @@ public class InitialSearchTaskTest {
         .attributeValueMarshaller(marshaller).build();
   }
 
-  private String readBpkFromSessionData(TestRequestImpl pendingReq) {
-    return (String) pendingReq.getSessionData(AuthProcessDataWrapper.class)
-        .getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK);
+  private String readBpkFromSessionData(TestRequestImpl pendingReq) throws WorkflowException {
+    return MatchingTaskUtils.getInitialRegisterResult(pendingReq) != null 
+        ? MatchingTaskUtils.getInitialRegisterResult(pendingReq).getBpk()
+        : null;
+    
   }
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveAustrianResidenceGuiResponseTaskTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveAustrianResidenceGuiResponseTaskTest.java
index d9405251..281be36f 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveAustrianResidenceGuiResponseTaskTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveAustrianResidenceGuiResponseTaskTest.java
@@ -1,20 +1,20 @@
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.test.tasks;
 
-import at.asitplus.eidas.specific.connector.test.config.dummy.MsConnectorDummyConfigMap;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.MergedRegisterSearchResult;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.ManualFixNecessaryException;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.RegisterSearchService;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.ReceiveAustrianResidenceGuiResponseTask;
-import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
-import at.gv.egiz.eaaf.core.exceptions.EaafStorageException;
-import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
-import at.gv.egiz.eaaf.core.impl.idp.auth.data.AuthProcessDataWrapper;
-import at.gv.egiz.eaaf.core.impl.idp.module.test.TestRequestImpl;
-import at.gv.egiz.eaaf.core.impl.idp.process.ExecutionContextImpl;
-import com.google.common.collect.Lists;
+import static at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.ReceiveAustrianResidenceGuiResponseTask.PARAM_CITY;
+import static at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.ReceiveAustrianResidenceGuiResponseTask.PARAM_FORMER_RESIDENCE_AVAILABLE;
+import static at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.ReceiveAustrianResidenceGuiResponseTask.PARAM_STREET;
+import static at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.ReceiveAustrianResidenceGuiResponseTask.PARAM_ZIPCODE;
+import static org.junit.Assert.assertEquals;
+import static org.junit.Assert.assertNull;
+import static org.junit.Assert.assertThrows;
+import static org.mockito.ArgumentMatchers.eq;
+import static org.springframework.util.Assert.isInstanceOf;
+
+import java.math.BigInteger;
+import java.util.Arrays;
+import java.util.Collections;
+import java.util.List;
+
 import org.apache.commons.lang3.RandomStringUtils;
 import org.jetbrains.annotations.NotNull;
 import org.junit.Before;
@@ -32,14 +32,25 @@ import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
 import org.springframework.web.context.request.RequestContextHolder;
 import org.springframework.web.context.request.ServletRequestAttributes;
 
-import java.util.Collections;
-import java.util.List;
+import com.google.common.collect.Lists;
 
-import static at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.ReceiveAustrianResidenceGuiResponseTask.*;
-import static org.junit.Assert.*;
-import static org.mockito.ArgumentMatchers.any;
-import static org.mockito.ArgumentMatchers.eq;
-import static org.springframework.util.Assert.isInstanceOf;
+import at.asitplus.eidas.specific.connector.test.config.dummy.MsConnectorDummyConfigMap;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.ManualFixNecessaryException;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.RegisterSearchService;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.RegisterSearchService.RegisterOperationStatus;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.RegisterSearchService.RegisterSearchResult;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.ReceiveAustrianResidenceGuiResponseTask;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.ReceiveAustrianResidenceGuiResponseTask.UserInput;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.MatchingTaskUtils;
+import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
+import at.gv.egiz.eaaf.core.exceptions.EaafStorageException;
+import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
+import at.gv.egiz.eaaf.core.impl.idp.auth.data.AuthProcessDataWrapper;
+import at.gv.egiz.eaaf.core.impl.idp.module.test.TestRequestImpl;
+import at.gv.egiz.eaaf.core.impl.idp.process.ExecutionContextImpl;
 
 @RunWith(SpringJUnit4ClassRunner.class)
 @ContextConfiguration(locations = {
@@ -50,11 +61,12 @@ public class ReceiveAustrianResidenceGuiResponseTaskTest {
 
   @Autowired
   protected MsConnectorDummyConfigMap authConfig;
-  @Autowired
-  private ReceiveAustrianResidenceGuiResponseTask task;
+     
   @MockBean
   private RegisterSearchService registerSearchService;
 
+  private ReceiveAustrianResidenceGuiResponseTask task;
+  
   private final ExecutionContext executionContext = new ExecutionContextImpl();
   private MockHttpServletRequest httpReq;
   private MockHttpServletResponse httpResp;
@@ -69,6 +81,8 @@ public class ReceiveAustrianResidenceGuiResponseTaskTest {
   public void setUp() throws Exception {
     MockitoAnnotations.initMocks(this);
 
+    task = new ReceiveAustrianResidenceGuiResponseTask(registerSearchService);
+    
     httpReq = new MockHttpServletRequest("POST", "https://localhost/ms_connector");
     httpResp = new MockHttpServletResponse();
     RequestContextHolder.resetRequestAttributes();
@@ -85,9 +99,10 @@ public class ReceiveAustrianResidenceGuiResponseTaskTest {
   public void noRegisterResult() throws Exception {
     UserInput userInput = setupUserInput();
     SimpleEidasData eidasData = setupEidasData();
-    MergedRegisterSearchResult registerSearchResult = buildEmptyResult();
-    mockRegisterSearch(userInput, registerSearchResult);
-
+    RegisterSearchResult registerSearchResult = buildEmptyResult();
+    mockRegisterSearch(userInput, registerSearchResult, eidasData);
+    MatchingTaskUtils.storeInitialRegisterResult(pendingReq, registerSearchResult);
+    
     task.execute(pendingReq, executionContext);
 
     assertEquals("Transition To S9", true, executionContext.get(Constants.TRANSITION_TO_CREATE_NEW_ERNP_ENTRY_TASK));
@@ -97,21 +112,24 @@ public class ReceiveAustrianResidenceGuiResponseTaskTest {
   public void exactlyOneRegisterResult_Matching() throws Exception {
     UserInput userInput = setupUserInput();
     SimpleEidasData eidasData = setupEidasData();
-    MergedRegisterSearchResult registerSearchResult = buildResultWithOneMatch(buildMatchingRegisterResult(eidasData));
-    mockRegisterSearch(userInput, registerSearchResult);
+    RegisterSearchResult registerSearchResult = buildResultWithOneMatch(buildMatchingRegisterResult(eidasData));
+    MatchingTaskUtils.storeInitialRegisterResult(pendingReq, registerSearchResult);
+    mockRegisterSearch(userInput, registerSearchResult, eidasData);
 
     task.execute(pendingReq, executionContext);
 
     assertNull("Transition To S9", executionContext.get(Constants.TRANSITION_TO_CREATE_NEW_ERNP_ENTRY_TASK));
-    Mockito.verify(registerSearchService).step7aKittProcess(any(), eq(registerSearchResult), eq(eidasData), eq(pendingReq));
+    Mockito.verify(registerSearchService).step7aKittProcess(eq(registerSearchResult), eq(eidasData));
+    
   }
 
   @Test
   public void exactlyOneRegisterResult_NotMatching() throws Exception {
     UserInput userInput = setupUserInput();
     SimpleEidasData eidasData = setupEidasData();
-    MergedRegisterSearchResult registerSearchResult = buildResultWithOneMatch(buildNotMatchingRegisterResult(eidasData));
-    mockRegisterSearch(userInput, registerSearchResult);
+    RegisterSearchResult registerSearchResult = buildResultWithOneMatch(buildNotMatchingRegisterResult(eidasData));
+    MatchingTaskUtils.storeInitialRegisterResult(pendingReq, registerSearchResult);
+    mockRegisterSearch(userInput, registerSearchResult, eidasData);
 
     task.execute(pendingReq, executionContext);
 
@@ -122,8 +140,9 @@ public class ReceiveAustrianResidenceGuiResponseTaskTest {
   public void moreThanOneRegisterResult() throws Exception {
     UserInput userInput = setupUserInput();
     SimpleEidasData eidasData = setupEidasData();
-    MergedRegisterSearchResult registerSearchResult = buildResultWithTwoMatches();
-    mockRegisterSearch(userInput, registerSearchResult);
+    RegisterSearchResult registerSearchResult = buildResultWithTwoMatches();
+    MatchingTaskUtils.storeInitialRegisterResult(pendingReq, registerSearchResult);
+    mockRegisterSearch(userInput, registerSearchResult, eidasData);
 
     TaskExecutionException e = assertThrows(TaskExecutionException.class,
         () -> task.execute(pendingReq, executionContext));
@@ -133,37 +152,70 @@ public class ReceiveAustrianResidenceGuiResponseTaskTest {
     assertNull("Transition To S16", executionContext.get(Constants.TRANSITION_TO_CREATE_NEW_ERNP_ENTRY_TASK));
   }
 
-  private void mockRegisterSearch(UserInput userInput, MergedRegisterSearchResult registerSearchResult) {
-    Mockito.when(registerSearchService.searchWithResidence(eq(userInput.getZipcode()), eq(userInput.getCity()), eq(userInput.getStreet()))).thenReturn(registerSearchResult);
+  private void mockRegisterSearch(UserInput userInput, RegisterSearchResult registerSearchResult, SimpleEidasData eidasData ) {
+    Mockito.when(registerSearchService.searchWithResidence(eq(registerSearchResult.getOperationStatus()), eq(eidasData), 
+        eq(userInput.getZipcode()), eq(userInput.getCity()), eq(userInput.getStreet()))).thenReturn(registerSearchResult);
   }
 
   @NotNull
-  private MergedRegisterSearchResult buildEmptyResult() {
-    return new MergedRegisterSearchResult(Collections.emptyList(), Collections.emptyList());
+  private RegisterSearchResult buildEmptyResult() {    
+    return new RegisterSearchResult(new RegisterOperationStatus(generateRandomProcessId()), 
+        Collections.emptyList(), Collections.emptyList());
+    
   }
 
+  private BigInteger generateRandomProcessId() {
+    return new BigInteger(RandomStringUtils.randomNumeric(10));
+    
+  }
+  
   @NotNull
-  private MergedRegisterSearchResult buildResultWithOneMatch(RegisterResult registerResult) {
-    return new MergedRegisterSearchResult(Collections.singletonList(registerResult), Collections.emptyList());
+  private RegisterSearchResult buildResultWithOneMatch(RegisterResult registerResult) {
+    return new RegisterSearchResult(new RegisterOperationStatus(generateRandomProcessId()), 
+        Collections.singletonList(registerResult), Collections.emptyList());
+    
   }
 
   @NotNull
-  private MergedRegisterSearchResult buildResultWithTwoMatches() {
+  private RegisterSearchResult buildResultWithTwoMatches() {
     List<RegisterResult> results = Lists.newArrayList(buildRandomRegisterResult(), buildRandomRegisterResult());
-    return new MergedRegisterSearchResult(results, Collections.emptyList());
+    return new RegisterSearchResult(new RegisterOperationStatus(generateRandomProcessId()), 
+        results, Collections.emptyList());
+    
   }
 
   @NotNull
   private RegisterResult buildRandomRegisterResult() {
-    return new RegisterResult(RandomStringUtils.randomAlphabetic(8), RandomStringUtils.randomAlphabetic(8), RandomStringUtils.randomAlphabetic(8), RandomStringUtils.randomAlphabetic(8), RandomStringUtils.randomAlphabetic(8));
+    return RegisterResult.builder()
+            .pseudonym(Arrays.asList(RandomStringUtils.randomAlphabetic(8)))
+            .givenName(RandomStringUtils.randomAlphabetic(8))
+            .familyName(RandomStringUtils.randomAlphabetic(8))
+            .dateOfBirth(RandomStringUtils.randomAlphabetic(8))
+            .bpk(RandomStringUtils.randomAlphabetic(8))
+            .build(); 
+    
   }
 
   private RegisterResult buildMatchingRegisterResult(SimpleEidasData eidData) {
-    return new RegisterResult(RandomStringUtils.randomAlphabetic(8), eidData.getPseudonym(), eidData.getGivenName(), eidData.getFamilyName(), eidData.getDateOfBirth());
+    return RegisterResult.builder()
+        .pseudonym(Arrays.asList(eidData.getPseudonym()))
+        .givenName(eidData.getGivenName())
+        .familyName(eidData.getFamilyName())
+        .dateOfBirth(eidData.getDateOfBirth())
+        .bpk(RandomStringUtils.randomAlphabetic(8))
+        .build(); 
+       
   }
 
   private RegisterResult buildNotMatchingRegisterResult(SimpleEidasData eidData) {
-    return new RegisterResult(RandomStringUtils.randomAlphabetic(8), eidData.getPseudonym() + RandomStringUtils.randomAlphabetic(8), eidData.getGivenName(), eidData.getFamilyName(), eidData.getDateOfBirth());
+    return RegisterResult.builder()
+        .pseudonym(Arrays.asList(eidData.getPseudonym() + RandomStringUtils.randomAlphabetic(8)))
+        .givenName(eidData.getGivenName())
+        .familyName(eidData.getFamilyName())
+        .dateOfBirth(eidData.getDateOfBirth())
+        .bpk(RandomStringUtils.randomAlphabetic(8))
+        .build();
+    
   }
 
   private void setHttpParameters(UserInput input) {
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveMobilePhoneSignatureResponseTaskTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveMobilePhoneSignatureResponseTaskTest.java
index 77b87264..8c137bb2 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveMobilePhoneSignatureResponseTaskTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveMobilePhoneSignatureResponseTaskTest.java
@@ -1,8 +1,50 @@
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.test.tasks;
 
+import static org.junit.Assert.assertEquals;
+import static org.junit.Assert.assertNull;
+import static org.junit.Assert.assertThrows;
+import static org.springframework.util.Assert.isInstanceOf;
+
+import java.io.IOException;
+import java.io.InputStream;
+import java.math.BigInteger;
+import java.nio.charset.StandardCharsets;
+import java.util.Arrays;
+import java.util.Base64;
+import java.util.Collections;
+import java.util.List;
+import java.util.Objects;
+
+import javax.xml.transform.TransformerException;
+
+import org.apache.commons.io.IOUtils;
+import org.apache.commons.lang3.RandomStringUtils;
+import org.jetbrains.annotations.NotNull;
+import org.joda.time.DateTime;
+import org.junit.Before;
+import org.junit.BeforeClass;
+import org.junit.Ignore;
+import org.junit.Test;
+import org.junit.runner.RunWith;
+import org.mockito.MockitoAnnotations;
+import org.opensaml.core.xml.config.XMLObjectProviderRegistrySupport;
+import org.opensaml.core.xml.io.MarshallingException;
+import org.opensaml.core.xml.util.XMLObjectSupport;
+import org.opensaml.saml.saml2.core.Issuer;
+import org.opensaml.saml.saml2.core.Response;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.boot.test.mock.mockito.MockBean;
+import org.springframework.mock.web.MockHttpServletRequest;
+import org.springframework.mock.web.MockHttpServletResponse;
+import org.springframework.test.context.ContextConfiguration;
+import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
+import org.springframework.web.context.request.RequestContextHolder;
+import org.springframework.web.context.request.ServletRequestAttributes;
+
+import com.google.common.collect.Lists;
+
 import at.asitplus.eidas.specific.connector.test.config.dummy.MsConnectorDummyConfigMap;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.MergedRegisterSearchResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.InvalidUserInputException;
@@ -11,9 +53,12 @@ import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustri
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.provider.IdAustriaClientAuthCredentialProvider;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.provider.IdAustriaClientAuthMetadataProvider;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.RegisterSearchService;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.RegisterSearchService.RegisterOperationStatus;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.RegisterSearchService.RegisterSearchResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.ReceiveMobilePhoneSignatureResponseTask;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.test.dummy.DummyOA;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.test.dummy.DummyPendingRequest;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.MatchingTaskUtils;
 import at.gv.egiz.eaaf.core.api.data.EaafConstants;
 import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
 import at.gv.egiz.eaaf.core.exceptions.EaafException;
@@ -26,45 +71,7 @@ import at.gv.egiz.eaaf.modules.pvp2.impl.metadata.PvpMetadataResolverFactory;
 import at.gv.egiz.eaaf.modules.pvp2.impl.opensaml.initialize.EaafOpenSaml3xInitializer;
 import at.gv.egiz.eaaf.modules.pvp2.impl.utils.Saml2Utils;
 import at.gv.egiz.eaaf.modules.pvp2.sp.exception.AuthnResponseValidationException;
-import com.google.common.collect.Lists;
 import net.shibboleth.utilities.java.support.xml.ParserPool;
-import org.apache.commons.io.IOUtils;
-import org.apache.commons.lang3.RandomStringUtils;
-import org.jetbrains.annotations.NotNull;
-import org.joda.time.DateTime;
-import org.junit.Before;
-import org.junit.BeforeClass;
-import org.junit.Test;
-import org.junit.runner.RunWith;
-import org.mockito.Mockito;
-import org.mockito.MockitoAnnotations;
-import org.opensaml.core.xml.config.XMLObjectProviderRegistrySupport;
-import org.opensaml.core.xml.io.MarshallingException;
-import org.opensaml.core.xml.util.XMLObjectSupport;
-import org.opensaml.saml.saml2.core.Issuer;
-import org.opensaml.saml.saml2.core.Response;
-import org.springframework.beans.factory.annotation.Autowired;
-import org.springframework.boot.test.mock.mockito.MockBean;
-import org.springframework.mock.web.MockHttpServletRequest;
-import org.springframework.mock.web.MockHttpServletResponse;
-import org.springframework.test.context.ContextConfiguration;
-import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
-import org.springframework.web.context.request.RequestContextHolder;
-import org.springframework.web.context.request.ServletRequestAttributes;
-
-import javax.xml.transform.TransformerException;
-import java.io.IOException;
-import java.io.InputStream;
-import java.nio.charset.StandardCharsets;
-import java.util.Base64;
-import java.util.Collections;
-import java.util.List;
-import java.util.Objects;
-
-import static org.junit.Assert.*;
-import static org.mockito.ArgumentMatchers.any;
-import static org.mockito.ArgumentMatchers.eq;
-import static org.springframework.util.Assert.isInstanceOf;
 
 @RunWith(SpringJUnit4ClassRunner.class)
 @ContextConfiguration(locations = {
@@ -278,9 +285,8 @@ public class ReceiveMobilePhoneSignatureResponseTaskTest {
 
     task.execute(pendingReq, executionContext);
 
-    assertTrue("process not cancelled", executionContext.isProcessCancelled());
-    assertTrue("process not stopped by user", pendingReq.isAbortedByUser());
-    assertFalse("should not authenticated", pendingReq.isAuthenticated());
+    assertEquals("Transition To S16", true, executionContext.get(Constants.TRANSITION_TO_GENERATE_GUI_QUERY_AUSTRIAN_RESIDENCE_TASK));
+
   }
 
   @Test
@@ -327,6 +333,8 @@ public class ReceiveMobilePhoneSignatureResponseTaskTest {
     isInstanceOf(InvalidUserInputException.class, e.getOriginalException().getCause());
   }
 
+  //TODO: implement new test that this test makes no sense any more
+  @Ignore
   @Test
   public void httpPostValidSignedAssertionEidValid_NoRegisterResult() throws Exception {
     setupMetadataResolver();
@@ -334,9 +342,10 @@ public class ReceiveMobilePhoneSignatureResponseTaskTest {
     AuthProcessDataWrapper authProcessData = pendingReq.getSessionData(AuthProcessDataWrapper.class);
     SimpleEidasData eidData = createEidasDataMatchingToSamlResponse().build();
     authProcessData.setGenericDataToSession(Constants.DATA_SIMPLE_EIDAS, eidData);
-    MergedRegisterSearchResult registerSearchResult = new MergedRegisterSearchResult(Collections.emptyList(), Collections.emptyList());
-    Mockito.when(registerSearchService.searchWithBpkZp(eq(BPK_FROM_ID_AUSTRIA))).thenReturn(registerSearchResult);
-
+    RegisterSearchResult registerSearchResult = new RegisterSearchResult(new RegisterOperationStatus(generateRandomProcessId()),
+        Collections.emptyList(), Collections.emptyList());
+    MatchingTaskUtils.storeInitialRegisterResult(pendingReq, registerSearchResult);
+    
     task.execute(pendingReq, executionContext);
 
     AuthProcessDataWrapper session = pendingReq.getSessionData(AuthProcessDataWrapper.class);
@@ -353,8 +362,8 @@ public class ReceiveMobilePhoneSignatureResponseTaskTest {
     AuthProcessDataWrapper authProcessData = pendingReq.getSessionData(AuthProcessDataWrapper.class);
     SimpleEidasData eidData = createEidasDataMatchingToSamlResponse().build();
     authProcessData.setGenericDataToSession(Constants.DATA_SIMPLE_EIDAS, eidData);
-    MergedRegisterSearchResult registerSearchResult = buildResultWithOneMatch();
-    Mockito.when(registerSearchService.searchWithBpkZp(eq(BPK_FROM_ID_AUSTRIA))).thenReturn(registerSearchResult);
+    RegisterSearchResult registerSearchResult = buildResultWithOneMatch();
+    MatchingTaskUtils.storeInitialRegisterResult(pendingReq, registerSearchResult);
 
     task.execute(pendingReq, executionContext);
 
@@ -363,9 +372,13 @@ public class ReceiveMobilePhoneSignatureResponseTaskTest {
     assertEquals("IssueInstant", "2014-03-05T06:39:51Z", session.getIssueInstantString());
     assertNull("Matching BPK", session.getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK));
     assertNull("Transition To S16", executionContext.get(Constants.TRANSITION_TO_GENERATE_GUI_QUERY_AUSTRIAN_RESIDENCE_TASK));
-    Mockito.verify(registerSearchService).step7aKittProcess(any(), eq(registerSearchResult), eq(eidData), eq(pendingReq));
+    
+    //TODO: update this check because this task selects one result from MDS search result before and creates a new element
+    //Mockito.verify(registerSearchService).step7aKittProcess(eq(registerSearchResult), eq(eidData));
   }
 
+  //TODO: implement new test that this test makes no sense any more
+  @Ignore
   @Test
   public void httpPostValidSignedAssertionEidValid_MoreThanOneRegisterResult() throws Exception {
     setupMetadataResolver();
@@ -373,34 +386,63 @@ public class ReceiveMobilePhoneSignatureResponseTaskTest {
     AuthProcessDataWrapper authProcessData = pendingReq.getSessionData(AuthProcessDataWrapper.class);
     SimpleEidasData eidData = createEidasDataMatchingToSamlResponse().build();
     authProcessData.setGenericDataToSession(Constants.DATA_SIMPLE_EIDAS, eidData);
-    MergedRegisterSearchResult registerSearchResult = buildResultWithTwoMatches();
-    Mockito.when(registerSearchService.searchWithBpkZp(eq(BPK_FROM_ID_AUSTRIA))).thenReturn(registerSearchResult);
-
 
     TaskExecutionException e = assertThrows(TaskExecutionException.class,
         () -> task.execute(pendingReq, executionContext));
 
+    
     assertEquals(pendingReq.getPendingRequestId(), e.getPendingRequestID());
     isInstanceOf(AuthnResponseValidationException.class, e.getOriginalException());
     isInstanceOf(ManualFixNecessaryException.class, e.getOriginalException().getCause());
     assertEquals("sp.pvp2.12", ((AuthnResponseValidationException) e.getOriginalException()).getErrorId());
-    AuthProcessDataWrapper session = pendingReq.getSessionData(AuthProcessDataWrapper.class);
+    
+    
+    AuthProcessDataWrapper session = pendingReq.getSessionData(AuthProcessDataWrapper.class);    
     assertNull("Matching BPK", session.getGenericDataFromSession(Constants.DATA_RESULT_MATCHING_BPK));
     assertNull("Transition To S16", executionContext.get(Constants.TRANSITION_TO_GENERATE_GUI_QUERY_AUSTRIAN_RESIDENCE_TASK));
   }
 
   @NotNull
-  private MergedRegisterSearchResult buildResultWithOneMatch() {
-    return new MergedRegisterSearchResult(Collections.singletonList(new RegisterResult(BPK_FROM_ID_AUSTRIA, "bar", "foo", "foo", "bar")), Collections.emptyList());
+  private RegisterSearchResult buildResultWithOneMatch() {
+    return new RegisterSearchResult(new RegisterOperationStatus(generateRandomProcessId()),
+        Collections.singletonList(RegisterResult.builder()
+            .bpk(BPK_FROM_ID_AUSTRIA)
+            .pseudonym(Arrays.asList("bar"))
+            .givenName("foo")
+            .familyName("foo")
+            .dateOfBirth("bar")
+            .build()), 
+        Collections.emptyList());
+    
   }
 
   @NotNull
-  private MergedRegisterSearchResult buildResultWithTwoMatches() {
-    List<RegisterResult> results = Lists.newArrayList(new RegisterResult(BPK_FROM_ID_AUSTRIA, "bar", "foo", "foo", "bar"),
-        new RegisterResult("bpk", "pseudonym", "givenName", "familyName", "dateOfBirth"));
-    return new MergedRegisterSearchResult(results, Collections.emptyList());
+  private RegisterSearchResult buildResultWithTwoMatches() {
+    List<RegisterResult> results = Lists.newArrayList(
+        RegisterResult.builder()
+            .bpk(BPK_FROM_ID_AUSTRIA)
+            .pseudonym(Arrays.asList("bar"))
+            .givenName("foo")
+            .familyName("foo")
+            .dateOfBirth("bar")
+            .build(),
+        RegisterResult.builder()
+            .bpk("bpk")
+            .pseudonym(Arrays.asList("pseudonym"))
+            .givenName("givenName")
+            .familyName("familyName")
+            .dateOfBirth("dateOfBirth")
+            .build());
+    
+    return new RegisterSearchResult(new RegisterOperationStatus(generateRandomProcessId()), 
+        results, Collections.emptyList());
   }
 
+  private BigInteger generateRandomProcessId() {
+    return new BigInteger(RandomStringUtils.randomNumeric(10));
+    
+  }
+  
   private SimpleEidasData.SimpleEidasDataBuilder createEidasDataMatchingToSamlResponse() {
     // data from "/data/Response_with_EID.xml"
     return SimpleEidasData.builder()
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/junit_config_1.properties b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/junit_config_1.properties
index e6741c88..266c78bb 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/junit_config_1.properties
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/junit_config_1.properties
@@ -93,6 +93,13 @@ eidas.ms.auth.eIDAS.node_v2.attributes.requested.representation.4=LegalPerson,tr
 eidas.ms.auth.eIDAS.node_v2.attributes.requested.representation.5=LegalName,true
 
 
+#### matching######
+# ZMR communication
+eidas.ms.auth.eIDAS.zmrclient.endpoint=http://localhost:1234/demoszr
+eidas.ms.auth.eIDAS.zmrclient.req.organisation.behoerdennr=jUnit123456
+
+
+
 ## PVP2 S-Profile end-point configuration
 eidas.ms.pvp2.keystore.path=keys/.....
 eidas.ms.pvp2.keystore.password=
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/junit_config_1_springboot.properties b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/junit_config_1_springboot.properties
index fc0c7241..640138d8 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/junit_config_1_springboot.properties
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/junit_config_1_springboot.properties
@@ -24,6 +24,7 @@ eidas.ms.auth.eIDAS.node_v2.forward.endpoint=http://eidas.node/junit
 eidas.ms.auth.eIDAS.szrclient.useTestService=true
 eidas.ms.auth.eIDAS.szrclient.endpoint.prod=
 eidas.ms.auth.eIDAS.szrclient.endpoint.test=http://localhost:1234/demoszr
+eidas.ms.auth.eIDAS.szrclient.ssl.keyStore.type=jks
 eidas.ms.auth.eIDAS.szrclient.ssl.keyStore.path=keys/junit.jks
 eidas.ms.auth.eIDAS.szrclient.ssl.keyStore.password=password
 eidas.ms.auth.eIDAS.szrclient.ssl.trustStore.path=
@@ -43,6 +44,18 @@ eidas.ms.auth.eIDAS.szrclient.debug.logfullmessages=true
 eidas.ms.auth.eIDAS.szrclient.debug.useDummySolution=false
 
 
+#### matching######
+# ZMR communication
+eidas.ms.auth.eIDAS.zmrclient.endpoint=http://localhost:1234/demoszr
+eidas.ms.auth.eIDAS.zmrclient.ssl.keyStore.type=jks
+eidas.ms.auth.eIDAS.zmrclient.ssl.keyStore.path=keys/junit.jks
+eidas.ms.auth.eIDAS.zmrclient.ssl.keyStore.password=password
+eidas.ms.auth.eIDAS.zmrclient.ssl.trustStore.path=
+eidas.ms.auth.eIDAS.zmrclient.ssl.trustStore.password=
+
+eidas.ms.auth.eIDAS.zmrclient.req.organisation.behoerdennr=jUnit123456
+
+
 
 ## PVP2 S-Profile end-point configuration
 eidas.ms.pvp2.keystore.type=jks
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/junit_config_2.properties b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/junit_config_2.properties
index 7c5e5a40..c3cec434 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/junit_config_2.properties
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/junit_config_2.properties
@@ -86,6 +86,12 @@ eidas.ms.auth.eIDAS.node_v2.attributes.requested.representation.4=LegalPerson,tr
 eidas.ms.auth.eIDAS.node_v2.attributes.requested.representation.5=LegalName,true
 
 
+#### matching######
+# ZMR communication
+eidas.ms.auth.eIDAS.zmrclient.endpoint=http://localhost:1234/demoszr
+eidas.ms.auth.eIDAS.zmrclient.req.organisation.behoerdennr=jUnit123456
+
+
 ## PVP2 S-Profile end-point configuration
 eidas.ms.pvp2.keystore.path=keys/.....
 eidas.ms.pvp2.keystore.password=
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/junit_config_3.properties b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/junit_config_3.properties
index c830d447..3cd9fcb4 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/junit_config_3.properties
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/junit_config_3.properties
@@ -88,6 +88,12 @@ eidas.ms.auth.eIDAS.node_v2.attributes.requested.representation.4=LegalPerson,tr
 eidas.ms.auth.eIDAS.node_v2.attributes.requested.representation.5=LegalName,true
 
 
+#### matching######
+# ZMR communication
+eidas.ms.auth.eIDAS.zmrclient.endpoint=http://localhost:1234/demoszr
+eidas.ms.auth.eIDAS.zmrclient.req.organisation.behoerdennr=jUnit123456
+
+
 ## PVP2 S-Profile end-point configuration
 eidas.ms.pvp2.keystore.path=keys/.....
 eidas.ms.pvp2.keystore.password=
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/junit_config_4.properties b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/junit_config_4.properties
index 01e72069..82f9a798 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/junit_config_4.properties
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/junit_config_4.properties
@@ -86,6 +86,12 @@ eidas.ms.auth.eIDAS.node_v2.attributes.requested.representation.4=LegalPerson,tr
 eidas.ms.auth.eIDAS.node_v2.attributes.requested.representation.5=LegalName,true
 
 
+#### matching######
+# ZMR communication
+eidas.ms.auth.eIDAS.zmrclient.endpoint=http://localhost:1234/demoszr
+eidas.ms.auth.eIDAS.zmrclient.req.organisation.behoerdennr=jUnit123456
+
+
 ## PVP2 S-Profile end-point configuration
 eidas.ms.pvp2.keystore.path=keys/.....
 eidas.ms.pvp2.keystore.password=
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/junit_config_de_attributes.properties b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/junit_config_de_attributes.properties
index 6b235667..5261aef9 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/junit_config_de_attributes.properties
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/junit_config_de_attributes.properties
@@ -88,6 +88,12 @@ eidas.ms.auth.eIDAS.node_v2.attributes.requested.representation.4=LegalPerson,tr
 eidas.ms.auth.eIDAS.node_v2.attributes.requested.representation.5=LegalName,true
 
 
+#### matching######
+# ZMR communication
+eidas.ms.auth.eIDAS.zmrclient.endpoint=http://localhost:1234/demoszr
+eidas.ms.auth.eIDAS.zmrclient.req.organisation.behoerdennr=jUnit123456
+
+
 ## PVP2 S-Profile end-point configuration
 eidas.ms.pvp2.keystore.path=keys/.....
 eidas.ms.pvp2.keystore.password=
-- 
cgit v1.2.3


From 6e1a69773284177a0f6c7233c4bcdf7f4bd96681 Mon Sep 17 00:00:00 2001
From: Thomas <>
Date: Tue, 15 Jun 2021 18:15:19 +0200
Subject: further optimizations and bug fixing in matching code

---
 .../specific/modules/auth/eidas/v2/Constants.java  |  10 +-
 .../auth/eidas/v2/clients/szr/SzrClient.java       | 157 ++++++--
 .../auth/eidas/v2/clients/zmr/IZmrClient.java      |   5 +-
 .../auth/eidas/v2/clients/zmr/ZmrSoapClient.java   |  15 +-
 .../auth/eidas/v2/dao/MatchedPersonResult.java     |  41 +++
 .../modules/auth/eidas/v2/dao/RegisterResult.java  |   2 +-
 .../modules/auth/eidas/v2/dao/SimpleEidasData.java |  17 +-
 .../handler/DeSpecificDetailSearchProcessor.java   |  20 +-
 .../eidas/v2/service/RegisterSearchService.java    |  19 +-
 .../eidas/v2/tasks/CreateIdentityLinkTask.java     | 165 +++------
 .../eidas/v2/tasks/CreateNewErnpEntryTask.java     |  39 +-
 .../auth/eidas/v2/tasks/InitialSearchTask.java     |  33 +-
 .../ReceiveAustrianResidenceGuiResponseTask.java   |  12 +-
 .../ReceiveMobilePhoneSignatureResponseTask.java   |  12 +-
 .../ReceiveOtherLoginMethodGuiResponseTask.java    |   2 +-
 .../auth/eidas/v2/utils/MatchingTaskUtils.java     |  45 ++-
 .../modules/auth/eidas/v2/zmr/DummyZmrClient.java  |   3 +-
 .../modules/auth/eidas/v2/test/dummy/DummyOA.java  |  18 +-
 .../DeSpecificDetailSearchProcessorTest.java       | 105 ++++++
 .../ItSpecificDetailSearchProcessorTes.java        |  84 +++++
 .../tasks/CreateIdentityLinkTaskEidNewTest.java    | 165 ++++++++-
 .../v2/test/tasks/CreateIdentityLinkTaskTest.java  | 138 ++++++-
 .../eidas/v2/test/tasks/InitialSearchTaskTest.java | 409 ++++++++++++++-------
 ...eceiveAustrianResidenceGuiResponseTaskTest.java |   8 +-
 ...eceiveMobilePhoneSignatureResponseTaskTest.java |   4 +-
 25 files changed, 1130 insertions(+), 398 deletions(-)
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/MatchedPersonResult.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/handler/DeSpecificDetailSearchProcessorTest.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/handler/ItSpecificDetailSearchProcessorTes.java

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java
index 3e20a132..48c114a8 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java
@@ -49,14 +49,14 @@ public class Constants {
   public static final String DATA_SIMPLE_EIDAS = "matching_simple_eidas_data";
 
   /**
-   * Stored after Step 2 from Matching Concept, first results from search with Person Identifier.
+   * Stored intermediate mathing results where matching is still on-going.
    */
-  public static final String DATA_INITIAL_REGISTER_RESULT = "matching_initial_register_result";
+  public static final String DATA_INTERMEDIATE_RESULT = "matching_intermediate_result";
 
   /**
    * Stored after Step 8 from Matching Concept, results from search in registers with MDS.
    */
-  public static final String DATA_FURTHER_REGISTER_RESULT = "matching_further_register_result";
+  public static final String DATA_PERSON_MATCH_RESULT = "matching_result";
 
   // templates for post-binding forwarding
   public static final String TEMPLATE_POST_FORWARD_NAME = "eidas_node_forward.html";
@@ -224,6 +224,10 @@ public class Constants {
   
   public static final String eIDAS_ATTRURN_PERSONALIDENTIFIER = 
       eIDAS_ATTRURN_PREFIX_NATURAL + eIDAS_ATTR_PERSONALIDENTIFIER;
+  public static final String eIDAS_ATTRURN_PLACEOFBIRTH = 
+      eIDAS_ATTRURN_PREFIX_NATURAL + eIDAS_ATTR_PLACEOFBIRTH;
+  public static final String eIDAS_ATTRURN_BIRTHNAME = 
+      eIDAS_ATTRURN_PREFIX_NATURAL + eIDAS_ATTR_BIRTHNAME;
   
   
   public static final String eIDAS_REQ_PARAM_SECTOR_PUBLIC = "public";
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/clients/szr/SzrClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/clients/szr/SzrClient.java
index 2230f30a..397cbe46 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/clients/szr/SzrClient.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/clients/szr/SzrClient.java
@@ -60,11 +60,14 @@ import com.fasterxml.jackson.databind.ObjectMapper;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.clients.AbstractSoapClient;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.clients.AbstractSoapClient.HttpClientConfig.HttpClientConfigBuilder;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.MatchedPersonResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.SzrCommunicationException;
 import at.gv.e_government.reference.namespace.persondata._20020228.AlternativeNameType;
+import at.gv.e_government.reference.namespace.persondata._20020228.IdentificationType;
 import at.gv.e_government.reference.namespace.persondata._20020228.PersonNameType;
 import at.gv.e_government.reference.namespace.persondata._20020228.PhysicalPersonType;
+import at.gv.egiz.eaaf.core.api.data.EaafConstants;
 import at.gv.egiz.eaaf.core.api.data.PvpAttributeDefinitions;
 import at.gv.egiz.eaaf.core.api.data.XmlNamespaceConstants;
 import at.gv.egiz.eaaf.core.exceptions.EaafConfigurationException;
@@ -122,55 +125,38 @@ public class SzrClient extends AbstractSoapClient {
       final GetIdentityLinkEidas getIdl = new GetIdentityLinkEidas();
       getIdl.setPersonInfo(generateSzrRequest(eidData));
 
-      final JAXBContext jaxbContext = JAXBContext.newInstance(ObjectFactory.class);
-      final Marshaller jaxbMarshaller = jaxbContext.createMarshaller();
+      return getIdentityLinkGeneric(getIdl);
 
-      final ByteArrayOutputStream outputStream = new ByteArrayOutputStream();
-      jaxbMarshaller.marshal(getIdl, outputStream);
-      outputStream.flush();
-
-      final Source source = new StreamSource(new ByteArrayInputStream(outputStream.toByteArray()));
-      outputStream.close();
-
-      log.trace("Requesting SZR ... ");
-      final Source response = dispatch.invoke(source);
-      log.trace("Receive RAW response from SZR");
-
-      final byte[] szrResponse = sourceToByteArray(response);
-      final GetIdentityLinkEidasResponse jaxbElement = (GetIdentityLinkEidasResponse) jaxbContext
-          .createUnmarshaller().unmarshal(new ByteArrayInputStream(szrResponse));
-
-      // build response
-      log.trace(new String(szrResponse, StandardCharsets.UTF_8));
-
-      // ok, we have success
-      final Document doc = DomUtils.parseDocument(
-          new ByteArrayInputStream(szrResponse),
-          true,
-          XmlNamespaceConstants.ALL_SCHEMA_LOCATIONS + " " + Constants.SZR_SCHEMA_LOCATIONS,
-          null, null);
-      final String xpathExpression = "//saml:Assertion";
-      final Element nsNode = doc.createElementNS("urn:oasis:names:tc:SAML:1.0:assertion", "saml:NSNode");
+    } catch (final Exception e) {
+      log.warn("SZR communication FAILED. Reason: " + e.getMessage(), e);
+      throw new SzrCommunicationException("ernb.02", new Object[]{e.getMessage()}, e);
 
-      log.trace("Selecting signed doc " + xpathExpression);
-      final Element documentNode = (Element) XPathAPI.selectSingleNode(doc,
-          xpathExpression, nsNode);
-      log.trace("Signed document: " + DomUtils.serializeNode(documentNode));
+    }
+  }
 
-      final IdentityLinkType idl = new IdentityLinkType();
-      idl.setAssertion(documentNode);
-      idl.setPersonInfo(jaxbElement.getGetIdentityLinkReturn().getPersonInfo());
+  /**
+   * Get IdentityLink of a person.
+   *
+   *
+   * @param matchedPersonData eID information of an already matched person.
+   * @return IdentityLink
+   * @throws SzrCommunicationException In case of a SZR error
+   */
+  public IdentityLinkType getIdentityLinkInRawMode(MatchedPersonResult matchedPersonData) 
+      throws SzrCommunicationException {
+    try {
+      final GetIdentityLinkEidas getIdl = new GetIdentityLinkEidas();
+      getIdl.setPersonInfo(generateSzrRequest(matchedPersonData));
 
-      return idl;
+      return getIdentityLinkGeneric(getIdl);
 
     } catch (final Exception e) {
       log.warn("SZR communication FAILED. Reason: " + e.getMessage(), e);
       throw new SzrCommunicationException("ernb.02", new Object[]{e.getMessage()}, e);
 
     }
-
   }
-
+    
   /**
    * Get bPK of person.
    *
@@ -247,7 +233,33 @@ public class SzrClient extends AbstractSoapClient {
     return resp;
 
   }
+  
+  /**
+   * Request a encrypted baseId from SZR.
+   * 
+   * @param matchedPersonData eID information of an already matched person.
+   * @return encrypted baseId
+   * @throws SzrCommunicationException In case of a SZR error
+   */
+  public String getEncryptedStammzahl(MatchedPersonResult matchedPersonData) throws SzrCommunicationException {
+    final String resp;
+    try {
+      resp = this.szr.getStammzahlEncrypted(generateSzrRequest(matchedPersonData), false);
+      
+    } catch (SZRException_Exception e) {
+      throw new SzrCommunicationException("ernb.02", new Object[]{e.getMessage()}, e);
+      
+    }
+
+    if (StringUtils.isEmpty(resp)) {
+      throw new SzrCommunicationException("ernb.01", new Object[]{"Stammzahl response empty"}); // TODO error handling
+      
+    }
 
+    return resp;
+    
+  }
+  
   /**
    * Sign an eidasBind data-structure that combines vsz with user's pubKey and E-ID status.
    *
@@ -300,8 +312,29 @@ public class SzrClient extends AbstractSoapClient {
     }
   }
 
+  private PersonInfoType generateSzrRequest(MatchedPersonResult matchedPersonData) {
+    log.trace("Starting connecting SZR Gateway");
+    final PersonInfoType personInfo = new PersonInfoType();
+    final PersonNameType personName = new PersonNameType();
+    final PhysicalPersonType naturalPerson = new PhysicalPersonType();
+    IdentificationType bpk = new IdentificationType();
+    
+    naturalPerson.setName(personName);
+    personInfo.setPerson(naturalPerson);
+    naturalPerson.setIdentification(bpk);
+    
+    // person information
+    personName.setFamilyName(matchedPersonData.getFamilyName());
+    personName.setGivenName(matchedPersonData.getGivenName());
+    naturalPerson.setDateOfBirth(matchedPersonData.getDateOfBirth());
+    bpk.setValue(matchedPersonData.getBpk());
+    bpk.setType(EaafConstants.URN_PREFIX_CDID + "ZP");    
+    
+    return personInfo;
+  }
+  
   private PersonInfoType generateSzrRequest(SimpleEidasData eidData) {
-    log.debug("Starting connecting SZR Gateway");
+    log.trace("Starting connecting SZR Gateway");
     final PersonInfoType personInfo = new PersonInfoType();
     final PersonNameType personName = new PersonNameType();
     final PhysicalPersonType naturalPerson = new PhysicalPersonType();
@@ -315,6 +348,8 @@ public class SzrClient extends AbstractSoapClient {
     personName.setFamilyName(eidData.getFamilyName());
     personName.setGivenName(eidData.getGivenName());
     naturalPerson.setDateOfBirth(eidData.getDateOfBirth());
+    
+    //TODO: need to be updated to new eIDAS document interface!!!!
     eDocument.setIssuingCountry(eidData.getCitizenCountryCode());
     eDocument.setDocumentNumber(eidData.getPseudonym());
 
@@ -351,6 +386,50 @@ public class SzrClient extends AbstractSoapClient {
     return personInfo;
   }
 
+  private IdentityLinkType getIdentityLinkGeneric(GetIdentityLinkEidas getIdl) throws Exception {
+    final JAXBContext jaxbContext = JAXBContext.newInstance(ObjectFactory.class);
+    final Marshaller jaxbMarshaller = jaxbContext.createMarshaller();
+
+    final ByteArrayOutputStream outputStream = new ByteArrayOutputStream();
+    jaxbMarshaller.marshal(getIdl, outputStream);
+    outputStream.flush();
+
+    final Source source = new StreamSource(new ByteArrayInputStream(outputStream.toByteArray()));
+    outputStream.close();
+
+    log.trace("Requesting SZR ... ");
+    final Source response = dispatch.invoke(source);
+    log.trace("Receive RAW response from SZR");
+
+    final byte[] szrResponse = sourceToByteArray(response);
+    final GetIdentityLinkEidasResponse jaxbElement = (GetIdentityLinkEidasResponse) jaxbContext
+        .createUnmarshaller().unmarshal(new ByteArrayInputStream(szrResponse));
+
+    // build response
+    log.trace(new String(szrResponse, StandardCharsets.UTF_8));
+
+    // ok, we have success
+    final Document doc = DomUtils.parseDocument(
+        new ByteArrayInputStream(szrResponse),
+        true,
+        XmlNamespaceConstants.ALL_SCHEMA_LOCATIONS + " " + Constants.SZR_SCHEMA_LOCATIONS,
+        null, null);
+    final String xpathExpression = "//saml:Assertion";
+    final Element nsNode = doc.createElementNS("urn:oasis:names:tc:SAML:1.0:assertion", "saml:NSNode");
+
+    log.trace("Selecting signed doc " + xpathExpression);
+    final Element documentNode = (Element) XPathAPI.selectSingleNode(doc,
+        xpathExpression, nsNode);
+    log.trace("Signed document: " + DomUtils.serializeNode(documentNode));
+
+    final IdentityLinkType idl = new IdentityLinkType();
+    idl.setAssertion(documentNode);
+    idl.setPersonInfo(jaxbElement.getGetIdentityLinkReturn().getPersonInfo());
+
+    return idl;
+    
+  }
+  
   @PostConstruct
   private void initialize() throws EaafConfigurationException {
     log.info("Starting SZR-Client initialization .... ");
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/clients/zmr/IZmrClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/clients/zmr/IZmrClient.java
index 18bcbacc..e98573d4 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/clients/zmr/IZmrClient.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/clients/zmr/IZmrClient.java
@@ -41,12 +41,13 @@ public interface IZmrClient {
    * 
    * @param zmrProzessId ProcessId from ZMR or <code>null</code> if no processId exists
    * @param personIdentifier Full eIDAS personal identifier with prefix
+   * @param citizenCountryCode CountryCode of the eIDAS proxy-service
    * @return Search result but never <code>null</code>
    * @throws EidasSAuthenticationException In case of a communication error 
    */
   @Nonnull
-  ZmrRegisterResult searchWithPersonIdentifier(@Nullable BigInteger zmrProzessId, @Nonnull String personIdentifier) 
-      throws EidasSAuthenticationException;
+  ZmrRegisterResult searchWithPersonIdentifier(@Nullable BigInteger zmrProzessId, @Nonnull String personIdentifier, 
+      @Nonnull String citizenCountryCode) throws EidasSAuthenticationException;
 
   /**
    * Search person based on eIDSA MDS information.
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/clients/zmr/ZmrSoapClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/clients/zmr/ZmrSoapClient.java
index 014d202b..60e88dca 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/clients/zmr/ZmrSoapClient.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/clients/zmr/ZmrSoapClient.java
@@ -24,7 +24,6 @@ import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidasSAuthenticationException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.ZmrCommunicationException;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.EidasResponseUtils;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.VersionHolder;
 import at.gv.bmi.namespace.zmr_su.base._20040201.ClientInfoType;
 import at.gv.bmi.namespace.zmr_su.base._20040201.Organisation;
@@ -100,8 +99,8 @@ public class ZmrSoapClient extends AbstractSoapClient implements IZmrClient {
   }
   
   @Override
-  public ZmrRegisterResult searchWithPersonIdentifier(BigInteger zmrProzessId, String personIdentifier)
-      throws EidasSAuthenticationException {
+  public ZmrRegisterResult searchWithPersonIdentifier(BigInteger zmrProzessId, String personPseudonym,
+      String citizenCountryCode) throws EidasSAuthenticationException {
 
     try {
       // build search request
@@ -113,7 +112,7 @@ public class ZmrSoapClient extends AbstractSoapClient implements IZmrClient {
       final EidasSuchdatenType eidasInfos = new EidasSuchdatenType();
       searchPersonReq.setEidasSuchdaten(eidasInfos);
       eidasInfos.setEidasArt(Constants.eIDAS_ATTRURN_PERSONALIDENTIFIER);
-      eidasInfos.setEidasNummer(personIdentifier);
+      eidasInfos.setEidasNummer(personPseudonym);
 
       // set work-flow client information
       req.setWorkflowInfoClient(generateWorkFlowInfos(PROCESS_SEARCH_PERSONAL_IDENTIFIER, null));
@@ -127,9 +126,7 @@ public class ZmrSoapClient extends AbstractSoapClient implements IZmrClient {
       final ResponseType resp = zmrClient.service(req, null);
 
       // parse ZMR response
-      return processZmrResponse(resp, EidasResponseUtils.parseEidasPersonalIdentifier(personIdentifier)
-          .getFirst(),
-          true, PROCESS_SEARCH_PERSONAL_IDENTIFIER);
+      return processZmrResponse(resp, citizenCountryCode, true, PROCESS_SEARCH_PERSONAL_IDENTIFIER);
 
     } catch (final ServiceFault e) {
       final String errorMsg = extractReasonFromError(e);
@@ -496,9 +493,9 @@ public class ZmrSoapClient extends AbstractSoapClient implements IZmrClient {
         .dateOfBirth(person.getNatuerlichePerson().getGeburtsdatum())
         .bpk(extractBpkZp(person.getNatuerlichePerson()))
         .placeOfBirth(selectSingleEidasDocument(person, citizenCountryCode,
-            Constants.eIDAS_ATTRURN_PERSONALIDENTIFIER))
+            Constants.eIDAS_ATTRURN_PLACEOFBIRTH))
         .birthName(selectSingleEidasDocument(person, citizenCountryCode,
-            Constants.eIDAS_ATTRURN_PERSONALIDENTIFIER))        
+            Constants.eIDAS_ATTRURN_BIRTHNAME))        
         .build();
 
   }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/MatchedPersonResult.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/MatchedPersonResult.java
new file mode 100644
index 00000000..1e8fcecf
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/MatchedPersonResult.java
@@ -0,0 +1,41 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.dao;
+
+import lombok.Builder;
+import lombok.Getter;
+
+/**
+ * Information about a natural person that is already matched.
+ * 
+ * @author tlenz
+ *
+ */
+@Getter
+@Builder
+public class MatchedPersonResult {
+
+  /**
+   * Matched person result from matching result.
+   * 
+   * @param matchingResult Result of the matching process
+   * @param citizenCountryCode Country-Code of the eIDAS Proxy-Service 
+   */
+  public static MatchedPersonResult generateFormMatchingResult(RegisterResult matchingResult, 
+      String citizenCountryCode) {
+    return MatchedPersonResult.builder()
+        .familyName(matchingResult.getFamilyName())
+        .givenName(matchingResult.getGivenName())
+        .dateOfBirth(matchingResult.getDateOfBirth())
+        .bpk(matchingResult.getBpk())
+        .countryCode(citizenCountryCode)
+        .build();                
+  }
+    
+  private final String countryCode;
+  private final String givenName;
+  private final String familyName;
+  private final String dateOfBirth;
+  private final String bpk;
+  
+  private String vsz;
+  
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/RegisterResult.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/RegisterResult.java
index 4959d72f..aa82d806 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/RegisterResult.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/RegisterResult.java
@@ -32,7 +32,7 @@ import lombok.Getter;
 @Builder
 @Getter
 public class RegisterResult {
-
+    
   // MDS
   private final List<String> pseudonym;
   private final String givenName;
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleEidasData.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleEidasData.java
index ab84a45f..cedf01e3 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleEidasData.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleEidasData.java
@@ -26,7 +26,6 @@ package at.asitplus.eidas.specific.modules.auth.eidas.v2.dao;
 import org.apache.commons.lang3.builder.EqualsBuilder;
 
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.WorkflowException;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.RegisterSearchService.RegisterSearchResult;
 import at.gv.e_government.reference.namespace.persondata._20020228.PostalAddressType;
 import lombok.Builder;
 import lombok.Data;
@@ -67,20 +66,20 @@ public class SimpleEidasData {
    * @return true or false depending of the data matches
    * @throws WorkflowException if multiple results have been found
    */
-  public boolean equalsRegisterData(RegisterSearchResult result) throws WorkflowException {
+  public boolean equalsRegisterData(RegisterResult result) throws WorkflowException {
     /*TODO: maybe this is check is not valid, because only the minimum data-set (personalIdentifer, givenName, 
      *      familyName, dateOfBirth) has to be always available. Any other attributes are optional.
      *      This check will always evaluate to false if register has more information as current eIDAS process!!! 
      */
     
     return new EqualsBuilder()
-        .append(result.getResult().getGivenName(), givenName)
-        .append(result.getResult().getFamilyName(), familyName)
-        .append(result.getResult().getDateOfBirth(), dateOfBirth)
-        .append(result.getResult().getPlaceOfBirth(), placeOfBirth)
-        .append(result.getResult().getBirthName(), birthName)
-        .append(result.getResult().getTaxNumber(), taxNumber)
-        .isEquals() && result.getResult().getPseudonym().stream()
+        .append(result.getGivenName(), givenName)
+        .append(result.getFamilyName(), familyName)
+        .append(result.getDateOfBirth(), dateOfBirth)
+        .append(result.getPlaceOfBirth(), placeOfBirth)
+        .append(result.getBirthName(), birthName)
+        .append(result.getTaxNumber(), taxNumber)
+        .isEquals() && result.getPseudonym().stream()
             .filter(el -> el.equals(pseudonym))
             .findFirst()
             .isPresent();
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/DeSpecificDetailSearchProcessor.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/DeSpecificDetailSearchProcessor.java
index 802fde14..471cb115 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/DeSpecificDetailSearchProcessor.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/DeSpecificDetailSearchProcessor.java
@@ -29,6 +29,8 @@ import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
 import at.gv.bmi.namespace.zmr_su.zmr._20040201.EidasSuchdatenType;
 import at.gv.bmi.namespace.zmr_su.zmr._20040201.PersonSuchenRequest;
+import at.gv.e_government.reference.namespace.persondata.de._20040201.NatuerlichePersonTyp;
+import at.gv.e_government.reference.namespace.persondata.de._20040201.PersonenNameTyp;
 
 public class DeSpecificDetailSearchProcessor implements CountrySpecificDetailSearchProcessor {
 
@@ -46,15 +48,23 @@ public class DeSpecificDetailSearchProcessor implements CountrySpecificDetailSea
   }
 
   @Override
-  public PersonSuchenRequest generateSearchRequest(SimpleEidasData eidData) {
-    
+  public PersonSuchenRequest generateSearchRequest(SimpleEidasData eidData) {    
     PersonSuchenRequest req = new PersonSuchenRequest();    
-    EidasSuchdatenType eidasInfos = new EidasSuchdatenType();
-    req.setEidasSuchdaten(eidasInfos);
+        
+    //set basic MDS information
+    final NatuerlichePersonTyp searchNatPerson = new NatuerlichePersonTyp();
+    req.setNatuerlichePerson(searchNatPerson);
+    final PersonenNameTyp searchNatPersonName = new PersonenNameTyp();
+    searchNatPerson.setPersonenName(searchNatPersonName);
+    searchNatPersonName.setFamilienname(eidData.getFamilyName());
+    searchNatPersonName.setVorname(eidData.getGivenName());
+    searchNatPerson.setGeburtsdatum(eidData.getDateOfBirth());
     
     
     //TODO: how we can search for more than one eIDAS attribute as a Set
-    
+    EidasSuchdatenType eidasInfos = new EidasSuchdatenType();
+    req.setEidasSuchdaten(eidasInfos);
+
     
     return req;
   }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/service/RegisterSearchService.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/service/RegisterSearchService.java
index 166ffafb..bcee0f0f 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/service/RegisterSearchService.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/service/RegisterSearchService.java
@@ -21,7 +21,6 @@ import at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.CountrySpecificD
 import lombok.AllArgsConstructor;
 import lombok.Getter;
 import lombok.RequiredArgsConstructor;
-import lombok.Setter;
 import lombok.extern.slf4j.Slf4j;
 
 @Slf4j
@@ -60,7 +59,7 @@ public class RegisterSearchService {
       throws WorkflowException {
     try {
       final ZmrRegisterResult resultsZmr = zmrClient.searchWithPersonIdentifier(
-          null, eidasData.getPersonalIdentifier());            
+          null, eidasData.getPseudonym(), eidasData.getCitizenCountryCode());            
       final List<RegisterResult> resultsErnp = ernpClient.searchWithPersonIdentifier(
           eidasData.getPersonalIdentifier());
             
@@ -235,14 +234,7 @@ public class RegisterSearchService {
    */
   @Getter
   @RequiredArgsConstructor
-  public static class RegisterSearchResult {
-    
-    /**
-     * Mark the register result finished.
-     */
-    @Setter
-    private boolean matchingFinished = false;
-    
+  public static class RegisterSearchResult {   
     /**
      * Operation status for this result.
      */
@@ -272,12 +264,11 @@ public class RegisterSearchService {
      * Verifies that there is only one match and returns the bpk.
      *
      * @return bpk bpk of the match
-     * @throws WorkflowException if multiple results have been found or matching is not marked as finished
+     * @throws WorkflowException if multiple results have been found
      */
     public String getBpk() throws WorkflowException {
-      if (getResultCount() != 1 || !matchingFinished) {
-        throw new WorkflowException("readRegisterResults", 
-            matchingFinished ? "getResultCount() != 1" : "matching prozess not finished yet");
+      if (getResultCount() != 1) {
+        throw new WorkflowException("readRegisterResults", "getResultCount() != 1");
         
       }
       return getResult().getBpk();
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateIdentityLinkTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateIdentityLinkTask.java
index 41bf4409..35717ae0 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateIdentityLinkTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateIdentityLinkTask.java
@@ -25,18 +25,13 @@ package at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks;
 
 import java.io.IOException;
 import java.io.InputStream;
-import java.util.HashMap;
 import java.util.List;
-import java.util.Map;
 
 import javax.servlet.http.HttpServletRequest;
 import javax.servlet.http.HttpServletResponse;
 import javax.xml.parsers.ParserConfigurationException;
 
-import org.apache.commons.lang3.StringUtils;
-import org.jetbrains.annotations.NotNull;
 import org.jetbrains.annotations.Nullable;
-import org.joda.time.DateTime;
 import org.jose4j.lang.JoseException;
 import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.stereotype.Component;
@@ -45,19 +40,17 @@ import org.w3c.dom.Node;
 import org.xml.sax.SAXException;
 
 import com.fasterxml.jackson.core.JsonProcessingException;
-import com.google.common.collect.ImmutableMap;
-import com.google.common.collect.ImmutableSet;
 
 import at.asitplus.eidas.specific.connector.MsConnectorEventCodes;
 import at.asitplus.eidas.specific.connector.MsEidasNodeConstants;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.clients.szr.SzrClient;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.MatchedPersonResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidasAttributeException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.SzrCommunicationException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.AuthBlockSigningService;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.ICcSpecificEidProcessingService;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.EidasResponseUtils;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.MatchingTaskUtils;
 import at.gv.egiz.eaaf.core.api.data.EaafConstants;
 import at.gv.egiz.eaaf.core.api.data.PvpAttributeDefinitions;
 import at.gv.egiz.eaaf.core.api.idp.IConfiguration;
@@ -66,17 +59,13 @@ import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
 import at.gv.egiz.eaaf.core.exceptions.EaafException;
 import at.gv.egiz.eaaf.core.exceptions.EaafStorageException;
 import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
+import at.gv.egiz.eaaf.core.impl.builder.BpkBuilder;
 import at.gv.egiz.eaaf.core.impl.data.Pair;
-import at.gv.egiz.eaaf.core.impl.idp.auth.builder.BpkBuilder;
 import at.gv.egiz.eaaf.core.impl.idp.auth.data.AuthProcessDataWrapper;
 import at.gv.egiz.eaaf.core.impl.idp.auth.data.SimpleIdentityLinkAssertionParser;
 import at.gv.egiz.eaaf.core.impl.idp.auth.modules.AbstractAuthServletTask;
 import at.gv.egiz.eaaf.core.impl.utils.DomUtils;
 import at.gv.egiz.eaaf.core.impl.utils.XPathUtils;
-import eu.eidas.auth.commons.attribute.AttributeDefinition;
-import eu.eidas.auth.commons.attribute.AttributeValue;
-import eu.eidas.auth.commons.light.ILightResponse;
-import eu.eidas.auth.commons.protocol.eidas.impl.PostalAddress;
 import lombok.Data;
 import lombok.extern.slf4j.Slf4j;
 import szrservices.IdentityLinkType;
@@ -112,8 +101,6 @@ public class CreateIdentityLinkTask extends AbstractAuthServletTask {
   @Autowired
   private SzrClient szrClient;
   @Autowired
-  private ICcSpecificEidProcessingService eidPostProcessor;
-  @Autowired
   private AuthBlockSigningService authBlockSigner;
 
   private static final String EID_STATUS = "urn:eidgvat:eid.status.eidas";
@@ -129,63 +116,68 @@ public class CreateIdentityLinkTask extends AbstractAuthServletTask {
   @Override
   public void execute(ExecutionContext executionContext, HttpServletRequest request, HttpServletResponse response)
       throws TaskExecutionException {
-    try {
+    try {      
       
-      /*TODO: needs refactoring because we has to be operate on national identifiers 
-       *      because matching and insert ERnP was already done!!        
+      /*TODO: needs more re-factoring if we finalize CreateNewErnpEntryTask and we know how add entries into ERnP
+       *      Maybe, we can fully replace eidData by matchedPersonData, 
+       *      because matchedPersonData holds the result after a successful matching process.
+       *      
+       *      Currently, we only add a work-around to operate without new ERnP implementation.
        */
-      final ILightResponse eidasResponse = getAuthProcessDataWrapper()
-          .getGenericDataFromSession(Constants.DATA_FULL_EIDAS_RESPONSE, ILightResponse.class);
-      final Map<String, Object> eidasAttributes = convertEidasAttrToSimpleMap(
-          eidasResponse.getAttributes().getAttributeMap());                  
-      final SimpleEidasData eidData = eidPostProcessor.postProcess(eidasAttributes);
-      //final SimpleEidasData eidData =
-      //    getAuthProcessDataWrapper().getGenericDataFromSession(Constants.DATA_SIMPLE_EIDAS, SimpleEidasData.class);
-      final String personalIdentifier = (String) eidasAttributes.get(Constants.eIDAS_ATTR_PERSONALIDENTIFIER);
+      final SimpleEidasData eidData = MatchingTaskUtils.getInitialEidasData(pendingReq);      
+      MatchedPersonResult matchedPersonData = MatchingTaskUtils.getFinalMatchingResult(pendingReq);
+      
       writeMdsLogInformation(eidData);
 
       if (basicConfig.getBasicConfigurationBoolean(Constants.CONIG_PROPS_EIDAS_SZRCLIENT_DEBUG_USEDUMMY, false)) {
         buildDummyIdentityLink(eidData);
+        
       } else {
         //request SZR based on IDL or E-ID mode
         if (pendingReq.getServiceProviderConfiguration()
             .isConfigurationValue(MsEidasNodeConstants.PROP_CONFIG_SP_NEW_EID_MODE, false)) {
-          executeEidMode(eidData, personalIdentifier);
+          executeEidMode(eidData, matchedPersonData);
+          
         } else {
-          executeIdlMode(eidData, personalIdentifier);
-        }
+          executeIdlMode(eidData, matchedPersonData);
+          
+        }        
       }
+      
       storeGenericInfoToSession(eidData);
       requestStoreage.storePendingRequest(pendingReq);
+      
     } catch (final EidasAttributeException e) {
       throw new TaskExecutionException(pendingReq, "Minimum required eIDAS attributeset not found.", e);
+      
     } catch (final EaafException e) {
       throw new TaskExecutionException(pendingReq, "IdentityLink generation for foreign person FAILED.", e);
+      
     } catch (final Exception e) {
       log.error("IdentityLink generation for foreign person FAILED.", e);
       throw new TaskExecutionException(pendingReq, "IdentityLink generation for foreign person FAILED.", e);
+      
     }
   }
 
   private void storeGenericInfoToSession(SimpleEidasData eidData) throws EaafStorageException {
-    AuthProcessDataWrapper authProcessData = getAuthProcessDataWrapper();
+    AuthProcessDataWrapper authProcessData = MatchingTaskUtils.getAuthProcessDataWrapper(pendingReq);
     authProcessData.setForeigner(true);
     authProcessData.setGenericDataToSession(PvpAttributeDefinitions.EID_ISSUING_NATION_NAME,
         eidData.getCitizenCountryCode());
   }
 
-  private void executeIdlMode(SimpleEidasData eidData, String personalIdentifier) throws EaafException {
+  private void executeIdlMode(SimpleEidasData eidData, MatchedPersonResult matchedPersonData) throws EaafException {
     //request SZR
-    SzrResultHolder idlResult = requestSzrForIdentityLink(eidData);
+    SzrResultHolder idlResult = requestSzrForIdentityLink(eidData, matchedPersonData);
 
     //write revision-Log entry for personal-identifier mapping
-    writeExtendedRevisionLogEntry(eidData, personalIdentifier);
-
+    writeExtendedRevisionLogEntry(eidData, eidData.getPersonalIdentifier());
     //check result-data and write revision-log based on current state
     checkStateAndWriteRevisionLog(idlResult);
 
     //inject personal-data into session
-    AuthProcessDataWrapper authProcessDataWrapper = getAuthProcessDataWrapper();
+    AuthProcessDataWrapper authProcessDataWrapper = MatchingTaskUtils.getAuthProcessDataWrapper(pendingReq);
     authProcessDataWrapper.setIdentityLink(idlResult.getIdentityLink());
     authProcessDataWrapper.setEidProcess(false);
 
@@ -197,20 +189,29 @@ public class CreateIdentityLinkTask extends AbstractAuthServletTask {
             .getAreaSpecificTargetIdentifier());
   }
 
-  private void executeEidMode(SimpleEidasData eidData, String personalIdentifier)
+  private void executeEidMode(SimpleEidasData eidData, MatchedPersonResult matchedPersonData)
       throws JsonProcessingException, EaafException, JoseException {
     // get encrypted baseId        
-    String vsz = szrClient.getEncryptedStammzahl(eidData);
-
+    String vsz;
+    if (matchedPersonData != null) {
+      log.debug("Requesting encrypted baseId by already matched person information ... ");
+      vsz = szrClient.getEncryptedStammzahl(matchedPersonData);
+      
+    } else {
+      log.debug("Requesting encrypted baseId by using eIDAS information directly ... ");
+      vsz = szrClient.createNewErnpEntry(eidData);  
+      
+    }
+    
     //write revision-Log entry and extended infos personal-identifier mapping
     revisionsLogger.logEvent(pendingReq, MsConnectorEventCodes.SZR_VSZ_RECEIVED);
-    writeExtendedRevisionLogEntry(eidData, personalIdentifier);
+    writeExtendedRevisionLogEntry(eidData, eidData.getPersonalIdentifier());
 
     // get eIDAS bind
     String signedEidasBind = szrClient
         .getEidasBind(vsz, authBlockSigner.getBase64EncodedPublicKey(), EID_STATUS, eidData);
     revisionsLogger.logEvent(pendingReq, MsConnectorEventCodes.SZR_EIDASBIND_RECEIVED);
-    AuthProcessDataWrapper authProcessDataWrapper = getAuthProcessDataWrapper();
+    AuthProcessDataWrapper authProcessDataWrapper = MatchingTaskUtils.getAuthProcessDataWrapper(pendingReq);
     authProcessDataWrapper.setGenericDataToSession(Constants.EIDAS_BIND, signedEidasBind);
 
     //get signed AuthBlock
@@ -220,11 +221,12 @@ public class CreateIdentityLinkTask extends AbstractAuthServletTask {
 
     //inject personal-data into session
     authProcessDataWrapper.setEidProcess(true);
+    
   }
 
   private void buildDummyIdentityLink(SimpleEidasData eidData)
       throws ParserConfigurationException, SAXException, IOException, EaafException {
-    AuthProcessDataWrapper authProcessDataWrapper = getAuthProcessDataWrapper();
+    AuthProcessDataWrapper authProcessDataWrapper = MatchingTaskUtils.getAuthProcessDataWrapper(pendingReq);
     SzrResultHolder idlResult = createDummyIdentityLinkForTestDeployment(eidData);
     //inject personal-data into session
     authProcessDataWrapper.setIdentityLink(idlResult.getIdentityLink());
@@ -247,10 +249,22 @@ public class CreateIdentityLinkTask extends AbstractAuthServletTask {
     }
   }
 
-  private SzrResultHolder requestSzrForIdentityLink(SimpleEidasData eidData) throws EaafException {
+  private SzrResultHolder requestSzrForIdentityLink(SimpleEidasData eidData, 
+      MatchedPersonResult matchedPersonData) throws EaafException {
     //request IdentityLink from SZR
-    final IdentityLinkType result = szrClient.getIdentityLinkInRawMode(eidData);
+    IdentityLinkType result;
 
+    if (matchedPersonData != null) {
+      log.debug("Requesting encrypted baseId by already matched person information ... ");
+      result = szrClient.getIdentityLinkInRawMode(matchedPersonData);
+      
+    } else {
+      log.debug("Requesting encrypted baseId by using eIDAS information directly ... ");
+      result = szrClient.getIdentityLinkInRawMode(eidData);
+      
+    }
+    
+    
     final Element idlFromSzr = (Element) result.getAssertion();
     final IIdentityLink identityLink = new SimpleIdentityLinkAssertionParser(idlFromSzr).parseIdentityLink();
 
@@ -322,68 +336,7 @@ public class CreateIdentityLinkTask extends AbstractAuthServletTask {
     }
   }
 
-  private Map<String, Object> convertEidasAttrToSimpleMap(
-      ImmutableMap<AttributeDefinition<?>, ImmutableSet<? extends AttributeValue<?>>> attributeMap) {
-    final Map<String, Object> result = new HashMap<>();
-    for (final AttributeDefinition<?> el : attributeMap.keySet()) {
-      final Class<?> parameterizedType = el.getParameterizedType();
-      if (DateTime.class.equals(parameterizedType)) {
-        convertDateTime(attributeMap, result, el);
-      } else if (PostalAddress.class.equals(parameterizedType)) {
-        convertPostalAddress(attributeMap, result, el);
-      } else {
-        convertString(attributeMap, result, el);
-      }
-    }
-
-    log.debug("Receive #" + result.size() + " attributes with names: " + result.keySet().toString());
-    return result;
-  }
-
-  private void convertString(ImmutableMap<AttributeDefinition<?>,
-                             ImmutableSet<? extends AttributeValue<?>>> attributeMap,
-                             Map<String, Object> result, AttributeDefinition<?> el) {
-    final List<String> natPersonIdObj = EidasResponseUtils
-        .translateStringListAttribute(el, attributeMap.get(el));
-    final String stringAttr = natPersonIdObj.get(0);
-    if (StringUtils.isNotEmpty(stringAttr)) {
-      result.put(el.getFriendlyName(), stringAttr);
-      log.trace("Find attr '" + el.getFriendlyName() + "' with value: " + stringAttr);
-    } else {
-      log.info("Ignore empty 'String' attribute");
-    }
-  }
-
-  private void convertPostalAddress(ImmutableMap<AttributeDefinition<?>,
-                                    ImmutableSet<? extends AttributeValue<?>>> attributeMap,
-                                    Map<String, Object> result, AttributeDefinition<?> el) {
-    final PostalAddress addressAttribute = EidasResponseUtils
-        .translateAddressAttribute(el, attributeMap.get(el).asList());
-    if (addressAttribute != null) {
-      result.put(el.getFriendlyName(), addressAttribute);
-      log.trace("Find attr '" + el.getFriendlyName() + "' with value: " + addressAttribute.toString());
-    } else {
-      log.info("Ignore empty 'PostalAddress' attribute");
-    }
-  }
-
-  private void convertDateTime(ImmutableMap<AttributeDefinition<?>,
-                               ImmutableSet<? extends AttributeValue<?>>> attributeMap,
-                               Map<String, Object> result, AttributeDefinition<?> el) {
-    final DateTime attribute = EidasResponseUtils.translateDateAttribute(el, attributeMap.get(el).asList());
-    if (attribute != null) {
-      result.put(el.getFriendlyName(), attribute);
-      log.trace("Find attr '" + el.getFriendlyName() + "' with value: " + attribute.toString());
-    } else {
-      log.info("Ignore empty 'DateTime' attribute");
-    }
-  }
-
-  @NotNull
-  private AuthProcessDataWrapper getAuthProcessDataWrapper() {
-    return pendingReq.getSessionData(AuthProcessDataWrapper.class);
-  }
-
+ 
   /**
    * write MDS into technical log and revision log.
    */
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateNewErnpEntryTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateNewErnpEntryTask.java
index 69b127d8..6fc6d499 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateNewErnpEntryTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/CreateNewErnpEntryTask.java
@@ -29,9 +29,6 @@ import javax.servlet.http.HttpServletResponse;
 import org.springframework.stereotype.Component;
 
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.clients.szr.SzrClient;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.MatchingTaskUtils;
 import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
 import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
 import at.gv.egiz.eaaf.core.impl.idp.auth.modules.AbstractAuthServletTask;
@@ -56,27 +53,37 @@ import lombok.extern.slf4j.Slf4j;
 @Component("CreateNewErnbEntryTask")
 public class CreateNewErnpEntryTask extends AbstractAuthServletTask {
 
-  private final SzrClient szrClient;
+  //private final SzrClient szrClient;
 
-  /**
-   * Constructor.
-   * @param szrClient SZR client for creating a new ERnP entry
-   */
-  public CreateNewErnpEntryTask(SzrClient szrClient) {
-    this.szrClient = szrClient;
-  }
+  ///**
+  // * Constructor.
+  // * @param szrClient SZR client for creating a new ERnP entry
+  // */
+  //public CreateNewErnpEntryTask(SzrClient szrClient) {
+  //  this.szrClient = szrClient;
+  //}
 
   @Override
   public void execute(ExecutionContext executionContext, HttpServletRequest request, HttpServletResponse response)
       throws TaskExecutionException {
     try {
-      SimpleEidasData simpleEidasData = MatchingTaskUtils.getInitialEidasData(pendingReq);   
+      //SimpleEidasData simpleEidasData = MatchingTaskUtils.getInitialEidasData(pendingReq);   
           
-      // TODO When to do eidPostProcessor.postProcess on the eidas attributes?
-      String vsz = szrClient.createNewErnpEntry(simpleEidasData);
+      // insert person into ERnP
+      //TODO: should we insert it directly into ERnP?
+      //TODO: has to updated to new eIDAS document model in ERnP
+      //String vsz = szrClient.createNewErnpEntry(simpleEidasData);
+
+      // finish matching process, because new user-entry uniquly matches
+      //log.info("User successfully registerred into ERnP and matching tasks are finished ");
+      //MatchingTaskUtils.storeFinalMatchingResult(pendingReq, 
+      //    MatchedPersonResult.builder()
+      //        .vsz(vsz)
+      //        .build());
+      
+      log.warn("Skipping new insert ERnP task, because it's currently unknown who we should it");
+      
 
-      // TODO what to do with the VSZ now
-      log.info("VSZ: {}", vsz);
     } catch (final Exception e) {
       log.error("Initial search FAILED.", e);
       throw new TaskExecutionException(pendingReq, "Initial search FAILED.", e);
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
index 1563d6df..01497f8d 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
@@ -42,6 +42,8 @@ import com.google.common.collect.ImmutableMap;
 import com.google.common.collect.ImmutableSet;
 
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.MatchedPersonResult;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidPostProcessingException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidasAttributeException;
@@ -71,9 +73,9 @@ import lombok.extern.slf4j.Slf4j;
  * Output:
  * <ul>
  *     <li>{@link Constants#DATA_SIMPLE_EIDAS} converted from Full eIDAS Response</li>
- *     <li>{@link Constants#DATA_INITIAL_REGISTER_RESULT} results from first search in registers with
+ *     <li>{@link Constants#DATA_INTERMEDIATE_RESULT} results from first search in registers with
  *     PersonIdentifier</li>
- *     <li>{@link Constants#DATA_FURTHER_REGISTER_RESULT} results after second search in registers with MDS</li>
+ *     <li>{@link Constants#DATA_PERSON_MATCH_RESULT} results after second search in registers with MDS</li>
  *     <li>{@link Constants#DATA_RESULT_MATCHING_BPK} if one register result found</li>
  * </ul>
  * Transitions:
@@ -135,8 +137,7 @@ public class InitialSearchTask extends AbstractAuthServletTask {
         step6CountrySpecificSearch(executionContext, initialSearchResult.getOperationStatus(), eidasData);
       
       } else if (resultCount == 1) {      
-        // find person by PersonalIdentifier --> finalize first matching task             
-        initialSearchResult.setMatchingFinished(true);                
+        // find person by PersonalIdentifier --> finalize first matching task
         foundMatchFinializeTask(initialSearchResult, eidasData);
             
       } else {
@@ -169,8 +170,7 @@ public class InitialSearchTask extends AbstractAuthServletTask {
       log.trace("'step6CountrySpecificSearch' finds a person. Forward to 'step7aKittProcess' step ... ");
       registerSearchService.step7aKittProcess(countrySpecificResult, eidasData);
       
-      // find person by country-specific information --> finalize first matching task
-      countrySpecificResult.setMatchingFinished(true);        
+      // find person by country-specific information --> finalize first matching task       
       foundMatchFinializeTask(countrySpecificResult, eidasData);      
       
     } else {
@@ -194,7 +194,7 @@ public class InitialSearchTask extends AbstractAuthServletTask {
       log.debug("Matching step: 'step8RegisterSearchWithMds' has #{} results. "
           + "Forward to GUI based matching steps ... ", registerData.getResultCount());
       
-      MatchingTaskUtils.storeInitialRegisterResult(pendingReq, registerData);
+      MatchingTaskUtils.storeIntermediateMatchingResult(pendingReq, registerData);
       executionContext.put(TRANSITION_TO_GENERATE_OTHER_LOGIN_METHOD_GUI_TASK, true);
       
     }
@@ -205,22 +205,26 @@ public class InitialSearchTask extends AbstractAuthServletTask {
   private void foundMatchFinializeTask(RegisterSearchResult searchResult, SimpleEidasData eidasData) 
       throws WorkflowException, EaafStorageException {
     // check if register update is required
-    step3CheckRegisterUpdateNecessary(searchResult, eidasData);
-    
+    RegisterResult updatedResult = step3CheckRegisterUpdateNecessary(searchResult.getResult(), eidasData);
+        
     // store search result
-    MatchingTaskUtils.storeInitialRegisterResult(pendingReq, searchResult);
+    MatchingTaskUtils.storeFinalMatchingResult(pendingReq, 
+        MatchedPersonResult.generateFormMatchingResult(updatedResult, eidasData.getCitizenCountryCode()));
         
   }
   
-  private void step3CheckRegisterUpdateNecessary(RegisterSearchResult initialSearchResult, 
+  private RegisterResult step3CheckRegisterUpdateNecessary(RegisterResult searchResult, 
       SimpleEidasData eidasData) throws WorkflowException {
     log.trace("Starting step3CheckRegisterUpdateNecessary");
-    if (!eidasData.equalsRegisterData(initialSearchResult)) {
-      // TODO Update "initialSearchResult" in register with "eidasData" from login not possible for now
+    if (!eidasData.equalsRegisterData(searchResult)) {
       log.info("Skipping update-register-information step, because it's not supported yet");
+      
+      //TODO: return updated search result if updates are allowed
+      return searchResult;
         
     } else {        
-      log.debug("Register information match to eIDAS information. No update requird");      
+      log.debug("Register information match to eIDAS information. No update requird");
+      return searchResult;
       
     }
     
@@ -233,6 +237,7 @@ public class InitialSearchTask extends AbstractAuthServletTask {
         .getGenericDataFromSession(Constants.DATA_FULL_EIDAS_RESPONSE, ILightResponse.class);
     Map<String, Object> simpleMap = convertEidasAttrToSimpleMap(eidasResponse.getAttributes().getAttributeMap());
     return eidPostProcessor.postProcess(simpleMap);
+    
   }
 
   private Map<String, Object> convertEidasAttrToSimpleMap(
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveAustrianResidenceGuiResponseTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveAustrianResidenceGuiResponseTask.java
index b18104fa..b71d86c8 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveAustrianResidenceGuiResponseTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveAustrianResidenceGuiResponseTask.java
@@ -33,6 +33,7 @@ import org.jetbrains.annotations.NotNull;
 import org.springframework.stereotype.Component;
 
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.MatchedPersonResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.InvalidUserInputException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.ManualFixNecessaryException;
@@ -56,7 +57,7 @@ import lombok.extern.slf4j.Slf4j;
  * Input:
  * <ul>
  *   <li>{@link Constants#DATA_SIMPLE_EIDAS} initial login data from user</li>
- *   <li>{@link Constants#DATA_INITIAL_REGISTER_RESULT} results from search in registers with personIdentifier</li>
+ *   <li>{@link Constants#DATA_INTERMEDIATE_RESULT} results from search in registers with personIdentifier</li>
  * </ul>
  * Output:
  * <ul>
@@ -125,7 +126,7 @@ public class ReceiveAustrianResidenceGuiResponseTask extends AbstractAuthServlet
         
     try {
       SimpleEidasData eidasData = MatchingTaskUtils.getInitialEidasData(pendingReq);
-      RegisterSearchResult initialSearchResult = MatchingTaskUtils.getInitialRegisterResult(pendingReq);
+      RegisterSearchResult initialSearchResult = MatchingTaskUtils.getIntermediateMatchingResult(pendingReq);
       
       RegisterSearchResult residencyResult = 
           registerSearchService.searchWithResidence(initialSearchResult.getOperationStatus(), 
@@ -160,13 +161,14 @@ public class ReceiveAustrianResidenceGuiResponseTask extends AbstractAuthServlet
       /*TODO: check 'equalsRegisterData' because this method maybe this method evaluate to an invalid result.
        *      See TODO in methods body
        */      
-      if (eidasData.equalsRegisterData(residencyResult)) {
+      if (eidasData.equalsRegisterData(residencyResult.getResult())) {
         // update register information
         registerSearchService.step7aKittProcess(residencyResult, eidasData);
                                 
         // store search result to re-used in CreateIdentityLink step, because there we need bPK and MDS
-        residencyResult.setMatchingFinished(true);
-        MatchingTaskUtils.storeInitialRegisterResult(pendingReq, residencyResult);
+        MatchingTaskUtils.storeFinalMatchingResult(pendingReq, 
+            MatchedPersonResult.generateFormMatchingResult(
+                residencyResult.getResult(), eidasData.getCitizenCountryCode()));
         
       } else {
         moveToNextTask(executionContext);
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseTask.java
index fd469f49..e0b05892 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseTask.java
@@ -45,6 +45,7 @@ import org.opensaml.saml.saml2.metadata.IDPSSODescriptor;
 import org.springframework.stereotype.Component;
 
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.MatchedPersonResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleMobileSignatureData;
@@ -86,7 +87,7 @@ import lombok.extern.slf4j.Slf4j;
  * Input:
  * <ul>
  *     <li>{@link Constants#DATA_SIMPLE_EIDAS} initial login data from user</li>
- *     <li>{@link Constants#DATA_INITIAL_REGISTER_RESULT} results from search in registers with personIdentifier</li>
+ *     <li>{@link Constants#DATA_INTERMEDIATE_RESULT} results from search in registers with personIdentifier</li>
  * </ul>
  * Output:
  * <ul>
@@ -160,7 +161,7 @@ public class ReceiveMobilePhoneSignatureResponseTask extends AbstractAuthServlet
             
       // load already existing information from session
       SimpleEidasData eidasData = MatchingTaskUtils.getInitialEidasData(pendingReq);
-      RegisterSearchResult initialSearchResult = MatchingTaskUtils.getInitialRegisterResult(pendingReq);
+      RegisterSearchResult initialSearchResult = MatchingTaskUtils.getIntermediateMatchingResult(pendingReq);
       
       // extract user information from ID Austria authentication
       AssertionAttributeExtractor extractor = new AssertionAttributeExtractor(processedMsg.getFirst().getResponse());
@@ -188,9 +189,10 @@ public class ReceiveMobilePhoneSignatureResponseTask extends AbstractAuthServlet
         // perform kit operation
         registerSearchService.step7aKittProcess(registerResult, eidasData);
         
-        // store search result to re-used in CreateIdentityLink step, because there we need bPK and MDS
-        registerResult.setMatchingFinished(true);
-        MatchingTaskUtils.storeInitialRegisterResult(pendingReq, registerResult);
+        // store search result to re-used in CreateIdentityLink step, because there we need bPK and MDS        
+        MatchingTaskUtils.storeFinalMatchingResult(pendingReq, 
+            MatchedPersonResult.generateFormMatchingResult(registerResult.getResult(), 
+                eidasData.getCitizenCountryCode()));
         
       }            
       
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveOtherLoginMethodGuiResponseTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveOtherLoginMethodGuiResponseTask.java
index 59a6886a..0eb56d0b 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveOtherLoginMethodGuiResponseTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveOtherLoginMethodGuiResponseTask.java
@@ -45,7 +45,7 @@ import lombok.extern.slf4j.Slf4j;
  * Input:
  * <ul>
  *     <li>{@link Constants#DATA_SIMPLE_EIDAS} initial login data from user</li>
- *     <li>{@link Constants#DATA_INITIAL_REGISTER_RESULT} results from search in registers with personIdentifier</li>
+ *     <li>{@link Constants#DATA_INTERMEDIATE_RESULT} results from search in registers with personIdentifier</li>
  * </ul>
  * Output:
  * <ul>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/MatchingTaskUtils.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/MatchingTaskUtils.java
index 5625a30d..ae4dfb30 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/MatchingTaskUtils.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/MatchingTaskUtils.java
@@ -5,6 +5,7 @@ import javax.annotation.Nullable;
 import org.springframework.lang.NonNull;
 
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.MatchedPersonResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.RegisterSearchService.RegisterSearchResult;
 import at.gv.egiz.eaaf.core.api.IRequest;
@@ -41,33 +42,61 @@ public class MatchingTaskUtils {
   }
   
   /**
-   * Get Matching result from session.
+   * Get intermediate matching result from session.
    * 
    * @param pendingReq Current pendingRequest
-   * @return Matching result or <code>null</code> if not exist
+   * @return Intermediate matching result or <code>null</code> if not exist
    */
   @Nullable
-  public static RegisterSearchResult getInitialRegisterResult(IRequest pendingReq) {
-    return getAuthProcessDataWrapper(pendingReq).getGenericDataFromSession(Constants.DATA_INITIAL_REGISTER_RESULT,
+  public static RegisterSearchResult getIntermediateMatchingResult(IRequest pendingReq) {
+    return getAuthProcessDataWrapper(pendingReq).getGenericDataFromSession(Constants.DATA_INTERMEDIATE_RESULT,
         RegisterSearchResult.class);
     
   }
   
   /**
-   * Store matching result into session.
+   * Store intermediate matching result into session.
    * 
    * @param pendingReq Current pendingRequest
-   * @param registerData Matching result information
+   * @param registerData Intermediate matching result information
    * @throws EaafStorageException In case of data can not be add into session
    */
   @Nullable
-  public static void storeInitialRegisterResult(IRequest pendingReq, RegisterSearchResult registerData) 
+  public static void storeIntermediateMatchingResult(IRequest pendingReq, RegisterSearchResult registerData) 
       throws EaafStorageException {
     getAuthProcessDataWrapper(pendingReq).setGenericDataToSession(
-        Constants.DATA_INITIAL_REGISTER_RESULT, registerData);
+        Constants.DATA_INTERMEDIATE_RESULT, registerData);
         
