Test info
Profile: {'openid-configuration': 'config', 'response_type': 'code', 'crypto': 'none+sign', 'registration': 'static'}
Timestamp: 2015-04-10T02:31:30Z
Test description: Trying to use authorization code twice should result in revoking previously issued access tokens [Basic, Hybrid]
Test ID: OP-OAuth-2nd-Revokes
Issuer: https://openid.uni-id.info/express/
Test output
__AuthorizationRequest:pre__
[check-response-type]
status: OK
description: Checks that the asked for response type are among the supported
[check-endpoint]
status: OK
description: Checks that the necessary endpoint exists at a server
__After completing the test flow:__
[verify-response]
status: OK
description: Checks that the last response was one of a possible set of OpenID Connect Responses
__X:==== END ====__
Trace output
0.000379 ------------ DiscoveryRequest ------------
0.000396 Provider info discover from 'https://openid.uni-id.info/express/'
0.000404 --> URL: https://openid.uni-id.info/express/.well-known/openid-configuration
1.054165 ProviderConfigurationResponse: {
"authorization_endpoint": "https://openid.uni-id.info/express/script/connect/authz_req/endpoint.seam",
"claims_parameter_supported": false,
"claims_supported": [
"sub",
"iss",
"auth_time",
"acr",
"name",
"given_name",
"family_name",
"nickname",
"profile",
"picture",
"website",
"email",
"email_verified",
"locale",
"zoneinfo"
],
"grant_types_supported": [
"authorization_code",
"implicit"
],
"id_token_signing_alg_values_supported": [
"RS256"
],
"issuer": "https://openid.uni-id.info/express/",
"jwks_uri": "https://openid.uni-id.info/express/script/connect/jwks/endpoint.seam",
"request_parameter_supported": false,
"request_uri_parameter_supported": true,
"require_request_uri_registration": true,
"response_types_supported": [
"code",
"token",
"id_token",
"code token",
"code id_token",
"token id_token",
"code token id_token"
],
"scopes_supported": [
"openid",
"email",
"phone",
"address",
"profile"
],
"subject_types_supported": [
"pairwise"
],
"token_endpoint": "https://openid.uni-id.info/express/script/connect/token_req/endpoint.seam",
"token_endpoint_auth_methods_supported": [
"client_secret_basic",
"client_secret_post"
],
"userinfo_endpoint": "https://openid.uni-id.info/express/script/connect/userinfo/endpoint.seam",
"version": "3.0"
}
2.117446 JWKS: {
"keys": [
{
"alg": "RS256",
"e": "AQAB",
"kid": "key1",
"kty": "RSA",
"n": "u8XnQhjM_rO43PGu6t2RHa6Y2hAGA63fjJfcyrrw9iu5Y3Xn7iQ3uJV93JL7RYmi55GtMB6PaRzBDckAQRVOHd8BoEPufX9567TpuThQRb2vL8ds1oL6X3p33C02HgU9rkBRGQHYi8oOaKtuUjXUeC-P-boFvHKLtvKbCbfX3Ys",
"use": "sig"
}
]
}
2.118250 ------------ AuthorizationRequest ------------
2.118623 --> URL: https://openid.uni-id.info/express/script/connect/authz_req/endpoint.seam?scope=openid&state=1WwldrIifg1VshC0&redirect_uri=https%3A%2F%2Fop.certification.openid.net%3A60239%2Fauthz_cb&response_type=code&client_id=https%3A%2F%2Fopenid.uni-id.info%2Fconnect_consumer%2F
2.118630 --> BODY: None
2.525792 <-- code=eyJhbGciOiJub25lIiwidHlwIjoiSldUIn0.eyJjb2RlIjoibVNzR29HN2JPZDRSTTRYTFgxdU9wWmtteDk5MUd5RlQiLCJleHAiOjE0Mjg2MzY3MDQsImlhdCI6MTQyODYzMzEwNCwidG9rZW5UeXBlIjoiY29kZSIsInZlciI6IjEuMCJ9.&state=1WwldrIifg1VshC0
2.526067 AuthorizationResponse: {
"code": "eyJhbGciOiJub25lIiwidHlwIjoiSldUIn0.eyJjb2RlIjoibVNzR29HN2JPZDRSTTRYTFgxdU9wWmtteDk5MUd5RlQiLCJleHAiOjE0Mjg2MzY3MDQsImlhdCI6MTQyODYzMzEwNCwidG9rZW5UeXBlIjoiY29kZSIsInZlciI6IjEuMCJ9.",
"state": "1WwldrIifg1VshC0"
}
2.526371 ------------ AccessTokenRequest ------------
2.526679 --> URL: https://openid.uni-id.info/express/script/connect/token_req/endpoint.seam
