AUT-1584 Add information about example client

Demo.md

@@ -0,0 +1,14 @@
+---
+permalink: Demo
+---
+
+<img src='img/eu_regional_development_fund_horizontal.jpg' width="350" height="200" alt="European Union European Regional Development Fund"/>
+
+# Demo
+
+For demonstration and testing purposes, there are two publicly accessible deployments of [GovSSO example client](Example):
+
+* [https://govsso-demo-client-a.id.ee/](https://govsso-demo-client-a.id.ee/)
+* [https://govsso-demo-client-b.id.ee/](https://govsso-demo-client-b.id.ee/)
+
+These example clients integrate with the GovSSO service's demo environment (govsso-demo.ria.ee) and demonstrate all flows that a GovSSO client must implement (authentication, session update, logout, and back-channel logout).

Example.md

@@ -4,7 +4,8 @@ permalink: Example
 
 <img src='img/eu_regional_development_fund_horizontal.jpg' width="350" height="200" alt="European Union European Regional Development Fund"/>
 
-# Example software for GovSSO client
+# Example client for integrating with GovSSO service
 
-Currently, there is one example in Java for integrating with GovSSO. The example can be found
-at [https://github.com/e-gov/GOVSSO-Client/](https://github.com/e-gov/GOVSSO-Client/).
+One example of client implementation is provided for integrating with GovSSO in Java. Its source can be found at [https://github.com/e-gov/GOVSSO-Client](https://github.com/e-gov/GOVSSO-Client). It demonstrates all flows that a GovSSO client must implement (authentication, session update, logout, and back-channel logout). OpenID Connect support that is needed for GovSSO integration is based on the Spring Security framework's OAuth 2.0 module. Example client source code is provided for study purposes and it cannot be used out of the box in production.
+
+For demonstration and testing purposes, example client deployments are publicly accessible as described on the [Demo](Demo) page.

News.md

@@ -6,6 +6,15 @@ permalink: News
 
 # Uudised
 
+**02.02.2024**
+## Näidisklient
+
+[GovSSO example client](Example) leht kirjeldab GovSSO näidisklientrakendust. Näidisklient on implementeeritud Java platvormil ja demonstreerib kõiki vooge, mida GovSSO liidestuja peab implementeerima (autentimine, seansi uuendamine, väljalogimine, taustakanali väljalogimine). Koodibaas on mõeldud õppeotstarbeliseks uurimiseks, seda ei saa _out of the box_ toodangus kasutada.
+
+[Demo](Demo) leht kirjeldab näidiskliendi kahte paigaldust, mis on avalikult kättesaadavad demonstreerimise ja testimise eesmärgil. Need paigaldused on integreeritud GovSSO teenuse demokeskkonnaga (govsso-demo.ria.ee) ja demonstreerivad kõiki ülalnimetatud GovSSO kliendi vooge.
+
+___
+
 **26.10.2023**
 ## 07.11.2023 vahetub TLS sertifikaat `govsso-demo.ria.ee` keskkonnas ja 14.11.2023 vahetub `govsso.ria.ee` keskkonnas.
 • Palume klientidel, kes on oma teenuses usaldanud senist DigiCert juursertifikaati (DigiCert Global Root CA), lisada enne vahetusaega usaldusankruks uus DigiCert juursertifikaat ([DigiCert Global Root G2](https://cacerts.digicert.com/DigiCertGlobalRootG2.crt.pem)) ja eemaldada pärast vahetusaega senine juursertifikaat.<br/>

Testing.md

@@ -139,6 +139,11 @@ The integrator has to ensure that the client application can handle user logout
 
 As with ID tokens, the integrator has to validate the logout token before actually logging out the user. For a more detailed overview of logout token verification, please refer to [technical specifications](TechnicalSpecification#71-verification-of-the-id-token-and-logout-token).
 
+Triggering back-channel logout separately (when the user does not initiate the logout flow from your client application, but initiates it from another client application) can be performed in the following way:
+
+* when integrated with the GovSSO mock, back-channel logout can be separately initiated from the mock's front page as described in [mock documentation](https://github.com/e-gov/GOVSSO-Mock/blob/master/USAGE.md#4-back-channel-logout); your client application must receive the logout token and must terminate the user's login;
+* when integrated with the demo GovSSO environment, back-channel logout request to your client application can be initiated, when being logged into your client application and additionally logging into another client application (for example to one of [publicly available example client deployments](Demo)), then initiating logout from that other application and choosing "Log out all" in GovSSO; your client application must receive the logout token and must terminate the user's login.
+
 ### 3.2 Additional aspects to test
 
 Beside the main workflows, there are additional aspects related to integrating with GovSSO to keep in mind while testing the client application.

_data/Menu.yml

@@ -6,6 +6,8 @@
   url: "/BusinessDescription"
 - title: "Liitumine"
   url: "/Application"
+- title: "Demo"
+  url: "/Demo"
 - title: "Technical Specification"
   url: "/TechnicalSpecification"
 - title: "Testing"