   }
 
+  /**
+   * Get intermediate matching result from session.
+   * 
+   * @param pendingReq Current pendingRequest
+   * @return Intermediate matching result or <code>null</code> if not exist
+   */
+  @Nullable
+  public static MatchedPersonResult getFinalMatchingResult(IRequest pendingReq) {
+    return getAuthProcessDataWrapper(pendingReq).getGenericDataFromSession(Constants.DATA_PERSON_MATCH_RESULT,
+        MatchedPersonResult.class);
+    
+  }
+  
+  /**
+   * Store intermediate matching result into session.
+   * 
+   * @param pendingReq Current pendingRequest
+   * @param personInfos Person information after a successful match
+   * @throws EaafStorageException In case of data can not be add into session
+   */
+  @Nullable
+  public static void storeFinalMatchingResult(IRequest pendingReq, MatchedPersonResult personInfos) 
+      throws EaafStorageException {
+    getAuthProcessDataWrapper(pendingReq).setGenericDataToSession(
+        Constants.DATA_PERSON_MATCH_RESULT, personInfos);
+        
+  }
+  
   /**
    * Get holder for authentication information for the current process.
    * 
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/DummyZmrClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/DummyZmrClient.java
index 30a801a4..b39281c2 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/DummyZmrClient.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/DummyZmrClient.java
@@ -39,7 +39,8 @@ import at.gv.bmi.namespace.zmr_su.zmr._20040201.PersonSuchenRequest;
 public class DummyZmrClient implements IZmrClient {
 
   @Override
-  public ZmrRegisterResult searchWithPersonIdentifier(BigInteger zmrProzessId, String personIdentifier) {
+  public ZmrRegisterResult searchWithPersonIdentifier(BigInteger zmrProzessId, String personIdentifier,
+      String citizenCountryCode) {
     return new ZmrRegisterResult(Collections.emptyList(), null);
     
   }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/dummy/DummyOA.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/dummy/DummyOA.java
index 2f7782ae..074dd0bb 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/dummy/DummyOA.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/dummy/DummyOA.java
@@ -1,13 +1,19 @@
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.test.dummy;
 
+import java.util.ArrayList;
+import java.util.Collections;
+import java.util.HashMap;
+import java.util.List;
+import java.util.Map;
+import java.util.Set;
+
+import org.apache.commons.lang3.StringUtils;
+
+import at.gv.egiz.eaaf.core.impl.builder.BpkBuilder;
 import at.gv.egiz.eaaf.core.impl.data.Pair;
-import at.gv.egiz.eaaf.core.impl.idp.auth.builder.BpkBuilder;
 import at.gv.egiz.eaaf.core.impl.utils.KeyValueUtils;
 import lombok.Getter;
 import lombok.Setter;
-import org.apache.commons.lang3.StringUtils;
-
-import java.util.*;
 
 public class DummyOA implements IAhSpConfiguration {
 
@@ -115,13 +121,13 @@ public class DummyOA implements IAhSpConfiguration {
   }
 
   @Override
-  public List<String> getTargetsWithNoBaseIdInternalProcessingRestriction() {
+  public Set<String> getTargetsWithNoBaseIdInternalProcessingRestriction() {
     // TODO Auto-generated method stub
     return null;
   }
 
   @Override
-  public List<String> getTargetsWithNoBaseIdTransferRestriction() {
+  public Set<String> getTargetsWithNoBaseIdTransferRestriction() {
     // TODO Auto-generated method stub
     return null;
   }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/handler/DeSpecificDetailSearchProcessorTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/handler/DeSpecificDetailSearchProcessorTest.java
new file mode 100644
index 00000000..21c9fd80
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/handler/DeSpecificDetailSearchProcessorTest.java
@@ -0,0 +1,105 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.test.handler;
+
+import static org.junit.Assert.assertEquals;
+import static org.junit.Assert.assertFalse;
+import static org.junit.Assert.assertNotNull;
+import static org.junit.Assert.assertTrue;
+
+import org.apache.commons.lang3.RandomStringUtils;
+import org.junit.Test;
+import org.junit.runner.RunWith;
+import org.junit.runners.BlockJUnit4ClassRunner;
+
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.DeSpecificDetailSearchProcessor;
+import at.gv.bmi.namespace.zmr_su.zmr._20040201.PersonSuchenRequest;
+
+@RunWith(BlockJUnit4ClassRunner.class)
+public class DeSpecificDetailSearchProcessorTest {
+
+  private DeSpecificDetailSearchProcessor handler = new DeSpecificDetailSearchProcessor();
+  
+  @Test
+  public void checkName() {    
+    assertEquals("wrong handler name", "DeSpecificDetailSearchProcessor", handler.getName());
+    
+  }
+  
+  @Test
+  public void canHandlerCheck_1() {    
+    SimpleEidasData eidData = SimpleEidasData.builder()
+        .birthName(RandomStringUtils.randomAlphabetic(5))
+        .placeOfBirth(RandomStringUtils.randomAlphabetic(5))
+        .build();    
+    assertFalse("wrong 'canHandle' flag", handler.canHandle("XX", eidData));
+    
+  }
+  
+  @Test
+  public void canHandlerCheck_2() {    
+    SimpleEidasData eidData = SimpleEidasData.builder()
+        .birthName(RandomStringUtils.randomAlphabetic(5))
+        .placeOfBirth(RandomStringUtils.randomAlphabetic(5))
+        .build();    
+    assertTrue("wrong 'canHandle' flag", handler.canHandle("DE", eidData));
+    
+  }
+  
+  @Test
+  public void canHandlerCheck_3() {    
+    SimpleEidasData eidData = SimpleEidasData.builder()
+        .birthName(RandomStringUtils.randomAlphabetic(5))
+        .placeOfBirth(RandomStringUtils.randomAlphabetic(5))
+        .build();    
+    assertTrue("wrong 'canHandle' flag", handler.canHandle("de", eidData));
+    
+  }
+  
+  @Test
+  public void canHandlerCheck_4() {    
+    SimpleEidasData eidData = SimpleEidasData.builder()
+        .birthName(null)
+        .placeOfBirth(RandomStringUtils.randomAlphabetic(5))
+        .build();    
+    assertFalse("wrong 'canHandle' flag", handler.canHandle("DE", eidData));
+    
+  }
+  
+  @Test
+  public void canHandlerCheck_5() {    
+    SimpleEidasData eidData = SimpleEidasData.builder()
+        .birthName(RandomStringUtils.randomAlphabetic(5))
+        .placeOfBirth(null)
+        .build();    
+    assertFalse("wrong 'canHandle' flag", handler.canHandle("DE", eidData));
+    
+  }
+
+  @Test
+  public void generateZmrSearchRequest() {
+    SimpleEidasData eidData = SimpleEidasData.builder()
+        .citizenCountryCode("DE")
+        .givenName(RandomStringUtils.randomAlphabetic(5))
+        .familyName(RandomStringUtils.randomAlphabetic(5))
+        .dateOfBirth(RandomStringUtils.randomAlphabetic(5))
+        .birthName(RandomStringUtils.randomAlphabetic(5))
+        .placeOfBirth(RandomStringUtils.randomAlphabetic(5))
+        .build();
+    
+    // perform operation
+    PersonSuchenRequest req = handler.generateSearchRequest(eidData);
+    
+    //validate response
+    assertNotNull("no search request", req);
+    assertNotNull("no MDS", req.getNatuerlichePerson());
+    assertNotNull("no MDS PersonName", req.getNatuerlichePerson().getPersonenName());
+    assertEquals("familyName", eidData.getFamilyName(), req.getNatuerlichePerson().getPersonenName().getFamilienname());
+    assertEquals("givenName", eidData.getGivenName(), req.getNatuerlichePerson().getPersonenName().getVorname());
+    assertEquals("birthday", eidData.getDateOfBirth(), req.getNatuerlichePerson().getGeburtsdatum());
+        
+    assertNotNull("no eIDAS documenst", req.getEidasSuchdaten());
+    //TODO: add validation if we can add more than one eIDAS document 
+          
+  }
+  
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/handler/ItSpecificDetailSearchProcessorTes.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/handler/ItSpecificDetailSearchProcessorTes.java
new file mode 100644
index 00000000..9b638ee5
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/handler/ItSpecificDetailSearchProcessorTes.java
@@ -0,0 +1,84 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.test.handler;
+
+import static org.junit.Assert.assertEquals;
+import static org.junit.Assert.assertFalse;
+import static org.junit.Assert.assertNotNull;
+import static org.junit.Assert.assertTrue;
+
+import org.apache.commons.lang3.RandomStringUtils;
+import org.junit.Test;
+import org.junit.runner.RunWith;
+import org.junit.runners.BlockJUnit4ClassRunner;
+
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.ItSpecificDetailSearchProcessor;
+import at.gv.bmi.namespace.zmr_su.zmr._20040201.PersonSuchenRequest;
+
+@RunWith(BlockJUnit4ClassRunner.class)
+public class ItSpecificDetailSearchProcessorTes {
+
+  private ItSpecificDetailSearchProcessor handler = new ItSpecificDetailSearchProcessor();
+  
+  @Test
+  public void checkName() {    
+    assertEquals("wrong handler name", "ItSpecificDetailSearchProcessor", handler.getName());
+    
+  }
+  
+  @Test
+  public void canHandlerCheck_1() {    
+    SimpleEidasData eidData = SimpleEidasData.builder()
+        .taxNumber(RandomStringUtils.randomAlphabetic(5))
+        .build();    
+    assertFalse("wrong 'canHandle' flag", handler.canHandle("XX", eidData));
+    
+  }
+  
+  @Test
+  public void canHandlerCheck_2() {    
+    SimpleEidasData eidData = SimpleEidasData.builder()
+        .taxNumber(RandomStringUtils.randomAlphabetic(5))
+        .build();    
+    assertTrue("wrong 'canHandle' flag", handler.canHandle("IT", eidData));
+    
+  }
+  
+  @Test
+  public void canHandlerCheck_3() {    
+    SimpleEidasData eidData = SimpleEidasData.builder()
+        .taxNumber(RandomStringUtils.randomAlphabetic(5))
+        .build();    
+    assertTrue("wrong 'canHandle' flag", handler.canHandle("it", eidData));
+    
+  }
+  
+  @Test
+  public void canHandlerCheck_4() {    
+    SimpleEidasData eidData = SimpleEidasData.builder()
+        .taxNumber("")
+        .build();    
+    assertFalse("wrong 'canHandle' flag", handler.canHandle("IT", eidData));
+    
+  }
+  
+  @Test
+  public void generateZmrSearchRequest() {
+    SimpleEidasData eidData = SimpleEidasData.builder()
+        .citizenCountryCode("IT")
+        .givenName(RandomStringUtils.randomAlphabetic(5))
+        .familyName(RandomStringUtils.randomAlphabetic(5))
+        .dateOfBirth(RandomStringUtils.randomAlphabetic(5))
+        .taxNumber(RandomStringUtils.randomAlphabetic(5))
+        .build();
+    
+    // perform operation
+    PersonSuchenRequest req = handler.generateSearchRequest(eidData);
+    
+    //validate response
+    assertNotNull("no search request", req);
+
+    //TODO: add validation if we can add more information about taxNumber from Italy 
+          
+  }
+  
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/CreateIdentityLinkTaskEidNewTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/CreateIdentityLinkTaskEidNewTest.java
index 248b71d9..7af9706e 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/CreateIdentityLinkTaskEidNewTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/CreateIdentityLinkTaskEidNewTest.java
@@ -18,7 +18,9 @@ import java.util.List;
 import java.util.Map;
 
 import org.apache.commons.lang3.RandomStringUtils;
+import org.apache.commons.lang3.StringUtils;
 import org.jetbrains.annotations.NotNull;
+import org.joda.time.DateTime;
 import org.jose4j.jwa.AlgorithmConstraints;
 import org.jose4j.jwa.AlgorithmConstraints.ConstraintType;
 import org.jose4j.jws.AlgorithmIdentifiers;
@@ -39,16 +41,25 @@ import org.springframework.web.context.request.ServletRequestAttributes;
 
 import com.fasterxml.jackson.databind.JsonNode;
 import com.fasterxml.jackson.databind.ObjectMapper;
+import com.google.common.collect.ImmutableMap;
+import com.google.common.collect.ImmutableSet;
 import com.skjolberg.mockito.soap.SoapServiceRule;
 
 import at.asitplus.eidas.specific.connector.MsEidasNodeConstants;
 import at.asitplus.eidas.specific.connector.test.config.dummy.MsConnectorDummyConfigMap;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.MatchedPersonResult;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidPostProcessingException;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidasAttributeException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.SzrCommunicationException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.EidasAttributeRegistry;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.ICcSpecificEidProcessingService;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.CreateIdentityLinkTask;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.EidasResponseUtils;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.JoseUtils;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.JoseUtils.JwsResult;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.MatchingTaskUtils;
 import at.gv.egiz.eaaf.core.api.IRequest;
 import at.gv.egiz.eaaf.core.api.IRequestStorage;
 import at.gv.egiz.eaaf.core.api.data.EaafConfigConstants;
@@ -68,8 +79,10 @@ import at.gv.egiz.eaaf.core.impl.idp.module.test.TestRequestImpl;
 import at.gv.egiz.eaaf.core.impl.idp.process.ExecutionContextImpl;
 import at.gv.egiz.eaaf.core.impl.utils.Random;
 import eu.eidas.auth.commons.attribute.AttributeDefinition;
+import eu.eidas.auth.commons.attribute.AttributeValue;
 import eu.eidas.auth.commons.attribute.ImmutableAttributeMap;
 import eu.eidas.auth.commons.attribute.ImmutableAttributeMap.Builder;
+import eu.eidas.auth.commons.protocol.eidas.impl.PostalAddress;
 import eu.eidas.auth.commons.protocol.impl.AuthenticationResponse;
 import lombok.val;
 import szrservices.JwsHeaderParam;
@@ -96,6 +109,9 @@ public class CreateIdentityLinkTaskEidNewTest {
   @Autowired
   EaafKeyStoreFactory keyStoreFactory;
 
+  @Autowired
+  ICcSpecificEidProcessingService eidPostProcessor;
+  
   @Autowired
   private IRequestStorage requestStorage;
 
@@ -123,9 +139,11 @@ public class CreateIdentityLinkTaskEidNewTest {
 
   /**
    * jUnit test set-up.
+   * @throws EidasAttributeException 
+   * @throws EidPostProcessingException 
    */
   @Before
-  public void setUp() throws EaafStorageException, URISyntaxException {
+  public void setUp() throws EaafStorageException, URISyntaxException, EidPostProcessingException, EidasAttributeException {
 
     httpReq = new MockHttpServletRequest("POST", "https://localhost/authhandler");
     httpResp = new MockHttpServletResponse();
@@ -144,8 +162,14 @@ public class CreateIdentityLinkTaskEidNewTest {
     response = buildDummyAuthResponse(false);
     pendingReq.getSessionData(AuthProcessDataWrapper.class)
         .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
-
-
+    
+    final Map<String, Object> eidasAttributes = convertEidasAttrToSimpleMap(
+        response.getAttributes().getAttributeMap());                  
+    final SimpleEidasData eidData = eidPostProcessor.postProcess(eidasAttributes);    
+    MatchingTaskUtils.storeInitialEidasData(pendingReq, eidData);
+    
+    MatchingTaskUtils.storeFinalMatchingResult(pendingReq, null);
+    
     pendingReq.setSpConfig(oaParam);
     pendingReq.setPendingReqId(at.gv.egiz.eaaf.core.impl.utils.Random.nextProcessReferenceValue());
     pendingReq.setAuthUrl("http://test.com/");
@@ -163,8 +187,10 @@ public class CreateIdentityLinkTaskEidNewTest {
     //initialize test
     response = buildDummyAuthResponse(true);
     pendingReq.getSessionData(AuthProcessDataWrapper.class)
-        .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
-
+        .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);    
+    MatchingTaskUtils.storeInitialEidasData(pendingReq, eidPostProcessor.postProcess(
+        convertEidasAttrToSimpleMap(response.getAttributes().getAttributeMap())));
+    
     String vsz = RandomStringUtils.randomNumeric(10);
     when(szrMock.getStammzahlEncrypted(any(), any())).thenReturn(vsz);
     val signContentResp = new SignContentResponseType();
@@ -223,7 +249,7 @@ public class CreateIdentityLinkTaskEidNewTest {
     verify(szrMock, times(1)).getStammzahlEncrypted(argument4.capture(), argument5.capture());
 
     Boolean param5 = argument5.getValue();
-    Assert.assertFalse("insertERnP flag", param5);
+    Assert.assertTrue("insertERnP flag", param5);
     PersonInfoType person = argument4.getValue();
     Assert.assertEquals("FamilyName",
         response.getAttributes().getAttributeValuesByFriendlyName("FamilyName").getFirstValue(
@@ -296,6 +322,82 @@ public class CreateIdentityLinkTaskEidNewTest {
 
   }
 
+  @Test
+  public void successfulProcessWithDataFromMatching() throws Exception {
+    //initialize test
+    String vsz = RandomStringUtils.randomNumeric(10);
+    when(szrMock.getStammzahlEncrypted(any(), any())).thenReturn(vsz);
+    val signContentResp = new SignContentResponseType();
+    final SignContentEntry signContentEntry = new SignContentEntry();
+    signContentEntry.setValue(RandomStringUtils.randomAlphanumeric(10));
+    signContentResp.getOut().add(signContentEntry);
+    when(szrMock.signContent(any(), any(), any())).thenReturn(signContentResp);
+
+    String randomTestSp = RandomStringUtils.randomAlphabetic(10);
+    pendingReq.setRawDataToTransaction(MsEidasNodeConstants.DATA_REQUESTERID, randomTestSp);
+
+    MatchedPersonResult matchingInfos = MatchedPersonResult.builder()
+        .bpk(RandomStringUtils.randomAlphabetic(5))
+        .givenName(RandomStringUtils.randomAlphabetic(5))
+        .familyName(RandomStringUtils.randomAlphabetic(5))
+        .dateOfBirth(RandomStringUtils.randomAlphabetic(5))
+        .countryCode(RandomStringUtils.randomAlphabetic(2).toUpperCase())
+        .build();
+        
+    MatchingTaskUtils.storeFinalMatchingResult(pendingReq, matchingInfos);
+    
+    //perform test
+    task.execute(pendingReq, executionContext);
+    
+    
+    //validate state
+    // check if pendingRequest was stored
+    IRequest storedPendingReq = requestStorage.getPendingRequest(pendingReq.getPendingRequestId());
+    Assert.assertNotNull("pendingReq not stored", storedPendingReq);
+
+    //check data in session
+    final AuthProcessDataWrapper authProcessData = storedPendingReq.getSessionData(AuthProcessDataWrapper.class);
+    Assert.assertNotNull("AuthProcessData", authProcessData);
+    Assert.assertNotNull("eidasBind", authProcessData.getGenericDataFromSession(Constants.EIDAS_BIND, String.class));
+
+    String authBlock = authProcessData.getGenericDataFromSession(Constants.SZR_AUTHBLOCK, String.class);
+    Assert.assertNotNull("AuthBlock", authBlock);
+
+    Assert.assertTrue("EID process", authProcessData.isEidProcess());
+    Assert.assertTrue("foreigner process", authProcessData.isForeigner());
+    Assert.assertEquals("EID-ISSUING_NATION", "LU",
+        authProcessData.getGenericDataFromSession(PvpAttributeDefinitions.EID_ISSUING_NATION_NAME, String.class));
+
+    // check vsz request
+    ArgumentCaptor<PersonInfoType> argument4 = ArgumentCaptor.forClass(PersonInfoType.class);
+    ArgumentCaptor<Boolean> argument5 = ArgumentCaptor.forClass(Boolean.class);
+    verify(szrMock, times(1)).getStammzahlEncrypted(argument4.capture(), argument5.capture());
+
+    Boolean param5 = argument5.getValue();
+    Assert.assertFalse("insertERnP flag", param5);
+    PersonInfoType person = argument4.getValue();
+    Assert.assertEquals("FamilyName",
+        matchingInfos.getFamilyName(),
+        person.getPerson().getName().getFamilyName());
+    Assert.assertEquals("GivenName",
+        matchingInfos.getGivenName(),
+        person.getPerson().getName().getGivenName());
+    Assert.assertEquals("DateOfBirth",
+        matchingInfos.getDateOfBirth(),
+        person.getPerson().getDateOfBirth());
+    Assert.assertEquals("bPK",
+        matchingInfos.getBpk(),
+        person.getPerson().getIdentification().getValue());
+    Assert.assertEquals("bPKType",
+        EaafConstants.URN_PREFIX_CDID + "ZP",
+        person.getPerson().getIdentification().getType());
+    
+    
+    Assert.assertNull("PlaceOfBirth", person.getPerson().getPlaceOfBirth());
+    Assert.assertNull("BirthName", person.getPerson().getAlternativeName());
+            
+  }
+  
   @Test
   public void successfulProcessWithStandardInfos() throws Exception {
     //initialize test
@@ -337,7 +439,7 @@ public class CreateIdentityLinkTaskEidNewTest {
     verify(szrMock, times(1)).getStammzahlEncrypted(argument4.capture(), argument5.capture());
 
     Boolean param5 = argument5.getValue();
-    Assert.assertFalse("insertERnP flag", param5);
+    Assert.assertTrue("insertERnP flag", param5);
     PersonInfoType person = argument4.getValue();
     Assert.assertEquals("FamilyName",
         response.getAttributes().getAttributeValuesByFriendlyName("FamilyName").getFirstValue(
@@ -456,4 +558,53 @@ public class CreateIdentityLinkTaskEidNewTest {
         .attributes(attributeMap.build())
         .build();
   }
+  
+  private Map<String, Object> convertEidasAttrToSimpleMap(
+      ImmutableMap<AttributeDefinition<?>, ImmutableSet<? extends AttributeValue<?>>> attributeMap) {
+    final Map<String, Object> result = new HashMap<>();
+    for (final AttributeDefinition<?> el : attributeMap.keySet()) {
+      final Class<?> parameterizedType = el.getParameterizedType();
+      if (DateTime.class.equals(parameterizedType)) {
+        convertDateTime(attributeMap, result, el);
+      } else if (PostalAddress.class.equals(parameterizedType)) {
+        convertPostalAddress(attributeMap, result, el);
+      } else {
+        convertString(attributeMap, result, el);
+      }
+    }
+    return result;
+  }
+
+  private void convertString(ImmutableMap<AttributeDefinition<?>,
+                             ImmutableSet<? extends AttributeValue<?>>> attributeMap,
+                             Map<String, Object> result, AttributeDefinition<?> el) {
+    final List<String> natPersonIdObj = EidasResponseUtils
+        .translateStringListAttribute(el, attributeMap.get(el));
+    final String stringAttr = natPersonIdObj.get(0);
+    if (StringUtils.isNotEmpty(stringAttr)) {
+      result.put(el.getFriendlyName(), stringAttr);
+
+    }
+  }
+
+  private void convertPostalAddress(ImmutableMap<AttributeDefinition<?>,
+                                    ImmutableSet<? extends AttributeValue<?>>> attributeMap,
+                                    Map<String, Object> result, AttributeDefinition<?> el) {
+    final PostalAddress addressAttribute = EidasResponseUtils
+        .translateAddressAttribute(el, attributeMap.get(el).asList());
+    if (addressAttribute != null) {
+      result.put(el.getFriendlyName(), addressAttribute);
+
+    }
+  }
+
+  private void convertDateTime(ImmutableMap<AttributeDefinition<?>,
+                               ImmutableSet<? extends AttributeValue<?>>> attributeMap,
+                               Map<String, Object> result, AttributeDefinition<?> el) {
+    final DateTime attribute = EidasResponseUtils.translateDateAttribute(el, attributeMap.get(el).asList());
+    if (attribute != null) {
+      result.put(el.getFriendlyName(), attribute);
+
+    }
+  }
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/CreateIdentityLinkTaskTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/CreateIdentityLinkTaskTest.java
index 556bd2eb..0a2d4271 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/CreateIdentityLinkTaskTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/CreateIdentityLinkTaskTest.java
@@ -5,6 +5,7 @@ import static org.mockito.ArgumentMatchers.any;
 
 import java.net.URISyntaxException;
 import java.util.HashMap;
+import java.util.List;
 import java.util.Map;
 
 import javax.xml.bind.JAXBContext;
@@ -12,7 +13,9 @@ import javax.xml.bind.JAXBException;
 import javax.xml.bind.Unmarshaller;
 
 import org.apache.commons.lang3.RandomStringUtils;
+import org.apache.commons.lang3.StringUtils;
 import org.jetbrains.annotations.NotNull;
+import org.joda.time.DateTime;
 import org.junit.Assert;
 import org.junit.Before;
 import org.junit.Rule;
@@ -27,13 +30,22 @@ import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
 import org.springframework.web.context.request.RequestContextHolder;
 import org.springframework.web.context.request.ServletRequestAttributes;
 
+import com.google.common.collect.ImmutableMap;
+import com.google.common.collect.ImmutableSet;
 import com.skjolberg.mockito.soap.SoapServiceRule;
 
 import at.asitplus.eidas.specific.connector.MsEidasNodeConstants;
 import at.asitplus.eidas.specific.connector.test.config.dummy.MsConnectorDummyConfigMap;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.MatchedPersonResult;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidPostProcessingException;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidasAttributeException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.EidasAttributeRegistry;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.ICcSpecificEidProcessingService;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.CreateIdentityLinkTask;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.EidasResponseUtils;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.MatchingTaskUtils;
 import at.gv.egiz.eaaf.core.api.IRequest;
 import at.gv.egiz.eaaf.core.api.IRequestStorage;
 import at.gv.egiz.eaaf.core.api.data.EaafConfigConstants;
@@ -50,7 +62,9 @@ import at.gv.egiz.eaaf.core.impl.idp.module.test.TestRequestImpl;
 import at.gv.egiz.eaaf.core.impl.idp.process.ExecutionContextImpl;
 import at.gv.egiz.eaaf.core.impl.utils.Random;
 import eu.eidas.auth.commons.attribute.AttributeDefinition;
+import eu.eidas.auth.commons.attribute.AttributeValue;
 import eu.eidas.auth.commons.attribute.ImmutableAttributeMap;
+import eu.eidas.auth.commons.protocol.eidas.impl.PostalAddress;
 import eu.eidas.auth.commons.protocol.impl.AuthenticationResponse;
 import lombok.val;
 import szrservices.GetBPK;
@@ -79,7 +93,10 @@ public class CreateIdentityLinkTaskTest {
   EaafKeyStoreFactory keyStoreFactory;
 
   @Autowired
-  private IRequestStorage requestStorage;
+  ICcSpecificEidProcessingService eidPostProcessor;
+  
+  @Autowired
+  IRequestStorage requestStorage;
 
   final ExecutionContext executionContext = new ExecutionContextImpl();
   private MockHttpServletRequest httpReq;
@@ -96,9 +113,11 @@ public class CreateIdentityLinkTaskTest {
 
   /**
    * jUnit test set-up.
+   * @throws EidasAttributeException 
+   * @throws EidPostProcessingException 
    */
   @Before
-  public void setUp() throws EaafStorageException, URISyntaxException {
+  public void setUp() throws EaafStorageException, URISyntaxException, EidPostProcessingException, EidasAttributeException {
 
     httpReq = new MockHttpServletRequest("POST", "https://localhost/authhandler");
     httpResp = new MockHttpServletResponse();
@@ -117,9 +136,15 @@ public class CreateIdentityLinkTaskTest {
     pendingReq = new TestRequestImpl();
 
     response = buildDummyAuthResponse();
-
+    final Map<String, Object> eidasAttributes = convertEidasAttrToSimpleMap(
+        response.getAttributes().getAttributeMap());                  
+    final SimpleEidasData eidData = eidPostProcessor.postProcess(eidasAttributes);    
+    MatchingTaskUtils.storeInitialEidasData(pendingReq, eidData);
     pendingReq.getSessionData(AuthProcessDataWrapper.class)
         .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
+    
+    MatchingTaskUtils.storeFinalMatchingResult(pendingReq, null);
+    
     pendingReq.setSpConfig(oaParam);
     pendingReq.setPendingReqId(at.gv.egiz.eaaf.core.impl.utils.Random.nextProcessReferenceValue());
     pendingReq.setAuthUrl("http://test.com/");
@@ -181,6 +206,63 @@ public class CreateIdentityLinkTaskTest {
 
   }
 
+  @Test
+  public void successfulProcessWithDataFromMatching() throws Exception {
+    //initialize test
+    setSzrResponseIdentityLink("/data/szr/szr_resp_valid_1.xml");
+
+    String randomTestSp = RandomStringUtils.randomAlphabetic(10);
+    pendingReq.setRawDataToTransaction(MsEidasNodeConstants.DATA_REQUESTERID, randomTestSp);
+
+    basicConfig.putConfigValue("eidas.ms.auth.eIDAS.szrclient.debug.useDummySolution", "false");
+
+    MatchedPersonResult matchingInfos = MatchedPersonResult.builder()
+        .bpk(RandomStringUtils.randomAlphabetic(5))
+        .givenName(RandomStringUtils.randomAlphabetic(5))
+        .familyName(RandomStringUtils.randomAlphabetic(5))
+        .dateOfBirth(RandomStringUtils.randomAlphabetic(5))
+        .countryCode(RandomStringUtils.randomAlphabetic(2).toUpperCase())
+        .build();
+        
+    MatchingTaskUtils.storeFinalMatchingResult(pendingReq, matchingInfos);
+    
+    //perform test
+    task.execute(pendingReq, executionContext);
+    
+    
+    //validate state
+    // check if pendingRequest was stored
+    IRequest storedPendingReq = requestStorage.getPendingRequest(pendingReq.getPendingRequestId());
+    Assert.assertNotNull("pendingReq not stored", storedPendingReq);
+
+    //check data in session
+    final AuthProcessDataWrapper authProcessData = storedPendingReq.getSessionData(AuthProcessDataWrapper.class);
+    Assert.assertNotNull("AuthProcessData", authProcessData);
+    Assert.assertNull("eidasBind", authProcessData.getGenericDataFromSession(Constants.EIDAS_BIND, String.class));
+
+    String authBlock = authProcessData.getGenericDataFromSession(Constants.SZR_AUTHBLOCK, String.class);
+    Assert.assertNull("AuthBlock", authBlock);
+
+    Assert.assertFalse("EID process", authProcessData.isEidProcess());
+    Assert.assertTrue("foreigner process", authProcessData.isForeigner());
+    Assert.assertEquals("EID-ISSUING_NATION", "LU",
+        authProcessData.getGenericDataFromSession(PvpAttributeDefinitions.EID_ISSUING_NATION_NAME, String.class));
+
+    Assert.assertNotNull("IDL", authProcessData.getIdentityLink());
+    checkElement("Mustermann", authProcessData.getIdentityLink().getFamilyName());
+    checkElement("Hans", authProcessData.getIdentityLink().getGivenName());
+    checkElement("1989-05-05", authProcessData.getIdentityLink().getDateOfBirth());
+    checkElement("urn:publicid:gv.at:baseid", authProcessData.getIdentityLink().getIdentificationType());
+    checkElement("k+zDM1BVpN1WJO4x7ZQ3ng==", authProcessData.getIdentityLink().getIdentificationValue());
+    Assert.assertNotNull(authProcessData.getIdentityLink().getSerializedSamlAssertion());
+    Assert.assertNotNull(authProcessData.getIdentityLink().getSamlAssertion());
+
+    Assert.assertNotNull("no bPK", authProcessData.getGenericDataFromSession(PvpAttributeDefinitions.BPK_NAME));
+    Assert.assertEquals("wrong bPK", "XX:FkXtOaSSeR3elyL9KLLvijIYDMU=",
+        authProcessData.getGenericDataFromSession(PvpAttributeDefinitions.BPK_NAME));
+            
+  }
+  
   @Test
   public void buildIdentityLinkWithWbpk() throws Exception {
     //initialize test
@@ -444,4 +526,54 @@ public class CreateIdentityLinkTaskTest {
         .attributes(attributeMap)
         .build();
   }
+  
+  private Map<String, Object> convertEidasAttrToSimpleMap(
+      ImmutableMap<AttributeDefinition<?>, ImmutableSet<? extends AttributeValue<?>>> attributeMap) {
+    final Map<String, Object> result = new HashMap<>();
+    for (final AttributeDefinition<?> el : attributeMap.keySet()) {
+      final Class<?> parameterizedType = el.getParameterizedType();
+      if (DateTime.class.equals(parameterizedType)) {
+        convertDateTime(attributeMap, result, el);
+      } else if (PostalAddress.class.equals(parameterizedType)) {
+        convertPostalAddress(attributeMap, result, el);
+      } else {
+        convertString(attributeMap, result, el);
+      }
+    }
+    return result;
+  }
+
+  private void convertString(ImmutableMap<AttributeDefinition<?>,
+                             ImmutableSet<? extends AttributeValue<?>>> attributeMap,
+                             Map<String, Object> result, AttributeDefinition<?> el) {
+    final List<String> natPersonIdObj = EidasResponseUtils
+        .translateStringListAttribute(el, attributeMap.get(el));
+    final String stringAttr = natPersonIdObj.get(0);
+    if (StringUtils.isNotEmpty(stringAttr)) {
+      result.put(el.getFriendlyName(), stringAttr);
+
+    }
+  }
+
+  private void convertPostalAddress(ImmutableMap<AttributeDefinition<?>,
+                                    ImmutableSet<? extends AttributeValue<?>>> attributeMap,
+                                    Map<String, Object> result, AttributeDefinition<?> el) {
+    final PostalAddress addressAttribute = EidasResponseUtils
+        .translateAddressAttribute(el, attributeMap.get(el).asList());
+    if (addressAttribute != null) {
+      result.put(el.getFriendlyName(), addressAttribute);
+
+    }
+  }
+
+  private void convertDateTime(ImmutableMap<AttributeDefinition<?>,
+                               ImmutableSet<? extends AttributeValue<?>>> attributeMap,
+                               Map<String, Object> result, AttributeDefinition<?> el) {
+    final DateTime attribute = EidasResponseUtils.translateDateAttribute(el, attributeMap.get(el).asList());
+    if (attribute != null) {
+      result.put(el.getFriendlyName(), attribute);
+
+    }
+  }
+  
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskTest.java
index 34bca782..bb732f1c 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskTest.java
@@ -24,14 +24,18 @@
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.test.tasks;
 
 import static org.apache.commons.lang3.RandomStringUtils.randomAlphabetic;
+import static org.junit.Assert.assertEquals;
+import static org.junit.Assert.assertFalse;
+import static org.junit.Assert.assertNotNull;
+import static org.junit.Assert.assertNull;
 import static org.junit.Assert.assertThrows;
+import static org.junit.Assert.assertTrue;
 import static org.mockito.ArgumentMatchers.any;
 import static org.mockito.ArgumentMatchers.eq;
 
 import java.math.BigInteger;
 import java.net.URI;
 import java.net.URISyntaxException;
-import java.util.ArrayList;
 import java.util.Arrays;
 import java.util.Collections;
 import java.util.List;
@@ -44,6 +48,7 @@ import org.apache.commons.lang3.RandomStringUtils;
 import org.jetbrains.annotations.NotNull;
 import org.junit.Assert;
 import org.junit.Before;
+import org.junit.Ignore;
 import org.junit.Test;
 import org.junit.runner.RunWith;
 import org.mockito.Mock;
@@ -62,6 +67,7 @@ import org.springframework.web.context.request.ServletRequestAttributes;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.clients.zmr.IZmrClient;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.clients.zmr.ZmrSoapClient.ZmrRegisterResult;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.MatchedPersonResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernp.IErnpClient;
@@ -69,10 +75,12 @@ import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidPostProcess
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidasAttributeException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidasSAuthenticationException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.WorkflowException;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.ZmrCommunicationException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.CountrySpecificDetailSearchProcessor;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.GenericEidProcessor;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.ICcSpecificEidProcessingService;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.RegisterSearchService;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.RegisterSearchService.RegisterSearchResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.InitialSearchTask;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.MatchingTaskUtils;
 import at.gv.bmi.namespace.zmr_su.zmr._20040201.PersonSuchenRequest;
@@ -100,11 +108,9 @@ public class InitialSearchTaskTest {
   
   private static final String EE = "EE";
   private static final String DE = "DE";
-  private static final String IT = "IT";
   
   private static final String EE_ST = EE + "/ST/";
   private static final String DE_ST = DE + "/ST/";
-  private static final String IT_ST = IT + "/ST/";
 
   @Mock
   private IZmrClient zmrClient;
@@ -173,130 +179,215 @@ public class InitialSearchTaskTest {
    */
   @Test
   @DirtiesContext
-  public void testNode100_UserIdentifiedUpdateNecessary_a() throws Exception {
-    String newFirstName = randomAlphabetic(10);
-    Mockito.when(zmrClient.searchWithPersonIdentifier(null, randomPersonalIdentifier_DE)).thenReturn(
+  public void singlePersonalIdMatchUpdateNecessary_Zmr() throws Exception {
+    String oldGivenName = randomAlphabetic(10);
+    Mockito.when(zmrClient.searchWithPersonIdentifier(null, randomPsydonym, DE)).thenReturn(
         new ZmrRegisterResult(Collections.singletonList(
             RegisterResult.builder()
                 .bpk(randomBpk)
                 .pseudonym(Arrays.asList(randomPsydonym))
-                .givenName(newFirstName)
+                .givenName(oldGivenName)
                 .familyName(randomFamilyName)
                 .dateOfBirth(randomBirthDate)
                 .build()),
             generateRandomProcessId()));
+    
+    Mockito.when(zmrClient.searchCountrySpecific(any(), any(), any())).thenThrow(
+        new IllegalStateException("CountrySpecific search search should not be neccessary"));
+    Mockito.when(zmrClient.searchWithMds(any(), any(), any(), any(), any())).thenThrow(
+        new IllegalStateException("MDS search should not be neccessary"));  
+    
+    // execute test
     task.execute(pendingReq, executionContext);
-    String bPk = readBpkFromSessionData(pendingReq);
-
-    Assert.assertEquals("Wrong bpk", randomBpk, bPk);
+    
+    // validate state
+    //INFO: has to be the old givenName because ZMR allows no update of MDS information
+    checkMatchingSuccessState(pendingReq, randomBpk, randomFamilyName, oldGivenName, randomBirthDate, DE);
+        
   }
 
+  
   /**
-   * One match, but register update needed
+   * TODO: include again if ERnP update is implementet. Maybe we can update MDS based on ERnP. 
+   * 
+   * One match, but register update needed.
    * @throws EidasSAuthenticationException 
    */
+  @Ignore
   @Test
   @DirtiesContext
-  public void testNode100_UserIdentifiedUpdateNecessary_b() throws TaskExecutionException, EidasSAuthenticationException {
-    Mockito.when(zmrClient.searchWithPersonIdentifier(null, randomPersonalIdentifier_DE)).thenReturn(
+  public void singlePersonalIdMatchUpdateNecessary_Ernp() throws TaskExecutionException, EidasSAuthenticationException {
+    Mockito.when(zmrClient.searchWithPersonIdentifier(null, randomPsydonym, DE)).thenReturn(
         new ZmrRegisterResult(Collections.emptyList(), generateRandomProcessId()));
     
-    String newRandomGivenName = randomAlphabetic(10);
+    String oldRandomGivenName = randomAlphabetic(10);
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomPersonalIdentifier_DE)).thenReturn(Collections.singletonList(
         RegisterResult.builder()
         .bpk(randomBpk)
         .pseudonym(Arrays.asList(randomPsydonym))
-        .givenName(newRandomGivenName)
+        .givenName(oldRandomGivenName)
         .familyName(randomFamilyName)
         .dateOfBirth(randomBirthDate)
         .build()));
 
+    // execute test
     task.execute(pendingReq, executionContext);
-    String bPk = readBpkFromSessionData(pendingReq);
-
-    Assert.assertEquals("Wrong bpk", randomBpk, bPk);
+    
+    // validate state
+    checkMatchingSuccessState(pendingReq, randomBpk, randomFamilyName, randomGivenName, randomBirthDate, DE);
   }
 
   /**
-   * Two matches found in ZMR
+   * Two matches by PersonalId found in ZMR
    * @throws EidasSAuthenticationException 
    */
   @Test
   @DirtiesContext
-  public void testNode101_ManualFixNecessary_a() throws EidasSAuthenticationException {
-    ArrayList<RegisterResult> zmrResult = new ArrayList<>();
-    zmrResult.add(
-        RegisterResult.builder()
-        .bpk(randomBpk)
-        .pseudonym(Arrays.asList(randomPsydonym))
-        .givenName(randomGivenName)
-        .familyName(randomFamilyName)
-        .dateOfBirth(randomBirthDate)
-        .build());
-    String newRandomGivenName = randomGivenName + randomAlphabetic(2);
-    zmrResult.add(
-        RegisterResult.builder()
-        .bpk(randomBpk)
-        .pseudonym(Arrays.asList(randomPsydonym))
-        .givenName(newRandomGivenName)
-        .familyName(randomFamilyName)
-        .dateOfBirth(randomBirthDate)
-        .build());
-    Mockito.when(zmrClient.searchWithPersonIdentifier(null, randomPersonalIdentifier_DE)).thenReturn(
-        new ZmrRegisterResult(zmrResult, generateRandomProcessId()));
-    Mockito.when(ernpClient.searchWithPersonIdentifier(randomPersonalIdentifier_DE)).thenReturn(Collections.emptyList());
+  public void multiPersonalIdMatch_Zmr() throws EidasSAuthenticationException {
+    String newRandomGivenName = randomAlphabetic(10);
+    Mockito.when(zmrClient.searchWithPersonIdentifier(null, randomPsydonym, DE)).thenReturn(
+        new ZmrRegisterResult(Arrays.asList(
+            RegisterResult.builder()
+                .bpk(randomBpk)
+                .pseudonym(Arrays.asList(randomPsydonym))
+                .givenName(randomGivenName)
+                .familyName(randomFamilyName)
+                .dateOfBirth(randomBirthDate)
+                .build(),
+            RegisterResult.builder()
+                .bpk(randomBpk)
+                .pseudonym(Arrays.asList(randomPsydonym))
+                .givenName(newRandomGivenName)
+                .familyName(randomFamilyName)
+                .dateOfBirth(randomBirthDate)
+                .build()
+            ),                         
+            generateRandomProcessId()));
+    Mockito.when(ernpClient.searchWithPersonIdentifier(
+        randomPersonalIdentifier_DE)).thenReturn(Collections.emptyList());
 
+    // execute task
     TaskExecutionException exception = assertThrows(TaskExecutionException.class,
         () -> task.execute(pendingReq, executionContext));
 
-    Throwable origE = exception.getOriginalException();
-    Assert.assertTrue("Wrong exception", (origE instanceof WorkflowException));
+    
+    // validate state
+    assertTrue("Wrong exception", (exception.getOriginalException() instanceof WorkflowException));
+    assertTrue("Wrong flag 'manualFixNeeded'", 
+        ((WorkflowException)exception.getOriginalException()).isRequiresManualFix()); 
+        
   }
 
-
   /**
-   * Two matches found in ErnP
+   * Two matches by PersonalId found in ZMR
    * @throws EidasSAuthenticationException 
    */
   @Test
   @DirtiesContext
-  public void testNode101_ManualFixNecessary_b() throws EidasSAuthenticationException {
-    Mockito.when(zmrClient.searchWithPersonIdentifier(null, randomPersonalIdentifier_DE)).thenReturn(
-        new ZmrRegisterResult(Collections.emptyList(), generateRandomProcessId()));
-    ArrayList<RegisterResult> ernpResult = new ArrayList<>();
-    ernpResult.add(
-        RegisterResult.builder()
-        .bpk(randomBpk)
-        .pseudonym(Arrays.asList(randomPsydonym))
-        .givenName(randomGivenName)
-        .familyName(randomFamilyName)
-        .dateOfBirth(randomBirthDate)
-        .build());
-    String newRandomGivenName = randomGivenName + randomAlphabetic(2);
-    ernpResult.add(
-        RegisterResult.builder()
-        .bpk(randomBpk)
-        .pseudonym(Arrays.asList(randomPsydonym))
-        .givenName(newRandomGivenName)
-        .familyName(randomFamilyName)
-        .dateOfBirth(randomBirthDate)
-        .build());
-    Mockito.when(ernpClient.searchWithPersonIdentifier(randomPersonalIdentifier_DE)).thenReturn(ernpResult);
+  public void withErrorFromZmr() throws EidasSAuthenticationException {
+    Mockito.when(zmrClient.searchWithPersonIdentifier(null, randomPsydonym, DE)).thenThrow(
+        new ZmrCommunicationException("jUnit ZMR error", null));
+    Mockito.when(ernpClient.searchWithPersonIdentifier(
+        randomPersonalIdentifier_DE)).thenReturn(Collections.emptyList());
 
+    // execute task
     TaskExecutionException exception = assertThrows(TaskExecutionException.class,
         () -> task.execute(pendingReq, executionContext));
 
-    Throwable origE = exception.getOriginalException();
-    Assert.assertTrue("Wrong exception", (origE instanceof WorkflowException));
+    
+    // validate state
+    assertTrue("Wrong exception", (exception.getOriginalException() instanceof WorkflowException));
+    assertFalse("Wrong flag 'manualFixNeeded'", 
+        ((WorkflowException)exception.getOriginalException()).isRequiresManualFix()); 
+        
   }
 
   /**
-   * One match, no register update needed
+   * Two matches by PersonalId found in ErnP
+   * @throws EidasSAuthenticationException 
    */
   @Test
   @DirtiesContext
-  public void testNode102_UserIdentified_a() throws Exception {
-    Mockito.when(zmrClient.searchWithPersonIdentifier(null, randomPersonalIdentifier_DE)).thenReturn(
+  public void multiPersonalIdMatch_Ernp() throws EidasSAuthenticationException {
+    Mockito.when(zmrClient.searchWithPersonIdentifier(null, randomPsydonym, DE)).thenReturn(
+        new ZmrRegisterResult(Collections.emptyList(), generateRandomProcessId()));    
+    String newRandomGivenName = randomAlphabetic(10);
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomPersonalIdentifier_DE)).thenReturn(
+        Arrays.asList(
+            RegisterResult.builder()
+                .bpk(randomBpk)
+                .pseudonym(Arrays.asList(randomPsydonym))
+                .givenName(randomGivenName)
+                .familyName(randomFamilyName)
+                .dateOfBirth(randomBirthDate)
+                .build(),
+            RegisterResult.builder()
+                .bpk(randomBpk)
+                .pseudonym(Arrays.asList(randomPsydonym))
+                .givenName(newRandomGivenName)
+                .familyName(randomFamilyName)
+                .dateOfBirth(randomBirthDate)
+                .build()            
+            ));
+
+    // execute task
+    TaskExecutionException exception = assertThrows(TaskExecutionException.class,
+        () -> task.execute(pendingReq, executionContext));
+   
+    // validate state
+    assertTrue("Wrong exception", (exception.getOriginalException() instanceof WorkflowException));
+    assertTrue("Wrong flag 'manualFixNeeded'", 
+        ((WorkflowException)exception.getOriginalException()).isRequiresManualFix()); 
+    
+  }
+
+  /**
+   * Two matches by PersonalId
+   * @throws EidasSAuthenticationException 
+   */
+  @Test
+  @DirtiesContext
+  public void multiPersonalIdMatch_ErnpAndZmr() throws EidasSAuthenticationException {
+    Mockito.when(zmrClient.searchWithPersonIdentifier(null, randomPsydonym, DE)).thenReturn(
+        new ZmrRegisterResult(Arrays.asList(
+            RegisterResult.builder()
+            .bpk(randomBpk)
+            .pseudonym(Arrays.asList(randomPsydonym))
+            .givenName(randomGivenName)
+            .familyName(randomFamilyName)
+            .dateOfBirth(randomBirthDate)
+            .build()            
+        ), generateRandomProcessId()));    
+    String newRandomGivenName = randomAlphabetic(10);
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomPersonalIdentifier_DE)).thenReturn(
+        Arrays.asList(
+            RegisterResult.builder()
+                .bpk(randomBpk)
+                .pseudonym(Arrays.asList(randomPsydonym))
+                .givenName(randomGivenName)
+                .familyName(randomFamilyName)
+                .dateOfBirth(randomBirthDate)
+                .build()            
+            ));
+
+    // execute task
+    TaskExecutionException exception = assertThrows(TaskExecutionException.class,
+        () -> task.execute(pendingReq, executionContext));
+   
+    // validate state
+    assertTrue("Wrong exception", (exception.getOriginalException() instanceof WorkflowException));
+    assertTrue("Wrong flag 'manualFixNeeded'", 
+        ((WorkflowException)exception.getOriginalException()).isRequiresManualFix()); 
+    
+  }
+  
+  /**
+   * One match by PersonalId, no register update needed
+   */
+  @Test
+  @DirtiesContext
+  public void singlePersonalIdMatchNoUpdate_Ernp() throws Exception {
+    Mockito.when(zmrClient.searchWithPersonIdentifier(null, randomPsydonym, DE)).thenReturn(
         new ZmrRegisterResult(Collections.emptyList(), generateRandomProcessId()));
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomPersonalIdentifier_DE)).thenReturn(Collections.singletonList(
         RegisterResult.builder()
@@ -307,18 +398,20 @@ public class InitialSearchTaskTest {
         .dateOfBirth(randomBirthDate)
         .build()));
 
+    // execute test
     task.execute(pendingReq, executionContext);
-    String bPk = readBpkFromSessionData(pendingReq);
-    Assert.assertEquals("Wrong bpk", randomBpk, bPk);
+    
+    // validate state
+    checkMatchingSuccessState(pendingReq, randomBpk, randomFamilyName, randomGivenName, randomBirthDate, DE);
   }
 
   /**
-   * One match, no register update needed
+   * One match by PersonalId, no register update needed
    */
   @Test
   @DirtiesContext
-  public void testNode102_UserIdentified_b() throws Exception {
-    Mockito.when(zmrClient.searchWithPersonIdentifier(null, randomPersonalIdentifier_DE)).thenReturn(
+  public void singlePersonalIdMatchNoUpdate_Zmr() throws Exception {
+    Mockito.when(zmrClient.searchWithPersonIdentifier(null, randomPsydonym, DE)).thenReturn(
         new ZmrRegisterResult(Collections.singletonList(
             RegisterResult.builder()
                 .bpk(randomBpk)
@@ -330,27 +423,27 @@ public class InitialSearchTaskTest {
             generateRandomProcessId()));
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomPersonalIdentifier_DE)).thenReturn(Collections.emptyList());
 
+    // execute test
     task.execute(pendingReq, executionContext);
-
-    String bPk = readBpkFromSessionData(pendingReq);
-    Assert.assertEquals("Wrong bpk", randomBpk, bPk);
+    
+    // validate state
+    checkMatchingSuccessState(pendingReq, randomBpk, randomFamilyName, randomGivenName, randomBirthDate, DE);
   }
 
   /**
-   * Multiple matches found in ZMR and ErnP with detail search
+   * Find single person in ZMR by country specifics.
    */
   @Test
   @DirtiesContext
-  public void testNode103_UserIdentified_DE() throws Exception {        
+  public void singlePersonFindWithCountySpecifics_Zmr() throws Exception {        
     final AuthenticationResponse response = buildDummyAuthResponseDE(randomGivenName, randomFamilyName,
-        randomPersonalIdentifier_DE,
-        randomBirthDate, randomPlaceOfBirth, randomBirthName);
+        randomPersonalIdentifier_DE, randomBirthDate, randomPlaceOfBirth, randomBirthName);
     TestRequestImpl pendingReq1 = new TestRequestImpl();    
     pendingReq1.getSessionData(AuthProcessDataWrapper.class)
         .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
     
     BigInteger zmrProcessId = generateRandomProcessId();    
-    Mockito.when(zmrClient.searchWithPersonIdentifier(null, randomPersonalIdentifier_DE)).thenReturn(
+    Mockito.when(zmrClient.searchWithPersonIdentifier(null, randomPsydonym, DE)).thenReturn(
         new ZmrRegisterResult(Collections.emptyList(), zmrProcessId));    
     Mockito.when(zmrClient.searchCountrySpecific(eq(zmrProcessId), any(PersonSuchenRequest.class), eq(DE))).thenReturn(
         new ZmrRegisterResult(Collections.singletonList(
@@ -364,23 +457,25 @@ public class InitialSearchTaskTest {
             .birthName(randomBirthName)
             .build())
         ,zmrProcessId));
+    Mockito.when(zmrClient.searchWithMds(any(), any(), any(), any(), any())).thenThrow(
+        new IllegalStateException("MDS search should not be neccessary"));    
+    
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomPersonalIdentifier_DE)).thenReturn(Collections.emptyList());
 
     // execute test
     task.execute(pendingReq1, executionContext);
-
+    
     // validate state
-    String resultBpk = readBpkFromSessionData(pendingReq1);
-    Assert.assertEquals("Wrong bpk", randomBpk, resultBpk);
+    checkMatchingSuccessState(pendingReq1, randomBpk, randomFamilyName, randomGivenName, randomBirthDate, DE);
     
   }
 
   /**
-   * Multiple matches found in ZMR and ErnP with detail search
+   * Multiple matches found in ZMR by country specifics.
    */
   @Test
   @DirtiesContext
-  public void testNode104_ManualFixNecessary_DE() throws Exception {
+  public void multiplePersonFindWithCountySpecifics_Zmr() throws Exception {
     String newRandomPseudonym = randomPersonalIdentifier_DE + RandomStringUtils.randomNumeric(2);
     String newRandomBpk = randomBpk + RandomStringUtils.randomNumeric(6);
     final AuthenticationResponse response = buildDummyAuthResponseDE(randomGivenName, randomFamilyName,
@@ -391,9 +486,8 @@ public class InitialSearchTaskTest {
         .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
     
     BigInteger zmrProcessId = generateRandomProcessId();    
-    Mockito.when(zmrClient.searchWithPersonIdentifier(null, randomPersonalIdentifier_DE)).thenReturn(
-        new ZmrRegisterResult(Collections.emptyList(), zmrProcessId));    
-    Mockito.when(ernpClient.searchWithPersonIdentifier(randomPersonalIdentifier_DE)).thenReturn(Collections.emptyList());            
+    Mockito.when(zmrClient.searchWithPersonIdentifier(null, randomPsydonym, DE)).thenReturn(
+        new ZmrRegisterResult(Collections.emptyList(), zmrProcessId));                
     Mockito.when(zmrClient.searchCountrySpecific(eq(zmrProcessId), any(PersonSuchenRequest.class), eq(DE))).thenReturn(
         new ZmrRegisterResult(Arrays.asList(
             RegisterResult.builder()
@@ -416,14 +510,17 @@ public class InitialSearchTaskTest {
                 .build())
             ,zmrProcessId)); 
                 
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomPersonalIdentifier_DE)).thenReturn(Collections.emptyList());
     
-    // execute test
+    // execute task
     TaskExecutionException exception = assertThrows(TaskExecutionException.class,
         () -> task.execute(pendingReq1, executionContext));
-
-    // check error 
-    Throwable origE = exception.getOriginalException();
-    Assert.assertTrue("Wrong exception", (origE instanceof WorkflowException));
+   
+    // validate state
+    assertTrue("Wrong exception", (exception.getOriginalException() instanceof WorkflowException));
+    assertTrue("Wrong flag 'manualFixNeeded'", 
+        ((WorkflowException)exception.getOriginalException()).isRequiresManualFix()); 
+    
   }
 
   /**
@@ -434,44 +531,51 @@ public class InitialSearchTaskTest {
    */
   @Test
   @DirtiesContext
-  public void testNode505_TransitionToInsertErnbTask() throws TaskExecutionException, EidasSAuthenticationException, URISyntaxException, EaafStorageException {
+  public void noResultByAnySearch() throws TaskExecutionException, EidasSAuthenticationException, URISyntaxException, EaafStorageException {
     BigInteger zmrProcessId = generateRandomProcessId();
     pendingReq.getSessionData(AuthProcessDataWrapper.class)
         .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, 
             buildDummyAuthResponse(randomGivenName, randomFamilyName, randomPersonalIdentifier_EE, randomBirthDate));
-    Mockito.when(zmrClient.searchWithPersonIdentifier(null, randomPersonalIdentifier_EE)).thenReturn(
+    
+    Mockito.when(zmrClient.searchWithPersonIdentifier(null, randomPsydonym, EE)).thenReturn(
         new ZmrRegisterResult(Collections.emptyList(), zmrProcessId)); 
     Mockito.when(zmrClient.searchWithMds(zmrProcessId, randomGivenName, randomFamilyName, randomBirthDate, EE)).thenReturn(
         new ZmrRegisterResult(Collections.emptyList(), zmrProcessId)); 
     
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomPersonalIdentifier_EE)).thenReturn(Collections.emptyList());
+    
 
+    // execute task
     task.execute(pendingReq, executionContext);
 
-    String bPk = readBpkFromSessionData(pendingReq);
-    Assert.assertNull("Wrong bpk", bPk);
+    
+    // validate state
+    assertNotNull("find no eIDAS inbut data", MatchingTaskUtils.getInitialEidasData(pendingReq));
+    
+    assertNull("Find intermediate matching data but matching should be finished", 
+        MatchingTaskUtils.getIntermediateMatchingResult(pendingReq));            
+    assertNull("Find final matching data but no match sould be found",
+        MatchingTaskUtils.getFinalMatchingResult(pendingReq));
 
     Boolean transitionGUI = (Boolean) executionContext.get(Constants.TRANSITION_TO_GENERATE_OTHER_LOGIN_METHOD_GUI_TASK);
     Assert.assertNull("Wrong transition", transitionGUI);
     Boolean transitionErnb = (Boolean) executionContext.get(Constants.TRANSITION_TO_CREATE_NEW_ERNP_ENTRY_TASK);
     Assert.assertTrue("Wrong transition", transitionErnb);
+    
   }
 
   /**
-   * NO match found in ZMR and ErnP with Initial search, one match with MDS search in Ernb
-   * @throws EidasSAuthenticationException 
-   * @throws URISyntaxException 
-   * @throws EaafStorageException 
+   * Find one match with MDS search in ERnP. 
    */
   @Test
   @DirtiesContext
-  public void testNode505_TransitionToGUI_Ernb() throws TaskExecutionException, EidasSAuthenticationException, URISyntaxException, EaafStorageException {
+  public void resultByMdsSearch_Ernb() throws TaskExecutionException, EidasSAuthenticationException, URISyntaxException, EaafStorageException {
     BigInteger zmrProcessId = generateRandomProcessId();
     pendingReq.getSessionData(AuthProcessDataWrapper.class)
         .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, 
               buildDummyAuthResponse(randomGivenName, randomFamilyName, randomPersonalIdentifier_EE, randomBirthDate));
     
-    Mockito.when(zmrClient.searchWithPersonIdentifier(null, randomPersonalIdentifier_EE)).thenReturn(
+    Mockito.when(zmrClient.searchWithPersonIdentifier(null, randomPsydonym, EE)).thenReturn(
         new ZmrRegisterResult(Collections.emptyList(), zmrProcessId)); 
     Mockito.when(zmrClient.searchWithMds(zmrProcessId, randomGivenName, randomFamilyName, randomBirthDate, EE)).thenReturn(
         new ZmrRegisterResult(Collections.emptyList(), zmrProcessId));
@@ -487,24 +591,22 @@ public class InitialSearchTaskTest {
                 .dateOfBirth(randomBirthDate)
                 .build()));
 
+    // execute test
     task.execute(pendingReq, executionContext);
 
-    assertThrows(WorkflowException.class, () -> readBpkFromSessionData(pendingReq));
-    Boolean transitionGUI = (Boolean) executionContext.get(Constants.TRANSITION_TO_GENERATE_OTHER_LOGIN_METHOD_GUI_TASK);
-    Assert.assertTrue("Wrong transition", transitionGUI);
-    Boolean transitionErnb = (Boolean) executionContext.get(Constants.TRANSITION_TO_CREATE_NEW_ERNP_ENTRY_TASK);
-    Assert.assertNull("Wrong transition", transitionErnb);
+    // validate state
+    checkIntermediateResult(1);
+
   }
 
   /**
-   * NO match found in ZMR and ErnP with Initial search, one match with MDS search in ZMR
-   * @throws EidasSAuthenticationException 
+   * Find one match with MDS search in ZMR. 
    */
   @Test
   @DirtiesContext
-  public void testNode505_TransitionToGUI_Zmr() throws TaskExecutionException, EidasSAuthenticationException {
+  public void resultByMdsSearch_Zmr() throws TaskExecutionException, EidasSAuthenticationException {
     BigInteger zmrProcessId = generateRandomProcessId();    
-    Mockito.when(zmrClient.searchWithPersonIdentifier(null, randomPersonalIdentifier_DE)).thenReturn(
+    Mockito.when(zmrClient.searchWithPersonIdentifier(null, randomPsydonym, DE)).thenReturn(
         new ZmrRegisterResult(Collections.emptyList(), zmrProcessId)); 
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomPersonalIdentifier_DE)).thenReturn(Collections.emptyList());
 
@@ -518,29 +620,35 @@ public class InitialSearchTaskTest {
             .build()),
             zmrProcessId));
 
+    // execute test
     task.execute(pendingReq, executionContext);
 
-    assertThrows(WorkflowException.class, () -> readBpkFromSessionData(pendingReq));
-    Boolean transitionGUI = (Boolean) executionContext.get(Constants.TRANSITION_TO_GENERATE_OTHER_LOGIN_METHOD_GUI_TASK);
-    Assert.assertTrue("Wrong transition", transitionGUI);
-    Boolean transitionErnb = (Boolean) executionContext.get(Constants.TRANSITION_TO_CREATE_NEW_ERNP_ENTRY_TASK);
-    Assert.assertNull("Wrong transition", transitionErnb);
+    // validate state
+    checkIntermediateResult(1);
+    
   }
 
   /**
-   * NO match found in ZMR and ErnP with Initial search, multiple matches found with MDS search
-   * @throws EidasSAuthenticationException 
+   * resultByMdsSearch
    */
   @Test
   @DirtiesContext
-  public void testNode505_TransitionToGUI_Ernb_multi() throws TaskExecutionException, EidasSAuthenticationException {
+  public void multipleResultsByMdsSearch() throws TaskExecutionException, EidasSAuthenticationException {
     BigInteger zmrProcessId = generateRandomProcessId();    
-    Mockito.when(zmrClient.searchWithPersonIdentifier(null, randomPersonalIdentifier_DE)).thenReturn(
+    Mockito.when(zmrClient.searchWithPersonIdentifier(null, randomPsydonym, DE)).thenReturn(
         new ZmrRegisterResult(Collections.emptyList(), zmrProcessId)); 
     Mockito.when(zmrClient.searchCountrySpecific(eq(zmrProcessId), any(PersonSuchenRequest.class), any(String.class))).thenReturn(
         new ZmrRegisterResult(Collections.emptyList(), zmrProcessId));
     Mockito.when(zmrClient.searchWithMds(zmrProcessId, randomGivenName, randomFamilyName, randomBirthDate, DE)).thenReturn(
-        new ZmrRegisterResult(Collections.emptyList(), zmrProcessId));
+        new ZmrRegisterResult(Arrays.asList(
+            RegisterResult.builder()
+                .bpk(randomBpk + "2")
+                .pseudonym(Arrays.asList(randomPsydonym))
+                .givenName(randomGivenName)
+                .familyName(randomFamilyName)
+                .dateOfBirth(randomBirthDate)
+                .build()), 
+            zmrProcessId));
         
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomPersonalIdentifier_DE)).thenReturn(Collections.emptyList());            
     Mockito.when(ernpClient.searchWithMds(randomGivenName, randomFamilyName, randomBirthDate)).thenReturn(
@@ -560,13 +668,12 @@ public class InitialSearchTaskTest {
                 .dateOfBirth(randomBirthDate)
                 .build()));
 
+    // execute test
     task.execute(pendingReq, executionContext);
 
-    assertThrows(WorkflowException.class, () -> readBpkFromSessionData(pendingReq));
-    Boolean transitionGUI = (Boolean) executionContext.get(Constants.TRANSITION_TO_GENERATE_OTHER_LOGIN_METHOD_GUI_TASK);
-    Assert.assertTrue("Wrong transition", transitionGUI);
-    Boolean transitionErnb = (Boolean) executionContext.get(Constants.TRANSITION_TO_CREATE_NEW_ERNP_ENTRY_TASK);
-    Assert.assertNull("Wrong transition", transitionErnb);
+    // validate state
+    checkIntermediateResult(3);
+    
   }
 
   @NotNull
@@ -579,6 +686,38 @@ public class InitialSearchTaskTest {
     
   }
   
+  private void checkMatchingSuccessState(IRequest pendingReq, String bpk, String familyName, String givenName, 
+      String birhday, String countryCode) {    
+    assertNull("Find intermediate matching data but matching should be finished", 
+        MatchingTaskUtils.getIntermediateMatchingResult(pendingReq));    
+    assertNotNull("find no eIDAS inbut data", MatchingTaskUtils.getInitialEidasData(pendingReq));
+    
+    MatchedPersonResult personInfo = MatchingTaskUtils.getFinalMatchingResult(pendingReq);
+    assertNotNull("no final matching result", personInfo);
+    assertEquals("wrong bpk", bpk, personInfo.getBpk());
+    assertEquals("wrong givenName", givenName, personInfo.getGivenName());
+    assertEquals("wrong familyName", familyName, personInfo.getFamilyName());
+    assertEquals("wrong dateOfBirth", birhday, personInfo.getDateOfBirth());
+    assertEquals("wrong countryCode", countryCode, personInfo.getCountryCode());
+        
+  }
+  
+  private void checkIntermediateResult(int resultSize) {    
+    Boolean transitionGUI = (Boolean) executionContext.get(Constants.TRANSITION_TO_GENERATE_OTHER_LOGIN_METHOD_GUI_TASK);
+    Assert.assertTrue("Wrong transition", transitionGUI);
+    Boolean transitionErnb = (Boolean) executionContext.get(Constants.TRANSITION_TO_CREATE_NEW_ERNP_ENTRY_TASK);
+    Assert.assertNull("Wrong transition", transitionErnb);
+        
+    assertNotNull("find no eIDAS inbut data", MatchingTaskUtils.getInitialEidasData(pendingReq));                    
+    assertNull("Find final matching data but no match sould be found",
+        MatchingTaskUtils.getFinalMatchingResult(pendingReq));
+    
+    RegisterSearchResult result = MatchingTaskUtils.getIntermediateMatchingResult(pendingReq);
+    assertNotNull("Find no intermediate matching data", result);
+    assertEquals("wrong intermediate result size", resultSize, result.getResultCount());
+    
+  }
+  
   @NotNull
   private AuthenticationResponse buildDummyAuthResponse(String givenName, String familyName, String identifier,
                                                         String dateOfBirth) throws URISyntaxException {
@@ -646,10 +785,4 @@ public class InitialSearchTaskTest {
         .attributeValueMarshaller(marshaller).build();
   }
 
-  private String readBpkFromSessionData(TestRequestImpl pendingReq) throws WorkflowException {
-    return MatchingTaskUtils.getInitialRegisterResult(pendingReq) != null 
-        ? MatchingTaskUtils.getInitialRegisterResult(pendingReq).getBpk()
-        : null;
-    
-  }
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveAustrianResidenceGuiResponseTaskTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveAustrianResidenceGuiResponseTaskTest.java
index 281be36f..77c49bb4 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveAustrianResidenceGuiResponseTaskTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveAustrianResidenceGuiResponseTaskTest.java
@@ -101,7 +101,7 @@ public class ReceiveAustrianResidenceGuiResponseTaskTest {
     SimpleEidasData eidasData = setupEidasData();
     RegisterSearchResult registerSearchResult = buildEmptyResult();
     mockRegisterSearch(userInput, registerSearchResult, eidasData);
-    MatchingTaskUtils.storeInitialRegisterResult(pendingReq, registerSearchResult);
+    MatchingTaskUtils.storeIntermediateMatchingResult(pendingReq, registerSearchResult);
     
     task.execute(pendingReq, executionContext);
 
@@ -113,7 +113,7 @@ public class ReceiveAustrianResidenceGuiResponseTaskTest {
     UserInput userInput = setupUserInput();
     SimpleEidasData eidasData = setupEidasData();
     RegisterSearchResult registerSearchResult = buildResultWithOneMatch(buildMatchingRegisterResult(eidasData));
-    MatchingTaskUtils.storeInitialRegisterResult(pendingReq, registerSearchResult);
+    MatchingTaskUtils.storeIntermediateMatchingResult(pendingReq, registerSearchResult);
     mockRegisterSearch(userInput, registerSearchResult, eidasData);
 
     task.execute(pendingReq, executionContext);
@@ -128,7 +128,7 @@ public class ReceiveAustrianResidenceGuiResponseTaskTest {
     UserInput userInput = setupUserInput();
     SimpleEidasData eidasData = setupEidasData();
     RegisterSearchResult registerSearchResult = buildResultWithOneMatch(buildNotMatchingRegisterResult(eidasData));
-    MatchingTaskUtils.storeInitialRegisterResult(pendingReq, registerSearchResult);
+    MatchingTaskUtils.storeIntermediateMatchingResult(pendingReq, registerSearchResult);
     mockRegisterSearch(userInput, registerSearchResult, eidasData);
 
     task.execute(pendingReq, executionContext);
@@ -141,7 +141,7 @@ public class ReceiveAustrianResidenceGuiResponseTaskTest {
     UserInput userInput = setupUserInput();
     SimpleEidasData eidasData = setupEidasData();
     RegisterSearchResult registerSearchResult = buildResultWithTwoMatches();
-    MatchingTaskUtils.storeInitialRegisterResult(pendingReq, registerSearchResult);
+    MatchingTaskUtils.storeIntermediateMatchingResult(pendingReq, registerSearchResult);
     mockRegisterSearch(userInput, registerSearchResult, eidasData);
 
     TaskExecutionException e = assertThrows(TaskExecutionException.class,
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveMobilePhoneSignatureResponseTaskTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveMobilePhoneSignatureResponseTaskTest.java
index 8c137bb2..51077e96 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveMobilePhoneSignatureResponseTaskTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveMobilePhoneSignatureResponseTaskTest.java
@@ -344,7 +344,7 @@ public class ReceiveMobilePhoneSignatureResponseTaskTest {
     authProcessData.setGenericDataToSession(Constants.DATA_SIMPLE_EIDAS, eidData);
     RegisterSearchResult registerSearchResult = new RegisterSearchResult(new RegisterOperationStatus(generateRandomProcessId()),
         Collections.emptyList(), Collections.emptyList());
-    MatchingTaskUtils.storeInitialRegisterResult(pendingReq, registerSearchResult);
+    MatchingTaskUtils.storeIntermediateMatchingResult(pendingReq, registerSearchResult);
     
     task.execute(pendingReq, executionContext);
 
@@ -363,7 +363,7 @@ public class ReceiveMobilePhoneSignatureResponseTaskTest {
     SimpleEidasData eidData = createEidasDataMatchingToSamlResponse().build();
     authProcessData.setGenericDataToSession(Constants.DATA_SIMPLE_EIDAS, eidData);
     RegisterSearchResult registerSearchResult = buildResultWithOneMatch();
-    MatchingTaskUtils.storeInitialRegisterResult(pendingReq, registerSearchResult);
+    MatchingTaskUtils.storeIntermediateMatchingResult(pendingReq, registerSearchResult);
 
     task.execute(pendingReq, executionContext);
 
-- 
cgit v1.2.3


From 249e3805da249afafe164ae7dc43884ba3777727 Mon Sep 17 00:00:00 2001
From: Thomas <>
Date: Wed, 16 Jun 2021 11:51:11 +0200
Subject: add ZMR update process into ZMRClient

---
 .../specific/modules/auth/eidas/v2/Constants.java  |   4 +
 .../auth/eidas/v2/clients/zmr/IZmrClient.java      |  16 +-
 .../auth/eidas/v2/clients/zmr/ZmrSoapClient.java   | 256 +++++++++++++++++++--
 .../auth/eidas/v2/ernp/DummyErnpClient.java        |   3 +-
 .../modules/auth/eidas/v2/ernp/IErnpClient.java    |   2 +-
 .../eidas/v2/service/RegisterSearchService.java    |  65 +++---
 .../auth/eidas/v2/tasks/InitialSearchTask.java     |  10 +-
 .../ReceiveAustrianResidenceGuiResponseTask.java   |   8 +-
 .../ReceiveMobilePhoneSignatureResponseTask.java   |   6 +-
 .../auth/eidas/v2/utils/MatchingTaskUtils.java     |   8 +-
 .../modules/auth/eidas/v2/zmr/DummyZmrClient.java  |  82 -------
 .../eidas/v2/test/tasks/InitialSearchTaskTest.java |  47 +++-
 ...eceiveAustrianResidenceGuiResponseTaskTest.java |  24 +-
 ...eceiveMobilePhoneSignatureResponseTaskTest.java |  14 +-
 .../resources/config/junit_config_1.properties     |   2 +-
 .../config/junit_config_1_springboot.properties    |   3 +-
 .../resources/config/junit_config_2.properties     |   1 +
 .../resources/config/junit_config_3.properties     |   1 +
 .../resources/config/junit_config_4.properties     |   1 +
 .../config/junit_config_de_attributes.properties   |   1 +
 20 files changed, 366 insertions(+), 188 deletions(-)
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/DummyZmrClient.java

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java
index 48c114a8..5edde8a4 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java
@@ -127,6 +127,10 @@ public class Constants {
   
   public static final String CONIG_PROPS_EIDAS_ZMRCLIENT_REQ_ORGANIZATION_NR = CONIG_PROPS_EIDAS_ZMRCLIENT
       + ".req.organisation.behoerdennr";
+  public static final String CONIG_PROPS_EIDAS_ZMRCLIENT_REQ_UPDATE_REASON_CODE = CONIG_PROPS_EIDAS_ZMRCLIENT
+      + ".req.update.reason.code";
+  public static final String CONIG_PROPS_EIDAS_ZMRCLIENT_REQ_UPDATE_REASON_TEXT = CONIG_PROPS_EIDAS_ZMRCLIENT
+      + ".req.update.reason.text";
   
   
   // SZR Client configuration properties
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/clients/zmr/IZmrClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/clients/zmr/IZmrClient.java
index e98573d4..c4e8ece0 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/clients/zmr/IZmrClient.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/clients/zmr/IZmrClient.java
@@ -79,10 +79,18 @@ public interface IZmrClient {
       @Nonnull PersonSuchenRequest personSearchDao, @Nonnull String citizenCountryCode) 
           throws EidasSAuthenticationException;
 
-
-  void update(@Nullable BigInteger zmrProzessId, RegisterResult registerResult, SimpleEidasData eidData);
-
-  ZmrRegisterResult searchWithBpkZp(@Nullable BigInteger zmrProzessId, String bpkzp);
+  /**
+   * Update ZMR entry to KITT existing ZMR identity with this eIDAS authentication.
+   * 
+   * @param zmrProzessId zmrProzessId ProcessId from ZMR or <code>null</code> if no processId exists
+   * @param registerResult Already matched eIDAS identity that should be KITT
+   * @param eidData eIDAS eID information from current authentication process 
+   * @return Update result but never <code>null</code>
+   * @throws EidasSAuthenticationException In case of a communication error 
+   */
+  @Nonnull
+  ZmrRegisterResult update(@Nullable BigInteger zmrProzessId, RegisterResult registerResult, SimpleEidasData eidData)
+      throws EidasSAuthenticationException;
 
   ZmrRegisterResult searchWithResidenceData(@Nullable BigInteger zmrProzessId, String givenName, String familyName, 
       String dateOfBirth, String zipcode, String city, String street);
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/clients/zmr/ZmrSoapClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/clients/zmr/ZmrSoapClient.java
index 60e88dca..c5f01392 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/clients/zmr/ZmrSoapClient.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/clients/zmr/ZmrSoapClient.java
@@ -4,9 +4,13 @@ import java.math.BigInteger;
 import java.net.URL;
 import java.text.MessageFormat;
 import java.util.Arrays;
+import java.util.Collection;
 import java.util.Collections;
+import java.util.HashSet;
 import java.util.List;
 import java.util.Objects;
+import java.util.Optional;
+import java.util.Set;
 import java.util.stream.Collectors;
 
 import javax.annotation.Nonnull;
@@ -23,6 +27,7 @@ import at.asitplus.eidas.specific.modules.auth.eidas.v2.clients.AbstractSoapClie
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidasSAuthenticationException;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.WorkflowException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.ZmrCommunicationException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.VersionHolder;
 import at.gv.bmi.namespace.zmr_su.base._20040201.ClientInfoType;
@@ -34,17 +39,24 @@ import at.gv.bmi.namespace.zmr_su.base._20040201.WorkflowInfoServer;
 import at.gv.bmi.namespace.zmr_su.base._20040201_.Service;
 import at.gv.bmi.namespace.zmr_su.base._20040201_.ServiceFault;
 import at.gv.bmi.namespace.zmr_su.base._20040201_.ServicePort;
+import at.gv.bmi.namespace.zmr_su.zmr._20040201.EidasIdentitaetAnlageType;
+import at.gv.bmi.namespace.zmr_su.zmr._20040201.EidasIdentitaetErgebnisType;
 import at.gv.bmi.namespace.zmr_su.zmr._20040201.EidasSuchdatenType;
 import at.gv.bmi.namespace.zmr_su.zmr._20040201.ErgebniskriterienType;
 import at.gv.bmi.namespace.zmr_su.zmr._20040201.NatuerlichePersonErgebnisType;
+import at.gv.bmi.namespace.zmr_su.zmr._20040201.PersonAendernInfoType;
+import at.gv.bmi.namespace.zmr_su.zmr._20040201.PersonAendernRequest;
 import at.gv.bmi.namespace.zmr_su.zmr._20040201.PersonErgebnisSatzType;
 import at.gv.bmi.namespace.zmr_su.zmr._20040201.PersonErgebnisType;
+import at.gv.bmi.namespace.zmr_su.zmr._20040201.PersonReferenzType;
 import at.gv.bmi.namespace.zmr_su.zmr._20040201.PersonSuchenRequest;
 import at.gv.bmi.namespace.zmr_su.zmr._20040201.PersonSuchenResponse;
 import at.gv.bmi.namespace.zmr_su.zmr._20040201.PersonensucheInfoType;
 import at.gv.bmi.namespace.zmr_su.zmr._20040201.SuchkriterienType;
+import at.gv.e_government.reference.namespace.persondata.de._20040201.IdentificationType;
 import at.gv.e_government.reference.namespace.persondata.de._20040201.NatuerlichePersonTyp;
 import at.gv.e_government.reference.namespace.persondata.de._20040201.PersonenNameTyp;
+import at.gv.egiz.eaaf.core.api.data.EaafConstants;
 import at.gv.egiz.eaaf.core.exceptions.EaafAuthenticationException;
 import at.gv.egiz.eaaf.core.exceptions.EaafConfigurationException;
 import lombok.AllArgsConstructor;
@@ -60,7 +72,6 @@ import lombok.extern.slf4j.Slf4j;
 @Slf4j
 public class ZmrSoapClient extends AbstractSoapClient implements IZmrClient {
 
-  private static final String ERROR_MATCHING_00 = "module.eidasauth.matching.00";
   private static final String ERROR_MATCHING_01 = "module.eidasauth.matching.01";
   private static final String ERROR_MATCHING_02 = "module.eidasauth.matching.02";
   private static final String ERROR_MATCHING_99 = "module.eidasauth.matching.99";
@@ -80,7 +91,11 @@ public class ZmrSoapClient extends AbstractSoapClient implements IZmrClient {
       "Searching " + Constants.eIDAS_ATTR_PERSONALIDENTIFIER;
   private static final String PROCESS_SEARCH_MDS_ONLY = "Searching with MDS only";
   private static final String PROCESS_SEARCH_COUNTRY_SPECIFIC = "Searching {} specific";
-
+  
+  private static final String PROCESS_KITT_GENERAL = "KITT general-processing";
+  private static final String PROCESS_KITT_IDENITIES_GET = "KITT get-latest-version";
+  private static final String PROCESS_KITT_IDENITIES_UPDATE = "KITT update dataset";
+  
   private static final String CLIENT_INFO = "eIDAS MS-Connector v{0}";
   private static final String CLIENT_DEFAULT = "ZMR Client";
 
@@ -133,7 +148,10 @@ public class ZmrSoapClient extends AbstractSoapClient implements IZmrClient {
       log.warn(LOGMSG_ZMR_ERROR, PROCESS_SEARCH_PERSONAL_IDENTIFIER, errorMsg);
       throw new ZmrCommunicationException(ERROR_MATCHING_01, new Object[] { errorMsg }, e);
 
-    } catch (final EaafAuthenticationException e) {
+    } catch (EidasSAuthenticationException e) {
+      throw e;
+      
+    } catch (final Exception e) {
       log.warn(LOGMSG_ZMR_RESP_PROCESS, PROCESS_SEARCH_PERSONAL_IDENTIFIER, e.getMessage());
       throw new EidasSAuthenticationException(ERROR_MATCHING_99, new Object[] { e.getMessage() }, e);
 
@@ -179,7 +197,10 @@ public class ZmrSoapClient extends AbstractSoapClient implements IZmrClient {
       log.warn(LOGMSG_ZMR_ERROR, PROCESS_SEARCH_MDS_ONLY, errorMsg);
       throw new ZmrCommunicationException(ERROR_MATCHING_01, new Object[] { errorMsg }, e);
 
-    } catch (final EaafAuthenticationException e) {
+    } catch (EidasSAuthenticationException e) {
+      throw e;
+      
+    } catch (final Exception e) {
       log.warn(LOGMSG_ZMR_RESP_PROCESS, PROCESS_SEARCH_MDS_ONLY, e.getMessage());
       throw new EidasSAuthenticationException(ERROR_MATCHING_99, new Object[] { e.getMessage() }, e);
 
@@ -220,7 +241,10 @@ public class ZmrSoapClient extends AbstractSoapClient implements IZmrClient {
       log.warn(LOGMSG_ZMR_ERROR, friendlyMsg, errorMsg);
       throw new ZmrCommunicationException(ERROR_MATCHING_01, new Object[] { errorMsg }, e);
 
-    } catch (final EaafAuthenticationException e) {
+    } catch (EidasSAuthenticationException e) {
+      throw e;
+      
+    } catch (final Exception e) {
       log.warn(LOGMSG_ZMR_RESP_PROCESS, friendlyMsg, e.getMessage());
       throw new EidasSAuthenticationException(ERROR_MATCHING_99, new Object[] { e.getMessage() }, e);
 
@@ -228,17 +252,45 @@ public class ZmrSoapClient extends AbstractSoapClient implements IZmrClient {
   }
 
   @Override
-  public void update(BigInteger zmrProzessId, RegisterResult registerResult, SimpleEidasData eidData) {
-    // TODO Auto-generated method stub
+  public ZmrRegisterResult update(BigInteger zmrProzessId, RegisterResult registerResult, 
+      SimpleEidasData eidData) throws EidasSAuthenticationException {
+    try {
+      //search person with register result, because update needs information from search response
+      PersonErgebnisType zmrPersonToKitt = searchPersonForUpdate(zmrProzessId, registerResult);
+            
+      // select elements that have to be updated
+      Collection<? extends EidasIdentitaetAnlageType> eidasDocumentToAdd = 
+          selectEidasDocumentsToAdd(zmrPersonToKitt, eidData);
+      
+      if (eidasDocumentToAdd.isEmpty()) {
+        log.info("Find no eIDAS document for update during: {}. Looks strange but nothing todo", 
+            PROCESS_KITT_GENERAL);
+        return new ZmrRegisterResult(Arrays.asList(registerResult), zmrProzessId);
+        
+      } else {
+        log.info("Find #{} eIDAS documents for update during: {}", eidasDocumentToAdd.size(), PROCESS_KITT_GENERAL);
+        
+        // update entry based on selected update info's and results from search response 
+        return updatePersonInZmr(zmrPersonToKitt, eidasDocumentToAdd, eidData.getCitizenCountryCode());  
+        
+      }
+            
+    } catch (final ServiceFault e) {
+      final String errorMsg = extractReasonFromError(e);
+      log.warn(LOGMSG_ZMR_ERROR, PROCESS_KITT_GENERAL, errorMsg);
+      throw new ZmrCommunicationException(ERROR_MATCHING_01, new Object[] { errorMsg }, e);
 
-  }
+    } catch (EidasSAuthenticationException e) {
+      throw e;
+      
+    } catch (final Exception e) {
+      log.warn(LOGMSG_ZMR_RESP_PROCESS, PROCESS_KITT_GENERAL, e.getMessage());
+      throw new EidasSAuthenticationException(ERROR_MATCHING_99, new Object[] { e.getMessage() }, e);
 
-  @Override
-  public ZmrRegisterResult searchWithBpkZp(BigInteger zmrProzessId, String bpkzp) {
-    // TODO Auto-generated method stub
-    return null;
-  }
+    }
 
+  }
+  
   @Override
   public ZmrRegisterResult searchWithResidenceData(BigInteger zmrProzessId, String givenName, String familyName, 
       String dateOfBirth, String zipcode, String city, String street) {
@@ -309,8 +361,9 @@ public class ZmrSoapClient extends AbstractSoapClient implements IZmrClient {
   }
   
   private void valdiateAdditionalConfigParameters() {
-    checkConfigurationValue(Constants.CONIG_PROPS_EIDAS_ZMRCLIENT_REQ_ORGANIZATION_NR);
-        
+    checkConfigurationValue(Constants.CONIG_PROPS_EIDAS_ZMRCLIENT_REQ_ORGANIZATION_NR);        
+    checkConfigurationValue(Constants.CONIG_PROPS_EIDAS_ZMRCLIENT_REQ_UPDATE_REASON_CODE);
+    
   }
   
   private void checkConfigurationValue(String key) {
@@ -406,7 +459,8 @@ public class ZmrSoapClient extends AbstractSoapClient implements IZmrClient {
 
       if (forceSinglePersonMatch) {
         return new ZmrRegisterResult(processSearchPersonResponseSingleResult(
-            searchPersonResp.getPersonensuchergebnis().getPersonErgebnisSatz(), citizenCountryCode),
+            searchPersonResp.getPersonensuchergebnis().getPersonErgebnisSatz(), 
+            citizenCountryCode, processStepFiendlyname),
             extractZmrProcessId(resp.getWorkflowInfoServer()));
 
       } else {
@@ -447,10 +501,11 @@ public class ZmrSoapClient extends AbstractSoapClient implements IZmrClient {
   @NonNull
   private List<RegisterResult> processSearchPersonResponseSingleResult(
       @Nonnull List<PersonErgebnisSatzType> personErgebnisSatz,
-      @Nonnull String citizenCountryCode) throws EaafAuthenticationException {
+      @Nonnull String citizenCountryCode, String processStepFiendlyname) throws EaafAuthenticationException {
     if (personErgebnisSatz.size() > 1) {
-      log.error("Find more than on person with eIDAS personalIdentifier.");
-      throw new EaafAuthenticationException(ERROR_MATCHING_00, null);
+      log.error("Find more-than-one ZMR entry with search criteria that has to be unique");
+      throw new WorkflowException(processStepFiendlyname, 
+          "Find more-than-one ZMR entry with search criteria that has to be unique", true);
 
     } else {
       return Arrays.asList(processPersonResult(personErgebnisSatz.get(0), citizenCountryCode));
@@ -554,4 +609,167 @@ public class ZmrSoapClient extends AbstractSoapClient implements IZmrClient {
         .orElse(null);
 
