Merge pull request #588 from GSA-TTS/aj/portal-60_link-ial-aal-values

Portal #60 Add standalone Assurance Level Values page

Author: ajfarkas

_includes/snippets/auth_content/aal_values.md

@@ -12,6 +12,6 @@ Stricter behavior can be specified by adding one of:
   - **`http://idmanagement.gov/ns/assurance/aal/2?hspd12=true`**
       This specifies that a user has been authenticated with an HSPD12 credential (requires PIV/CAC). Users must _always_ authenticate with a second factor.
 {% endcapture %}
-<div markdown="1">
+
 {{ aal_values | markdownify }}
-</div>
+

_includes/snippets/auth_content/deprecated_values.md

@@ -12,6 +12,5 @@
   - **`http://idmanagement.gov/ns/assurance/loa/3`**
       Equivalent to `urn:acr.login.gov:verified`.
 {% endcapture %}
-<div markdown="1">
+
 {{ deprecated_values | markdownify }}
-</div>

_includes/snippets/auth_content/service_levels.md

@@ -17,6 +17,5 @@
 
     Authentications for users who verify with facial matching will meet NIST 800-63-3 IAL2 standard. Authentication for users who do not do facial matching will not meet NIST 800-63-3 IAL2 standard.
 {% endcapture %}
-<div markdown="1">
+
 {{ type_of_service | markdownify }}
-</div>

_pages/oidc/authorization.md

@@ -23,10 +23,10 @@ sidenav:
 
 ---
 {% capture aal_values %}
- {% include snippets/auth_content/aal_values.md %}
+  {% include snippets/auth_content/aal_values.md %}
 {% endcapture %}
 {% capture service_levels %}
- {% include snippets/auth_content/service_levels.md %}
+  {% include snippets/auth_content/service_levels.md %}
 {% endcapture %}
 {% capture deprecated_values %}
  {% include snippets/auth_content/deprecated_values.md %}

_pages/oidc/authorization/pkce.md

@@ -23,13 +23,13 @@ sidenav:
 
 ---
 {% capture aal_values %}
- {% include snippets/auth_content/aal_values.md %}
+  {% include snippets/auth_content/aal_values.md %}
 {% endcapture %}
 {% capture service_levels %}
- {% include snippets/auth_content/service_levels.md %}
+  {% include snippets/auth_content/service_levels.md %}
 {% endcapture %}
 {% capture deprecated_values %}
- {% include snippets/auth_content/deprecated_values.md %}
+  {% include snippets/auth_content/deprecated_values.md %}
 {% endcapture %}
 {% capture code_challenge %}
 Correct Example

_pages/overview.md

@@ -5,7 +5,17 @@ sidenav:
     href: "#user-flow"
   - text: Service provider configuration
     href: "#service-provider-configuration"
+  - text: Service levels
+    href: "#service-levels"
+  - text: Authentication assurance levels
+    href: "#authentication-assurance-levels"
 ---
+{% capture type_of_service %}
+  {% include snippets/auth_content/service_levels.md %}
+{% endcapture %}
+{% capture aal_values %}
+  {% include snippets/auth_content/aal_values.md %}
+{% endcapture %}
 
 Login.gov is a FedRAMP moderate approved multifactor authentication and identity proofing platform that makes online interactions with the U.S. government simple, efficient and intuitive.
 
@@ -32,3 +42,15 @@ To configure a test application in the sandbox environment:
 * Select between [OIDC]({{ site.baseurl }}/oidc/) or [SAML]({{ site.baseurl }}/saml/) protocol implementation protocols and understand which user attributes are required.
 * If you have questions when testing your integration, read through our [FAQs]({{ site.baseurl }}/support/) or submit a ticket to our [technical support help desk]({{ site.baseurl}}/support/#contacting-partner-support).
 * Before submitting a request to move your application's configuration to production, review the [User experience]({{ site.baseurl }}/design-guidelines/) page and the [Production]({{ site.baseurl }}/production/) page. Additional requirements, like a [signed Interagency agreement]({{ site.baseurl }}/production/#confirm-interagency-agreement-iaa) (IAA) and [agency logo]({{ site.baseurl }}/user-experience/agency-logo/), are described in these pages.
+
+## Service Levels
+
+Service Level, or Identity Assurance Level, determines what information is used to confirm a user's identity.
+
+{{ type_of_service }}
+
+## Authentication Assurance Levels
+
+Authentication Assurance Level determines what second factors are allowed for user sign-in.
+
+{{ aal_values }}