2.526685 --> BODY: code=eyJhbGciOiJub25lIiwidHlwIjoiSldUIn0.eyJjb2RlIjoibVNzR29HN2JPZDRSTTRYTFgxdU9wWmtteDk5MUd5RlQiLCJleHAiOjE0Mjg2MzY3MDQsImlhdCI6MTQyODYzMzEwNCwidG9rZW5UeXBlIjoiY29kZSIsInZlciI6IjEuMCJ9.&grant_type=authorization_code&redirect_uri=https%3A%2F%2Fop.certification.openid.net%3A60239%2Fauthz_cb
2.526696 --> HEADERS: {'Content-type': 'application/x-www-form-urlencoded', 'Authorization': 'Basic aHR0cHM6Ly9vcGVuaWQudW5pLWlkLmluZm8vY29ubmVjdF9jb25zdW1lci86Y2xpZW50X3NlY3JldA=='}
3.685197 <-- STATUS: 200
3.685234 <-- BODY: {"scope":"openid","expires_in":1799,"token_type":"bearer","refresh_token":"eyJhbGciOiJub25lIiwidHlwIjoiSldUIn0.eyJjb2RlIjoiSmVrYlIzTTVpTEFURGE5cW1nUERfY3pUSlhKU29hUm0iLCJleHAiOjE0Mjg2NTExMDUsImlhdCI6MTQyODYzMzEwNSwidG9rZW5UeXBlIjoicmVmcmVzaF90b2tlbiIsInZlciI6IjEuMCJ9.","access_token":"eyJhbGciOiJub25lIiwidHlwIjoiSldUIn0.eyJjb2RlIjoiSmVrYlIzTTVpTEFURGE5cW1nUERfY3pUSlhKU29hUm0iLCJleHAiOjE0Mjg2MzQ5MDUsImlhdCI6MTQyODYzMzEwNSwidG9rZW5UeXBlIjoiYWNjZXNzX3Rva2VuIiwidmVyIjoiMS4wIn0.","id_token":"eyJhbGciOiJSUzI1NiIsImtpZCI6ImtleTEiLCJ0eXAiOiJKV1QifQ.eyJhdWQiOiJodHRwczovL29wZW5pZC51bmktaWQuaW5mby9jb25uZWN0X2NvbnN1bWVyLyIsImV4cCI6MTQyODYzNDkwNSwiaWF0IjoxNDI4NjMzMTA1LCJpc3MiOiJodHRwczovL29wZW5pZC51bmktaWQuaW5mby9leHByZXNzLyIsInN1YiI6IjI4Nll3YndtdXNIYnpwakJ2Q2E2d1NaMHlHWFRhQ0tMIiwidXNlcl9pZCI6IjI4Nll3YndtdXNIYnpwakJ2Q2E2d1NaMHlHWFRhQ0tMIn0.RgTsub96ACtQK46RO9yGTFJxJW1tEDmK2NBfPcbKSJR8_dnIz7RMhl4A7o_5nCmP20jMLAsyc-QariiQIaoSpDk9lJRN9M7KJcqn_353QMj8xRn2QblSyM9RmKcPUGGlt-hOcp8GoGo-ECE9t-JWCUHAIlyKhXasT-H6N4Ci3Sg"}
4.707457 AccessTokenResponse: {
"access_token": "eyJhbGciOiJub25lIiwidHlwIjoiSldUIn0.eyJjb2RlIjoiSmVrYlIzTTVpTEFURGE5cW1nUERfY3pUSlhKU29hUm0iLCJleHAiOjE0Mjg2MzQ5MDUsImlhdCI6MTQyODYzMzEwNSwidG9rZW5UeXBlIjoiYWNjZXNzX3Rva2VuIiwidmVyIjoiMS4wIn0.",
"expires_in": 1799,
"id_token": {
"claims": {
"aud": [
"https://openid.uni-id.info/connect_consumer/"
],
"exp": 1428634905,
"iat": 1428633105,
"iss": "https://openid.uni-id.info/express/",
"sub": "286YwbwmusHbzpjBvCa6wSZ0yGXTaCKL",
"user_id": "286YwbwmusHbzpjBvCa6wSZ0yGXTaCKL"
},
"jws header parameters": {
"alg": "RS256",
"kid": "key1",
"typ": "JWT"
}
},
"refresh_token": "eyJhbGciOiJub25lIiwidHlwIjoiSldUIn0.eyJjb2RlIjoiSmVrYlIzTTVpTEFURGE5cW1nUERfY3pUSlhKU29hUm0iLCJleHAiOjE0Mjg2NTExMDUsImlhdCI6MTQyODYzMzEwNSwidG9rZW5UeXBlIjoicmVmcmVzaF90b2tlbiIsInZlciI6IjEuMCJ9.",
"scope": "openid",
"token_type": "bearer"
}
4.708709 ------------ AccessTokenRequest ------------
4.709040 --> URL: https://openid.uni-id.info/express/script/connect/token_req/endpoint.seam
4.709046 --> BODY: code=eyJhbGciOiJub25lIiwidHlwIjoiSldUIn0.eyJjb2RlIjoibVNzR29HN2JPZDRSTTRYTFgxdU9wWmtteDk5MUd5RlQiLCJleHAiOjE0Mjg2MzY3MDQsImlhdCI6MTQyODYzMzEwNCwidG9rZW5UeXBlIjoiY29kZSIsInZlciI6IjEuMCJ9.&grant_type=authorization_code&redirect_uri=https%3A%2F%2Fop.certification.openid.net%3A60239%2Fauthz_cb
4.709056 --> HEADERS: {'Content-type': 'application/x-www-form-urlencoded', 'Authorization': 'Basic aHR0cHM6Ly9vcGVuaWQudW5pLWlkLmluZm8vY29ubmVjdF9jb25zdW1lci86Y2xpZW50X3NlY3JldA=='}
5.751152 <-- STATUS: 400
5.751273 ErrorResponse: {
"error": "invalid_grant"
}
5.752415 ------------ UserInfoRequest ------------
5.752713 --> URL: https://openid.uni-id.info/express/script/connect/userinfo/endpoint.seam
5.752720 --> BODY: None
5.752731 --> HEADERS: {'Authorization': u'Bearer eyJhbGciOiJub25lIiwidHlwIjoiSldUIn0.eyJjb2RlIjoiSmVrYlIzTTVpTEFURGE5cW1nUERfY3pUSlhKU29hUm0iLCJleHAiOjE0Mjg2MzQ5MDUsImlhdCI6MTQyODYzMzEwNSwidG9rZW5UeXBlIjoiYWNjZXNzX3Rva2VuIiwidmVyIjoiMS4wIn0.'}
6.785214 <-- STATUS: 401
6.785299 ErrorResponse: {}
6.786228 ==== END ====
Result
PASSED