   }
+  
+  private PersonErgebnisType searchPersonForUpdate(BigInteger zmrProzessId, RegisterResult registerResult) 
+      throws ServiceFault, WorkflowException {
+    // build search request
+    final RequestType req = new RequestType();
+
+    // set eIDAS person information
+    final PersonSuchenRequest searchPersonReq = new PersonSuchenRequest();        
+    req.setPersonSuchenRequest(searchPersonReq);    
+    NatuerlichePersonTyp natPersonInfos = new NatuerlichePersonTyp();
+    searchPersonReq.setNatuerlichePerson(natPersonInfos);    
+    PersonenNameTyp nameInfo = new PersonenNameTyp();    
+    natPersonInfos.setPersonenName(nameInfo);    
+    IdentificationType bpkInfo = new IdentificationType();
+    natPersonInfos.getIdentification().add(bpkInfo);
+    
+    // set MDS
+    nameInfo.setVorname(registerResult.getGivenName());
+    nameInfo.setFamilienname(registerResult.getFamilyName());
+    natPersonInfos.setGeburtsdatum(registerResult.getDateOfBirth());
+    
+    //set bPK
+    bpkInfo.setValue(registerResult.getBpk());    
+    bpkInfo.setType(EaafConstants.URN_PREFIX_CDID + "ZP");
+    
+    // set work-flow client information
+    req.setWorkflowInfoClient(generateWorkFlowInfos(PROCESS_KITT_IDENITIES_GET, zmrProzessId));
+    req.setClientInfo(generateClientInfos());
+
+    // set additionl search parameters
+    searchPersonReq.setPersonensucheInfo(generateSearchCriteria(false, true, false));
+
+    // request ZMR
+    log.trace("Requesting ZMR for '{}' operation", PROCESS_KITT_IDENITIES_GET);       
+    ResponseType resp = zmrClient.service(req, null);
+    log.trace("Receive response from ZMR for '{}' operation", PROCESS_KITT_IDENITIES_GET);
+        
+    return extractPersonResultForUpdaste(resp);
+    
+  }
+
+  private PersonErgebnisType extractPersonResultForUpdaste(ResponseType resp) throws WorkflowException {
+    final PersonSuchenResponse searchPersonResp = resp.getPersonSuchenResponse();
+    if (searchPersonResp.getPersonensuchergebnis() == null 
+        || searchPersonResp.getPersonensuchergebnis().getPersonErgebnisSatz().isEmpty()) {
+      log.error("ZMR result contains NO 'Personensuchergebnis' or 'PersonErgebnisSatz' is empty");
+      throw new WorkflowException(PROCESS_KITT_IDENITIES_GET, 
+          "Find NO data-set with already matchted eID during ZMR KITT process");
+      
+    } else {
+      List<PersonErgebnisSatzType> personErgebnisSatz = 
+          searchPersonResp.getPersonensuchergebnis().getPersonErgebnisSatz();
+      if (personErgebnisSatz.size() > 1) {
+        log.error("Find more than on person with aleady matched information.");
+        throw new WorkflowException(PROCESS_KITT_IDENITIES_GET, 
+            "Find MORE-THAN-ONE data-sets with already matchted eID during ZMR KITT process");
+
+      } else {
+        return personErgebnisSatz.get(0).getPersonendaten().getPersonErgebnis().get(0);
+        
+      }      
+    }
+  }
+  
+  private Collection<? extends EidasIdentitaetAnlageType> selectEidasDocumentsToAdd(
+      PersonErgebnisType zmrPersonToKitt, SimpleEidasData eidData) {
+
+    //TODO: maybe we should re-factor SimpleEidasData to a generic data-model to facilitate arbitrary eIDAS attributes  
+    Set<EidasIdentitaetAnlageType> result = new HashSet<>();   
+    addEidasDocumentIfNotAvailable(result, zmrPersonToKitt, eidData.getCitizenCountryCode(), 
+        Constants.eIDAS_ATTRURN_PERSONALIDENTIFIER, eidData.getPseudonym(), true);    
+    addEidasDocumentIfNotAvailable(result, zmrPersonToKitt, eidData.getCitizenCountryCode(), 
+        Constants.eIDAS_ATTRURN_PLACEOFBIRTH, eidData.getPlaceOfBirth(), false);
+    addEidasDocumentIfNotAvailable(result, zmrPersonToKitt, eidData.getCitizenCountryCode(), 
+        Constants.eIDAS_ATTRURN_BIRTHNAME, eidData.getBirthName(), false);
+        
+    return result;
+    
+  }
+  
+  private void addEidasDocumentIfNotAvailable(Set<EidasIdentitaetAnlageType> result,
+      PersonErgebnisType zmrPersonToKitt, String citizenCountryCode, 
+      String attrName, String attrValue, boolean allowMoreThanOneEntry) {
+
+    if (StringUtils.isEmpty(attrValue)) {
+      log.trace("No eIDAS document: {}. Nothing todo for KITT process ... ", attrName);
+      return;
+      
+    }
+    
+    // check if eIDAS attribute is already includes an eIDAS-Document 
+    boolean alreadyExist = zmrPersonToKitt.getEidasIdentitaet().stream()
+        .filter(el -> el.getDokumentNummer().equals(attrValue) 
+            && el.getEidasArt().equals(attrName)
+            && el.getStaatscode3().equals(citizenCountryCode))     
+        .findAny()
+        .isPresent();
+    
+    if (!alreadyExist) {    
+      // check eIDAS documents already contains a document with this pair of country-code and attribute-name
+      Optional<EidasIdentitaetErgebnisType> oneDocWithNameExists = zmrPersonToKitt.getEidasIdentitaet().stream()
+          .filter(el -> el.getStaatscode3().equals(citizenCountryCode) 
+              && el.getEidasArt().equals(attrName))
+          .findAny();
+      
+      if (!allowMoreThanOneEntry && oneDocWithNameExists.isPresent()
+          && !oneDocWithNameExists.get().getDokumentNummer().equals(attrValue)) {                  
+        log.warn("eIDAS document: {} already exists for country: {} but attribute-value does not match. "
+            + "Skip update process because no multi-value allowed for this ... ",
+            attrName, citizenCountryCode);  
+          
+      } else {            
+        EidasIdentitaetAnlageType eidasDocToAdd = new EidasIdentitaetAnlageType();
+        eidasDocToAdd.setStaatscode3(citizenCountryCode);
+        eidasDocToAdd.setEidasArt(attrName);
+        eidasDocToAdd.setEidasNummer(attrValue);        
+        log.info("Add eIDAS document: {} for country: {} to ZMR person", attrName, citizenCountryCode);
+        result.add(eidasDocToAdd);
+          
+      }
+              
+    } else {
+      log.debug("eIDAS document: {} already exists for country: {}. Skip update process for this ... ",
+          attrName, citizenCountryCode);  
+      
+    }
+  }
+
+  private ZmrRegisterResult updatePersonInZmr(PersonErgebnisType zmrPersonToKitt,
+      Collection<? extends EidasIdentitaetAnlageType> eidasDocumentToAdd, String citizenCountryCode) 
+          throws ServiceFault {
+    final RequestType req = new RequestType();
+    PersonAendernRequest updateReq = new PersonAendernRequest();
+    req.setPersonAendernRequest(updateReq);      
+    
+    // set reference elements for person update
+    PersonReferenzType updateRef = new PersonReferenzType();      
+    updateRef.setTechnisch(zmrPersonToKitt.getEntityErgebnisReferenz().getTechnisch());
+    updateRef.setZMRZahl(zmrPersonToKitt.getZMRZahl());
+    updateReq.setPersonReferenz(updateRef);
+    
+    // set reason from this update      
+    PersonAendernInfoType updateInfo = new PersonAendernInfoType();
+    updateInfo.setGrundCode(basicConfig.getBasicConfiguration(
+        Constants.CONIG_PROPS_EIDAS_ZMRCLIENT_REQ_UPDATE_REASON_CODE));
+    updateInfo.setGrundFreitext(basicConfig.getBasicConfiguration(
+        Constants.CONIG_PROPS_EIDAS_ZMRCLIENT_REQ_UPDATE_REASON_TEXT));
+    updateReq.setPersonAendernInfo(updateInfo);
+    
+    // add new eIDAS documents that should be added
+    updateReq.getEidasIdentitaetAnlage().addAll(eidasDocumentToAdd);
+   
+    // request ZMR
+    log.trace("Requesting ZMR for '{}' operation", PROCESS_KITT_IDENITIES_UPDATE);       
+    ResponseType resp = zmrClient.service(req, null);
+    log.trace("Receive response from ZMR for '{}' operation", PROCESS_KITT_IDENITIES_UPDATE);
+    
+    return new ZmrRegisterResult(Arrays.asList(
+        mapZmrResponseToRegisterResult(resp.getPersonAendernResponse().getPersonErgebnis(), citizenCountryCode)),
+        extractZmrProcessId(resp.getWorkflowInfoServer()));
+    
+  }
+  
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernp/DummyErnpClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernp/DummyErnpClient.java
index 065b17a2..77f5e3cd 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernp/DummyErnpClient.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernp/DummyErnpClient.java
@@ -59,8 +59,9 @@ public class DummyErnpClient implements IErnpClient {
   }
 
   @Override
-  public void update(RegisterResult registerResult, SimpleEidasData eidData) {
+  public RegisterResult update(RegisterResult registerResult, SimpleEidasData eidData) {
     //TODO
+    return null;
   }
 
   @Override
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernp/IErnpClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernp/IErnpClient.java
index b3b0c033..b2a9005b 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernp/IErnpClient.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/ernp/IErnpClient.java
@@ -39,7 +39,7 @@ public interface IErnpClient {
 
   List<RegisterResult> searchItSpecific(String taxNumber);
 
-  void update(RegisterResult registerResult, SimpleEidasData eidData);
+  RegisterResult update(RegisterResult registerResult, SimpleEidasData eidData);
 
   List<RegisterResult> searchWithBpkZp(String bpkzp);
 
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/service/RegisterSearchService.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/service/RegisterSearchService.java
index bcee0f0f..b5e83490 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/service/RegisterSearchService.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/service/RegisterSearchService.java
@@ -1,6 +1,7 @@
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.service;
 
 import java.math.BigInteger;
+import java.util.Arrays;
 import java.util.Collections;
 import java.util.List;
 
@@ -55,7 +56,7 @@ public class RegisterSearchService {
    * @throws WorkflowException In case of a register interaction error
    */
   @Nonnull
-  public RegisterSearchResult searchWithPersonIdentifier(SimpleEidasData eidasData)
+  public RegisterStatusResults searchWithPersonIdentifier(SimpleEidasData eidasData)
       throws WorkflowException {
     try {
       final ZmrRegisterResult resultsZmr = zmrClient.searchWithPersonIdentifier(
@@ -63,7 +64,7 @@ public class RegisterSearchService {
       final List<RegisterResult> resultsErnp = ernpClient.searchWithPersonIdentifier(
           eidasData.getPersonalIdentifier());
             
-      return new RegisterSearchResult(new RegisterOperationStatus(resultsZmr.getProcessId()), 
+      return new RegisterStatusResults(new RegisterOperationStatus(resultsZmr.getProcessId()), 
           resultsZmr.getPersonResult(), resultsErnp);
 
     } catch (final EidasSAuthenticationException e) {
@@ -81,7 +82,7 @@ public class RegisterSearchService {
    * @throws WorkflowException In case of a register interaction error
    */
   @Nonnull
-  public RegisterSearchResult searchWithMds(RegisterOperationStatus operationStatus, SimpleEidasData eidasData)
+  public RegisterStatusResults searchWithMds(RegisterOperationStatus operationStatus, SimpleEidasData eidasData)
       throws WorkflowException {
     try {
       final ZmrRegisterResult resultsZmr =
@@ -92,7 +93,7 @@ public class RegisterSearchService {
           ernpClient.searchWithMds(eidasData.getGivenName(), eidasData.getFamilyName(), eidasData
               .getDateOfBirth());
       
-      return new RegisterSearchResult(new RegisterOperationStatus(resultsZmr.getProcessId()), 
+      return new RegisterStatusResults(new RegisterOperationStatus(resultsZmr.getProcessId()), 
           resultsZmr.getPersonResult(), resultsErnp);
 
     } catch (final EidasSAuthenticationException e) {
@@ -112,7 +113,7 @@ public class RegisterSearchService {
    * @throws WorkflowException In case of a register interaction error
    */
   @Nonnull
-  public RegisterSearchResult searchWithCountrySpecifics(RegisterOperationStatus operationStatus, 
+  public RegisterStatusResults searchWithCountrySpecifics(RegisterOperationStatus operationStatus, 
       SimpleEidasData eidasData) throws WorkflowException {
     try {
       @Nullable
@@ -125,10 +126,10 @@ public class RegisterSearchService {
                 eidasData.getCitizenCountryCode());
 
         // TODO: add search procesfor for ERnP searching
-        return new RegisterSearchResult(operationStatus, resultsZmr.getPersonResult(), Collections.emptyList());
+        return new RegisterStatusResults(operationStatus, resultsZmr.getPersonResult(), Collections.emptyList());
 
       } else {
-        return new RegisterSearchResult(operationStatus, Collections.emptyList(), Collections.emptyList());
+        return new RegisterStatusResults(operationStatus, Collections.emptyList(), Collections.emptyList());
 
       }
 
@@ -139,17 +140,6 @@ public class RegisterSearchService {
     }
   }
 
-  /**
-   * Search with BPK-ZP in BMR and ERnP.
-   */
-  public RegisterSearchResult searchWithBpkZp(RegisterOperationStatus operationStatus, String bpkZp) {
-    final ZmrRegisterResult resultsZmr = zmrClient.searchWithBpkZp(
-        operationStatus.getZmrProcessId(), bpkZp);
-    final List<RegisterResult> resultsErnp = ernpClient.searchWithBpkZp(bpkZp); 
-    return new RegisterSearchResult(operationStatus, resultsZmr.getPersonResult(), resultsErnp);
-
-  }
-
   /**
    * Search with residence infos.
    * 
@@ -159,12 +149,12 @@ public class RegisterSearchService {
    * @param street Provided street 
    * @return Results from ZMR or ERnP search
    */
-  public RegisterSearchResult searchWithResidence(RegisterOperationStatus operationStatus, SimpleEidasData eidasData, 
+  public RegisterStatusResults searchWithResidence(RegisterOperationStatus operationStatus, SimpleEidasData eidasData, 
       String zipcode, String city, String street) {
     final ZmrRegisterResult resultsZmr = zmrClient.searchWithResidenceData(
         operationStatus.getZmrProcessId(), eidasData.getGivenName(), eidasData.getFamilyName(), 
         eidasData.getDateOfBirth(), zipcode, city, street);
-    return new RegisterSearchResult(operationStatus, resultsZmr.getPersonResult(), Collections.emptyList());
+    return new RegisterStatusResults(operationStatus, resultsZmr.getPersonResult(), Collections.emptyList());
 
   }
 
@@ -173,8 +163,9 @@ public class RegisterSearchService {
    *
    * @param specificSearchResult Result of last register search
    * @param eidasData            Received eidas data
+   * @return 
    */
-  public void step7aKittProcess(RegisterSearchResult specificSearchResult,
+  public RegisterStatusResults step7aKittProcess(RegisterStatusResults specificSearchResult,
       SimpleEidasData eidasData) throws WorkflowException {
     log.trace("Starting step7aKittProcess");
     // TODO verify with which data this method gets called
@@ -182,16 +173,24 @@ public class RegisterSearchService {
       throw new WorkflowException("step7aKittProcess", "getResultCount() != 1");
 
     }
-    
-    if (specificSearchResult.getResultsZmr().size() == 1) {
-      zmrClient.update(specificSearchResult.getOperationStatus().getZmrProcessId(),
-          
-          specificSearchResult.getResultsZmr().get(0), eidasData);
-    }
-    
-    if (specificSearchResult.getResultsErnp().size() == 1) {
-      ernpClient.update(specificSearchResult.getResultsErnp().get(0), eidasData);
+    try {
+      if (specificSearchResult.getResultsZmr().size() == 1) {
+        final ZmrRegisterResult resultsZmr = zmrClient.update(
+            specificSearchResult.getOperationStatus().getZmrProcessId(),          
+            specificSearchResult.getResultsZmr().get(0), eidasData);
+        return new RegisterStatusResults(specificSearchResult.getOperationStatus(), 
+            resultsZmr.getPersonResult(), Collections.emptyList());
       
+      } else {
+        return new RegisterStatusResults(specificSearchResult.getOperationStatus(), Collections.emptyList(), 
+            Arrays.asList(ernpClient.update(specificSearchResult.getResultsErnp().get(0), eidasData)));
+      
+      }
+      
+    } catch (final EidasSAuthenticationException e) {
+      throw new WorkflowException("kittMatchedIdentitiess", e.getMessage(), 
+          !(e instanceof ZmrCommunicationException), e);
+
     }
         
   }
@@ -225,16 +224,18 @@ public class RegisterSearchService {
     
     
   }
+    
+  
   
   /**
-   * Response container for {@link RegisterSearchService}.
+   * Response container for {@link RegisterSearchService} that holds a set of {@link RegisterResult}.
    * 
    * @author tlenz
    *
    */
   @Getter
   @RequiredArgsConstructor
-  public static class RegisterSearchResult {   
+  public static class RegisterStatusResults {   
     /**
      * Operation status for this result.
      */
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
index 01497f8d..220c4e56 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
@@ -51,7 +51,7 @@ import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.WorkflowExcept
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.ICcSpecificEidProcessingService;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.RegisterSearchService;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.RegisterSearchService.RegisterOperationStatus;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.RegisterSearchService.RegisterSearchResult;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.RegisterSearchService.RegisterStatusResults;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.EidasResponseUtils;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.MatchingTaskUtils;
 import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
@@ -131,7 +131,7 @@ public class InitialSearchTask extends AbstractAuthServletTask {
       ExecutionContext executionContext, SimpleEidasData eidasData) throws WorkflowException, EaafStorageException {
     try {  
       log.trace("Starting step2RegisterSearchWithPersonIdentifier");
-      RegisterSearchResult initialSearchResult = registerSearchService.searchWithPersonIdentifier(eidasData);    
+      RegisterStatusResults initialSearchResult = registerSearchService.searchWithPersonIdentifier(eidasData);    
       int resultCount = initialSearchResult.getResultCount();
       if (resultCount == 0) {
         step6CountrySpecificSearch(executionContext, initialSearchResult.getOperationStatus(), eidasData);
@@ -160,7 +160,7 @@ public class InitialSearchTask extends AbstractAuthServletTask {
       throws EaafStorageException, WorkflowException {
     
     log.trace("Starting 'step6CountrySpecificSearch' ... ");
-    RegisterSearchResult countrySpecificResult = registerSearchService.searchWithCountrySpecifics(
+    RegisterStatusResults countrySpecificResult = registerSearchService.searchWithCountrySpecifics(
         registerOperationStatus, eidasData);
     if (countrySpecificResult.getResultCount() == 0) {
       log.trace("'step6CountrySpecificSearch' ends with no result. Forward to next matching step ... ");
@@ -184,7 +184,7 @@ public class InitialSearchTask extends AbstractAuthServletTask {
       RegisterOperationStatus registerOperationStatus, SimpleEidasData eidasData)
       throws EaafStorageException, WorkflowException {
     log.trace("Starting step8RegisterSearchWithMds");
-    RegisterSearchResult registerData = registerSearchService.searchWithMds(registerOperationStatus, eidasData);
+    RegisterStatusResults registerData = registerSearchService.searchWithMds(registerOperationStatus, eidasData);
     
     if (registerData.getResultCount() == 0) {
       log.debug("Matching step: 'step8RegisterSearchWithMds' has no result. Forward to create new ERnP entry ...  ");
@@ -202,7 +202,7 @@ public class InitialSearchTask extends AbstractAuthServletTask {
 
 
 
-  private void foundMatchFinializeTask(RegisterSearchResult searchResult, SimpleEidasData eidasData) 
+  private void foundMatchFinializeTask(RegisterStatusResults searchResult, SimpleEidasData eidasData) 
       throws WorkflowException, EaafStorageException {
     // check if register update is required
     RegisterResult updatedResult = step3CheckRegisterUpdateNecessary(searchResult.getResult(), eidasData);
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveAustrianResidenceGuiResponseTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveAustrianResidenceGuiResponseTask.java
index b71d86c8..83fdf771 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveAustrianResidenceGuiResponseTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveAustrianResidenceGuiResponseTask.java
@@ -39,7 +39,7 @@ import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.InvalidUserInp
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.ManualFixNecessaryException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.WorkflowException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.RegisterSearchService;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.RegisterSearchService.RegisterSearchResult;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.RegisterSearchService.RegisterStatusResults;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.MatchingTaskUtils;
 import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
 import at.gv.egiz.eaaf.core.exceptions.EaafStorageException;
@@ -126,9 +126,9 @@ public class ReceiveAustrianResidenceGuiResponseTask extends AbstractAuthServlet
         
     try {
       SimpleEidasData eidasData = MatchingTaskUtils.getInitialEidasData(pendingReq);
-      RegisterSearchResult initialSearchResult = MatchingTaskUtils.getIntermediateMatchingResult(pendingReq);
+      RegisterStatusResults initialSearchResult = MatchingTaskUtils.getIntermediateMatchingResult(pendingReq);
       
-      RegisterSearchResult residencyResult = 
+      RegisterStatusResults residencyResult = 
           registerSearchService.searchWithResidence(initialSearchResult.getOperationStatus(), 
               eidasData, input.zipcode, input.city, input.street);
       if (residencyResult.getResultCount() == 0) {
@@ -155,7 +155,7 @@ public class ReceiveAustrianResidenceGuiResponseTask extends AbstractAuthServlet
   }
 
   private void compareSearchResultWithInitialData(ExecutionContext executionContext, 
-      RegisterSearchResult residencyResult, SimpleEidasData eidasData)
+      RegisterStatusResults residencyResult, SimpleEidasData eidasData)
       throws TaskExecutionException, EaafStorageException {
     try {            
       /*TODO: check 'equalsRegisterData' because this method maybe this method evaluate to an invalid result.
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseTask.java
index e0b05892..d43a175f 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveMobilePhoneSignatureResponseTask.java
@@ -56,7 +56,7 @@ import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.IdAustri
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.provider.IdAustriaClientAuthCredentialProvider;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.provider.IdAustriaClientAuthMetadataProvider;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.RegisterSearchService;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.RegisterSearchService.RegisterSearchResult;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.RegisterSearchService.RegisterStatusResults;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.MatchingTaskUtils;
 import at.gv.egiz.eaaf.core.api.data.PvpAttributeDefinitions;
 import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
@@ -161,7 +161,7 @@ public class ReceiveMobilePhoneSignatureResponseTask extends AbstractAuthServlet
             
       // load already existing information from session
       SimpleEidasData eidasData = MatchingTaskUtils.getInitialEidasData(pendingReq);
-      RegisterSearchResult initialSearchResult = MatchingTaskUtils.getIntermediateMatchingResult(pendingReq);
+      RegisterStatusResults initialSearchResult = MatchingTaskUtils.getIntermediateMatchingResult(pendingReq);
       
       // extract user information from ID Austria authentication
       AssertionAttributeExtractor extractor = new AssertionAttributeExtractor(processedMsg.getFirst().getResponse());
@@ -175,7 +175,7 @@ public class ReceiveMobilePhoneSignatureResponseTask extends AbstractAuthServlet
       }
             
       // search entry in initial search result from steps before and build new RegisterSearchResult
-      RegisterSearchResult registerResult = new RegisterSearchResult(initialSearchResult.getOperationStatus(),
+      RegisterStatusResults registerResult = new RegisterStatusResults(initialSearchResult.getOperationStatus(),
           extractEntriesByBpk(initialSearchResult.getResultsZmr().stream(), simpleMobileSignatureData.getBpk()),
           extractEntriesByBpk(initialSearchResult.getResultsErnp().stream(), simpleMobileSignatureData.getBpk()));
           
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/MatchingTaskUtils.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/MatchingTaskUtils.java
index ae4dfb30..c2392a79 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/MatchingTaskUtils.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/MatchingTaskUtils.java
@@ -7,7 +7,7 @@ import org.springframework.lang.NonNull;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.MatchedPersonResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.RegisterSearchService.RegisterSearchResult;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.RegisterSearchService.RegisterStatusResults;
 import at.gv.egiz.eaaf.core.api.IRequest;
 import at.gv.egiz.eaaf.core.exceptions.EaafStorageException;
 import at.gv.egiz.eaaf.core.impl.idp.auth.data.AuthProcessDataWrapper;
@@ -48,9 +48,9 @@ public class MatchingTaskUtils {
    * @return Intermediate matching result or <code>null</code> if not exist
    */
   @Nullable
-  public static RegisterSearchResult getIntermediateMatchingResult(IRequest pendingReq) {
+  public static RegisterStatusResults getIntermediateMatchingResult(IRequest pendingReq) {
     return getAuthProcessDataWrapper(pendingReq).getGenericDataFromSession(Constants.DATA_INTERMEDIATE_RESULT,
-        RegisterSearchResult.class);
+        RegisterStatusResults.class);
     
   }
   
@@ -62,7 +62,7 @@ public class MatchingTaskUtils {
    * @throws EaafStorageException In case of data can not be add into session
    */
   @Nullable
-  public static void storeIntermediateMatchingResult(IRequest pendingReq, RegisterSearchResult registerData) 
+  public static void storeIntermediateMatchingResult(IRequest pendingReq, RegisterStatusResults registerData) 
       throws EaafStorageException {
     getAuthProcessDataWrapper(pendingReq).setGenericDataToSession(
         Constants.DATA_INTERMEDIATE_RESULT, registerData);
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/DummyZmrClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/DummyZmrClient.java
deleted file mode 100644
index b39281c2..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/zmr/DummyZmrClient.java
+++ /dev/null
@@ -1,82 +0,0 @@
-/*
- * Copyright 2020 A-SIT Plus GmbH
- * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
- * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
- *
- * Licensed under the EUPL, Version 1.2 or - as soon they will be approved by
- * the European Commission - subsequent versions of the EUPL (the "License");
- * You may not use this work except in compliance with the License.
- * You may obtain a copy of the License at:
- * https://joinup.ec.europa.eu/news/understanding-eupl-v12
- *
- * Unless required by applicable law or agreed to in writing, software
- * distributed under the License is distributed on an "AS IS" basis,
- * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
- * See the License for the specific language governing permissions and
- * limitations under the License.
- *
- * This product combines work with different licenses. See the "NOTICE" text
- * file for details on the various modules and licenses.
- * The "NOTICE" text file is part of the distribution. Any derivative works
- * that you distribute must include a readable copy of the "NOTICE" text file.
- */
-
-package at.asitplus.eidas.specific.modules.auth.eidas.v2.zmr;
-
-import java.math.BigInteger;
-import java.util.Collections;
-
-import org.springframework.stereotype.Service;
-
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.clients.zmr.IZmrClient;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.clients.zmr.ZmrSoapClient.ZmrRegisterResult;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidasSAuthenticationException;
-import at.gv.bmi.namespace.zmr_su.zmr._20040201.PersonSuchenRequest;
-
-@Service("ZmrClientForeIDAS")
-public class DummyZmrClient implements IZmrClient {
-
-  @Override
-  public ZmrRegisterResult searchWithPersonIdentifier(BigInteger zmrProzessId, String personIdentifier,
-      String citizenCountryCode) {
-    return new ZmrRegisterResult(Collections.emptyList(), null);
-    
-  }
-
-  @Override
-  public ZmrRegisterResult searchWithMds(BigInteger zmrProzessId, String givenName, String familyName, 
-      String dateOfBirth,  String countryCode) {
-    //TODO will I only receive matches where all three values match perfectly?
-    return new ZmrRegisterResult(Collections.emptyList(), null);
-    
-  }
-
-  @Override
-  public ZmrRegisterResult searchCountrySpecific(BigInteger zmrProzessId, PersonSuchenRequest personSearchDao,
-      String citizenCountryCode) throws EidasSAuthenticationException {
-    return new ZmrRegisterResult(Collections.emptyList(), null);
-    
-  }
-
-  @Override
-  public void update(BigInteger zmrProzessId, RegisterResult registerResult, SimpleEidasData eidData) {
-    //TODO
-  }
-
-  @Override
-  public ZmrRegisterResult searchWithBpkZp(BigInteger zmrProzessId, String bpkzp) {
-    //TODO
-    return new ZmrRegisterResult(Collections.emptyList(), null);
-  }
-
-  @Override
-  public ZmrRegisterResult searchWithResidenceData(BigInteger zmrProzessId, String givenName, String familyName, 
-      String dateOfBirth, String zipcode, String city, String street) {
-    // TODO
-    return new ZmrRegisterResult(Collections.emptyList(), null);
-  }
-
-
-}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskTest.java
index bb732f1c..cca94188 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskTest.java
@@ -80,7 +80,7 @@ import at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.CountrySpecificD
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.GenericEidProcessor;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.ICcSpecificEidProcessingService;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.RegisterSearchService;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.RegisterSearchService.RegisterSearchResult;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.RegisterSearchService.RegisterStatusResults;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.InitialSearchTask;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.MatchingTaskUtils;
 import at.gv.bmi.namespace.zmr_su.zmr._20040201.PersonSuchenRequest;
@@ -196,6 +196,8 @@ public class InitialSearchTaskTest {
         new IllegalStateException("CountrySpecific search search should not be neccessary"));
     Mockito.when(zmrClient.searchWithMds(any(), any(), any(), any(), any())).thenThrow(
         new IllegalStateException("MDS search should not be neccessary"));  
+    Mockito.when(zmrClient.update(any(), any(), any())).thenThrow(
+        new IllegalStateException("ZMR update should not be neccessary"));
     
     // execute test
     task.execute(pendingReq, executionContext);
@@ -422,7 +424,9 @@ public class InitialSearchTaskTest {
                 .build()),
             generateRandomProcessId()));
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomPersonalIdentifier_DE)).thenReturn(Collections.emptyList());
-
+    Mockito.when(zmrClient.update(any(), any(), any())).thenThrow(
+        new IllegalStateException("ZMR update should not be neccessary"));
+    
     // execute test
     task.execute(pendingReq, executionContext);
     
@@ -443,20 +447,31 @@ public class InitialSearchTaskTest {
         .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
     
     BigInteger zmrProcessId = generateRandomProcessId();    
+    RegisterResult zmrResult = RegisterResult.builder()
+        .bpk(randomBpk)
+        .pseudonym(Arrays.asList(randomPsydonym))
+        .givenName(randomGivenName)
+        .familyName(randomFamilyName)
+        .dateOfBirth(randomBirthDate)
+        .placeOfBirth(randomPlaceOfBirth)
+        .birthName(randomBirthName)
+        .build();    
     Mockito.when(zmrClient.searchWithPersonIdentifier(null, randomPsydonym, DE)).thenReturn(
         new ZmrRegisterResult(Collections.emptyList(), zmrProcessId));    
     Mockito.when(zmrClient.searchCountrySpecific(eq(zmrProcessId), any(PersonSuchenRequest.class), eq(DE))).thenReturn(
-        new ZmrRegisterResult(Collections.singletonList(
-            RegisterResult.builder()
+        new ZmrRegisterResult(Collections.singletonList(zmrResult)
+        ,zmrProcessId));
+    Mockito.when(zmrClient.update(eq(zmrProcessId), eq(zmrResult) , any())).thenReturn(
+        new ZmrRegisterResult(Collections.singletonList(RegisterResult.builder()
             .bpk(randomBpk)
-            .pseudonym(Arrays.asList(randomPsydonym))
+            .pseudonym(Arrays.asList(randomPsydonym, RandomStringUtils.randomAlphanumeric(10)))
             .givenName(randomGivenName)
             .familyName(randomFamilyName)
             .dateOfBirth(randomBirthDate)
             .placeOfBirth(randomPlaceOfBirth)
             .birthName(randomBirthName)
-            .build())
-        ,zmrProcessId));
+            .build())            
+            ,zmrProcessId));
     Mockito.when(zmrClient.searchWithMds(any(), any(), any(), any(), any())).thenThrow(
         new IllegalStateException("MDS search should not be neccessary"));    
     
@@ -541,9 +556,12 @@ public class InitialSearchTaskTest {
         new ZmrRegisterResult(Collections.emptyList(), zmrProcessId)); 
     Mockito.when(zmrClient.searchWithMds(zmrProcessId, randomGivenName, randomFamilyName, randomBirthDate, EE)).thenReturn(
         new ZmrRegisterResult(Collections.emptyList(), zmrProcessId)); 
+    Mockito.when(zmrClient.update(any(), any(), any())).thenThrow(
+        new IllegalStateException("ZMR update should not be neccessary"));
     
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomPersonalIdentifier_EE)).thenReturn(Collections.emptyList());
     
+    
 
     // execute task
     task.execute(pendingReq, executionContext);
@@ -608,8 +626,6 @@ public class InitialSearchTaskTest {
     BigInteger zmrProcessId = generateRandomProcessId();    
     Mockito.when(zmrClient.searchWithPersonIdentifier(null, randomPsydonym, DE)).thenReturn(
         new ZmrRegisterResult(Collections.emptyList(), zmrProcessId)); 
-    Mockito.when(ernpClient.searchWithPersonIdentifier(randomPersonalIdentifier_DE)).thenReturn(Collections.emptyList());
-
     Mockito.when(zmrClient.searchWithMds(zmrProcessId, randomGivenName, randomFamilyName, randomBirthDate, DE)).thenReturn(
         new ZmrRegisterResult(Collections.singletonList(RegisterResult.builder()
             .bpk(randomBpk)
@@ -619,7 +635,12 @@ public class InitialSearchTaskTest {
             .dateOfBirth(randomBirthDate)
             .build()),
             zmrProcessId));
-
+    Mockito.when(zmrClient.update(any(), any(), any())).thenThrow(
+        new IllegalStateException("ZMR update should not be neccessary"));
+    
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomPersonalIdentifier_DE)).thenReturn(Collections.emptyList());
+    
+    
     // execute test
     task.execute(pendingReq, executionContext);
 
@@ -649,7 +670,9 @@ public class InitialSearchTaskTest {
                 .dateOfBirth(randomBirthDate)
                 .build()), 
             zmrProcessId));
-        
+    Mockito.when(zmrClient.update(any(), any(), any())).thenThrow(
+        new IllegalStateException("ZMR update should not be neccessary"));
+    
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomPersonalIdentifier_DE)).thenReturn(Collections.emptyList());            
     Mockito.when(ernpClient.searchWithMds(randomGivenName, randomFamilyName, randomBirthDate)).thenReturn(
         Arrays.asList(
@@ -712,7 +735,7 @@ public class InitialSearchTaskTest {
     assertNull("Find final matching data but no match sould be found",
         MatchingTaskUtils.getFinalMatchingResult(pendingReq));
     
-    RegisterSearchResult result = MatchingTaskUtils.getIntermediateMatchingResult(pendingReq);
+    RegisterStatusResults result = MatchingTaskUtils.getIntermediateMatchingResult(pendingReq);
     assertNotNull("Find no intermediate matching data", result);
     assertEquals("wrong intermediate result size", resultSize, result.getResultCount());
     
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveAustrianResidenceGuiResponseTaskTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveAustrianResidenceGuiResponseTaskTest.java
index 77c49bb4..25a77cce 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveAustrianResidenceGuiResponseTaskTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveAustrianResidenceGuiResponseTaskTest.java
@@ -41,7 +41,7 @@ import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.ManualFixNecessaryException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.RegisterSearchService;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.RegisterSearchService.RegisterOperationStatus;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.RegisterSearchService.RegisterSearchResult;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.RegisterSearchService.RegisterStatusResults;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.ReceiveAustrianResidenceGuiResponseTask;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.ReceiveAustrianResidenceGuiResponseTask.UserInput;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.MatchingTaskUtils;
@@ -99,7 +99,7 @@ public class ReceiveAustrianResidenceGuiResponseTaskTest {
   public void noRegisterResult() throws Exception {
     UserInput userInput = setupUserInput();
     SimpleEidasData eidasData = setupEidasData();
-    RegisterSearchResult registerSearchResult = buildEmptyResult();
+    RegisterStatusResults registerSearchResult = buildEmptyResult();
     mockRegisterSearch(userInput, registerSearchResult, eidasData);
     MatchingTaskUtils.storeIntermediateMatchingResult(pendingReq, registerSearchResult);
     
@@ -112,7 +112,7 @@ public class ReceiveAustrianResidenceGuiResponseTaskTest {
   public void exactlyOneRegisterResult_Matching() throws Exception {
     UserInput userInput = setupUserInput();
     SimpleEidasData eidasData = setupEidasData();
-    RegisterSearchResult registerSearchResult = buildResultWithOneMatch(buildMatchingRegisterResult(eidasData));
+    RegisterStatusResults registerSearchResult = buildResultWithOneMatch(buildMatchingRegisterResult(eidasData));
     MatchingTaskUtils.storeIntermediateMatchingResult(pendingReq, registerSearchResult);
     mockRegisterSearch(userInput, registerSearchResult, eidasData);
 
@@ -127,7 +127,7 @@ public class ReceiveAustrianResidenceGuiResponseTaskTest {
   public void exactlyOneRegisterResult_NotMatching() throws Exception {
     UserInput userInput = setupUserInput();
     SimpleEidasData eidasData = setupEidasData();
-    RegisterSearchResult registerSearchResult = buildResultWithOneMatch(buildNotMatchingRegisterResult(eidasData));
+    RegisterStatusResults registerSearchResult = buildResultWithOneMatch(buildNotMatchingRegisterResult(eidasData));
     MatchingTaskUtils.storeIntermediateMatchingResult(pendingReq, registerSearchResult);
     mockRegisterSearch(userInput, registerSearchResult, eidasData);
 
@@ -140,7 +140,7 @@ public class ReceiveAustrianResidenceGuiResponseTaskTest {
   public void moreThanOneRegisterResult() throws Exception {
     UserInput userInput = setupUserInput();
     SimpleEidasData eidasData = setupEidasData();
-    RegisterSearchResult registerSearchResult = buildResultWithTwoMatches();
+    RegisterStatusResults registerSearchResult = buildResultWithTwoMatches();
     MatchingTaskUtils.storeIntermediateMatchingResult(pendingReq, registerSearchResult);
     mockRegisterSearch(userInput, registerSearchResult, eidasData);
 
@@ -152,14 +152,14 @@ public class ReceiveAustrianResidenceGuiResponseTaskTest {
     assertNull("Transition To S16", executionContext.get(Constants.TRANSITION_TO_CREATE_NEW_ERNP_ENTRY_TASK));
   }
 
-  private void mockRegisterSearch(UserInput userInput, RegisterSearchResult registerSearchResult, SimpleEidasData eidasData ) {
+  private void mockRegisterSearch(UserInput userInput, RegisterStatusResults registerSearchResult, SimpleEidasData eidasData ) {
     Mockito.when(registerSearchService.searchWithResidence(eq(registerSearchResult.getOperationStatus()), eq(eidasData), 
         eq(userInput.getZipcode()), eq(userInput.getCity()), eq(userInput.getStreet()))).thenReturn(registerSearchResult);
   }
 
   @NotNull
-  private RegisterSearchResult buildEmptyResult() {    
-    return new RegisterSearchResult(new RegisterOperationStatus(generateRandomProcessId()), 
+  private RegisterStatusResults buildEmptyResult() {    
+    return new RegisterStatusResults(new RegisterOperationStatus(generateRandomProcessId()), 
         Collections.emptyList(), Collections.emptyList());
     
   }
@@ -170,16 +170,16 @@ public class ReceiveAustrianResidenceGuiResponseTaskTest {
   }
   
   @NotNull
-  private RegisterSearchResult buildResultWithOneMatch(RegisterResult registerResult) {
-    return new RegisterSearchResult(new RegisterOperationStatus(generateRandomProcessId()), 
+  private RegisterStatusResults buildResultWithOneMatch(RegisterResult registerResult) {
+    return new RegisterStatusResults(new RegisterOperationStatus(generateRandomProcessId()), 
         Collections.singletonList(registerResult), Collections.emptyList());
     
   }
 
   @NotNull
-  private RegisterSearchResult buildResultWithTwoMatches() {
+  private RegisterStatusResults buildResultWithTwoMatches() {
     List<RegisterResult> results = Lists.newArrayList(buildRandomRegisterResult(), buildRandomRegisterResult());
-    return new RegisterSearchResult(new RegisterOperationStatus(generateRandomProcessId()), 
+    return new RegisterStatusResults(new RegisterOperationStatus(generateRandomProcessId()), 
         results, Collections.emptyList());
     
   }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveMobilePhoneSignatureResponseTaskTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveMobilePhoneSignatureResponseTaskTest.java
index 51077e96..b072b8b2 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveMobilePhoneSignatureResponseTaskTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveMobilePhoneSignatureResponseTaskTest.java
@@ -54,7 +54,7 @@ import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.provider
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.idaustriaclient.provider.IdAustriaClientAuthMetadataProvider;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.RegisterSearchService;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.RegisterSearchService.RegisterOperationStatus;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.RegisterSearchService.RegisterSearchResult;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.RegisterSearchService.RegisterStatusResults;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.ReceiveMobilePhoneSignatureResponseTask;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.test.dummy.DummyOA;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.test.dummy.DummyPendingRequest;
@@ -342,7 +342,7 @@ public class ReceiveMobilePhoneSignatureResponseTaskTest {
     AuthProcessDataWrapper authProcessData = pendingReq.getSessionData(AuthProcessDataWrapper.class);
     SimpleEidasData eidData = createEidasDataMatchingToSamlResponse().build();
     authProcessData.setGenericDataToSession(Constants.DATA_SIMPLE_EIDAS, eidData);
-    RegisterSearchResult registerSearchResult = new RegisterSearchResult(new RegisterOperationStatus(generateRandomProcessId()),
+    RegisterStatusResults registerSearchResult = new RegisterStatusResults(new RegisterOperationStatus(generateRandomProcessId()),
         Collections.emptyList(), Collections.emptyList());
     MatchingTaskUtils.storeIntermediateMatchingResult(pendingReq, registerSearchResult);
     
@@ -362,7 +362,7 @@ public class ReceiveMobilePhoneSignatureResponseTaskTest {
     AuthProcessDataWrapper authProcessData = pendingReq.getSessionData(AuthProcessDataWrapper.class);
     SimpleEidasData eidData = createEidasDataMatchingToSamlResponse().build();
     authProcessData.setGenericDataToSession(Constants.DATA_SIMPLE_EIDAS, eidData);
-    RegisterSearchResult registerSearchResult = buildResultWithOneMatch();
+    RegisterStatusResults registerSearchResult = buildResultWithOneMatch();
     MatchingTaskUtils.storeIntermediateMatchingResult(pendingReq, registerSearchResult);
 
     task.execute(pendingReq, executionContext);
@@ -403,8 +403,8 @@ public class ReceiveMobilePhoneSignatureResponseTaskTest {
   }
 
   @NotNull
-  private RegisterSearchResult buildResultWithOneMatch() {
-    return new RegisterSearchResult(new RegisterOperationStatus(generateRandomProcessId()),
+  private RegisterStatusResults buildResultWithOneMatch() {
+    return new RegisterStatusResults(new RegisterOperationStatus(generateRandomProcessId()),
         Collections.singletonList(RegisterResult.builder()
             .bpk(BPK_FROM_ID_AUSTRIA)
             .pseudonym(Arrays.asList("bar"))
@@ -417,7 +417,7 @@ public class ReceiveMobilePhoneSignatureResponseTaskTest {
   }
 
   @NotNull
-  private RegisterSearchResult buildResultWithTwoMatches() {
+  private RegisterStatusResults buildResultWithTwoMatches() {
     List<RegisterResult> results = Lists.newArrayList(
         RegisterResult.builder()
             .bpk(BPK_FROM_ID_AUSTRIA)
@@ -434,7 +434,7 @@ public class ReceiveMobilePhoneSignatureResponseTaskTest {
             .dateOfBirth("dateOfBirth")
             .build());
     
-    return new RegisterSearchResult(new RegisterOperationStatus(generateRandomProcessId()), 
+    return new RegisterStatusResults(new RegisterOperationStatus(generateRandomProcessId()), 
         results, Collections.emptyList());
   }
 
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/junit_config_1.properties b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/junit_config_1.properties
index 266c78bb..f5895f76 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/junit_config_1.properties
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/junit_config_1.properties
@@ -97,7 +97,7 @@ eidas.ms.auth.eIDAS.node_v2.attributes.requested.representation.5=LegalName,true
 # ZMR communication
 eidas.ms.auth.eIDAS.zmrclient.endpoint=http://localhost:1234/demoszr
 eidas.ms.auth.eIDAS.zmrclient.req.organisation.behoerdennr=jUnit123456
-
+eidas.ms.auth.eIDAS.zmrclient.req.update.reason.code=EIDAS-KITT
 
 
 ## PVP2 S-Profile end-point configuration
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/junit_config_1_springboot.properties b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/junit_config_1_springboot.properties
index 640138d8..294d340f 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/junit_config_1_springboot.properties
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/junit_config_1_springboot.properties
@@ -54,7 +54,8 @@ eidas.ms.auth.eIDAS.zmrclient.ssl.trustStore.path=
 eidas.ms.auth.eIDAS.zmrclient.ssl.trustStore.password=
 
 eidas.ms.auth.eIDAS.zmrclient.req.organisation.behoerdennr=jUnit123456
-
+eidas.ms.auth.eIDAS.zmrclient.req.update.reason.code=EIDAS-KITT
+eidas.ms.auth.eIDAS.zmrclient.req.update.reason.text=KITT for eIDAS Matching
 
 
 ## PVP2 S-Profile end-point configuration
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/junit_config_2.properties b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/junit_config_2.properties
index c3cec434..f07f86f6 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/junit_config_2.properties
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/junit_config_2.properties
@@ -90,6 +90,7 @@ eidas.ms.auth.eIDAS.node_v2.attributes.requested.representation.5=LegalName,true
 # ZMR communication
 eidas.ms.auth.eIDAS.zmrclient.endpoint=http://localhost:1234/demoszr
 eidas.ms.auth.eIDAS.zmrclient.req.organisation.behoerdennr=jUnit123456
+eidas.ms.auth.eIDAS.zmrclient.req.update.reason.code=EIDAS-KITT
 
 
 ## PVP2 S-Profile end-point configuration
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/junit_config_3.properties b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/junit_config_3.properties
index 3cd9fcb4..7b975752 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/junit_config_3.properties
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/junit_config_3.properties
@@ -92,6 +92,7 @@ eidas.ms.auth.eIDAS.node_v2.attributes.requested.representation.5=LegalName,true
 # ZMR communication
 eidas.ms.auth.eIDAS.zmrclient.endpoint=http://localhost:1234/demoszr
 eidas.ms.auth.eIDAS.zmrclient.req.organisation.behoerdennr=jUnit123456
+eidas.ms.auth.eIDAS.zmrclient.req.update.reason.code=EIDAS-KITT
 
 
 ## PVP2 S-Profile end-point configuration
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/junit_config_4.properties b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/junit_config_4.properties
index 82f9a798..7fda2871 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/junit_config_4.properties
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/junit_config_4.properties
@@ -90,6 +90,7 @@ eidas.ms.auth.eIDAS.node_v2.attributes.requested.representation.5=LegalName,true
 # ZMR communication
 eidas.ms.auth.eIDAS.zmrclient.endpoint=http://localhost:1234/demoszr
 eidas.ms.auth.eIDAS.zmrclient.req.organisation.behoerdennr=jUnit123456
+eidas.ms.auth.eIDAS.zmrclient.req.update.reason.code=EIDAS-KITT
 
 
 ## PVP2 S-Profile end-point configuration
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/junit_config_de_attributes.properties b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/junit_config_de_attributes.properties
index 5261aef9..0cdb4459 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/junit_config_de_attributes.properties
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/junit_config_de_attributes.properties
@@ -92,6 +92,7 @@ eidas.ms.auth.eIDAS.node_v2.attributes.requested.representation.5=LegalName,true
 # ZMR communication
 eidas.ms.auth.eIDAS.zmrclient.endpoint=http://localhost:1234/demoszr
 eidas.ms.auth.eIDAS.zmrclient.req.organisation.behoerdennr=jUnit123456
+eidas.ms.auth.eIDAS.zmrclient.req.update.reason.code=EIDAS-KITT
 
 
 ## PVP2 S-Profile end-point configuration
-- 
cgit v1.2.3


From cbf1d0408519d0763a1a87b733c16a1ba5d022ba Mon Sep 17 00:00:00 2001
From: Thomas <>
Date: Wed, 7 Jul 2021 09:31:43 +0200
Subject: add HTML template for additional eID information

---
 .../v2/tasks/GenerateOtherLoginMethodGuiTask.java  |  11 +-
 .../ReceiveOtherLoginMethodGuiResponseTask.java    |   8 +-
 .../tasks/GenerateOtherLoginMethodGuiTaskTest.java | 143 +++++++++++++++++++++
 .../resources/config/junit_config_1.properties     |   6 +-
 4 files changed, 156 insertions(+), 12 deletions(-)
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/GenerateOtherLoginMethodGuiTaskTest.java

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateOtherLoginMethodGuiTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateOtherLoginMethodGuiTask.java
index 8c3cc994..dbdda78e 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateOtherLoginMethodGuiTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateOtherLoginMethodGuiTask.java
@@ -23,6 +23,12 @@
 
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks;
 
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.stereotype.Component;
+
 import at.asitplus.eidas.specific.connector.MsEidasNodeConstants;
 import at.asitplus.eidas.specific.connector.gui.StaticGuiBuilderConfiguration;
 import at.gv.egiz.eaaf.core.api.gui.IGuiBuilderConfiguration;
@@ -32,11 +38,6 @@ import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
 import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
 import at.gv.egiz.eaaf.core.impl.idp.auth.modules.AbstractAuthServletTask;
 import lombok.extern.slf4j.Slf4j;
-import org.springframework.beans.factory.annotation.Autowired;
-import org.springframework.stereotype.Component;
-
-import javax.servlet.http.HttpServletRequest;
-import javax.servlet.http.HttpServletResponse;
 
 /**
  * Task that provides GUI for user to select an alternative login method.
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveOtherLoginMethodGuiResponseTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveOtherLoginMethodGuiResponseTask.java
index 0eb56d0b..8431d968 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveOtherLoginMethodGuiResponseTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveOtherLoginMethodGuiResponseTask.java
@@ -36,7 +36,7 @@ import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SelectedLoginMethod;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.InvalidUserInputException;
 import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
 import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
-import at.gv.egiz.eaaf.core.impl.idp.auth.modules.AbstractAuthServletTask;
+import at.gv.egiz.eaaf.core.impl.idp.controller.tasks.AbstractLocaleAuthServletTask;
 import lombok.extern.slf4j.Slf4j;
 
 /**
@@ -62,11 +62,11 @@ import lombok.extern.slf4j.Slf4j;
  */
 @Slf4j
 @Component("ReceiveOtherLoginMethodGuiResponseTask")
-public class ReceiveOtherLoginMethodGuiResponseTask extends AbstractAuthServletTask {
+public class ReceiveOtherLoginMethodGuiResponseTask extends AbstractLocaleAuthServletTask {
 
   @Override
-  public void execute(ExecutionContext executionContext, HttpServletRequest request, HttpServletResponse response)
-      throws TaskExecutionException {
+  public void executeWithLocale(ExecutionContext executionContext, HttpServletRequest request, 
+      HttpServletResponse response) throws TaskExecutionException {
     try {
       SelectedLoginMethod selection = SelectedLoginMethod.valueOf(extractUserSelection(request));
       executionContext.put(Constants.REQ_SELECTED_LOGIN_METHOD_PARAMETER, selection);
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/GenerateOtherLoginMethodGuiTaskTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/GenerateOtherLoginMethodGuiTaskTest.java
new file mode 100644
index 00000000..0b169ca4
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/GenerateOtherLoginMethodGuiTaskTest.java
@@ -0,0 +1,143 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.test.tasks;
+
+import java.io.UnsupportedEncodingException;
+import java.text.MessageFormat;
+import java.util.Locale;
+
+import org.apache.commons.lang3.RandomStringUtils;
+import org.junit.Assert;
+import org.junit.Before;
+import org.junit.Test;
+import org.junit.runner.RunWith;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.context.i18n.LocaleContextHolder;
+import org.springframework.mock.web.MockHttpServletRequest;
+import org.springframework.mock.web.MockHttpServletResponse;
+import org.springframework.test.context.ContextConfiguration;
+import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
+import org.springframework.test.context.web.WebAppConfiguration;
+import org.springframework.web.context.request.RequestContextHolder;
+import org.springframework.web.context.request.ServletRequestAttributes;
+
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SelectedLoginMethod;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.GenerateOtherLoginMethodGuiTask;
+import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
+import at.gv.egiz.eaaf.core.impl.idp.module.test.TestRequestImpl;
+import at.gv.egiz.eaaf.core.impl.idp.process.ExecutionContextImpl;
+
+@RunWith(SpringJUnit4ClassRunner.class)
+@ContextConfiguration(locations = {
+    "/SpringTest-context_tasks_test.xml",
+    "/SpringTest-context_basic_mapConfig.xml",
+    "/common_gui.beans.xml"
+})
+@WebAppConfiguration
+public class GenerateOtherLoginMethodGuiTaskTest {
+
+  private static final String TEST_PATTER_REQ_PARAM = 
+      "<input type=\"hidden\" name=\"loginSelection\" value=\"{0}\">";
+  
+  @Autowired GenerateOtherLoginMethodGuiTask task;
+  
+  private ExecutionContextImpl executionContext = new ExecutionContextImpl();
+  private TestRequestImpl pendingReq;
+  private MockHttpServletRequest httpReq;
+  private MockHttpServletResponse httpResp;
+  
+  /**
+   * jUnit test set-up.
+   * 
+   */
+  @Before
+  public void initialize() {
+    httpReq = new MockHttpServletRequest("POST", "https://localhost/ms_connector");
+    httpResp = new MockHttpServletResponse();
+    RequestContextHolder.resetRequestAttributes();
+    RequestContextHolder.setRequestAttributes(new ServletRequestAttributes(httpReq, httpResp));
+    
+    pendingReq = new TestRequestImpl();
+    pendingReq.setAuthUrl("https://localhost/ms_connector");
+    pendingReq.setPendingReqId(RandomStringUtils.randomAlphanumeric(10));
+    
+    LocaleContextHolder.resetLocaleContext();
+  }
+  
+  @Test
+  public void validHtmlResponseWithOutLocale() throws TaskExecutionException, UnsupportedEncodingException {    
+    
+    task.execute(pendingReq, executionContext);
+    
+    //result validation
+    String html = doBasicValidation();
+    
+    Assert.assertTrue("No english text", 
+        html.contains("Information on Logins with European eIDs"));
+    
+  }
+  
+  @Test
+  public void validHtmlResponseWithDE() throws TaskExecutionException, UnsupportedEncodingException {    
+    LocaleContextHolder.setLocale(Locale.GERMAN);
+    httpReq.addHeader("Accept-Language", "de");
+    
+    task.execute(pendingReq, executionContext);
+    
+    //result validation
+    String html = doBasicValidation();
+    
+    Assert.assertTrue("No english text", 
+        html.contains("Information zur Anmeldung über Europäische eIDs"));
+    
+  }
+  
+  @Test
+  public void validHtmlResponseWithEN() throws TaskExecutionException, UnsupportedEncodingException {    
+    LocaleContextHolder.setLocale(Locale.ENGLISH);
+    
+    task.execute(pendingReq, executionContext);
+    
+    //result validation
+    String html = doBasicValidation();
+    
+    Assert.assertTrue("No english text", 
+        html.contains("Information on Logins with European eIDs"));
+    
+  }
+  
+  @Test
+  public void validHtmlResponseWithFR() throws TaskExecutionException, UnsupportedEncodingException {    
+    LocaleContextHolder.setLocale(Locale.FRANCE);
+    httpReq.addHeader("Accept-Language", "fr");
+    
+    task.execute(pendingReq, executionContext);
+    
+    //result validation
+    String html = doBasicValidation();
+    
+    Assert.assertTrue("No english text", 
+        html.contains("Information on Logins with European eIDs"));
+    
+  }
+  
+  private String doBasicValidation() throws UnsupportedEncodingException {
+    Assert.assertEquals("Wrong http StatusCode", 200, httpResp.getStatus());
+    Assert.assertEquals("Wrong http ContentType", "text/html;charset=UTF-8", httpResp.getContentType());
+    
+    String html = httpResp.getContentAsString();
+    Assert.assertNotNull("html result is null", html);
+    Assert.assertFalse("html result is empty", html.isEmpty());    
+    
+    Assert.assertTrue("Missing IDA Login", 
+        html.contains(MessageFormat.format(TEST_PATTER_REQ_PARAM, SelectedLoginMethod.MOBILE_PHONE_SIGNATURE_LOGIN)));
+    Assert.assertTrue("Missing residence infos", 
+        html.contains(MessageFormat.format(TEST_PATTER_REQ_PARAM, SelectedLoginMethod.NO_OTHER_LOGIN)));
+        
+    Assert.assertTrue("No language selector with pendingRequestId", 
+        html.contains("/otherLoginMethod?pendingid=" + pendingReq.getPendingRequestId()));
+    Assert.assertTrue("No country-selection form", 
+        html.contains("<form class=\"block\" method=\"post\" action=\"/otherLoginMethod\">"));
+        
+    return html;
+    
+  }
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/junit_config_1.properties b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/junit_config_1.properties
index f5895f76..9e6876f4 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/junit_config_1.properties
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/junit_config_1.properties
@@ -19,9 +19,9 @@ eidas.ms.revisionlog.write.MDS.into.revisionlog=true
 eidas.ms.revisionlog.logIPAddressOfUser=true
 
 ##Directory for static Web content
-eidas.ms.webcontent.static.directory=webcontent/
-eidas.ms.webcontent.templates=templates/
-eidas.ms.webcontent.properties=properties/messages
+eidas.ms.webcontent.static.directory=../../../../../../basicConfig/webcontent/
+eidas.ms.webcontent.templates=../../../../../../basicConfig/templates/
+eidas.ms.webcontent.properties=../../../../../../basicConfig/properties/messages
 
 ## extended validation of pending-request Id's
 eidas.ms.core.pendingrequestid.maxlifetime=300
-- 
cgit v1.2.3


From ce2ba5f8d0a63e91dcbc6c5b80509f28d7fb32e8 Mon Sep 17 00:00:00 2001
From: Christian Kollmann <christian.kollmann@a-sit.at>
Date: Mon, 12 Jul 2021 09:46:53 +0200
Subject: Rename bean to match class name

---
 .../modules/auth/eidas/v2/tasks/GenerateAuthnRequestTask.java  | 10 +++++-----
 .../src/main/resources/eIDAS.Authentication.process.xml        |  4 ++--
 .../src/main/resources/eidas_v2_auth.beans.xml                 |  2 +-
 3 files changed, 8 insertions(+), 8 deletions(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateAuthnRequestTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateAuthnRequestTask.java
index 92f58877..9e8ff9ae 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateAuthnRequestTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateAuthnRequestTask.java
@@ -60,12 +60,12 @@ import lombok.extern.slf4j.Slf4j;
 
 /**
  * Authentication-process task that generates the Authn. Request to eIDAS Node.
- * 
+ *
  * @author tlenz
  *
  */
 @Slf4j
-@Component("ConnecteIDASNodeTask")
+@Component("GenerateAuthnRequestTask")
 public class GenerateAuthnRequestTask extends AbstractAuthServletTask {
 
   @Autowired
@@ -110,7 +110,7 @@ public class GenerateAuthnRequestTask extends AbstractAuthServletTask {
 
       // set citizen country code for foreign uses
       authnRequestBuilder.citizenCountryCode(citizenCountryCode);
-      
+
       //set Issuer
       final String issur = basicConfig.getBasicConfiguration(Constants.CONIG_PROPS_EIDAS_NODE_ENTITYID);
       if (StringUtils.isEmpty(issur)) {
@@ -121,7 +121,7 @@ public class GenerateAuthnRequestTask extends AbstractAuthServletTask {
       }
       authnRequestBuilder.issuer(issur);
 
-      
+
       // Add country-specific informations into eIDAS request
       ccSpecificProcessing.preProcess(citizenCountryCode, pendingReq, authnRequestBuilder);
 
@@ -206,7 +206,7 @@ public class GenerateAuthnRequestTask extends AbstractAuthServletTask {
    * one countrycode on each instance. In consequence, more than one eIDAS Ref.
    * Impl nodes are required to support producation, testing, or QS stages for one
    * country by using one ms-specific eIDAS connector
-   * 
+   *
    * @param environment Environment selector from CountrySlection page
    * @return
    */
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eIDAS.Authentication.process.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eIDAS.Authentication.process.xml
index 2379295b..da35b0c7 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eIDAS.Authentication.process.xml
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eIDAS.Authentication.process.xml
@@ -3,11 +3,11 @@
   xmlns:pd="http://reference.e-government.gv.at/namespace/moa/process/definition/v1">
 
 
-  <pd:Task id="createAuthnRequest"      class="ConnecteIDASNodeTask" />
+  <pd:Task id="createAuthnRequest"      class="GenerateAuthnRequestTask" />
   <pd:Task id="receiveAuthnResponse"    class="ReceiveResponseFromeIDASNodeTask" async="true" />
   <pd:Task id="finalizeAuthentication"  class="FinalizeAuthenticationTask" />
   <pd:Task id="generateIdentityLink"    class="CreateIdentityLinkTask" />
-  
+
   <pd:Task id="initialRegisterSearch"   class="InitialSearchTask" />
 
   <pd:Task id="createNewErnpEntryTask"                    class="CreateNewErnpEntryTask" />
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml
index cec75682..9dac91e5 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml
@@ -95,7 +95,7 @@
 
 
   <!-- Authentication Process Tasks -->
-  <bean id="ConnecteIDASNodeTask"
+  <bean id="GenerateAuthnRequestTask"
     class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.GenerateAuthnRequestTask"
     scope="prototype" />
 
-- 
cgit v1.2.3


From b31f383f421f414db92919d28bafc0767d898057 Mon Sep 17 00:00:00 2001
From: Christian Kollmann <christian.kollmann@a-sit.at>
Date: Mon, 12 Jul 2021 09:48:27 +0200
Subject: Rename task to match bean name

---
 .../src/main/resources/eIDAS.Authentication.process.xml             | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eIDAS.Authentication.process.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eIDAS.Authentication.process.xml
index da35b0c7..55ac348e 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eIDAS.Authentication.process.xml
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eIDAS.Authentication.process.xml
@@ -3,7 +3,7 @@
   xmlns:pd="http://reference.e-government.gv.at/namespace/moa/process/definition/v1">
 
 
-  <pd:Task id="createAuthnRequest"      class="GenerateAuthnRequestTask" />
+  <pd:Task id="generateAuthnRequest"    class="GenerateAuthnRequestTask" />
   <pd:Task id="receiveAuthnResponse"    class="ReceiveResponseFromeIDASNodeTask" async="true" />
   <pd:Task id="finalizeAuthentication"  class="FinalizeAuthenticationTask" />
   <pd:Task id="generateIdentityLink"    class="CreateIdentityLinkTask" />
@@ -20,8 +20,8 @@
 
   <pd:StartEvent id="start" />
 
-  <pd:Transition  from="start"                        to="createAuthnRequest" />
-  <pd:Transition  from="createAuthnRequest"           to="receiveAuthnResponse" />
+  <pd:Transition  from="start"                        to="generateAuthnRequest" />
+  <pd:Transition  from="generateAuthnRequest"         to="receiveAuthnResponse" />
   <pd:Transition  from="receiveAuthnResponse"         to="initialRegisterSearch" />
   <!-- TODO start-->
   <pd:Transition  from="initialRegisterSearch"        to="createNewErnpEntryTask"           conditionExpression="ctx['TASK_CreateNewErnpEntryTask']"/>
-- 
cgit v1.2.3


From 07ae7be3386d0ddc34d23d10bda91d7995b718e1 Mon Sep 17 00:00:00 2001
From: Christian Kollmann <christian.kollmann@a-sit.at>
Date: Mon, 12 Jul 2021 09:52:26 +0200
Subject: Rename bean to match class name

---
 .../specific/modules/auth/eidas/v2/tasks/ReceiveAuthnResponseTask.java  | 2 +-
 .../src/main/resources/eIDAS.Authentication.process.xml                 | 2 +-
 .../authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml      | 2 +-
 3 files changed, 3 insertions(+), 3 deletions(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveAuthnResponseTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveAuthnResponseTask.java
index 0f733e8d..377e62a2 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveAuthnResponseTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveAuthnResponseTask.java
@@ -45,7 +45,7 @@ import eu.eidas.auth.commons.light.ILightResponse;
 import lombok.extern.slf4j.Slf4j;
 
 @Slf4j
-@Component("ReceiveResponseFromeIDASNodeTask")
+@Component("ReceiveAuthnResponseTask")
 public class ReceiveAuthnResponseTask extends AbstractAuthServletTask {
 
   @Autowired
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eIDAS.Authentication.process.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eIDAS.Authentication.process.xml
index 55ac348e..e20fd7aa 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eIDAS.Authentication.process.xml
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eIDAS.Authentication.process.xml
@@ -4,7 +4,7 @@
 
 
   <pd:Task id="generateAuthnRequest"    class="GenerateAuthnRequestTask" />
-  <pd:Task id="receiveAuthnResponse"    class="ReceiveResponseFromeIDASNodeTask" async="true" />
+  <pd:Task id="receiveAuthnResponse"    class="ReceiveAuthnResponseTask" async="true" />
   <pd:Task id="finalizeAuthentication"  class="FinalizeAuthenticationTask" />
   <pd:Task id="generateIdentityLink"    class="CreateIdentityLinkTask" />
 
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml
index 9dac91e5..09e0234d 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml
@@ -99,7 +99,7 @@
     class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.GenerateAuthnRequestTask"
     scope="prototype" />
 
-  <bean id="ReceiveResponseFromeIDASNodeTask"
+  <bean id="ReceiveAuthnResponseTask"
     class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.ReceiveAuthnResponseTask"
     scope="prototype" />
 
-- 
cgit v1.2.3


From 4deb935edf2fa8aa75557e373157c23d5cfbc545 Mon Sep 17 00:00:00 2001
From: Christian Kollmann <christian.kollmann@a-sit.at>
Date: Mon, 12 Jul 2021 09:54:25 +0200
Subject: Refactor log string formatting

---
 .../eidas/v2/tasks/ReceiveAuthnResponseTask.java   | 33 +++++++++++-----------
 1 file changed, 17 insertions(+), 16 deletions(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveAuthnResponseTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveAuthnResponseTask.java
index 377e62a2..a680d3d3 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveAuthnResponseTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveAuthnResponseTask.java
@@ -19,16 +19,10 @@
  * file for details on the various modules and licenses.
  * The "NOTICE" text file is part of the distribution. Any derivative works
  * that you distribute must include a readable copy of the "NOTICE" text file.
-*/
+ */
 
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks;
 
-import javax.servlet.http.HttpServletRequest;
-import javax.servlet.http.HttpServletResponse;
-
-import org.springframework.beans.factory.annotation.Autowired;
-import org.springframework.stereotype.Component;
-
 import at.asitplus.eidas.specific.connector.MsConnectorEventCodes;
 import at.asitplus.eidas.specific.connector.MsEidasNodeConstants;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
@@ -43,19 +37,26 @@ import at.gv.egiz.eaaf.core.impl.idp.auth.data.AuthProcessDataWrapper;
 import at.gv.egiz.eaaf.core.impl.idp.auth.modules.AbstractAuthServletTask;
 import eu.eidas.auth.commons.light.ILightResponse;
 import lombok.extern.slf4j.Slf4j;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.stereotype.Component;
+
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
 
 @Slf4j
 @Component("ReceiveAuthnResponseTask")
 public class ReceiveAuthnResponseTask extends AbstractAuthServletTask {
 
+  @SuppressWarnings("SpringJavaInjectionPointsAutowiringInspection")
   @Autowired
   private IConfiguration basicConfig;
+
   @Autowired
   private EidasAttributeRegistry attrRegistry;
 
   @Override
   public void execute(ExecutionContext executionContext, HttpServletRequest request,
-      HttpServletResponse response) throws TaskExecutionException {
+                      HttpServletResponse response) throws TaskExecutionException {
     try {
       final ILightResponse eidasResponse = (ILightResponse) request.getAttribute(
           Constants.DATA_FULL_EIDAS_RESPONSE);
@@ -65,19 +66,19 @@ public class ReceiveAuthnResponseTask extends AbstractAuthServletTask {
 
       }
 
-      log.debug("Receive eIDAS response with RespId:" + eidasResponse.getId() + " for ReqId:" + eidasResponse
+      log.debug("Receive eIDAS response with RespId: {} for ReqId: {}", eidasResponse.getId(), eidasResponse
           .getInResponseToId());
-      log.trace("Full eIDAS-Resp: " + eidasResponse.toString());
+      log.trace("Full eIDAS-Resp: {}", eidasResponse);
       revisionsLogger.logEvent(pendingReq, MsConnectorEventCodes.RESPONSE_FROM_EIDAS_NODE, eidasResponse
           .getId());
 
       // check response StatusCode
       if (!eidasResponse.getStatus().getStatusCode().equals(Constants.SUCCESS_URI)) {
-        log.info("Receice eIDAS Response with StatusCode:" + eidasResponse.getStatus().getStatusCode()
-            + " Subcode:" + eidasResponse.getStatus().getSubStatusCode() + " Msg:" + eidasResponse.getStatus()
-                .getStatusMessage());
-        throw new EidasSAuthenticationException("eidas.02", new Object[] { eidasResponse.getStatus()
-            .getStatusCode(), eidasResponse.getStatus().getStatusMessage() });
+        log.info("Receive eIDAS Response with StatusCode: {} Subcode: {} Msg: {}",
+            eidasResponse.getStatus().getStatusCode(), eidasResponse.getStatus().getSubStatusCode(), eidasResponse.getStatus()
+            .getStatusMessage());
+        throw new EidasSAuthenticationException("eidas.02", new Object[]{eidasResponse.getStatus()
+            .getStatusCode(), eidasResponse.getStatus().getStatusMessage()});
 
       }
 
@@ -116,7 +117,7 @@ public class ReceiveAuthnResponseTask extends AbstractAuthServletTask {
       log.warn("eIDAS Response processing FAILED.", e);
       revisionsLogger.logEvent(pendingReq, MsConnectorEventCodes.RESPONSE_FROM_EIDAS_NODE_NOT_VALID);
       throw new TaskExecutionException(pendingReq, e.getMessage(),
-          new EidasSAuthenticationException("eidas.05", new Object[] { e.getMessage() }, e));
+          new EidasSAuthenticationException("eidas.05", new Object[]{e.getMessage()}, e));
 
     }
 
-- 
cgit v1.2.3


From d1a07d6941a286a795c85bd56ce9c5da0ec9af49 Mon Sep 17 00:00:00 2001
From: Christian Kollmann <christian.kollmann@a-sit.at>
Date: Mon, 12 Jul 2021 09:57:06 +0200
Subject: Extract logical steps into separate methods to improve readability

---
 .../eidas/v2/tasks/ReceiveAuthnResponseTask.java   | 95 ++++++++++------------
 1 file changed, 44 insertions(+), 51 deletions(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveAuthnResponseTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveAuthnResponseTask.java
index a680d3d3..6d011d3d 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveAuthnResponseTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveAuthnResponseTask.java
@@ -27,6 +27,7 @@ import at.asitplus.eidas.specific.connector.MsConnectorEventCodes;
 import at.asitplus.eidas.specific.connector.MsEidasNodeConstants;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidasSAuthenticationException;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidasValidationException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.EidasAttributeRegistry;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.validator.EidasResponseValidator;
 import at.gv.egiz.eaaf.core.api.idp.IConfiguration;
@@ -37,6 +38,7 @@ import at.gv.egiz.eaaf.core.impl.idp.auth.data.AuthProcessDataWrapper;
 import at.gv.egiz.eaaf.core.impl.idp.auth.modules.AbstractAuthServletTask;
 import eu.eidas.auth.commons.light.ILightResponse;
 import lombok.extern.slf4j.Slf4j;
+import org.jetbrains.annotations.NotNull;
 import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.stereotype.Component;
 
@@ -58,69 +60,60 @@ public class ReceiveAuthnResponseTask extends AbstractAuthServletTask {
   public void execute(ExecutionContext executionContext, HttpServletRequest request,
                       HttpServletResponse response) throws TaskExecutionException {
     try {
-      final ILightResponse eidasResponse = (ILightResponse) request.getAttribute(
-          Constants.DATA_FULL_EIDAS_RESPONSE);
-      if (eidasResponse == null) {
-        log.warn("NO eIDAS response-message found.");
-        throw new EidasSAuthenticationException("eidas.01", null);
-
-      }
-
-      log.debug("Receive eIDAS response with RespId: {} for ReqId: {}", eidasResponse.getId(), eidasResponse
-          .getInResponseToId());
-      log.trace("Full eIDAS-Resp: {}", eidasResponse);
-      revisionsLogger.logEvent(pendingReq, MsConnectorEventCodes.RESPONSE_FROM_EIDAS_NODE, eidasResponse
-          .getId());
-
-      // check response StatusCode
-      if (!eidasResponse.getStatus().getStatusCode().equals(Constants.SUCCESS_URI)) {
-        log.info("Receive eIDAS Response with StatusCode: {} Subcode: {} Msg: {}",
-            eidasResponse.getStatus().getStatusCode(), eidasResponse.getStatus().getSubStatusCode(), eidasResponse.getStatus()
-            .getStatusMessage());
-        throw new EidasSAuthenticationException("eidas.02", new Object[]{eidasResponse.getStatus()
-            .getStatusCode(), eidasResponse.getStatus().getStatusMessage()});
-
-      }
-
-      // extract all Attributes from response
-
-      // **********************************************************
-      // ******* MS-specificresponse validation **********
-      // **********************************************************
-      final String spCountry = basicConfig.getBasicConfiguration(Constants.CONIG_PROPS_EIDAS_NODE_COUNTRYCODE,
-          "AT");
-      final String citizenCountryCode = (String) executionContext.get(
-          MsEidasNodeConstants.REQ_PARAM_SELECTED_COUNTRY);
-      EidasResponseValidator.validateResponse(pendingReq, eidasResponse, spCountry, citizenCountryCode,
-          attrRegistry);
-
-      // **********************************************************
-      // ******* Store response infos into session object **********
-      // **********************************************************
-
-      // update MOA-Session data with received information
-      log.debug("Store eIDAS response information into pending-request.");
-      final AuthProcessDataWrapper authProcessData = pendingReq.getSessionData(AuthProcessDataWrapper.class);
-      authProcessData.setQaaLevel(eidasResponse.getLevelOfAssurance());
-      authProcessData.setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, eidasResponse);
-
-      // store MOA-session to database
-      requestStoreage.storePendingRequest(pendingReq);
-
+      final ILightResponse eidasResponse = extractEidasResponse(request);
+      checkStatusCode(eidasResponse);
+      validateMsSpecificResponse(executionContext, eidasResponse);
+      storeInSession(eidasResponse);
       revisionsLogger.logEvent(pendingReq, MsConnectorEventCodes.RESPONSE_FROM_EIDAS_NODE_VALID);
-
     } catch (final EaafException e) {
       revisionsLogger.logEvent(pendingReq, MsConnectorEventCodes.RESPONSE_FROM_EIDAS_NODE_NOT_VALID);
       throw new TaskExecutionException(pendingReq, "eIDAS Response processing FAILED.", e);
-
     } catch (final Exception e) {
       log.warn("eIDAS Response processing FAILED.", e);
       revisionsLogger.logEvent(pendingReq, MsConnectorEventCodes.RESPONSE_FROM_EIDAS_NODE_NOT_VALID);
       throw new TaskExecutionException(pendingReq, e.getMessage(),
           new EidasSAuthenticationException("eidas.05", new Object[]{e.getMessage()}, e));
+    }
+  }
+
+  @NotNull
+  private ILightResponse extractEidasResponse(HttpServletRequest request) throws EidasSAuthenticationException {
+    final ILightResponse eidasResponse = (ILightResponse) request.getAttribute(Constants.DATA_FULL_EIDAS_RESPONSE);
+    if (eidasResponse == null) {
+      log.warn("NO eIDAS response-message found.");
+      throw new EidasSAuthenticationException("eidas.01", null);
+    }
+    log.debug("Receive eIDAS response with RespId: {} for ReqId: {}",
+        eidasResponse.getId(), eidasResponse.getInResponseToId());
+    log.trace("Full eIDAS-Resp: {}", eidasResponse);
+    revisionsLogger.logEvent(pendingReq, MsConnectorEventCodes.RESPONSE_FROM_EIDAS_NODE, eidasResponse.getId());
+    return eidasResponse;
+  }
 
+  private void checkStatusCode(ILightResponse eidasResponse) throws EidasSAuthenticationException {
+    if (!eidasResponse.getStatus().getStatusCode().equals(Constants.SUCCESS_URI)) {
+      log.info("Receive eIDAS Response with StatusCode: {} Subcode: {} Msg: {}",
+          eidasResponse.getStatus().getStatusCode(),
+          eidasResponse.getStatus().getSubStatusCode(),
+          eidasResponse.getStatus().getStatusMessage());
+      throw new EidasSAuthenticationException("eidas.02", new Object[]{eidasResponse.getStatus()
+          .getStatusCode(), eidasResponse.getStatus().getStatusMessage()});
     }
+  }
+
+  private void validateMsSpecificResponse(ExecutionContext executionContext, ILightResponse eidasResponse)
+      throws EidasValidationException {
+    final String spCountry = basicConfig.getBasicConfiguration(Constants.CONIG_PROPS_EIDAS_NODE_COUNTRYCODE, "AT");
+    final String citizenCountryCode = (String) executionContext.get(MsEidasNodeConstants.REQ_PARAM_SELECTED_COUNTRY);
+    EidasResponseValidator.validateResponse(pendingReq, eidasResponse, spCountry, citizenCountryCode, attrRegistry);
+  }
 
+  private void storeInSession(ILightResponse eidasResponse) throws EaafException {
+    log.debug("Store eIDAS response information into pending-request.");
+    final AuthProcessDataWrapper authProcessData = pendingReq.getSessionData(AuthProcessDataWrapper.class);
+    authProcessData.setQaaLevel(eidasResponse.getLevelOfAssurance());
+    authProcessData.setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, eidasResponse);
+    requestStoreage.storePendingRequest(pendingReq);
   }
 
 }
-- 
cgit v1.2.3


From 39a7fdec4c4612e28c5ccc04a0b2d68328bbb946 Mon Sep 17 00:00:00 2001
From: Christian Kollmann <christian.kollmann@a-sit.at>
Date: Mon, 12 Jul 2021 09:58:33 +0200
Subject: Rename test class to match implementation name

---
 .../test/tasks/ReceiveAuthnResponseTaskTest.java   | 190 +++++++++++++++++++++
 .../test/tasks/ReceiveEidasResponseTaskTest.java   | 190 ---------------------
 2 files changed, 190 insertions(+), 190 deletions(-)
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveAuthnResponseTaskTest.java
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveEidasResponseTaskTest.java

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveAuthnResponseTaskTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveAuthnResponseTaskTest.java
new file mode 100644
index 00000000..c8e00e72
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveAuthnResponseTaskTest.java
@@ -0,0 +1,190 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.test.tasks;
+
+import static at.asitplus.eidas.specific.connector.MsEidasNodeConstants.PROP_CONFIG_SP_NEW_EID_MODE;
+
+import java.net.URISyntaxException;
+import java.util.Arrays;
+import java.util.HashMap;
+import java.util.Map;
+
+import org.apache.commons.lang3.RandomStringUtils;
+import org.jetbrains.annotations.NotNull;
+import org.junit.Assert;
+import org.junit.Before;
+import org.junit.Test;
+import org.junit.runner.RunWith;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.mock.web.MockHttpServletRequest;
+import org.springframework.mock.web.MockHttpServletResponse;
+import org.springframework.test.annotation.DirtiesContext;
+import org.springframework.test.context.ContextConfiguration;
+import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
+import org.springframework.web.context.request.RequestContextHolder;
+import org.springframework.web.context.request.ServletRequestAttributes;
+
+import at.asitplus.eidas.specific.connector.MsEidasNodeConstants;
+import at.asitplus.eidas.specific.connector.test.config.dummy.MsConnectorDummyConfigMap;
+import at.asitplus.eidas.specific.connector.test.config.dummy.MsConnectorDummySpConfiguration;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.EidasAttributeRegistry;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.ReceiveAuthnResponseTask;
+import at.gv.egiz.eaaf.core.api.IRequest;
+import at.gv.egiz.eaaf.core.api.IRequestStorage;
+import at.gv.egiz.eaaf.core.api.data.EaafConfigConstants;
+import at.gv.egiz.eaaf.core.api.data.EaafConstants;
+import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
+import at.gv.egiz.eaaf.core.exceptions.EaafException;
+import at.gv.egiz.eaaf.core.exceptions.EaafStorageException;
+import at.gv.egiz.eaaf.core.exceptions.PendingReqIdValidationException;
+import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
+import at.gv.egiz.eaaf.core.impl.idp.auth.data.AuthProcessDataWrapper;
+import at.gv.egiz.eaaf.core.impl.idp.module.test.TestRequestImpl;
+import at.gv.egiz.eaaf.core.impl.idp.process.ExecutionContextImpl;
+import at.gv.egiz.eaaf.core.impl.utils.Random;
+import eu.eidas.auth.commons.attribute.AttributeDefinition;
+import eu.eidas.auth.commons.attribute.ImmutableAttributeMap;
+import eu.eidas.auth.commons.protocol.impl.AuthenticationResponse;
+import lombok.val;
+
+@RunWith(SpringJUnit4ClassRunner.class)
+@DirtiesContext(classMode = DirtiesContext.ClassMode.BEFORE_CLASS)
+@ContextConfiguration(locations = {
+    "/SpringTest-context_tasks_test.xml",
+    "/SpringTest-context_basic_mapConfig.xml"})
+public class ReceiveAuthnResponseTaskTest {
+
+  @Autowired(required = true)
+  private ReceiveAuthnResponseTask task;
+
+  @Autowired(required = true)
+  private MsConnectorDummyConfigMap basicConfig;
+  @Autowired
+  protected EidasAttributeRegistry attrRegistry;
+
+  @Autowired private IRequestStorage storage;
+
+  final ExecutionContext executionContext = new ExecutionContextImpl();
+  private MockHttpServletRequest httpReq;
+  private MockHttpServletResponse httpResp;
+  private TestRequestImpl pendingReq;
+  private MsConnectorDummySpConfiguration oaParam;
+
+  /**
+   * jUnit test set-up.
+   */
+  @Before
+  public void setUp() throws EaafStorageException, URISyntaxException {
+
+    httpReq = new MockHttpServletRequest("POST", "https://localhost/authhandler");
+    httpResp = new MockHttpServletResponse();
+    RequestContextHolder.resetRequestAttributes();
+    RequestContextHolder.setRequestAttributes(new ServletRequestAttributes(httpReq, httpResp));
+
+    basicConfig.putConfigValue("eidas.ms.auth.eIDAS.szrclient.debug.useDummySolution", "false");
+
+    final Map<String, String> spConfig = new HashMap<>();
+    spConfig.put(EaafConfigConstants.SERVICE_UNIQUEIDENTIFIER, "testSp");
+    spConfig.put("target", "urn:publicid:gv.at:cdid+XX");
+    spConfig.put(PROP_CONFIG_SP_NEW_EID_MODE, "true");
+    oaParam = new MsConnectorDummySpConfiguration(spConfig, basicConfig);
+    oaParam.setLoa(Arrays.asList(EaafConstants.EIDAS_LOA_HIGH));
+    pendingReq = new TestRequestImpl();
+
+    pendingReq.setSpConfig(oaParam);
+    pendingReq.setPendingReqId(at.gv.egiz.eaaf.core.impl.utils.Random.nextProcessReferenceValue());
+    pendingReq.setAuthUrl("http://test.com/");
+    pendingReq.setTransactionId("avaasbav");
+    pendingReq.setPiiTransactionId(RandomStringUtils.randomAlphanumeric(10));
+
+    executionContext.put(MsEidasNodeConstants.REQ_PARAM_SELECTED_COUNTRY, "LU");
+    executionContext.put(EaafConstants.PROCESS_ENGINE_REQUIRES_NO_POSTAUTH_REDIRECT, true);
+
+  }
+
+  @Test
+  public void missingEidasResponse() {
+    try {
+      task.execute(pendingReq, executionContext);
+      Assert.fail("No eIDAS response not detected");
+
+    } catch (TaskExecutionException e) {
+      Assert.assertEquals("ErrorId", "eidas.01",
+          ((EaafException) e.getOriginalException()).getErrorId());
+
+    }
+  }
+
+  @Test
+  public void notSuccessEidasResponse() throws URISyntaxException {
+    String statusCode = RandomStringUtils.randomAlphabetic(10);
+    httpReq.setAttribute(Constants.DATA_FULL_EIDAS_RESPONSE,
+        buildDummyAuthResponse(statusCode));
+
+
+    try {
+      task.execute(pendingReq, executionContext);
+      Assert.fail("No eIDAS response not detected");
+
+    } catch (TaskExecutionException e) {
+      Assert.assertEquals("ErrorId", "eidas.02",
+          ((EaafException) e.getOriginalException()).getErrorId());
+      Assert.assertEquals("wrong parameter size", 2, ((EaafException) e.getOriginalException())
+          .getParams().length);
+      Assert.assertEquals("wrong errorMsg", statusCode, ((EaafException) e
+          .getOriginalException()).getParams()[0]);
+
+    }
+  }
+
+  @Test
+  public void success() throws URISyntaxException, TaskExecutionException, PendingReqIdValidationException {
+    @NotNull
+    AuthenticationResponse eidasResponse = buildDummyAuthResponse(Constants.SUCCESS_URI);
+    httpReq.setAttribute(Constants.DATA_FULL_EIDAS_RESPONSE, eidasResponse);
+    executionContext.put(MsEidasNodeConstants.REQ_PARAM_SELECTED_COUNTRY, "LU");
+
+    //execute test
+    task.execute(pendingReq, executionContext);
+
+    //validate state
+    IRequest storedReq = storage.getPendingRequest(pendingReq.getPendingRequestId());
+    Assert.assertNotNull("pendingReq not stored", storedReq);
+
+    final AuthProcessDataWrapper authProcessData = storedReq.getSessionData(AuthProcessDataWrapper.class);
+    Assert.assertEquals("LoA", eidasResponse.getLevelOfAssurance(), authProcessData.getQaaLevel());
+    Assert.assertNotNull("eIDAS response",
+        authProcessData.getGenericDataFromSession(Constants.DATA_FULL_EIDAS_RESPONSE));
+    Assert.assertEquals("eIDAS response", eidasResponse,
+        authProcessData.getGenericDataFromSession(Constants.DATA_FULL_EIDAS_RESPONSE));
+
+  }
+
+  @NotNull
+  private AuthenticationResponse buildDummyAuthResponse(String statusCode) throws URISyntaxException {
+    final AttributeDefinition attributeDef = attrRegistry.getCoreAttributeRegistry().getByFriendlyName(
+        Constants.eIDAS_ATTR_PERSONALIDENTIFIER).first();
+    final AttributeDefinition attributeDef2 = attrRegistry.getCoreAttributeRegistry().getByFriendlyName(
+        Constants.eIDAS_ATTR_CURRENTFAMILYNAME).first();
+    final AttributeDefinition attributeDef3 = attrRegistry.getCoreAttributeRegistry().getByFriendlyName(
+        Constants.eIDAS_ATTR_CURRENTGIVENNAME).first();
+    final AttributeDefinition attributeDef4 = attrRegistry.getCoreAttributeRegistry().getByFriendlyName(
+        Constants.eIDAS_ATTR_DATEOFBIRTH).first();
+
+    final ImmutableAttributeMap attributeMap = ImmutableAttributeMap.builder()
+        .put(attributeDef, "LU/AT/" + RandomStringUtils.randomNumeric(64))
+        .put(attributeDef2, RandomStringUtils.randomAlphabetic(10))
+        .put(attributeDef3, RandomStringUtils.randomAlphabetic(10)).put(attributeDef4, "2001-01-01").build();
+
+    val b = new AuthenticationResponse.Builder();
+    return b.id("_".concat(Random.nextHexRandom16()))
+        .issuer(RandomStringUtils.randomAlphabetic(10))
+        .subject(RandomStringUtils.randomAlphabetic(10))
+        .statusCode(statusCode)
+        .inResponseTo("_".concat(Random.nextHexRandom16()))
+        .subjectNameIdFormat("afaf")
+        .levelOfAssurance(EaafConstants.EIDAS_LOA_HIGH)
+        .attributes(attributeMap)
+        .build();
+  }
+
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveEidasResponseTaskTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveEidasResponseTaskTest.java
deleted file mode 100644
index ae3a79b8..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/ReceiveEidasResponseTaskTest.java
+++ /dev/null
@@ -1,190 +0,0 @@
-package at.asitplus.eidas.specific.modules.auth.eidas.v2.test.tasks;
-
-import static at.asitplus.eidas.specific.connector.MsEidasNodeConstants.PROP_CONFIG_SP_NEW_EID_MODE;
-
-import java.net.URISyntaxException;
-import java.util.Arrays;
-import java.util.HashMap;
-import java.util.Map;
-
-import org.apache.commons.lang3.RandomStringUtils;
-import org.jetbrains.annotations.NotNull;
-import org.junit.Assert;
-import org.junit.Before;
-import org.junit.Test;
-import org.junit.runner.RunWith;
-import org.springframework.beans.factory.annotation.Autowired;
-import org.springframework.mock.web.MockHttpServletRequest;
-import org.springframework.mock.web.MockHttpServletResponse;
-import org.springframework.test.annotation.DirtiesContext;
-import org.springframework.test.context.ContextConfiguration;
-import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
-import org.springframework.web.context.request.RequestContextHolder;
-import org.springframework.web.context.request.ServletRequestAttributes;
-
-import at.asitplus.eidas.specific.connector.MsEidasNodeConstants;
-import at.asitplus.eidas.specific.connector.test.config.dummy.MsConnectorDummyConfigMap;
-import at.asitplus.eidas.specific.connector.test.config.dummy.MsConnectorDummySpConfiguration;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.EidasAttributeRegistry;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.ReceiveAuthnResponseTask;
-import at.gv.egiz.eaaf.core.api.IRequest;
-import at.gv.egiz.eaaf.core.api.IRequestStorage;
-import at.gv.egiz.eaaf.core.api.data.EaafConfigConstants;
-import at.gv.egiz.eaaf.core.api.data.EaafConstants;
-import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
-import at.gv.egiz.eaaf.core.exceptions.EaafException;
-import at.gv.egiz.eaaf.core.exceptions.EaafStorageException;
-import at.gv.egiz.eaaf.core.exceptions.PendingReqIdValidationException;
-import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
-import at.gv.egiz.eaaf.core.impl.idp.auth.data.AuthProcessDataWrapper;
-import at.gv.egiz.eaaf.core.impl.idp.module.test.TestRequestImpl;
-import at.gv.egiz.eaaf.core.impl.idp.process.ExecutionContextImpl;
-import at.gv.egiz.eaaf.core.impl.utils.Random;
-import eu.eidas.auth.commons.attribute.AttributeDefinition;
-import eu.eidas.auth.commons.attribute.ImmutableAttributeMap;
-import eu.eidas.auth.commons.protocol.impl.AuthenticationResponse;
-import lombok.val;
-
-@RunWith(SpringJUnit4ClassRunner.class)
-@DirtiesContext(classMode = DirtiesContext.ClassMode.BEFORE_CLASS)
-@ContextConfiguration(locations = {
-    "/SpringTest-context_tasks_test.xml",
-    "/SpringTest-context_basic_mapConfig.xml"})
-public class ReceiveEidasResponseTaskTest {
-
-  @Autowired(required = true)
-  private ReceiveAuthnResponseTask task;
-
-  @Autowired(required = true)
-  private MsConnectorDummyConfigMap basicConfig;
-  @Autowired
-  protected EidasAttributeRegistry attrRegistry;
-
-  @Autowired private IRequestStorage storage;
-
-  final ExecutionContext executionContext = new ExecutionContextImpl();
-  private MockHttpServletRequest httpReq;
-  private MockHttpServletResponse httpResp;
-  private TestRequestImpl pendingReq;
-  private MsConnectorDummySpConfiguration oaParam;
-
-  /**
-   * jUnit test set-up.
-   */
-  @Before
-  public void setUp() throws EaafStorageException, URISyntaxException {
-
-    httpReq = new MockHttpServletRequest("POST", "https://localhost/authhandler");
-    httpResp = new MockHttpServletResponse();
-    RequestContextHolder.resetRequestAttributes();
-    RequestContextHolder.setRequestAttributes(new ServletRequestAttributes(httpReq, httpResp));
-
-    basicConfig.putConfigValue("eidas.ms.auth.eIDAS.szrclient.debug.useDummySolution", "false");
-
-    final Map<String, String> spConfig = new HashMap<>();
-    spConfig.put(EaafConfigConstants.SERVICE_UNIQUEIDENTIFIER, "testSp");
-    spConfig.put("target", "urn:publicid:gv.at:cdid+XX");
-    spConfig.put(PROP_CONFIG_SP_NEW_EID_MODE, "true");
-    oaParam = new MsConnectorDummySpConfiguration(spConfig, basicConfig);
-    oaParam.setLoa(Arrays.asList(EaafConstants.EIDAS_LOA_HIGH));
-    pendingReq = new TestRequestImpl();
-
-    pendingReq.setSpConfig(oaParam);
-    pendingReq.setPendingReqId(at.gv.egiz.eaaf.core.impl.utils.Random.nextProcessReferenceValue());
-    pendingReq.setAuthUrl("http://test.com/");
-    pendingReq.setTransactionId("avaasbav");
-    pendingReq.setPiiTransactionId(RandomStringUtils.randomAlphanumeric(10));
-
-    executionContext.put(MsEidasNodeConstants.REQ_PARAM_SELECTED_COUNTRY, "LU");
-    executionContext.put(EaafConstants.PROCESS_ENGINE_REQUIRES_NO_POSTAUTH_REDIRECT, true);
-
-  }
-
-  @Test
-  public void missingEidasResponse() {
-    try {
-      task.execute(pendingReq, executionContext);
-      Assert.fail("No eIDAS response not detected");
-
-    } catch (TaskExecutionException e) {
-      Assert.assertEquals("ErrorId", "eidas.01",
-          ((EaafException) e.getOriginalException()).getErrorId());
-
-    }
-  }
-
-  @Test
-  public void notSuccessEidasResponse() throws URISyntaxException {
-    String statusCode = RandomStringUtils.randomAlphabetic(10);
-    httpReq.setAttribute(Constants.DATA_FULL_EIDAS_RESPONSE,
-        buildDummyAuthResponse(statusCode));
-
-
-    try {
-      task.execute(pendingReq, executionContext);
-      Assert.fail("No eIDAS response not detected");
-
-    } catch (TaskExecutionException e) {
-      Assert.assertEquals("ErrorId", "eidas.02",
-          ((EaafException) e.getOriginalException()).getErrorId());
-      Assert.assertEquals("wrong parameter size", 2, ((EaafException) e.getOriginalException())
-          .getParams().length);
-      Assert.assertEquals("wrong errorMsg", statusCode, ((EaafException) e
-          .getOriginalException()).getParams()[0]);
-
-    }
-  }
-
-  @Test
-  public void success() throws URISyntaxException, TaskExecutionException, PendingReqIdValidationException {
-    @NotNull
-    AuthenticationResponse eidasResponse = buildDummyAuthResponse(Constants.SUCCESS_URI);
-    httpReq.setAttribute(Constants.DATA_FULL_EIDAS_RESPONSE, eidasResponse);
-    executionContext.put(MsEidasNodeConstants.REQ_PARAM_SELECTED_COUNTRY, "LU");
-
-    //execute test
-    task.execute(pendingReq, executionContext);
-
-    //validate state
-    IRequest storedReq = storage.getPendingRequest(pendingReq.getPendingRequestId());
-    Assert.assertNotNull("pendingReq not stored", storedReq);
-
-    final AuthProcessDataWrapper authProcessData = storedReq.getSessionData(AuthProcessDataWrapper.class);
-    Assert.assertEquals("LoA", eidasResponse.getLevelOfAssurance(), authProcessData.getQaaLevel());
-    Assert.assertNotNull("eIDAS response",
-        authProcessData.getGenericDataFromSession(Constants.DATA_FULL_EIDAS_RESPONSE));
-    Assert.assertEquals("eIDAS response", eidasResponse,
-        authProcessData.getGenericDataFromSession(Constants.DATA_FULL_EIDAS_RESPONSE));
-
-  }
-
-  @NotNull
-  private AuthenticationResponse buildDummyAuthResponse(String statusCode) throws URISyntaxException {
-    final AttributeDefinition attributeDef = attrRegistry.getCoreAttributeRegistry().getByFriendlyName(
-        Constants.eIDAS_ATTR_PERSONALIDENTIFIER).first();
-    final AttributeDefinition attributeDef2 = attrRegistry.getCoreAttributeRegistry().getByFriendlyName(
-        Constants.eIDAS_ATTR_CURRENTFAMILYNAME).first();
-    final AttributeDefinition attributeDef3 = attrRegistry.getCoreAttributeRegistry().getByFriendlyName(
-        Constants.eIDAS_ATTR_CURRENTGIVENNAME).first();
-    final AttributeDefinition attributeDef4 = attrRegistry.getCoreAttributeRegistry().getByFriendlyName(
-        Constants.eIDAS_ATTR_DATEOFBIRTH).first();
-
-    final ImmutableAttributeMap attributeMap = ImmutableAttributeMap.builder()
-        .put(attributeDef, "LU/AT/" + RandomStringUtils.randomNumeric(64))
-        .put(attributeDef2, RandomStringUtils.randomAlphabetic(10))
-        .put(attributeDef3, RandomStringUtils.randomAlphabetic(10)).put(attributeDef4, "2001-01-01").build();
-
-    val b = new AuthenticationResponse.Builder();
-    return b.id("_".concat(Random.nextHexRandom16()))
-        .issuer(RandomStringUtils.randomAlphabetic(10))
-        .subject(RandomStringUtils.randomAlphabetic(10))
-        .statusCode(statusCode)
-        .inResponseTo("_".concat(Random.nextHexRandom16()))
-        .subjectNameIdFormat("afaf")
-        .levelOfAssurance(EaafConstants.EIDAS_LOA_HIGH)
-        .attributes(attributeMap)
-        .build();
-  }
-
-}
-- 
cgit v1.2.3


From c8a426c26f003829f149b6f37c5245720a8ce320 Mon Sep 17 00:00:00 2001
From: Christian Kollmann <christian.kollmann@a-sit.at>
Date: Mon, 12 Jul 2021 10:01:52 +0200
Subject: Refactor log string formatting, typos

---
 .../eidas/v2/tasks/GenerateAuthnRequestTask.java   | 82 ++++++++++------------
 1 file changed, 37 insertions(+), 45 deletions(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateAuthnRequestTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateAuthnRequestTask.java
index 9e8ff9ae..ffd92a50 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateAuthnRequestTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateAuthnRequestTask.java
@@ -19,22 +19,10 @@
  * file for details on the various modules and licenses.
  * The "NOTICE" text file is part of the distribution. Any derivative works
  * that you distribute must include a readable copy of the "NOTICE" text file.
-*/
+ */
 
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks;
 
-import java.util.UUID;
-
-import javax.servlet.ServletException;
-import javax.servlet.http.HttpServletRequest;
-import javax.servlet.http.HttpServletResponse;
-
-import org.apache.commons.lang3.StringUtils;
-import org.springframework.beans.factory.annotation.Autowired;
-import org.springframework.context.ApplicationContext;
-import org.springframework.stereotype.Component;
-import org.springframework.web.util.UriComponentsBuilder;
-
 import at.asitplus.eidas.specific.connector.MsConnectorEventCodes;
 import at.asitplus.eidas.specific.connector.MsEidasNodeConstants;
 import at.asitplus.eidas.specific.connector.gui.StaticGuiBuilderConfiguration;
@@ -57,48 +45,59 @@ import eu.eidas.specificcommunication.SpecificCommunicationDefinitionBeanNames;
 import eu.eidas.specificcommunication.exception.SpecificCommunicationException;
 import eu.eidas.specificcommunication.protocol.SpecificCommunicationService;
 import lombok.extern.slf4j.Slf4j;
+import org.apache.commons.lang3.StringUtils;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.context.ApplicationContext;
+import org.springframework.stereotype.Component;
+import org.springframework.web.util.UriComponentsBuilder;
+
+import javax.servlet.ServletException;
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+import java.util.UUID;
 
 /**
  * Authentication-process task that generates the Authn. Request to eIDAS Node.
  *
  * @author tlenz
- *
  */
 @Slf4j
 @Component("GenerateAuthnRequestTask")
 public class GenerateAuthnRequestTask extends AbstractAuthServletTask {
 
+  @SuppressWarnings("SpringJavaInjectionPointsAutowiringInspection")
   @Autowired
   IConfiguration basicConfig;
+
   @Autowired
   ApplicationContext context;
+
+  @SuppressWarnings("SpringJavaInjectionPointsAutowiringInspection")
   @Autowired
   ITransactionStorage transactionStore;
+
+  @SuppressWarnings("SpringJavaInjectionPointsAutowiringInspection")
   @Autowired
   ISpringMvcGuiFormBuilder guiBuilder;
+
   @Autowired
   ICcSpecificEidProcessingService ccSpecificProcessing;
 
   @Override
-  public void execute(ExecutionContext executionContext,
-      HttpServletRequest request, HttpServletResponse response)
+  public void execute(ExecutionContext executionContext, HttpServletRequest request, HttpServletResponse response)
       throws TaskExecutionException {
-
     try {
       // get target, environment and validate citizen countryCode
-      final String citizenCountryCode = (String) executionContext.get(
-          MsEidasNodeConstants.REQ_PARAM_SELECTED_COUNTRY);
-      final String environment = (String) executionContext.get(
-          MsEidasNodeConstants.REQ_PARAM_SELECTED_ENVIRONMENT);
+      final String citizenCountryCode = (String) executionContext.get(MsEidasNodeConstants.REQ_PARAM_SELECTED_COUNTRY);
+      final String environment = (String) executionContext.get(MsEidasNodeConstants.REQ_PARAM_SELECTED_ENVIRONMENT);
 
       if (StringUtils.isEmpty(citizenCountryCode)) {
         // illegal state; task should not have been executed without a selected country
-        throw new EidasSAuthenticationException("eidas.03", new Object[] { "" });
-
+        throw new EidasSAuthenticationException("eidas.03", new Object[]{""});
       }
 
       // TODO: maybe add countryCode validation before request ref. impl. eIDAS node
-      log.info("Request eIDAS auth. for citizen of country: " + citizenCountryCode);
+      log.info("Request eIDAS auth. for citizen of country: {}", citizenCountryCode);
       revisionsLogger.logEvent(pendingReq, MsConnectorEventCodes.COUNTRY_SELECTED, citizenCountryCode);
 
       // build eIDAS AuthnRequest
@@ -112,17 +111,17 @@ public class GenerateAuthnRequestTask extends AbstractAuthServletTask {
       authnRequestBuilder.citizenCountryCode(citizenCountryCode);
 
       //set Issuer
-      final String issur = basicConfig.getBasicConfiguration(Constants.CONIG_PROPS_EIDAS_NODE_ENTITYID);
-      if (StringUtils.isEmpty(issur)) {
+      final String issuer = basicConfig.getBasicConfiguration(Constants.CONIG_PROPS_EIDAS_NODE_ENTITYID);
+      if (StringUtils.isEmpty(issuer)) {
         log.error("Found NO 'eIDAS node issuer' in configuration. Authentication NOT possible!");
         throw new EaafConfigurationException("config.27",
-            new Object[] { "Application config containts NO " + Constants.CONIG_PROPS_EIDAS_NODE_ENTITYID });
-
+            new Object[]{"Application config containts NO " + Constants.CONIG_PROPS_EIDAS_NODE_ENTITYID});
       }
-      authnRequestBuilder.issuer(issur);
 
+      authnRequestBuilder.issuer(issuer);
 
-      // Add country-specific informations into eIDAS request
+
+      // Add country-specific information into eIDAS request
       ccSpecificProcessing.preProcess(citizenCountryCode, pendingReq, authnRequestBuilder);
 
       // build request
@@ -149,13 +148,13 @@ public class GenerateAuthnRequestTask extends AbstractAuthServletTask {
 
       if (StringUtils.isEmpty(forwardUrl)) {
         log.warn("NO ForwardURL defined in configuration. Can NOT forward to eIDAS node! Process stops");
-        throw new EaafConfigurationException("config.08", new Object[] {
+        throw new EaafConfigurationException("config.08", new Object[]{
             environment == null ? Constants.CONIG_PROPS_EIDAS_NODE_FORWARD_URL
                 : Constants.CONIG_PROPS_EIDAS_NODE_FORWARD_URL + "." + environment
         });
 
       }
-      log.debug("ForwardURL: " + forwardUrl + " selected to forward eIDAS request");
+      log.debug("ForwardURL: {} selected to forward eIDAS request", forwardUrl);
 
       if (basicConfig.getBasicConfiguration(
           Constants.CONIG_PROPS_EIDAS_NODE_FORWARD_METHOD,
@@ -177,10 +176,8 @@ public class GenerateAuthnRequestTask extends AbstractAuthServletTask {
             resourceLoader);
 
         config.putCustomParameter(null, Constants.TEMPLATE_POST_FORWARD_ENDPOINT, forwardUrl);
-        config.putCustomParameter(null, Constants.TEMPLATE_POST_FORWARD_TOKEN_NAME,
-            EidasParameterKeys.TOKEN.toString());
-        config.putCustomParameter(null, Constants.TEMPLATE_POST_FORWARD_TOKEN_VALUE,
-            tokenBase64);
+        config.putCustomParameter(null, Constants.TEMPLATE_POST_FORWARD_TOKEN_NAME, EidasParameterKeys.TOKEN.toString());
+        config.putCustomParameter(null, Constants.TEMPLATE_POST_FORWARD_TOKEN_VALUE, tokenBase64);
 
         guiBuilder.build(request, response, config, "Forward to eIDASNode form");
 
@@ -204,14 +201,14 @@ public class GenerateAuthnRequestTask extends AbstractAuthServletTask {
    * <br>
    * <b>Info: </b> This method is needed, because eIDAS Ref. Impl only supports
    * one countrycode on each instance. In consequence, more than one eIDAS Ref.
-   * Impl nodes are required to support producation, testing, or QS stages for one
+   * Impl nodes are required to support production, testing, or QS stages for one
    * country by using one ms-specific eIDAS connector
    *
    * @param environment Environment selector from CountrySlection page
-   * @return
+   * @return the URL from the configuration
    */
   private String selectedForwardUrlForEnvironment(String environment) {
-    log.trace("Starting endpoint selection process for environment: " + environment + " ... ");
+    log.trace("Starting endpoint selection process for environment: {} ... ", environment);
     if (environment.equalsIgnoreCase(MsEidasNodeConstants.REQ_PARAM_SELECTED_ENVIRONMENT_VALUE_PRODUCTION)) {
       return basicConfig.getBasicConfiguration(Constants.CONIG_PROPS_EIDAS_NODE_FORWARD_URL);
     } else if (environment.equalsIgnoreCase(MsEidasNodeConstants.REQ_PARAM_SELECTED_ENVIRONMENT_VALUE_QS)) {
@@ -226,10 +223,8 @@ public class GenerateAuthnRequestTask extends AbstractAuthServletTask {
       return basicConfig.getBasicConfiguration(Constants.CONIG_PROPS_EIDAS_NODE_FORWARD_URL
           + "." + MsEidasNodeConstants.REQ_PARAM_SELECTED_ENVIRONMENT_VALUE_DEVELOPMENT);
     }
-
-    log.info("Environment selector: " + environment + " is not supported");
+    log.info("Environment selector: {} is not supported", environment);
     return null;
-
   }
 
   private BinaryLightToken putRequestInCommunicationCache(ILightRequest lightRequest)
@@ -239,13 +234,10 @@ public class GenerateAuthnRequestTask extends AbstractAuthServletTask {
       final SpecificCommunicationService springManagedSpecificConnectorCommunicationService =
           (SpecificCommunicationService) context.getBean(
               SpecificCommunicationDefinitionBeanNames.SPECIFIC_CONNECTOR_COMMUNICATION_SERVICE.toString());
-
       binaryLightToken = springManagedSpecificConnectorCommunicationService.putRequest(lightRequest);
-
     } catch (final SpecificCommunicationException e) {
       log.error("Unable to process specific request");
       throw new ServletException(e);
-
     }
 
     return binaryLightToken;
-- 
cgit v1.2.3


From 311185cadc5f6abed886830688c7e928be9d5577 Mon Sep 17 00:00:00 2001
From: Christian Kollmann <christian.kollmann@a-sit.at>
Date: Mon, 12 Jul 2021 10:07:16 +0200
Subject: Extract logical steps into separate methods to improve readability

---
 .../eidas/v2/tasks/GenerateAuthnRequestTask.java   | 223 +++++++++++----------
 1 file changed, 114 insertions(+), 109 deletions(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateAuthnRequestTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateAuthnRequestTask.java
index ffd92a50..575b2334 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateAuthnRequestTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateAuthnRequestTask.java
@@ -27,6 +27,7 @@ import at.asitplus.eidas.specific.connector.MsConnectorEventCodes;
 import at.asitplus.eidas.specific.connector.MsEidasNodeConstants;
 import at.asitplus.eidas.specific.connector.gui.StaticGuiBuilderConfiguration;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidPostProcessingException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidasSAuthenticationException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.ICcSpecificEidProcessingService;
 import at.gv.egiz.eaaf.core.api.gui.ISpringMvcGuiFormBuilder;
@@ -34,6 +35,8 @@ import at.gv.egiz.eaaf.core.api.idp.IConfiguration;
 import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
 import at.gv.egiz.eaaf.core.api.storage.ITransactionStorage;
 import at.gv.egiz.eaaf.core.exceptions.EaafConfigurationException;
+import at.gv.egiz.eaaf.core.exceptions.EaafException;
+import at.gv.egiz.eaaf.core.exceptions.GuiBuildException;
 import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
 import at.gv.egiz.eaaf.core.impl.idp.auth.modules.AbstractAuthServletTask;
 import eu.eidas.auth.commons.EidasParameterKeys;
@@ -46,6 +49,7 @@ import eu.eidas.specificcommunication.exception.SpecificCommunicationException;
 import eu.eidas.specificcommunication.protocol.SpecificCommunicationService;
 import lombok.extern.slf4j.Slf4j;
 import org.apache.commons.lang3.StringUtils;
+import org.jetbrains.annotations.NotNull;
 import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.context.ApplicationContext;
 import org.springframework.stereotype.Component;
@@ -54,6 +58,7 @@ import org.springframework.web.util.UriComponentsBuilder;
 import javax.servlet.ServletException;
 import javax.servlet.http.HttpServletRequest;
 import javax.servlet.http.HttpServletResponse;
+import java.io.IOException;
 import java.util.UUID;
 
 /**
@@ -87,113 +92,112 @@ public class GenerateAuthnRequestTask extends AbstractAuthServletTask {
   public void execute(ExecutionContext executionContext, HttpServletRequest request, HttpServletResponse response)
       throws TaskExecutionException {
     try {
-      // get target, environment and validate citizen countryCode
-      final String citizenCountryCode = (String) executionContext.get(MsEidasNodeConstants.REQ_PARAM_SELECTED_COUNTRY);
+      final String citizenCountryCode = extractCitizenCountryCode(executionContext);
       final String environment = (String) executionContext.get(MsEidasNodeConstants.REQ_PARAM_SELECTED_ENVIRONMENT);
-
-      if (StringUtils.isEmpty(citizenCountryCode)) {
-        // illegal state; task should not have been executed without a selected country
-        throw new EidasSAuthenticationException("eidas.03", new Object[]{""});
-      }
-
-      // TODO: maybe add countryCode validation before request ref. impl. eIDAS node
-      log.info("Request eIDAS auth. for citizen of country: {}", citizenCountryCode);
-      revisionsLogger.logEvent(pendingReq, MsConnectorEventCodes.COUNTRY_SELECTED, citizenCountryCode);
-
-      // build eIDAS AuthnRequest
-      final LightRequest.Builder authnRequestBuilder = LightRequest.builder();
-      authnRequestBuilder.id(UUID.randomUUID().toString());
-
-      // set nameIDFormat
-      authnRequestBuilder.nameIdFormat(Constants.eIDAS_REQ_NAMEID_FORMAT);
-
-      // set citizen country code for foreign uses
-      authnRequestBuilder.citizenCountryCode(citizenCountryCode);
-
-      //set Issuer
-      final String issuer = basicConfig.getBasicConfiguration(Constants.CONIG_PROPS_EIDAS_NODE_ENTITYID);
-      if (StringUtils.isEmpty(issuer)) {
-        log.error("Found NO 'eIDAS node issuer' in configuration. Authentication NOT possible!");
-        throw new EaafConfigurationException("config.27",
-            new Object[]{"Application config containts NO " + Constants.CONIG_PROPS_EIDAS_NODE_ENTITYID});
-      }
-
-      authnRequestBuilder.issuer(issuer);
-
-
-      // Add country-specific information into eIDAS request
-      ccSpecificProcessing.preProcess(citizenCountryCode, pendingReq, authnRequestBuilder);
-
-      // build request
-      final LightRequest lightAuthnReq = authnRequestBuilder.build();
-
-      // put request into Hazelcast cache
+      final String issuer = loadIssuerFromConfig();
+      final LightRequest lightAuthnReq = buildEidasAuthnRequest(citizenCountryCode, issuer);
       final BinaryLightToken token = putRequestInCommunicationCache(lightAuthnReq);
       final String tokenBase64 = BinaryLightTokenHelper.encodeBinaryLightTokenBase64(token);
-
-      // Workaround, because eIDAS node ref. impl. does not return relayState
-      if (basicConfig.getBasicConfigurationBoolean(
-          Constants.CONIG_PROPS_EIDAS_NODE_WORKAROUND_USEREQUESTIDASTRANSACTIONIDENTIFIER,
-          false)) {
-        log.trace("Put lightRequestId into transactionstore as session-handling backup");
-        transactionStore.put(lightAuthnReq.getId(), pendingReq.getPendingRequestId(), -1);
-
-      }
-
-      // select forward URL regarding the selected environment
-      String forwardUrl = basicConfig.getBasicConfiguration(Constants.CONIG_PROPS_EIDAS_NODE_FORWARD_URL);
-      if (StringUtils.isNotEmpty(environment)) {
-        forwardUrl = selectedForwardUrlForEnvironment(environment);
-      }
-
-      if (StringUtils.isEmpty(forwardUrl)) {
-        log.warn("NO ForwardURL defined in configuration. Can NOT forward to eIDAS node! Process stops");
-        throw new EaafConfigurationException("config.08", new Object[]{
-            environment == null ? Constants.CONIG_PROPS_EIDAS_NODE_FORWARD_URL
-                : Constants.CONIG_PROPS_EIDAS_NODE_FORWARD_URL + "." + environment
-        });
-
-      }
-      log.debug("ForwardURL: {} selected to forward eIDAS request", forwardUrl);
-
-      if (basicConfig.getBasicConfiguration(
-          Constants.CONIG_PROPS_EIDAS_NODE_FORWARD_METHOD,
-          Constants.FORWARD_METHOD_GET).equals(Constants.FORWARD_METHOD_GET)) {
-
-        log.debug("Use http-redirect for eIDAS node forwarding ...  ");
-        // send redirect
-        final UriComponentsBuilder redirectUrl = UriComponentsBuilder.fromHttpUrl(forwardUrl);
-        redirectUrl.queryParam(EidasParameterKeys.TOKEN.toString(), tokenBase64);
-        response.sendRedirect(redirectUrl.build().encode().toString());
-
+      workaroundRelayState(lightAuthnReq);
+      final String forwardUrl = selectForwardUrl(environment);
+
+      String configValue = basicConfig.getBasicConfiguration(
+          Constants.CONIG_PROPS_EIDAS_NODE_FORWARD_METHOD, Constants.FORWARD_METHOD_GET);
+      boolean useHttpRedirect = configValue.equals(Constants.FORWARD_METHOD_GET);
+      if (useHttpRedirect) {
+        sendRedirect(response, tokenBase64, forwardUrl);
       } else {
-        log.debug("Use http-post for eIDAS node forwarding ...  ");
-        final StaticGuiBuilderConfiguration config = new StaticGuiBuilderConfiguration(
-            basicConfig,
-            pendingReq,
-            Constants.TEMPLATE_POST_FORWARD_NAME,
-            null,
-            resourceLoader);
-
-        config.putCustomParameter(null, Constants.TEMPLATE_POST_FORWARD_ENDPOINT, forwardUrl);
-        config.putCustomParameter(null, Constants.TEMPLATE_POST_FORWARD_TOKEN_NAME, EidasParameterKeys.TOKEN.toString());
-        config.putCustomParameter(null, Constants.TEMPLATE_POST_FORWARD_TOKEN_VALUE, tokenBase64);
-
-        guiBuilder.build(request, response, config, "Forward to eIDASNode form");
-
+        sendPost(request, response, tokenBase64, forwardUrl);
       }
 
       revisionsLogger.logEvent(pendingReq, MsConnectorEventCodes.EIDAS_NODE_CONNECTED, lightAuthnReq.getId());
-
     } catch (final EidasSAuthenticationException e) {
       throw new TaskExecutionException(pendingReq, "eIDAS AuthnRequest generation FAILED.", e);
-
     } catch (final Exception e) {
       log.warn("eIDAS AuthnRequest generation FAILED.", e);
       throw new TaskExecutionException(pendingReq, e.getMessage(), e);
+    }
+  }
+
+  @NotNull
+  private String extractCitizenCountryCode(ExecutionContext executionContext) throws EidasSAuthenticationException {
+    final String result = (String) executionContext.get(MsEidasNodeConstants.REQ_PARAM_SELECTED_COUNTRY);
+    // illegal state; task should not have been executed without a selected country
+    if (StringUtils.isEmpty(result)) {
+      throw new EidasSAuthenticationException("eidas.03", new Object[]{""});
+    }
+    // TODO: maybe add countryCode validation before request ref. impl. eIDAS node
+    log.info("Request eIDAS auth. for citizen of country: {}", result);
+    revisionsLogger.logEvent(pendingReq, MsConnectorEventCodes.COUNTRY_SELECTED, result);
+    return result;
+  }
 
+  @NotNull
+  private String loadIssuerFromConfig() throws EaafConfigurationException {
+    final String result = basicConfig.getBasicConfiguration(Constants.CONIG_PROPS_EIDAS_NODE_ENTITYID);
+    if (StringUtils.isEmpty(result)) {
+      log.error("Found NO 'eIDAS node issuer' in configuration. Authentication NOT possible!");
+      throw new EaafConfigurationException("config.27",
+          new Object[]{"Application config containts NO " + Constants.CONIG_PROPS_EIDAS_NODE_ENTITYID});
     }
+    return result;
+  }
 
+  @NotNull
+  private LightRequest buildEidasAuthnRequest(String citizenCountryCode, String issuer)
+      throws EidPostProcessingException {
+    final LightRequest.Builder builder = LightRequest.builder();
+    builder.id(UUID.randomUUID().toString());
+    builder.nameIdFormat(Constants.eIDAS_REQ_NAMEID_FORMAT);
+    builder.citizenCountryCode(citizenCountryCode);
+    builder.issuer(issuer);
+    // Add country-specific information into eIDAS request
+    ccSpecificProcessing.preProcess(citizenCountryCode, pendingReq, builder);
+    return builder.build();
+  }
+
+  private BinaryLightToken putRequestInCommunicationCache(ILightRequest lightRequest)
+      throws ServletException {
+    final BinaryLightToken binaryLightToken;
+    try {
+      String beanName = SpecificCommunicationDefinitionBeanNames.SPECIFIC_CONNECTOR_COMMUNICATION_SERVICE.toString();
+      final SpecificCommunicationService service = (SpecificCommunicationService) context.getBean(beanName);
+      binaryLightToken = service.putRequest(lightRequest);
+    } catch (final SpecificCommunicationException e) {
+      log.error("Unable to process specific request");
+      throw new ServletException(e);
+    }
+
+    return binaryLightToken;
+  }
+
+  /**
+   * Workaround, because eIDAS node ref. impl. does not return relayState
+   */
+  private void workaroundRelayState(LightRequest lightAuthnReq) throws EaafException {
+    if (basicConfig.getBasicConfigurationBoolean(
+        Constants.CONIG_PROPS_EIDAS_NODE_WORKAROUND_USEREQUESTIDASTRANSACTIONIDENTIFIER,
+        false)) {
+      log.trace("Put lightRequestId into transactionstore as session-handling backup");
+      transactionStore.put(lightAuthnReq.getId(), pendingReq.getPendingRequestId(), -1);
+    }
+  }
+
+  @NotNull
+  private String selectForwardUrl(String environment) throws EaafConfigurationException {
+    String result = basicConfig.getBasicConfiguration(Constants.CONIG_PROPS_EIDAS_NODE_FORWARD_URL);
+    if (StringUtils.isNotEmpty(environment)) {
+      result = selectedForwardUrlForEnvironment(environment);
+    }
+    if (StringUtils.isEmpty(result)) {
+      log.warn("NO ForwardURL defined in configuration. Can NOT forward to eIDAS node! Process stops");
+      throw new EaafConfigurationException("config.08", new Object[]{
+          environment == null ? Constants.CONIG_PROPS_EIDAS_NODE_FORWARD_URL
+              : Constants.CONIG_PROPS_EIDAS_NODE_FORWARD_URL + "." + environment
+      });
+    }
+    log.debug("ForwardURL: {} selected to forward eIDAS request", result);
+    return result;
   }
 
   /**
@@ -214,12 +218,10 @@ public class GenerateAuthnRequestTask extends AbstractAuthServletTask {
     } else if (environment.equalsIgnoreCase(MsEidasNodeConstants.REQ_PARAM_SELECTED_ENVIRONMENT_VALUE_QS)) {
       return basicConfig.getBasicConfiguration(Constants.CONIG_PROPS_EIDAS_NODE_FORWARD_URL
           + "." + MsEidasNodeConstants.REQ_PARAM_SELECTED_ENVIRONMENT_VALUE_QS);
-    } else if (environment.equalsIgnoreCase(
-        MsEidasNodeConstants.REQ_PARAM_SELECTED_ENVIRONMENT_VALUE_TESTING)) {
+    } else if (environment.equalsIgnoreCase(MsEidasNodeConstants.REQ_PARAM_SELECTED_ENVIRONMENT_VALUE_TESTING)) {
       return basicConfig.getBasicConfiguration(Constants.CONIG_PROPS_EIDAS_NODE_FORWARD_URL
           + "." + MsEidasNodeConstants.REQ_PARAM_SELECTED_ENVIRONMENT_VALUE_TESTING);
-    } else if (environment.equalsIgnoreCase(
-        MsEidasNodeConstants.REQ_PARAM_SELECTED_ENVIRONMENT_VALUE_DEVELOPMENT)) {
+    } else if (environment.equalsIgnoreCase(MsEidasNodeConstants.REQ_PARAM_SELECTED_ENVIRONMENT_VALUE_DEVELOPMENT)) {
       return basicConfig.getBasicConfiguration(Constants.CONIG_PROPS_EIDAS_NODE_FORWARD_URL
           + "." + MsEidasNodeConstants.REQ_PARAM_SELECTED_ENVIRONMENT_VALUE_DEVELOPMENT);
     }
@@ -227,20 +229,23 @@ public class GenerateAuthnRequestTask extends AbstractAuthServletTask {
     return null;
   }
 
-  private BinaryLightToken putRequestInCommunicationCache(ILightRequest lightRequest)
-      throws ServletException {
-    final BinaryLightToken binaryLightToken;
-    try {
-      final SpecificCommunicationService springManagedSpecificConnectorCommunicationService =
-          (SpecificCommunicationService) context.getBean(
-              SpecificCommunicationDefinitionBeanNames.SPECIFIC_CONNECTOR_COMMUNICATION_SERVICE.toString());
-      binaryLightToken = springManagedSpecificConnectorCommunicationService.putRequest(lightRequest);
-    } catch (final SpecificCommunicationException e) {
-      log.error("Unable to process specific request");
-      throw new ServletException(e);
-    }
+  private void sendRedirect(HttpServletResponse response, String tokenBase64, String forwardUrl) throws IOException {
+    log.debug("Use http-redirect for eIDAS node forwarding ...  ");
+    final UriComponentsBuilder redirectUrl = UriComponentsBuilder.fromHttpUrl(forwardUrl);
+    redirectUrl.queryParam(EidasParameterKeys.TOKEN.toString(), tokenBase64);
+    response.sendRedirect(redirectUrl.build().encode().toString());
+  }
 
-    return binaryLightToken;
+  private void sendPost(HttpServletRequest request, HttpServletResponse response, String tokenBase64, String forwardUrl)
+      throws GuiBuildException {
+    log.debug("Use http-post for eIDAS node forwarding ...  ");
+    final StaticGuiBuilderConfiguration config = new StaticGuiBuilderConfiguration(
+        basicConfig, pendingReq, Constants.TEMPLATE_POST_FORWARD_NAME, null, resourceLoader);
+    config.putCustomParameter(null, Constants.TEMPLATE_POST_FORWARD_ENDPOINT, forwardUrl);
+    String token = EidasParameterKeys.TOKEN.toString();
+    config.putCustomParameter(null, Constants.TEMPLATE_POST_FORWARD_TOKEN_NAME, token);
+    config.putCustomParameter(null, Constants.TEMPLATE_POST_FORWARD_TOKEN_VALUE, tokenBase64);
+    guiBuilder.build(request, response, config, "Forward to eIDASNode form");
   }
 
 }
-- 
cgit v1.2.3


From 38d2a59abe9f0bd04abd2caf4ea110afd3f5ff11 Mon Sep 17 00:00:00 2001
From: Christian Kollmann <christian.kollmann@a-sit.at>
Date: Mon, 12 Jul 2021 10:23:29 +0200
Subject: Add documentation to task implementations

---
 .../eidas/v2/tasks/GenerateAuthnRequestTask.java     | 18 +++++++++++++++++-
 .../eidas/v2/tasks/ReceiveAuthnResponseTask.java     | 20 ++++++++++++++++++++
 2 files changed, 37 insertions(+), 1 deletion(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateAuthnRequestTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateAuthnRequestTask.java
index 575b2334..33d3f175 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateAuthnRequestTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateAuthnRequestTask.java
@@ -61,10 +61,26 @@ import javax.servlet.http.HttpServletResponse;
 import java.io.IOException;
 import java.util.UUID;
 
+
 /**
- * Authentication-process task that generates the Authn. Request to eIDAS Node.
+ * Generates the authn request to the eIDAS Node. This is the first task in the process.
+ * <p>
+ * Input:
+ * <ul>
+ *     <li>none</li>
+ * </ul>
+ * Output:
+ * <ul>
+ *     <li>none</li>
+ * </ul>
+ * Transitions:
+ * <ul>
+ *     <li>{@link at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.ReceiveAuthnResponseTask}
+ *     to read the response from the eIDAS Node</li>
+ * </ul>
  *
  * @author tlenz
+ * @author ckollmann
  */
 @Slf4j
 @Component("GenerateAuthnRequestTask")
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveAuthnResponseTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveAuthnResponseTask.java
index 6d011d3d..dcc1b7d5 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveAuthnResponseTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveAuthnResponseTask.java
@@ -45,6 +45,26 @@ import org.springframework.stereotype.Component;
 import javax.servlet.http.HttpServletRequest;
 import javax.servlet.http.HttpServletResponse;
 
+
+/**
+ * Receives the authn response from the eIDAS Node, containing the (initial) eIDAS authentication.
+ * <p>
+ * Input:
+ * <ul>
+ *     <li>none</li>
+ * </ul>
+ * Output:
+ * <ul>
+ *     <li>{@link Constants#DATA_FULL_EIDAS_RESPONSE} the full response details</li>
+ * </ul>
+ * Transitions:
+ * <ul>
+ *     <li>{@link InitialSearchTask} to perform search in registers</li>
+ * </ul>
+ *
+ * @author tlenz
+ * @author ckollmann
+ */
 @Slf4j
 @Component("ReceiveAuthnResponseTask")
 public class ReceiveAuthnResponseTask extends AbstractAuthServletTask {
-- 
cgit v1.2.3


From 0b896fd9d035ba5719394ecaaba02ef6b5dc5666 Mon Sep 17 00:00:00 2001
From: Christian Kollmann <christian.kollmann@a-sit.at>
Date: Mon, 12 Jul 2021 11:20:23 +0200
Subject: Fix typos, remove newlines

---
 .../auth/eidas/v2/tasks/InitialSearchTask.java     | 123 ++++++++-------------
 1 file changed, 46 insertions(+), 77 deletions(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
index 220c4e56..4103939d 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
@@ -23,24 +23,6 @@
 
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks;
 
-import static at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants.TRANSITION_TO_CREATE_NEW_ERNP_ENTRY_TASK;
-import static at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants.TRANSITION_TO_GENERATE_OTHER_LOGIN_METHOD_GUI_TASK;
-
-import java.util.HashMap;
-import java.util.List;
-import java.util.Map;
-
-import javax.servlet.http.HttpServletRequest;
-import javax.servlet.http.HttpServletResponse;
-
-import org.apache.commons.lang3.StringUtils;
-import org.jetbrains.annotations.NotNull;
-import org.joda.time.DateTime;
-import org.springframework.stereotype.Component;
-
-import com.google.common.collect.ImmutableMap;
-import com.google.common.collect.ImmutableSet;
-
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.MatchedPersonResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
@@ -58,11 +40,26 @@ import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
 import at.gv.egiz.eaaf.core.exceptions.EaafStorageException;
 import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
 import at.gv.egiz.eaaf.core.impl.idp.auth.modules.AbstractAuthServletTask;
+import com.google.common.collect.ImmutableMap;
+import com.google.common.collect.ImmutableSet;
 import eu.eidas.auth.commons.attribute.AttributeDefinition;
 import eu.eidas.auth.commons.attribute.AttributeValue;
 import eu.eidas.auth.commons.light.ILightResponse;
 import eu.eidas.auth.commons.protocol.eidas.impl.PostalAddress;
 import lombok.extern.slf4j.Slf4j;
+import org.apache.commons.lang3.StringUtils;
+import org.jetbrains.annotations.NotNull;
+import org.joda.time.DateTime;
+import org.springframework.stereotype.Component;
+
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+import java.util.HashMap;
+import java.util.List;
+import java.util.Map;
+
+import static at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants.TRANSITION_TO_CREATE_NEW_ERNP_ENTRY_TASK;
+import static at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants.TRANSITION_TO_GENERATE_OTHER_LOGIN_METHOD_GUI_TASK;
 
 /**
  * Task that searches registers (ERnP and ZMR) before adding person to SZR.
@@ -88,6 +85,7 @@ import lombok.extern.slf4j.Slf4j;
  *
  * @author amarsalek
  * @author ckollmann
+ * @author tlenz
  */
 @Slf4j
 @Component("InitialSearchTask")
@@ -99,6 +97,7 @@ public class InitialSearchTask extends AbstractAuthServletTask {
 
   /**
    * Constructor.
+   *
    * @param registerSearchService Service for register search access
    * @param eidPostProcessor      Country-Specific post processing of attributes
    */
@@ -106,7 +105,6 @@ public class InitialSearchTask extends AbstractAuthServletTask {
                            ICcSpecificEidProcessingService eidPostProcessor) {
     this.registerSearchService = registerSearchService;
     this.eidPostProcessor = eidPostProcessor;
-    
   }
 
   @Override
@@ -116,120 +114,91 @@ public class InitialSearchTask extends AbstractAuthServletTask {
       final SimpleEidasData eidasData = convertEidasAttrToSimpleData();
       MatchingTaskUtils.storeInitialEidasData(pendingReq, eidasData);
       step2RegisterSearchWithPersonIdentifier(executionContext, eidasData);
-      
-    } catch (WorkflowException e) {      
+    } catch (WorkflowException e) {
       throw new TaskExecutionException(pendingReq, "Initial search failed", e);
-            
     } catch (final Exception e) {
       log.error("Initial search failed", e);
       throw new TaskExecutionException(pendingReq, "Initial search failed with a generic error", e);
-      
     }
   }
 
   private void step2RegisterSearchWithPersonIdentifier(
       ExecutionContext executionContext, SimpleEidasData eidasData) throws WorkflowException, EaafStorageException {
-    try {  
+    try {
       log.trace("Starting step2RegisterSearchWithPersonIdentifier");
-      RegisterStatusResults initialSearchResult = registerSearchService.searchWithPersonIdentifier(eidasData);    
+      RegisterStatusResults initialSearchResult = registerSearchService.searchWithPersonIdentifier(eidasData);
       int resultCount = initialSearchResult.getResultCount();
       if (resultCount == 0) {
         step6CountrySpecificSearch(executionContext, initialSearchResult.getOperationStatus(), eidasData);
-      
-      } else if (resultCount == 1) {      
-        // find person by PersonalIdentifier --> finalize first matching task
-        foundMatchFinializeTask(initialSearchResult, eidasData);
-            
+      } else if (resultCount == 1) {
+        foundMatchFinalizeTask(initialSearchResult, eidasData);
       } else {
-        throw new WorkflowException("step2RegisterSearchWithPersonIdentifier", 
+        throw new WorkflowException("step2RegisterSearchWithPersonIdentifier",
             "More than one entry with unique personal-identifier", true);
-      
       }
-      
     } catch (WorkflowException e) {
-      //TODO: what we do in case of a workflow error and manual matching are necessary??      
-      
-      log.warn("Workflow error during matching step: {}. Reason: {}", e.getProcessStepName(), e.getErrorReason());      
+      //TODO: what we do in case of a workflow error and manual matching are necessary??
+      log.warn("Workflow error during matching step: {}. Reason: {}", e.getProcessStepName(), e.getErrorReason());
       throw e;
-      
     }
   }
-  
+
   private void step6CountrySpecificSearch(
       ExecutionContext executionContext, RegisterOperationStatus registerOperationStatus, SimpleEidasData eidasData)
       throws EaafStorageException, WorkflowException {
-    
     log.trace("Starting 'step6CountrySpecificSearch' ... ");
     RegisterStatusResults countrySpecificResult = registerSearchService.searchWithCountrySpecifics(
         registerOperationStatus, eidasData);
     if (countrySpecificResult.getResultCount() == 0) {
       log.trace("'step6CountrySpecificSearch' ends with no result. Forward to next matching step ... ");
       step8RegisterSearchWithMds(executionContext, countrySpecificResult.getOperationStatus(), eidasData);
-      
     } else if (countrySpecificResult.getResultCount() == 1) {
       log.trace("'step6CountrySpecificSearch' finds a person. Forward to 'step7aKittProcess' step ... ");
       registerSearchService.step7aKittProcess(countrySpecificResult, eidasData);
-      
-      // find person by country-specific information --> finalize first matching task       
-      foundMatchFinializeTask(countrySpecificResult, eidasData);      
-      
+      foundMatchFinalizeTask(countrySpecificResult, eidasData);
     } else {
-      throw new WorkflowException("step6CountrySpecificSearch", 
-          "More than one entry with unique country-specific informations", true);
-      
-    }    
+      throw new WorkflowException("step6CountrySpecificSearch",
+          "More than one entry with unique country-specific information", true);
+    }
   }
 
-  private void step8RegisterSearchWithMds(ExecutionContext executionContext, 
-      RegisterOperationStatus registerOperationStatus, SimpleEidasData eidasData)
+  private void step8RegisterSearchWithMds(ExecutionContext executionContext,
+                                          RegisterOperationStatus registerOperationStatus, SimpleEidasData eidasData)
       throws EaafStorageException, WorkflowException {
     log.trace("Starting step8RegisterSearchWithMds");
     RegisterStatusResults registerData = registerSearchService.searchWithMds(registerOperationStatus, eidasData);
-    
     if (registerData.getResultCount() == 0) {
       log.debug("Matching step: 'step8RegisterSearchWithMds' has no result. Forward to create new ERnP entry ...  ");
       executionContext.put(TRANSITION_TO_CREATE_NEW_ERNP_ENTRY_TASK, true);
-      
     } else {
       log.debug("Matching step: 'step8RegisterSearchWithMds' has #{} results. "
           + "Forward to GUI based matching steps ... ", registerData.getResultCount());
-      
       MatchingTaskUtils.storeIntermediateMatchingResult(pendingReq, registerData);
       executionContext.put(TRANSITION_TO_GENERATE_OTHER_LOGIN_METHOD_GUI_TASK, true);
-      
     }
   }
 
-
-
-  private void foundMatchFinializeTask(RegisterStatusResults searchResult, SimpleEidasData eidasData) 
+  private void foundMatchFinalizeTask(RegisterStatusResults searchResult, SimpleEidasData eidasData)
       throws WorkflowException, EaafStorageException {
-    // check if register update is required
     RegisterResult updatedResult = step3CheckRegisterUpdateNecessary(searchResult.getResult(), eidasData);
-        
-    // store search result
-    MatchingTaskUtils.storeFinalMatchingResult(pendingReq, 
-        MatchedPersonResult.generateFormMatchingResult(updatedResult, eidasData.getCitizenCountryCode()));
-        
+    MatchedPersonResult result = MatchedPersonResult.generateFormMatchingResult(
+        updatedResult, eidasData.getCitizenCountryCode());
+    MatchingTaskUtils.storeFinalMatchingResult(pendingReq, result);
   }
-  
-  private RegisterResult step3CheckRegisterUpdateNecessary(RegisterResult searchResult, 
-      SimpleEidasData eidasData) throws WorkflowException {
+
+  private RegisterResult step3CheckRegisterUpdateNecessary(RegisterResult searchResult,
+                                                           SimpleEidasData eidasData) throws WorkflowException {
     log.trace("Starting step3CheckRegisterUpdateNecessary");
     if (!eidasData.equalsRegisterData(searchResult)) {
       log.info("Skipping update-register-information step, because it's not supported yet");
-      
       //TODO: return updated search result if updates are allowed
       return searchResult;
-        
-    } else {        
-      log.debug("Register information match to eIDAS information. No update requird");
+    } else {
+      log.debug("Register information match to eIDAS information. No update required");
       return searchResult;
-      
     }
-    
   }
-  
+
   @NotNull
   private SimpleEidasData convertEidasAttrToSimpleData()
       throws EidasAttributeException, EidPostProcessingException {
@@ -237,7 +206,6 @@ public class InitialSearchTask extends AbstractAuthServletTask {
         .getGenericDataFromSession(Constants.DATA_FULL_EIDAS_RESPONSE, ILightResponse.class);
     Map<String, Object> simpleMap = convertEidasAttrToSimpleMap(eidasResponse.getAttributes().getAttributeMap());
     return eidPostProcessor.postProcess(simpleMap);
-    
   }
 
   private Map<String, Object> convertEidasAttrToSimpleMap(
@@ -249,7 +217,7 @@ public class InitialSearchTask extends AbstractAuthServletTask {
         final DateTime attribute = EidasResponseUtils.translateDateAttribute(el, attributeMap.get(el).asList());
         if (attribute != null) {
           result.put(el.getFriendlyName(), attribute);
-          log.trace("Find attr '{}' with value: {}", el.getFriendlyName(), attribute.toString());
+          log.trace("Find attr '{}' with value: {}", el.getFriendlyName(), attribute);
         } else {
           log.info("Ignore empty 'DateTime' attribute");
         }
@@ -258,7 +226,7 @@ public class InitialSearchTask extends AbstractAuthServletTask {
             .translateAddressAttribute(el, attributeMap.get(el).asList());
         if (addressAttribute != null) {
           result.put(el.getFriendlyName(), addressAttribute);
-          log.trace("Find attr '{}' with value: {}", el.getFriendlyName(), addressAttribute.toString());
+          log.trace("Find attr '{}' with value: {}", el.getFriendlyName(), addressAttribute);
         } else {
           log.info("Ignore empty 'PostalAddress' attribute");
         }
@@ -273,7 +241,8 @@ public class InitialSearchTask extends AbstractAuthServletTask {
         }
       }
     }
-    log.debug("Receive #{} attributes with names: {}", result.size(), result.keySet().toString());
+    log.debug("Receive #{} attributes with names: {}", result.size(), result.keySet());
     return result;
   }
+
 }
-- 
cgit v1.2.3


From 09af792ce3ed3df430f8d7ae6099f284756147a0 Mon Sep 17 00:00:00 2001
From: Christian Kollmann <christian.kollmann@a-sit.at>
Date: Mon, 12 Jul 2021 11:00:48 +0200
Subject: Add option to provide alternative eIDAS login for matching process

---
 .../specific/modules/auth/eidas/v2/Constants.java  |  38 ++--
 .../auth/eidas/v2/tasks/AlternativeSearchTask.java | 214 +++++++++++++++++++++
 .../eidas/v2/tasks/GenerateAuthnRequestTask.java   |   1 -
 .../auth/eidas/v2/tasks/InitialSearchTask.java     |  22 +--
 .../tasks/ReceiveAuthnResponseAlternativeTask.java | 131 +++++++++++++
 .../eidas/v2/tasks/ReceiveAuthnResponseTask.java   |   1 -
 .../resources/eIDAS.Authentication.process.xml     |  38 ++--
 .../src/main/resources/eidas_v2_auth.beans.xml     |  11 +-
 8 files changed, 411 insertions(+), 45 deletions(-)
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/AlternativeSearchTask.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveAuthnResponseAlternativeTask.java

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java
index 5edde8a4..70bade43 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/Constants.java
@@ -29,7 +29,7 @@ public class Constants {
 
   //TODO: should we make it configurable?
   public static final String MATCHING_INTERNAL_BPK_TARGET = EaafConstants.URN_PREFIX_CDID + "ZP";
-  
+
   public static final String ERRORCODE_00 = "module.eidasauth.00";
 
   public static final String DATA_REQUESTERID = "req_requesterId";
@@ -37,6 +37,7 @@ public class Constants {
   public static final String DATA_REQUESTED_LOA_LIST = "req_requestedLoA";
   public static final String DATA_REQUESTED_LOA_COMPERISON = "req_requestedLoAComperision";
   public static final String DATA_FULL_EIDAS_RESPONSE = "resp_fulleIDASResponse";
+  public static final String DATA_FULL_EIDAS_RESPONSE_ALTERNATIVE = "resp_fulleIDASResponseAlternative";
 
   /**
    * Stored when one match from register was found.
@@ -115,7 +116,7 @@ public class Constants {
   public static final String CONIG_PROPS_EIDAS_ZMRCLIENT_SSL_KEYS_ALIAS = CONIG_PROPS_EIDAS_ZMRCLIENT
       + ".ssl.key.alias";
   public static final String CONIG_PROPS_EIDAS_ZMRCLIENT_SSL_KEY_PASSWORD = CONIG_PROPS_EIDAS_ZMRCLIENT
-      + ".ssl.key.password";      
+      + ".ssl.key.password";
   public static final String CONIG_PROPS_EIDAS_ZMRCLIENT_SSL_TRUSTSTORE_PATH = CONIG_PROPS_EIDAS_ZMRCLIENT
       + ".ssl.trustStore.path";
   public static final String CONIG_PROPS_EIDAS_ZMRCLIENT_SSL_TRUSTSTORE_PASSWORD = CONIG_PROPS_EIDAS_ZMRCLIENT
@@ -124,15 +125,15 @@ public class Constants {
       + ".ssl.trustStore.type";
   public static final String CONIG_PROPS_EIDAS_ZMRCLIENT_SSL_TRUSTSTORE_NAME = CONIG_PROPS_EIDAS_ZMRCLIENT
       + ".ssl.trustStore.name";
-  
+
   public static final String CONIG_PROPS_EIDAS_ZMRCLIENT_REQ_ORGANIZATION_NR = CONIG_PROPS_EIDAS_ZMRCLIENT
       + ".req.organisation.behoerdennr";
   public static final String CONIG_PROPS_EIDAS_ZMRCLIENT_REQ_UPDATE_REASON_CODE = CONIG_PROPS_EIDAS_ZMRCLIENT
       + ".req.update.reason.code";
   public static final String CONIG_PROPS_EIDAS_ZMRCLIENT_REQ_UPDATE_REASON_TEXT = CONIG_PROPS_EIDAS_ZMRCLIENT
       + ".req.update.reason.text";
-  
-  
+
+
   // SZR Client configuration properties
   public static final String CONIG_PROPS_EIDAS_SZRCLIENT = CONIG_PROPS_EIDAS_PREFIX + ".szrclient";
   public static final String CONIG_PROPS_EIDAS_SZRCLIENT_USETESTSERVICE = CONIG_PROPS_EIDAS_SZRCLIENT
@@ -162,7 +163,7 @@ public class Constants {
   public static final String CONIG_PROPS_EIDAS_SZRCLIENT_SSL_KEYS_ALIAS = CONIG_PROPS_EIDAS_SZRCLIENT
       + ".ssl.key.alias";
   public static final String CONIG_PROPS_EIDAS_SZRCLIENT_SSL_KEY_PASSWORD = CONIG_PROPS_EIDAS_SZRCLIENT
-      + ".ssl.key.password";    
+      + ".ssl.key.password";
   public static final String CONIG_PROPS_EIDAS_SZRCLIENT_SSL_TRUSTSTORE_PATH = CONIG_PROPS_EIDAS_SZRCLIENT
       + ".ssl.trustStore.path";
   public static final String CONIG_PROPS_EIDAS_SZRCLIENT_SSL_TRUSTSTORE_PASSWORD = CONIG_PROPS_EIDAS_SZRCLIENT
@@ -171,7 +172,7 @@ public class Constants {
       + ".ssl.trustStore.type";
   public static final String CONIG_PROPS_EIDAS_SZRCLIENT_SSL_TRUSTSTORE_NAME = CONIG_PROPS_EIDAS_SZRCLIENT
       + ".ssl.trustStore.name";
-  
+
   public static final String CONIG_PROPS_EIDAS_SZRCLIENT_PARAMS_EDOCUMENTTYPE = CONIG_PROPS_EIDAS_SZRCLIENT
       + ".params.documenttype";
   public static final String CONIG_PROPS_EIDAS_SZRCLIENT_PARAMS_VKZ = CONIG_PROPS_EIDAS_SZRCLIENT
@@ -208,7 +209,7 @@ public class Constants {
   // eIDAS request parameters
   public static final String eIDAS_REQ_NAMEID_FORMAT = "urn:oasis:names:tc:SAML:2.0:nameid-format:persistent";
 
-  // eIDAS attribute names    
+  // eIDAS attribute names
   public static final String eIDAS_ATTR_PERSONALIDENTIFIER = "PersonIdentifier";
   public static final String eIDAS_ATTR_DATEOFBIRTH = "DateOfBirth";
   public static final String eIDAS_ATTR_CURRENTGIVENNAME = "FirstName";
@@ -221,19 +222,19 @@ public class Constants {
   public static final String eIDAS_ATTR_LEGALPERSONIDENTIFIER = "LegalPersonIdentifier";
   public static final String eIDAS_ATTR_LEGALNAME = "LegalName";
 
-  
+
   //eIDAS attribute URN
   public static final String eIDAS_ATTRURN_PREFIX = "http://eidas.europa.eu/attributes/";
   public static final String eIDAS_ATTRURN_PREFIX_NATURAL = eIDAS_ATTRURN_PREFIX + "naturalperson/";
-  
-  public static final String eIDAS_ATTRURN_PERSONALIDENTIFIER = 
+
+  public static final String eIDAS_ATTRURN_PERSONALIDENTIFIER =
       eIDAS_ATTRURN_PREFIX_NATURAL + eIDAS_ATTR_PERSONALIDENTIFIER;
-  public static final String eIDAS_ATTRURN_PLACEOFBIRTH = 
+  public static final String eIDAS_ATTRURN_PLACEOFBIRTH =
       eIDAS_ATTRURN_PREFIX_NATURAL + eIDAS_ATTR_PLACEOFBIRTH;
-  public static final String eIDAS_ATTRURN_BIRTHNAME = 
+  public static final String eIDAS_ATTRURN_BIRTHNAME =
       eIDAS_ATTRURN_PREFIX_NATURAL + eIDAS_ATTR_BIRTHNAME;
-  
-  
+
+
   public static final String eIDAS_REQ_PARAM_SECTOR_PUBLIC = "public";
   public static final String eIDAS_REQ_PARAM_SECTOR_PRIVATE = "private";
 
@@ -292,9 +293,12 @@ public class Constants {
       "TASK_GenerateMobilePhoneSignatureRequestTask";
 
   /**
-   * TODO Second eidas login.
+   * {@link at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.GenerateAuthnRequestTask}.
    */
-  public static final String TRANSITION_TO_GENERATE_EIDAS_LOGIN = "TASK_TODO";
+  public static final String TRANSITION_TO_GENERATE_EIDAS_LOGIN = "TASK_GenerateAlternativeEidasAuthn";
 
+  /**
+   * Stores login selection from user.
+   */
   public static final String REQ_SELECTED_LOGIN_METHOD_PARAMETER = "loginSelection";
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/AlternativeSearchTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/AlternativeSearchTask.java
new file mode 100644
index 00000000..fe3a9560
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/AlternativeSearchTask.java
@@ -0,0 +1,214 @@
+/*
+ * Copyright 2020 A-SIT Plus GmbH
+ * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
+ * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
+ *
+ * Licensed under the EUPL, Version 1.2 or - as soon they will be approved by
+ * the European Commission - subsequent versions of the EUPL (the "License");
+ * You may not use this work except in compliance with the License.
+ * You may obtain a copy of the License at:
+ * https://joinup.ec.europa.eu/news/understanding-eupl-v12
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" basis,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ *
+ * This product combines work with different licenses. See the "NOTICE" text
+ * file for details on the various modules and licenses.
+ * The "NOTICE" text file is part of the distribution. Any derivative works
+ * that you distribute must include a readable copy of the "NOTICE" text file.
+ */
+
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks;
+
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.MatchedPersonResult;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidPostProcessingException;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidasAttributeException;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.WorkflowException;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.ICcSpecificEidProcessingService;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.RegisterSearchService;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.RegisterSearchService.RegisterOperationStatus;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.RegisterSearchService.RegisterStatusResults;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.EidasResponseUtils;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.MatchingTaskUtils;
+import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
+import at.gv.egiz.eaaf.core.exceptions.EaafStorageException;
+import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
+import at.gv.egiz.eaaf.core.impl.idp.auth.modules.AbstractAuthServletTask;
+import com.google.common.collect.ImmutableMap;
+import com.google.common.collect.ImmutableSet;
+import eu.eidas.auth.commons.attribute.AttributeDefinition;
+import eu.eidas.auth.commons.attribute.AttributeValue;
+import eu.eidas.auth.commons.light.ILightResponse;
+import eu.eidas.auth.commons.protocol.eidas.impl.PostalAddress;
+import lombok.extern.slf4j.Slf4j;
+import org.apache.commons.lang3.StringUtils;
+import org.jetbrains.annotations.NotNull;
+import org.joda.time.DateTime;
+import org.springframework.stereotype.Component;
+
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+import java.util.HashMap;
+import java.util.List;
+import java.util.Map;
+
+import static at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants.TRANSITION_TO_CREATE_NEW_ERNP_ENTRY_TASK;
+import static at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants.TRANSITION_TO_GENERATE_OTHER_LOGIN_METHOD_GUI_TASK;
+
+/**
+ * Searches registers (ERnP and ZMR) after alternative eIDAS authn, before adding person to SZR.
+ * Input:
+ * <ul>
+ *     <li>{@link Constants#DATA_FULL_EIDAS_RESPONSE_ALTERNATIVE}</li>
+ * </ul>
+ * Output:
+ * <ul>
+ *     <li>{@link Constants#DATA_PERSON_MATCH_RESULT} results after second search in registers with MDS</li>
+ *     <li>{@link Constants#DATA_RESULT_MATCHING_BPK} if one register result found</li>
+ * </ul>
+ * Transitions:
+ * <ul>
+ *     <li>{@link GenerateOtherLoginMethodGuiTask} if no results in registers were found for this user</li>
+ *     <li>{@link CreateIdentityLinkTask} if search in register returned one match, user is uniquely identified</li>
+ * </ul>
+ *
+ * @author amarsalek
+ * @author ckollmann
+ * @author tlenz
+ */
+@Slf4j
+@Component("AlternativeSearchTask")
+@SuppressWarnings("PMD.TooManyStaticImports")
+public class AlternativeSearchTask extends AbstractAuthServletTask {
+
+  private final RegisterSearchService registerSearchService;
+  private final ICcSpecificEidProcessingService eidPostProcessor;
+
+  /**
+   * Constructor.
+   *
+   * @param registerSearchService Service for register search access
+   * @param eidPostProcessor      Country-Specific post processing of attributes
+   */
+  public AlternativeSearchTask(RegisterSearchService registerSearchService,
+                               ICcSpecificEidProcessingService eidPostProcessor) {
+    this.registerSearchService = registerSearchService;
+    this.eidPostProcessor = eidPostProcessor;
+  }
+
+  @Override
+  public void execute(ExecutionContext executionContext, HttpServletRequest request, HttpServletResponse response)
+      throws TaskExecutionException {
+    try {
+      final SimpleEidasData eidasData = convertEidasAttrToSimpleData();
+      step11RegisterSearchWithPersonIdentifier(executionContext, eidasData);
+    } catch (WorkflowException e) {
+      throw new TaskExecutionException(pendingReq, "Initial search failed", e);
+    } catch (final Exception e) {
+      log.error("Initial search failed", e);
+      throw new TaskExecutionException(pendingReq, "Initial search failed with a generic error", e);
+    }
+  }
+
+  private void step11RegisterSearchWithPersonIdentifier(
+      ExecutionContext executionContext, SimpleEidasData eidasData) throws WorkflowException, EaafStorageException {
+    try {
+      log.trace("Starting step11RegisterSearchWithPersonIdentifier");
+      RegisterStatusResults searchResult = registerSearchService.searchWithPersonIdentifier(eidasData);
+      int resultCount = searchResult.getResultCount();
+      if (resultCount == 0) {
+        step12CountrySpecificSearch(executionContext, searchResult.getOperationStatus(), eidasData);
+      } else if (resultCount == 1) {
+        foundMatchFinalizeTask(searchResult, eidasData);
+      } else {
+        throw new WorkflowException("step11RegisterSearchWithPersonIdentifier",
+            "More than one entry with unique personal-identifier", true);
+      }
+    } catch (WorkflowException e) {
+      //TODO: what we do in case of a workflow error and manual matching are necessary??
+      log.warn("Workflow error during matching step: {}. Reason: {}", e.getProcessStepName(), e.getErrorReason());
+      throw e;
+    }
+  }
+
+  private void step12CountrySpecificSearch(
+      ExecutionContext executionContext, RegisterOperationStatus registerOperationStatus, SimpleEidasData eidasData)
+      throws EaafStorageException, WorkflowException {
+    log.trace("Starting 'step12CountrySpecificSearch' ... ");
+    RegisterStatusResults searchResult = registerSearchService.searchWithCountrySpecifics(
+        registerOperationStatus, eidasData);
+    if (searchResult.getResultCount() == 0) {
+      log.trace("'step12CountrySpecificSearch' ends with no result. Forward to GUI based matching step ... ");
+      log.debug("Forward to GUI based matching steps ... ");
+      executionContext.put(TRANSITION_TO_GENERATE_OTHER_LOGIN_METHOD_GUI_TASK, true);
+    } else if (searchResult.getResultCount() == 1) {
+      log.trace("'step12CountrySpecificSearch' finds a person. Forward to 'step7aKittProcess' step ... ");
+      // TODO is step 7b kitt different from step 7a?
+      registerSearchService.step7aKittProcess(searchResult, eidasData);
+      foundMatchFinalizeTask(searchResult, eidasData);
+    } else {
+      throw new WorkflowException("step12CountrySpecificSearch",
+          "More than one entry with unique country-specific information", true);
+    }
+  }
+
+  private void foundMatchFinalizeTask(RegisterStatusResults searchResult, SimpleEidasData eidasData)
+      throws WorkflowException, EaafStorageException {
+    MatchedPersonResult result = MatchedPersonResult.generateFormMatchingResult(
+        searchResult.getResult(), eidasData.getCitizenCountryCode());
+    MatchingTaskUtils.storeFinalMatchingResult(pendingReq, result);
+  }
+
+  @NotNull
+  private SimpleEidasData convertEidasAttrToSimpleData()
+      throws EidasAttributeException, EidPostProcessingException {
+    final ILightResponse eidasResponse = MatchingTaskUtils.getAuthProcessDataWrapper(pendingReq)
+        .getGenericDataFromSession(Constants.DATA_FULL_EIDAS_RESPONSE_ALTERNATIVE, ILightResponse.class);
+    Map<String, Object> simpleMap = convertEidasAttrToSimpleMap(eidasResponse.getAttributes().getAttributeMap());
+    return eidPostProcessor.postProcess(simpleMap);
+  }
+
+  private Map<String, Object> convertEidasAttrToSimpleMap(
+      ImmutableMap<AttributeDefinition<?>, ImmutableSet<? extends AttributeValue<?>>> attributeMap) {
+    final Map<String, Object> result = new HashMap<>();
+    for (final AttributeDefinition<?> el : attributeMap.keySet()) {
+      final Class<?> parameterizedType = el.getParameterizedType();
+      if (DateTime.class.equals(parameterizedType)) {
+        final DateTime attribute = EidasResponseUtils.translateDateAttribute(el, attributeMap.get(el).asList());
+        if (attribute != null) {
+          result.put(el.getFriendlyName(), attribute);
+          log.trace("Find attr '{}' with value: {}", el.getFriendlyName(), attribute);
+        } else {
+          log.info("Ignore empty 'DateTime' attribute");
+        }
+      } else if (PostalAddress.class.equals(parameterizedType)) {
+        final PostalAddress addressAttribute = EidasResponseUtils
+            .translateAddressAttribute(el, attributeMap.get(el).asList());
+        if (addressAttribute != null) {
+          result.put(el.getFriendlyName(), addressAttribute);
+          log.trace("Find attr '{}' with value: {}", el.getFriendlyName(), addressAttribute);
+        } else {
+          log.info("Ignore empty 'PostalAddress' attribute");
+        }
+      } else {
+        final List<String> natPersonIdObj = EidasResponseUtils.translateStringListAttribute(el, attributeMap.get(el));
+        final String stringAttr = natPersonIdObj.get(0);
+        if (StringUtils.isNotEmpty(stringAttr)) {
+          result.put(el.getFriendlyName(), stringAttr);
+          log.trace("Find attr '{}' with value: {}", el.getFriendlyName(), stringAttr);
+        } else {
+          log.info("Ignore empty 'String' attribute");
+        }
+      }
+    }
+    log.debug("Receive #{} attributes with names: {}", result.size(), result.keySet());
+    return result;
+  }
+
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateAuthnRequestTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateAuthnRequestTask.java
index 33d3f175..da9c8174 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateAuthnRequestTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateAuthnRequestTask.java
@@ -64,7 +64,6 @@ import java.util.UUID;
 
 /**
  * Generates the authn request to the eIDAS Node. This is the first task in the process.
- * <p>
  * Input:
  * <ul>
  *     <li>none</li>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
index 4103939d..a55af1c4 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
@@ -62,7 +62,7 @@ import static at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants.TRANSIT
 import static at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants.TRANSITION_TO_GENERATE_OTHER_LOGIN_METHOD_GUI_TASK;
 
 /**
- * Task that searches registers (ERnP and ZMR) before adding person to SZR.
+ * Searches registers (ERnP and ZMR) after initial user auth, before adding person to SZR.
  * Input:
  * <ul>
  *     <li>{@link Constants#DATA_FULL_EIDAS_RESPONSE}</li>
@@ -126,12 +126,12 @@ public class InitialSearchTask extends AbstractAuthServletTask {
       ExecutionContext executionContext, SimpleEidasData eidasData) throws WorkflowException, EaafStorageException {
     try {
       log.trace("Starting step2RegisterSearchWithPersonIdentifier");
-      RegisterStatusResults initialSearchResult = registerSearchService.searchWithPersonIdentifier(eidasData);
-      int resultCount = initialSearchResult.getResultCount();
+      RegisterStatusResults searchResult = registerSearchService.searchWithPersonIdentifier(eidasData);
+      int resultCount = searchResult.getResultCount();
       if (resultCount == 0) {
-        step6CountrySpecificSearch(executionContext, initialSearchResult.getOperationStatus(), eidasData);
+        step6CountrySpecificSearch(executionContext, searchResult.getOperationStatus(), eidasData);
       } else if (resultCount == 1) {
-        foundMatchFinalizeTask(initialSearchResult, eidasData);
+        foundMatchFinalizeTask(searchResult, eidasData);
       } else {
         throw new WorkflowException("step2RegisterSearchWithPersonIdentifier",
             "More than one entry with unique personal-identifier", true);
@@ -147,15 +147,15 @@ public class InitialSearchTask extends AbstractAuthServletTask {
       ExecutionContext executionContext, RegisterOperationStatus registerOperationStatus, SimpleEidasData eidasData)
       throws EaafStorageException, WorkflowException {
     log.trace("Starting 'step6CountrySpecificSearch' ... ");
-    RegisterStatusResults countrySpecificResult = registerSearchService.searchWithCountrySpecifics(
+    RegisterStatusResults searchResult = registerSearchService.searchWithCountrySpecifics(
         registerOperationStatus, eidasData);
-    if (countrySpecificResult.getResultCount() == 0) {
+    if (searchResult.getResultCount() == 0) {
       log.trace("'step6CountrySpecificSearch' ends with no result. Forward to next matching step ... ");
-      step8RegisterSearchWithMds(executionContext, countrySpecificResult.getOperationStatus(), eidasData);
-    } else if (countrySpecificResult.getResultCount() == 1) {
+      step8RegisterSearchWithMds(executionContext, searchResult.getOperationStatus(), eidasData);
+    } else if (searchResult.getResultCount() == 1) {
       log.trace("'step6CountrySpecificSearch' finds a person. Forward to 'step7aKittProcess' step ... ");
-      registerSearchService.step7aKittProcess(countrySpecificResult, eidasData);
-      foundMatchFinalizeTask(countrySpecificResult, eidasData);
+      registerSearchService.step7aKittProcess(searchResult, eidasData);
+      foundMatchFinalizeTask(searchResult, eidasData);
     } else {
       throw new WorkflowException("step6CountrySpecificSearch",
           "More than one entry with unique country-specific information", true);
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveAuthnResponseAlternativeTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveAuthnResponseAlternativeTask.java
new file mode 100644
index 00000000..aa04f55e
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveAuthnResponseAlternativeTask.java
@@ -0,0 +1,131 @@
+/*
+ * Copyright 2018 A-SIT Plus GmbH
+ * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
+ * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
+ *
+ * Licensed under the EUPL, Version 1.2 or - as soon they will be approved by
+ * the European Commission - subsequent versions of the EUPL (the "License");
+ * You may not use this work except in compliance with the License.
+ * You may obtain a copy of the License at:
+ * https://joinup.ec.europa.eu/news/understanding-eupl-v12
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" basis,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ *
+ * This product combines work with different licenses. See the "NOTICE" text
+ * file for details on the various modules and licenses.
+ * The "NOTICE" text file is part of the distribution. Any derivative works
+ * that you distribute must include a readable copy of the "NOTICE" text file.
+ */
+
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks;
+
+import at.asitplus.eidas.specific.connector.MsEidasNodeConstants;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidasSAuthenticationException;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidasValidationException;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.EidasAttributeRegistry;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.validator.EidasResponseValidator;
+import at.gv.egiz.eaaf.core.api.idp.IConfiguration;
+import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
+import at.gv.egiz.eaaf.core.exceptions.EaafException;
+import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
+import at.gv.egiz.eaaf.core.impl.idp.auth.data.AuthProcessDataWrapper;
+import at.gv.egiz.eaaf.core.impl.idp.auth.modules.AbstractAuthServletTask;
+import eu.eidas.auth.commons.light.ILightResponse;
+import lombok.extern.slf4j.Slf4j;
+import org.jetbrains.annotations.NotNull;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.stereotype.Component;
+
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+
+
+/**
+ * Receives the authn response from the eIDAS Node, containing the (alternative) eIDAS authentication.
+ * Input:
+ * <ul>
+ *     <li>none</li>
+ * </ul>
+ * Output:
+ * <ul>
+ *     <li>{@link Constants#DATA_FULL_EIDAS_RESPONSE_ALTERNATIVE} the full response details</li>
+ * </ul>
+ * Transitions:
+ * <ul>
+ *     <li>{@link InitialSearchTask} to perform search in registers</li>
+ * </ul>
+ *
+ * @author tlenz
+ * @author ckollmann
+ */
+@Slf4j
+@Component("ReceiveAuthnResponseTask")
+public class ReceiveAuthnResponseAlternativeTask extends AbstractAuthServletTask {
+
+  @SuppressWarnings("SpringJavaInjectionPointsAutowiringInspection")
+  @Autowired
+  private IConfiguration basicConfig;
+
+  @Autowired
+  private EidasAttributeRegistry attrRegistry;
+
+  @Override
+  public void execute(ExecutionContext executionContext, HttpServletRequest request,
+                      HttpServletResponse response) throws TaskExecutionException {
+    try {
+      final ILightResponse eidasResponse = extractEidasResponse(request);
+      checkStatusCode(eidasResponse);
+      validateMsSpecificResponse(executionContext, eidasResponse);
+      storeInSession(eidasResponse);
+    } catch (final Exception e) {
+      log.warn("eIDAS Response processing FAILED.", e);
+      throw new TaskExecutionException(pendingReq, e.getMessage(),
+          new EidasSAuthenticationException("eidas.05", new Object[]{e.getMessage()}, e));
+    }
+  }
+
+  @NotNull
+  private ILightResponse extractEidasResponse(HttpServletRequest request) throws EidasSAuthenticationException {
+    final ILightResponse eidasResponse = (ILightResponse) request.getAttribute(Constants.DATA_FULL_EIDAS_RESPONSE);
+    if (eidasResponse == null) {
+      log.warn("NO eIDAS response-message found.");
+      throw new EidasSAuthenticationException("eidas.01", null);
+    }
+    log.debug("Receive eIDAS response with RespId: {} for ReqId: {}",
+        eidasResponse.getId(), eidasResponse.getInResponseToId());
+    log.trace("Full eIDAS-Resp: {}", eidasResponse);
+    return eidasResponse;
+  }
+
+  private void checkStatusCode(ILightResponse eidasResponse) throws EidasSAuthenticationException {
+    if (!eidasResponse.getStatus().getStatusCode().equals(Constants.SUCCESS_URI)) {
+      log.info("Receive eIDAS Response with StatusCode: {} Subcode: {} Msg: {}",
+          eidasResponse.getStatus().getStatusCode(),
+          eidasResponse.getStatus().getSubStatusCode(),
+          eidasResponse.getStatus().getStatusMessage());
+      throw new EidasSAuthenticationException("eidas.02", new Object[]{eidasResponse.getStatus()
+          .getStatusCode(), eidasResponse.getStatus().getStatusMessage()});
+    }
+  }
+
+  private void validateMsSpecificResponse(ExecutionContext executionContext, ILightResponse eidasResponse)
+      throws EidasValidationException {
+    final String spCountry = basicConfig.getBasicConfiguration(Constants.CONIG_PROPS_EIDAS_NODE_COUNTRYCODE, "AT");
+    final String citizenCountryCode = (String) executionContext.get(MsEidasNodeConstants.REQ_PARAM_SELECTED_COUNTRY);
+    EidasResponseValidator.validateResponse(pendingReq, eidasResponse, spCountry, citizenCountryCode, attrRegistry);
+  }
+
+  private void storeInSession(ILightResponse eidasResponse) throws EaafException {
+    log.debug("Store eIDAS response information into pending-request.");
+    final AuthProcessDataWrapper authProcessData = pendingReq.getSessionData(AuthProcessDataWrapper.class);
+    authProcessData.setQaaLevel(eidasResponse.getLevelOfAssurance());
+    authProcessData.setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE_ALTERNATIVE, eidasResponse);
+    requestStoreage.storePendingRequest(pendingReq);
+  }
+
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveAuthnResponseTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveAuthnResponseTask.java
index dcc1b7d5..ae582e91 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveAuthnResponseTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/ReceiveAuthnResponseTask.java
@@ -48,7 +48,6 @@ import javax.servlet.http.HttpServletResponse;
 
 /**
  * Receives the authn response from the eIDAS Node, containing the (initial) eIDAS authentication.
- * <p>
  * Input:
  * <ul>
  *     <li>none</li>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eIDAS.Authentication.process.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eIDAS.Authentication.process.xml
index e20fd7aa..2a8a0141 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eIDAS.Authentication.process.xml
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eIDAS.Authentication.process.xml
@@ -17,6 +17,9 @@
   <pd:Task id="receiveMobilePhoneSignatureResponseTask"   class="ReceiveMobilePhoneSignatureResponseTask" />
   <pd:Task id="generateAustrianResidenceGuiTask"          class="GenerateAustrianResidenceGuiTask" />
   <pd:Task id="receiveAustrianResidenceGuiResponseTask"   class="ReceiveAustrianResidenceGuiResponseTask" />
+  <pd:Task id="generateAlternativeEidasAuthnRequest"      class="GenerateAuthnRequestTask" />
+  <pd:Task id="receiveAlternativeEidasAuthnRequest"       class="ReceiveAuthnResponseAlternativeTask" async="true" />
+  <pd:Task id="alternativeRegisterSearch"                 class="AlternativeSearchTask" />
 
   <pd:StartEvent id="start" />
 
@@ -24,26 +27,35 @@
   <pd:Transition  from="generateAuthnRequest"         to="receiveAuthnResponse" />
   <pd:Transition  from="receiveAuthnResponse"         to="initialRegisterSearch" />
   <!-- TODO start-->
-  <pd:Transition  from="initialRegisterSearch"        to="createNewErnpEntryTask"           conditionExpression="ctx['TASK_CreateNewErnpEntryTask']"/>
-  <pd:Transition  from="initialRegisterSearch"        to="generateOtherLoginMethodGuiTask"  conditionExpression="ctx['TASK_GenerateOtherLoginMethodGuiTask']"/>
+  <pd:Transition  conditionExpression="ctx['TASK_CreateNewErnpEntryTask']"
+                  from="initialRegisterSearch"        to="createNewErnpEntryTask" />
+  <pd:Transition  conditionExpression="ctx['TASK_GenerateOtherLoginMethodGuiTask']"
+                  from="initialRegisterSearch"        to="generateOtherLoginMethodGuiTask"/>
   <pd:Transition  from="initialRegisterSearch"        to="generateIdentityLink" />
 
-  <pd:Transition  from="generateOtherLoginMethodGuiTask"          to="receiveOtherLoginMethodGuiResponseTask" />
-  <pd:Transition  from="receiveOtherLoginMethodGuiResponseTask"   to="generateMobilePhoneSignatureRequestTask"    conditionExpression="ctx['TASK_GenerateMobilePhoneSignatureRequestTask']"/>
-  <pd:Transition  from="receiveOtherLoginMethodGuiResponseTask"   to="generateAustrianResidenceGuiTask"           conditionExpression="ctx['TASK_GenerateAustrianResidenceGuiTask']"/>
-  <!-- TRANSITION_TO_GENERATE_EIDAS_LOGIN -->
-  <!-- <pd:Transition  from="receiveOtherLoginMethodGuiResponseTask" -->
-  <!--                 to="generateAustrianResidenceGuiTask" -->
-  <!--                 conditionExpression="ctx['TASK_TODO']"/> -->
+  <pd:Transition  from="generateOtherLoginMethodGuiTask"            to="receiveOtherLoginMethodGuiResponseTask" />
+  <pd:Transition  conditionExpression="ctx['TASK_GenerateAlternativeEidasAuthn']"
+                  from="receiveOtherLoginMethodGuiResponseTask"     to="generateAlternativeEidasAuthnRequest" />
+  <pd:Transition  conditionExpression="ctx['TASK_GenerateMobilePhoneSignatureRequestTask']"
+                  from="receiveOtherLoginMethodGuiResponseTask"     to="generateMobilePhoneSignatureRequestTask" />
+  <pd:Transition  conditionExpression="ctx['TASK_GenerateAustrianResidenceGuiTask']"
+                  from="receiveOtherLoginMethodGuiResponseTask"     to="generateAustrianResidenceGuiTask" />
+
+  <pd:Transition  from="generateAlternativeEidasAuthnRequest"       to="receiveAlternativeEidasAuthnRequest" />
+  <pd:Transition  from="receiveAlternativeEidasAuthnRequest"        to="alternativeRegisterSearch" />
+  <pd:Transition  conditionExpression="ctx['TASK_GenerateOtherLoginMethodGuiTask']"
+                  from="alternativeRegisterSearch"                  to="generateIdentityLink" />
+  <pd:Transition  from="alternativeRegisterSearch"                  to="generateIdentityLink" />
 
   <pd:Transition  from="generateMobilePhoneSignatureRequestTask"    to="receiveMobilePhoneSignatureResponseTask" />
-  <pd:Transition  from="receiveMobilePhoneSignatureResponseTask"    to="generateAustrianResidenceGuiTask"         conditionExpression="ctx['TASK_GenerateAustrianResidenceGuiTask']" />
+  <pd:Transition  conditionExpression="ctx['TASK_GenerateAustrianResidenceGuiTask']"
+                  from="receiveMobilePhoneSignatureResponseTask"    to="generateAustrianResidenceGuiTask" />
   <pd:Transition  from="receiveMobilePhoneSignatureResponseTask"    to="generateIdentityLink" />
 
   <pd:Transition  from="generateAustrianResidenceGuiTask"           to="receiveAustrianResidenceGuiResponseTask" />
-
-  <pd:Transition  from="receiveAustrianResidenceGuiResponseTask"    to="createNewErnpEntryTask"                   conditionExpression="ctx['TASK_CreateNewErnpEntryTask']"/>
-  <pd:Transition  from="receiveAustrianResidenceGuiResponseTask"    to="generateIdentityLink"/>
+  <pd:Transition  conditionExpression="ctx['TASK_CreateNewErnpEntryTask']"
+                  from="receiveAustrianResidenceGuiResponseTask"    to="createNewErnpEntryTask" />
+  <pd:Transition  from="receiveAustrianResidenceGuiResponseTask"    to="generateIdentityLink" />
 
   <pd:Transition  from="createNewErnpEntryTask"                     to="generateIdentityLink" />
   <!-- TODO end-->
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml
index 09e0234d..5a113550 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/eidas_v2_auth.beans.xml
@@ -100,8 +100,12 @@
     scope="prototype" />
 
   <bean id="ReceiveAuthnResponseTask"
-    class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.ReceiveAuthnResponseTask"
-    scope="prototype" />
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.ReceiveAuthnResponseTask"
+        scope="prototype" />
+
+  <bean id="ReceiveAuthnResponseAlternativeTask"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.ReceiveAuthnResponseAlternativeTask"
+        scope="prototype" />
 
   <bean id="CreateIdentityLinkTask"
     class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.CreateIdentityLinkTask"
@@ -111,6 +115,9 @@
         class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.InitialSearchTask"
         scope="prototype" />
 
+  <bean id="AlternativeSearchTask"
+        class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.AlternativeSearchTask"
+        scope="prototype" />
 
   <bean id="CreateNewErnpEntryTask"
         class="at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks.CreateNewErnpEntryTask"
-- 
cgit v1.2.3


From 49d18b25cd247c5d5f564719d16a829f6e85d8af Mon Sep 17 00:00:00 2001
From: Christian Kollmann <christian.kollmann@a-sit.at>
Date: Mon, 12 Jul 2021 11:49:39 +0200
Subject: Extract common code for converting eIDAS attributes to simple map

---
 .../auth/eidas/v2/tasks/AlternativeSearchTask.java |  52 +--------
 .../auth/eidas/v2/tasks/InitialSearchTask.java     |  50 +--------
 .../auth/eidas/v2/utils/MatchingTaskUtils.java     | 116 +++++++++++++++------
 3 files changed, 88 insertions(+), 130 deletions(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/AlternativeSearchTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/AlternativeSearchTask.java
index fe3a9560..135eeec1 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/AlternativeSearchTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/AlternativeSearchTask.java
@@ -25,7 +25,6 @@ package at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks;
 
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.MatchedPersonResult;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidPostProcessingException;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidasAttributeException;
@@ -34,31 +33,20 @@ import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.ICcSpecificEidPr
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.RegisterSearchService;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.RegisterSearchService.RegisterOperationStatus;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.RegisterSearchService.RegisterStatusResults;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.EidasResponseUtils;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.MatchingTaskUtils;
 import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
 import at.gv.egiz.eaaf.core.exceptions.EaafStorageException;
 import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
 import at.gv.egiz.eaaf.core.impl.idp.auth.modules.AbstractAuthServletTask;
-import com.google.common.collect.ImmutableMap;
-import com.google.common.collect.ImmutableSet;
-import eu.eidas.auth.commons.attribute.AttributeDefinition;
-import eu.eidas.auth.commons.attribute.AttributeValue;
 import eu.eidas.auth.commons.light.ILightResponse;
-import eu.eidas.auth.commons.protocol.eidas.impl.PostalAddress;
 import lombok.extern.slf4j.Slf4j;
-import org.apache.commons.lang3.StringUtils;
 import org.jetbrains.annotations.NotNull;
-import org.joda.time.DateTime;
 import org.springframework.stereotype.Component;
 
 import javax.servlet.http.HttpServletRequest;
 import javax.servlet.http.HttpServletResponse;
-import java.util.HashMap;
-import java.util.List;
 import java.util.Map;
 
-import static at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants.TRANSITION_TO_CREATE_NEW_ERNP_ENTRY_TASK;
 import static at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants.TRANSITION_TO_GENERATE_OTHER_LOGIN_METHOD_GUI_TASK;
 
 /**
@@ -170,45 +158,9 @@ public class AlternativeSearchTask extends AbstractAuthServletTask {
       throws EidasAttributeException, EidPostProcessingException {
     final ILightResponse eidasResponse = MatchingTaskUtils.getAuthProcessDataWrapper(pendingReq)
         .getGenericDataFromSession(Constants.DATA_FULL_EIDAS_RESPONSE_ALTERNATIVE, ILightResponse.class);
-    Map<String, Object> simpleMap = convertEidasAttrToSimpleMap(eidasResponse.getAttributes().getAttributeMap());
+    Map<String, Object> simpleMap = MatchingTaskUtils.convertEidasAttrToSimpleMap(
+        eidasResponse.getAttributes().getAttributeMap(), log);
     return eidPostProcessor.postProcess(simpleMap);
   }
 
-  private Map<String, Object> convertEidasAttrToSimpleMap(
-      ImmutableMap<AttributeDefinition<?>, ImmutableSet<? extends AttributeValue<?>>> attributeMap) {
-    final Map<String, Object> result = new HashMap<>();
-    for (final AttributeDefinition<?> el : attributeMap.keySet()) {
-      final Class<?> parameterizedType = el.getParameterizedType();
-      if (DateTime.class.equals(parameterizedType)) {
-        final DateTime attribute = EidasResponseUtils.translateDateAttribute(el, attributeMap.get(el).asList());
-        if (attribute != null) {
-          result.put(el.getFriendlyName(), attribute);
-          log.trace("Find attr '{}' with value: {}", el.getFriendlyName(), attribute);
-        } else {
-          log.info("Ignore empty 'DateTime' attribute");
-        }
-      } else if (PostalAddress.class.equals(parameterizedType)) {
-        final PostalAddress addressAttribute = EidasResponseUtils
-            .translateAddressAttribute(el, attributeMap.get(el).asList());
-        if (addressAttribute != null) {
-          result.put(el.getFriendlyName(), addressAttribute);
-          log.trace("Find attr '{}' with value: {}", el.getFriendlyName(), addressAttribute);
-        } else {
-          log.info("Ignore empty 'PostalAddress' attribute");
-        }
-      } else {
-        final List<String> natPersonIdObj = EidasResponseUtils.translateStringListAttribute(el, attributeMap.get(el));
-        final String stringAttr = natPersonIdObj.get(0);
-        if (StringUtils.isNotEmpty(stringAttr)) {
-          result.put(el.getFriendlyName(), stringAttr);
-          log.trace("Find attr '{}' with value: {}", el.getFriendlyName(), stringAttr);
-        } else {
-          log.info("Ignore empty 'String' attribute");
-        }
-      }
-    }
-    log.debug("Receive #{} attributes with names: {}", result.size(), result.keySet());
-    return result;
-  }
-
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
index a55af1c4..2341b733 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/InitialSearchTask.java
@@ -34,28 +34,18 @@ import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.ICcSpecificEidPr
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.RegisterSearchService;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.RegisterSearchService.RegisterOperationStatus;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.RegisterSearchService.RegisterStatusResults;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.EidasResponseUtils;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.utils.MatchingTaskUtils;
 import at.gv.egiz.eaaf.core.api.idp.process.ExecutionContext;
 import at.gv.egiz.eaaf.core.exceptions.EaafStorageException;
 import at.gv.egiz.eaaf.core.exceptions.TaskExecutionException;
 import at.gv.egiz.eaaf.core.impl.idp.auth.modules.AbstractAuthServletTask;
-import com.google.common.collect.ImmutableMap;
-import com.google.common.collect.ImmutableSet;
-import eu.eidas.auth.commons.attribute.AttributeDefinition;
-import eu.eidas.auth.commons.attribute.AttributeValue;
 import eu.eidas.auth.commons.light.ILightResponse;
-import eu.eidas.auth.commons.protocol.eidas.impl.PostalAddress;
 import lombok.extern.slf4j.Slf4j;
-import org.apache.commons.lang3.StringUtils;
 import org.jetbrains.annotations.NotNull;
-import org.joda.time.DateTime;
 import org.springframework.stereotype.Component;
 
 import javax.servlet.http.HttpServletRequest;
 import javax.servlet.http.HttpServletResponse;
-import java.util.HashMap;
-import java.util.List;
 import java.util.Map;
 
 import static at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants.TRANSITION_TO_CREATE_NEW_ERNP_ENTRY_TASK;
@@ -204,45 +194,9 @@ public class InitialSearchTask extends AbstractAuthServletTask {
       throws EidasAttributeException, EidPostProcessingException {
     final ILightResponse eidasResponse = MatchingTaskUtils.getAuthProcessDataWrapper(pendingReq)
         .getGenericDataFromSession(Constants.DATA_FULL_EIDAS_RESPONSE, ILightResponse.class);
-    Map<String, Object> simpleMap = convertEidasAttrToSimpleMap(eidasResponse.getAttributes().getAttributeMap());
+    Map<String, Object> simpleMap = MatchingTaskUtils.convertEidasAttrToSimpleMap(
+        eidasResponse.getAttributes().getAttributeMap(), log);
     return eidPostProcessor.postProcess(simpleMap);
   }
 
-  private Map<String, Object> convertEidasAttrToSimpleMap(
-      ImmutableMap<AttributeDefinition<?>, ImmutableSet<? extends AttributeValue<?>>> attributeMap) {
-    final Map<String, Object> result = new HashMap<>();
-    for (final AttributeDefinition<?> el : attributeMap.keySet()) {
-      final Class<?> parameterizedType = el.getParameterizedType();
-      if (DateTime.class.equals(parameterizedType)) {
-        final DateTime attribute = EidasResponseUtils.translateDateAttribute(el, attributeMap.get(el).asList());
-        if (attribute != null) {
-          result.put(el.getFriendlyName(), attribute);
-          log.trace("Find attr '{}' with value: {}", el.getFriendlyName(), attribute);
-        } else {
-          log.info("Ignore empty 'DateTime' attribute");
-        }
-      } else if (PostalAddress.class.equals(parameterizedType)) {
-        final PostalAddress addressAttribute = EidasResponseUtils
-            .translateAddressAttribute(el, attributeMap.get(el).asList());
-        if (addressAttribute != null) {
-          result.put(el.getFriendlyName(), addressAttribute);
-          log.trace("Find attr '{}' with value: {}", el.getFriendlyName(), addressAttribute);
-        } else {
-          log.info("Ignore empty 'PostalAddress' attribute");
-        }
-      } else {
-        final List<String> natPersonIdObj = EidasResponseUtils.translateStringListAttribute(el, attributeMap.get(el));
-        final String stringAttr = natPersonIdObj.get(0);
-        if (StringUtils.isNotEmpty(stringAttr)) {
-          result.put(el.getFriendlyName(), stringAttr);
-          log.trace("Find attr '{}' with value: {}", el.getFriendlyName(), stringAttr);
-        } else {
-          log.info("Ignore empty 'String' attribute");
-        }
-      }
-    }
-    log.debug("Receive #{} attributes with names: {}", result.size(), result.keySet());
-    return result;
-  }
-
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/MatchingTaskUtils.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/MatchingTaskUtils.java
index c2392a79..c7631f53 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/MatchingTaskUtils.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/utils/MatchingTaskUtils.java
@@ -1,49 +1,60 @@
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.utils;
 
-import javax.annotation.Nullable;
-
-import org.springframework.lang.NonNull;
-
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.MatchedPersonResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.ICcSpecificEidProcessingService;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.RegisterSearchService.RegisterStatusResults;
 import at.gv.egiz.eaaf.core.api.IRequest;
 import at.gv.egiz.eaaf.core.exceptions.EaafStorageException;
 import at.gv.egiz.eaaf.core.impl.idp.auth.data.AuthProcessDataWrapper;
+import com.google.common.collect.ImmutableMap;
+import com.google.common.collect.ImmutableSet;
+import eu.eidas.auth.commons.attribute.AttributeDefinition;
+import eu.eidas.auth.commons.attribute.AttributeValue;
+import eu.eidas.auth.commons.protocol.eidas.impl.PostalAddress;
+import org.apache.commons.lang3.StringUtils;
+import org.joda.time.DateTime;
+import org.slf4j.Logger;
+import org.springframework.lang.NonNull;
+
+import javax.annotation.Nullable;
+import java.util.HashMap;
+import java.util.List;
+import java.util.Map;
 
 public class MatchingTaskUtils {
 
   /**
    * Get eIDAS log-in information from session.
-   * 
+   *
    * @param pendingReq Current pendingRequest
    * @return eIDAS infos or <code>null</code> if not exist
    */
   @Nullable
-  public static  SimpleEidasData getInitialEidasData(IRequest pendingReq) {
+  public static SimpleEidasData getInitialEidasData(IRequest pendingReq) {
     return getAuthProcessDataWrapper(pendingReq).getGenericDataFromSession(
         Constants.DATA_SIMPLE_EIDAS, SimpleEidasData.class);
-    
+
   }
 
   /**
    * Set eIDAS log-in information to session.
-   * 
+   *
    * @param pendingReq Current pendingRequest
-   * @param eidasData infos from eIDAS Proxy-Service
+   * @param eidasData  infos from eIDAS Proxy-Service
    * @throws EaafStorageException In case of data can not be add into session
    */
   @Nullable
-  public static void storeInitialEidasData(IRequest pendingReq, SimpleEidasData eidasData) 
+  public static void storeInitialEidasData(IRequest pendingReq, SimpleEidasData eidasData)
       throws EaafStorageException {
     getAuthProcessDataWrapper(pendingReq).setGenericDataToSession(Constants.DATA_SIMPLE_EIDAS, eidasData);
-    
+
   }
-  
+
   /**
    * Get intermediate matching result from session.
-   * 
+   *
    * @param pendingReq Current pendingRequest
    * @return Intermediate matching result or <code>null</code> if not exist
    */
@@ -51,27 +62,27 @@ public class MatchingTaskUtils {
   public static RegisterStatusResults getIntermediateMatchingResult(IRequest pendingReq) {
     return getAuthProcessDataWrapper(pendingReq).getGenericDataFromSession(Constants.DATA_INTERMEDIATE_RESULT,
         RegisterStatusResults.class);
-    
+
   }
-  
+
   /**
    * Store intermediate matching result into session.
-   * 
-   * @param pendingReq Current pendingRequest
+   *
+   * @param pendingReq   Current pendingRequest
    * @param registerData Intermediate matching result information
    * @throws EaafStorageException In case of data can not be add into session
    */
   @Nullable
-  public static void storeIntermediateMatchingResult(IRequest pendingReq, RegisterStatusResults registerData) 
+  public static void storeIntermediateMatchingResult(IRequest pendingReq, RegisterStatusResults registerData)
       throws EaafStorageException {
     getAuthProcessDataWrapper(pendingReq).setGenericDataToSession(
         Constants.DATA_INTERMEDIATE_RESULT, registerData);
-        
+
   }
 
   /**
    * Get intermediate matching result from session.
-   * 
+   *
    * @param pendingReq Current pendingRequest
    * @return Intermediate matching result or <code>null</code> if not exist
    */
@@ -79,39 +90,80 @@ public class MatchingTaskUtils {
   public static MatchedPersonResult getFinalMatchingResult(IRequest pendingReq) {
     return getAuthProcessDataWrapper(pendingReq).getGenericDataFromSession(Constants.DATA_PERSON_MATCH_RESULT,
         MatchedPersonResult.class);
-    
+
   }
-  
+
   /**
    * Store intermediate matching result into session.
-   * 
-   * @param pendingReq Current pendingRequest
+   *
+   * @param pendingReq  Current pendingRequest
    * @param personInfos Person information after a successful match
    * @throws EaafStorageException In case of data can not be add into session
    */
   @Nullable
-  public static void storeFinalMatchingResult(IRequest pendingReq, MatchedPersonResult personInfos) 
+  public static void storeFinalMatchingResult(IRequest pendingReq, MatchedPersonResult personInfos)
       throws EaafStorageException {
     getAuthProcessDataWrapper(pendingReq).setGenericDataToSession(
         Constants.DATA_PERSON_MATCH_RESULT, personInfos);
-        
+
   }
-  
+
   /**
    * Get holder for authentication information for the current process.
-   * 
+   *
    * @param pendingReq Current pendingRequest
    * @return {@link AuthProcessDataWrapper}
    */
   @NonNull
   public static AuthProcessDataWrapper getAuthProcessDataWrapper(IRequest pendingReq) {
     return pendingReq.getSessionData(AuthProcessDataWrapper.class);
-    
+
   }
-  
+
+  /**
+   * Convert attributes from eIDAS Authn Response into a simple map, to be used from
+   * {@link ICcSpecificEidProcessingService#postProcess(Map)}.
+   */
+  public static Map<String, Object> convertEidasAttrToSimpleMap(
+      ImmutableMap<AttributeDefinition<?>, ImmutableSet<? extends AttributeValue<?>>> attributeMap, Logger log) {
+    final Map<String, Object> result = new HashMap<>();
+    for (final AttributeDefinition<?> el : attributeMap.keySet()) {
+      final Class<?> parameterizedType = el.getParameterizedType();
+      if (DateTime.class.equals(parameterizedType)) {
+        final DateTime attribute = EidasResponseUtils.translateDateAttribute(el, attributeMap.get(el).asList());
+        if (attribute != null) {
+          result.put(el.getFriendlyName(), attribute);
+          log.trace("Find attr '{}' with value: {}", el.getFriendlyName(), attribute);
+        } else {
+          log.info("Ignore empty 'DateTime' attribute");
+        }
+      } else if (PostalAddress.class.equals(parameterizedType)) {
+        final PostalAddress addressAttribute = EidasResponseUtils
+            .translateAddressAttribute(el, attributeMap.get(el).asList());
+        if (addressAttribute != null) {
+          result.put(el.getFriendlyName(), addressAttribute);
+          log.trace("Find attr '{}' with value: {}", el.getFriendlyName(), addressAttribute);
+        } else {
+          log.info("Ignore empty 'PostalAddress' attribute");
+        }
+      } else {
+        final List<String> natPersonIdObj = EidasResponseUtils.translateStringListAttribute(el, attributeMap.get(el));
+        final String stringAttr = natPersonIdObj.get(0);
+        if (StringUtils.isNotEmpty(stringAttr)) {
+          result.put(el.getFriendlyName(), stringAttr);
+          log.trace("Find attr '{}' with value: {}", el.getFriendlyName(), stringAttr);
+        } else {
+          log.info("Ignore empty 'String' attribute");
+        }
+      }
+    }
+    log.debug("Receive #{} attributes with names: {}", result.size(), result.keySet());
+    return result;
+  }
+
   private MatchingTaskUtils() {
     //hide constructor in case of class contains only static methods
-    
+
   }
-  
+
 }
-- 
cgit v1.2.3


From f555785f594040b215c58fe0a83b8f9c0ca72024 Mon Sep 17 00:00:00 2001
From: Christian Kollmann <christian.kollmann@a-sit.at>
Date: Mon, 12 Jul 2021 13:48:26 +0200
Subject: Refactor creating random results in tests

---
 .../eidas/v2/test/tasks/InitialSearchTaskTest.java | 666 +++++++++------------
 1 file changed, 293 insertions(+), 373 deletions(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskTest.java
index cca94188..b0de3460 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskTest.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/tasks/InitialSearchTaskTest.java
@@ -23,59 +23,15 @@
 
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.test.tasks;
 
-import static org.apache.commons.lang3.RandomStringUtils.randomAlphabetic;
-import static org.junit.Assert.assertEquals;
-import static org.junit.Assert.assertFalse;
-import static org.junit.Assert.assertNotNull;
-import static org.junit.Assert.assertNull;
-import static org.junit.Assert.assertThrows;
-import static org.junit.Assert.assertTrue;
-import static org.mockito.ArgumentMatchers.any;
-import static org.mockito.ArgumentMatchers.eq;
-
-import java.math.BigInteger;
-import java.net.URI;
-import java.net.URISyntaxException;
-import java.util.Arrays;
-import java.util.Collections;
-import java.util.List;
-import java.util.Map;
-import java.util.Random;
-
-import javax.xml.namespace.QName;
-
-import org.apache.commons.lang3.RandomStringUtils;
-import org.jetbrains.annotations.NotNull;
-import org.junit.Assert;
-import org.junit.Before;
-import org.junit.Ignore;
-import org.junit.Test;
-import org.junit.runner.RunWith;
-import org.mockito.Mock;
-import org.mockito.Mockito;
-import org.mockito.MockitoAnnotations;
-import org.springframework.beans.factory.annotation.Autowired;
-import org.springframework.mock.web.MockHttpServletRequest;
-import org.springframework.mock.web.MockHttpServletResponse;
-import org.springframework.test.annotation.DirtiesContext;
-import org.springframework.test.annotation.DirtiesContext.ClassMode;
-import org.springframework.test.context.ContextConfiguration;
-import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
-import org.springframework.web.context.request.RequestContextHolder;
-import org.springframework.web.context.request.ServletRequestAttributes;
-
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.clients.zmr.IZmrClient;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.clients.zmr.ZmrSoapClient;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.clients.zmr.ZmrSoapClient.ZmrRegisterResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.MatchedPersonResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.ernp.IErnpClient;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidPostProcessingException;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidasAttributeException;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidasSAuthenticationException;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.WorkflowException;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.ZmrCommunicationException;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.*;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.CountrySpecificDetailSearchProcessor;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.handler.GenericEidProcessor;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.service.ICcSpecificEidProcessingService;
@@ -96,6 +52,36 @@ import eu.eidas.auth.commons.attribute.ImmutableAttributeMap;
 import eu.eidas.auth.commons.attribute.PersonType;
 import eu.eidas.auth.commons.light.impl.LightRequest;
 import eu.eidas.auth.commons.protocol.impl.AuthenticationResponse;
+import org.apache.commons.lang3.RandomStringUtils;
+import org.jetbrains.annotations.NotNull;
+import org.junit.Assert;
+import org.junit.Before;
+import org.junit.Ignore;
+import org.junit.Test;
+import org.junit.runner.RunWith;
+import org.mockito.Mock;
+import org.mockito.Mockito;
+import org.mockito.MockitoAnnotations;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.mock.web.MockHttpServletRequest;
+import org.springframework.mock.web.MockHttpServletResponse;
+import org.springframework.test.annotation.DirtiesContext;
+import org.springframework.test.annotation.DirtiesContext.ClassMode;
+import org.springframework.test.context.ContextConfiguration;
+import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
+import org.springframework.web.context.request.RequestContextHolder;
+import org.springframework.web.context.request.ServletRequestAttributes;
+
+import javax.xml.namespace.QName;
+import java.math.BigInteger;
+import java.net.URI;
+import java.net.URISyntaxException;
+import java.util.*;
+
+import static org.apache.commons.lang3.RandomStringUtils.randomAlphabetic;
+import static org.junit.Assert.*;
+import static org.mockito.ArgumentMatchers.any;
+import static org.mockito.ArgumentMatchers.eq;
 
 @RunWith(SpringJUnit4ClassRunner.class)
 @ContextConfiguration(locations = {
@@ -105,10 +91,10 @@ import eu.eidas.auth.commons.protocol.impl.AuthenticationResponse;
 @DirtiesContext(classMode = ClassMode.BEFORE_CLASS)
 public class InitialSearchTaskTest {
 
-  
+
   private static final String EE = "EE";
   private static final String DE = "DE";
-  
+
   private static final String EE_ST = EE + "/ST/";
   private static final String DE_ST = DE + "/ST/";
 
@@ -116,19 +102,20 @@ public class InitialSearchTaskTest {
   private IZmrClient zmrClient;
   @Mock
   private IErnpClient ernpClient;
-  
-  @Autowired private List<CountrySpecificDetailSearchProcessor> handlers;  
+
+  @Autowired
+  private List<CountrySpecificDetailSearchProcessor> handlers;
   private RegisterSearchService registerSearchService;
-  
-  private final ICcSpecificEidProcessingService eidPostProcessor = createEidPostProcessor();  
+
+  private final ICcSpecificEidProcessingService eidPostProcessor = createEidPostProcessor();
   private InitialSearchTask task;
-  
+
   final ExecutionContext executionContext = new ExecutionContextImpl();
   private TestRequestImpl pendingReq;
   private final String randomBpk = RandomStringUtils.randomNumeric(6);
-  private final String randomPsydonym = RandomStringUtils.randomNumeric(10);
-  private final String randomPersonalIdentifier_DE = DE_ST + randomPsydonym;
-  private final String randomPersonalIdentifier_EE = EE_ST + randomPsydonym;
+  private final String randomPseudonym = RandomStringUtils.randomNumeric(10);
+  private final String randomPersonalIdentifier_DE = DE_ST + randomPseudonym;
+  private final String randomPersonalIdentifier_EE = EE_ST + randomPseudonym;
   private final String randomFamilyName = randomAlphabetic(10);
   private final String randomGivenName = randomAlphabetic(10);
   private final String randomPlaceOfBirth = randomAlphabetic(10);
@@ -141,7 +128,7 @@ public class InitialSearchTaskTest {
   @Before
   public void setUp() throws URISyntaxException, EaafStorageException {
     MockitoAnnotations.initMocks(this);
-      
+
     registerSearchService = new RegisterSearchService(handlers, zmrClient, ernpClient);
     task = new InitialSearchTask(registerSearchService, eidPostProcessor);
 
@@ -181,228 +168,170 @@ public class InitialSearchTaskTest {
   @DirtiesContext
   public void singlePersonalIdMatchUpdateNecessary_Zmr() throws Exception {
     String oldGivenName = randomAlphabetic(10);
-    Mockito.when(zmrClient.searchWithPersonIdentifier(null, randomPsydonym, DE)).thenReturn(
-        new ZmrRegisterResult(Collections.singletonList(
-            RegisterResult.builder()
-                .bpk(randomBpk)
-                .pseudonym(Arrays.asList(randomPsydonym))
-                .givenName(oldGivenName)
-                .familyName(randomFamilyName)
-                .dateOfBirth(randomBirthDate)
-                .build()),
-            generateRandomProcessId()));
-    
-    Mockito.when(zmrClient.searchCountrySpecific(any(), any(), any())).thenThrow(
-        new IllegalStateException("CountrySpecific search search should not be neccessary"));
-    Mockito.when(zmrClient.searchWithMds(any(), any(), any(), any(), any())).thenThrow(
-        new IllegalStateException("MDS search should not be neccessary"));  
-    Mockito.when(zmrClient.update(any(), any(), any())).thenThrow(
-        new IllegalStateException("ZMR update should not be neccessary"));
-    
+    Mockito.when(zmrClient.searchWithPersonIdentifier(null, randomPseudonym, DE))
+        .thenReturn(zmrRegisterResult(randomRegisterResult(oldGivenName, randomBpk)));
+
+    Mockito.when(zmrClient.searchCountrySpecific(any(), any(), any()))
+        .thenThrow(new IllegalStateException("CountrySpecific search search should not be neccessary"));
+    Mockito.when(zmrClient.searchWithMds(any(), any(), any(), any(), any()))
+        .thenThrow(new IllegalStateException("MDS search should not be neccessary"));
+    Mockito.when(zmrClient.update(any(), any(), any()))
+        .thenThrow(new IllegalStateException("ZMR update should not be neccessary"));
+
     // execute test
     task.execute(pendingReq, executionContext);
-    
+
     // validate state
     //INFO: has to be the old givenName because ZMR allows no update of MDS information
     checkMatchingSuccessState(pendingReq, randomBpk, randomFamilyName, oldGivenName, randomBirthDate, DE);
-        
+
   }
 
-  
   /**
-   * TODO: include again if ERnP update is implementet. Maybe we can update MDS based on ERnP. 
-   * 
+   * TODO: include again if ERnP update is implementet. Maybe we can update MDS based on ERnP.
+   * <p>
    * One match, but register update needed.
-   * @throws EidasSAuthenticationException 
+   *
+   * @throws EidasSAuthenticationException
    */
   @Ignore
   @Test
   @DirtiesContext
   public void singlePersonalIdMatchUpdateNecessary_Ernp() throws TaskExecutionException, EidasSAuthenticationException {
-    Mockito.when(zmrClient.searchWithPersonIdentifier(null, randomPsydonym, DE)).thenReturn(
-        new ZmrRegisterResult(Collections.emptyList(), generateRandomProcessId()));
-    
+    Mockito.when(zmrClient.searchWithPersonIdentifier(null, randomPseudonym, DE))
+        .thenReturn(emptyZmrRegisterResult());
+
     String oldRandomGivenName = randomAlphabetic(10);
-    Mockito.when(ernpClient.searchWithPersonIdentifier(randomPersonalIdentifier_DE)).thenReturn(Collections.singletonList(
-        RegisterResult.builder()
-        .bpk(randomBpk)
-        .pseudonym(Arrays.asList(randomPsydonym))
-        .givenName(oldRandomGivenName)
-        .familyName(randomFamilyName)
-        .dateOfBirth(randomBirthDate)
-        .build()));
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomPersonalIdentifier_DE))
+        .thenReturn(Collections.singletonList(randomRegisterResult(oldRandomGivenName, randomBpk)));
 
     // execute test
     task.execute(pendingReq, executionContext);
-    
+
     // validate state
     checkMatchingSuccessState(pendingReq, randomBpk, randomFamilyName, randomGivenName, randomBirthDate, DE);
   }
 
+  @NotNull
+  private ZmrSoapClient.ZmrRegisterResult emptyZmrRegisterResult() {
+    return new ZmrRegisterResult(Collections.emptyList(), generateRandomProcessId());
+  }
+
   /**
    * Two matches by PersonalId found in ZMR
-   * @throws EidasSAuthenticationException 
+   *
+   * @throws EidasSAuthenticationException
    */
   @Test
   @DirtiesContext
   public void multiPersonalIdMatch_Zmr() throws EidasSAuthenticationException {
     String newRandomGivenName = randomAlphabetic(10);
-    Mockito.when(zmrClient.searchWithPersonIdentifier(null, randomPsydonym, DE)).thenReturn(
-        new ZmrRegisterResult(Arrays.asList(
-            RegisterResult.builder()
-                .bpk(randomBpk)
-                .pseudonym(Arrays.asList(randomPsydonym))
-                .givenName(randomGivenName)
-                .familyName(randomFamilyName)
-                .dateOfBirth(randomBirthDate)
-                .build(),
-            RegisterResult.builder()
-                .bpk(randomBpk)
-                .pseudonym(Arrays.asList(randomPsydonym))
-                .givenName(newRandomGivenName)
-                .familyName(randomFamilyName)
-                .dateOfBirth(randomBirthDate)
-                .build()
-            ),                         
-            generateRandomProcessId()));
-    Mockito.when(ernpClient.searchWithPersonIdentifier(
-        randomPersonalIdentifier_DE)).thenReturn(Collections.emptyList());
+    Mockito.when(zmrClient.searchWithPersonIdentifier(null, randomPseudonym, DE))
+        .thenReturn(new ZmrRegisterResult(Arrays.asList(randomRegisterResult(), randomRegisterResult(newRandomGivenName, randomBpk)), generateRandomProcessId()));
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomPersonalIdentifier_DE))
+        .thenReturn(Collections.emptyList());
 
     // execute task
     TaskExecutionException exception = assertThrows(TaskExecutionException.class,
         () -> task.execute(pendingReq, executionContext));
 
-    
+
     // validate state
     assertTrue("Wrong exception", (exception.getOriginalException() instanceof WorkflowException));
-    assertTrue("Wrong flag 'manualFixNeeded'", 
-        ((WorkflowException)exception.getOriginalException()).isRequiresManualFix()); 
-        
+    assertTrue("Wrong flag 'manualFixNeeded'",
+        ((WorkflowException) exception.getOriginalException()).isRequiresManualFix());
+
   }
 
   /**
    * Two matches by PersonalId found in ZMR
-   * @throws EidasSAuthenticationException 
+   *
+   * @throws EidasSAuthenticationException
    */
   @Test
   @DirtiesContext
   public void withErrorFromZmr() throws EidasSAuthenticationException {
-    Mockito.when(zmrClient.searchWithPersonIdentifier(null, randomPsydonym, DE)).thenThrow(
-        new ZmrCommunicationException("jUnit ZMR error", null));
-    Mockito.when(ernpClient.searchWithPersonIdentifier(
-        randomPersonalIdentifier_DE)).thenReturn(Collections.emptyList());
+    Mockito.when(zmrClient.searchWithPersonIdentifier(null, randomPseudonym, DE))
+        .thenThrow(new ZmrCommunicationException("jUnit ZMR error", null));
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomPersonalIdentifier_DE))
+        .thenReturn(Collections.emptyList());
 
     // execute task
     TaskExecutionException exception = assertThrows(TaskExecutionException.class,
         () -> task.execute(pendingReq, executionContext));
 
-    
+
     // validate state
     assertTrue("Wrong exception", (exception.getOriginalException() instanceof WorkflowException));
-    assertFalse("Wrong flag 'manualFixNeeded'", 
-        ((WorkflowException)exception.getOriginalException()).isRequiresManualFix()); 
-        
+    assertFalse("Wrong flag 'manualFixNeeded'",
+        ((WorkflowException) exception.getOriginalException()).isRequiresManualFix());
+
   }
 
   /**
    * Two matches by PersonalId found in ErnP
-   * @throws EidasSAuthenticationException 
+   *
+   * @throws EidasSAuthenticationException
    */
   @Test
   @DirtiesContext
   public void multiPersonalIdMatch_Ernp() throws EidasSAuthenticationException {
-    Mockito.when(zmrClient.searchWithPersonIdentifier(null, randomPsydonym, DE)).thenReturn(
-        new ZmrRegisterResult(Collections.emptyList(), generateRandomProcessId()));    
+    Mockito.when(zmrClient.searchWithPersonIdentifier(null, randomPseudonym, DE))
+        .thenReturn(emptyZmrRegisterResult());
     String newRandomGivenName = randomAlphabetic(10);
-    Mockito.when(ernpClient.searchWithPersonIdentifier(randomPersonalIdentifier_DE)).thenReturn(
-        Arrays.asList(
-            RegisterResult.builder()
-                .bpk(randomBpk)
-                .pseudonym(Arrays.asList(randomPsydonym))
-                .givenName(randomGivenName)
-                .familyName(randomFamilyName)
-                .dateOfBirth(randomBirthDate)
-                .build(),
-            RegisterResult.builder()
-                .bpk(randomBpk)
-                .pseudonym(Arrays.asList(randomPsydonym))
-                .givenName(newRandomGivenName)
-                .familyName(randomFamilyName)
-                .dateOfBirth(randomBirthDate)
-                .build()            
-            ));
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomPersonalIdentifier_DE))
+        .thenReturn(Arrays.asList(randomRegisterResult(), randomRegisterResult(newRandomGivenName, randomBpk)));
 
     // execute task
     TaskExecutionException exception = assertThrows(TaskExecutionException.class,
         () -> task.execute(pendingReq, executionContext));
-   
+
     // validate state
     assertTrue("Wrong exception", (exception.getOriginalException() instanceof WorkflowException));
-    assertTrue("Wrong flag 'manualFixNeeded'", 
-        ((WorkflowException)exception.getOriginalException()).isRequiresManualFix()); 
-    
+    assertTrue("Wrong flag 'manualFixNeeded'",
+        ((WorkflowException) exception.getOriginalException()).isRequiresManualFix());
+
   }
 
   /**
    * Two matches by PersonalId
-   * @throws EidasSAuthenticationException 
+   *
+   * @throws EidasSAuthenticationException
    */
   @Test
   @DirtiesContext
   public void multiPersonalIdMatch_ErnpAndZmr() throws EidasSAuthenticationException {
-    Mockito.when(zmrClient.searchWithPersonIdentifier(null, randomPsydonym, DE)).thenReturn(
-        new ZmrRegisterResult(Arrays.asList(
-            RegisterResult.builder()
-            .bpk(randomBpk)
-            .pseudonym(Arrays.asList(randomPsydonym))
-            .givenName(randomGivenName)
-            .familyName(randomFamilyName)
-            .dateOfBirth(randomBirthDate)
-            .build()            
-        ), generateRandomProcessId()));    
+    Mockito.when(zmrClient.searchWithPersonIdentifier(null, randomPseudonym, DE))
+        .thenReturn(zmrRegisterResult(randomRegisterResult()));
     String newRandomGivenName = randomAlphabetic(10);
-    Mockito.when(ernpClient.searchWithPersonIdentifier(randomPersonalIdentifier_DE)).thenReturn(
-        Arrays.asList(
-            RegisterResult.builder()
-                .bpk(randomBpk)
-                .pseudonym(Arrays.asList(randomPsydonym))
-                .givenName(randomGivenName)
-                .familyName(randomFamilyName)
-                .dateOfBirth(randomBirthDate)
-                .build()            
-            ));
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomPersonalIdentifier_DE))
+        .thenReturn(Collections.singletonList(randomRegisterResult()));
 
     // execute task
     TaskExecutionException exception = assertThrows(TaskExecutionException.class,
         () -> task.execute(pendingReq, executionContext));
-   
+
     // validate state
     assertTrue("Wrong exception", (exception.getOriginalException() instanceof WorkflowException));
-    assertTrue("Wrong flag 'manualFixNeeded'", 
-        ((WorkflowException)exception.getOriginalException()).isRequiresManualFix()); 
-    
+    assertTrue("Wrong flag 'manualFixNeeded'",
+        ((WorkflowException) exception.getOriginalException()).isRequiresManualFix());
+
   }
-  
+
   /**
    * One match by PersonalId, no register update needed
    */
   @Test
   @DirtiesContext
   public void singlePersonalIdMatchNoUpdate_Ernp() throws Exception {
-    Mockito.when(zmrClient.searchWithPersonIdentifier(null, randomPsydonym, DE)).thenReturn(
-        new ZmrRegisterResult(Collections.emptyList(), generateRandomProcessId()));
-    Mockito.when(ernpClient.searchWithPersonIdentifier(randomPersonalIdentifier_DE)).thenReturn(Collections.singletonList(
-        RegisterResult.builder()
-        .bpk(randomBpk)
-        .pseudonym(Arrays.asList(randomPsydonym))
-        .givenName(randomGivenName)
-        .familyName(randomFamilyName)
-        .dateOfBirth(randomBirthDate)
-        .build()));
+    Mockito.when(zmrClient.searchWithPersonIdentifier(null, randomPseudonym, DE))
+        .thenReturn(emptyZmrRegisterResult());
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomPersonalIdentifier_DE))
+        .thenReturn(Collections.singletonList(randomRegisterResult()));
 
     // execute test
     task.execute(pendingReq, executionContext);
-    
+
     // validate state
     checkMatchingSuccessState(pendingReq, randomBpk, randomFamilyName, randomGivenName, randomBirthDate, DE);
   }
@@ -413,23 +342,16 @@ public class InitialSearchTaskTest {
   @Test
   @DirtiesContext
   public void singlePersonalIdMatchNoUpdate_Zmr() throws Exception {
-    Mockito.when(zmrClient.searchWithPersonIdentifier(null, randomPsydonym, DE)).thenReturn(
-        new ZmrRegisterResult(Collections.singletonList(
-            RegisterResult.builder()
-                .bpk(randomBpk)
-                .pseudonym(Arrays.asList(randomPsydonym))
-                .givenName(randomGivenName)
-                .familyName(randomFamilyName)
-                .dateOfBirth(randomBirthDate)
-                .build()),
-            generateRandomProcessId()));
-    Mockito.when(ernpClient.searchWithPersonIdentifier(randomPersonalIdentifier_DE)).thenReturn(Collections.emptyList());
-    Mockito.when(zmrClient.update(any(), any(), any())).thenThrow(
-        new IllegalStateException("ZMR update should not be neccessary"));
-    
+    Mockito.when(zmrClient.searchWithPersonIdentifier(null, randomPseudonym, DE))
+        .thenReturn(zmrRegisterResult(randomRegisterResult()));
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomPersonalIdentifier_DE))
+        .thenReturn(Collections.emptyList());
+    Mockito.when(zmrClient.update(any(), any(), any()))
+        .thenThrow(new IllegalStateException("ZMR update should not be neccessary"));
+
     // execute test
     task.execute(pendingReq, executionContext);
-    
+
     // validate state
     checkMatchingSuccessState(pendingReq, randomBpk, randomFamilyName, randomGivenName, randomBirthDate, DE);
   }
@@ -439,50 +361,50 @@ public class InitialSearchTaskTest {
    */
   @Test
   @DirtiesContext
-  public void singlePersonFindWithCountySpecifics_Zmr() throws Exception {        
+  public void singlePersonFindWithCountySpecifics_Zmr() throws Exception {
     final AuthenticationResponse response = buildDummyAuthResponseDE(randomGivenName, randomFamilyName,
         randomPersonalIdentifier_DE, randomBirthDate, randomPlaceOfBirth, randomBirthName);
-    TestRequestImpl pendingReq1 = new TestRequestImpl();    
+    TestRequestImpl pendingReq1 = new TestRequestImpl();
     pendingReq1.getSessionData(AuthProcessDataWrapper.class)
         .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
-    
-    BigInteger zmrProcessId = generateRandomProcessId();    
+
+    BigInteger zmrProcessId = generateRandomProcessId();
     RegisterResult zmrResult = RegisterResult.builder()
         .bpk(randomBpk)
-        .pseudonym(Arrays.asList(randomPsydonym))
+        .pseudonym(Collections.singletonList(randomPseudonym))
         .givenName(randomGivenName)
         .familyName(randomFamilyName)
         .dateOfBirth(randomBirthDate)
         .placeOfBirth(randomPlaceOfBirth)
         .birthName(randomBirthName)
-        .build();    
-    Mockito.when(zmrClient.searchWithPersonIdentifier(null, randomPsydonym, DE)).thenReturn(
-        new ZmrRegisterResult(Collections.emptyList(), zmrProcessId));    
-    Mockito.when(zmrClient.searchCountrySpecific(eq(zmrProcessId), any(PersonSuchenRequest.class), eq(DE))).thenReturn(
-        new ZmrRegisterResult(Collections.singletonList(zmrResult)
-        ,zmrProcessId));
-    Mockito.when(zmrClient.update(eq(zmrProcessId), eq(zmrResult) , any())).thenReturn(
-        new ZmrRegisterResult(Collections.singletonList(RegisterResult.builder()
-            .bpk(randomBpk)
-            .pseudonym(Arrays.asList(randomPsydonym, RandomStringUtils.randomAlphanumeric(10)))
-            .givenName(randomGivenName)
-            .familyName(randomFamilyName)
-            .dateOfBirth(randomBirthDate)
-            .placeOfBirth(randomPlaceOfBirth)
-            .birthName(randomBirthName)
-            .build())            
-            ,zmrProcessId));
-    Mockito.when(zmrClient.searchWithMds(any(), any(), any(), any(), any())).thenThrow(
-        new IllegalStateException("MDS search should not be neccessary"));    
-    
-    Mockito.when(ernpClient.searchWithPersonIdentifier(randomPersonalIdentifier_DE)).thenReturn(Collections.emptyList());
+        .build();
+    Mockito.when(zmrClient.searchWithPersonIdentifier(null, randomPseudonym, DE))
+        .thenReturn(new ZmrRegisterResult(Collections.emptyList(), zmrProcessId));
+    Mockito.when(zmrClient.searchCountrySpecific(eq(zmrProcessId), any(PersonSuchenRequest.class), eq(DE)))
+        .thenReturn(zmrRegisterResult(zmrResult, zmrProcessId));
+    RegisterResult randomRegisterResult = RegisterResult.builder()
+        .bpk(randomBpk)
+        .pseudonym(Arrays.asList(randomPseudonym, RandomStringUtils.randomAlphanumeric(10)))
+        .givenName(randomGivenName)
+        .familyName(randomFamilyName)
+        .dateOfBirth(randomBirthDate)
+        .placeOfBirth(randomPlaceOfBirth)
+        .birthName(randomBirthName)
+        .build();
+    Mockito.when(zmrClient.update(eq(zmrProcessId), eq(zmrResult), any()))
+        .thenReturn(zmrRegisterResult(randomRegisterResult, zmrProcessId));
+    Mockito.when(zmrClient.searchWithMds(any(), any(), any(), any(), any()))
+        .thenThrow(new IllegalStateException("MDS search should not be neccessary"));
+
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomPersonalIdentifier_DE))
+        .thenReturn(Collections.emptyList());
 
     // execute test
     task.execute(pendingReq1, executionContext);
-    
+
     // validate state
     checkMatchingSuccessState(pendingReq1, randomBpk, randomFamilyName, randomGivenName, randomBirthDate, DE);
-    
+
   }
 
   /**
@@ -499,79 +421,80 @@ public class InitialSearchTaskTest {
     TestRequestImpl pendingReq1 = new TestRequestImpl();
     pendingReq1.getSessionData(AuthProcessDataWrapper.class)
         .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, response);
-    
-    BigInteger zmrProcessId = generateRandomProcessId();    
-    Mockito.when(zmrClient.searchWithPersonIdentifier(null, randomPsydonym, DE)).thenReturn(
-        new ZmrRegisterResult(Collections.emptyList(), zmrProcessId));                
-    Mockito.when(zmrClient.searchCountrySpecific(eq(zmrProcessId), any(PersonSuchenRequest.class), eq(DE))).thenReturn(
-        new ZmrRegisterResult(Arrays.asList(
-            RegisterResult.builder()
-                .bpk(randomBpk)
-                .pseudonym(Arrays.asList(randomPsydonym))
-                .givenName(randomGivenName)
-                .familyName(randomFamilyName)
-                .dateOfBirth(randomBirthDate)
-                .placeOfBirth(randomPlaceOfBirth)
-                .birthName(randomBirthName)
-                .build(),
-            RegisterResult.builder()
-                .bpk(newRandomBpk)
-                .pseudonym(Arrays.asList(newRandomPseudonym))
-                .givenName(randomGivenName)
-                .familyName(randomFamilyName)
-                .dateOfBirth(randomBirthDate)
-                .placeOfBirth(randomPlaceOfBirth)
-                .birthName(randomBirthName)
-                .build())
-            ,zmrProcessId)); 
-                
-    Mockito.when(ernpClient.searchWithPersonIdentifier(randomPersonalIdentifier_DE)).thenReturn(Collections.emptyList());
-    
+
+    BigInteger zmrProcessId = generateRandomProcessId();
+    Mockito.when(zmrClient.searchWithPersonIdentifier(null, randomPseudonym, DE))
+        .thenReturn(new ZmrRegisterResult(Collections.emptyList(), zmrProcessId));
+    RegisterResult randomResult1 = RegisterResult.builder()
+        .bpk(randomBpk)
+        .pseudonym(Collections.singletonList(randomPseudonym))
+        .givenName(randomGivenName)
+        .familyName(randomFamilyName)
+        .dateOfBirth(randomBirthDate)
+        .placeOfBirth(randomPlaceOfBirth)
+        .birthName(randomBirthName)
+        .build();
+    RegisterResult randomResult2 = RegisterResult.builder()
+        .bpk(newRandomBpk)
+        .pseudonym(Collections.singletonList(newRandomPseudonym))
+        .givenName(randomGivenName)
+        .familyName(randomFamilyName)
+        .dateOfBirth(randomBirthDate)
+        .placeOfBirth(randomPlaceOfBirth)
+        .birthName(randomBirthName)
+        .build();
+    Mockito.when(zmrClient.searchCountrySpecific(eq(zmrProcessId), any(PersonSuchenRequest.class), eq(DE)))
+        .thenReturn(new ZmrRegisterResult(Arrays.asList(randomResult1, randomResult2), zmrProcessId));
+
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomPersonalIdentifier_DE))
+        .thenReturn(Collections.emptyList());
+
     // execute task
     TaskExecutionException exception = assertThrows(TaskExecutionException.class,
         () -> task.execute(pendingReq1, executionContext));
-   
+
     // validate state
     assertTrue("Wrong exception", (exception.getOriginalException() instanceof WorkflowException));
-    assertTrue("Wrong flag 'manualFixNeeded'", 
-        ((WorkflowException)exception.getOriginalException()).isRequiresManualFix()); 
-    
+    assertTrue("Wrong flag 'manualFixNeeded'",
+        ((WorkflowException) exception.getOriginalException()).isRequiresManualFix());
+
   }
 
   /**
    * NO match found in ZMR and ErnP with Initial and MDS search
-   * @throws EidasSAuthenticationException 
-   * @throws URISyntaxException 
-   * @throws EaafStorageException 
+   *
+   * @throws EidasSAuthenticationException
+   * @throws URISyntaxException
+   * @throws EaafStorageException
    */
   @Test
   @DirtiesContext
   public void noResultByAnySearch() throws TaskExecutionException, EidasSAuthenticationException, URISyntaxException, EaafStorageException {
     BigInteger zmrProcessId = generateRandomProcessId();
     pendingReq.getSessionData(AuthProcessDataWrapper.class)
-        .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, 
+        .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE,
             buildDummyAuthResponse(randomGivenName, randomFamilyName, randomPersonalIdentifier_EE, randomBirthDate));
-    
-    Mockito.when(zmrClient.searchWithPersonIdentifier(null, randomPsydonym, EE)).thenReturn(
-        new ZmrRegisterResult(Collections.emptyList(), zmrProcessId)); 
-    Mockito.when(zmrClient.searchWithMds(zmrProcessId, randomGivenName, randomFamilyName, randomBirthDate, EE)).thenReturn(
-        new ZmrRegisterResult(Collections.emptyList(), zmrProcessId)); 
-    Mockito.when(zmrClient.update(any(), any(), any())).thenThrow(
-        new IllegalStateException("ZMR update should not be neccessary"));
-    
-    Mockito.when(ernpClient.searchWithPersonIdentifier(randomPersonalIdentifier_EE)).thenReturn(Collections.emptyList());
-    
-    
+
+    Mockito.when(zmrClient.searchWithPersonIdentifier(null, randomPseudonym, EE))
+        .thenReturn(new ZmrRegisterResult(Collections.emptyList(), zmrProcessId));
+    Mockito.when(zmrClient.searchWithMds(zmrProcessId, randomGivenName, randomFamilyName, randomBirthDate, EE))
+        .thenReturn(new ZmrRegisterResult(Collections.emptyList(), zmrProcessId));
+    Mockito.when(zmrClient.update(any(), any(), any()))
+        .thenThrow(new IllegalStateException("ZMR update should not be neccessary"));
+
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomPersonalIdentifier_EE))
+        .thenReturn(Collections.emptyList());
+
 
     // execute task
     task.execute(pendingReq, executionContext);
 
-    
+
     // validate state
     assertNotNull("find no eIDAS inbut data", MatchingTaskUtils.getInitialEidasData(pendingReq));
-    
-    assertNull("Find intermediate matching data but matching should be finished", 
-        MatchingTaskUtils.getIntermediateMatchingResult(pendingReq));            
+
+    assertNull("Find intermediate matching data but matching should be finished",
+        MatchingTaskUtils.getIntermediateMatchingResult(pendingReq));
     assertNull("Find final matching data but no match sould be found",
         MatchingTaskUtils.getFinalMatchingResult(pendingReq));
 
@@ -579,35 +502,29 @@ public class InitialSearchTaskTest {
     Assert.assertNull("Wrong transition", transitionGUI);
     Boolean transitionErnb = (Boolean) executionContext.get(Constants.TRANSITION_TO_CREATE_NEW_ERNP_ENTRY_TASK);
     Assert.assertTrue("Wrong transition", transitionErnb);
-    
+
   }
 
   /**
-   * Find one match with MDS search in ERnP. 
+   * Find one match with MDS search in ERnP.
    */
   @Test
   @DirtiesContext
   public void resultByMdsSearch_Ernb() throws TaskExecutionException, EidasSAuthenticationException, URISyntaxException, EaafStorageException {
     BigInteger zmrProcessId = generateRandomProcessId();
     pendingReq.getSessionData(AuthProcessDataWrapper.class)
-        .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE, 
-              buildDummyAuthResponse(randomGivenName, randomFamilyName, randomPersonalIdentifier_EE, randomBirthDate));
-    
-    Mockito.when(zmrClient.searchWithPersonIdentifier(null, randomPsydonym, EE)).thenReturn(
-        new ZmrRegisterResult(Collections.emptyList(), zmrProcessId)); 
-    Mockito.when(zmrClient.searchWithMds(zmrProcessId, randomGivenName, randomFamilyName, randomBirthDate, EE)).thenReturn(
-        new ZmrRegisterResult(Collections.emptyList(), zmrProcessId));
-    
-    Mockito.when(ernpClient.searchWithPersonIdentifier(randomPersonalIdentifier_EE)).thenReturn(Collections.emptyList());
-    Mockito.when(ernpClient.searchWithMds(randomGivenName, randomFamilyName, randomBirthDate)).thenReturn(
-        Collections.singletonList(
-            RegisterResult.builder()
-                .bpk(randomBpk)
-                .pseudonym(Arrays.asList(randomPsydonym))
-                .givenName(randomGivenName)
-                .familyName(randomFamilyName)
-                .dateOfBirth(randomBirthDate)
-                .build()));
+        .setGenericDataToSession(Constants.DATA_FULL_EIDAS_RESPONSE,
+            buildDummyAuthResponse(randomGivenName, randomFamilyName, randomPersonalIdentifier_EE, randomBirthDate));
+
+    Mockito.when(zmrClient.searchWithPersonIdentifier(null, randomPseudonym, EE))
+        .thenReturn(new ZmrRegisterResult(Collections.emptyList(), zmrProcessId));
+    Mockito.when(zmrClient.searchWithMds(zmrProcessId, randomGivenName, randomFamilyName, randomBirthDate, EE))
+        .thenReturn(new ZmrRegisterResult(Collections.emptyList(), zmrProcessId));
+
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomPersonalIdentifier_EE))
+        .thenReturn(Collections.emptyList());
+    Mockito.when(ernpClient.searchWithMds(randomGivenName, randomFamilyName, randomBirthDate))
+        .thenReturn(Collections.singletonList(randomRegisterResult()));
 
     // execute test
     task.execute(pendingReq, executionContext);
@@ -618,35 +535,28 @@ public class InitialSearchTaskTest {
   }
 
   /**
-   * Find one match with MDS search in ZMR. 
+   * Find one match with MDS search in ZMR.
    */
   @Test
   @DirtiesContext
   public void resultByMdsSearch_Zmr() throws TaskExecutionException, EidasSAuthenticationException {
-    BigInteger zmrProcessId = generateRandomProcessId();    
-    Mockito.when(zmrClient.searchWithPersonIdentifier(null, randomPsydonym, DE)).thenReturn(
-        new ZmrRegisterResult(Collections.emptyList(), zmrProcessId)); 
-    Mockito.when(zmrClient.searchWithMds(zmrProcessId, randomGivenName, randomFamilyName, randomBirthDate, DE)).thenReturn(
-        new ZmrRegisterResult(Collections.singletonList(RegisterResult.builder()
-            .bpk(randomBpk)
-            .pseudonym(Arrays.asList(randomPsydonym))
-            .givenName(randomGivenName)
-            .familyName(randomFamilyName)
-            .dateOfBirth(randomBirthDate)
-            .build()),
-            zmrProcessId));
-    Mockito.when(zmrClient.update(any(), any(), any())).thenThrow(
-        new IllegalStateException("ZMR update should not be neccessary"));
-    
+    BigInteger zmrProcessId = generateRandomProcessId();
+    Mockito.when(zmrClient.searchWithPersonIdentifier(null, randomPseudonym, DE))
+        .thenReturn(new ZmrRegisterResult(Collections.emptyList(), zmrProcessId));
+    Mockito.when(zmrClient.searchWithMds(zmrProcessId, randomGivenName, randomFamilyName, randomBirthDate, DE))
+        .thenReturn(zmrRegisterResult(randomRegisterResult(), zmrProcessId));
+    Mockito.when(zmrClient.update(any(), any(), any()))
+        .thenThrow(new IllegalStateException("ZMR update should not be neccessary"));
+
     Mockito.when(ernpClient.searchWithPersonIdentifier(randomPersonalIdentifier_DE)).thenReturn(Collections.emptyList());
-    
-    
+
+
     // execute test
     task.execute(pendingReq, executionContext);
 
     // validate state
     checkIntermediateResult(1);
-    
+
   }
 
   /**
@@ -655,66 +565,76 @@ public class InitialSearchTaskTest {
   @Test
   @DirtiesContext
   public void multipleResultsByMdsSearch() throws TaskExecutionException, EidasSAuthenticationException {
-    BigInteger zmrProcessId = generateRandomProcessId();    
-    Mockito.when(zmrClient.searchWithPersonIdentifier(null, randomPsydonym, DE)).thenReturn(
-        new ZmrRegisterResult(Collections.emptyList(), zmrProcessId)); 
-    Mockito.when(zmrClient.searchCountrySpecific(eq(zmrProcessId), any(PersonSuchenRequest.class), any(String.class))).thenReturn(
-        new ZmrRegisterResult(Collections.emptyList(), zmrProcessId));
-    Mockito.when(zmrClient.searchWithMds(zmrProcessId, randomGivenName, randomFamilyName, randomBirthDate, DE)).thenReturn(
-        new ZmrRegisterResult(Arrays.asList(
-            RegisterResult.builder()
-                .bpk(randomBpk + "2")
-                .pseudonym(Arrays.asList(randomPsydonym))
-                .givenName(randomGivenName)
-                .familyName(randomFamilyName)
-                .dateOfBirth(randomBirthDate)
-                .build()), 
-            zmrProcessId));
-    Mockito.when(zmrClient.update(any(), any(), any())).thenThrow(
-        new IllegalStateException("ZMR update should not be neccessary"));
-    
-    Mockito.when(ernpClient.searchWithPersonIdentifier(randomPersonalIdentifier_DE)).thenReturn(Collections.emptyList());            
-    Mockito.when(ernpClient.searchWithMds(randomGivenName, randomFamilyName, randomBirthDate)).thenReturn(
-        Arrays.asList(
-            RegisterResult.builder()
-                .bpk(randomBpk)
-                .pseudonym(Arrays.asList(randomPsydonym))
-                .givenName(randomGivenName)
-                .familyName(randomFamilyName)
-                .dateOfBirth(randomBirthDate)
-                .build(),
-            RegisterResult.builder()
-                .bpk(randomBpk + "1")
-                .pseudonym(Arrays.asList(randomPsydonym))
-                .givenName(randomGivenName)
-                .familyName(randomFamilyName)
-                .dateOfBirth(randomBirthDate)
-                .build()));
+    BigInteger zmrProcessId = generateRandomProcessId();
+    Mockito.when(zmrClient.searchWithPersonIdentifier(null, randomPseudonym, DE))
+        .thenReturn(new ZmrRegisterResult(Collections.emptyList(), zmrProcessId));
+    Mockito.when(zmrClient.searchCountrySpecific(eq(zmrProcessId), any(PersonSuchenRequest.class), any(String.class)))
+        .thenReturn(new ZmrRegisterResult(Collections.emptyList(), zmrProcessId));
+    Mockito.when(zmrClient.searchWithMds(zmrProcessId, randomGivenName, randomFamilyName, randomBirthDate, DE))
+        .thenReturn(zmrRegisterResult(randomRegisterResult(randomBpk + "2"), zmrProcessId));
+    Mockito.when(zmrClient.update(any(), any(), any()))
+        .thenThrow(new IllegalStateException("ZMR update should not be neccessary"));
+
+    Mockito.when(ernpClient.searchWithPersonIdentifier(randomPersonalIdentifier_DE))
+        .thenReturn(Collections.emptyList());
+    Mockito.when(ernpClient.searchWithMds(randomGivenName, randomFamilyName, randomBirthDate))
+        .thenReturn(Arrays.asList(randomRegisterResult(), randomRegisterResult(randomBpk + "1")));
 
     // execute test
     task.execute(pendingReq, executionContext);
 
     // validate state
     checkIntermediateResult(3);
-    
+
+  }
+
+  @NotNull
+  private ZmrRegisterResult zmrRegisterResult(RegisterResult registerResult, BigInteger processId) {
+    return new ZmrRegisterResult(Collections.singletonList(registerResult), processId);
+  }
+
+  @NotNull
+  private ZmrRegisterResult zmrRegisterResult(RegisterResult registerResult) {
+    return zmrRegisterResult(registerResult, generateRandomProcessId());
+  }
+
+  @NotNull
+  private RegisterResult randomRegisterResult() {
+    return randomRegisterResult(randomGivenName, randomBpk);
+  }
+
+  @NotNull
+  private RegisterResult randomRegisterResult(String randomBpk) {
+    return randomRegisterResult(randomGivenName, randomBpk);
+  }
+
+  @NotNull
+  private RegisterResult randomRegisterResult(String randomGivenName, String randomBpk) {
+    return RegisterResult.builder()
+        .bpk(randomBpk)
+        .pseudonym(Collections.singletonList(randomPseudonym))
+        .givenName(randomGivenName)
+        .familyName(randomFamilyName)
+        .dateOfBirth(randomBirthDate)
+        .build();
   }
 
   @NotNull
   private AuthenticationResponse buildDummyAuthResponseRandomPerson() throws URISyntaxException {
-    return buildDummyAuthResponse(randomGivenName, randomFamilyName, DE_ST + randomPsydonym, randomBirthDate);
+    return buildDummyAuthResponse(randomGivenName, randomFamilyName, DE_ST + randomPseudonym, randomBirthDate);
   }
 
   private BigInteger generateRandomProcessId() {
     return new BigInteger(RandomStringUtils.randomNumeric(10));
-    
+
   }
-  
-  private void checkMatchingSuccessState(IRequest pendingReq, String bpk, String familyName, String givenName, 
-      String birhday, String countryCode) {    
-    assertNull("Find intermediate matching data but matching should be finished", 
-        MatchingTaskUtils.getIntermediateMatchingResult(pendingReq));    
+
+  private void checkMatchingSuccessState(IRequest pendingReq, String bpk, String familyName, String givenName,
+                                         String birhday, String countryCode) {
+    assertNull("Find intermediate matching data but matching should be finished",
+        MatchingTaskUtils.getIntermediateMatchingResult(pendingReq));
     assertNotNull("find no eIDAS inbut data", MatchingTaskUtils.getInitialEidasData(pendingReq));
-    
+
     MatchedPersonResult personInfo = MatchingTaskUtils.getFinalMatchingResult(pendingReq);
     assertNotNull("no final matching result", personInfo);
     assertEquals("wrong bpk", bpk, personInfo.getBpk());
@@ -722,25 +642,25 @@ public class InitialSearchTaskTest {
     assertEquals("wrong familyName", familyName, personInfo.getFamilyName());
     assertEquals("wrong dateOfBirth", birhday, personInfo.getDateOfBirth());
     assertEquals("wrong countryCode", countryCode, personInfo.getCountryCode());
-        
+
   }
-  
-  private void checkIntermediateResult(int resultSize) {    
+
+  private void checkIntermediateResult(int resultSize) {
     Boolean transitionGUI = (Boolean) executionContext.get(Constants.TRANSITION_TO_GENERATE_OTHER_LOGIN_METHOD_GUI_TASK);
     Assert.assertTrue("Wrong transition", transitionGUI);
     Boolean transitionErnb = (Boolean) executionContext.get(Constants.TRANSITION_TO_CREATE_NEW_ERNP_ENTRY_TASK);
     Assert.assertNull("Wrong transition", transitionErnb);
-        
-    assertNotNull("find no eIDAS inbut data", MatchingTaskUtils.getInitialEidasData(pendingReq));                    
+
+    assertNotNull("find no eIDAS inbut data", MatchingTaskUtils.getInitialEidasData(pendingReq));
     assertNull("Find final matching data but no match sould be found",
         MatchingTaskUtils.getFinalMatchingResult(pendingReq));
-    
+
     RegisterStatusResults result = MatchingTaskUtils.getIntermediateMatchingResult(pendingReq);
     assertNotNull("Find no intermediate matching data", result);
     assertEquals("wrong intermediate result size", resultSize, result.getResultCount());
-    
+
   }
-  
+
   @NotNull
   private AuthenticationResponse buildDummyAuthResponse(String givenName, String familyName, String identifier,
                                                         String dateOfBirth) throws URISyntaxException {
-- 
cgit v1.2.3


From 594114759ea7df52a2a21db91e20272f3aa5a3c9 Mon Sep 17 00:00:00 2001
From: Christian Kollmann <christian.kollmann@a-sit.at>
Date: Mon, 12 Jul 2021 14:04:05 +0200
Subject: Implement stub for step 7b in matching process

---
 .../eidas/v2/service/RegisterSearchService.java    | 176 ++++++++++++---------
 .../auth/eidas/v2/tasks/AlternativeSearchTask.java |  32 ++--
 2 files changed, 119 insertions(+), 89 deletions(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/service/RegisterSearchService.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/service/RegisterSearchService.java
index b5e83490..fc26b214 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/service/RegisterSearchService.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/service/RegisterSearchService.java
@@ -1,15 +1,5 @@
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.service;
 
-import java.math.BigInteger;
-import java.util.Arrays;
-import java.util.Collections;
-import java.util.List;
-
-import javax.annotation.Nonnull;
-
-import org.jetbrains.annotations.Nullable;
-import org.springframework.stereotype.Service;
-
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.clients.zmr.IZmrClient;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.clients.zmr.ZmrSoapClient.ZmrRegisterResult;
 import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.RegisterResult;
@@ -23,6 +13,14 @@ import lombok.AllArgsConstructor;
 import lombok.Getter;
 import lombok.RequiredArgsConstructor;
 import lombok.extern.slf4j.Slf4j;
+import org.jetbrains.annotations.Nullable;
+import org.springframework.stereotype.Service;
+
+import javax.annotation.Nonnull;
+import java.math.BigInteger;
+import java.util.Arrays;
+import java.util.Collections;
+import java.util.List;
 
 @Slf4j
 @Service("registerSearchService")
@@ -32,16 +30,16 @@ public class RegisterSearchService {
   private final IErnpClient ernpClient;
 
   private final List<CountrySpecificDetailSearchProcessor> handlers;
-  
+
   /**
    * Service that combines ZMR and ERnP register search operations.
-   * 
-   * @param handlers Available country-specific search processors
-   * @param zmrClient ZMR client
+   *
+   * @param handlers   Available country-specific search processors
+   * @param zmrClient  ZMR client
    * @param ernpClient ERnP client
    */
   public RegisterSearchService(List<CountrySpecificDetailSearchProcessor> handlers, IZmrClient zmrClient,
-      IErnpClient ernpClient) {
+                               IErnpClient ernpClient) {
     this.zmrClient = zmrClient;
     this.ernpClient = ernpClient;
     this.handlers = handlers;
@@ -52,7 +50,7 @@ public class RegisterSearchService {
   /**
    * Search with Person Identifier (eIDAS Pseudonym) in ZMR and ERnP.
    *
-   * @param eidasData            Received eIDAS data
+   * @param eidasData Received eIDAS data
    * @throws WorkflowException In case of a register interaction error
    */
   @Nonnull
@@ -60,15 +58,15 @@ public class RegisterSearchService {
       throws WorkflowException {
     try {
       final ZmrRegisterResult resultsZmr = zmrClient.searchWithPersonIdentifier(
-          null, eidasData.getPseudonym(), eidasData.getCitizenCountryCode());            
+          null, eidasData.getPseudonym(), eidasData.getCitizenCountryCode());
       final List<RegisterResult> resultsErnp = ernpClient.searchWithPersonIdentifier(
           eidasData.getPersonalIdentifier());
-            
-      return new RegisterStatusResults(new RegisterOperationStatus(resultsZmr.getProcessId()), 
+
+      return new RegisterStatusResults(new RegisterOperationStatus(resultsZmr.getProcessId()),
           resultsZmr.getPersonResult(), resultsErnp);
 
     } catch (final EidasSAuthenticationException e) {
-      throw new WorkflowException("searchWithPersonalIdentifier", e.getMessage(), 
+      throw new WorkflowException("searchWithPersonalIdentifier", e.getMessage(),
           !(e instanceof ZmrCommunicationException), e);
 
     }
@@ -86,18 +84,18 @@ public class RegisterSearchService {
       throws WorkflowException {
     try {
       final ZmrRegisterResult resultsZmr =
-          zmrClient.searchWithMds(operationStatus.getZmrProcessId(), eidasData.getGivenName(), 
+          zmrClient.searchWithMds(operationStatus.getZmrProcessId(), eidasData.getGivenName(),
               eidasData.getFamilyName(), eidasData.getDateOfBirth(), eidasData.getCitizenCountryCode());
-      
+
       final List<RegisterResult> resultsErnp =
           ernpClient.searchWithMds(eidasData.getGivenName(), eidasData.getFamilyName(), eidasData
               .getDateOfBirth());
-      
-      return new RegisterStatusResults(new RegisterOperationStatus(resultsZmr.getProcessId()), 
+
+      return new RegisterStatusResults(new RegisterOperationStatus(resultsZmr.getProcessId()),
           resultsZmr.getPersonResult(), resultsErnp);
 
     } catch (final EidasSAuthenticationException e) {
-      throw new WorkflowException("searchWithMDSOnly", e.getMessage(), 
+      throw new WorkflowException("searchWithMDSOnly", e.getMessage(),
           !(e instanceof ZmrCommunicationException), e);
 
     }
@@ -106,22 +104,21 @@ public class RegisterSearchService {
   /**
    * Search with country-specific parameters based on information from available
    * {@link CountrySpecificDetailSearchProcessor} implementations.
-   * 
+   *
    * @param operationStatus Current register-operation status that contains processing informations
-   * @param eidasData Receive eIDAS eID information
+   * @param eidasData       Receive eIDAS eID information
    * @return Results from ZMR or ERnP search
    * @throws WorkflowException In case of a register interaction error
    */
   @Nonnull
-  public RegisterStatusResults searchWithCountrySpecifics(RegisterOperationStatus operationStatus, 
-      SimpleEidasData eidasData) throws WorkflowException {
+  public RegisterStatusResults searchWithCountrySpecifics(RegisterOperationStatus operationStatus,
+                                                          SimpleEidasData eidasData) throws WorkflowException {
     try {
-      @Nullable
-      final CountrySpecificDetailSearchProcessor ccSpecificProcessor = findSpecificProcessor(eidasData);
+      @Nullable final CountrySpecificDetailSearchProcessor ccSpecificProcessor = findSpecificProcessor(eidasData);
       if (ccSpecificProcessor != null) {
         log.debug("Selecting country-specific search processor: {}", ccSpecificProcessor.getName());
         final ZmrRegisterResult resultsZmr =
-            zmrClient.searchCountrySpecific(operationStatus.getZmrProcessId(), 
+            zmrClient.searchCountrySpecific(operationStatus.getZmrProcessId(),
                 ccSpecificProcessor.generateSearchRequest(eidasData),
                 eidasData.getCitizenCountryCode());
 
@@ -134,7 +131,7 @@ public class RegisterSearchService {
       }
 
     } catch (final EidasSAuthenticationException e) {
-      throw new WorkflowException("searchWithCountrySpecifics", e.getMessage(), 
+      throw new WorkflowException("searchWithCountrySpecifics", e.getMessage(),
           !(e instanceof ZmrCommunicationException), e);
 
     }
@@ -142,17 +139,17 @@ public class RegisterSearchService {
 
   /**
    * Search with residence infos.
-   * 
+   *
    * @param operationStatus Current register-operation status that contains processing informations
-   * @param zipcode Provided Zipcode
-   * @param city Provided City
-   * @param street Provided street 
+   * @param zipcode         Provided Zipcode
+   * @param city            Provided City
+   * @param street          Provided street
    * @return Results from ZMR or ERnP search
    */
-  public RegisterStatusResults searchWithResidence(RegisterOperationStatus operationStatus, SimpleEidasData eidasData, 
-      String zipcode, String city, String street) {
+  public RegisterStatusResults searchWithResidence(RegisterOperationStatus operationStatus, SimpleEidasData eidasData,
+                                                   String zipcode, String city, String street) {
     final ZmrRegisterResult resultsZmr = zmrClient.searchWithResidenceData(
-        operationStatus.getZmrProcessId(), eidasData.getGivenName(), eidasData.getFamilyName(), 
+        operationStatus.getZmrProcessId(), eidasData.getGivenName(), eidasData.getFamilyName(),
         eidasData.getDateOfBirth(), zipcode, city, street);
     return new RegisterStatusResults(operationStatus, resultsZmr.getPersonResult(), Collections.emptyList());
 
@@ -160,41 +157,71 @@ public class RegisterSearchService {
 
   /**
    * Automatic process to fix the register entries.
+   * Called when the initial eIDAS authn leads to a match in a register.
    *
    * @param specificSearchResult Result of last register search
-   * @param eidasData            Received eidas data
-   * @return 
+   * @param initialEidasData     Received eidas data from initial authn
+   * @return
    */
   public RegisterStatusResults step7aKittProcess(RegisterStatusResults specificSearchResult,
-      SimpleEidasData eidasData) throws WorkflowException {
+                                                 SimpleEidasData initialEidasData) throws WorkflowException {
     log.trace("Starting step7aKittProcess");
     // TODO verify with which data this method gets called
     if (specificSearchResult.getResultCount() != 1) {
       throw new WorkflowException("step7aKittProcess", "getResultCount() != 1");
-
     }
     try {
       if (specificSearchResult.getResultsZmr().size() == 1) {
         final ZmrRegisterResult resultsZmr = zmrClient.update(
-            specificSearchResult.getOperationStatus().getZmrProcessId(),          
-            specificSearchResult.getResultsZmr().get(0), eidasData);
-        return new RegisterStatusResults(specificSearchResult.getOperationStatus(), 
+            specificSearchResult.getOperationStatus().getZmrProcessId(),
+            specificSearchResult.getResultsZmr().get(0), initialEidasData);
+        return new RegisterStatusResults(specificSearchResult.getOperationStatus(),
             resultsZmr.getPersonResult(), Collections.emptyList());
-      
       } else {
-        return new RegisterStatusResults(specificSearchResult.getOperationStatus(), Collections.emptyList(), 
-            Arrays.asList(ernpClient.update(specificSearchResult.getResultsErnp().get(0), eidasData)));
-      
+        return new RegisterStatusResults(specificSearchResult.getOperationStatus(), Collections.emptyList(),
+            Arrays.asList(ernpClient.update(specificSearchResult.getResultsErnp().get(0), initialEidasData)));
       }
-      
     } catch (final EidasSAuthenticationException e) {
-      throw new WorkflowException("kittMatchedIdentitiess", e.getMessage(), 
+      throw new WorkflowException("kittMatchedIdentitiess", e.getMessage(),
           !(e instanceof ZmrCommunicationException), e);
+    }
+  }
 
+  /**
+   * Automatic process to fix the register entries.
+   * Called when the alternative eIDAS authn leads to a match in a register.
+   *
+   * @param specificSearchResult Result of last register search
+   * @param initialEidasData     Received eidas data from initial authentication
+   * @param altEidasData         Received eidas data from alternative authentication
+   * @return
+   */
+  public RegisterStatusResults step7bKittProcess(RegisterStatusResults specificSearchResult,
+                                                 SimpleEidasData initialEidasData, SimpleEidasData altEidasData)
+      throws WorkflowException {
+    log.trace("Starting step7bKittProcess");
+    // TODO What to do with the initialEidasData?
+    // TODO verify with which data this method gets called
+    if (specificSearchResult.getResultCount() != 1) {
+      throw new WorkflowException("step7bKittProcess", "getResultCount() != 1");
+    }
+    try {
+      if (specificSearchResult.getResultsZmr().size() == 1) {
+        final ZmrRegisterResult resultsZmr = zmrClient.update(
+            specificSearchResult.getOperationStatus().getZmrProcessId(),
+            specificSearchResult.getResultsZmr().get(0), altEidasData);
+        return new RegisterStatusResults(specificSearchResult.getOperationStatus(),
+            resultsZmr.getPersonResult(), Collections.emptyList());
+      } else {
+        return new RegisterStatusResults(specificSearchResult.getOperationStatus(), Collections.emptyList(),
+            Arrays.asList(ernpClient.update(specificSearchResult.getResultsErnp().get(0), altEidasData)));
+      }
+    } catch (final EidasSAuthenticationException e) {
+      throw new WorkflowException("kittMatchedIdentitiess", e.getMessage(),
+          !(e instanceof ZmrCommunicationException), e);
     }
-        
   }
-  
+
   @Nullable
   private CountrySpecificDetailSearchProcessor findSpecificProcessor(SimpleEidasData eidasData) {
     final String citizenCountry = eidasData.getCitizenCountryCode();
@@ -206,55 +233,52 @@ public class RegisterSearchService {
     }
     return null;
   }
-  
+
   /**
    * Register releated information that are needed for any request.
-   * 
-   * @author tlenz
    *
+   * @author tlenz
    */
   @AllArgsConstructor
   @Getter
   public static class RegisterOperationStatus {
-    
+
     /**
      * ZMR internal processId that is required for any further request in the same process.
      */
     private BigInteger zmrProcessId;
-    
-    
+
+
   }
-    
-  
-  
+
+
   /**
    * Response container for {@link RegisterSearchService} that holds a set of {@link RegisterResult}.
-   * 
-   * @author tlenz
    *
+   * @author tlenz
    */
   @Getter
   @RequiredArgsConstructor
-  public static class RegisterStatusResults {   
+  public static class RegisterStatusResults {
     /**
      * Operation status for this result.
      */
     private final RegisterOperationStatus operationStatus;
-    
+
     /**
      * Current ZMR search result.
      */
     private final List<RegisterResult> resultsZmr;
-    
+
     /**
      * Current ERnP search result.
      */
     private final List<RegisterResult> resultsErnp;
-    
-    
+
+
     /**
      * Get sum of ZMR and ERnP results.
-     * 
+     *
      * @return number of results
      */
     public int getResultCount() {
@@ -270,7 +294,7 @@ public class RegisterSearchService {
     public String getBpk() throws WorkflowException {
       if (getResultCount() != 1) {
         throw new WorkflowException("readRegisterResults", "getResultCount() != 1");
-        
+
       }
       return getResult().getBpk();
     }
@@ -287,13 +311,13 @@ public class RegisterSearchService {
       }
       if (resultsZmr.size() == 1) {
         return resultsZmr.get(0);
-        
+
       } else {
         return resultsErnp.get(0);
-        
+
       }
     }
-    
+
   }
 
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/AlternativeSearchTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/AlternativeSearchTask.java
index 135eeec1..38a7076a 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/AlternativeSearchTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/AlternativeSearchTask.java
@@ -53,7 +53,8 @@ import static at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants.TRANSIT
  * Searches registers (ERnP and ZMR) after alternative eIDAS authn, before adding person to SZR.
  * Input:
  * <ul>
- *     <li>{@link Constants#DATA_FULL_EIDAS_RESPONSE_ALTERNATIVE}</li>
+ *     <li>{@link Constants#DATA_FULL_EIDAS_RESPONSE_ALTERNATIVE} data from the alternative eIDAS authn</li>
+ *     <li>{@link Constants#DATA_SIMPLE_EIDAS} data from the initial eIDAS authn</li>
  * </ul>
  * Output:
  * <ul>
@@ -94,8 +95,10 @@ public class AlternativeSearchTask extends AbstractAuthServletTask {
   public void execute(ExecutionContext executionContext, HttpServletRequest request, HttpServletResponse response)
       throws TaskExecutionException {
     try {
-      final SimpleEidasData eidasData = convertEidasAttrToSimpleData();
-      step11RegisterSearchWithPersonIdentifier(executionContext, eidasData);
+      final SimpleEidasData altEidasData = convertEidasAttrToSimpleData();
+      final SimpleEidasData initialEidasData = MatchingTaskUtils.getInitialEidasData(pendingReq);
+      // TODO Verify that altEidasData and initialEidasData "match"?
+      step11RegisterSearchWithPersonIdentifier(executionContext, altEidasData, initialEidasData);
     } catch (WorkflowException e) {
       throw new TaskExecutionException(pendingReq, "Initial search failed", e);
     } catch (final Exception e) {
@@ -105,15 +108,17 @@ public class AlternativeSearchTask extends AbstractAuthServletTask {
   }
 
   private void step11RegisterSearchWithPersonIdentifier(
-      ExecutionContext executionContext, SimpleEidasData eidasData) throws WorkflowException, EaafStorageException {
+      ExecutionContext executionContext, SimpleEidasData initialEidasData, SimpleEidasData altEidasData)
+      throws WorkflowException, EaafStorageException {
     try {
       log.trace("Starting step11RegisterSearchWithPersonIdentifier");
-      RegisterStatusResults searchResult = registerSearchService.searchWithPersonIdentifier(eidasData);
+      RegisterStatusResults searchResult = registerSearchService.searchWithPersonIdentifier(altEidasData);
       int resultCount = searchResult.getResultCount();
       if (resultCount == 0) {
-        step12CountrySpecificSearch(executionContext, searchResult.getOperationStatus(), eidasData);
+        step12CountrySpecificSearch(executionContext, searchResult.getOperationStatus(), initialEidasData,
+            altEidasData);
       } else if (resultCount == 1) {
-        foundMatchFinalizeTask(searchResult, eidasData);
+        foundMatchFinalizeTask(searchResult, altEidasData);
       } else {
         throw new WorkflowException("step11RegisterSearchWithPersonIdentifier",
             "More than one entry with unique personal-identifier", true);
@@ -125,21 +130,22 @@ public class AlternativeSearchTask extends AbstractAuthServletTask {
     }
   }
 
-  private void step12CountrySpecificSearch(
-      ExecutionContext executionContext, RegisterOperationStatus registerOperationStatus, SimpleEidasData eidasData)
+  private void step12CountrySpecificSearch(ExecutionContext executionContext,
+                                           RegisterOperationStatus registerOperationStatus,
+                                           SimpleEidasData initialEidasData,
+                                           SimpleEidasData altEidasData)
       throws EaafStorageException, WorkflowException {
     log.trace("Starting 'step12CountrySpecificSearch' ... ");
     RegisterStatusResults searchResult = registerSearchService.searchWithCountrySpecifics(
-        registerOperationStatus, eidasData);
+        registerOperationStatus, altEidasData);
     if (searchResult.getResultCount() == 0) {
       log.trace("'step12CountrySpecificSearch' ends with no result. Forward to GUI based matching step ... ");
       log.debug("Forward to GUI based matching steps ... ");
       executionContext.put(TRANSITION_TO_GENERATE_OTHER_LOGIN_METHOD_GUI_TASK, true);
     } else if (searchResult.getResultCount() == 1) {
       log.trace("'step12CountrySpecificSearch' finds a person. Forward to 'step7aKittProcess' step ... ");
-      // TODO is step 7b kitt different from step 7a?
-      registerSearchService.step7aKittProcess(searchResult, eidasData);
-      foundMatchFinalizeTask(searchResult, eidasData);
+      registerSearchService.step7bKittProcess(searchResult, initialEidasData, altEidasData);
+      foundMatchFinalizeTask(searchResult, altEidasData);
     } else {
       throw new WorkflowException("step12CountrySpecificSearch",
           "More than one entry with unique country-specific information", true);
-- 
cgit v1.2.3


From 1fdf8a0784c70479fbf59c6c3841faeae290b883 Mon Sep 17 00:00:00 2001
From: Christian Kollmann <christian.kollmann@a-sit.at>
Date: Thu, 15 Jul 2021 14:37:05 +0200
Subject: Verify data of alternative eIDAS authn matches initial authn

---
 .../modules/auth/eidas/v2/dao/SimpleEidasData.java | 28 +++++++++++++++-------
 .../auth/eidas/v2/tasks/AlternativeSearchTask.java | 16 ++++++++++++-
 2 files changed, 34 insertions(+), 10 deletions(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleEidasData.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleEidasData.java
index cedf01e3..35f353f4 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleEidasData.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/dao/SimpleEidasData.java
@@ -38,10 +38,10 @@ public class SimpleEidasData {
    * Full eIDAS personal identifier with prefix.
    */
   private final String personalIdentifier;
-  
+
   /**
    * Citizen country-code from eIDAS personal-identifier.
-   */  
+   */
   private final String citizenCountryCode;
 
   // MDS
@@ -67,11 +67,11 @@ public class SimpleEidasData {
    * @throws WorkflowException if multiple results have been found
    */
   public boolean equalsRegisterData(RegisterResult result) throws WorkflowException {
-    /*TODO: maybe this is check is not valid, because only the minimum data-set (personalIdentifer, givenName, 
+    /*TODO: maybe this is check is not valid, because only the minimum data-set (personalIdentifer, givenName,
      *      familyName, dateOfBirth) has to be always available. Any other attributes are optional.
-     *      This check will always evaluate to false if register has more information as current eIDAS process!!! 
+     *      This check will always evaluate to false if register has more information as current eIDAS process!!!
      */
-    
+
     return new EqualsBuilder()
         .append(result.getGivenName(), givenName)
         .append(result.getFamilyName(), familyName)
@@ -80,10 +80,20 @@ public class SimpleEidasData {
         .append(result.getBirthName(), birthName)
         .append(result.getTaxNumber(), taxNumber)
         .isEquals() && result.getPseudonym().stream()
-            .filter(el -> el.equals(pseudonym))
-            .findFirst()
-            .isPresent();
-    
+            .anyMatch(el -> el.equals(pseudonym));
   }
 
+  /**
+   * Checks if the MDS (<code>givenName</code>, <code>familyName</code>,
+   * <code>dateOfBirth</code>) matches.
+   */
+  public boolean equalsMds(SimpleEidasData other) {
+    return new EqualsBuilder()
+        .append(other.givenName, givenName)
+        .append(other.familyName, familyName)
+        .append(other.dateOfBirth, dateOfBirth)
+        .isEquals();
+  }
+
+
 }
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/AlternativeSearchTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/AlternativeSearchTask.java
index 38a7076a..4705c56b 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/AlternativeSearchTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/AlternativeSearchTask.java
@@ -46,6 +46,7 @@ import org.springframework.stereotype.Component;
 import javax.servlet.http.HttpServletRequest;
 import javax.servlet.http.HttpServletResponse;
 import java.util.Map;
+import java.util.Objects;
 
 import static at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants.TRANSITION_TO_GENERATE_OTHER_LOGIN_METHOD_GUI_TASK;
 
@@ -97,7 +98,7 @@ public class AlternativeSearchTask extends AbstractAuthServletTask {
     try {
       final SimpleEidasData altEidasData = convertEidasAttrToSimpleData();
       final SimpleEidasData initialEidasData = MatchingTaskUtils.getInitialEidasData(pendingReq);
-      // TODO Verify that altEidasData and initialEidasData "match"?
+      verifyAlternativeEidasData(altEidasData, initialEidasData);
       step11RegisterSearchWithPersonIdentifier(executionContext, altEidasData, initialEidasData);
     } catch (WorkflowException e) {
       throw new TaskExecutionException(pendingReq, "Initial search failed", e);
@@ -107,6 +108,19 @@ public class AlternativeSearchTask extends AbstractAuthServletTask {
     }
   }
 
+  private void verifyAlternativeEidasData(SimpleEidasData altEidasData, SimpleEidasData initialEidasData)
+      throws WorkflowException {
+    if (initialEidasData == null) {
+      throw new WorkflowException("step11", "No initial eIDAS authn data");
+    }
+    if (!Objects.equals(altEidasData.getCitizenCountryCode(), initialEidasData.getCitizenCountryCode())) {
+      throw new WorkflowException("step11", "Country Code of alternative eIDAS authn not matching", true);
+    }
+    if (!altEidasData.equalsMds(initialEidasData)) {
+      throw new WorkflowException("step11", "MDS of alternative eIDAS authn does not match initial authn", true);
+    }
+  }
+
   private void step11RegisterSearchWithPersonIdentifier(
       ExecutionContext executionContext, SimpleEidasData initialEidasData, SimpleEidasData altEidasData)
       throws WorkflowException, EaafStorageException {
-- 
cgit v1.2.3


From 23eb321de35fee823fb9270a7371d6549b3430d2 Mon Sep 17 00:00:00 2001
From: Christian Kollmann <christian.kollmann@a-sit.at>
Date: Thu, 15 Jul 2021 15:50:57 +0200
Subject: Update registers with data from initial and alternative eIDAS authn

---
 .../eidas/v2/service/RegisterSearchService.java    | 60 ++++++++++++----------
 1 file changed, 34 insertions(+), 26 deletions(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/service/RegisterSearchService.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/service/RegisterSearchService.java
index fc26b214..cc328b75 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/service/RegisterSearchService.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/service/RegisterSearchService.java
@@ -13,6 +13,7 @@ import lombok.AllArgsConstructor;
 import lombok.Getter;
 import lombok.RequiredArgsConstructor;
 import lombok.extern.slf4j.Slf4j;
+import org.apache.commons.collections4.ListUtils;
 import org.jetbrains.annotations.Nullable;
 import org.springframework.stereotype.Service;
 
@@ -159,27 +160,29 @@ public class RegisterSearchService {
    * Automatic process to fix the register entries.
    * Called when the initial eIDAS authn leads to a match in a register.
    *
-   * @param specificSearchResult Result of last register search
-   * @param initialEidasData     Received eidas data from initial authn
+   * @param registerResult   Result of last register search
+   * @param initialEidasData Received eidas data from initial authn
    * @return
    */
-  public RegisterStatusResults step7aKittProcess(RegisterStatusResults specificSearchResult,
+  public RegisterStatusResults step7aKittProcess(RegisterStatusResults registerResult,
                                                  SimpleEidasData initialEidasData) throws WorkflowException {
     log.trace("Starting step7aKittProcess");
     // TODO verify with which data this method gets called
-    if (specificSearchResult.getResultCount() != 1) {
+    if (registerResult.getResultCount() != 1) {
       throw new WorkflowException("step7aKittProcess", "getResultCount() != 1");
     }
     try {
-      if (specificSearchResult.getResultsZmr().size() == 1) {
-        final ZmrRegisterResult resultsZmr = zmrClient.update(
-            specificSearchResult.getOperationStatus().getZmrProcessId(),
-            specificSearchResult.getResultsZmr().get(0), initialEidasData);
-        return new RegisterStatusResults(specificSearchResult.getOperationStatus(),
-            resultsZmr.getPersonResult(), Collections.emptyList());
+      if (registerResult.getResultsZmr().size() == 1) {
+        RegisterResult entryZmr = registerResult.getResultsZmr().get(0);
+        ZmrRegisterResult updateZmr = zmrClient
+            .update(registerResult.getOperationStatus().getZmrProcessId(), entryZmr, initialEidasData);
+        return new RegisterStatusResults(registerResult.getOperationStatus(),
+            updateZmr.getPersonResult(), Collections.emptyList());
       } else {
-        return new RegisterStatusResults(specificSearchResult.getOperationStatus(), Collections.emptyList(),
-            Arrays.asList(ernpClient.update(specificSearchResult.getResultsErnp().get(0), initialEidasData)));
+        RegisterResult entryErnp = registerResult.getResultsErnp().get(0);
+        RegisterResult updateErnp = ernpClient.update(entryErnp, initialEidasData);
+        return new RegisterStatusResults(registerResult.getOperationStatus(), Collections.emptyList(),
+            Collections.singletonList(updateErnp));
       }
     } catch (final EidasSAuthenticationException e) {
       throw new WorkflowException("kittMatchedIdentitiess", e.getMessage(),
@@ -191,30 +194,35 @@ public class RegisterSearchService {
    * Automatic process to fix the register entries.
    * Called when the alternative eIDAS authn leads to a match in a register.
    *
-   * @param specificSearchResult Result of last register search
-   * @param initialEidasData     Received eidas data from initial authentication
-   * @param altEidasData         Received eidas data from alternative authentication
+   * @param registerResult   Result of last register search
+   * @param initialEidasData Received eidas data from initial authentication
+   * @param altEidasData     Received eidas data from alternative authentication
    * @return
    */
-  public RegisterStatusResults step7bKittProcess(RegisterStatusResults specificSearchResult,
+  public RegisterStatusResults step7bKittProcess(RegisterStatusResults registerResult,
                                                  SimpleEidasData initialEidasData, SimpleEidasData altEidasData)
       throws WorkflowException {
     log.trace("Starting step7bKittProcess");
-    // TODO What to do with the initialEidasData?
     // TODO verify with which data this method gets called
-    if (specificSearchResult.getResultCount() != 1) {
+    if (registerResult.getResultCount() != 1) {
       throw new WorkflowException("step7bKittProcess", "getResultCount() != 1");
     }
     try {
-      if (specificSearchResult.getResultsZmr().size() == 1) {
-        final ZmrRegisterResult resultsZmr = zmrClient.update(
-            specificSearchResult.getOperationStatus().getZmrProcessId(),
-            specificSearchResult.getResultsZmr().get(0), altEidasData);
-        return new RegisterStatusResults(specificSearchResult.getOperationStatus(),
-            resultsZmr.getPersonResult(), Collections.emptyList());
+      if (registerResult.getResultsZmr().size() == 1) {
+        RegisterResult entryZmr = registerResult.getResultsZmr().get(0);
+        ZmrRegisterResult updateAlt = zmrClient
+            .update(registerResult.getOperationStatus().getZmrProcessId(), entryZmr, altEidasData);
+        ZmrRegisterResult updateInitial = zmrClient
+            .update(registerResult.getOperationStatus().getZmrProcessId(), entryZmr, initialEidasData);
+        return new RegisterStatusResults(registerResult.getOperationStatus(),
+            ListUtils.union(updateAlt.getPersonResult(), updateInitial.getPersonResult()),
+            Collections.emptyList());
       } else {
-        return new RegisterStatusResults(specificSearchResult.getOperationStatus(), Collections.emptyList(),
-            Arrays.asList(ernpClient.update(specificSearchResult.getResultsErnp().get(0), altEidasData)));
+        RegisterResult entryErnp = registerResult.getResultsErnp().get(0);
+        RegisterResult updateAlt = ernpClient.update(entryErnp, altEidasData);
+        RegisterResult updateInitial = ernpClient.update(entryErnp, initialEidasData);
+        return new RegisterStatusResults(registerResult.getOperationStatus(), Collections.emptyList(),
+            Arrays.asList(updateAlt, updateInitial));
       }
     } catch (final EidasSAuthenticationException e) {
       throw new WorkflowException("kittMatchedIdentitiess", e.getMessage(),
-- 
cgit v1.2.3


From ca81755078d997548481da80a51c1f0824a9b296 Mon Sep 17 00:00:00 2001
From: Christian Kollmann <christian.kollmann@a-sit.at>
Date: Thu, 15 Jul 2021 15:58:15 +0200
Subject: Add convenience constructors for RegisterStatusResults

---
 .../eidas/v2/service/RegisterSearchService.java    | 36 +++++++++++++---------
 1 file changed, 22 insertions(+), 14 deletions(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/service/RegisterSearchService.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/service/RegisterSearchService.java
index cc328b75..232b1d11 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/service/RegisterSearchService.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/service/RegisterSearchService.java
@@ -63,8 +63,7 @@ public class RegisterSearchService {
       final List<RegisterResult> resultsErnp = ernpClient.searchWithPersonIdentifier(
           eidasData.getPersonalIdentifier());
 
-      return new RegisterStatusResults(new RegisterOperationStatus(resultsZmr.getProcessId()),
-          resultsZmr.getPersonResult(), resultsErnp);
+      return RegisterStatusResults.fromZmrAndErnp(resultsZmr, resultsErnp);
 
     } catch (final EidasSAuthenticationException e) {
       throw new WorkflowException("searchWithPersonalIdentifier", e.getMessage(),
@@ -92,8 +91,7 @@ public class RegisterSearchService {
           ernpClient.searchWithMds(eidasData.getGivenName(), eidasData.getFamilyName(), eidasData
               .getDateOfBirth());
 
-      return new RegisterStatusResults(new RegisterOperationStatus(resultsZmr.getProcessId()),
-          resultsZmr.getPersonResult(), resultsErnp);
+      return RegisterStatusResults.fromZmrAndErnp(resultsZmr, resultsErnp);
 
     } catch (final EidasSAuthenticationException e) {
       throw new WorkflowException("searchWithMDSOnly", e.getMessage(),
@@ -122,12 +120,11 @@ public class RegisterSearchService {
             zmrClient.searchCountrySpecific(operationStatus.getZmrProcessId(),
                 ccSpecificProcessor.generateSearchRequest(eidasData),
                 eidasData.getCitizenCountryCode());
-
-        // TODO: add search procesfor for ERnP searching
-        return new RegisterStatusResults(operationStatus, resultsZmr.getPersonResult(), Collections.emptyList());
+        return RegisterStatusResults.fromZmr(resultsZmr);
 
       } else {
-        return new RegisterStatusResults(operationStatus, Collections.emptyList(), Collections.emptyList());
+        // TODO: add search procesfor for ERnP searching
+        return RegisterStatusResults.fromErnp(operationStatus, Collections.emptyList());
 
       }
 
@@ -152,7 +149,7 @@ public class RegisterSearchService {
     final ZmrRegisterResult resultsZmr = zmrClient.searchWithResidenceData(
         operationStatus.getZmrProcessId(), eidasData.getGivenName(), eidasData.getFamilyName(),
         eidasData.getDateOfBirth(), zipcode, city, street);
-    return new RegisterStatusResults(operationStatus, resultsZmr.getPersonResult(), Collections.emptyList());
+    return RegisterStatusResults.fromZmr(resultsZmr);
 
   }
 
@@ -176,13 +173,11 @@ public class RegisterSearchService {
         RegisterResult entryZmr = registerResult.getResultsZmr().get(0);
         ZmrRegisterResult updateZmr = zmrClient
             .update(registerResult.getOperationStatus().getZmrProcessId(), entryZmr, initialEidasData);
-        return new RegisterStatusResults(registerResult.getOperationStatus(),
-            updateZmr.getPersonResult(), Collections.emptyList());
+        return RegisterStatusResults.fromZmr(updateZmr);
       } else {
         RegisterResult entryErnp = registerResult.getResultsErnp().get(0);
         RegisterResult updateErnp = ernpClient.update(entryErnp, initialEidasData);
-        return new RegisterStatusResults(registerResult.getOperationStatus(), Collections.emptyList(),
-            Collections.singletonList(updateErnp));
+        return RegisterStatusResults.fromErnp(registerResult.operationStatus, Collections.singletonList(updateErnp));
       }
     } catch (final EidasSAuthenticationException e) {
       throw new WorkflowException("kittMatchedIdentitiess", e.getMessage(),
@@ -283,7 +278,6 @@ public class RegisterSearchService {
      */
     private final List<RegisterResult> resultsErnp;
 
-
     /**
      * Get sum of ZMR and ERnP results.
      *
@@ -326,6 +320,20 @@ public class RegisterSearchService {
       }
     }
 
+    static RegisterStatusResults fromZmr(ZmrRegisterResult result) {
+      return new RegisterStatusResults(new RegisterOperationStatus(result.getProcessId()),
+          result.getPersonResult(), Collections.emptyList());
+    }
+
+    static RegisterStatusResults fromZmrAndErnp(ZmrRegisterResult result, List<RegisterResult> resultsErnp) {
+      return new RegisterStatusResults(new RegisterOperationStatus(result.getProcessId()),
+          result.getPersonResult(), resultsErnp);
+    }
+
+    static RegisterStatusResults fromErnp(RegisterOperationStatus status, List<RegisterResult> resultsErnp) {
+      return new RegisterStatusResults(status, Collections.emptyList(), resultsErnp);
+    }
+
   }
 
 }
-- 
cgit v1.2.3


From 802816a345059aa04c779cde246fd6cb2a2967fe Mon Sep 17 00:00:00 2001
From: Thomas <>
Date: Mon, 26 Jul 2021 10:33:21 +0200
Subject: update ZMR client WSDL to new version and refactor code to new API

---
 .../auth/eidas/v2/clients/zmr/ZmrSoapClient.java   | 24 ++++++-------
 .../handler/DeSpecificDetailSearchProcessor.java   |  2 +-
 .../eidas/v2/tasks/GenerateAuthnRequestTask.java   | 27 ++++++++-------
 .../zmr_client/xsd/allgemein/BasTabelleAbfrage.xsd | 19 +++++++++-
 .../wsdl/zmr_client/xsd/zmr/ErnpAbfrage.xsd        | 40 +++++++++++++++++++---
 .../wsdl/zmr_client/xsd/zmr/Personensuche.xsd      |  2 +-
 .../xsd/zmr/entities/EidasIdentitaet.xsd           | 27 ++++++++-------
 7 files changed, 96 insertions(+), 45 deletions(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/clients/zmr/ZmrSoapClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/clients/zmr/ZmrSoapClient.java
index c5f01392..29914e21 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/clients/zmr/ZmrSoapClient.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/clients/zmr/ZmrSoapClient.java
@@ -125,9 +125,9 @@ public class ZmrSoapClient extends AbstractSoapClient implements IZmrClient {
       final PersonSuchenRequest searchPersonReq = new PersonSuchenRequest();
       req.setPersonSuchenRequest(searchPersonReq);
       final EidasSuchdatenType eidasInfos = new EidasSuchdatenType();
-      searchPersonReq.setEidasSuchdaten(eidasInfos);
+      searchPersonReq.getEidasSuchdaten().add(eidasInfos);
       eidasInfos.setEidasArt(Constants.eIDAS_ATTRURN_PERSONALIDENTIFIER);
-      eidasInfos.setEidasNummer(personPseudonym);
+      eidasInfos.setEidasWert(personPseudonym);
 
       // set work-flow client information
       req.setWorkflowInfoClient(generateWorkFlowInfos(PROCESS_SEARCH_PERSONAL_IDENTIFIER, null));
@@ -583,8 +583,8 @@ public class ZmrSoapClient extends AbstractSoapClient implements IZmrClient {
       String eidasAttrurnPersonalidentifier) {
     return person.getEidasIdentitaet().stream()
         .filter(el -> eidasAttrurnPersonalidentifier.equals(el.getEidasArt())
-            && el.getStaatscode3().equals(citizenCountryCode))
-        .map(el -> el.getDokumentNummer())
+            && el.getStaatscode2().equals(citizenCountryCode))
+        .map(el -> el.getEidasWert())
         .collect(Collectors.toList());
 
   }
@@ -603,9 +603,9 @@ public class ZmrSoapClient extends AbstractSoapClient implements IZmrClient {
       String eidasAttrurnPersonalidentifier) {
     return person.getEidasIdentitaet().stream()
         .filter(el -> eidasAttrurnPersonalidentifier.equals(el.getEidasArt())
-            && el.getStaatscode3().equals(citizenCountryCode))
+            && el.getStaatscode2().equals(citizenCountryCode))
         .findFirst()
-        .map(el -> el.getDokumentNummer())
+        .map(el -> el.getEidasWert())
         .orElse(null);
 
   }
@@ -701,30 +701,30 @@ public class ZmrSoapClient extends AbstractSoapClient implements IZmrClient {
     
     // check if eIDAS attribute is already includes an eIDAS-Document 
     boolean alreadyExist = zmrPersonToKitt.getEidasIdentitaet().stream()
-        .filter(el -> el.getDokumentNummer().equals(attrValue) 
+        .filter(el -> el.getEidasWert().equals(attrValue) 
             && el.getEidasArt().equals(attrName)
-            && el.getStaatscode3().equals(citizenCountryCode))     
+            && el.getStaatscode2().equals(citizenCountryCode))     
         .findAny()
         .isPresent();
     
     if (!alreadyExist) {    
       // check eIDAS documents already contains a document with this pair of country-code and attribute-name
       Optional<EidasIdentitaetErgebnisType> oneDocWithNameExists = zmrPersonToKitt.getEidasIdentitaet().stream()
-          .filter(el -> el.getStaatscode3().equals(citizenCountryCode) 
+          .filter(el -> el.getStaatscode2().equals(citizenCountryCode) 
               && el.getEidasArt().equals(attrName))
           .findAny();
       
       if (!allowMoreThanOneEntry && oneDocWithNameExists.isPresent()
-          && !oneDocWithNameExists.get().getDokumentNummer().equals(attrValue)) {                  
+          && !oneDocWithNameExists.get().getEidasWert().equals(attrValue)) {                  
         log.warn("eIDAS document: {} already exists for country: {} but attribute-value does not match. "
             + "Skip update process because no multi-value allowed for this ... ",
             attrName, citizenCountryCode);  
           
       } else {            
         EidasIdentitaetAnlageType eidasDocToAdd = new EidasIdentitaetAnlageType();
-        eidasDocToAdd.setStaatscode3(citizenCountryCode);
+        eidasDocToAdd.setStaatscode2(citizenCountryCode);
         eidasDocToAdd.setEidasArt(attrName);
-        eidasDocToAdd.setEidasNummer(attrValue);        
+        eidasDocToAdd.setEidasWert(attrValue);        
         log.info("Add eIDAS document: {} for country: {} to ZMR person", attrName, citizenCountryCode);
         result.add(eidasDocToAdd);
           
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/DeSpecificDetailSearchProcessor.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/DeSpecificDetailSearchProcessor.java
index 471cb115..b7fb25ea 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/DeSpecificDetailSearchProcessor.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/DeSpecificDetailSearchProcessor.java
@@ -63,7 +63,7 @@ public class DeSpecificDetailSearchProcessor implements CountrySpecificDetailSea
     
     //TODO: how we can search for more than one eIDAS attribute as a Set
     EidasSuchdatenType eidasInfos = new EidasSuchdatenType();
-    req.setEidasSuchdaten(eidasInfos);
+    req.getEidasSuchdaten().add(eidasInfos);
 
     
     return req;
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateAuthnRequestTask.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateAuthnRequestTask.java
index da9c8174..2b3fabd9 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateAuthnRequestTask.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/tasks/GenerateAuthnRequestTask.java
@@ -23,6 +23,20 @@
 
 package at.asitplus.eidas.specific.modules.auth.eidas.v2.tasks;
 
+import java.io.IOException;
+import java.util.UUID;
+
+import javax.servlet.ServletException;
+import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpServletResponse;
+
+import org.apache.commons.lang3.StringUtils;
+import org.jetbrains.annotations.NotNull;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.context.ApplicationContext;
+import org.springframework.stereotype.Component;
+import org.springframework.web.util.UriComponentsBuilder;
+
 import at.asitplus.eidas.specific.connector.MsConnectorEventCodes;
 import at.asitplus.eidas.specific.connector.MsEidasNodeConstants;
 import at.asitplus.eidas.specific.connector.gui.StaticGuiBuilderConfiguration;
@@ -48,18 +62,6 @@ import eu.eidas.specificcommunication.SpecificCommunicationDefinitionBeanNames;
 import eu.eidas.specificcommunication.exception.SpecificCommunicationException;
 import eu.eidas.specificcommunication.protocol.SpecificCommunicationService;
 import lombok.extern.slf4j.Slf4j;
-import org.apache.commons.lang3.StringUtils;
-import org.jetbrains.annotations.NotNull;
-import org.springframework.beans.factory.annotation.Autowired;
-import org.springframework.context.ApplicationContext;
-import org.springframework.stereotype.Component;
-import org.springframework.web.util.UriComponentsBuilder;
-
-import javax.servlet.ServletException;
-import javax.servlet.http.HttpServletRequest;
-import javax.servlet.http.HttpServletResponse;
-import java.io.IOException;
-import java.util.UUID;
 
 
 /**
@@ -249,6 +251,7 @@ public class GenerateAuthnRequestTask extends AbstractAuthServletTask {
     final UriComponentsBuilder redirectUrl = UriComponentsBuilder.fromHttpUrl(forwardUrl);
     redirectUrl.queryParam(EidasParameterKeys.TOKEN.toString(), tokenBase64);
     response.sendRedirect(redirectUrl.build().encode().toString());
+    
   }
 
   private void sendPost(HttpServletRequest request, HttpServletResponse response, String tokenBase64, String forwardUrl)
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/allgemein/BasTabelleAbfrage.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/allgemein/BasTabelleAbfrage.xsd
index 4c2387d7..ca78a990 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/allgemein/BasTabelleAbfrage.xsd
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/allgemein/BasTabelleAbfrage.xsd
@@ -19,6 +19,7 @@ Aenderungshistorie:
 			<xsd:enumeration value="GEMNRBEHKZ" />
 			<xsd:enumeration value="TGEM" />
 			<xsd:enumeration value="GESCHAEFTSPROLLE" />
+			<xsd:enumeration value="RELIGION" />
 		</xsd:restriction>
 	</xsd:simpleType>
 
@@ -51,6 +52,7 @@ Aenderungshistorie:
 				<xsd:element ref="base:GemnrBehkz" minOccurs="0" maxOccurs="unbounded" />
 				<xsd:element ref="base:BasTgem" minOccurs="0" maxOccurs="unbounded" />
 				<xsd:element ref="base:Rolle" minOccurs="0" maxOccurs="unbounded" />
+				<xsd:element ref="base:ReligionCode" minOccurs="0" maxOccurs="unbounded" />
 			</xsd:choice>
 		</xsd:complexType>
 	</xsd:element>
@@ -152,6 +154,22 @@ Aenderungshistorie:
 		</xsd:complexType>
 	</xsd:element>
 
+	<xsd:element name="ReligionCode">
+		<xsd:complexType>
+			<xsd:annotation>
+				<xsd:documentation>Ein SMI.RELIGIONCODE Eintrag mit den fürs ZMR3 relevanten Feldern</xsd:documentation>
+			</xsd:annotation>
+			<xsd:sequence>
+				<xsd:element name="Bezeichnung" type="xsd:string"/>
+				<xsd:element name="Code" type="xsd:string"/>
+				<xsd:element name="KurzBez" type="xsd:string"/>
+				<xsd:element name="MigGueltig" type="xsd:string"/>
+				<xsd:element name="ReferenzNr" type="xsd:long"/>
+				<xsd:element name="Religionart" type="xsd:string"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
 	<xsd:element name="Geschaeftsprozess">
 		<xsd:complexType>
 			<xsd:annotation>
@@ -172,5 +190,4 @@ Aenderungshistorie:
 			<xsd:attribute name="Name" type="xsd:string" />
 		</xsd:complexType>
 	</xsd:element>
-
 </xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/ErnpAbfrage.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/ErnpAbfrage.xsd
index db36e0d5..12ecd771 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/ErnpAbfrage.xsd
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/ErnpAbfrage.xsd
@@ -29,6 +29,7 @@ Author(s): Richard Mayrhofer xmayrh2
 							<xsd:element ref="cio:NatuerlichePerson" minOccurs="0" />
 							<xsd:element ref="cio:PostAdresse" minOccurs="0" />
 							<xsd:element ref="DokumentSuchdaten" minOccurs="0" />
+							<xsd:element ref="Pre" minOccurs="0" maxOccurs="unbounded"/>
 						</xsd:sequence>	
 					</xsd:complexType>	
 				</xsd:element>	
@@ -36,6 +37,33 @@ Author(s): Richard Mayrhofer xmayrh2
 		</xsd:complexType>
 	</xsd:element>
 
+	<xsd:element name="Pre">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element name="Vn" type="xsd:string" minOccurs="0" nillable="true"/>
+				<xsd:element name="Fn" type="xsd:string" minOccurs="0" nillable="true"/>
+				<xsd:element name="Nve" type="xsd:string" minOccurs="0"/>
+				<xsd:element ref="Gd" minOccurs="0"/>
+				<xsd:element name="Go" type="xsd:string" minOccurs="0" nillable="true"/>
+				<xsd:element name="Ges" type="xsd:string" minOccurs="0" nillable="true"/>
+				<xsd:element name="Str" type="xsd:string" minOccurs="0" nillable="true"/>
+				<xsd:element name="Plz" type="xsd:string" minOccurs="0" nillable="true"/>
+				<xsd:element name="Ort" type="xsd:string" minOccurs="0" nillable="true"/>
+				<xsd:element name="Eid" type="xsd:long"/>
+				<xsd:element name="Bz" type="base:OrdnungsZahlType" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="Gd">
+		<xsd:simpleType>
+			<xsd:annotation>
+				<xsd:documentation>Geburtsdatum, simple type for dates (union), which may omit day and/or month</xsd:documentation>
+			</xsd:annotation>
+			<xsd:union memberTypes="xsd:date xsd:gYearMonth xsd:gYear"/>
+		</xsd:simpleType>
+	</xsd:element>	
+
 	<xsd:element name="ErnpAbfrageInfo">
 		<xsd:complexType>
 			<xsd:sequence>
@@ -43,13 +71,13 @@ Author(s): Richard Mayrhofer xmayrh2
 				<xsd:element name="TrefferLimit" type="xsd:int"/>
 				<xsd:element ref="base:Bezugsfeld" />
 				<xsd:element name="Suchkriterien" type="SuchkriterienType"/>
+				<xsd:element name="Suchwizard" type="xsd:boolean" minOccurs="0"/>
 				<xsd:element ref="ErgebnisKriterienPerson"/>
 				<xsd:element ref="ErgebnisKriterienMeldung"/>
 			</xsd:sequence>
 		</xsd:complexType>
 	</xsd:element>
 
-
 	<xsd:element name="ErgebnisKriterienPerson" >
 		<xsd:complexType>
 			<xsd:sequence>
@@ -146,16 +174,18 @@ Author(s): Richard Mayrhofer xmayrh2
 			</xsd:sequence>
 		</xsd:complexType>
 	</xsd:element>
-	
+
 	<xsd:element name="Ergebnissatz">
 		<xsd:complexType>
 			<xsd:sequence>
+				<xsd:element name="StarRating" type="xsd:float" minOccurs="0"/>
+				<xsd:element name="Register" type="xsd:string" minOccurs="0"/>  
 				<xsd:element name="PersonErgebnis" type="PersonErgebnisType" minOccurs="0"/>
-				<xsd:element name="AuskunftssperrePerson" type="xsd:boolean" default="false"/>
+				<xsd:element name="AuskunftssperrePerson" type="xsd:boolean" default="false" minOccurs="0"/>
 				<xsd:element name="Meldedaten" type="MeldedatenType" minOccurs="0"/>
-				<xsd:element name="AuskunftssperreMeldung" type="xsd:boolean" default="false"/>
+				<xsd:element name="AuskunftssperreMeldung" type="xsd:boolean" default="false" minOccurs="0"/>
 			</xsd:sequence>
 		</xsd:complexType>
 	</xsd:element>
-	
+
 </xsd:schema>	
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Personensuche.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Personensuche.xsd
index 31606d6f..a501ba1f 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Personensuche.xsd
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/Personensuche.xsd
@@ -50,7 +50,7 @@ Aenderungshistorie:
 				<xsd:element ref="cio:NatuerlichePerson" minOccurs="0"/>
 				<xsd:element ref="cio:PostAdresse" minOccurs="0"/>
 				<xsd:element ref="DokumentSuchdaten" minOccurs="0"/>
-				<xsd:element ref="EidasSuchdaten" minOccurs="0"/>
+				<xsd:element ref="EidasSuchdaten" minOccurs="0" maxOccurs="unbounded"/>
 			</xsd:sequence>
 		</xsd:complexType>
 	</xsd:element>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/entities/EidasIdentitaet.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/entities/EidasIdentitaet.xsd
index cd07bd8a..361c0c95 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/entities/EidasIdentitaet.xsd
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/zmr_client/xsd/zmr/entities/EidasIdentitaet.xsd
@@ -20,9 +20,9 @@ Author(s): Richard Mayrhofer
 		<xsd:sequence>
 			<xsd:element ref="base:EntityErgebnisReferenz"/>
 			<xsd:element ref="EidasArt"/>
-			<xsd:element ref="Staatscode3" minOccurs="0"/>
+			<xsd:element ref="Staatscode2" minOccurs="0"/>
 			<xsd:element ref="base:AusstellBehoerde" minOccurs="0"/>
-			<xsd:element ref="base:DokumentNummer" minOccurs="0"/>
+			<xsd:element ref="EidasWert" minOccurs="0"/>
 			<xsd:element ref="base:AusstellDatum" minOccurs="0"/>
 			<xsd:element ref="base:AblaufDatum" minOccurs="0"/>
 		</xsd:sequence>				
@@ -35,9 +35,9 @@ Author(s): Richard Mayrhofer
 		</xsd:annotation>		
 		<xsd:sequence>
 			<xsd:element ref="EidasArt"/>
-			<xsd:element ref="Staatscode3"/>
+			<xsd:element ref="Staatscode2"/>
 			<xsd:element ref="base:AusstellBehoerde" minOccurs="0"/>
-			<xsd:element ref="EidasNummer" minOccurs="0"/>
+			<xsd:element ref="EidasWert" minOccurs="0"/>
 			<xsd:element ref="base:AusstellDatum" minOccurs="0"/>
 			<xsd:element ref="base:AblaufDatum" minOccurs="0"/>
 			<xsd:element ref="image" minOccurs="0"/>
@@ -52,9 +52,9 @@ Author(s): Richard Mayrhofer
 		<xsd:sequence>
 			<xsd:element ref="base:Technisch"/>
 			<xsd:element ref="EidasArt" minOccurs="0"/>
-			<xsd:element ref="Staatscode3" minOccurs="0"/>
+			<xsd:element ref="Staatscode2" minOccurs="0"/>
 			<xsd:element ref="base:AusstellBehoerde" minOccurs="0"/>
-			<xsd:element ref="EidasNummer" minOccurs="0"/>
+			<xsd:element ref="EidasWert" minOccurs="0"/>
 			<xsd:element ref="base:AusstellDatum" minOccurs="0"/>
 			<xsd:element ref="base:AblaufDatum" minOccurs="0"/>
 			<xsd:element ref="image" minOccurs="0"/>
@@ -69,16 +69,17 @@ Author(s): Richard Mayrhofer
 		</xsd:annotation>		
 		<xsd:sequence>
 			<xsd:element ref="EidasArt" minOccurs="0"/>
-			<xsd:element ref="EidasNummer" minOccurs="0"/>
+			<xsd:element ref="Staatscode2" minOccurs="0"/>
+			<xsd:element ref="EidasWert" minOccurs="0"/>
 		</xsd:sequence>
 	</xsd:complexType>	
 	
-	<xsd:element name="Staatscode3">
+	<xsd:element name="Staatscode2">
 		<xsd:simpleType>
 			<xsd:restriction base="xsd:string">
 				<xsd:whiteSpace value="collapse"/>
-				<xsd:minLength value="3"/>
-				<xsd:maxLength value="3"/>			
+				<xsd:minLength value="2"/>
+				<xsd:maxLength value="2"/>			
 			</xsd:restriction>
 		</xsd:simpleType>
 	</xsd:element>
@@ -87,16 +88,16 @@ Author(s): Richard Mayrhofer
 			<xsd:restriction base="xsd:string">
 				<xsd:whiteSpace value="collapse"/>
 				<xsd:minLength value="1"/>
-				<xsd:maxLength value="55"/>			
+				<xsd:maxLength value="255"/>			
 			</xsd:restriction>
 		</xsd:simpleType>
 	</xsd:element>
-	<xsd:element name="EidasNummer">
+	<xsd:element name="EidasWert">
 		<xsd:simpleType>
 			<xsd:restriction base="xsd:string">
 				<xsd:whiteSpace value="collapse"/>
 				<xsd:minLength value="0"/>
-				<xsd:maxLength value="54"/>			
+				<xsd:maxLength value="255"/>			
 			</xsd:restriction>
 		</xsd:simpleType>
 	</xsd:element>
-- 
cgit v1.2.3


From 06b2307b2b572617ad85c5f5243c7295cbf92c41 Mon Sep 17 00:00:00 2001
From: Thomas <>
Date: Mon, 26 Jul 2021 10:39:21 +0200
Subject: add country-specific search parameters for DE

---
 .../v2/handler/DeSpecificDetailSearchProcessor.java   | 19 +++++++++++++++----
 1 file changed, 15 insertions(+), 4 deletions(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/DeSpecificDetailSearchProcessor.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/DeSpecificDetailSearchProcessor.java
index b7fb25ea..e05fe86b 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/DeSpecificDetailSearchProcessor.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/handler/DeSpecificDetailSearchProcessor.java
@@ -60,12 +60,23 @@ public class DeSpecificDetailSearchProcessor implements CountrySpecificDetailSea
     searchNatPersonName.setVorname(eidData.getGivenName());
     searchNatPerson.setGeburtsdatum(eidData.getDateOfBirth());
     
+    //add addtional eIDAS attributes from DE
+    req.getEidasSuchdaten().add(buildEidasSuchData(
+        Constants.eIDAS_ATTRURN_PLACEOFBIRTH, eidData.getPlaceOfBirth()));
+    req.getEidasSuchdaten().add(buildEidasSuchData(
+        Constants.eIDAS_ATTRURN_BIRTHNAME, eidData.getBirthName()));
+  
+    return req;
     
-    //TODO: how we can search for more than one eIDAS attribute as a Set
-    EidasSuchdatenType eidasInfos = new EidasSuchdatenType();
-    req.getEidasSuchdaten().add(eidasInfos);
+  }
 
+  private EidasSuchdatenType buildEidasSuchData(String attrName, String attrValue) {
+    EidasSuchdatenType eidasInfos = new EidasSuchdatenType();
+    eidasInfos.setStaatscode2(Constants.COUNTRY_CODE_DE);
+    eidasInfos.setEidasArt(attrName);
+    eidasInfos.setEidasWert(attrValue);
+    return eidasInfos;
     
-    return req;
   }
+ 
 }
-- 
cgit v1.2.3


From 87ef6576fe73299f0c152f6b92209de4a459cd90 Mon Sep 17 00:00:00 2001
From: Thomas <>
Date: Mon, 26 Jul 2021 11:42:24 +0200
Subject: add WDSL to search addresses by using ZMR

---
 .../Muster/WienBezirkRequest.xml                   |    58 +
 .../Muster/WienBezirkResponse.xml                  | 12422 +++++++++++++++++++
 .../Muster/WienBezirkStrasseRequest.xml            |    59 +
 .../Muster/WienBezirkStrasseResponse.xml           |    92 +
 .../addresssearching_client/Muster/WienRequest.xml |    52 +
 .../Muster/WienResponse.xml                        |   478 +
 .../Muster/WienStrasseAuswahlRequest.xml           |    60 +
 .../Muster/WienStrasseAuswahlResponse.xml          |   311 +
 .../wsdl/addresssearching_client/wsdl/Messages.xsd |    50 +
 .../wsdl/addresssearching_client/wsdl/Service.wsdl |    62 +
 .../wsdl/addresssearching_client/wsdl/secext.xsd   |   150 +
 .../addresssearching_client/wsdl/secext_pvp.xsd    |   152 +
 .../xsd/allgemein/Messages.xsd                     |    27 +
 .../xsd/allgemein/Service.xsd                      |    40 +
 .../xsd/eingebunden/AbfrageMuster.xsd              |   140 +
 .../xsd/eingebunden/AkademischerGradFelder.xsd     |    61 +
 .../xsd/eingebunden/Blaettern.xsd                  |    56 +
 .../xsd/eingebunden/DokumentFelder.xsd             |    74 +
 .../xsd/eingebunden/EingebundenProxy.xsd           |    28 +
 .../xsd/eingebunden/Entity.xsd                     |   135 +
 .../xsd/eingebunden/InfoFachlich.xsd               |   103 +
 .../xsd/eingebunden/InfoTechnisch.xsd              |   103 +
 .../xsd/eingebunden/MeldungFelder.xsd              |   283 +
 .../xsd/eingebunden/PersonDataZMR.xsd              |   741 ++
 .../xsd/eingebunden/PersonExport.xsd               |   107 +
 .../xsd/eingebunden/PersonFelder.xsd               |    70 +
 .../xsd/eingebunden/SimpleTypes.xsd                |   173 +
 .../xsd/eingebunden/W3C-XMLDSig.xsd                |   274 +
 .../xsd/eingebunden/Workflow.xsd                   |   200 +
 .../xsd/zmr/Adresssuche.xsd                        |   128 +
 .../addresssearching_client/xsd/zmr/ZMRProxy.xsd   |    33 +
 31 files changed, 16722 insertions(+)
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/Muster/WienBezirkRequest.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/Muster/WienBezirkResponse.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/Muster/WienBezirkStrasseRequest.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/Muster/WienBezirkStrasseResponse.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/Muster/WienRequest.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/Muster/WienResponse.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/Muster/WienStrasseAuswahlRequest.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/Muster/WienStrasseAuswahlResponse.xml
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/wsdl/Messages.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/wsdl/Service.wsdl
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/wsdl/secext.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/wsdl/secext_pvp.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/xsd/allgemein/Messages.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/xsd/allgemein/Service.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/xsd/eingebunden/AbfrageMuster.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/xsd/eingebunden/AkademischerGradFelder.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/xsd/eingebunden/Blaettern.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/xsd/eingebunden/DokumentFelder.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/xsd/eingebunden/EingebundenProxy.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/xsd/eingebunden/Entity.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/xsd/eingebunden/InfoFachlich.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/xsd/eingebunden/InfoTechnisch.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/xsd/eingebunden/MeldungFelder.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/xsd/eingebunden/PersonDataZMR.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/xsd/eingebunden/PersonExport.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/xsd/eingebunden/PersonFelder.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/xsd/eingebunden/SimpleTypes.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/xsd/eingebunden/W3C-XMLDSig.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/xsd/eingebunden/Workflow.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/xsd/zmr/Adresssuche.xsd
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/xsd/zmr/ZMRProxy.xsd

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/Muster/WienBezirkRequest.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/Muster/WienBezirkRequest.xml
new file mode 100644
index 00000000..fae66796
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/Muster/WienBezirkRequest.xml
@@ -0,0 +1,58 @@
+<soapenv:Envelope xmlns:soapenv="http://schemas.xmlsoap.org/soap/envelope/">
+  <soapenv:Header>
+    <ns9:Security xmlns:ns9="http://schemas.xmlsoap.org/ws/2002/04/secext" xmlns="http://bmi.gv.at/namespace/zmr-su/base/20040201#" xmlns:ns6="http://bmi.gv.at/namespace/zmr-su/ernp/20050901#" xmlns:ns5="http://www.w3.org/2000/09/xmldsig#" xmlns:ns8="http://egov.gv.at/pvp1.xsd" xmlns:ns7="http://bmi.gv.at/namespace/zmr-su/gis/20070725#" xmlns:ns2="http://reference.e-government.gv.at/namespace/persondata/de/20040201#" xmlns:ns4="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#" xmlns:ns3="http://bmi.gv.at/namespace/zmr-su/lmr/20050401#">
+      <ns8:pvpToken version="1.8">
+        <ns8:authenticate>
+          <ns8:participantId>AT:B:xxx</ns8:participantId>
+          <ns8:userPrincipal>
+            <ns8:userId>userid</ns8:userId>
+            <ns8:cn>full name</ns8:cn>
+            <ns8:gvOuId>AT:B:xxx</ns8:gvOuId>
+            <ns8:ou>Organisation</ns8:ou>
+            <ns8:gvSecClass>3</ns8:gvSecClass>
+            <ns8:gvGid>AT:B:112:PID:71923</ns8:gvGid>
+            <ns8:mail>e@mail</ns8:mail>
+          </ns8:userPrincipal>
+        </ns8:authenticate>
+        <ns8:authorize>
+          <ns8:role value="ZMR-Anfrage"></ns8:role>
+        </ns8:authorize>
+        <ns8:accounting></ns8:accounting>
+      </ns8:pvpToken>
+    </ns9:Security>
+  </soapenv:Header>
+  <soapenv:Body>
+    <Request xmlns="http://bmi.gv.at/namespace/zmr-su/base/20040201#" xmlns:ns6="http://bmi.gv.at/namespace/zmr-su/ernp/20050901#" xmlns:ns5="http://www.w3.org/2000/09/xmldsig#" xmlns:ns8="http://egov.gv.at/pvp1.xsd" xmlns:ns7="http://bmi.gv.at/namespace/zmr-su/gis/20070725#" xmlns:ns9="http://schemas.xmlsoap.org/ws/2002/04/secext" xmlns:ns2="http://reference.e-government.gv.at/namespace/persondata/de/20040201#" xmlns:ns4="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#" xmlns:ns3="http://bmi.gv.at/namespace/zmr-su/lmr/20050401#">
+      <WorkflowInfoClient>
+        <ProzessName>GP_Abfragen</ProzessName>
+        <ProzessInstanzID>786700000003030</ProzessInstanzID>
+        <SequenzID>0</SequenzID>
+        <VorgangName>ZMR_VO_Adresssuche_im_GWR__6</VorgangName>
+      </WorkflowInfoClient>
+      <ClientInfo>
+        <Organisation>
+          <GemeindeNr>09999</GemeindeNr>
+        </Organisation>
+        <Client>ZMR3-GUI 1.2.36.2-</Client>
+      </ClientInfo>
+      <ns4:AdresssucheRequest>
+        <ns4:AdresssucheInfo>
+          <ns4:Suchart>ADRESSSUCHE</ns4:Suchart>
+        </ns4:AdresssucheInfo>
+        <ns4:Adressdaten>
+          <ns2:PostAdresse>
+            <ns2:Gemeinde>Wien</ns2:Gemeinde>
+            <ns2:Gemeindekennziffer>90001</ns2:Gemeindekennziffer>
+            <ns2:Ortschaft>Wien,Favoriten</ns2:Ortschaft>
+            <ns2:Zustelladresse>
+              <ns2:AdressRegisterEintrag></ns2:AdressRegisterEintrag>
+            </ns2:Zustelladresse>
+          </ns2:PostAdresse>
+          <Adressschluessel>
+            <OKZ>17232</OKZ>
+          </Adressschluessel>
+        </ns4:Adressdaten>
+      </ns4:AdresssucheRequest>
+    </Request>
+  </soapenv:Body>
+</soapenv:Envelope>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/Muster/WienBezirkResponse.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/Muster/WienBezirkResponse.xml
new file mode 100644
index 00000000..20151698
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/Muster/WienBezirkResponse.xml
@@ -0,0 +1,12422 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<soapenv:Envelope xmlns:soapenv="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:zmr="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#" xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#" xmlns="http://reference.e-government.gv.at/namespace/persondata/de/20040201#">
+  <soapenv:Body>
+    <base:Response xmlns:ns10="http://bmi.gv.at/namespace/zmr-su/gis/20070725#" xmlns:ns11="http://egov.gv.at/pvp1.xsd" xmlns:ns12="http://schemas.xmlsoap.org/ws/2002/04/secext" xmlns:ns7="http://bmi.gv.at/namespace/zmr-su/lmr/20050401#" xmlns:ns8="http://www.w3.org/2000/09/xmldsig#" xmlns:ns9="http://bmi.gv.at/namespace/zmr-su/ernp/20050901#">
+      <base:WorkflowInfoServer>
+        <base:ProzessName>GP_Mindestsicherung</base:ProzessName>
+        <base:ProzessAnzeigeName>Mindestsicherung</base:ProzessAnzeigeName>
+        <base:ProzessInstanzID>786700000003031</base:ProzessInstanzID>
+        <base:SequenzID>0</base:SequenzID>
+      </base:WorkflowInfoServer>
+      <base:ServerInfo>
+        <base:GeneriertVon>ZMR-Server Version: 0.0</base:GeneriertVon>
+        <base:GeneriertAm>2021-05-27T10:58:13.555</base:GeneriertAm>
+        <base:ServerTransaktionNr>8581910000014155</base:ServerTransaktionNr>
+      </base:ServerInfo>
+      <zmr:AdresssucheResponse>
+        <zmr:AdresssucheAnfrage>
+          <zmr:AdresssucheInfo>
+            <zmr:Suchart>ADRESSSUCHE</zmr:Suchart>
+          </zmr:AdresssucheInfo>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+        </zmr:AdresssucheAnfrage>
+        <base:Message>
+          <base:Number>30115</base:Number>
+          <base:Text>Adresssuche durchgeführt, mehrere Treffer zur Auswahl.</base:Text>
+        </base:Message>
+        <zmr:Adresssuchergebnis>
+          <zmr:Detailgrad>Strassenname</zmr:Detailgrad>
+          <base:GefundeneSaetze>589</base:GefundeneSaetze>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Absbergbrücke</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>910326</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Absberggasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>900007</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Ada-Christen-Gasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>905509</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Adolf-Kirchl-Gasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>900025</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Adolf-Unger-Gasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>905520</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Ahornhof</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>914201</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Alaudagasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>905508</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Alfred-Adler-Straße</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>906627</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Alfred-Stix-Platz</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>900066</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Alma-Rosé-Gasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>905519</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Alpengasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>900085</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Altdorferstraße</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>900092</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Alte Laaer Straße</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>900094</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Alxingergasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>900106</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Am Belvedere</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>912045</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Am Hauptbahnhof</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>901314</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Am Johannesberg</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>909120</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Am Laaer Berg</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>914005</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Amalienbad</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>922002</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Amarantgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>900110</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Ampferergasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>900149</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>An der Hölle</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>900175</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>An der Kuhtrift</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>909729</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>An der Ostbahn</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>900180</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Angeligasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>900198</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Anna-Boschek-Hof</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>914348</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Anningerweg</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>909142</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Anny-Angel-Katan-Weg</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>906981</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Anton-Balzer-Weg</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>912511</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Anton-Hölzl-Hof</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>914252</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Antonie-Alt-Gasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>906624</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Antonsplatz</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>900229</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Arnold-Holm-Gasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>905521</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Arsenalstraße</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>900260</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Arthaberplatz</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>900263</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Artholdgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>906724</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Aspangbahn</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>990713</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>August-Forel-Gasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>900299</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>August-Kronberger-Gasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>900303</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>August-Motz-Rettungsstation</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>918434</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>August-Sigl-Straße</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>906124</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Bahnhof Matzleinsdorfer Platz</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>990534</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Bahnlände</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>900342</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Baron-Karl-Gasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>906085</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Battiggasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>900371</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Beichlgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>909318</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Belgradplatz</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>900403</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Benischkegasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>909155</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Bergtaidingweg</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>905510</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Berlepschgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>900434</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Bernadottegasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>900435</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Bernhardtstalgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>900439</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Berthold-Viertel-Gasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>900444</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Biererlgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>900468</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Bildungscampus Sonnwendviertel</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>921151</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Birkenhof</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>914203</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Birnbaumgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>900480</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Bischofgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>900486</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Bischofplatz</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>900487</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Bitterlichstraßenbrücke</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>910452</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Bitterlichstraße</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>900488</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Blaschkagasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>909124</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Bleichsteinerstraße</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>900498</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Bleigasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>900499</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Bloch-Bauer-Promenade</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>912685</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Braheplatz</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>900552</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Brantinggasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>900561</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Braunspergengasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>900568</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Brigitte-Neumeister-Platz</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>906747</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Brunngraberhof</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>914020</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Brunnweg</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>900626</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Brücke Ferdinand-Löwe-Straße</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>910300</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Buchengasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>900630</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Bullgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>900650</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Burgenlandgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>900654</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Bürgergasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>900641</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Canettistraße</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>906628</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Carl-Appel-Straße</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>906526</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Carl-Prohaska-Platz</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>900678</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Ceralegasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>900688</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Chiarigasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>900694</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Clemens-Holzmeister-Straße</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>906529</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Collmanngasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>909153</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Columbusgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>900724</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Columbusplatz</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>900725</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Computerstraße</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>905998</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Czeikestraße</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>905930</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Dampfgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>900769</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Daumegasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>909736</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Davidgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>900786</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Dieselgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>900826</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Doerenkampgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>909159</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Domaniggasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>905947</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Donabaumgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>900889</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Dr.-Eberle-Gasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>909145</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Dr.-Franz-Pauer-Hof</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>914206</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Durchlass Volksparkteich</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>910449</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Eckertgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>900963</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Eckhelgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>909139</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Economogasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>900966</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Eddagasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>900967</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Eibesbrunnergasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>901002</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Eichenstraße</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>901009</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Eisenmengergasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>901025</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Eisenstadtplatz</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>901026</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Ellen-Key-Gasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>901040</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Emil-Fucik-Gasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>906513</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Emil-Fucik-Hof</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>914309</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Emil-Hertzka-Platz</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>901050</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Emil-Ottenthal-Gasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>901052</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Emilie-Flöge-Weg</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>912763</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Endlichergasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>901056</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Enge Lucken</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>905538</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Erlachgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>901086</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Erlachplatz</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>901087</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Ernst-Kirchweger-Hof</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>914282</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Ernst-Ludwig-Gasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>901095</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Eschenallee</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>901100</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Eschenkogelgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>901102</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Ettenreichgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>901113</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Eugenie-Fink-Gasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>905524</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Eva-Zilcher-Gasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>906721</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Adresszeile>Favoriten</Adresszeile>
+                <Strassenname>Evangelischer Friedhof</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>919048</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>true</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Fatinitzaweg</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>901145</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Favoritenstraße</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>901147</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Favoritner Gewerbering</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>909900</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Felix-Grafe-Gasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>905533</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Ferdinand-Löwe-Straße</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>901173</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Fernkorngasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>901177</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Feuchterslebengasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>901183</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Feßlergasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>901181</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Filmstadttreppenbrücke</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>910444</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Filmteichstraße</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>901204</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Fingergasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>901195</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Fischhofgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>909135</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Adresszeile>Favoriten</Adresszeile>
+                <Strassenname>Fliederhof</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>905672</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>true</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Fliederhof</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>914204</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Florian-Geyer-Gasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>901224</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Fontanastraße</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>905936</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Franz-Jachym-Platz</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>906268</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Franz-Koci-Straße</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>905535</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Franz-Mika-Weg</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>912560</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Franz-Schreker-Gasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>901278</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Franz-Schuh-Gasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>901281</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Franz-von-Sales-Steg</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>910440</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Franzosenweg</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>901272</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Adresszeile>Favoriten</Adresszeile>
+                <Strassenname>Friedhofstraße</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>901312</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>true</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Friedrich-Adler-Weg</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>906120</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Friedrich-Knauer-Gasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>901321</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Friedrich-Teller-Gasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>901327</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Friesenplatz</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>901330</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Fritz-Hahn-Gasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>906719</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Fritz-Pregl-Gasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>901335</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Frödenplatz</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>901338</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Fußgehersteg über die A3</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>910448</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Fürstenhoferstraße</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>905933</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Gaißmayrgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>901383</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Adresszeile>Favoriten</Adresszeile>
+                <Strassenname>Gartengasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>905709</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>true</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Gartenschaugasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>909156</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Gartensteg</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>910381</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Gasparoneweg</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>901405</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Geißfußgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>901428</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Gellertgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>901432</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Gellertplatz</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>901433</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Georg-Prentl-Gasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>901448</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Georg-Wiesmayer-Gasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>901451</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Georg-Wilhelm-Pabst-Gasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>905531</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>George-Washington-Hof</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>914200</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Gerhard-Bronner-Straße</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>906629</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Gertrude-Fröhlich-Sandner-Straße</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>906626</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Gimniggasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>901496</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Gombrichgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>906701</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Graffgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>901570</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Grenzackerstraße</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>901595</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Grohnergasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>906125</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Grundäckergasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>901650</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Gudrunstraße</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>901660</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Gutheil-Schoder-Gasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>901690</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Gußriegelstraße</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>901682</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Gödelgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>912783</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Göteborggasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>901535</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Götzgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>901538</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Güterzentrum Wien Süd</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>919100</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Hackergasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>906699</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Hantzenbergergasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>901798</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Hardtmuthgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>901802</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Harry-Glück-Platz</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>906780</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Hasengasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>901818</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Hasenöhrlstraße</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>901821</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Hauptwegbrücke</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>910443</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Hausergasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>901844</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Hebbelgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>901857</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Hebbelplatz</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>901858</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Hederichgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>901862</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Heimkehrergasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>901880</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Heinrich-Zeder-Weg</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>912577</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Helmut-Zilk-Park</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>920314</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Hentzigasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>901915</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Hermann-Mark-Gasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>906683</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Hermann-Schöne-Platz</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>901930</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Hermine-Fiala-Hof</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>914259</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Herndlgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>901937</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Herogasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>901939</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Herschelgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>901942</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Hertha-Firnberg-Straße</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>906253</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Herzgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>901948</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Heuberggstättenstraße</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>901959</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Himberger Brücke</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>910075</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Himberger Straße</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>901972</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Hintere Liesingbachstraße</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>901980</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Hintschiggasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>906123</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Hlawkagasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>906722</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Hofherrgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>902033</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Holbeingasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>902054</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Holeyplatz</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>902056</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Hollitzergasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>902061</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Holzknechtstraße</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>902069</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Horrplatz</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>900376</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Hubert-Gsur-Gasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>905526</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Hueberhof</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>914084</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Hugo-Meisl-Weg</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>912447</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Humboldtgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>902101</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Humboldtplatz</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>902102</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Huppgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>902106</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Hämmerlegasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>901719</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Ignaz-Pleyel-Gasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>902122</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Indigoweg</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>902143</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Innovationsstraße</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>906582</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Inzersdorfer Straße</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>902154</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Jagdgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>902171</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Jean-Jaures-Hof</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>914086</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Jenny-Lind-Gasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>902198</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Johann-Friedl-Gasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>902221</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Johann-Friedl-Steg</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>910079</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Johann-Pölzer-Gasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>905545</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Johannitergasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>902225</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Josef-Enslein-Platz</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>902241</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Jungbauerweg</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>912451</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Jura-Soyfer-Gasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>905544</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>KLG Am Lindkogl</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>916411</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>KLG Amarantgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>916518</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>KLG An der Rosiwalgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>916701</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>KLG Anningerblick</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>916362</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>KLG Arbeiter Schrebergarten Verein Favoriten</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>916363</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>KLG Aus eigener Kraft</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>916034</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>KLG Bitterlichstraße</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>916583</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>KLG Blumental Alt</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>916039</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>KLG Blumental Neu</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>916354</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>KLG Boschberg</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>916040</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>KLG Eremit</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>916429</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>KLG Eschenkogel</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>916412</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>KLG Ettenreich</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>916067</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>KLG Favoriten</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>916069</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>KLG Fischeralm</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>916071</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>KLG Frohsinn</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>916076</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>KLG Garten-und Tierfreunde</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>916087</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>KLG Grenzacker</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>916085</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>KLG Hentzigasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>916437</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>KLG Heuberggstätten</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>916428</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>KLG Karl-Fürstenhofer</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>916419</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>KLG Kriegsinvalide Österreich</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>916434</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>KLG Laaerwald Gruppe Ferstl</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>916519</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>KLG Laxenburger Allee</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>916410</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>KLG Liesingbach</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>916451</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>KLG Löwygrube</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>916361</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>KLG Mühlbach</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>916427</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>KLG Rasenstadt</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>916413</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>KLG Reifental</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>916194</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>KLG Rudolfshöhe</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>916210</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>KLG Rudolfshügel</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>916211</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>KLG SDL Laaerwald</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>916516</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>KLG Südhang</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>916498</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>KLG Unterer Gaisberg</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>916244</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>KLG Unterm Sender</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>916517</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>KLG Weichselgarten</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>916259</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>KLG Weichseltal</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>916463</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>KLG Wienerberg</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>916477</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>KLG Wienerfeld</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>916414</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>KLG Wilhelmshöhe</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>916261</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>KLG Zum Acker</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>916702</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>KLG Zwillingsee</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>916356</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>KLG ÖBB Maxing Schwimmschulteich</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>916526</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>KLG ÖBB Wien-Süd 2054</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>916435</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>KLG ÖBB Zweigverein 2066</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>916525</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Kaistraße</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>902323</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Karl-Diener-Gasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>902364</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Karl-Popper-Straße</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>906622</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Karl-Wrba-Hof</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>914224</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Karmarschgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>902392</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Karplusgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>902397</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Katharinengasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>902404</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Keldorfergasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>902421</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Kempelengasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>902425</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Kennergasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>902428</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Keplergasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>902430</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Keplerplatz</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>902431</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Kerschbaumgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>906381</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Kiesewettergasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>902451</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Adresszeile>Favoriten</Adresszeile>
+                <Strassenname>Kirchengasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>902463</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>true</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Kirsteweg</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>905810</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Kittelsengasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>902473</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Kiurinagasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>902474</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Klasterskygasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>909143</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Klausenburger Straße</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>902484</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Klederinger Brücke</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>910081</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Klederinger Straße</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>902489</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Klemens-Dorn-Gasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>902506</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Knöllgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>902535</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Koliskogasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>902572</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Kolowratgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>909157</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Kornauthgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>909972</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Kossmatplatz</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>902618</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Adresszeile>Favoriten</Adresszeile>
+                <Strassenname>Kreuzgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>902654</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>true</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Kreuzsteg</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>910078</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Kronawettergasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>902667</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Kudlichgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>902683</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Kundratstraße</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>902708</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Kur-und Erholungspark Laaer Berg</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>920103</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Kurbadstraße</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>902758</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Kurt-Tichy-Gasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>909138</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Kästenbaumgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>902304</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Kästenbaumtunnel</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>910771</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Käthe-Odwody-Gasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>912608</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Köglergasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>902546</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Laaer Berg</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>918154</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Laaer Wald</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>905673</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Laaer-Berg-Straße</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>902724</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Laaer-Wald-Straße</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>902725</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Laaerbergbad</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>922018</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Laimäckergasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>902741</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Landgutgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>902754</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Langsulzgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>902771</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Laubeplatz</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>902789</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Laxenburger Brücke</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>910293</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Laxenburger Straße</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>902802</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Lecherweg</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>902812</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Leebgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>902817</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Lehmgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>902822</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Leibnizgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>902828</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Leopoldsdorfer Brücke</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>910076</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Leopoldsdorfer Straße</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>902856</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Libussagasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>902879</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Liesingbachstraße</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>902899</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Lindkogelgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>902913</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Lippmanngasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>902926</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Ludwig-von-Höhnel-Gasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>902992</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Lundgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>903000</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Löwyweg</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>906101</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Macholdastraße</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>906214</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Maiklgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>903025</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Maillygasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>903027</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Malborghetgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>903032</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Malmögasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>903036</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Mannhartgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>903044</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Mannschildgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>903046</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Marconiweg</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>903060</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Margareta-Heinrich-Weg</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>905931</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Margarete-Hilferding-Hof</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>914338</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Margaretengürtel</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>903065</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Maria-Kuhn-Gasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>906527</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Maria-Lassnig-Straße</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>906720</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Maria-Rekker-Gasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>905920</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Maria-und-Rudolf-Fischer-Hof</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>914113</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Marianne-Pollak-Gasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>906723</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Marizaweg</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>909943</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Matzleinsdorf Frachtenbahnhof</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>990507</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Max-Fleischer-Gasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>905561</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Max-Mauermann-Gasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>903137</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Medeagasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>903150</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Migerkastraße</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>903208</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Mithlingerhof</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>914120</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Moritz-Seeler-Gasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>905528</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Moselgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>909152</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Muhrengasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>903315</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Munchgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>903318</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Munchplatz</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>903319</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Mundygasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>903320</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Munthegasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>903321</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Murbangasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>906167</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Männertreugasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>903017</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Mühlgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>903296</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Mühlstraße</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>903303</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Naderstraße</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>903338</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Neilreichgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>903355</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Neuburgergasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>905503</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Neugrabenstraße</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>903381</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Neusetzgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>903391</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Nielrosenweg</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>905704</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Ober-Laa Frachtenbahnhof</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>990508</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Ober-Laaer Friedhof</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>919030</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Ober-Laaer Platz</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>903466</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Obere Grenzgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>905588</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Oberlaaer Steg</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>910077</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Oberlaaer Straße</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>903467</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Olaus-Petri-Gasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>903498</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Olof-Palme-Hof</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>914278</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Oppenheimgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>903510</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Oppenheimweg</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>905609</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Ordengasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>903514</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Otto-Geißler-Platz</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>906390</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Otto-Probst-Platz</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>906211</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Otto-Probst-Straße</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>906062</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Otto-Willmann-Gasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>905816</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Ottokar-Fischer-Gasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>906766</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Palisagasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>903550</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Paltramplatz</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>903556</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Passage Gudrunstraße</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>910311</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Passage Triester Straße</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>910320</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Passinigasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>903584</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Patrubangasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>903589</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Per-Albin-Hansson-Straße</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>903617</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Pernerstorfergasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>903623</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Pernerstorferhof</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>914126</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Pernerstorfersteg</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>910382</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Peutlmühlensteg</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>910049</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Pichelmayergasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>903676</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Pickgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>906274</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Pirchangasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>903693</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Planetengasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>903700</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Popovweg</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>903729</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Puchsbaumgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>903789</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Puchsbaumplatz</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>903790</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Pölzerhof</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>914130</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Quaringasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>903807</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Quarinhof</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>914135</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Quellenplatz</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>903809</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Quellenstraße</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>903810</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>R.-Platzer-Hof</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>914194</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Raaber-Bahn-Gasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>903815</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Radnitzkygasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>903830</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Ramsaygasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>903845</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Randhartingergasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>903848</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Ranzonigasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>903853</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Raxstraße</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>903875</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Rechberggasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>903878</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Reichenbachgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>903892</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Reisingergasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>903912</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Remystraße</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>903921</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Restaurantbrücke</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>910442</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Reumannplatz</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>903933</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Ricarda-Huch-Weg</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>905815</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Rickard-Lindström-Gasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>903943</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Rieplstraße</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>903953</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Rissaweggasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>903963</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Rosiwalgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>904037</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Rotdornallee</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>904043</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Rotenhofgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>904046</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Rothneusiedler Gasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>904058</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Rothneusiedl</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>918350</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Roubiczekgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>909140</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Rudolf-Friemel-Gasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>906580</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Rudolf-Kalab-Gasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>909929</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Rudolf-Skodak-Gasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>901402</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Rustenfeldgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>905587</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Rädda-Barnen-Platz</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>903828</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>SMZ-Süd Kaiser-Franz-Josef-Spital</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>921005</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>SP-Favoritner-Athletik-Club</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>922224</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>SP-Haus des Sportes</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>922223</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>SP-Laaerberg</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>922225</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>SP-Rapid Oberlaa</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>922222</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>SP-Stadt Wien</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>922226</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>SP-WSTW-Verkehrsbetriebe</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>922227</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>SP-Wienerberg</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>922228</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Sahulkastraße</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>904112</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Saligergasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>904119</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Salvatorianerplatz</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>904128</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Sanzingasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>904164</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Sapphogasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>904166</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Saßmanngasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>904169</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Schautagasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>904206</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Scheugasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>904232</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Scheunenstraße</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>904233</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Schleiergasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>904272</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Schrackbrücke</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>910450</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Schrankenberggasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>904348</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Schrödingerhof</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>914147</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Schröttergasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>904361</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Schwarzgrubergasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>904415</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Schönygasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>906050</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Sebastianbrücke</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>910080</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Sedlacekweg</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>912448</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Segnerstraße</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>904459</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Selma-Lagerlöf-Gasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>904476</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Senefeldergasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>904482</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Senfgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>904483</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Servaesgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>904487</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Sibeliusstraße</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>904497</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Siccardsburggasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>904498</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Sickingengasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>904500</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Sindelargasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>904543</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Sindinggasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>904544</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Sissy-Löwinger-Weg</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>906727</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Soesergasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>904562</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Sonderadresse 10. Bezirk</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>918910</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Sonnleithnergasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>904586</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Sonnwendgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>904587</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Starkegasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>904661</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Staudiglgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>904665</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Stefan-Fadinger-Platz</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>904710</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Steg Absberggasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>910375</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Steg an der Kaistraße</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>910074</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Steineichengasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>904690</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Steinschötelgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>904703</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Stella-Kadmon-Weg</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>909937</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Steudelgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>904717</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Stinygasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>904728</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Stockholmer Platz</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>904731</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Suchenwirtplatz</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>904803</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Susi-Nicoletti-Weg</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>909137</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Südtiroler Platz</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>904807</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Tegnérgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>904843</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Adresszeile>Favoriten</Adresszeile>
+                <Strassenname>Teichgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>904845</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>true</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Tesarekplatz</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>906212</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Tessingasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>904859</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Theodor-Sickel-Gasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>904875</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Thermalbad Oberlaa</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>922007</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Thomas-Münzer-Gasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>904885</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Trambauerstraße</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>904929</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Triester Straße</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>904954</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Troststraße</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>904962</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Twin Tower</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>918483</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Tyrnauer Gasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>904989</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>U-Bahn Station Alaudagasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>990134</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>U-Bahn Station Altes Landgut</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>990133</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>U-Bahn Station Keplerplatz</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>990041</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>U-Bahn Station Neulaa</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>990135</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>U-Bahn Station Oberlaa</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>990136</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>U-Bahn Station Reumannplatz</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>990027</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>U-Bahn Station Troststraße</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>990132</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Uetzgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>904995</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Uhlandgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>904996</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Uhligstraße</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>904997</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Undsetgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>905008</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Unter-Laaer Straße</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>905027</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Unter-Meidlinger Straße</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>905028</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Untere Bahnlände</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>906292</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Untere Kaistraße</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>906293</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Unterfahrung Laaer-Berg-Straße</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>910313</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Unterführung Laaer Wald</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>910447</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Unterführung Neilreichgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>910123</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Unterlaaer Platz</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>906159</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Unterlaa</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>918298</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Upsalagasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>905030</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Urselbrunnengasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>905036</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Vally-Weigl-Gasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>906700</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Van-der-Nüll-Gasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>905040</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Vettersgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>905072</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Victor-Gruen-Gasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>906047</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Viktor-Adler-Hof</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>914169</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Viktor-Adler-Markt</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>917024</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Viktor-Adler-Platz</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>905075</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Vitalygasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>906716</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Vivaldigasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>909971</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Vogentalgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>905102</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Volkmargasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>905109</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Volkspark-Laaerberge</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>920047</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Vollnhoferplatz</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>906611</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Vondrakplatz</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>906369</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Waldgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>905140</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Waldmüllerpark</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>920091</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Waltenhofengasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>905164</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Walter-Lindenbaum-Gasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>905573</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Watzlawickweg</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>912762</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Weichselbaumgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>905199</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Weidelstraße</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>905202</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Weigandhof</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>905698</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Weitmosergasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>905239</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Weizengasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>905241</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Weldengasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>905243</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Wendstattgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>905574</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Wiedner Gürtel</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>905278</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Wielandgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>905281</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Wielandplatz</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>905282</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Wienerbergerplatz</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>907013</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Wienerbergstraße</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>905284</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Wienerfeldgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>905285</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Wiesenthalgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>906048</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Wilczekgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>905310</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Wilhelm-Pinka-Platz</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>906257</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Windtenstraße</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>905343</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Wirerstraße</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>905354</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Wöhlergasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>905367</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Zelda-Kaplan-Weg</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>912782</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Zentralverschiebebahnhof</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>990547</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Zohmanngasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>905474</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Zur Spinnerin</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>905487</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Zwölfpfenniggasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>905502</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Zülowgasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>905572</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Zürcher Hof</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>914180</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+        </zmr:Adresssuchergebnis>
+      </zmr:AdresssucheResponse>
+    </base:Response>
+  </soapenv:Body>
+</soapenv:Envelope>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/Muster/WienBezirkStrasseRequest.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/Muster/WienBezirkStrasseRequest.xml
new file mode 100644
index 00000000..5e10d725
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/Muster/WienBezirkStrasseRequest.xml
@@ -0,0 +1,59 @@
+<soapenv:Envelope xmlns:soapenv="http://schemas.xmlsoap.org/soap/envelope/">
+  <soapenv:Header>
+    <ns9:Security xmlns:ns9="http://schemas.xmlsoap.org/ws/2002/04/secext" xmlns="http://bmi.gv.at/namespace/zmr-su/base/20040201#" xmlns:ns6="http://bmi.gv.at/namespace/zmr-su/ernp/20050901#" xmlns:ns5="http://www.w3.org/2000/09/xmldsig#" xmlns:ns8="http://egov.gv.at/pvp1.xsd" xmlns:ns7="http://bmi.gv.at/namespace/zmr-su/gis/20070725#" xmlns:ns2="http://reference.e-government.gv.at/namespace/persondata/de/20040201#" xmlns:ns4="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#" xmlns:ns3="http://bmi.gv.at/namespace/zmr-su/lmr/20050401#">
+      <ns8:pvpToken version="1.8">
+        <ns8:authenticate>
+          <ns8:participantId>AT:B:xxx</ns8:participantId>
+          <ns8:userPrincipal>
+            <ns8:userId>userid</ns8:userId>
+            <ns8:cn>full name</ns8:cn>
+            <ns8:gvOuId>AT:B:xxx</ns8:gvOuId>
+            <ns8:ou>Organisation</ns8:ou>
+            <ns8:gvSecClass>3</ns8:gvSecClass>
+            <ns8:gvGid>AT:B:112:PID:71923</ns8:gvGid>
+            <ns8:mail>e@mail</ns8:mail>
+          </ns8:userPrincipal>
+        </ns8:authenticate>
+        <ns8:authorize>
+          <ns8:role value="ZMR-Anfrage"></ns8:role>
+        </ns8:authorize>
+        <ns8:accounting></ns8:accounting>
+      </ns8:pvpToken>
+    </ns9:Security>
+  </soapenv:Header>
+  <soapenv:Body>
+    <Request xmlns="http://bmi.gv.at/namespace/zmr-su/base/20040201#" xmlns:ns6="http://bmi.gv.at/namespace/zmr-su/ernp/20050901#" xmlns:ns5="http://www.w3.org/2000/09/xmldsig#" xmlns:ns8="http://egov.gv.at/pvp1.xsd" xmlns:ns7="http://bmi.gv.at/namespace/zmr-su/gis/20070725#" xmlns:ns9="http://schemas.xmlsoap.org/ws/2002/04/secext" xmlns:ns2="http://reference.e-government.gv.at/namespace/persondata/de/20040201#" xmlns:ns4="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#" xmlns:ns3="http://bmi.gv.at/namespace/zmr-su/lmr/20050401#">
+      <WorkflowInfoClient>
+        <ProzessName>GP_Abfragen</ProzessName>
+        <ProzessInstanzID>786700000003031</ProzessInstanzID>
+        <SequenzID>0</SequenzID>
+        <VorgangName>ZMR_VO_Adresssuche_im_GWR__6</VorgangName>
+      </WorkflowInfoClient>
+      <ClientInfo>
+        <Organisation>
+          <GemeindeNr>09999</GemeindeNr>
+        </Organisation>
+        <Client>ZMR3-GUI 1.2.36.2-</Client>
+      </ClientInfo>
+      <ns4:AdresssucheRequest>
+        <ns4:AdresssucheInfo>
+          <ns4:Suchart>ADRESSSUCHE</ns4:Suchart>
+        </ns4:AdresssucheInfo>
+        <ns4:Adressdaten>
+          <ns2:PostAdresse>
+            <ns2:Gemeinde>Wien</ns2:Gemeinde>
+            <ns2:Gemeindekennziffer>90001</ns2:Gemeindekennziffer>
+            <ns2:Ortschaft>Wien,Favoriten</ns2:Ortschaft>
+            <ns2:Zustelladresse>
+              <ns2:Strassenname>Pal*</ns2:Strassenname>
+              <ns2:AdressRegisterEintrag></ns2:AdressRegisterEintrag>
+            </ns2:Zustelladresse>
+          </ns2:PostAdresse>
+          <Adressschluessel>
+            <OKZ>17232</OKZ>
+          </Adressschluessel>
+        </ns4:Adressdaten>
+      </ns4:AdresssucheRequest>
+    </Request>
+  </soapenv:Body>
+</soapenv:Envelope>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/Muster/WienBezirkStrasseResponse.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/Muster/WienBezirkStrasseResponse.xml
new file mode 100644
index 00000000..f7f3a7c6
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/Muster/WienBezirkStrasseResponse.xml
@@ -0,0 +1,92 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<soapenv:Envelope xmlns:soapenv="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:zmr="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#" xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#" xmlns="http://reference.e-government.gv.at/namespace/persondata/de/20040201#">
+  <soapenv:Body>
+    <base:Response xmlns:ns10="http://bmi.gv.at/namespace/zmr-su/gis/20070725#" xmlns:ns11="http://egov.gv.at/pvp1.xsd" xmlns:ns12="http://schemas.xmlsoap.org/ws/2002/04/secext" xmlns:ns7="http://bmi.gv.at/namespace/zmr-su/lmr/20050401#" xmlns:ns8="http://www.w3.org/2000/09/xmldsig#" xmlns:ns9="http://bmi.gv.at/namespace/zmr-su/ernp/20050901#">
+      <base:WorkflowInfoServer>
+        <base:ProzessName>GP_Mindestsicherung</base:ProzessName>
+        <base:ProzessAnzeigeName>Mindestsicherung</base:ProzessAnzeigeName>
+        <base:ProzessInstanzID>786700000003032</base:ProzessInstanzID>
+        <base:SequenzID>0</base:SequenzID>
+      </base:WorkflowInfoServer>
+      <base:ServerInfo>
+        <base:GeneriertVon>ZMR-Server Version: 0.0</base:GeneriertVon>
+        <base:GeneriertAm>2021-05-27T10:58:33.454</base:GeneriertAm>
+        <base:ServerTransaktionNr>8581910000014159</base:ServerTransaktionNr>
+      </base:ServerInfo>
+      <zmr:AdresssucheResponse>
+        <zmr:AdresssucheAnfrage>
+          <zmr:AdresssucheInfo>
+            <zmr:Suchart>ADRESSSUCHE</zmr:Suchart>
+          </zmr:AdresssucheInfo>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Pal*</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+        </zmr:AdresssucheAnfrage>
+        <base:Message>
+          <base:Number>30115</base:Number>
+          <base:Text>Adresssuche durchgeführt, mehrere Treffer zur Auswahl.</base:Text>
+        </base:Message>
+        <zmr:Adresssuchergebnis>
+          <zmr:Detailgrad>Strassenname</zmr:Detailgrad>
+          <base:GefundeneSaetze>2</base:GefundeneSaetze>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Palisagasse</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>903550</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Paltramplatz</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>903556</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+        </zmr:Adresssuchergebnis>
+      </zmr:AdresssucheResponse>
+    </base:Response>
+  </soapenv:Body>
+</soapenv:Envelope>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/Muster/WienRequest.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/Muster/WienRequest.xml
new file mode 100644
index 00000000..aa32c91c
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/Muster/WienRequest.xml
@@ -0,0 +1,52 @@
+<soapenv:Envelope xmlns:soapenv="http://schemas.xmlsoap.org/soap/envelope/">
+  <soapenv:Header>
+    <ns9:Security xmlns:ns9="http://schemas.xmlsoap.org/ws/2002/04/secext" xmlns="http://bmi.gv.at/namespace/zmr-su/base/20040201#" xmlns:ns6="http://bmi.gv.at/namespace/zmr-su/ernp/20050901#" xmlns:ns5="http://www.w3.org/2000/09/xmldsig#" xmlns:ns8="http://egov.gv.at/pvp1.xsd" xmlns:ns7="http://bmi.gv.at/namespace/zmr-su/gis/20070725#" xmlns:ns2="http://reference.e-government.gv.at/namespace/persondata/de/20040201#" xmlns:ns4="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#" xmlns:ns3="http://bmi.gv.at/namespace/zmr-su/lmr/20050401#">
+      <ns8:pvpToken version="1.8">
+        <ns8:authenticate>
+          <ns8:participantId>AT:B:xxx</ns8:participantId>
+          <ns8:userPrincipal>
+            <ns8:userId>userid</ns8:userId>
+            <ns8:cn>full name</ns8:cn>
+            <ns8:gvOuId>AT:B:xxx</ns8:gvOuId>
+            <ns8:ou>Organisation</ns8:ou>
+            <ns8:gvSecClass>3</ns8:gvSecClass>
+            <ns8:gvGid>AT:B:112:PID:71923</ns8:gvGid>
+            <ns8:mail>e@mail</ns8:mail>
+          </ns8:userPrincipal>
+        </ns8:authenticate>
+        <ns8:authorize>
+          <ns8:role value="ZMR-Anfrage"></ns8:role>
+        </ns8:authorize>
+        <ns8:accounting></ns8:accounting>
+      </ns8:pvpToken>
+    </ns9:Security>
+  </soapenv:Header>
+  <soapenv:Body>
+    <Request xmlns="http://bmi.gv.at/namespace/zmr-su/base/20040201#" xmlns:ns6="http://bmi.gv.at/namespace/zmr-su/ernp/20050901#" xmlns:ns5="http://www.w3.org/2000/09/xmldsig#" xmlns:ns8="http://egov.gv.at/pvp1.xsd" xmlns:ns7="http://bmi.gv.at/namespace/zmr-su/gis/20070725#" xmlns:ns9="http://schemas.xmlsoap.org/ws/2002/04/secext" xmlns:ns2="http://reference.e-government.gv.at/namespace/persondata/de/20040201#" xmlns:ns4="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#" xmlns:ns3="http://bmi.gv.at/namespace/zmr-su/lmr/20050401#">
+      <WorkflowInfoClient>
+        <ProzessName>GP_Abfragen</ProzessName>
+        <VorgangName>ZMR_VO_Adresssuche_im_GWR__6</VorgangName>
+      </WorkflowInfoClient>
+      <ClientInfo>
+        <Organisation>
+          <GemeindeNr>09999</GemeindeNr>
+        </Organisation>
+        <Client>ZMR3-GUI 1.2.36.2-</Client>
+      </ClientInfo>
+      <ns4:AdresssucheRequest>
+        <ns4:AdresssucheInfo>
+          <ns4:Suchart>ADRESSSUCHE</ns4:Suchart>
+        </ns4:AdresssucheInfo>
+        <ns4:Adressdaten>
+          <ns2:PostAdresse>
+            <ns2:Gemeinde>wien</ns2:Gemeinde>
+            <ns2:Zustelladresse>
+              <ns2:AdressRegisterEintrag></ns2:AdressRegisterEintrag>
+            </ns2:Zustelladresse>
+          </ns2:PostAdresse>
+          <Adressschluessel></Adressschluessel>
+        </ns4:Adressdaten>
+      </ns4:AdresssucheRequest>
+    </Request>
+  </soapenv:Body>
+</soapenv:Envelope>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/Muster/WienResponse.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/Muster/WienResponse.xml
new file mode 100644
index 00000000..8a246423
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/Muster/WienResponse.xml
@@ -0,0 +1,478 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<soapenv:Envelope xmlns:soapenv="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:zmr="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#" xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#" xmlns="http://reference.e-government.gv.at/namespace/persondata/de/20040201#">
+  <soapenv:Body>
+    <base:Response xmlns:ns10="http://bmi.gv.at/namespace/zmr-su/gis/20070725#" xmlns:ns11="http://egov.gv.at/pvp1.xsd" xmlns:ns12="http://schemas.xmlsoap.org/ws/2002/04/secext" xmlns:ns7="http://bmi.gv.at/namespace/zmr-su/lmr/20050401#" xmlns:ns8="http://www.w3.org/2000/09/xmldsig#" xmlns:ns9="http://bmi.gv.at/namespace/zmr-su/ernp/20050901#">
+      <base:WorkflowInfoServer>
+        <base:ProzessName>GP_Mindestsicherung</base:ProzessName>
+        <base:ProzessAnzeigeName>Mindestsicherung</base:ProzessAnzeigeName>
+        <base:ProzessInstanzID>786700000003030</base:ProzessInstanzID>
+        <base:SequenzID>0</base:SequenzID>
+      </base:WorkflowInfoServer>
+      <base:ServerInfo>
+        <base:GeneriertVon>ZMR-Server Version: 0.0</base:GeneriertVon>
+        <base:GeneriertAm>2021-05-27T10:53:35.703</base:GeneriertAm>
+        <base:ServerTransaktionNr>8581910000014151</base:ServerTransaktionNr>
+      </base:ServerInfo>
+      <zmr:AdresssucheResponse>
+        <zmr:AdresssucheAnfrage>
+          <zmr:AdresssucheInfo>
+            <zmr:Suchart>ADRESSSUCHE</zmr:Suchart>
+          </zmr:AdresssucheInfo>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Gemeinde>wien</Gemeinde>
+            </PostAdresse>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+        </zmr:AdresssucheAnfrage>
+        <base:Message>
+          <base:Number>30115</base:Number>
+          <base:Text>Adresssuche durchgeführt, mehrere Treffer zur Auswahl.</base:Text>
+        </base:Message>
+        <zmr:Adresssuchergebnis>
+          <zmr:Detailgrad>Ortschaft</zmr:Detailgrad>
+          <base:GefundeneSaetze>23</base:GefundeneSaetze>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Alsergrund</Ortschaft>
+              <Zustelladresse>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17231</base:OKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Brigittenau</Ortschaft>
+              <Zustelladresse>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17242</base:OKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Donaustadt</Ortschaft>
+              <Zustelladresse>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17244</base:OKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Döbling</Ortschaft>
+              <Zustelladresse>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17241</base:OKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Floridsdorf</Ortschaft>
+              <Zustelladresse>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17243</base:OKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Hernals</Ortschaft>
+              <Zustelladresse>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17239</base:OKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Hietzing</Ortschaft>
+              <Zustelladresse>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17235</base:OKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Innere Stadt</Ortschaft>
+              <Zustelladresse>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17223</base:OKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Josefstadt</Ortschaft>
+              <Zustelladresse>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17230</base:OKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Landstraße</Ortschaft>
+              <Zustelladresse>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17225</base:OKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Leopoldstadt</Ortschaft>
+              <Zustelladresse>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17224</base:OKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Liesing</Ortschaft>
+              <Zustelladresse>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17245</base:OKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Margareten</Ortschaft>
+              <Zustelladresse>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17227</base:OKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Mariahilf</Ortschaft>
+              <Zustelladresse>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17228</base:OKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Meidling</Ortschaft>
+              <Zustelladresse>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17234</base:OKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Neubau</Ortschaft>
+              <Zustelladresse>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17229</base:OKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Ottakring</Ortschaft>
+              <Zustelladresse>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17238</base:OKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Penzing</Ortschaft>
+              <Zustelladresse>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17236</base:OKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Rudolfsheim-Fünfhaus</Ortschaft>
+              <Zustelladresse>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17237</base:OKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Simmering</Ortschaft>
+              <Zustelladresse>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17233</base:OKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Wieden</Ortschaft>
+              <Zustelladresse>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17226</base:OKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Währing</Ortschaft>
+              <Zustelladresse>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag/>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17240</base:OKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+        </zmr:Adresssuchergebnis>
+      </zmr:AdresssucheResponse>
+    </base:Response>
+  </soapenv:Body>
+</soapenv:Envelope>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/Muster/WienStrasseAuswahlRequest.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/Muster/WienStrasseAuswahlRequest.xml
new file mode 100644
index 00000000..f00859b6
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/Muster/WienStrasseAuswahlRequest.xml
@@ -0,0 +1,60 @@
+<soapenv:Envelope xmlns:soapenv="http://schemas.xmlsoap.org/soap/envelope/">
+  <soapenv:Header>
+    <ns9:Security xmlns:ns9="http://schemas.xmlsoap.org/ws/2002/04/secext" xmlns="http://bmi.gv.at/namespace/zmr-su/base/20040201#" xmlns:ns6="http://bmi.gv.at/namespace/zmr-su/ernp/20050901#" xmlns:ns5="http://www.w3.org/2000/09/xmldsig#" xmlns:ns8="http://egov.gv.at/pvp1.xsd" xmlns:ns7="http://bmi.gv.at/namespace/zmr-su/gis/20070725#" xmlns:ns2="http://reference.e-government.gv.at/namespace/persondata/de/20040201#" xmlns:ns4="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#" xmlns:ns3="http://bmi.gv.at/namespace/zmr-su/lmr/20050401#">
+      <ns8:pvpToken version="1.8">
+        <ns8:authenticate>
+          <ns8:participantId>AT:B:xxx</ns8:participantId>
+          <ns8:userPrincipal>
+            <ns8:userId>userid</ns8:userId>
+            <ns8:cn>full name</ns8:cn>
+            <ns8:gvOuId>AT:B:xxx</ns8:gvOuId>
+            <ns8:ou>Organisation</ns8:ou>
+            <ns8:gvSecClass>3</ns8:gvSecClass>
+            <ns8:gvGid>AT:B:112:PID:71923</ns8:gvGid>
+            <ns8:mail>e@mail</ns8:mail>
+          </ns8:userPrincipal>
+        </ns8:authenticate>
+        <ns8:authorize>
+          <ns8:role value="ZMR-Anfrage"></ns8:role>
+        </ns8:authorize>
+        <ns8:accounting></ns8:accounting>
+      </ns8:pvpToken>
+    </ns9:Security>
+  </soapenv:Header>
+  <soapenv:Body>
+    <Request xmlns="http://bmi.gv.at/namespace/zmr-su/base/20040201#" xmlns:ns6="http://bmi.gv.at/namespace/zmr-su/ernp/20050901#" xmlns:ns5="http://www.w3.org/2000/09/xmldsig#" xmlns:ns8="http://egov.gv.at/pvp1.xsd" xmlns:ns7="http://bmi.gv.at/namespace/zmr-su/gis/20070725#" xmlns:ns9="http://schemas.xmlsoap.org/ws/2002/04/secext" xmlns:ns2="http://reference.e-government.gv.at/namespace/persondata/de/20040201#" xmlns:ns4="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#" xmlns:ns3="http://bmi.gv.at/namespace/zmr-su/lmr/20050401#">
+      <WorkflowInfoClient>
+        <ProzessName>GP_Abfragen</ProzessName>
+        <ProzessInstanzID>786700000003032</ProzessInstanzID>
+        <SequenzID>0</SequenzID>
+        <VorgangName>ZMR_VO_Adresssuche_im_GWR__6</VorgangName>
+      </WorkflowInfoClient>
+      <ClientInfo>
+        <Organisation>
+          <GemeindeNr>09999</GemeindeNr>
+        </Organisation>
+        <Client>ZMR3-GUI 1.2.36.2-</Client>
+      </ClientInfo>
+      <ns4:AdresssucheRequest>
+        <ns4:AdresssucheInfo>
+          <ns4:Suchart>ADRESSSUCHE</ns4:Suchart>
+        </ns4:AdresssucheInfo>
+        <ns4:Adressdaten>
+          <ns2:PostAdresse>
+            <ns2:Gemeinde>Wien</ns2:Gemeinde>
+            <ns2:Gemeindekennziffer>90001</ns2:Gemeindekennziffer>
+            <ns2:Ortschaft>Wien,Favoriten</ns2:Ortschaft>
+            <ns2:Zustelladresse>
+              <ns2:Strassenname>Paltramplatz</ns2:Strassenname>
+              <ns2:AdressRegisterEintrag></ns2:AdressRegisterEintrag>
+            </ns2:Zustelladresse>
+          </ns2:PostAdresse>
+          <Adressschluessel>
+            <OKZ>17232</OKZ>
+            <SKZ>903556</SKZ>
+          </Adressschluessel>
+        </ns4:Adressdaten>
+      </ns4:AdresssucheRequest>
+    </Request>
+  </soapenv:Body>
+</soapenv:Envelope>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/Muster/WienStrasseAuswahlResponse.xml b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/Muster/WienStrasseAuswahlResponse.xml
new file mode 100644
index 00000000..359b6cbb
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/Muster/WienStrasseAuswahlResponse.xml
@@ -0,0 +1,311 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<soapenv:Envelope xmlns:soapenv="http://schemas.xmlsoap.org/soap/envelope/" xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:zmr="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#" xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#" xmlns="http://reference.e-government.gv.at/namespace/persondata/de/20040201#">
+  <soapenv:Body>
+    <base:Response xmlns:ns10="http://bmi.gv.at/namespace/zmr-su/gis/20070725#" xmlns:ns11="http://egov.gv.at/pvp1.xsd" xmlns:ns12="http://schemas.xmlsoap.org/ws/2002/04/secext" xmlns:ns7="http://bmi.gv.at/namespace/zmr-su/lmr/20050401#" xmlns:ns8="http://www.w3.org/2000/09/xmldsig#" xmlns:ns9="http://bmi.gv.at/namespace/zmr-su/ernp/20050901#">
+      <base:WorkflowInfoServer>
+        <base:ProzessName>GP_Mindestsicherung</base:ProzessName>
+        <base:ProzessAnzeigeName>Mindestsicherung</base:ProzessAnzeigeName>
+        <base:ProzessInstanzID>786700000003033</base:ProzessInstanzID>
+        <base:SequenzID>0</base:SequenzID>
+      </base:WorkflowInfoServer>
+      <base:ServerInfo>
+        <base:GeneriertVon>ZMR-Server Version: 0.0</base:GeneriertVon>
+        <base:GeneriertAm>2021-05-27T11:10:51.129</base:GeneriertAm>
+        <base:ServerTransaktionNr>8581910000014163</base:ServerTransaktionNr>
+      </base:ServerInfo>
+      <zmr:AdresssucheResponse>
+        <zmr:AdresssucheAnfrage>
+          <zmr:AdresssucheInfo>
+            <zmr:Suchart>ADRESSSUCHE</zmr:Suchart>
+          </zmr:AdresssucheInfo>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Paltramplatz</Strassenname>
+                <Abgabestelle>false</Abgabestelle>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>903556</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>false</base:GBDUntteil>
+          </zmr:Adressdaten>
+        </zmr:AdresssucheAnfrage>
+        <base:Message>
+          <base:Number>30115</base:Number>
+          <base:Text>Adresssuche durchgeführt, mehrere Treffer zur Auswahl.</base:Text>
+        </base:Message>
+        <zmr:Adresssuchergebnis>
+          <zmr:Detailgrad>Orientierungsnummer</zmr:Detailgrad>
+          <base:GefundeneSaetze>10</base:GefundeneSaetze>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Postleitzahl>1100</Postleitzahl>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Paltramplatz</Strassenname>
+                <Orientierungsnummer>1</Orientierungsnummer>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag>
+                  <Adresscode>6823056</Adresscode>
+                </AdressRegisterEintrag>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressstatus>HXX1XXWXX</base:Adressstatus>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>903556</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>true</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Postleitzahl>1100</Postleitzahl>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Paltramplatz</Strassenname>
+                <Orientierungsnummer>2</Orientierungsnummer>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag>
+                  <Adresscode>6823057</Adresscode>
+                </AdressRegisterEintrag>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressstatus>HXX1XXWXX</base:Adressstatus>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>903556</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>true</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Postleitzahl>1100</Postleitzahl>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Paltramplatz</Strassenname>
+                <Orientierungsnummer>3</Orientierungsnummer>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag>
+                  <Adresscode>6823058</Adresscode>
+                </AdressRegisterEintrag>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressstatus>HXX1XXWXX</base:Adressstatus>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>903556</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>true</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Postleitzahl>1100</Postleitzahl>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Paltramplatz</Strassenname>
+                <Orientierungsnummer>4</Orientierungsnummer>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag>
+                  <Adresscode>6823059</Adresscode>
+                </AdressRegisterEintrag>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressstatus>HXX1XXWXX</base:Adressstatus>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>903556</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>true</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Postleitzahl>1100</Postleitzahl>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Paltramplatz</Strassenname>
+                <Orientierungsnummer>5-6</Orientierungsnummer>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag>
+                  <Adresscode>6823060</Adresscode>
+                </AdressRegisterEintrag>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressstatus>HXX1XXWXX</base:Adressstatus>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>903556</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>true</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Postleitzahl>1100</Postleitzahl>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Paltramplatz</Strassenname>
+                <Orientierungsnummer>7</Orientierungsnummer>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag>
+                  <Adresscode>6823061</Adresscode>
+                </AdressRegisterEintrag>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressstatus>HXX1XXWXX</base:Adressstatus>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>903556</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>I</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>true</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Postleitzahl>1100</Postleitzahl>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Paltramplatz</Strassenname>
+                <Orientierungsnummer>8</Orientierungsnummer>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag>
+                  <Adresscode>6823062</Adresscode>
+                </AdressRegisterEintrag>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressstatus>HXX1XXWXX</base:Adressstatus>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>903556</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>true</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Postleitzahl>1100</Postleitzahl>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Paltramplatz</Strassenname>
+                <Orientierungsnummer>9</Orientierungsnummer>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag>
+                  <Adresscode>6823063</Adresscode>
+                </AdressRegisterEintrag>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressstatus>HXX1XXWXX</base:Adressstatus>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>903556</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>I</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>true</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Postleitzahl>1100</Postleitzahl>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Paltramplatz</Strassenname>
+                <Orientierungsnummer>10</Orientierungsnummer>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag>
+                  <Adresscode>6823064</Adresscode>
+                </AdressRegisterEintrag>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressstatus>HXX1XXWXX</base:Adressstatus>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>903556</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>H</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>true</base:GBDUntteil>
+          </zmr:Adressdaten>
+          <zmr:Adressdaten>
+            <PostAdresse>
+              <Staatscode>AUT</Staatscode>
+              <Staatsname>Österreich</Staatsname>
+              <Postleitzahl>1100</Postleitzahl>
+              <Gemeinde>Wien</Gemeinde>
+              <Gemeindekennziffer>90001</Gemeindekennziffer>
+              <Ortschaft>Wien,Favoriten</Ortschaft>
+              <Zustelladresse>
+                <Strassenname>Paltramplatz</Strassenname>
+                <Orientierungsnummer>11</Orientierungsnummer>
+                <Abgabestelle>false</Abgabestelle>
+                <AdressRegisterEintrag>
+                  <Adresscode>6823065</Adresscode>
+                </AdressRegisterEintrag>
+              </Zustelladresse>
+            </PostAdresse>
+            <base:Adressstatus>HXX1XXWXX</base:Adressstatus>
+            <base:Adressschluessel>
+              <base:OKZ>17232</base:OKZ>
+              <base:SKZ>903556</base:SKZ>
+            </base:Adressschluessel>
+            <base:HauptIdent>I</base:HauptIdent>
+            <base:NameZuteil>false</base:NameZuteil>
+            <base:GBDUntteil>true</base:GBDUntteil>
+          </zmr:Adressdaten>
+        </zmr:Adresssuchergebnis>
+      </zmr:AdresssucheResponse>
+    </base:Response>
+  </soapenv:Body>
+</soapenv:Envelope>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/wsdl/Messages.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/wsdl/Messages.xsd
new file mode 100644
index 00000000..03b711f1
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/wsdl/Messages.xsd
@@ -0,0 +1,50 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: Messages.xsd
+Zweck: Definiert die Message-Datentypen fuer Services Request und Response (siehe Service.wsdl)
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2010-09-29 teo: Schnittstellen-Liste aktualisiert
+2005-05-24 tsch: BPKPruefung hinzugefuegt
+2005-02-02 tsch: QKZBearbeiten, QKZAuswertung hinzugefuegt
+2005-01-14 tsch: Aviso aktivieren entfernt, Gleichstzungtabelle Warten hinzugefuegt
+2004-11-26 tsch: Adoption, Steuerfahndung, Aviso freischalten/aktivieren hinzugefuegt
+2004-11-22 tsch: Gerichtskommissaerabfrage hinzugefuegt
+2004-09-28 tsch: Wehrfplichtigenanfrage, ablaufende Auskunfssperren-Suche hinzugefuegt
+2004-09-27 tsch: Storno/Korrektur hinzugefuegt
+2004-09-09 tsch: SZR-Vorgaenge sowie Person trennen/zusammenfuehren hinzugefuegt
+2004-07-30 tsch: Erstellung
+-->
+
+<xsd:schema targetNamespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			xmlns:zmr="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	 
+	<xsd:import namespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#" schemaLocation="../xsd/zmr/ZMRProxy.xsd"/>
+	
+	
+	<xsd:complexType name="RequestType">
+		<xsd:sequence>
+			<xsd:element ref="base:WorkflowInfoClient"/>
+			<xsd:element ref="base:ClientInfo"/>
+			<xsd:choice>
+				<xsd:element ref="zmr:AdresssucheRequest"/>
+			</xsd:choice>
+		</xsd:sequence>
+	</xsd:complexType>
+	
+	<xsd:complexType name="ResponseType">
+		<xsd:sequence>
+			<xsd:element ref="base:WorkflowInfoServer"/>
+			<xsd:element ref="base:ServerInfo"/>
+			<xsd:choice>
+				<xsd:element ref="zmr:AdresssucheResponse"/>
+			</xsd:choice>
+		</xsd:sequence>
+	</xsd:complexType>
+	
+</xsd:schema>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/wsdl/Service.wsdl b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/wsdl/Service.wsdl
new file mode 100644
index 00000000..3dbeabc7
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/wsdl/Service.wsdl
@@ -0,0 +1,62 @@
+<definitions xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:soap="http://schemas.xmlsoap.org/wsdl/soap/"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			xmlns:wsse="http://schemas.xmlsoap.org/ws/2002/04/secext"
+			xmlns="http://schemas.xmlsoap.org/wsdl/"
+			targetNamespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" name="Service">
+	<types>
+		<xsd:schema xmlns="http://bmi.gv.at/namespace/zmr-su/base/20040201#" targetNamespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#">
+			<xsd:import namespace="http://schemas.xmlsoap.org/ws/2002/04/secext" schemaLocation="secext.xsd"/>			
+			<xsd:include schemaLocation="Messages.xsd"/>
+			<xsd:element name="Request" type="RequestType"/>
+			<xsd:element name="Response" type="ResponseType"/>
+			<xsd:element name="ServiceFault">
+				<xsd:complexType>
+					<xsd:sequence>
+						<xsd:element ref="ErrorCode"/>
+						<xsd:element ref="ErrorMessage"/>
+						<xsd:element ref="ServerTransaktionNr"/>
+					</xsd:sequence>
+				</xsd:complexType>
+			</xsd:element>
+		</xsd:schema>
+	</types>
+	<message name="ServiceRequest">
+		<part name="in" element="base:Request"/>
+		<part name="WSSEHeader" element="wsse:Security"/>
+	</message>
+	<message name="ServiceResponse">
+		<part name="out" element="base:Response"/>
+	</message>
+	<message name="ServiceFault">
+		<part name="servicefault" element="base:ServiceFault"/>
+	</message>	
+	<portType name="ServicePort">
+		<operation name="service">
+			<input message="base:ServiceRequest"/>
+			<output message="base:ServiceResponse"/>
+			<fault name="servicefault" message="base:ServiceFault"/>
+		</operation>
+	</portType>
+	<binding name="ServiceBinding" type="base:ServicePort">
+		<soap:binding style="document" transport="http://schemas.xmlsoap.org/soap/http"/>
+		<operation name="service">
+			<soap:operation style="document"/>
+			<input>
+				<soap:header message="base:ServiceRequest" part="WSSEHeader" use="literal"/>
+				<soap:body use="literal" parts="in"/>
+			</input>
+			<output>
+				<soap:body use="literal"/>
+			</output>
+			<fault name="servicefault">
+				<soap:fault name="servicefault" use="literal"/>
+			</fault>
+		</operation>
+	</binding>
+	<service name="Service">
+		<port name="Service" binding="base:ServiceBinding">
+			<soap:address location="https://pvawp.bmi.gv.at/bmi.gv.at/soap/zmr/soap/ZMRService"/>
+		</port>
+	</service>
+</definitions>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/wsdl/secext.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/wsdl/secext.xsd
new file mode 100644
index 00000000..1005b12a
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/wsdl/secext.xsd
@@ -0,0 +1,150 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!-- 
+Legal Disclaimer
+
+The presentation, distribution or other dissemination of the information 
+contained in this specification is not a license, either expressly or impliedly, 
+to any intellectual property owned or controlled by IBM or Microsoft and\or any other 
+third party.  IBM and Microsoft and\or any other third party may have patents, patent 
+applications, trademarks, copyrights, or other intellectual property rights 
+covering subject matter in this document.  The furnishing of this document 
+does not give you any license to IBM's and Microsoft's or any other third party's patents, 
+trademarks, copyrights, or other intellectual property.
+
+This specification and the information contained herein is provided on an "AS IS"
+ basis and to the maximum extent permitted by applicable law, IBM and Microsoft provides 
+the document AS IS AND WITH ALL FAULTS, and hereby disclaims all other warranties 
+and conditions, either express, implied or statutory, including, but not limited 
+to, any (if any) implied warranties, duties or conditions of merchantability, of 
+fitness for a particular purpose, of accuracy or completeness of responses, of 
+results, of workmanlike effort, of lack of viruses, and of lack of negligence, 
+all with regard to the document. ALSO, THERE IS NO WARRANTY OR CONDITION OF 
+TITLE, QUIET ENJOYMENT, QUIET POSSESSION, CORRESPONDENCE TO DESCRIPTION OR 
+NON-INFRINGEMENT OF ANY INTELLECTUAL PROPERTY RIGHTS WITH REGARD TO THE DOCUMENT.
+
+IN NO EVENT WILL IBM or MICROSOFT BE LIABLE TO ANY OTHER PARTY FOR THE COST OF PROCURING 
+SUBSTITUTE GOODS OR SERVICES, LOST PROFITS, LOSS OF USE, LOSS OF DATA, OR ANY 
+INCIDENTAL, CONSEQUENTIAL, DIRECT, INDIRECT, OR SPECIAL DAMAGES WHETHER UNDER 
+CONTRACT, TORT, WARRANTY, OR OTHERWISE, ARISING IN ANY WAY OUT OF THIS OR ANY 
+OTHER AGREEMENT RELATING TO THIS DOCUMENT, WHETHER OR NOT SUCH PARTY HAD ADVANCE 
+NOTICE OF THE POSSIBILITY OF SUCH DAMAGES.
+
+Copyright Notice
+
+Copyright 2001, 2002 IBM Corporation and Microsoft Corporation. All rights reserved.
+-->
+<xsd:schema targetNamespace="http://schemas.xmlsoap.org/ws/2002/04/secext" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:wsse="http://schemas.xmlsoap.org/ws/2002/04/secext" xmlns="http://schemas.xmlsoap.org/ws/2002/04/secext" xmlns:SOAP-ENV="http://schemas.xmlsoap.org/soap/envelope/" elementFormDefault="qualified" attributeFormDefault="unqualified" version="0.2">
+  <xsd:element name="Security">
+    <xsd:annotation>
+      <xsd:documentation>
+                This element defines header block to use for security-relevant data directed at a specific SOAP actor.
+           </xsd:documentation>
+    </xsd:annotation>
+    <xsd:complexType>
+      <xsd:sequence>
+        <xsd:any processContents="lax" minOccurs="0" maxOccurs="unbounded">
+          <xsd:annotation>
+            <xsd:documentation>
+                                The use of "any" is to allow extensibility and different forms of security data.
+                        </xsd:documentation>
+          </xsd:annotation>
+        </xsd:any>
+      </xsd:sequence>
+      <xsd:anyAttribute processContents="lax"/>
+    </xsd:complexType>
+  </xsd:element>
+  <xsd:element name="UsernameToken">
+    <xsd:complexType>
+      <xsd:sequence>
+        <xsd:element ref="Username"/>
+        <xsd:element ref="Password" minOccurs="0"/>
+      </xsd:sequence>
+      <xsd:attribute name="Id" type="xsd:ID"/>
+      <xsd:anyAttribute namespace="##other"/>
+    </xsd:complexType>
+  </xsd:element>
+  <xsd:element name="Username">
+    <xsd:complexType>
+      <xsd:simpleContent>
+        <xsd:extension base="xsd:string">
+          <xsd:anyAttribute namespace="##other"/>
+        </xsd:extension>
+      </xsd:simpleContent>
+    </xsd:complexType>
+  </xsd:element>
+  <xsd:element name="Password">
+    <xsd:complexType>
+      <xsd:simpleContent>
+        <xsd:extension base="xsd:string">
+          <xsd:attribute name="Type" type="xsd:QName"/>
+          <xsd:anyAttribute namespace="##other"/>
+        </xsd:extension>
+      </xsd:simpleContent>
+    </xsd:complexType>
+  </xsd:element>
+  <xsd:element name="BinarySecurityToken">
+    <xsd:annotation>
+      <xsd:documentation>A security token that is encoded in binary</xsd:documentation>
+    </xsd:annotation>
+    <xsd:complexType>
+      <xsd:simpleContent>
+        <xsd:extension base="xsd:string">
+          <xsd:attribute name="Id" type="xsd:ID"/>
+          <xsd:attribute name="ValueType" type="xsd:QName"/>
+          <xsd:attribute name="EncodingType" type="xsd:QName"/>
+          <xsd:anyAttribute namespace="##other" processContents="strict"/>
+        </xsd:extension>
+      </xsd:simpleContent>
+    </xsd:complexType>
+  </xsd:element>
+  <xsd:element name="SecurityTokenReference">
+    <xsd:annotation>
+      <xsd:documentation>
+            This element is used reference a security token.
+            </xsd:documentation>
+    </xsd:annotation>
+    <xsd:complexType>
+      <xsd:choice minOccurs="0" maxOccurs="unbounded">
+        <xsd:element ref="Reference"/>
+        <xsd:any namespace="##other" processContents="lax" minOccurs="0" maxOccurs="unbounded"/>
+      </xsd:choice>
+      <xsd:attribute name="Id" type="xsd:ID"/>
+      <xsd:anyAttribute namespace="##other" processContents="lax"/>
+    </xsd:complexType>
+  </xsd:element>
+  <xsd:element name="Reference">
+    <xsd:complexType>
+      <xsd:attribute name="URI" type="xsd:anyURI"/>
+    </xsd:complexType>
+  </xsd:element>
+  <xsd:simpleType name="PasswordTypeEnum">
+    <xsd:restriction base="xsd:QName">
+      <xsd:enumeration value="wsse:PasswordText"/>
+      <xsd:enumeration value="wsse:PasswordDigest"/>
+    </xsd:restriction>
+  </xsd:simpleType>
+  <xsd:simpleType name="ValueTypeEnum">
+    <xsd:restriction base="xsd:QName">
+      <xsd:enumeration value="wsse:X509v3"/>
+      <xsd:enumeration value="wsse:Kerberosv5TGT"/>
+      <xsd:enumeration value="wsse:Kerberosv5ST"/>
+    </xsd:restriction>
+  </xsd:simpleType>
+  <xsd:simpleType name="EncodingTypeEnum">
+    <xsd:restriction base="xsd:QName">
+      <xsd:enumeration value="wsse:Base64Binary"/>
+      <xsd:enumeration value="wsse:HexBinary"/>
+    </xsd:restriction>
+  </xsd:simpleType>
+  <xsd:simpleType name="FaultcodeEnum">
+    <xsd:restriction base="xsd:QName">
+      <xsd:enumeration value="wsse:UnsupportedSecurityToken"/>
+      <xsd:enumeration value="wsse:UnsupportedAlgorithm"/>
+      <xsd:enumeration value="wsse:InvalidSecurity"/>
+      <xsd:enumeration value="wsse:InvalidSecurityToken"/>
+      <xsd:enumeration value="wsse:FailedAuthentication"/>
+      <xsd:enumeration value="wsse:FailedCheck"/>
+      <xsd:enumeration value="wsse:SecurityTokenUnavailable"/>
+    </xsd:restriction>
+  </xsd:simpleType>
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/wsdl/secext_pvp.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/wsdl/secext_pvp.xsd
new file mode 100644
index 00000000..24896b99
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/wsdl/secext_pvp.xsd
@@ -0,0 +1,152 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!-- 
+Legal Disclaimer
+
+The presentation, distribution or other dissemination of the information 
+contained in this specification is not a license, either expressly or impliedly, 
+to any intellectual property owned or controlled by IBM or Microsoft and\or any other 
+third party.  IBM and Microsoft and\or any other third party may have patents, patent 
+applications, trademarks, copyrights, or other intellectual property rights 
+covering subject matter in this document.  The furnishing of this document 
+does not give you any license to IBM's and Microsoft's or any other third party's patents, 
+trademarks, copyrights, or other intellectual property.
+
+This specification and the information contained herein is provided on an "AS IS"
+ basis and to the maximum extent permitted by applicable law, IBM and Microsoft provides 
+the document AS IS AND WITH ALL FAULTS, and hereby disclaims all other warranties 
+and conditions, either express, implied or statutory, including, but not limited 
+to, any (if any) implied warranties, duties or conditions of merchantability, of 
+fitness for a particular purpose, of accuracy or completeness of responses, of 
+results, of workmanlike effort, of lack of viruses, and of lack of negligence, 
+all with regard to the document. ALSO, THERE IS NO WARRANTY OR CONDITION OF 
+TITLE, QUIET ENJOYMENT, QUIET POSSESSION, CORRESPONDENCE TO DESCRIPTION OR 
+NON-INFRINGEMENT OF ANY INTELLECTUAL PROPERTY RIGHTS WITH REGARD TO THE DOCUMENT.
+
+IN NO EVENT WILL IBM or MICROSOFT BE LIABLE TO ANY OTHER PARTY FOR THE COST OF PROCURING 
+SUBSTITUTE GOODS OR SERVICES, LOST PROFITS, LOSS OF USE, LOSS OF DATA, OR ANY 
+INCIDENTAL, CONSEQUENTIAL, DIRECT, INDIRECT, OR SPECIAL DAMAGES WHETHER UNDER 
+CONTRACT, TORT, WARRANTY, OR OTHERWISE, ARISING IN ANY WAY OUT OF THIS OR ANY 
+OTHER AGREEMENT RELATING TO THIS DOCUMENT, WHETHER OR NOT SUCH PARTY HAD ADVANCE 
+NOTICE OF THE POSSIBILITY OF SUCH DAMAGES.
+
+Copyright Notice
+
+Copyright 2001, 2002 IBM Corporation and Microsoft Corporation. All rights reserved.
+-->
+<xsd:schema targetNamespace="http://schemas.xmlsoap.org/ws/2002/04/secext" xmlns:pvp="http://egov.gv.at/pvp1.xsd" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:wsse="http://schemas.xmlsoap.org/ws/2002/04/secext" xmlns="http://schemas.xmlsoap.org/ws/2002/04/secext" xmlns:SOAP-ENV="http://schemas.xmlsoap.org/soap/envelope/" elementFormDefault="qualified" attributeFormDefault="unqualified" version="0.2">
+  <xsd:import namespace="http://egov.gv.at/pvp1.xsd" schemaLocation="../xsd/eingebunden/pvp1.xsd"/>
+  <xsd:element name="Security">
+    <xsd:annotation>
+      <xsd:documentation>
+                This element defines header block to use for security-relevant data directed at a specific SOAP actor.
+           </xsd:documentation>
+    </xsd:annotation>
+    <xsd:complexType>
+      <xsd:sequence>
+        <xsd:element ref="pvp:pvpToken" minOccurs="0"/>
+        <xsd:any processContents="lax" minOccurs="0" maxOccurs="unbounded">
+          <xsd:annotation>
+            <xsd:documentation>
+                                The use of "any" is to allow extensibility and different forms of security data.
+                        </xsd:documentation>
+          </xsd:annotation>
+        </xsd:any>
+      </xsd:sequence>
+      <xsd:anyAttribute processContents="lax"/>
+    </xsd:complexType>
+  </xsd:element>
+  <xsd:element name="UsernameToken">
+    <xsd:complexType>
+      <xsd:sequence>
+        <xsd:element ref="Username"/>
+        <xsd:element ref="Password" minOccurs="0"/>
+      </xsd:sequence>
+      <xsd:attribute name="Id" type="xsd:ID"/>
+      <xsd:anyAttribute namespace="##other"/>
+    </xsd:complexType>
+  </xsd:element>
+  <xsd:element name="Username">
+    <xsd:complexType>
+      <xsd:simpleContent>
+        <xsd:extension base="xsd:string">
+          <xsd:anyAttribute namespace="##other"/>
+        </xsd:extension>
+      </xsd:simpleContent>
+    </xsd:complexType>
+  </xsd:element>
+  <xsd:element name="Password">
+    <xsd:complexType>
+      <xsd:simpleContent>
+        <xsd:extension base="xsd:string">
+          <xsd:attribute name="Type" type="xsd:QName"/>
+          <xsd:anyAttribute namespace="##other"/>
+        </xsd:extension>
+      </xsd:simpleContent>
+    </xsd:complexType>
+  </xsd:element>
+  <xsd:element name="BinarySecurityToken">
+    <xsd:annotation>
+      <xsd:documentation>A security token that is encoded in binary</xsd:documentation>
+    </xsd:annotation>
+    <xsd:complexType>
+      <xsd:simpleContent>
+        <xsd:extension base="xsd:string">
+          <xsd:attribute name="Id" type="xsd:ID"/>
+          <xsd:attribute name="ValueType" type="xsd:QName"/>
+          <xsd:attribute name="EncodingType" type="xsd:QName"/>
+          <xsd:anyAttribute namespace="##other" processContents="strict"/>
+        </xsd:extension>
+      </xsd:simpleContent>
+    </xsd:complexType>
+  </xsd:element>
+  <xsd:element name="SecurityTokenReference">
+    <xsd:annotation>
+      <xsd:documentation>
+            This element is used reference a security token.
+            </xsd:documentation>
+    </xsd:annotation>
+    <xsd:complexType>
+      <xsd:choice minOccurs="0" maxOccurs="unbounded">
+        <xsd:element ref="Reference"/>
+        <xsd:any namespace="##other" processContents="lax" minOccurs="0" maxOccurs="unbounded"/>
+      </xsd:choice>
+      <xsd:attribute name="Id" type="xsd:ID"/>
+      <xsd:anyAttribute namespace="##other" processContents="lax"/>
+    </xsd:complexType>
+  </xsd:element>
+  <xsd:element name="Reference">
+    <xsd:complexType>
+      <xsd:attribute name="URI" type="xsd:anyURI"/>
+    </xsd:complexType>
+  </xsd:element>
+  <xsd:simpleType name="PasswordTypeEnum">
+    <xsd:restriction base="xsd:QName">
+      <xsd:enumeration value="wsse:PasswordText"/>
+      <xsd:enumeration value="wsse:PasswordDigest"/>
+    </xsd:restriction>
+  </xsd:simpleType>
+  <xsd:simpleType name="ValueTypeEnum">
+    <xsd:restriction base="xsd:QName">
+      <xsd:enumeration value="wsse:X509v3"/>
+      <xsd:enumeration value="wsse:Kerberosv5TGT"/>
+      <xsd:enumeration value="wsse:Kerberosv5ST"/>
+    </xsd:restriction>
+  </xsd:simpleType>
+  <xsd:simpleType name="EncodingTypeEnum">
+    <xsd:restriction base="xsd:QName">
+      <xsd:enumeration value="wsse:Base64Binary"/>
+      <xsd:enumeration value="wsse:HexBinary"/>
+    </xsd:restriction>
+  </xsd:simpleType>
+  <xsd:simpleType name="FaultcodeEnum">
+    <xsd:restriction base="xsd:QName">
+      <xsd:enumeration value="wsse:UnsupportedSecurityToken"/>
+      <xsd:enumeration value="wsse:UnsupportedAlgorithm"/>
+      <xsd:enumeration value="wsse:InvalidSecurity"/>
+      <xsd:enumeration value="wsse:InvalidSecurityToken"/>
+      <xsd:enumeration value="wsse:FailedAuthentication"/>
+      <xsd:enumeration value="wsse:FailedCheck"/>
+      <xsd:enumeration value="wsse:SecurityTokenUnavailable"/>
+    </xsd:restriction>
+  </xsd:simpleType>
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/xsd/allgemein/Messages.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/xsd/allgemein/Messages.xsd
new file mode 100644
index 00000000..47dcda53
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/xsd/allgemein/Messages.xsd
@@ -0,0 +1,27 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: Messages.xsd
+Zweck: Definiert die Message-Datentypen fuer Services Request und Response (siehe Service.wsdl)
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2012-08-09 xfu: +BasTabelleAbfrage.xsd
+2004-02-18 tsch: Erstellung
+-->
+
+<xsd:schema targetNamespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	 
+	<xsd:include schemaLocation="../eingebunden/InfoTechnisch.xsd"/>
+	<xsd:include schemaLocation="../eingebunden/Workflow.xsd"/>
+	<xsd:include schemaLocation="Benutzereinstellungen.xsd"/>
+	<xsd:include schemaLocation="Organisationseinstellungen.xsd"/>
+	<xsd:include schemaLocation="GeschaeftsprozesseAuflisten.xsd"/>
+	<xsd:include schemaLocation="Auswertungen.xsd"/>
+	<xsd:include schemaLocation="BasTabelleAbfrage.xsd"/>
+
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/xsd/allgemein/Service.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/xsd/allgemein/Service.xsd
new file mode 100644
index 00000000..81cd3e80
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/xsd/allgemein/Service.xsd
@@ -0,0 +1,40 @@
+<?xml version="1.0" encoding="UTF-8"?>
+
+<!--
+Name: Service.xsd
+Zweck: Definiert die Serviceroot - Elemente base:Request und base:Response global
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2008-07-25 teo: +PDFResponse (optional! ZMR setzt dieses Feld bisher nicht!)
+2004-08-19 tsch: Erstellung
+-->
+
+<xsd:schema xmlns="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			targetNamespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+			
+	<xsd:include schemaLocation="Messages.xsd"/>
+	<xsd:include schemaLocation="../eingebunden/EingebundenProxy.xsd"/>
+	
+	<xsd:element name="Request">
+		<xsd:complexType>
+			<xsd:sequence>
+					<xsd:element ref="WorkflowInfoClient"/>
+					<xsd:element ref="ClientInfo"/>
+					<xsd:any processContents="lax"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>	
+	<xsd:element name="Response">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="WorkflowInfoServer"/>
+				<xsd:element name="PDFResponse" type="xsd:base64Binary" minOccurs="0"/>
+				<xsd:element ref="ServerInfo"/>
+				<xsd:any processContents="lax"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>	
+</xsd:schema>
\ No newline at end of file
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/xsd/eingebunden/AbfrageMuster.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/xsd/eingebunden/AbfrageMuster.xsd
new file mode 100644
index 00000000..9430ade8
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/xsd/eingebunden/AbfrageMuster.xsd
@@ -0,0 +1,140 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: AbfrageParameter.xsd
+Zweck: Definiert Datentypen für generische Suchabfragen mit simplen Operatoren
+Author(s): Tschurtschenthaler Thomas (basierend auf suchmuster.xsd von DI Heinz Töfferl - Comm-Unity Software Development GmbH & Co KG)
+Aenderungshistorie:
+2005-03-30 tsch: Erstellung
+-->
+<xsd:schema xmlns="http://bmi.gv.at/namespace/zmr-su/base/20040201#" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xsd="http://www.w3.org/2001/XMLSchema" targetNamespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	<xsd:element name="AbfrageMuster">
+		<xsd:annotation>
+			<xsd:documentation>Daten zu einem Suchmuster (Ausdruck)</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:choice>
+				<xsd:sequence>
+					<xsd:element ref="FeldAbfrage"/>
+					<xsd:element ref="SubFeldAbfrage" minOccurs="0" maxOccurs="unbounded"/>
+				</xsd:sequence>
+				<xsd:sequence>
+					<xsd:annotation>
+						<xsd:documentation>
+						Dient zur Klammerung von Suchmuster-Ausdrücken.
+						Muss erst dann unterstützt werden, wenn eine Klammerung nötig wird.
+						</xsd:documentation>
+					</xsd:annotation>
+					<xsd:element ref="AbfrageMuster"/>
+					<xsd:element ref="SubAbfrageMuster" minOccurs="0" maxOccurs="unbounded"/>
+				</xsd:sequence>
+			</xsd:choice>
+			<xsd:attribute name="AbfrageName" type="xsd:string" use="optional"/>
+		</xsd:complexType>
+	</xsd:element>
+	<xsd:element name="FeldAbfrage">
+		<xsd:annotation>
+			<xsd:documentation>Eine Sucheinschränkung (= Einschränkung für ein Feld)</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element name="Feld" type="xsd:string"/>
+				<xsd:element ref="Relation"/>
+				<xsd:element name="Wert" type="xsd:string"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	<xsd:element name="Operation" block="restriction" default="UND">
+		<xsd:annotation>
+			<xsd:documentation>Verknüpfung mit der nächsten Zeile (Default: AND)</xsd:documentation>
+		</xsd:annotation>
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:NMTOKEN">
+				<xsd:enumeration value="UND"/>
+				<xsd:enumeration value="ODER"/>
+				<xsd:enumeration value="ODER_SELF"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	<xsd:element name="Relation">
+		<xsd:annotation>
+			<xsd:documentation>Mögliche Vergleichsoperatoren.</xsd:documentation>
+		</xsd:annotation>
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:enumeration value="IST"/>
+				<xsd:enumeration value="IST NICHT"/>
+				<xsd:enumeration value="BEGINNT MIT"/>
+				<xsd:enumeration value="BEGINNT NICHT MIT"/>
+				<xsd:enumeration value="ENDET MIT"/>
+				<xsd:enumeration value="ENDET NICHT MIT"/>
+				<xsd:enumeration value="GRÖSSER ALS"/>
+				<xsd:enumeration value="GRÖSSER GLEICH"/>
+				<xsd:enumeration value="KLEINER ALS"/>
+				<xsd:enumeration value="KLEINER GLEICH"/>
+				<xsd:enumeration value="ENTHÄLT"/>
+				<xsd:enumeration value="ENTHÄLT NICHT"/>
+				<xsd:enumeration value="IST LEER"/>
+				<xsd:enumeration value="IST NICHT LEER"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	<xsd:element name="AbfrageSortierung">
+		<xsd:annotation>
+			<xsd:documentation>Daten zur Sortierung einer Abfrage</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="SortSchluessel" maxOccurs="unbounded"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	<xsd:element name="SortSchluessel">
+		<xsd:annotation>
+			<xsd:documentation>Sortierungsschluessel einer Abfrage</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element name="Feld" type="xsd:string"/>
+				<xsd:element name="Absteigend" type="xsd:boolean"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	<xsd:element name="SubFeldAbfrage">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="Operation"/>
+				<xsd:element ref="FeldAbfrage"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	<xsd:element name="SubAbfrageMuster">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="Operation"/>
+				<xsd:element ref="AbfrageMuster"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="AbfrageParameter">
+		<xsd:annotation>
+			<xsd:documentation>Daten zur Parametrisierung einer Abfrage</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="Parameter" maxOccurs="unbounded"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	<xsd:element name="Parameter">
+		<xsd:annotation>
+			<xsd:documentation>Ein einzelner Abfrageparameter</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element name="Name" type="xsd:string"/>
+				<xsd:element name="Wert" type="xsd:string"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+</xsd:schema>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/xsd/eingebunden/AkademischerGradFelder.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/xsd/eingebunden/AkademischerGradFelder.xsd
new file mode 100644
index 00000000..fc910841
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/xsd/eingebunden/AkademischerGradFelder.xsd
@@ -0,0 +1,61 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: AkademischerGradFelder.xsd
+Zweck: Definiert allgemein nutzbare Felder für akademische Grade
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2004-12-15 tsch: AkadGradReihung - Wertebereich erweitert
+2004-06-20 tsch: Erstellung
+-->
+
+<xsd:schema xmlns="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			targetNamespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema" 
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	
+	<xsd:include schemaLocation="SimpleTypes.xsd"/>
+
+	<xsd:element name="AkadGradStellung">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:enumeration value="VOR"/>
+				<xsd:enumeration value="NACH"/>		
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	
+	<xsd:element name="AkadGradReihung">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:enumeration value="0"/>
+				<xsd:enumeration value="1"/>
+				<xsd:enumeration value="2"/>
+				<xsd:enumeration value="2/3"/>
+				<xsd:enumeration value="3"/>			
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	
+	<xsd:element name="AkadGradLang">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="1"/>
+				<xsd:maxLength value="90"/>								
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	
+	<xsd:element name="AkadGradKurz">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="1"/>
+				<xsd:maxLength value="30"/>								
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	<xsd:element name="AkadGradKey" type="IDType"/>
+</xsd:schema>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/xsd/eingebunden/Blaettern.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/xsd/eingebunden/Blaettern.xsd
new file mode 100644
index 00000000..5b556802
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/xsd/eingebunden/Blaettern.xsd
@@ -0,0 +1,56 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: Blaettern.xsd
+Zweck: Definiert Request-Typen für das allgemeine Blättern; Die Response hängt vom Workflow-Vorgang ab (Personensuchergebnis, Avisosuchergebnis, ...) 
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2006-04-19 toef: Richtungswerte 'Anfang' und 'Ende' hinzugefügt
+2005-09-20 tsch: Richtungswert 'Aktualisieren' hinzugefügt
+2004-06-14 tsch: Organisation nach ClientInfo verschoben
+2004-04-07 tsch: Erstellung
+-->
+
+<xsd:schema xmlns="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			targetNamespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	<xsd:include schemaLocation="InfoFachlich.xsd"/>
+
+	<xsd:element name="BlaetternRequest">
+		<xsd:annotation>
+			<xsd:documentation>
+			Für Suchvorgänge, in deren Ergebnisliste geblättert werden kann, stellt dieser Request
+			eine generische Schnittstelle zum Blättern dar. Er wird mit demselben Vorgang-Namen in der
+			Workflowschnittstelle geschickt, wie der ursprüngliche Suche-Request. Als Ergebnis wird
+			das Suchergebnis des ensprechenden Suchvorgangs analog zur rsprünglichen Suche-Response geliefert.
+			</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="BlaetternInfo"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="BlaetternInfo">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element name="ErgebnislisteName" type="xsd:string" minOccurs="0"/>
+				<xsd:element name="Richtung">
+					<xsd:simpleType>
+						<xsd:restriction base="xsd:string">
+							<xsd:enumeration value="Vor"/>
+							<xsd:enumeration value="Zurueck"/>
+							<xsd:enumeration value="Aktualisieren"/>
+							<xsd:enumeration value="Anfang"/>
+							<xsd:enumeration value="Ende"/>
+						</xsd:restriction>
+					</xsd:simpleType>
+				</xsd:element>
+				<xsd:element ref="AnzahlSaetze"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+</xsd:schema>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/xsd/eingebunden/DokumentFelder.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/xsd/eingebunden/DokumentFelder.xsd
new file mode 100644
index 00000000..270cb52a
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/xsd/eingebunden/DokumentFelder.xsd
@@ -0,0 +1,74 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: DokumentFelder.xsd
+Zweck: Definiert allgemein nutzbare Felder für Dokumente/Reisedokumente
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2005-09-26 tsch: DokumentName hinzugefügt
+2004-09-29 tsch: Felder für Standard-Dokumente hinzugefügt
+2004-06-24 tsch: AusstellDatum: Timestamp wird xsd:date
+2004-01-22 tsch: Erstellung
+-->
+
+<xsd:schema xmlns="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			targetNamespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema" 
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	
+	<xsd:include schemaLocation="SimpleTypes.xsd"/>
+	
+	<xsd:element name="DokumentArt">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="1"/>
+				<xsd:maxLength value="55"/>			
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	<xsd:element name="DokumentNummer">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="256"/>			
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	<xsd:element name="EintragungsNummer">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="1"/>
+				<xsd:maxLength value="45"/>			
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	<xsd:element name="DokumentName">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="54"/>			
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>			
+	<xsd:element name="AusstellDatum" type="xsd:date"/>
+	<xsd:element name="AblaufDatum" type="xsd:date"/>
+	<xsd:element name="SterbeDatum" type="xsd:date"/>
+	<xsd:element name="SterbeUhrzeit" type="xsd:time"/>
+	<xsd:element name="AusstellBehoerde">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="90"/>			
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	<xsd:element name="Ausstellungsstaat" type="StaatenNameType"/>
+	<xsd:element name="DokumentGiltBis" type="TimestampType"/>
+	
+</xsd:schema>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/xsd/eingebunden/EingebundenProxy.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/xsd/eingebunden/EingebundenProxy.xsd
new file mode 100644
index 00000000..450fad59
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/xsd/eingebunden/EingebundenProxy.xsd
@@ -0,0 +1,28 @@
+<?xml version="1.0" encoding="UTF-8"?>
+
+<!--
+Name: EingebundenProxy.xsd
+Zweck: Fasst XSD-Files zusammen, die oft eingebunden werden
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2009-07-07 teo: +PersonExport
+2003-12-10 tsch: Erstellung
+-->
+
+<xsd:schema xmlns="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			targetNamespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+			
+	<xsd:include schemaLocation="InfoFachlich.xsd"/>
+	<xsd:include schemaLocation="InfoTechnisch.xsd"/>
+	<xsd:include schemaLocation="MeldungFelder.xsd"/>
+	<xsd:include schemaLocation="PersonFelder.xsd"/>
+	<xsd:include schemaLocation="DokumentFelder.xsd"/>
+	<xsd:include schemaLocation="Workflow.xsd"/>
+	<xsd:include schemaLocation="Blaettern.xsd"/>
+	<xsd:include schemaLocation="AkademischerGradFelder.xsd"/>
+	<xsd:include schemaLocation="AbfrageMuster.xsd"/>
+	<xsd:include schemaLocation="PersonExport.xsd"/>
+</xsd:schema>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/xsd/eingebunden/Entity.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/xsd/eingebunden/Entity.xsd
new file mode 100644
index 00000000..4ed61a4f
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/xsd/eingebunden/Entity.xsd
@@ -0,0 +1,135 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: Entity.xsd
+Zweck: Definiert allgemeine Datentypen für Entities (Person, Meldung, ...) der Register 
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2012-08-09 xfu:  Beginncode und -text ist optional
+2004-10-27 tsch: Behoerdenschluessel hinzugefügt
+2004-09-28 tsch: OrgBezeichnung hinzugefügt
+2004-06-21 tsch: EntityReferenz ohne LetzteAenderung
+2004-06-18 tsch: BeginnText hinzugefügt
+2004-01-22 tsch: EntityErgebnisReferenz statt Entity abstract
+2003-11-16 tsch: Erstellung
+-->
+<xsd:schema xmlns="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			targetNamespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	
+	<xsd:include schemaLocation="SimpleTypes.xsd"/>
+		
+	<xsd:element name="EntityErgebnisReferenz" type="EntityErgebnisReferenzType"/>
+	<xsd:complexType name="EntityErgebnisReferenzType">
+		<xsd:annotation>
+			<xsd:documentation>Referenziert eine Entity in der Datenbank für Suchergebnisse</xsd:documentation>
+		</xsd:annotation>
+
+		<xsd:sequence>
+			<xsd:sequence>
+				<xsd:element ref="Technisch"/>
+				<xsd:group ref="ErgebnisFachlichGroup"/>
+			</xsd:sequence>
+		</xsd:sequence>
+
+	</xsd:complexType> 
+
+	<xsd:element name="EntityReferenz" type="EntityReferenzType"/>
+	<xsd:complexType name="EntityReferenzType">
+		<xsd:annotation>
+			<xsd:documentation>Referenziert eine Entity in der Datenbank für Aenderungen (immer die aktuellste, das heisst jüngstes 'Von')</xsd:documentation>
+		</xsd:annotation>
+		<xsd:sequence>
+			<xsd:element ref="EntityID"/>
+		</xsd:sequence>	
+	</xsd:complexType>
+
+	<xsd:element name="Technisch">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="EntityID"/>
+				<xsd:element ref="LetzteAenderung"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:group name="ErgebnisFachlichGroup">
+		<xsd:sequence>
+			<xsd:element ref="Von"/>
+			<xsd:element ref="BeginnCode" minOccurs="0"/> <!-- Einträge in BAS.STAAT und BAS.AKADGRAD haben keinen Beginncode (werden aber in BasTabelleAbfrage.xsd abgerufen) -->
+			<xsd:element ref="BeginnText" minOccurs="0"/>
+			<xsd:element ref="BeginnFreitext" minOccurs="0"/>
+			<xsd:element ref="Bis" minOccurs="0"/>
+			<xsd:element ref="DurchgefuehrtVon"/>
+		</xsd:sequence>
+	</xsd:group>
+	
+	<xsd:element name="Von" type="TimestampType"/>
+	<xsd:element name="Bis" type="TimestampType"/>
+	<xsd:element name="BeginnCode" type="GrundCodeType"/>
+	<xsd:element name="BeginnText" type="GrundTextType"/>	
+	<xsd:element name="BeginnFreitext" type="GrundFreitextType"/>	
+	<xsd:element name="EntityID" type="ENTITYIDType"/>
+	<xsd:element name="LetzteAenderung" type="TimestampType"/>
+	<xsd:element name="DurchgefuehrtVon" type="DurchgefuehrtVonType"/>
+	<xsd:complexType name="DurchgefuehrtVonType">
+		<xsd:sequence>
+			<xsd:element ref="Organisation"/>
+			<xsd:element ref="Benutzer" minOccurs="0"/>
+		</xsd:sequence>
+	</xsd:complexType>
+	
+	<xsd:element name="Organisation">
+		<xsd:complexType>
+			<xsd:annotation>
+				<xsd:documentation>
+				Die derzeit bekannten Organisationen sind strikt definiert (BehoerdenNr, GemeindeNr, KundenNr);
+				neue, noch nicht definierte Organiationen, können mittels eines (Orgtyp, OrgCode)-Paares übermittelt werden.
+				</xsd:documentation>
+			</xsd:annotation>
+			<xsd:sequence>
+				<xsd:choice>
+					<xsd:choice>
+						<xsd:element ref="BehoerdenNr"/>
+						<xsd:element ref="GemeindeNr"/>
+						<xsd:element ref="KundenNr"/>
+						<xsd:element ref="Behoerdenschluessel"/>
+					</xsd:choice>
+					<xsd:sequence>
+						<xsd:element ref="OrgTyp"/>
+						<xsd:element ref="OrgCode"/>
+					</xsd:sequence>
+				</xsd:choice>
+				<xsd:element ref="OrgBezeichnung" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	<xsd:element name="BehoerdenNr" type="BehoerdenNrType"/>
+	<xsd:element name="Behoerdenschluessel" type="BehoerdenschluesselType"/>
+	<xsd:element name="GemeindeNr" type="GemeindeNrType"/>
+	<xsd:element name="KundenNr" type="KundenNrType"/>
+	<xsd:element name="OrgTyp" type="OrgTypType"/>
+	<xsd:element name="OrgCode" type="OrgCodeType"/>
+	<xsd:element name="Benutzer" type="BenutzerType"/>
+	<xsd:element name="OrgBezeichnung">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="1"/>
+				<xsd:maxLength value="80"/>	
+			</xsd:restriction>			
+		</xsd:simpleType>
+	</xsd:element>
+	<xsd:element name="BehoerdenBezeichnung">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="1"/>
+				<xsd:maxLength value="80"/>	
+			</xsd:restriction>			
+		</xsd:simpleType>
+	</xsd:element>
+
+</xsd:schema>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/xsd/eingebunden/InfoFachlich.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/xsd/eingebunden/InfoFachlich.xsd
new file mode 100644
index 00000000..9bf8ceb0
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/xsd/eingebunden/InfoFachlich.xsd
@@ -0,0 +1,103 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: InfoFachlich.xsd
+Zweck: Definiert Typen für allgemeine fachliche Informationen der Usecases
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2006-08-08 tsch: Feld EingeschraenkteHistorie hinzugefügt
+2004-09-09 tsch: Register hinzugefügt
+2004-07-07 tsch: InfoFachlichType.Von optional, InfoFachlichType.GrundCode Mussfeld
+2004-06-22 tsch: SaetzeVon, SaetzeBis hinzugefügt
+2004-06-18 tsch: ErgebnissatzInfo, Beendigung hinzugefügt
+2004-04-17 tsch: Organisation entfernt
+2004-04-13 tsch: InfoFachlichType - GrundCode optional
+2003-11-16 tsch: Erstellung
+-->
+
+<xsd:schema xmlns="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			targetNamespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			xmlns:cio="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	<xsd:include schemaLocation="SimpleTypes.xsd"/>
+	<xsd:include schemaLocation="Entity.xsd"/>
+	<xsd:import namespace="http://reference.e-government.gv.at/namespace/persondata/de/20040201#" schemaLocation="PersonDataZMR.xsd"/>
+
+	<xsd:element name="ErgebnissatzInfo" type ="ErgebnissatzInfoType"/>
+	<xsd:complexType name="ErgebnissatzInfoType">
+		<xsd:sequence>
+			<xsd:annotation>
+				<xsd:documentation>
+					Letze-Änderung-Timestamp des Gesamt-Satzes (Jüngster Timestamp aller Entities im Satz),
+					Muss bei einem Änderungsvorgang als Letzte-Änderung-Timestamp geschickt werden.
+				</xsd:documentation>
+			</xsd:annotation>
+			<xsd:element ref="LetzteAenderung"/>
+		</xsd:sequence>
+	</xsd:complexType>
+
+	<xsd:element name="Message">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="Number"/>
+				<xsd:element ref="Text"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="Number" type="IntegerType"/>
+	<xsd:element name="Text">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="250"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	
+	<xsd:complexType name="InfoFachlichType" abstract="true">
+		<xsd:annotation>
+			<xsd:documentation>allgemeine fachliche Informationen</xsd:documentation>
+		</xsd:annotation>
+
+		<xsd:sequence>
+			<xsd:element ref="Von" minOccurs="0"/>
+			<xsd:element name="GrundCode" type="GrundCodeType"/>
+			<xsd:element ref="GrundFreitext" minOccurs="0"/>
+		</xsd:sequence>
+	</xsd:complexType>
+	
+	<xsd:element name="BPKPersonInfo" type="BPKPersonInfoType"/>
+	<xsd:complexType name="BPKPersonInfoType">
+		<xsd:annotation>
+			<xsd:documentation>Bereichspezifische Bürgerkarten-Information einer Person</xsd:documentation>
+		</xsd:annotation>
+		<xsd:sequence>
+			<xsd:element ref="cio:NatuerlichePerson"/>
+			<xsd:element ref="Bereichskennung"/>
+			<xsd:element ref="BPK"/>
+		</xsd:sequence>
+	</xsd:complexType>
+	
+	<xsd:element name="Beendigung" type="xsd:boolean"/>
+	<xsd:element name="Bezugsfeld" type="BezugsfeldType"/>
+	
+	<xsd:element name="Stichtag" type="TimestampType"/>
+	<xsd:element name="InclusivHistorie" type="xsd:boolean"/>
+	<xsd:element name="EingeschraenkteHistorie" type="xsd:boolean"/>
+	<xsd:element name="Formalisiert" type="xsd:boolean"/>
+	<xsd:element name="ErstellePDF"  type="xsd:boolean"/>
+	<xsd:element name="InclusivAusgeblendeteSaetze" type="xsd:boolean"/>
+	<xsd:element name="InclusivNameVorErsterEhe" type="xsd:boolean"/>
+	<xsd:element name="GefundeneSaetze" type="IntegerType"/>
+	<xsd:element name="AnzahlSaetze" type="IntegerType"/>
+	<xsd:element name="SaetzeVon" type="IntegerType"/>
+	<xsd:element name="SaetzeBis" type="IntegerType"/>
+	<xsd:element name="GrundFreitext" type="GrundFreitextType"/>
+	<xsd:element name="Bereichskennung" type="xsd:string"/>
+	<xsd:element name="BPK" type="xsd:string"/>
+	<xsd:element name="Register" type="RegisterType"/>
+
+</xsd:schema>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/xsd/eingebunden/InfoTechnisch.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/xsd/eingebunden/InfoTechnisch.xsd
new file mode 100644
index 00000000..567a91f0
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/xsd/eingebunden/InfoTechnisch.xsd
@@ -0,0 +1,103 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: InfoTechnisch.xsd
+Zweck: Definiert Typen für allgemeine technische Informationen der Usecases
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2004-09-09 tsch: ErrorCode, ErrorMessage hinzugefügt
+2004-06-24 tsch: UserInfo als Message definiert
+2004-05-17 tsch: Organisation, Client dazugefügt; Softwarehaus, ClientVersion entfernt
+2003-11-16 tsch: Erstellung
+-->
+
+<xsd:schema targetNamespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	<xsd:include schemaLocation="InfoFachlich.xsd"/>
+	
+	<xsd:element name="ClientInfo" type="ClientInfoType"/>
+
+	<xsd:complexType name="ClientInfoType">
+		<xsd:annotation>
+			<xsd:documentation>Technische Client-Informationen</xsd:documentation>
+		</xsd:annotation>
+
+		<xsd:sequence>
+			<xsd:element ref="Organisation"/>
+			<xsd:element ref="Client">
+				<xsd:annotation>
+					<xsd:documentation>Herstellername der Client-Software inklusive Version (Bsp.: ZMRHTMLClient V3.0)</xsd:documentation>
+				</xsd:annotation>
+			</xsd:element>
+		</xsd:sequence>
+	</xsd:complexType>
+	
+	<xsd:element name="Client">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="1"/>
+				<xsd:maxLength value="18"/>				
+			</xsd:restriction>
+		</xsd:simpleType>	
+	</xsd:element>
+	
+
+	<xsd:element name="ServerInfo" type="ServerInfoType"/>
+	
+	<xsd:complexType name="ServerInfoType">
+		<xsd:annotation>
+			<xsd:documentation>Technische Server-Informationen</xsd:documentation>
+		</xsd:annotation>
+
+		<xsd:sequence>		
+			<xsd:element ref="GeneriertVon">
+				<xsd:annotation>
+					<xsd:documentation>Applikationsname und -version</xsd:documentation>
+				</xsd:annotation>
+			</xsd:element>
+			<xsd:element ref="GeneriertAm">
+				<xsd:annotation>
+					<xsd:documentation>Generierung Timestamp</xsd:documentation>
+				</xsd:annotation>
+			</xsd:element>								
+			<xsd:element ref="ServerTransaktionNr">
+				<xsd:annotation>
+					<xsd:documentation>Transaktionsnummer des Servers</xsd:documentation>
+				</xsd:annotation>
+			</xsd:element>					
+			<xsd:element ref="UserInfo" minOccurs="0">
+				<xsd:annotation>
+					<xsd:documentation>
+					Enthält neue User-Information (wie z.B. Information über Wartungarbeiten am ZMR)
+					Diese Info kann dem User am Bildschirm angezeigt werden.
+					</xsd:documentation>
+				</xsd:annotation>
+			</xsd:element>		
+		</xsd:sequence>
+	</xsd:complexType>
+
+	<xsd:element name="GeneriertVon">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="1"/>
+				<xsd:maxLength value="50"/>				
+			</xsd:restriction>
+		</xsd:simpleType>	
+	</xsd:element>
+	<xsd:element name="GeneriertAm" type="TimestampType"/>
+	<xsd:element name="ErrorCode" type="xsd:string"/>
+	<xsd:element name="ErrorMessage" type="xsd:string"/>
+	<xsd:element name="ServerTransaktionNr" type="IDType"/>
+	<xsd:element name="UserInfo">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="Message"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+</xsd:schema>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/xsd/eingebunden/MeldungFelder.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/xsd/eingebunden/MeldungFelder.xsd
new file mode 100644
index 00000000..7a9feda1
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/xsd/eingebunden/MeldungFelder.xsd
@@ -0,0 +1,283 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: MeldungFelder.xsd
+Zweck: Definiert allgemein nutzbare Felder für Meldedaten
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2010-11-24 mp: +Infotext (ZMR-1513)
+2009-11-20 mp: Gebäudeeigenschaft und Nutzungsart hinzugefügt
+2006-06-26 tsch: OrientierungsnummerBis hinzugefügt
+2005-12-06 tsch: Detailfelder für GWR-Tueren hinzugefügt
+2004-12-09 tsch: OKZ und SKZ alphanumerisch
+2004-08-16 tsch: Bezirkskennung, DruckZusatztext hinzugefügt
+2004-08-02 tsch: PeriodeCode, PeriodeText, PeriodeFreitext hinzugefügt
+2004-07-30 tsch: HauptIdentadresse->HauptIdent; AdressZusatz enfernt; +OKZ; +SKZ; +Adressschluessel; +InfoMeldewesen
+2004-06-24 tsch: GBRRefkey, Postleitzahlgebiet hinzugefügt
+2004-01-27 tsch: Erstellung
+-->
+
+<xsd:schema xmlns="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			targetNamespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	<xsd:include schemaLocation="SimpleTypes.xsd"/>
+	
+
+	<xsd:element name="GemeldetVon" type="TimestampType"/>
+	<xsd:element name="GemeldetBis" type="TimestampType"/>
+
+	<xsd:element name="PeriodeCode" type="GrundCodeType"/>
+	<xsd:element name="PeriodeText" type="GrundTextType"/>
+	<xsd:element name="PeriodeFreitext" type="GrundFreitextType"/>
+
+	<xsd:element name="Unterkunftgeber">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="250"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+
+	<xsd:element name="ADRRefkey">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="1"/>
+				<xsd:maxLength value="12"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>	
+	<xsd:element name="GBRRefkey">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="1"/>
+				<xsd:maxLength value="12"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>	
+	
+	<xsd:element name="HauptIdent">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:enumeration value="H"/>
+				<xsd:enumeration value="I"/>
+				<xsd:enumeration value="B"/>
+			</xsd:restriction>
+		</xsd:simpleType>	
+	</xsd:element>
+
+	<xsd:element name="OKZ">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:pattern value="[0-9;A-Z]{5}"/>
+			</xsd:restriction>
+		</xsd:simpleType>	
+	</xsd:element>
+
+	<xsd:element name="SKZ">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:pattern value="[0-9;A-Z]{6}"/>
+			</xsd:restriction>
+		</xsd:simpleType>	
+	</xsd:element>
+
+	<xsd:element name="Adressstatus">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="1"/>
+				<xsd:maxLength value="9"/>
+			</xsd:restriction>
+		</xsd:simpleType>	
+	</xsd:element>
+	
+	<xsd:element name="Hofname">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="50"/>
+			</xsd:restriction>
+		</xsd:simpleType>	
+	</xsd:element>
+	
+	<xsd:element name="StrasseZweisprachig">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="108"/>
+			</xsd:restriction>
+		</xsd:simpleType>	
+	</xsd:element>
+
+	<xsd:element name="Gebaeudeunterscheidung">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="60"/>
+			</xsd:restriction>
+		</xsd:simpleType>	
+	</xsd:element>
+
+	<xsd:element name="Postleitzahlgebiet">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="54"/>
+			</xsd:restriction>
+		</xsd:simpleType>	
+	</xsd:element>
+
+	<xsd:element name="InfoMeldewesen">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="100"/>
+			</xsd:restriction>
+		</xsd:simpleType>	
+	</xsd:element>		
+
+	<xsd:element name="GBDUntteil" type="xsd:boolean"/>
+	
+	<xsd:element name="NameZuteil" type="xsd:boolean"/>
+
+	<xsd:element name="Adressschluessel">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="OKZ" minOccurs="0"/>
+				<xsd:element ref="SKZ" minOccurs="0"/>
+				<xsd:element ref="ADRRefkey" minOccurs="0"/>
+				<xsd:element ref="GBRRefkey" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="Bezirkskennung">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:pattern value="[0-9]{3}"/>
+			</xsd:restriction>
+		</xsd:simpleType>	
+	</xsd:element>
+
+	<xsd:element name="DruckZusatztext">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="230"/>
+			</xsd:restriction>
+		</xsd:simpleType>	
+	</xsd:element>
+	
+	<xsd:element name="Infotext">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="230"/>
+			</xsd:restriction>
+		</xsd:simpleType>	
+	</xsd:element>		
+
+	<xsd:element name="TuerNr">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="25"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>	
+
+	<xsd:element name="TopNr">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="25"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	
+	<xsd:element name="Lagebeschreibung">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="25"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+
+	<xsd:element name="NtzLage">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="1"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+
+	<xsd:element name="NtzStock">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="3"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+
+	<xsd:element name="NtzAdrart">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="1"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	
+	<xsd:element name="OrientierungsnummerBis">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="32"/>
+			</xsd:restriction>
+		</xsd:simpleType>	
+	</xsd:element>				
+	
+	<xsd:element name="GbdEigenschaft">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="2"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	
+	<xsd:element name="NtzArt">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="2"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	
+</xsd:schema>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/xsd/eingebunden/PersonDataZMR.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/xsd/eingebunden/PersonDataZMR.xsd
new file mode 100644
index 00000000..8a05c612
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/xsd/eingebunden/PersonDataZMR.xsd
@@ -0,0 +1,741 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: PersonDataZMR.xsd
+Zweck: Striktere Redefinition des Generischen Schemas zum Speichern und Austauschen von Personendaten des Chief Information Office Austria, Stabsstelle IKT-Strategie des Bundes, BMÖLS
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2012-04-12 ee  : element "Adresse" entfernt, substitutionGroups darauf entfernt
+				-> mit wsdl2java wieder kompilierbar, sonst "Adresse is referenced but not defined." error
+2010-07-09 rp  : LMR-783: +GueltigVon, GueltigBis bei Staatsangehoerigkeit
+2009-11-25 teo : ZMR-1296 Anpassungen aufgrund Bundesgesetz über die eingetragene Partnerschaft (EPG)
+2006-04-18 woeg: Familienstand
+2005-09-26 tsch: Internetadresse, Telefonadresse übernommen, Postleitzahl alphanumerisch
+2004-01-31 tsch: maximale Feldlänge für Geburtsbundesland auf 72 erhöht, minimale auf 0.
+2004-12-09 tsch: Adresscode und Objektnummer alphanumerisch, Postleitzahl mit führender Null
+2004-11-02 tsch: Elemenent Affix in PersonenNameTyp Unbounded
+2004-08-24 tsch: Element PersonenDaten übernommen
+2004-07-30 tsch: Anpassungen von Personrecord-Feldern: +Adresszeile; Gebaeudeteil->Gebaeude; Nutzungseinheitnummer->Nutzungseinheit; NTZLNR->Nutzungseinheitlaufnummer; +Postfach; AdressRegEintrag->AdressRegisterEintrag;Gemeindekennzahl->Gemeindekennziffer
+2004-07-20 tsch: Staatsangehörigkeit-Felder optional
+2004-07-08 tsch: Region (Postleitzahlgebiet) hinzugefügt
+2004-06-24 tsch: StaatsCode, StaatsName in Postadresse übernommen
+2004-01-28 tsch: Adaptionen an neuen CIO-PersonDataDE Record
+2004-01-27 tsch: ZMRAdresse wird PostAdresse
+2004-01-15 tsch: Erstellung
+-->
+
+<xsd:schema targetNamespace="http://reference.e-government.gv.at/namespace/persondata/de/20040201#" xmlns="http://reference.e-government.gv.at/namespace/persondata/de/20040201#" xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:dsig="http://www.w3.org/2000/09/xmldsig#" elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	<xsd:import namespace="http://www.w3.org/2000/09/xmldsig#" schemaLocation="W3C-XMLDSig.xsd"/>
+	<xsd:annotation>
+		<xsd:documentation>This version of person deploys only global elements. All types derived from abstract types have been replaced by substitution groups</xsd:documentation>
+	</xsd:annotation>
+
+	<xsd:element name="Identification" type="IdentificationType">
+		<xsd:annotation>
+			<xsd:documentation>unique identification entities</xsd:documentation>
+		</xsd:annotation>
+	</xsd:element>
+	<xsd:complexType name="IdentificationType">
+		<xsd:annotation>
+			<xsd:documentation>unique identifier</xsd:documentation>
+		</xsd:annotation>
+		<xsd:sequence>
+			<xsd:element name="Value" type="xsd:string">
+				<xsd:annotation>
+					<xsd:documentation>actual value of the identifier.</xsd:documentation>
+				</xsd:annotation>
+			</xsd:element>
+			<xsd:element name="Type" type="xsd:anyURI">
+				<xsd:annotation>
+					<xsd:documentation>type of value (eg 'ZMR', 'SV-Nummer', 'Martrikelnummer', database identification, ...)</xsd:documentation>
+				</xsd:annotation>
+			</xsd:element>
+			<xsd:any namespace="##other" processContents="lax" minOccurs="0" maxOccurs="unbounded">
+				<xsd:annotation>
+					<xsd:documentation>zusätzliche felder</xsd:documentation>
+				</xsd:annotation>
+			</xsd:any>			
+		</xsd:sequence>
+	</xsd:complexType>
+
+	
+	<xsd:element name="PersonenDaten" type="PersonenDatenTyp">
+		<xsd:annotation>
+			<xsd:documentation>Personendatenstruktur</xsd:documentation>
+		</xsd:annotation>
+	</xsd:element>
+
+	<xsd:complexType name="PersonenDatenTyp">
+		<xsd:sequence>
+			<xsd:element ref="NatuerlichePerson"/>
+			<xsd:element ref="PostAdresse" minOccurs="0" maxOccurs="unbounded"/>
+		</xsd:sequence>
+	</xsd:complexType>
+	
+	
+	<xsd:element name="NatuerlichePerson" type="NatuerlichePersonTyp" substitutionGroup="Person">
+		<xsd:annotation>
+			<xsd:documentation>element of physical person type</xsd:documentation>
+		</xsd:annotation>
+	</xsd:element>
+	<xsd:element name="Person" type="AbstractPersonType">
+		<xsd:annotation>
+			<xsd:documentation>element of person type</xsd:documentation>
+		</xsd:annotation>
+	</xsd:element>
+
+	<xsd:complexType name="AbstractPersonType" abstract="true">
+		<xsd:annotation>
+			<xsd:documentation>main structure of person data</xsd:documentation>
+		</xsd:annotation>
+		<xsd:sequence minOccurs="0">
+			<xsd:element name="Identification" type="IdentificationType" minOccurs="0" maxOccurs="unbounded">
+				<xsd:annotation>
+					<xsd:documentation>unique identification entities</xsd:documentation>
+				</xsd:annotation>
+			</xsd:element>
+		</xsd:sequence>
+		<xsd:attribute name="Id" type="xsd:ID" use="optional"/>
+		<xsd:anyAttribute namespace="##other"/>
+	</xsd:complexType>	
+
+	<xsd:complexType name="NatuerlichePersonTyp">
+		<xsd:annotation>
+			<xsd:documentation>physical person</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexContent>
+			<xsd:extension base="AbstractPersonType">
+				<xsd:sequence minOccurs="0">
+					<xsd:element ref="PersonenName" minOccurs="0"/>
+					<xsd:element ref="AlternativName" minOccurs="0" maxOccurs="unbounded"/>
+					<xsd:element ref="Familienstand" minOccurs="0"/>
+					<xsd:element ref="Geschlecht" minOccurs="0"/>
+					<xsd:element ref="Geburtsdatum" minOccurs="0"/>
+					<xsd:element ref="Geburtsort" minOccurs="0"/>
+					<xsd:element ref="Geburtsbundesland" minOccurs="0"/>
+					<xsd:element ref="Geburtsstaat" minOccurs="0"/>
+					<xsd:element ref="Sterbedatum" minOccurs="0"/>
+					<xsd:element ref="Staatsangehoerigkeit" minOccurs="0" maxOccurs="unbounded"/>
+					<xsd:any namespace="##other" processContents="lax" minOccurs="0" maxOccurs="unbounded">
+						<xsd:annotation>
+							<xsd:documentation>any additional properties</xsd:documentation>
+						</xsd:annotation>
+					</xsd:any>
+				</xsd:sequence>
+			</xsd:extension>
+		</xsd:complexContent>
+	</xsd:complexType>
+
+	<xsd:element name="AlternativName">
+		<xsd:annotation>
+			<xsd:documentation>Former name, Artist name, changes of Given name ... type of name is given as attribute - choose from list or define new type</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>		
+				<xsd:element name="Familienname">
+					<xsd:simpleType>
+						<xsd:restriction base="xsd:string">
+							<xsd:whiteSpace value="collapse"/>
+							<xsd:minLength value="0"/>
+							<xsd:maxLength value="108"/>			
+						</xsd:restriction>
+					</xsd:simpleType>
+				</xsd:element>
+			</xsd:sequence>
+			<xsd:attribute name="Type" type="DefinierterAlternativNamensTypTyp" use="required"/>
+		</xsd:complexType>
+	</xsd:element>
+		
+	<xsd:simpleType name="DefinierterAlternativNamensTypTyp">
+		<xsd:annotation>
+			<xsd:documentation>known types of alternative names</xsd:documentation>
+		</xsd:annotation>
+		<xsd:restriction base="xsd:string">
+			<xsd:enumeration value="Kuenstlername"/>
+			<xsd:enumeration value="Spitzname"/>
+			<xsd:enumeration value="FruehererName"/>
+			<xsd:enumeration value="Alias"/>
+			<xsd:enumeration value="NameVorErsterEhe"/>
+		</xsd:restriction>
+	</xsd:simpleType>
+
+	<xsd:element name="PersonenName" type="PersonenNameTyp"/>
+	
+	<xsd:complexType name="PersonenNameTyp">
+		<xsd:sequence>
+			<xsd:element ref="Vorname" minOccurs="0"/>
+			<xsd:element ref="Familienname" minOccurs="0"/>
+			<xsd:element ref="Affix" minOccurs="0" maxOccurs="unbounded"/>
+		</xsd:sequence>
+	</xsd:complexType>
+	
+	
+	<xsd:element name="Familienname">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="1"/>
+				<xsd:maxLength value="108"/>			
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	<xsd:element name="Vorname" nillable="true">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="1"/>
+				<xsd:maxLength value="108"/>			
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	<xsd:element name="Affix">
+		<xsd:complexType>
+			<xsd:simpleContent>
+				<xsd:extension base="xsd:string">
+					<xsd:attribute name="typ" use="required">
+						<xsd:simpleType>
+							<xsd:restriction base="xsd:string">
+								<xsd:enumeration value="akademischerGrad"/>
+								<xsd:enumeration value="Adelstitel"/>
+								<xsd:enumeration value="FamiliennamenSuffix"/>
+								<xsd:enumeration value="Anrede"/>
+								<xsd:enumeration value="Generation"/>
+								<xsd:enumeration value="Qualifikation"/>
+							</xsd:restriction>
+						</xsd:simpleType>
+					</xsd:attribute>
+					<xsd:attribute name="position" use="required">
+						<xsd:simpleType>
+							<xsd:restriction base="xsd:string">
+								<xsd:enumeration value="prefix"/>
+								<xsd:enumeration value="suffix"/>
+							</xsd:restriction>
+						</xsd:simpleType>
+					</xsd:attribute>
+				</xsd:extension>
+			</xsd:simpleContent>
+		</xsd:complexType>
+	</xsd:element>	
+	<xsd:element name="Sterbedatum">
+		<xsd:simpleType>
+			<xsd:annotation>
+				<xsd:documentation>simple type for dates (union), which may omit day and/or month</xsd:documentation>
+			</xsd:annotation>
+			<xsd:union memberTypes="xsd:date xsd:gYearMonth xsd:gYear"/>
+		</xsd:simpleType>
+	</xsd:element>
+	<xsd:element name="Geburtsdatum">
+		<xsd:simpleType>
+			<xsd:annotation>
+				<xsd:documentation>simple type for dates (union), which may omit day and/or month</xsd:documentation>
+			</xsd:annotation>
+			<xsd:union memberTypes="xsd:date xsd:gYearMonth xsd:gYear"/>
+		</xsd:simpleType>
+	</xsd:element>	
+	
+	<xsd:element name="Familienstand">
+		<xsd:simpleType>
+			<xsd:annotation>
+				<xsd:documentation>simple type for marital status of a person</xsd:documentation>
+			</xsd:annotation>
+			<xsd:restriction base="xsd:token">
+				<xsd:enumeration value="ledig"/>
+				<xsd:enumeration value="verheiratet"/>
+				<xsd:enumeration value="in eingetragener Partnerschaft lebend"/>
+				<xsd:enumeration value="geschieden"/>
+				<xsd:enumeration value="eingetragene Partnerschaft aufgelöst oder für nichtig erklärt"/>
+<!-- 				<xsd:enumeration value="aufgelöste eingetragene Partnerschaft"/>  -->
+				<xsd:enumeration value="verwitwet"/>
+				<xsd:enumeration value="hinterbliebener eingetragener Partner"/>
+				<xsd:enumeration value="Ehe aufgehoben oder für nichtig erklärt"/>
+				<xsd:enumeration value="unbekannt"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>	
+	
+	<xsd:element name="Geschlecht">
+		<xsd:simpleType>
+			<xsd:annotation>
+				<xsd:documentation>simple type for sex (gender) of person</xsd:documentation>
+			</xsd:annotation>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="1"/>
+				<xsd:maxLength value="50"/>			
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+
+	<xsd:element name="Geburtsort">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="1"/>
+				<xsd:maxLength value="54"/>			
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	
+	<xsd:element name="Geburtsstaat">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="1"/>
+				<xsd:maxLength value="54"/>			
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	<xsd:element name="Geburtsbundesland">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="72"/>			
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	
+	<xsd:element name="Staatsangehoerigkeit">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="ISOCode3" minOccurs="0"/>
+				<xsd:element ref="StaatsnameDE" minOccurs="0"/>
+				<xsd:element ref="StaatsnameEN" minOccurs="0"/>
+				<xsd:element ref="StaatsnameFR" minOccurs="0"/>
+				<xsd:element name="GueltigVon" type="xsd:date" minOccurs="0"/>
+				<xsd:element name="GueltigBis" type="xsd:date" minOccurs="0"/>
+				<xsd:any namespace="##other" processContents="lax" minOccurs="0" maxOccurs="unbounded">
+					<xsd:annotation>
+						<xsd:documentation>any additional properties</xsd:documentation>
+					</xsd:annotation>
+				</xsd:any>				
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="StaatsnameDE">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="1"/>
+				<xsd:maxLength value="54"/>			
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+
+	<xsd:element name="StaatsnameEN">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="1"/>
+				<xsd:maxLength value="54"/>			
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>	
+
+	<xsd:element name="StaatsnameFR">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="1"/>
+				<xsd:maxLength value="54"/>			
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>		
+
+	<xsd:element name="PostAdresse" type="PostAdresseTyp" >
+		<xsd:annotation>
+			<xsd:documentation>Post oder ZMR Adresse, entspricht PostalAddress</xsd:documentation>
+		</xsd:annotation>
+	</xsd:element>
+	<xsd:complexType name="AbstractAddressType" abstract="true">
+		<xsd:annotation>
+			<xsd:documentation>main structure of address data</xsd:documentation>
+		</xsd:annotation>
+		<xsd:sequence minOccurs="0">
+			<xsd:element name="Identification" type="IdentificationType" minOccurs="0" maxOccurs="unbounded">
+				<xsd:annotation>
+					<xsd:documentation>unique identification entities</xsd:documentation>
+				</xsd:annotation>
+			</xsd:element>
+		</xsd:sequence>
+		<xsd:attribute name="Id" type="xsd:ID" use="optional"/>
+		<xsd:anyAttribute namespace="##other"/>
+	</xsd:complexType>
+	<xsd:complexType name="PostAdresseTyp">
+		<xsd:annotation>
+			<xsd:documentation>postal address</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexContent>
+			<xsd:extension base="AbstractAddressType">
+				<xsd:sequence>
+					<xsd:element ref="Staatscode" minOccurs="0"/>
+					<xsd:element ref="Staatsname" minOccurs="0"/>
+				
+					<xsd:element ref="Postleitzahl" minOccurs="0"/>
+					<xsd:element ref="Region" minOccurs="0"/>
+					<xsd:element ref="Bundesland" minOccurs="0"/>
+					<xsd:element ref="Gemeinde" minOccurs="0"/>
+					<xsd:element ref="Gemeindekennziffer" minOccurs="0"/>
+					<xsd:element ref="Ortschaft" minOccurs="0"/>
+					<xsd:element ref="OrtschaftZweisprachig" minOccurs="0"/>
+					<xsd:element name="Zustelladresse" type="ZustelladresseTyp" minOccurs="0"/>
+					
+					<xsd:any namespace="##other" processContents="lax" minOccurs="0" maxOccurs="unbounded">
+						<xsd:annotation>
+							<xsd:documentation>any additional properties</xsd:documentation>
+						</xsd:annotation>
+					</xsd:any>
+				</xsd:sequence>
+			</xsd:extension>
+		</xsd:complexContent>
+	</xsd:complexType>
+
+	<xsd:complexType name="ZustelladresseTyp">
+		<xsd:sequence>
+			<xsd:element ref="Adresszeile" minOccurs="0"/>
+			<xsd:element ref="Strassenname" minOccurs="0"/>
+			<xsd:element ref="Orientierungsnummer" minOccurs="0"/>
+			<xsd:element ref="Gebaeude" minOccurs="0"/>
+			<xsd:element ref="Nutzungseinheit" minOccurs="0"/>
+			<xsd:element ref="Postfach" minOccurs="0"/>
+			<xsd:element ref="Wohnsitzqualitaet" minOccurs="0"/>
+			<xsd:element ref="Abgabestelle" minOccurs="0"/>
+			<xsd:element ref="Nutzungseinheitlaufnummer" minOccurs="0"/>
+			<xsd:element name="AdressRegisterEintrag" minOccurs="0">
+				<xsd:complexType>
+					<xsd:sequence>
+						<xsd:element ref="Adresscode" minOccurs="0"/>
+						<xsd:element ref="Subcode" minOccurs="0"/>
+						<xsd:element ref="Objektnummer" minOccurs="0"/>
+					</xsd:sequence>
+				</xsd:complexType>
+			</xsd:element>
+		</xsd:sequence>
+	</xsd:complexType>			
+
+	<xsd:element name="InternetAdresse" type="InternetAdresseTyp" >
+		<xsd:annotation>
+			<xsd:documentation>Entspricht InternetAddress</xsd:documentation>
+		</xsd:annotation>
+	</xsd:element>
+	<xsd:element name="TelefonAdresse" type="TelefonAdresseTyp" >
+		<xsd:annotation>
+			<xsd:documentation>Container für Telefonnummern, entspricht TelephoneAddress</xsd:documentation>
+		</xsd:annotation>
+	</xsd:element>
+
+	<xsd:complexType name="InternetAdresseTyp">
+		<xsd:annotation>
+			<xsd:documentation>internet based communication</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexContent>
+			<xsd:extension base="AbstractAddressType">
+				<xsd:sequence minOccurs="0">
+					<xsd:element ref="dsig:KeyInfo" minOccurs="0">
+						<xsd:annotation>
+							<xsd:documentation>certificate for secure communication</xsd:documentation>
+						</xsd:annotation>
+					</xsd:element>
+					<xsd:element name="Adresse">
+						<xsd:annotation>
+							<xsd:documentation>eURI: mail-Adresse, Web, FTP, LDAP, ..., entspricht Address</xsd:documentation>
+						</xsd:annotation>
+						<xsd:simpleType>
+							<xsd:restriction base="xsd:anyURI">
+								<xsd:minLength value="0"/>
+								<xsd:maxLength value="60"/>								
+							</xsd:restriction>
+						</xsd:simpleType>
+					</xsd:element>
+					<xsd:any namespace="##other" processContents="lax" minOccurs="0" maxOccurs="unbounded">
+						<xsd:annotation>
+							<xsd:documentation>any additional properties</xsd:documentation>
+						</xsd:annotation>
+					</xsd:any>
+				</xsd:sequence>
+			</xsd:extension>
+		</xsd:complexContent>
+	</xsd:complexType>
+
+	<xsd:complexType name="TelefonAdresseTyp">
+		<xsd:annotation>
+			<xsd:documentation>phone numbers</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexContent>
+			<xsd:extension base="AbstractAddressType">
+				<xsd:sequence>
+					<xsd:element name="Typ">
+						<xsd:annotation>
+							<xsd:documentation>type of phononumber - category (eg 'Festnetz', 'Mobile', 'fax', ...)</xsd:documentation>
+						</xsd:annotation>
+						<xsd:simpleType>
+							<xsd:restriction base="xsd:string">
+								<xsd:enumeration value="Festnetz"/>
+								<xsd:enumeration value="Mobil"/>
+								<xsd:enumeration value="Fax"/>
+							</xsd:restriction>
+						</xsd:simpleType>
+					</xsd:element>
+					<xsd:element name="Nummer" type="TelekomNummerTyp">
+						<xsd:annotation>
+							<xsd:documentation>phonenumber</xsd:documentation>
+						</xsd:annotation>
+					</xsd:element>
+					<xsd:any namespace="##other" processContents="lax" minOccurs="0" maxOccurs="unbounded">
+						<xsd:annotation>
+							<xsd:documentation>any additional properties</xsd:documentation>
+						</xsd:annotation>
+					</xsd:any>
+				</xsd:sequence>
+			</xsd:extension>
+		</xsd:complexContent>
+	</xsd:complexType>
+
+	<xsd:complexType name="TelekomNummerTyp">
+		<xsd:choice>
+			<xsd:element ref="FormatierteNummer"/>
+			<xsd:group ref="TelekomNummernGruppe"/>
+		</xsd:choice>
+	</xsd:complexType>
+
+	<xsd:group name="TelekomNummernGruppe">
+		<xsd:sequence>
+			<xsd:element ref="InternationalerLaendercode" minOccurs="0"/>
+			<xsd:element ref="NationalNummer" minOccurs="0"/>
+			<xsd:element ref="Vorwahl" minOccurs="0"/>
+			<xsd:element ref="Anschlussnummer"/>
+			<xsd:element ref="Klappe" minOccurs="0"/>
+		</xsd:sequence>
+	</xsd:group>
+
+	<xsd:element name="InternationalerLaendercode" type="xsd:string">
+		<xsd:annotation>
+			<xsd:documentation>entspricht InternationalCountryCode</xsd:documentation>
+		</xsd:annotation>
+	</xsd:element>
+	<xsd:element name="NationalNummer" type="xsd:string">
+		<xsd:annotation>
+			<xsd:documentation>entspricht NationalNumber</xsd:documentation>
+		</xsd:annotation>
+	</xsd:element>
+	<xsd:element name="Vorwahl" type="xsd:string">
+		<xsd:annotation>
+			<xsd:documentation>entspricht AreaCityCode</xsd:documentation>
+		</xsd:annotation>
+	</xsd:element>
+	<xsd:element name="Anschlussnummer" type="xsd:string">
+		<xsd:annotation>
+			<xsd:documentation>entspricht SubscriberNumber</xsd:documentation>
+		</xsd:annotation>
+	</xsd:element>
+	<xsd:element name="FormatierteNummer">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="25"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>	
+	<xsd:element name="Klappe" type="xsd:string">
+		<xsd:annotation>
+			<xsd:documentation>entspricht Extension</xsd:documentation>
+		</xsd:annotation>
+	</xsd:element>
+	
+
+	<xsd:element name="Abgabestelle" type="xsd:boolean"/>
+	
+	<xsd:element name="Wohnsitzqualitaet">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:enumeration value="H"/>
+				<xsd:enumeration value="N"/>
+				<xsd:enumeration value="O"/>
+			</xsd:restriction>
+		</xsd:simpleType>		
+	</xsd:element>
+	<xsd:element name="ISOCode3">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:pattern value="[A-Z]{3}"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	<xsd:element name="Staatscode">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:pattern value="[A-Z]{3}"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>	
+	<xsd:element name="Staatsname">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="54"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>	
+	<xsd:element name="Postleitzahl">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="10"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	<xsd:element name="Region">
+		<xsd:annotation>
+			<xsd:documentation>entspricht Region</xsd:documentation>
+		</xsd:annotation>
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="54"/>
+			</xsd:restriction>
+		</xsd:simpleType>		
+	</xsd:element>
+	
+	<xsd:element name="Bundesland">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:enumeration value="Wien"/>
+				<xsd:enumeration value="Niederösterreich"/>
+				<xsd:enumeration value="Burgenland"/>
+				<xsd:enumeration value="Oberösterreich"/>
+				<xsd:enumeration value="Steiermark"/>
+				<xsd:enumeration value="Salzburg"/>
+				<xsd:enumeration value="Kärnten"/>
+				<xsd:enumeration value="Tirol"/>
+				<xsd:enumeration value="Vorarlberg"/>	
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	<xsd:element name="Gemeinde">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="1"/>
+				<xsd:maxLength value="54"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	<xsd:element name="Gemeindekennziffer">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:pattern value="[0-9]{5}"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	<xsd:element name="Ortschaft">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:minLength value="1"/>
+				<xsd:maxLength value="54"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	<xsd:element name="OrtschaftZweisprachig">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="45"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>		
+
+	<xsd:element name="Adresscode">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:pattern value="[0-9;A-Z]{7}"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	<xsd:element name="Subcode">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:pattern value="[0-9]{3}"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	<xsd:element name="Nutzungseinheitlaufnummer">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:pattern value="[0-9]{4}"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>			
+	<xsd:element name="Objektnummer">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:pattern value="[0-9;A-Z]{7}"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	
+	<xsd:element name="Strassenname">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="54"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>		
+
+	<xsd:element name="Orientierungsnummer">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="32"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>	
+
+	<xsd:element name="Gebaeude">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="75"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>	
+
+	<xsd:element name="Nutzungseinheit">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="40"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+
+	<xsd:element name="Adresszeile">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="54"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+
+	<xsd:element name="Postfach">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="20"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>				
+
+</xsd:schema>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/xsd/eingebunden/PersonExport.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/xsd/eingebunden/PersonExport.xsd
new file mode 100644
index 00000000..ae0b5712
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/xsd/eingebunden/PersonExport.xsd
@@ -0,0 +1,107 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+    Name: PersonExport.xsd
+    Zweck: Definiert allgemein nutzbare Export-Schnittstelle um eine Liste von Personen abzubilden.
+    Author(s): Ehrenmüller Oliver, ZMR-SU
+    
+    Aenderungshistorie:
+    2009-07-20 teo: Ãœberarbeitung PersonExportElementType
+    2009-07-08 teo: erstellt
+-->
+
+<xsd:schema xmlns="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+    targetNamespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+    xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+    xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+    elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+    <xsd:annotation>
+        <xsd:documentation>Definiert allgemein nutzbare Export-Schnittstelle um eine Liste von Personen abzubilden.</xsd:documentation>
+    </xsd:annotation>
+    <xsd:include schemaLocation="InfoFachlich.xsd"/>
+    
+    <xsd:element name="PersonExport" type="PersonExportType">
+        <xsd:annotation>
+            <xsd:documentation>Root-Element des Personenexports.</xsd:documentation>
+        </xsd:annotation>
+    </xsd:element>
+    
+    <xsd:complexType name="PersonExportType">
+        <xsd:annotation>
+            <xsd:documentation>Root-Element des Personenexports.</xsd:documentation>
+        </xsd:annotation>
+        <xsd:sequence>
+            <xsd:element ref="Message"/>
+            <xsd:element ref="Stichtag"/>
+            <xsd:element name="Database">
+                <xsd:simpleType>
+                    <xsd:restriction base="xsd:string">
+                        <xsd:minLength value="1"/>
+                        <xsd:maxLength value="20"/>
+                    </xsd:restriction>
+                </xsd:simpleType>
+            </xsd:element>
+            <xsd:element name="Person" type="PersonExportElementType" minOccurs="0" maxOccurs="unbounded">
+                <xsd:annotation>
+                    <xsd:documentation>
+                        Gruppiert nach Personen werden alle Elemente in dieser
+                        Liste abgebildet.
+                    </xsd:documentation>
+                </xsd:annotation>
+            </xsd:element>
+        </xsd:sequence>
+    </xsd:complexType>
+    
+    <xsd:complexType name="PersonExportElementType">
+        <xsd:annotation>
+            <xsd:documentation>Dieser Type beinhaltet alle Elemente die zu einer Person gehören.</xsd:documentation>
+        </xsd:annotation>
+        <xsd:sequence>
+            <xsd:element name="ID" type="ENTITYIDType"/>
+            <xsd:element name="Typ" type="xsd:string"/>
+            <xsd:element name="Satz" type="PersonExportSatzType" minOccurs="0" maxOccurs="unbounded">
+                <xsd:annotation>
+                    <xsd:documentation>
+                        Diese Liste beinhaltet alle Sätze die zu einer
+                        Person gehören. Unabhängig von der Tabelle oder
+                        Strang-Historie.
+                        Fehlt die Liste, ist die Entity zu löschen.
+                    </xsd:documentation>
+                </xsd:annotation>
+            </xsd:element>
+        </xsd:sequence>
+    </xsd:complexType>
+    
+    <xsd:complexType name="PersonExportSatzType">
+        <xsd:annotation>
+            <xsd:documentation>
+                Dieser Type beinhaltet alle Elemente die sich auf einen Eintrag
+                in einer beliebigen Tabelle beziehen.
+            </xsd:documentation>
+        </xsd:annotation>
+        <xsd:sequence>
+            <xsd:element name="Tabelle">
+                <xsd:simpleType>
+                    <xsd:restriction base="xsd:string">
+                        <xsd:minLength value="1"/>
+                        <xsd:maxLength value="20"/>
+                    </xsd:restriction>
+                </xsd:simpleType>
+            </xsd:element>
+            <xsd:element ref="EntityID"/>
+            <xsd:element name="RecID" type="ENTITYIDType"/>
+            <xsd:element name="Created" type="TimestampType"/>
+            <xsd:element name="Feld" type="PersonExportFeldType" maxOccurs="unbounded"/>
+        </xsd:sequence>
+    </xsd:complexType>
+    
+    <xsd:complexType name="PersonExportFeldType">
+        <xsd:annotation>
+            <xsd:documentation>Generiersche Name/Wert-Paare für Export</xsd:documentation>
+        </xsd:annotation>
+        <xsd:sequence>
+            <xsd:element name="Name" type="xsd:string"/>
+            <xsd:element name="Wert" type="xsd:string"/>
+        </xsd:sequence>
+    </xsd:complexType>
+    
+</xsd:schema>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/xsd/eingebunden/PersonFelder.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/xsd/eingebunden/PersonFelder.xsd
new file mode 100644
index 00000000..0a80e0de
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/xsd/eingebunden/PersonFelder.xsd
@@ -0,0 +1,70 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: PersonFelder.xsd
+Zweck: Definiert allgemein nutzbare Felder für Personendaten
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2006-06-26 tsch: GeburtsdatumBis hinzugefügt
+2005-08-30 tsch: OrdnungsZahlType hinzugefügt
+2004-01-15 tsch: SVNummer hinzugefügt
+2004-06-24 tsch: OrdnungsZahl, Titel hinzugefügt
+2004-01-27 tsch: Erstellung
+-->
+
+<xsd:schema xmlns="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			targetNamespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	<xsd:include schemaLocation="SimpleTypes.xsd"/>
+
+	<xsd:annotation>
+		<xsd:documentation>Personendaten-Felder</xsd:documentation>
+	</xsd:annotation>	
+	<xsd:element name="ZMRZahl" type="ZMRZahlType"/>
+
+	<xsd:simpleType name="ZMRZahlType">
+		<xsd:restriction base="xsd:string">
+			<xsd:pattern value="[0-9]{12}"/>
+		</xsd:restriction>
+	</xsd:simpleType>
+	
+	<xsd:element name="OrdnungsZahl" type="OrdnungsZahlType"/>
+	
+	<xsd:simpleType name="OrdnungsZahlType">
+		<xsd:restriction base="xsd:string">
+			<xsd:pattern value="[0-9]{12}"/>
+		</xsd:restriction>
+	</xsd:simpleType>
+	
+	<xsd:element name="SVNummer">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:pattern value="[0-9]{10}"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+
+	<xsd:element name="Titel">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="0"/>
+				<xsd:maxLength value="45"/>			
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>	
+	
+	<xsd:element name="StaatZugezogen" type="StaatenNameType"/>
+	<xsd:element name="StaatVerzogen" type="StaatenNameType"/>
+
+	<xsd:element name="GeburtsdatumBis">
+		<xsd:simpleType>
+			<xsd:annotation>
+				<xsd:documentation>simple type for dates (union), which may omit day and/or month</xsd:documentation>
+			</xsd:annotation>
+			<xsd:union memberTypes="xsd:date xsd:gYearMonth xsd:gYear"/>
+		</xsd:simpleType>
+	</xsd:element>			
+</xsd:schema>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/xsd/eingebunden/SimpleTypes.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/xsd/eingebunden/SimpleTypes.xsd
new file mode 100644
index 00000000..fb02488d
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/xsd/eingebunden/SimpleTypes.xsd
@@ -0,0 +1,173 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: SimpleTypes.xsd
+Zweck: Definiert allgemein nutzbare simple Datentypen
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+2010-08-25 teo:  ZMR-339: ID 343 - USERID DB-Feld erweitern
+2006-05-03 tsch: KGNummerType hinzugefügt
+2004-10-27 tsch: BehoerdenschluesselType hinzugefügt
+2004-09-09 tsch: RegisterType hinzugefügt
+2004-09-08 tsch: BenutzerNameType hinzugefügt
+2004-08-17 tsch: GemeindeNrType hinzugefügt
+2004-06-18 tsch: GrundTextType hinzugefügt
+-->
+
+<xsd:schema xmlns="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			targetNamespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+
+	<xsd:simpleType name="IntegerType">
+		<xsd:annotation>
+			<xsd:documentation>IntegerType: nicht negativer Integer mit Maximalwert 2^31-1 (Beschränkung durch Datenbank)</xsd:documentation> 
+		</xsd:annotation>
+		<xsd:restriction base="xsd:nonNegativeInteger">
+			<xsd:maxExclusive value="2147483648"/>
+		</xsd:restriction>
+	</xsd:simpleType>	
+
+	<xsd:simpleType name="DatumType">
+		<xsd:annotation>
+			<xsd:documentation>DatumType: Format richtet sich nach xsd:date, '00' bei Monat und Tag erlaubt</xsd:documentation> 
+		</xsd:annotation>
+		<xsd:restriction base="xsd:string">
+			<xsd:pattern value="[0-9]{4}[\-][0-9]{2}[\-][0-9]{2}"/>
+		</xsd:restriction>
+	</xsd:simpleType>	
+	
+
+	<xsd:simpleType name="TimestampType">
+		<xsd:annotation>
+			<xsd:documentation>TimestampType: Format richtet sich nach xsd:dateTime, Angabe der Millisekunden ist Pflicht, Zeitzone nicht erlaubt</xsd:documentation>
+		</xsd:annotation>
+		<xsd:restriction base="xsd:dateTime">
+		<xsd:pattern value="[0-9]{4}[\-][0-9]{2}[\-][0-9]{2}[T][0-9]{2}[:][0-9]{2}[:][0-9]{2}[.][0-9]{3}"/>
+		</xsd:restriction>
+	</xsd:simpleType>
+	
+	<xsd:simpleType name="IDType">
+		<xsd:annotation>
+			<xsd:documentation>IDs</xsd:documentation>
+		</xsd:annotation>
+		<xsd:restriction base="xsd:unsignedLong">
+		</xsd:restriction>
+	</xsd:simpleType>
+	<xsd:simpleType name="ENTITYIDType">
+		<xsd:annotation>
+			<xsd:documentation>Entity-IDs (können auch alphanumerisch sein, z.B. alte edvzahlen)</xsd:documentation>
+		</xsd:annotation>
+		<xsd:restriction base="xsd:string">
+			<xsd:whiteSpace value="collapse"/>
+			<xsd:minLength value="1"/>
+			<xsd:maxLength value="64"/>
+		</xsd:restriction>
+	</xsd:simpleType>
+
+	<xsd:simpleType name="StaatenNameType">
+		<xsd:restriction base="xsd:string">
+			<xsd:whiteSpace value="collapse"/>
+			<xsd:minLength value="0"/>
+			<xsd:maxLength value="45"/>			
+		</xsd:restriction>
+	</xsd:simpleType>
+	
+	<xsd:simpleType name="GrundCodeType">
+		<xsd:restriction base="xsd:string" >
+			<xsd:whiteSpace value="collapse"/>
+			<xsd:minLength value="1"/>
+			<xsd:maxLength value="20"/>				
+		</xsd:restriction>
+	</xsd:simpleType>
+	<xsd:simpleType name="GrundTextType">
+		<xsd:restriction base="xsd:string">
+			<xsd:minLength value="1"/>
+			<xsd:maxLength value="50"/>				
+		</xsd:restriction>
+	</xsd:simpleType>			
+	<xsd:simpleType name="GrundFreitextType">
+		<xsd:restriction base="xsd:string">
+			<xsd:minLength value="0"/>
+			<xsd:maxLength value="228"/>				
+		</xsd:restriction>
+	</xsd:simpleType>	
+
+	<xsd:simpleType name="BehoerdenNrType">
+		<xsd:restriction base="xsd:string">
+			<xsd:pattern value="[0-9]{6}"/>
+		</xsd:restriction>
+	</xsd:simpleType>
+	<xsd:simpleType name="BehoerdenschluesselType">
+		<xsd:restriction base="xsd:string">
+			<xsd:pattern value="[0-9]{6}|C[0-9]{5}"/>
+		</xsd:restriction>
+	</xsd:simpleType>
+	<xsd:simpleType name="GemeindeNrType">
+		<xsd:restriction base="xsd:string">
+			<xsd:pattern value="[0-9]{5}"/>
+		</xsd:restriction>
+	</xsd:simpleType>
+	<xsd:simpleType name="KGNummerType">
+		<xsd:restriction base="xsd:string">
+			<xsd:minLength value="5"/>
+			<xsd:maxLength value="5"/>
+		</xsd:restriction>
+	</xsd:simpleType>	
+	<xsd:simpleType name="GemeindenameType">
+		<xsd:restriction base="xsd:string">
+			<xsd:whiteSpace value="collapse"/>
+			<xsd:minLength value="1"/>
+			<xsd:maxLength value="54"/>
+		</xsd:restriction>
+	</xsd:simpleType>
+	<xsd:simpleType name="KundenNrType">
+		<xsd:restriction base="xsd:string">
+			<xsd:pattern value="[0-9]{5,6}"/>
+		</xsd:restriction>
+	</xsd:simpleType>
+	<xsd:simpleType name="OrgTypType">
+		<xsd:restriction base="xsd:string">
+			<xsd:whiteSpace value="collapse"/>
+			<xsd:minLength value="1"/>
+			<xsd:maxLength value="20"/>	
+		</xsd:restriction>
+	</xsd:simpleType>
+	<xsd:simpleType name="OrgCodeType">
+		<xsd:restriction base="xsd:string">
+			<xsd:whiteSpace value="collapse"/>
+			<xsd:minLength value="1"/>
+			<xsd:maxLength value="20"/>	
+		</xsd:restriction>
+	</xsd:simpleType>
+	<xsd:simpleType name="BezugsfeldType">
+		<xsd:restriction base="xsd:string">
+			<xsd:whiteSpace value="collapse"/>
+			<xsd:minLength value="1"/>
+			<xsd:maxLength value="50"/>	
+		</xsd:restriction>
+	</xsd:simpleType>			
+	<xsd:simpleType name="BenutzerType">
+		<xsd:restriction base="xsd:string">
+			<xsd:whiteSpace value="collapse"/>
+			<xsd:minLength value="1"/>
+			<xsd:maxLength value="100"/>	
+		</xsd:restriction>
+	</xsd:simpleType>
+	<xsd:simpleType name="BenutzerNameType">
+		<xsd:restriction base="xsd:string">
+			<xsd:whiteSpace value="collapse"/>
+			<xsd:minLength value="1"/>
+			<xsd:maxLength value="45"/>	
+		</xsd:restriction>
+	</xsd:simpleType>	
+	<xsd:simpleType name="RegisterType">
+		<xsd:restriction base="xsd:string">
+			<xsd:enumeration value="ZMR"/>
+			<xsd:enumeration value="EGR"/>
+			<xsd:enumeration value="LMR"/>
+			<xsd:enumeration value="ZPR"/>
+		</xsd:restriction>
+	</xsd:simpleType>	
+	
+</xsd:schema>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/xsd/eingebunden/W3C-XMLDSig.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/xsd/eingebunden/W3C-XMLDSig.xsd
new file mode 100644
index 00000000..3745c774
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/xsd/eingebunden/W3C-XMLDSig.xsd
@@ -0,0 +1,274 @@
+<?xml version="1.0" encoding="utf-8"?>
+<!-- PUBLIC "-//W3C//DTD XMLSchema 200102//EN" "http://www.w3.org/2001/XMLSchema.dtd"
+ -->
+<!--<!DOCTYPE schema
+  [
+	<!ATTLIST schema
+	xmlns:ds CDATA #FIXED "http://www.w3.org/2000/09/xmldsig#"
+>
+	<!ENTITY dsig 'http://www.w3.org/2000/09/xmldsig#'>
+	<!ENTITY % p ''>
+	<!ENTITY % s ''>
+]> -->
+<!-- Schema for XML Signatures
+    http://www.w3.org/2000/09/xmldsig#
+    $Revision: 1.1 $ on $Date: 2002/11/11 16:24:27 $ by $Author: Linauer $
+
+    Copyright 2001 The Internet Society and W3C (Massachusetts Institute
+    of Technology, Institut National de Recherche en Informatique et en
+    Automatique, Keio University). All Rights Reserved.
+    http://www.w3.org/Consortium/Legal/
+
+    This document is governed by the W3C Software License [1] as described
+    in the FAQ [2].
+
+    [1] http://www.w3.org/Consortium/Legal/copyright-software-19980720
+    [2] http://www.w3.org/Consortium/Legal/IPR-FAQ-20000620.html#DTD
+-->
+<schema targetNamespace="http://www.w3.org/2000/09/xmldsig#" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns="http://www.w3.org/2001/XMLSchema" elementFormDefault="qualified" version="0.1">
+	<!-- Basic Types Defined for Signatures -->
+	<!-- modified to ensure that whiteSpace is preserved
+<simpleType name="CryptoBinary">
+  <restriction base="base64Binary">
+  </restriction>
+</simpleType>
+ -->
+	<simpleType name="CryptoBinary">
+		<restriction base="string">
+			<whiteSpace value="preserve"/>
+			<pattern value="[A-Za-z0-9\+/=\n\r\t ]*"/>
+		</restriction>
+	</simpleType>
+	<!-- Start Signature -->
+	<element name="Signature" type="ds:SignatureType"/>
+	<complexType name="SignatureType">
+		<sequence>
+			<element ref="ds:SignedInfo"/>
+			<element ref="ds:SignatureValue"/>
+			<element ref="ds:KeyInfo" minOccurs="0"/>
+			<element ref="ds:Object" minOccurs="0" maxOccurs="unbounded"/>
+		</sequence>
+		<attribute name="Id" type="ID" use="optional"/>
+	</complexType>
+	<element name="SignatureValue" type="ds:SignatureValueType"/>
+	<complexType name="SignatureValueType">
+		<simpleContent>
+			<extension base="ds:CryptoBinary">
+				<attribute name="Id" type="ID" use="optional"/>
+			</extension>
+		</simpleContent>
+	</complexType>
+	<!-- Start SignedInfo -->
+	<element name="SignedInfo" type="ds:SignedInfoType"/>
+	<complexType name="SignedInfoType">
+		<sequence>
+			<element ref="ds:CanonicalizationMethod"/>
+			<element ref="ds:SignatureMethod"/>
+			<element ref="ds:Reference" maxOccurs="unbounded"/>
+		</sequence>
+		<attribute name="Id" type="ID" use="optional"/>
+	</complexType>
+	<element name="CanonicalizationMethod" type="ds:CanonicalizationMethodType"/>
+	<complexType name="CanonicalizationMethodType" mixed="true">
+		<sequence>
+			<any namespace="##any" minOccurs="0" maxOccurs="unbounded"/>
+			<!-- (0,unbounded) elements from (1,1) namespace -->
+		</sequence>
+		<attribute name="Algorithm" type="anyURI" use="required"/>
+	</complexType>
+	<element name="SignatureMethod" type="ds:SignatureMethodType"/>
+	<complexType name="SignatureMethodType" mixed="true">
+		<sequence>
+			<element name="HMACOutputLength" type="ds:HMACOutputLengthType" minOccurs="0"/>
+			<any namespace="##other" minOccurs="0" maxOccurs="unbounded"/>
+			<!-- (0,unbounded) elements from (1,1) external namespace -->
+		</sequence>
+		<attribute name="Algorithm" type="anyURI" use="required"/>
+	</complexType>
+	<!-- Start Reference -->
+	<element name="Reference" type="ds:ReferenceType"/>
+	<complexType name="ReferenceType">
+		<sequence>
+			<element ref="ds:Transforms" minOccurs="0"/>
+			<element ref="ds:DigestMethod"/>
+			<element ref="ds:DigestValue"/>
+		</sequence>
+		<attribute name="Id" type="ID" use="optional"/>
+		<attribute name="URI" type="anyURI" use="optional"/>
+		<attribute name="Type" type="anyURI" use="optional"/>
+	</complexType>
+	<element name="Transforms" type="ds:TransformsType"/>
+	<complexType name="TransformsType">
+		<sequence>
+			<element ref="ds:Transform" maxOccurs="unbounded"/>
+		</sequence>
+	</complexType>
+	<element name="Transform" type="ds:TransformType"/>
+	<complexType name="TransformType" mixed="true">
+		<choice minOccurs="0" maxOccurs="unbounded">
+			<any namespace="##other" processContents="lax"/>
+			<element name="XPath" type="string"/>
+			<!-- (1,1) elements from (0,unbounded) namespaces -->
+		</choice>
+		<attribute name="Algorithm" type="anyURI" use="required"/>
+	</complexType>
+	<!-- End Reference -->
+	<element name="DigestMethod" type="ds:DigestMethodType"/>
+	<complexType name="DigestMethodType" mixed="true">
+		<sequence>
+			<any namespace="##other" processContents="lax" minOccurs="0" maxOccurs="unbounded"/>
+		</sequence>
+		<attribute name="Algorithm" type="anyURI" use="required"/>
+	</complexType>
+	<element name="DigestValue" type="ds:DigestValueType"/>
+	<simpleType name="DigestValueType">
+		<restriction base="ds:CryptoBinary"/>
+	</simpleType>
+	<!-- End SignedInfo -->
+	<!-- Start KeyInfo -->
+	<element name="KeyInfo" type="ds:KeyInfoType"/>
+	<complexType name="KeyInfoType" mixed="true">
+		<choice maxOccurs="unbounded">
+			<element ref="ds:KeyName"/>
+			<element ref="ds:KeyValue"/>
+			<element ref="ds:RetrievalMethod"/>
+			<element ref="ds:X509Data"/>
+			<element ref="ds:PGPData"/>
+			<element ref="ds:SPKIData"/>
+			<element ref="ds:MgmtData"/>
+			<any namespace="##other" processContents="lax"/>
+			<!-- (1,1) elements from (0,unbounded) namespaces -->
+		</choice>
+		<attribute name="Id" type="ID" use="optional"/>
+	</complexType>
+	<element name="KeyName" type="string"/>
+	<element name="MgmtData" type="string"/>
+	<element name="KeyValue" type="ds:KeyValueType"/>
+	<complexType name="KeyValueType" mixed="true">
+		<choice>
+			<element ref="ds:DSAKeyValue"/>
+			<element ref="ds:RSAKeyValue"/>
+			<any namespace="##other" processContents="lax"/>
+		</choice>
+	</complexType>
+	<element name="RetrievalMethod" type="ds:RetrievalMethodType"/>
+	<complexType name="RetrievalMethodType">
+		<sequence>
+			<element name="Transforms" type="ds:TransformsType" minOccurs="0"/>
+		</sequence>
+		<attribute name="URI" type="anyURI"/>
+		<attribute name="Type" type="anyURI" use="optional"/>
+	</complexType>
+	<!-- Start X509Data -->
+	<element name="X509Data" type="ds:X509DataType"/>
+	<complexType name="X509DataType">
+		<sequence maxOccurs="unbounded">
+			<choice>
+				<element name="X509IssuerSerial" type="ds:X509IssuerSerialType"/>
+				<element name="X509SKI" type="ds:CryptoBinary"/>
+				<element name="X509SubjectName" type="string"/>
+				<element name="X509Certificate" type="ds:CryptoBinary"/>
+				<element name="X509CRL" type="ds:CryptoBinary"/>
+				<any namespace="##other" processContents="lax"/>
+			</choice>
+		</sequence>
+	</complexType>
+	<complexType name="X509IssuerSerialType">
+		<sequence>
+			<element name="X509IssuerName" type="string"/>
+			<element name="X509SerialNumber" type="integer"/>
+		</sequence>
+	</complexType>
+	<!-- End X509Data -->
+	<!-- Begin PGPData -->
+	<element name="PGPData" type="ds:PGPDataType"/>
+	<complexType name="PGPDataType">
+		<choice>
+			<sequence>
+				<element name="PGPKeyID" type="ds:CryptoBinary"/>
+				<element name="PGPKeyPacket" type="ds:CryptoBinary" minOccurs="0"/>
+				<any namespace="##other" processContents="lax" minOccurs="0" maxOccurs="unbounded"/>
+			</sequence>
+			<sequence>
+				<element name="PGPKeyPacket" type="ds:CryptoBinary"/>
+				<any namespace="##other" processContents="lax" minOccurs="0" maxOccurs="unbounded"/>
+			</sequence>
+		</choice>
+	</complexType>
+	<!-- End PGPData -->
+	<!-- Begin SPKIData -->
+	<element name="SPKIData" type="ds:SPKIDataType"/>
+	<complexType name="SPKIDataType">
+		<sequence maxOccurs="unbounded">
+			<element name="SPKISexp" type="ds:CryptoBinary"/>
+			<any namespace="##other" processContents="lax" minOccurs="0"/>
+		</sequence>
+	</complexType>
+	<!-- End SPKIData -->
+	<!-- End KeyInfo -->
+	<!-- Start Object (Manifest, SignatureProperty) -->
+	<element name="Object" type="ds:ObjectType"/>
+	<complexType name="ObjectType" mixed="true">
+		<sequence minOccurs="0" maxOccurs="unbounded">
+			<any namespace="##any" processContents="lax"/>
+		</sequence>
+		<attribute name="Id" type="ID" use="optional"/>
+		<attribute name="MimeType" type="string" use="optional"/>
+		<attribute name="Encoding" type="anyURI" use="optional"/>
+		<!-- add a grep facet -->
+	</complexType>
+	<element name="Manifest" type="ds:ManifestType"/>
+	<complexType name="ManifestType">
+		<sequence>
+			<element ref="ds:Reference" maxOccurs="unbounded"/>
+		</sequence>
+		<attribute name="Id" type="ID" use="optional"/>
+	</complexType>
+	<element name="SignatureProperties" type="ds:SignaturePropertiesType"/>
+	<complexType name="SignaturePropertiesType">
+		<sequence>
+			<element ref="ds:SignatureProperty" maxOccurs="unbounded"/>
+		</sequence>
+		<attribute name="Id" type="ID" use="optional"/>
+	</complexType>
+	<element name="SignatureProperty" type="ds:SignaturePropertyType"/>
+	<complexType name="SignaturePropertyType" mixed="true">
+		<choice maxOccurs="unbounded">
+			<any namespace="##other" processContents="lax"/>
+			<!-- (1,1) elements from (1,unbounded) namespaces -->
+		</choice>
+		<attribute name="Target" type="anyURI" use="required"/>
+		<attribute name="Id" type="ID" use="optional"/>
+	</complexType>
+	<!-- End Object (Manifest, SignatureProperty) -->
+	<!-- Start Algorithm Parameters -->
+	<simpleType name="HMACOutputLengthType">
+		<restriction base="integer"/>
+	</simpleType>
+	<!-- Start KeyValue Element-types -->
+	<element name="DSAKeyValue" type="ds:DSAKeyValueType"/>
+	<complexType name="DSAKeyValueType">
+		<sequence>
+			<sequence minOccurs="0">
+				<element name="P" type="ds:CryptoBinary"/>
+				<element name="Q" type="ds:CryptoBinary"/>
+			</sequence>
+			<element name="J" type="ds:CryptoBinary" minOccurs="0"/>
+			<element name="G" type="ds:CryptoBinary" minOccurs="0"/>
+			<element name="Y" type="ds:CryptoBinary"/>
+			<sequence minOccurs="0">
+				<element name="Seed" type="ds:CryptoBinary"/>
+				<element name="PgenCounter" type="ds:CryptoBinary"/>
+			</sequence>
+		</sequence>
+	</complexType>
+	<element name="RSAKeyValue" type="ds:RSAKeyValueType"/>
+	<complexType name="RSAKeyValueType">
+		<sequence>
+			<element name="Modulus" type="ds:CryptoBinary"/>
+			<element name="Exponent" type="ds:CryptoBinary"/>
+		</sequence>
+	</complexType>
+	<!-- End KeyValue Element-types -->
+	<!-- End Signature -->
+</schema>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/xsd/eingebunden/Workflow.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/xsd/eingebunden/Workflow.xsd
new file mode 100644
index 00000000..ce300b0e
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/xsd/eingebunden/Workflow.xsd
@@ -0,0 +1,200 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: Workflow.xsd
+Zweck: Definiert Datentypen für die Geschäftsprozesssteuerung der Usecases
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2004-08-02 tsch: Vorgang WorkflowsAuflisten hinzugefügt
+2004-06-29 tsch: Subprozess Struktur vereinfacht
+2004-06-14 tsch: ProzessAnzeigeenamen hinzugefügt
+2004-06-14 tsch: Optionale VerlassenerProzessInstanzID hinzugefügt
+2004-05-19 tsch: SequenceID hinzugefügt, Umbenennung Process->Prozess
+2004-05-17 tsch: Umbenennungen: Activity nach Vorgang, Workflowitems nach Subprozesse
+2004-05-04 tsch: ProcessID->ProcessName, ActivityID->ActivityName
+2003-12-12 tsch: Erstellung
+-->
+
+<xsd:schema targetNamespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	
+	<xsd:include schemaLocation="SimpleTypes.xsd"/>
+
+
+	<xsd:element name="WorkflowInfoClient">
+		<xsd:annotation>
+			<xsd:documentation>Workflowinformationen des Clients</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="ProzessName"/>
+				<xsd:sequence minOccurs="0">
+					<xsd:annotation>
+						<xsd:documentation>
+						Wenn der Geschäftsprozess aus mehreren Vorgängen besteht,
+						müssen die ProzessinstanzID und SequenzID aus der letzten 
+						Server-Response vom Client geschickt werden.
+						Beim ersten Vorgang eines neuen Geschäftsprozesses dürfen die beiden
+						Felder nicht geschickt werden.
+						Bei Beginn einen neuen  Geschäftsprozesses SOLLTE die InstanzID des letztzen
+						Prozesses als VerlassenerProzessInstanzID mitgeschickt werden
+						</xsd:documentation>
+					</xsd:annotation>
+					<xsd:element ref="ProzessInstanzID"/>
+					<xsd:element ref="VerlassenerProzessInstanzID" minOccurs="0"/>
+					<xsd:element ref="SequenzID"/>
+				</xsd:sequence>
+				<xsd:element ref="VorgangName"/>
+			</xsd:sequence>	
+		</xsd:complexType>	
+	</xsd:element>
+		
+	<xsd:element name="WorkflowInfoServer">
+		<xsd:annotation>
+			<xsd:documentation>Workflowinformationen des Servers</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:annotation>
+					<xsd:documentation>
+					Der Prozessname dient zur technischen Identifikation des Prozesses, der ProzessAnzeigeName
+					kann zur Anzeige auf der Benutzeroberfläche verwendet werden.
+					</xsd:documentation>
+				</xsd:annotation>
+				<xsd:element ref="ProzessName"/>
+				<xsd:element ref="ProzessAnzeigeName" minOccurs="0"/>	
+				<xsd:element ref="ProzessInstanzID"/>
+				<xsd:element ref="ProzessStatus"/>
+				<xsd:element ref="SequenzID"/>
+				<xsd:element ref="Subprozess" minOccurs="1" maxOccurs="unbounded"/>
+			</xsd:sequence>	
+		</xsd:complexType>	
+	</xsd:element>
+	
+	<xsd:complexType name="SubprozessType">
+		<xsd:sequence>
+				<xsd:annotation>
+					<xsd:documentation>
+					Der VorgangName dient zur technischen Identifikation des Vorgangs, der VorgangAnzeigeName
+					kann zur Anzeige auf der Benutzeroberfläche verwendet werden.
+					Die Elemente VorgangRestriction und VorgangConditions werden in näherer Zukunft nicht implementiert
+					und können ignoriert werden (werden nicht befüllt).
+					</xsd:documentation>
+				</xsd:annotation>		
+			<xsd:element ref="VorgangName"/>
+			<xsd:element ref="VorgangAnzeigeName" minOccurs="0"/>
+			<xsd:element ref="VorgangStatus"/>
+			<xsd:element ref="VorgangRestriction" minOccurs="0" maxOccurs="unbounded"/>
+			<xsd:element ref="VorgangConditions" minOccurs="0"/>
+			<xsd:element name="Required" type="xsd:boolean"/>
+			<xsd:element name="Visible" type="xsd:boolean"/>
+			<xsd:element ref="Subprozess" minOccurs="0" maxOccurs="unbounded"/>
+		</xsd:sequence>
+	</xsd:complexType>
+	
+	<xsd:element name="Subprozess" type="SubprozessType"/>
+
+	<xsd:element name="ProzessInstanzID" type="IDType"/>
+	<xsd:element name="VerlassenerProzessInstanzID" type="IDType"/>
+	<xsd:element name="SequenzID" type="IDType"/>
+	
+	<xsd:element name="ProzessName">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="1"/>
+				<xsd:maxLength value="90"/>	
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+
+	<xsd:element name="ProzessAnzeigeName">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="1"/>
+				<xsd:maxLength value="90"/>	
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>	
+	
+	<xsd:element name="ProzessStatus">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:enumeration value="O"/>
+				<xsd:enumeration value="A"/>
+				<xsd:enumeration value="C"/>
+				<xsd:enumeration value="E"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+
+	<xsd:element name="VorgangName">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="1"/>
+				<xsd:maxLength value="90"/>	
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+
+	<xsd:element name="VorgangAnzeigeName">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:whiteSpace value="collapse"/>
+				<xsd:minLength value="1"/>
+				<xsd:maxLength value="90"/>	
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+
+	<xsd:element name="VorgangStatus">
+		<xsd:simpleType>
+			<xsd:restriction base="xsd:string">
+				<xsd:enumeration value="O"/>
+				<xsd:enumeration value="A"/>
+				<xsd:enumeration value="C"/>
+				<xsd:enumeration value="E"/>
+			</xsd:restriction>
+		</xsd:simpleType>
+	</xsd:element>
+	
+	<xsd:element name="VorgangRestriction">
+		<xsd:annotation>
+			<xsd:documentation>regionale Restriktion, die fuer den Vorgang gilt (z.B. Gemeindenummer, fuer die Personen angemeldet werden duerfen.</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element name="RestrictionType" type="xsd:string"/>
+				<xsd:element name="RestrictionValue" type="xsd:string"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	
+	<xsd:element name="VorgangConditions">
+		<xsd:annotation>
+			<xsd:documentation>Liste von Bedingungen, unter denen das Item aktiv wird.</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element name="SelectedItems" minOccurs="1" maxOccurs="unbounded">
+					<xsd:annotation>
+						<xsd:documentation>Liste von alternativen Voraussetzungen (ODER) für die Anwählbarkeit der Activity. Ein Eintrag repräsentiert eine Reihe von Objekten, die im Suchergebnis ausgewählt sein müssen (UND).</xsd:documentation>
+					</xsd:annotation>
+					<xsd:complexType>
+						<xsd:sequence>
+							<xsd:element name="SelectedItem" type="xsd:string" minOccurs="1" maxOccurs="unbounded"/>
+						</xsd:sequence>
+					</xsd:complexType>
+				</xsd:element>				
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+</xsd:schema>
+	
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/xsd/zmr/Adresssuche.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/xsd/zmr/Adresssuche.xsd
new file mode 100644
index 00000000..4952ff44
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/xsd/zmr/Adresssuche.xsd
@@ -0,0 +1,128 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Name: Adresssuche.xsd
+Zweck: Definiert Datentypen für die Suche nach offiziellen STATA-Adressen im ZMR
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2009-11-20 mp: +Gebäudeeigenschaft, +Nutzungsart
+2005-06-15 pwag: CQ1370: Suchart ADRESSPRUEFUNG hinzugefügt
+2004-11-15 tsch: Detailgrad Gemeinde hinzugefügt
+2004-07-30 tsch: HauptIdentadresse->HauptIdent; Felder hinzu: Adressstatus, Adressschlüssel, HauptIdent, Hofname, Gebaeudeunterscheidung, GBDUntteil, InfoMeldewesen
+2004-07-08 tsch: Felder Adresszusatz, HauptIdentadresse hinzugefügt
+2004-06-24 tsch: GBRRefkey hinzugefügt
+2004-05-17 tsch: Organisation entfernt
+2004-01-27 tsch: Erstellung
+-->
+
+<xsd:schema  targetNamespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns:base="http://bmi.gv.at/namespace/zmr-su/base/20040201#"
+			xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			xmlns:cio="http://reference.e-government.gv.at/namespace/persondata/de/20040201#"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+	 
+	<xsd:import namespace="http://bmi.gv.at/namespace/zmr-su/base/20040201#" schemaLocation="../eingebunden/EingebundenProxy.xsd"/>
+	<xsd:import namespace="http://reference.e-government.gv.at/namespace/persondata/de/20040201#" schemaLocation="../eingebunden/PersonDataZMR.xsd"/>
+	
+	<xsd:element name="AdresssucheRequest">
+		<xsd:annotation>
+			<xsd:documentation>Suchdaten für die STATA - Adresssuche im ZMR</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="AdresssucheInfo"/>
+				<xsd:element ref="Adressdaten"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+
+	<xsd:element name="AdresssucheResponse">
+		<xsd:annotation>
+			<xsd:documentation>Anfragedaten, sowie Suchergebnis oder Text-Meldung (falls nichts gefunden)</xsd:documentation>
+		</xsd:annotation>
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="AdresssucheAnfrage"/>
+				<xsd:element ref="base:Message"/>
+				<!--  gibt an, ob Klaerungsadressen erlaubt sind oder nicht -->
+				<xsd:element name="inclKlaerungsadressen" type="xsd:boolean" minOccurs="0"/>
+				<xsd:element ref="Adresssuchergebnis"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>
+	
+	<xsd:element name="AdresssucheAnfrage">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="AdresssucheInfo"/>
+				<xsd:element ref="Adressdaten"/>
+			</xsd:sequence>
+		</xsd:complexType>	
+	</xsd:element>
+	
+	<xsd:element name="AdresssucheInfo" type="AdresssucheInfoType"/>
+	<xsd:complexType name="AdresssucheInfoType">
+		<xsd:annotation>
+			<xsd:documentation>Fachliche Informationen zur Adresssuche</xsd:documentation>
+		</xsd:annotation>
+		<xsd:sequence>
+			<xsd:element name="Suchart">
+				<xsd:simpleType>
+					<xsd:restriction base="xsd:string">
+						<xsd:enumeration value="ADRESSSUCHE"/>
+						<xsd:enumeration value="IDENTEADRESSENSUCHE"/>
+						<xsd:enumeration value="ADRESSPRUEFUNG"/>
+					</xsd:restriction>
+				</xsd:simpleType>
+			</xsd:element>
+		</xsd:sequence>
+	</xsd:complexType>	
+	
+	<xsd:element name="Adresssuchergebnis" type="AdresssuchergebnisType"/>
+	<xsd:complexType name="AdresssuchergebnisType">
+		<xsd:sequence>
+			<xsd:element name="Detailgrad">
+				<xsd:annotation>
+					<xsd:documentation>Gibt der Detailgrad der Adressen im Suchergebnis an</xsd:documentation>
+				</xsd:annotation>
+				<xsd:simpleType>
+					<xsd:restriction base="xsd:string">
+						<xsd:enumeration value="Gemeinde"/>
+						<xsd:enumeration value="Ortschaft"/>
+						<xsd:enumeration value="Strassenname"/>
+						<xsd:enumeration value="Orientierungsnummer"/>
+						<xsd:enumeration value="Gebaeudeteil"/>
+						<xsd:enumeration value="Tuer"/>
+						<xsd:enumeration value="Gesamtadresse"/>						
+					</xsd:restriction>
+				</xsd:simpleType>
+			</xsd:element>
+			<xsd:element ref="base:GefundeneSaetze">
+				<xsd:annotation>
+					<xsd:documentation>Gesamtanzahl der gefundenen Sätze</xsd:documentation>
+				</xsd:annotation>
+			</xsd:element>		
+			<xsd:element ref="Adressdaten" minOccurs="0" maxOccurs="unbounded"/>
+		</xsd:sequence>
+	</xsd:complexType>
+
+	<xsd:element name="Adressdaten">
+		<xsd:complexType>
+			<xsd:sequence>
+				<xsd:element ref="cio:PostAdresse" minOccurs="0"/>
+				<xsd:element ref="base:Adressstatus" minOccurs="0"/>
+				<xsd:element ref="base:Adressschluessel" minOccurs="0"/>
+				<xsd:element ref="base:HauptIdent" minOccurs="0"/>
+				<xsd:element ref="base:NameZuteil" minOccurs="0"/>		
+				<xsd:element ref="base:Hofname" minOccurs="0"/>
+				<xsd:element ref="base:Gebaeudeunterscheidung" minOccurs="0"/>
+				<xsd:element ref="base:GBDUntteil" minOccurs="0"/>
+				<xsd:element ref="base:InfoMeldewesen" minOccurs="0"/>
+				<xsd:element ref="base:GbdEigenschaft" minOccurs="0"/>
+				<xsd:element ref="base:NtzArt" minOccurs="0"/>
+			</xsd:sequence>
+		</xsd:complexType>
+	</xsd:element>	
+</xsd:schema>
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/xsd/zmr/ZMRProxy.xsd b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/xsd/zmr/ZMRProxy.xsd
new file mode 100644
index 00000000..a29b2b92
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/resources/wsdl/addresssearching_client/xsd/zmr/ZMRProxy.xsd
@@ -0,0 +1,33 @@
+<?xml version="1.0" encoding="UTF-8"?>
+
+<!--
+Name: ZMRProxy.xsd
+Zweck: Fasst alle ZMR-Vorgangs XSD-Files zusammen
+Author(s): Tschurtschenthaler Thomas, ZMR-SU
+
+Aenderungshistorie:
+2011-09-05 teo: Änderungsdienst ZWR (PN126)
+2010-03-08 teo: Historische Meldungskorrektur
+2010-02-01 teo: MeldebestätigungenAnforderung hinzugefügt
+2009-08-24 mp: TechnischeAnsicht hinzugefügt
+2009-08-06 teo: Auskunftssperre ändern hinzugefügt
+2009-05-07 teo: Ummeldeserviceabfrage hinzugefügt
+2009-01-23 teo: GISSuche hinzugefügt
+2006-11-06 tsch: ORFGISAnforderung hinzugefügt
+2006-03-21 tsch: SZRSammelabfrage hinzugefügt
+2005-01-14 tsch: Aviso aktivieren entfernt, Gleichstzungtabelle Warten hinzugefügt
+2004-11-22 tsch: Gerichtskommissaerabfrage hinzugefügt
+2004-09-28 tsch: Wehrfplichtigenanfrage, ablaufende Auskunfssperren-Suche hinzugefügt
+2004-09-27 tsch: Storno/Korrektur hinzugefügt
+2004-09-09 tsch: SZR-Vorgänge sowie Person trennen/zusammenführen hinzugefügt
+2004-08-24 tsch: GISAdressabfrage hinzugefügt
+2004-08-17 tsch: Erstellung
+-->
+
+<xsd:schema xmlns="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			xmlns:xsd="http://www.w3.org/2001/XMLSchema"
+			targetNamespace="http://bmi.gv.at/namespace/zmr-su/zmr/20040201#"
+			elementFormDefault="qualified" attributeFormDefault="unqualified" version="1.0">
+			
+	<xsd:include schemaLocation="../zmr/Adresssuche.xsd"/>
+</xsd:schema>
-- 
cgit v1.2.3


From 256781d66e555a308b44c12438f45a1a6af28182 Mon Sep 17 00:00:00 2001
From: Thomas <>
Date: Mon, 9 Aug 2021 15:06:05 +0200
Subject: move SZR-client tests into new package

---
 .../modules/auth/eidas/v2/test/SzrClientTest.java  | 354 ---------------------
 .../eidas/v2/test/SzrClientTestProduction.java     | 173 ----------
 .../v2/test/clients/SzrClientProductionTest.java   | 173 ++++++++++
 .../auth/eidas/v2/test/clients/SzrClientTest.java  | 354 +++++++++++++++++++++
 4 files changed, 527 insertions(+), 527 deletions(-)
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/SzrClientTest.java
 delete mode 100644 eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/SzrClientTestProduction.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/clients/SzrClientProductionTest.java
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/clients/SzrClientTest.java

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/SzrClientTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/SzrClientTest.java
deleted file mode 100644
index 2d493091..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/SzrClientTest.java
+++ /dev/null
@@ -1,354 +0,0 @@
-/*
- * Copyright 2018 A-SIT Plus GmbH
- * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
- * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
- *
- * Licensed under the EUPL, Version 1.2 or - as soon they will be approved by
- * the European Commission - subsequent versions of the EUPL (the "License");
- * You may not use this work except in compliance with the License.
- * You may obtain a copy of the License at:
- * https://joinup.ec.europa.eu/news/understanding-eupl-v12
- *
- * Unless required by applicable law or agreed to in writing, software
- * distributed under the License is distributed on an "AS IS" basis,
- * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
- * See the License for the specific language governing permissions and
- * limitations under the License.
- *
- * This product combines work with different licenses. See the "NOTICE" text
- * file for details on the various modules and licenses.
- * The "NOTICE" text file is part of the distribution. Any derivative works
- * that you distribute must include a readable copy of the "NOTICE" text file.
- */
-
-package at.asitplus.eidas.specific.modules.auth.eidas.v2.test;
-
-import at.asitplus.eidas.specific.connector.test.config.dummy.MsConnectorDummyConfigMap;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.clients.szr.SzrClient;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidasSAuthenticationException;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.SzrCommunicationException;
-import at.gv.egiz.eaaf.core.api.data.EaafConstants;
-import at.gv.egiz.eaaf.core.api.idp.auth.data.IIdentityLink;
-import at.gv.egiz.eaaf.core.exceptions.EaafParserException;
-import at.gv.egiz.eaaf.core.impl.idp.auth.data.SimpleIdentityLinkAssertionParser;
-import at.gv.egiz.eaaf.core.impl.utils.DomUtils;
-import com.skjolberg.mockito.soap.SoapServiceRule;
-import org.apache.commons.io.IOUtils;
-import org.apache.commons.lang3.RandomStringUtils;
-import org.apache.commons.lang3.StringUtils;
-import org.apache.cxf.binding.soap.SoapFault;
-import org.junit.*;
-import org.junit.runner.RunWith;
-import org.slf4j.Logger;
-import org.slf4j.LoggerFactory;
-import org.springframework.beans.factory.annotation.Autowired;
-import org.springframework.test.context.ContextConfiguration;
-import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
-import org.w3c.dom.Element;
-import org.xml.sax.SAXException;
-import szrservices.*;
-
-import javax.xml.bind.JAXBContext;
-import javax.xml.bind.JAXBException;
-import javax.xml.bind.Unmarshaller;
-import javax.xml.parsers.ParserConfigurationException;
-import javax.xml.ws.soap.SOAPFaultException;
-import java.io.IOException;
-import java.util.List;
-
-import static org.mockito.ArgumentMatchers.any;
-import static org.mockito.ArgumentMatchers.anyList;
-import static org.mockito.Mockito.when;
-
-@RunWith(SpringJUnit4ClassRunner.class)
-@ContextConfiguration(locations = {
-    "/SpringTest-context_tasks_test.xml",
-    "/SpringTest-context_basic_mapConfig.xml"})
-public class SzrClientTest {
-  private static final Logger log = LoggerFactory.getLogger(SzrClientTest.class);
-
-  @Autowired SzrClient szrClient;
-  @Autowired MsConnectorDummyConfigMap basicConfig;
-
-  private static final String DUMMY_TARGET = EaafConstants.URN_PREFIX_CDID + "ZP";
-
-  private SZR szrMock = null;
-
-  @Rule
-  public SoapServiceRule soap = SoapServiceRule.newInstance();
-
-  /**
-   * Initialize jUnit test.
-   */
-  @Before
-  public void initializer() {
-    if (szrMock == null) {
-      szrMock = soap.mock(SZR.class, "http://localhost:1234/demoszr");
-    }
-
-    basicConfig.putConfigValue("eidas.ms.auth.eIDAS.szrclient.eidasbind.mds.inject", "false");
-  }
-
-
-  @Test
-  public void getStammzahlenEcryptedTest() throws SZRException_Exception, SzrCommunicationException {
-    final GetBPKFromStammzahlEncryptedResponse szrResponse = new GetBPKFromStammzahlEncryptedResponse();
-    final GetBPKFromStammzahlEncryptedResponseType result1 = new GetBPKFromStammzahlEncryptedResponseType();
-    szrResponse.getOut().add(result1);
-
-    result1.setKey(RandomStringUtils.randomAlphanumeric(20));
-
-    //    when(szrMock.getBPKFromStammzahlEncrypted(anyList()))
-    //        .thenReturn(Arrays.asList(result1));
-    when(szrMock.getStammzahlEncrypted(any(), any())).thenReturn(result1.getKey());
-
-    String stammzahlEncrypted = szrClient.getEncryptedStammzahl(getEidData());
-
-    Assert.assertEquals("bcBind not match", result1.getKey(), stammzahlEncrypted);
-
-    when(szrMock.getStammzahlEncrypted(any(), any())).thenReturn(null);
-    try {
-      szrClient.getEncryptedStammzahl(getEidData());
-    } catch (SzrCommunicationException e) {
-      Assert.assertTrue("Not correct error", e.getMessage().contains("ernb.01"));
-    }
-  }
-
-  @Test
-  public void getEidasBindRealSzrResponse() throws SZRException_Exception, SzrCommunicationException, IOException {
-    final SignContentResponse szrResponse = new SignContentResponse();
-    final SignContentEntry result1 = new SignContentEntry();
-    final SignContentResponseType content = new SignContentResponseType();
-    content.getOut().add(result1);
-    szrResponse.setSignContentResponse(content);
-
-    result1.setKey("bcBindReq");
-    result1.setValue(IOUtils.toString(SzrClient.class.getResourceAsStream("/data/szr/signed_eidasBind.jws")));
-
-    when(szrMock.signContent(any(), anyList(), anyList())).thenReturn(content);
-
-    final String bcBind = szrClient
-        .getEidasBind(RandomStringUtils.randomAlphabetic(10), RandomStringUtils.randomAlphabetic(10),
-                   RandomStringUtils.randomAlphabetic(10), getEidData());
-
-    Assert.assertNotNull("bcBind is null", bcBind);
-    Assert.assertEquals("bcBind not match", result1.getValue(), bcBind);
-
-  }
-
-  @Test
-  public void eidasBindNull() throws SZRException_Exception {
-    when(szrMock.signContent(any(), anyList(), anyList())).thenReturn(null);
-
-    try {
-      szrClient
-          .getEidasBind(RandomStringUtils.randomAlphabetic(10), RandomStringUtils.randomAlphabetic(10),
-                     RandomStringUtils.randomAlphabetic(10), getEidData());
-    } catch (SzrCommunicationException e) {
-      Assert.assertTrue("Not correct error", e.getMessage().contains("ernb.01"));
-
-    }
-  }
-
-  @Test
-  public void eidasBindInvalidResponse() throws SZRException_Exception {
-    final SignContentEntry result2 = new SignContentEntry();
-    final SignContentResponseType content1 = new SignContentResponseType();
-    content1.getOut().add(result2);
-    when(szrMock.signContent(any(), anyList(), anyList())).thenReturn(content1);
-
-    try {
-      szrClient
-          .getEidasBind(RandomStringUtils.randomAlphabetic(10), RandomStringUtils.randomAlphabetic(10),
-                     RandomStringUtils.randomAlphabetic(10), getEidData());
-    } catch (SzrCommunicationException e) {
-      Assert.assertTrue("Not correct error", e.getMessage().contains("ernb.01"));
-
-    }
-  }
-
-  public void eidasBindEmptyResponse() throws SZRException_Exception {
-    final SignContentEntry result2 = new SignContentEntry();
-    final SignContentResponseType content1 = new SignContentResponseType();
-    content1.getOut().add(result2);
-    result2.setKey("bcBindReq");
-    result2.setValue("");
-    when(szrMock.signContent(any(), anyList(), anyList())).thenReturn(content1);
-
-    try {
-      szrClient
-          .getEidasBind(RandomStringUtils.randomAlphabetic(10), RandomStringUtils.randomAlphabetic(10),
-                     RandomStringUtils.randomAlphabetic(10), getEidData());
-    } catch (SzrCommunicationException e) {
-      Assert.assertTrue("Not correct error", e.getMessage().contains("ernb.01"));
-
-    }
-  }
-
-  @Test
-  public void eidasBindValid() throws SZRException_Exception, SzrCommunicationException {
-    final SignContentResponse szrResponse = new SignContentResponse();
-    final SignContentEntry result1 = new SignContentEntry();
-    final SignContentResponseType content = new SignContentResponseType();
-    content.getOut().add(result1);
-    szrResponse.setSignContentResponse(content);
-
-    result1.setKey("bcBindReq");
-    result1.setValue(RandomStringUtils.randomAlphanumeric(100));
-
-    when(szrMock.signContent(any(), anyList(), anyList())).thenReturn(content);
-
-    final String bcBind = szrClient
-        .getEidasBind(RandomStringUtils.randomAlphabetic(10), RandomStringUtils.randomAlphabetic(10),
-                   RandomStringUtils.randomAlphabetic(10), getEidData());
-
-    Assert.assertNotNull("bcBind is null", bcBind);
-    Assert.assertEquals("bcBind not match", result1.getValue(), bcBind);
-
-  }
-
-  @Test
-  public void eidasBindValidWithMds() throws SZRException_Exception, SzrCommunicationException {
-    basicConfig.putConfigValue("eidas.ms.auth.eIDAS.szrclient.eidasbind.mds.inject", "true");
-
-    final SignContentResponse szrResponse = new SignContentResponse();
-    final SignContentEntry result1 = new SignContentEntry();
-    final SignContentResponseType content = new SignContentResponseType();
-    content.getOut().add(result1);
-    szrResponse.setSignContentResponse(content);
-
-    result1.setKey("bcBindReq");
-    result1.setValue(RandomStringUtils.randomAlphanumeric(100));
-
-    when(szrMock.signContent(any(), anyList(), anyList())).thenReturn(content);
-
-    final String bcBind = szrClient
-        .getEidasBind(RandomStringUtils.randomAlphabetic(10), RandomStringUtils.randomAlphabetic(10),
-                   RandomStringUtils.randomAlphabetic(10), getEidData());
-
-    Assert.assertNotNull("bcBind is null", bcBind);
-    Assert.assertEquals("bcBind not match", result1.getValue(), bcBind);
-
-  }
-
-  @Test
-  public void getIdentityLinkRawModeValidResponse()
-      throws SZRException_Exception, EaafParserException, JAXBException {
-    setSzrResponseIdentityLink("/data/szr/szr_resp_valid_1.xml");
-
-    try {
-      log.debug("Starting connecting SZR Gateway");
-      final IdentityLinkType result = szrClient.getIdentityLinkInRawMode(getEidData());
-
-      Assert.assertNotNull(result);
-      Assert.assertNotNull(result.getAssertion());
-
-      final IIdentityLink identityLink = new SimpleIdentityLinkAssertionParser((Element) result.getAssertion())
-          .parseIdentityLink();
-      Assert.assertNotNull(identityLink);
-
-      System.out.println(identityLink.getSerializedSamlAssertion());
-
-      checkElement("Mustermann", identityLink.getFamilyName());
-      checkElement("Hans", identityLink.getGivenName());
-      checkElement("1989-05-05", identityLink.getDateOfBirth());
-      checkElement("urn:publicid:gv.at:baseid", identityLink.getIdentificationType());
-      checkElement("k+zDM1BVpN1WJO4x7ZQ3ng==", identityLink.getIdentificationValue());
-      Assert.assertNotNull(identityLink.getSerializedSamlAssertion());
-      Assert.assertNotNull(identityLink.getSamlAssertion());
-
-    } catch (final SzrCommunicationException e) {
-      Assert.fail();
-
-    }
-
-  }
-
-  @Test
-  public void getIdentityLinkRawModeErrorTravelerDocExists()
-      throws SZRException_Exception, IOException, ParserConfigurationException, SAXException {
-    setSzrExceptionIdentityLink("/data/szr/szr_resp_error_travelerdocexists.xml");
-
-    try {
-      log.debug("Starting connecting SZR Gateway");
-      szrClient.getIdentityLinkInRawMode(getEidData());
-      Assert.fail();
-
-    } catch (final SzrCommunicationException e) {
-      checkElement("ernb.02", e.getErrorId());
-      Assert.assertNotNull(e.getCause());
-      org.springframework.util.Assert.isInstanceOf(SOAPFaultException.class, e.getCause());
-      Assert.assertNotNull(((SOAPFaultException) e.getCause()).getFault());
-      checkElement("p344:F455", ((SOAPFaultException) e.getCause()).getFault().getFaultCode());
-      checkElement(
-          "The travel document you sent to insert a person already exists for another person. " + "Either check the document or have the person altered accordingly",
-          ((SOAPFaultException) e.getCause()).getFault().getFaultString());
-
-    }
-
-  }
-
-  @Ignore
-  @Test
-  public void getBpkTest() throws EidasSAuthenticationException {
-    final List<String> bPK = szrClient.getBpk(getEidData(), DUMMY_TARGET, basicConfig
-        .getBasicConfiguration(Constants.CONIG_PROPS_EIDAS_SZRCLIENT_PARAMS_VKZ, "no VKZ defined"));
-
-    if (bPK.isEmpty()) {
-      throw new SzrCommunicationException("ernb.01", new Object[]{"bPK list is empty"});
-    }
-    for (final String b : bPK) {
-      if (StringUtils.isEmpty(b)) {
-        throw new SzrCommunicationException("ernb.01", new Object[]{"bPK is null or empty"});
-      }
-    }
-
-  }
-
-  private void checkElement(String expected, String value) {
-    Assert.assertNotNull(value);
-    Assert.assertEquals(expected, value);
-
-  }
-
-  @SuppressWarnings("SameParameterValue")
-  private void setSzrResponseIdentityLink(String responseXmlPath) throws JAXBException, SZRException_Exception {
-    final JAXBContext jaxbContext = JAXBContext
-        .newInstance(szrservices.ObjectFactory.class, org.w3._2001._04.xmldsig_more.ObjectFactory.class,
-                     org.w3._2000._09.xmldsig.ObjectFactory.class,
-                     at.gv.e_government.reference.namespace.persondata._20020228.ObjectFactory.class);
-    final Unmarshaller jaxbUnmarshaller = jaxbContext.createUnmarshaller();
-    final GetIdentityLinkEidasResponse szrResponse = (GetIdentityLinkEidasResponse) jaxbUnmarshaller
-        .unmarshal(this.getClass().getResourceAsStream(responseXmlPath));
-    when(szrMock.getIdentityLinkEidas(any(PersonInfoType.class))).thenReturn(szrResponse.getGetIdentityLinkReturn());
-
-  }
-
-  @SuppressWarnings("SameParameterValue")
-  private void setSzrExceptionIdentityLink(String responseXmlPath)
-      throws ParserConfigurationException, SAXException, IOException, SZRException_Exception {
-    final Element detailerror = DomUtils.parseXmlNonValidating(this.getClass().getResourceAsStream(responseXmlPath));
-    final javax.xml.namespace.QName qName = new javax.xml.namespace.QName("urn:SZRServices", "F455", "p344");
-    final SoapFault fault = new SoapFault(
-        "The travel document you sent to insert a person already exists for another person. " + "Either check the document or have the person altered accordingly",
-        qName);
-    fault.setRole("urn:SZRServices");
-    fault.setDetail(detailerror);
-    when(szrMock.getIdentityLinkEidas(any(PersonInfoType.class))).thenThrow(fault);
-
-  }
-
-  private SimpleEidasData getEidData() {
-    return SimpleEidasData.builder()
-        .familyName("Mustermann")
-        .givenName("Franz")
-        .dateOfBirth("1989-05-05")
-        .citizenCountryCode("IS")
-        .pseudonym("1234sdgsdfg56789ABCDEF")
-        .build();
-  }
-
-
-}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/SzrClientTestProduction.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/SzrClientTestProduction.java
deleted file mode 100644
index b9cc77b1..00000000
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/SzrClientTestProduction.java
+++ /dev/null
@@ -1,173 +0,0 @@
-/*
- * Copyright 2018 A-SIT Plus GmbH
- * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
- * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
- *
- * Licensed under the EUPL, Version 1.2 or - as soon they will be approved by
- * the European Commission - subsequent versions of the EUPL (the "License");
- * You may not use this work except in compliance with the License.
- * You may obtain a copy of the License at:
- * https://joinup.ec.europa.eu/news/understanding-eupl-v12
- *
- * Unless required by applicable law or agreed to in writing, software
- * distributed under the License is distributed on an "AS IS" basis,
- * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
- * See the License for the specific language governing permissions and
- * limitations under the License.
- *
- * This product combines work with different licenses. See the "NOTICE" text
- * file for details on the various modules and licenses.
- * The "NOTICE" text file is part of the distribution. Any derivative works
- * that you distribute must include a readable copy of the "NOTICE" text file.
-*/
-
-package at.asitplus.eidas.specific.modules.auth.eidas.v2.test;
-
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.clients.szr.SzrClient;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidasSAuthenticationException;
-import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.SzrCommunicationException;
-import at.gv.egiz.eaaf.core.api.data.EaafConstants;
-import at.gv.egiz.eaaf.core.api.idp.IConfiguration;
-import at.gv.egiz.eaaf.core.api.idp.auth.data.IIdentityLink;
-import at.gv.egiz.eaaf.core.exceptions.EaafParserException;
-import at.gv.egiz.eaaf.core.impl.idp.auth.data.SimpleIdentityLinkAssertionParser;
-import org.apache.commons.lang3.RandomStringUtils;
-import org.apache.commons.lang3.StringUtils;
-import org.bouncycastle.util.encoders.Base64;
-import org.junit.Assert;
-import org.junit.Ignore;
-import org.junit.Test;
-import org.junit.runner.RunWith;
-import org.slf4j.Logger;
-import org.slf4j.LoggerFactory;
-import org.springframework.beans.factory.annotation.Autowired;
-import org.springframework.test.annotation.IfProfileValue;
-import org.springframework.test.context.ContextConfiguration;
-import org.springframework.test.context.TestPropertySource;
-import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
-import org.w3c.dom.Element;
-import szrservices.IdentityLinkType;
-
-import java.util.List;
-
-
-@IfProfileValue(name = "spring.profiles.active", value = "devEnvironment")
-@RunWith(SpringJUnit4ClassRunner.class)
-@ContextConfiguration(locations = {
-    "/SpringTest-context_tasks_test.xml",
-    "/SpringTest-context_basic_realConfig.xml"})
-@TestPropertySource(locations = {
-    //"classpath:/application.properties",
-    "file:/home/tlenz/Projekte/config/ms_connector/default_config.properties",
-    })
-public class SzrClientTestProduction {
-  private static final Logger log = LoggerFactory.getLogger(SzrClientTestProduction.class);
-
-  @Autowired
-  SzrClient szrClient;
-  @Autowired
-  IConfiguration basicConfig;
-
-  private static final String DUMMY_TARGET = EaafConstants.URN_PREFIX_CDID + "ZP";
-
-  @Test
-  public void dummyTest() {
-
-  }
-
-  @Test
-  public void getVsz() throws EidasSAuthenticationException {
-    String vsz = szrClient.getEncryptedStammzahl(getEidData());
-    Assert.assertNotNull("vsz", vsz);
-
-  }
-
-  @Test
-  public void getEidasBind() throws EidasSAuthenticationException {
-    String vsz = RandomStringUtils.randomAlphanumeric(10);
-    String bindingPubKey = Base64.toBase64String(RandomStringUtils.random(20).getBytes());
-    String eidStatus = "urn:eidgvat:eid.status.eidas";
-
-    String eidasBind = szrClient.getEidasBind(vsz, bindingPubKey, eidStatus, getEidData());
-
-    Assert.assertNotNull("eidasBind", eidasBind);
-
-  }
-
-
-  @Test
-  public void getIdentityLinkRawMode() throws EaafParserException, EidasSAuthenticationException {
-    log.debug("Starting connecting SZR Gateway");
-    final IdentityLinkType result = szrClient.getIdentityLinkInRawMode(getEidData());
-
-    final Element idlFromSzr = (Element) result.getAssertion();
-    final IIdentityLink identityLink = new SimpleIdentityLinkAssertionParser(idlFromSzr).parseIdentityLink();
-
-    if (identityLink == null) {
-      throw new SzrCommunicationException("ernb.00", new Object[] { "NO IDL object" });
-    }
-
-    System.out.println(identityLink.getSerializedSamlAssertion());
-
-    if (StringUtils.isEmpty(identityLink.getFamilyName())) {
-      throw new SzrCommunicationException("ernb.00", new Object[] { "NO FamilyName from IDL" });
-    }
-
-    if (StringUtils.isEmpty(identityLink.getGivenName())) {
-      throw new SzrCommunicationException("ernb.00", new Object[] { "NO GivenName from IDL" });
-    }
-
-    if (StringUtils.isEmpty(identityLink.getDateOfBirth())) {
-      throw new SzrCommunicationException("ernb.00", new Object[] { "NO DateOfBirthName from IDL" });
-    }
-
-    if (StringUtils.isEmpty(identityLink.getIdentificationType())) {
-      throw new SzrCommunicationException("ernb.00", new Object[] { "NO baseIdType from IDL" });
-    }
-
-    if (StringUtils.isEmpty(identityLink.getIdentificationValue())) {
-      throw new SzrCommunicationException("ernb.00", new Object[] { "NO baseId from IDL" });
-    }
-
-    if (StringUtils.isEmpty(identityLink.getSerializedSamlAssertion())) {
-      throw new SzrCommunicationException("ernb.00", new Object[] { "NO serialized IDL" });
-    }
-
-    if (identityLink.getSamlAssertion() == null) {
-      throw new SzrCommunicationException("ernb.00", new Object[] { "NO raw IDL" });
-    }
-
-  }
-
-
-  @Ignore
-  @Test
-  public void getBpkTest() throws EidasSAuthenticationException {
-    String vkz = basicConfig.getBasicConfiguration(
-        Constants.CONIG_PROPS_EIDAS_SZRCLIENT_PARAMS_VKZ, "no VKZ defined");
-    final List<String> bPK = szrClient.getBpk(getEidData(), DUMMY_TARGET, vkz);
-
-    if (bPK.isEmpty()) {
-      throw new SzrCommunicationException("ernb.01", new Object[]{"bPK list is empty"});
-    }
-    for (String b : bPK) {
-      if (StringUtils.isEmpty(b)) {
-        throw new SzrCommunicationException("ernb.01", new Object[]{"bPK is null or empty"});
-      }
-    }
-
-  }
-
-  private SimpleEidasData getEidData() {
-    return SimpleEidasData.builder()
-        .familyName("Mustermann")
-        .givenName("Franz")
-        .dateOfBirth("1989-05-04")
-        .citizenCountryCode("IS")
-        .pseudonym("1234ffgsdfg56789ABCDEF")
-        .build();
-  }
-
-}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/clients/SzrClientProductionTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/clients/SzrClientProductionTest.java
new file mode 100644
index 00000000..a5b83b13
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/clients/SzrClientProductionTest.java
@@ -0,0 +1,173 @@
+/*
+ * Copyright 2018 A-SIT Plus GmbH
+ * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
+ * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
+ *
+ * Licensed under the EUPL, Version 1.2 or - as soon they will be approved by
+ * the European Commission - subsequent versions of the EUPL (the "License");
+ * You may not use this work except in compliance with the License.
+ * You may obtain a copy of the License at:
+ * https://joinup.ec.europa.eu/news/understanding-eupl-v12
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" basis,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ *
+ * This product combines work with different licenses. See the "NOTICE" text
+ * file for details on the various modules and licenses.
+ * The "NOTICE" text file is part of the distribution. Any derivative works
+ * that you distribute must include a readable copy of the "NOTICE" text file.
+*/
+
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.test.clients;
+
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.clients.szr.SzrClient;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidasSAuthenticationException;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.SzrCommunicationException;
+import at.gv.egiz.eaaf.core.api.data.EaafConstants;
+import at.gv.egiz.eaaf.core.api.idp.IConfiguration;
+import at.gv.egiz.eaaf.core.api.idp.auth.data.IIdentityLink;
+import at.gv.egiz.eaaf.core.exceptions.EaafParserException;
+import at.gv.egiz.eaaf.core.impl.idp.auth.data.SimpleIdentityLinkAssertionParser;
+import org.apache.commons.lang3.RandomStringUtils;
+import org.apache.commons.lang3.StringUtils;
+import org.bouncycastle.util.encoders.Base64;
+import org.junit.Assert;
+import org.junit.Ignore;
+import org.junit.Test;
+import org.junit.runner.RunWith;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.test.annotation.IfProfileValue;
+import org.springframework.test.context.ContextConfiguration;
+import org.springframework.test.context.TestPropertySource;
+import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
+import org.w3c.dom.Element;
+import szrservices.IdentityLinkType;
+
+import java.util.List;
+
+
+@IfProfileValue(name = "spring.profiles.active", value = "devEnvironment")
+@RunWith(SpringJUnit4ClassRunner.class)
+@ContextConfiguration(locations = {
+    "/SpringTest-context_tasks_test.xml",
+    "/SpringTest-context_basic_realConfig.xml"})
+@TestPropertySource(locations = {
+    //"classpath:/application.properties",
+    "file:/home/tlenz/Projekte/config/ms_connector/default_config.properties",
+    })
+public class SzrClientProductionTest {
+  private static final Logger log = LoggerFactory.getLogger(SzrClientProductionTest.class);
+
+  @Autowired
+  SzrClient szrClient;
+  @Autowired
+  IConfiguration basicConfig;
+
+  private static final String DUMMY_TARGET = EaafConstants.URN_PREFIX_CDID + "ZP";
+
+  @Test
+  public void dummyTest() {
+
+  }
+
+  @Test
+  public void getVsz() throws EidasSAuthenticationException {
+    String vsz = szrClient.getEncryptedStammzahl(getEidData());
+    Assert.assertNotNull("vsz", vsz);
+
+  }
+
+  @Test
+  public void getEidasBind() throws EidasSAuthenticationException {
+    String vsz = RandomStringUtils.randomAlphanumeric(10);
+    String bindingPubKey = Base64.toBase64String(RandomStringUtils.random(20).getBytes());
+    String eidStatus = "urn:eidgvat:eid.status.eidas";
+
+    String eidasBind = szrClient.getEidasBind(vsz, bindingPubKey, eidStatus, getEidData());
+
+    Assert.assertNotNull("eidasBind", eidasBind);
+
+  }
+
+
+  @Test
+  public void getIdentityLinkRawMode() throws EaafParserException, EidasSAuthenticationException {
+    log.debug("Starting connecting SZR Gateway");
+    final IdentityLinkType result = szrClient.getIdentityLinkInRawMode(getEidData());
+
+    final Element idlFromSzr = (Element) result.getAssertion();
+    final IIdentityLink identityLink = new SimpleIdentityLinkAssertionParser(idlFromSzr).parseIdentityLink();
+
+    if (identityLink == null) {
+      throw new SzrCommunicationException("ernb.00", new Object[] { "NO IDL object" });
+    }
+
+    System.out.println(identityLink.getSerializedSamlAssertion());
+
+    if (StringUtils.isEmpty(identityLink.getFamilyName())) {
+      throw new SzrCommunicationException("ernb.00", new Object[] { "NO FamilyName from IDL" });
+    }
+
+    if (StringUtils.isEmpty(identityLink.getGivenName())) {
+      throw new SzrCommunicationException("ernb.00", new Object[] { "NO GivenName from IDL" });
+    }
+
+    if (StringUtils.isEmpty(identityLink.getDateOfBirth())) {
+      throw new SzrCommunicationException("ernb.00", new Object[] { "NO DateOfBirthName from IDL" });
+    }
+
+    if (StringUtils.isEmpty(identityLink.getIdentificationType())) {
+      throw new SzrCommunicationException("ernb.00", new Object[] { "NO baseIdType from IDL" });
+    }
+
+    if (StringUtils.isEmpty(identityLink.getIdentificationValue())) {
+      throw new SzrCommunicationException("ernb.00", new Object[] { "NO baseId from IDL" });
+    }
+
+    if (StringUtils.isEmpty(identityLink.getSerializedSamlAssertion())) {
+      throw new SzrCommunicationException("ernb.00", new Object[] { "NO serialized IDL" });
+    }
+
+    if (identityLink.getSamlAssertion() == null) {
+      throw new SzrCommunicationException("ernb.00", new Object[] { "NO raw IDL" });
+    }
+
+  }
+
+
+  @Ignore
+  @Test
+  public void getBpkTest() throws EidasSAuthenticationException {
+    String vkz = basicConfig.getBasicConfiguration(
+        Constants.CONIG_PROPS_EIDAS_SZRCLIENT_PARAMS_VKZ, "no VKZ defined");
+    final List<String> bPK = szrClient.getBpk(getEidData(), DUMMY_TARGET, vkz);
+
+    if (bPK.isEmpty()) {
+      throw new SzrCommunicationException("ernb.01", new Object[]{"bPK list is empty"});
+    }
+    for (String b : bPK) {
+      if (StringUtils.isEmpty(b)) {
+        throw new SzrCommunicationException("ernb.01", new Object[]{"bPK is null or empty"});
+      }
+    }
+
+  }
+
+  private SimpleEidasData getEidData() {
+    return SimpleEidasData.builder()
+        .familyName("Mustermann")
+        .givenName("Franz")
+        .dateOfBirth("1989-05-04")
+        .citizenCountryCode("IS")
+        .pseudonym("1234ffgsdfg56789ABCDEF")
+        .build();
+  }
+
+}
diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/clients/SzrClientTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/clients/SzrClientTest.java
new file mode 100644
index 00000000..647e5d27
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/clients/SzrClientTest.java
@@ -0,0 +1,354 @@
+/*
+ * Copyright 2018 A-SIT Plus GmbH
+ * AT-specific eIDAS Connector has been developed in a cooperation between EGIZ,
+ * A-SIT Plus GmbH, A-SIT, and Graz University of Technology.
+ *
+ * Licensed under the EUPL, Version 1.2 or - as soon they will be approved by
+ * the European Commission - subsequent versions of the EUPL (the "License");
+ * You may not use this work except in compliance with the License.
+ * You may obtain a copy of the License at:
+ * https://joinup.ec.europa.eu/news/understanding-eupl-v12
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" basis,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ *
+ * This product combines work with different licenses. See the "NOTICE" text
+ * file for details on the various modules and licenses.
+ * The "NOTICE" text file is part of the distribution. Any derivative works
+ * that you distribute must include a readable copy of the "NOTICE" text file.
+ */
+
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.test.clients;
+
+import at.asitplus.eidas.specific.connector.test.config.dummy.MsConnectorDummyConfigMap;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.Constants;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.clients.szr.SzrClient;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.dao.SimpleEidasData;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidasSAuthenticationException;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.SzrCommunicationException;
+import at.gv.egiz.eaaf.core.api.data.EaafConstants;
+import at.gv.egiz.eaaf.core.api.idp.auth.data.IIdentityLink;
+import at.gv.egiz.eaaf.core.exceptions.EaafParserException;
+import at.gv.egiz.eaaf.core.impl.idp.auth.data.SimpleIdentityLinkAssertionParser;
+import at.gv.egiz.eaaf.core.impl.utils.DomUtils;
+import com.skjolberg.mockito.soap.SoapServiceRule;
+import org.apache.commons.io.IOUtils;
+import org.apache.commons.lang3.RandomStringUtils;
+import org.apache.commons.lang3.StringUtils;
+import org.apache.cxf.binding.soap.SoapFault;
+import org.junit.*;
+import org.junit.runner.RunWith;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.test.context.ContextConfiguration;
+import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
+import org.w3c.dom.Element;
+import org.xml.sax.SAXException;
+import szrservices.*;
+
+import javax.xml.bind.JAXBContext;
+import javax.xml.bind.JAXBException;
+import javax.xml.bind.Unmarshaller;
+import javax.xml.parsers.ParserConfigurationException;
+import javax.xml.ws.soap.SOAPFaultException;
+import java.io.IOException;
+import java.util.List;
+
+import static org.mockito.ArgumentMatchers.any;
+import static org.mockito.ArgumentMatchers.anyList;
+import static org.mockito.Mockito.when;
+
+@RunWith(SpringJUnit4ClassRunner.class)
+@ContextConfiguration(locations = {
+    "/SpringTest-context_tasks_test.xml",
+    "/SpringTest-context_basic_mapConfig.xml"})
+public class SzrClientTest {
+  private static final Logger log = LoggerFactory.getLogger(SzrClientTest.class);
+
+  @Autowired SzrClient szrClient;
+  @Autowired MsConnectorDummyConfigMap basicConfig;
+
+  private static final String DUMMY_TARGET = EaafConstants.URN_PREFIX_CDID + "ZP";
+
+  private SZR szrMock = null;
+
+  @Rule
+  public SoapServiceRule soap = SoapServiceRule.newInstance();
+
+  /**
+   * Initialize jUnit test.
+   */
+  @Before
+  public void initializer() {
+    if (szrMock == null) {
+      szrMock = soap.mock(SZR.class, "http://localhost:1234/demoszr");
+    }
+
+    basicConfig.putConfigValue("eidas.ms.auth.eIDAS.szrclient.eidasbind.mds.inject", "false");
+  }
+
+
+  @Test
+  public void getStammzahlenEcryptedTest() throws SZRException_Exception, SzrCommunicationException {
+    final GetBPKFromStammzahlEncryptedResponse szrResponse = new GetBPKFromStammzahlEncryptedResponse();
+    final GetBPKFromStammzahlEncryptedResponseType result1 = new GetBPKFromStammzahlEncryptedResponseType();
+    szrResponse.getOut().add(result1);
+
+    result1.setKey(RandomStringUtils.randomAlphanumeric(20));
+
+    //    when(szrMock.getBPKFromStammzahlEncrypted(anyList()))
+    //        .thenReturn(Arrays.asList(result1));
+    when(szrMock.getStammzahlEncrypted(any(), any())).thenReturn(result1.getKey());
+
+    String stammzahlEncrypted = szrClient.getEncryptedStammzahl(getEidData());
+
+    Assert.assertEquals("bcBind not match", result1.getKey(), stammzahlEncrypted);
+
+    when(szrMock.getStammzahlEncrypted(any(), any())).thenReturn(null);
+    try {
+      szrClient.getEncryptedStammzahl(getEidData());
+    } catch (SzrCommunicationException e) {
+      Assert.assertTrue("Not correct error", e.getMessage().contains("ernb.01"));
+    }
+  }
+
+  @Test
+  public void getEidasBindRealSzrResponse() throws SZRException_Exception, SzrCommunicationException, IOException {
+    final SignContentResponse szrResponse = new SignContentResponse();
+    final SignContentEntry result1 = new SignContentEntry();
+    final SignContentResponseType content = new SignContentResponseType();
+    content.getOut().add(result1);
+    szrResponse.setSignContentResponse(content);
+
+    result1.setKey("bcBindReq");
+    result1.setValue(IOUtils.toString(SzrClient.class.getResourceAsStream("/data/szr/signed_eidasBind.jws")));
+
+    when(szrMock.signContent(any(), anyList(), anyList())).thenReturn(content);
+
+    final String bcBind = szrClient
+        .getEidasBind(RandomStringUtils.randomAlphabetic(10), RandomStringUtils.randomAlphabetic(10),
+                   RandomStringUtils.randomAlphabetic(10), getEidData());
+
+    Assert.assertNotNull("bcBind is null", bcBind);
+    Assert.assertEquals("bcBind not match", result1.getValue(), bcBind);
+
+  }
+
+  @Test
+  public void eidasBindNull() throws SZRException_Exception {
+    when(szrMock.signContent(any(), anyList(), anyList())).thenReturn(null);
+
+    try {
+      szrClient
+          .getEidasBind(RandomStringUtils.randomAlphabetic(10), RandomStringUtils.randomAlphabetic(10),
+                     RandomStringUtils.randomAlphabetic(10), getEidData());
+    } catch (SzrCommunicationException e) {
+      Assert.assertTrue("Not correct error", e.getMessage().contains("ernb.01"));
+
+    }
+  }
+
+  @Test
+  public void eidasBindInvalidResponse() throws SZRException_Exception {
+    final SignContentEntry result2 = new SignContentEntry();
+    final SignContentResponseType content1 = new SignContentResponseType();
+    content1.getOut().add(result2);
+    when(szrMock.signContent(any(), anyList(), anyList())).thenReturn(content1);
+
+    try {
+      szrClient
+          .getEidasBind(RandomStringUtils.randomAlphabetic(10), RandomStringUtils.randomAlphabetic(10),
+                     RandomStringUtils.randomAlphabetic(10), getEidData());
+    } catch (SzrCommunicationException e) {
+      Assert.assertTrue("Not correct error", e.getMessage().contains("ernb.01"));
+
+    }
+  }
+
+  public void eidasBindEmptyResponse() throws SZRException_Exception {
+    final SignContentEntry result2 = new SignContentEntry();
+    final SignContentResponseType content1 = new SignContentResponseType();
+    content1.getOut().add(result2);
+    result2.setKey("bcBindReq");
+    result2.setValue("");
+    when(szrMock.signContent(any(), anyList(), anyList())).thenReturn(content1);
+
+    try {
+      szrClient
+          .getEidasBind(RandomStringUtils.randomAlphabetic(10), RandomStringUtils.randomAlphabetic(10),
+                     RandomStringUtils.randomAlphabetic(10), getEidData());
+    } catch (SzrCommunicationException e) {
+      Assert.assertTrue("Not correct error", e.getMessage().contains("ernb.01"));
+
+    }
+  }
+
+  @Test
+  public void eidasBindValid() throws SZRException_Exception, SzrCommunicationException {
+    final SignContentResponse szrResponse = new SignContentResponse();
+    final SignContentEntry result1 = new SignContentEntry();
+    final SignContentResponseType content = new SignContentResponseType();
+    content.getOut().add(result1);
+    szrResponse.setSignContentResponse(content);
+
+    result1.setKey("bcBindReq");
+    result1.setValue(RandomStringUtils.randomAlphanumeric(100));
+
+    when(szrMock.signContent(any(), anyList(), anyList())).thenReturn(content);
+
+    final String bcBind = szrClient
+        .getEidasBind(RandomStringUtils.randomAlphabetic(10), RandomStringUtils.randomAlphabetic(10),
+                   RandomStringUtils.randomAlphabetic(10), getEidData());
+
+    Assert.assertNotNull("bcBind is null", bcBind);
+    Assert.assertEquals("bcBind not match", result1.getValue(), bcBind);
+
+  }
+
+  @Test
+  public void eidasBindValidWithMds() throws SZRException_Exception, SzrCommunicationException {
+    basicConfig.putConfigValue("eidas.ms.auth.eIDAS.szrclient.eidasbind.mds.inject", "true");
+
+    final SignContentResponse szrResponse = new SignContentResponse();
+    final SignContentEntry result1 = new SignContentEntry();
+    final SignContentResponseType content = new SignContentResponseType();
+    content.getOut().add(result1);
+    szrResponse.setSignContentResponse(content);
+
+    result1.setKey("bcBindReq");
+    result1.setValue(RandomStringUtils.randomAlphanumeric(100));
+
+    when(szrMock.signContent(any(), anyList(), anyList())).thenReturn(content);
+
+    final String bcBind = szrClient
+        .getEidasBind(RandomStringUtils.randomAlphabetic(10), RandomStringUtils.randomAlphabetic(10),
+                   RandomStringUtils.randomAlphabetic(10), getEidData());
+
+    Assert.assertNotNull("bcBind is null", bcBind);
+    Assert.assertEquals("bcBind not match", result1.getValue(), bcBind);
+
+  }
+
+  @Test
+  public void getIdentityLinkRawModeValidResponse()
+      throws SZRException_Exception, EaafParserException, JAXBException {
+    setSzrResponseIdentityLink("/data/szr/szr_resp_valid_1.xml");
+
+    try {
+      log.debug("Starting connecting SZR Gateway");
+      final IdentityLinkType result = szrClient.getIdentityLinkInRawMode(getEidData());
+
+      Assert.assertNotNull(result);
+      Assert.assertNotNull(result.getAssertion());
+
+      final IIdentityLink identityLink = new SimpleIdentityLinkAssertionParser((Element) result.getAssertion())
+          .parseIdentityLink();
+      Assert.assertNotNull(identityLink);
+
+      System.out.println(identityLink.getSerializedSamlAssertion());
+
+      checkElement("Mustermann", identityLink.getFamilyName());
+      checkElement("Hans", identityLink.getGivenName());
+      checkElement("1989-05-05", identityLink.getDateOfBirth());
+      checkElement("urn:publicid:gv.at:baseid", identityLink.getIdentificationType());
+      checkElement("k+zDM1BVpN1WJO4x7ZQ3ng==", identityLink.getIdentificationValue());
+      Assert.assertNotNull(identityLink.getSerializedSamlAssertion());
+      Assert.assertNotNull(identityLink.getSamlAssertion());
+
+    } catch (final SzrCommunicationException e) {
+      Assert.fail();
+
+    }
+
+  }
+
+  @Test
+  public void getIdentityLinkRawModeErrorTravelerDocExists()
+      throws SZRException_Exception, IOException, ParserConfigurationException, SAXException {
+    setSzrExceptionIdentityLink("/data/szr/szr_resp_error_travelerdocexists.xml");
+
+    try {
+      log.debug("Starting connecting SZR Gateway");
+      szrClient.getIdentityLinkInRawMode(getEidData());
+      Assert.fail();
+
+    } catch (final SzrCommunicationException e) {
+      checkElement("ernb.02", e.getErrorId());
+      Assert.assertNotNull(e.getCause());
+      org.springframework.util.Assert.isInstanceOf(SOAPFaultException.class, e.getCause());
+      Assert.assertNotNull(((SOAPFaultException) e.getCause()).getFault());
+      checkElement("p344:F455", ((SOAPFaultException) e.getCause()).getFault().getFaultCode());
+      checkElement(
+          "The travel document you sent to insert a person already exists for another person. " + "Either check the document or have the person altered accordingly",
+          ((SOAPFaultException) e.getCause()).getFault().getFaultString());
+
+    }
+
+  }
+
+  @Ignore
+  @Test
+  public void getBpkTest() throws EidasSAuthenticationException {
+    final List<String> bPK = szrClient.getBpk(getEidData(), DUMMY_TARGET, basicConfig
+        .getBasicConfiguration(Constants.CONIG_PROPS_EIDAS_SZRCLIENT_PARAMS_VKZ, "no VKZ defined"));
+
+    if (bPK.isEmpty()) {
+      throw new SzrCommunicationException("ernb.01", new Object[]{"bPK list is empty"});
+    }
+    for (final String b : bPK) {
+      if (StringUtils.isEmpty(b)) {
+        throw new SzrCommunicationException("ernb.01", new Object[]{"bPK is null or empty"});
+      }
+    }
+
+  }
+
+  private void checkElement(String expected, String value) {
+    Assert.assertNotNull(value);
+    Assert.assertEquals(expected, value);
+
+  }
+
+  @SuppressWarnings("SameParameterValue")
+  private void setSzrResponseIdentityLink(String responseXmlPath) throws JAXBException, SZRException_Exception {
+    final JAXBContext jaxbContext = JAXBContext
+        .newInstance(szrservices.ObjectFactory.class, org.w3._2001._04.xmldsig_more.ObjectFactory.class,
+                     org.w3._2000._09.xmldsig.ObjectFactory.class,
+                     at.gv.e_government.reference.namespace.persondata._20020228.ObjectFactory.class);
+    final Unmarshaller jaxbUnmarshaller = jaxbContext.createUnmarshaller();
+    final GetIdentityLinkEidasResponse szrResponse = (GetIdentityLinkEidasResponse) jaxbUnmarshaller
+        .unmarshal(this.getClass().getResourceAsStream(responseXmlPath));
+    when(szrMock.getIdentityLinkEidas(any(PersonInfoType.class))).thenReturn(szrResponse.getGetIdentityLinkReturn());
+
+  }
+
+  @SuppressWarnings("SameParameterValue")
+  private void setSzrExceptionIdentityLink(String responseXmlPath)
+      throws ParserConfigurationException, SAXException, IOException, SZRException_Exception {
+    final Element detailerror = DomUtils.parseXmlNonValidating(this.getClass().getResourceAsStream(responseXmlPath));
+    final javax.xml.namespace.QName qName = new javax.xml.namespace.QName("urn:SZRServices", "F455", "p344");
+    final SoapFault fault = new SoapFault(
+        "The travel document you sent to insert a person already exists for another person. " + "Either check the document or have the person altered accordingly",
+        qName);
+    fault.setRole("urn:SZRServices");
+    fault.setDetail(detailerror);
+    when(szrMock.getIdentityLinkEidas(any(PersonInfoType.class))).thenThrow(fault);
+
+  }
+
+  private SimpleEidasData getEidData() {
+    return SimpleEidasData.builder()
+        .familyName("Mustermann")
+        .givenName("Franz")
+        .dateOfBirth("1989-05-05")
+        .citizenCountryCode("IS")
+        .pseudonym("1234sdgsdfg56789ABCDEF")
+        .build();
+  }
+
+
+}
-- 
cgit v1.2.3


From e17f9c3ddf7618c775df2d833d8c5f93a91d63b3 Mon Sep 17 00:00:00 2001
From: Thomas <>
Date: Mon, 9 Aug 2021 15:56:58 +0200
Subject: add logging into SoapClient initialization to improve errorhandling

---
 .../specific/modules/auth/eidas/v2/clients/AbstractSoapClient.java      | 2 ++
 1 file changed, 2 insertions(+)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/clients/AbstractSoapClient.java b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/clients/AbstractSoapClient.java
index bfdf3991..a039881c 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/clients/AbstractSoapClient.java
+++ b/eidas_modules/authmodule-eIDAS-v2/src/main/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/clients/AbstractSoapClient.java
@@ -84,6 +84,7 @@ public class AbstractSoapClient {
       String keyStorePasswordKey, String keyStoreNameKey, String friendlyName)
       throws EaafConfigurationException {
     if (StringUtils.isNotEmpty(basicConfig.getBasicConfiguration(keyStoreTypeKey))) {
+      log.debug("Starting configuration of: {} ... ", friendlyName);
       final KeyStoreConfiguration config = new KeyStoreConfiguration();
       config.setFriendlyName(friendlyName);
       config.setKeyStoreType(basicConfig.getBasicConfiguration(keyStoreTypeKey, KeyStoreType.PKCS12.name()));
@@ -97,6 +98,7 @@ public class AbstractSoapClient {
       return config;
 
     } else {
+      log.info("Skipping configuration of: {}", friendlyName);
       return null;
 
     }
-- 
cgit v1.2.3


From 3cf7ae03f6b0ae7cfa5061869edaad6b9550e57a Mon Sep 17 00:00:00 2001
From: Thomas <>
Date: Mon, 9 Aug 2021 15:57:21 +0200
Subject: fix wrong configuration properties in jUnit test

---
 .../src/test/resources/config/junit_config_1_springboot.properties   | 5 ++---
 1 file changed, 2 insertions(+), 3 deletions(-)

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/junit_config_1_springboot.properties b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/junit_config_1_springboot.properties
index 294d340f..224e1b1f 100644
--- a/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/junit_config_1_springboot.properties
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/resources/config/junit_config_1_springboot.properties
@@ -120,9 +120,8 @@ eidas.ms.modules.idaustriaclient.truststore.path=keys/junit_test.jks
 eidas.ms.modules.idaustriaclient.truststore.password=password
 eidas.ms.modules.idaustriaclient.truststore.type=jks
 
-eidas.ms.modules.idaustriaclient.node.entityId=
-eidas.ms.modules.idaustriaclient.sp.entityId=
-eidas.ms.modules.idaustriaclient.node.metadataUrl=
+eidas.ms.modules.idaustriaclient.idaustria.idp.entityId=
+eidas.ms.modules.idaustriaclient.idaustria.idp.metadataUrl=
 
 eidas.ms.modules.idaustriaclient.metadata.organisation.name=JUnit
 eidas.ms.modules.idaustriaclient.metadata.organisation.friendyname=For testing with jUnit
-- 
cgit v1.2.3


From 847e690da4a2f6b08ca604538f1f42e6e6717d0b Mon Sep 17 00:00:00 2001
From: Thomas <>
Date: Mon, 9 Aug 2021 16:50:51 +0200
Subject: add ZMR-client test for development only that can be activated by
 Spring-Profile and uses real ZMR T-Stage (key material for authentication has
 to be available on local machine)

---
 .../v2/test/clients/ZmrClientProductionTest.java   | 43 ++++++++++++++++++++++
 1 file changed, 43 insertions(+)
 create mode 100644 eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/clients/ZmrClientProductionTest.java

(limited to 'eidas_modules/authmodule-eIDAS-v2/src')

diff --git a/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/clients/ZmrClientProductionTest.java b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/clients/ZmrClientProductionTest.java
new file mode 100644
index 00000000..5f3c5a55
--- /dev/null
+++ b/eidas_modules/authmodule-eIDAS-v2/src/test/java/at/asitplus/eidas/specific/modules/auth/eidas/v2/test/clients/ZmrClientProductionTest.java
@@ -0,0 +1,43 @@
+package at.asitplus.eidas.specific.modules.auth.eidas.v2.test.clients;
+
+import static org.junit.Assert.assertNotNull;
+
+import org.junit.Test;
+import org.junit.runner.RunWith;
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.test.annotation.IfProfileValue;
+import org.springframework.test.context.ContextConfiguration;
+import org.springframework.test.context.TestPropertySource;
+import org.springframework.test.context.junit4.SpringJUnit4ClassRunner;
+
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.clients.zmr.ZmrSoapClient;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.clients.zmr.ZmrSoapClient.ZmrRegisterResult;
+import at.asitplus.eidas.specific.modules.auth.eidas.v2.exception.EidasSAuthenticationException;
+import at.gv.egiz.eaaf.core.api.idp.IConfiguration;
+
+@IfProfileValue(name = "spring.profiles.active", value = "devEnvironment")
+@RunWith(SpringJUnit4ClassRunner.class)
+@ContextConfiguration(locations = {
+    "/SpringTest-context_tasks_test.xml",
+    "/SpringTest-context_basic_realConfig.xml"})
+@TestPropertySource(locations = {
+    //"classpath:/application.properties",
+    "file:/home/tlenz/Projekte/config/ms_connector/default_config.properties",
+    })
+public class ZmrClientProductionTest {
+
+  @Autowired ZmrSoapClient client;  
+  @Autowired IConfiguration basicConfig;
+  
+  @Test
+  public void mdsSearch() throws EidasSAuthenticationException {
+    
+    ZmrRegisterResult result = client.searchWithMds(null, 
+        "Thomas", "Lenz", "1982-09-06", 
+        "AT");
+   
+    assertNotNull("ZMR response", result);
+    
+  }
+  
+}
-- 
cgit v1.2.3