Test info
Profile: {'openid-configuration': 'config', 'response_type': 'id_token', 'crypto': 'encrypt+none+sign', 'registration': 'static'}
Timestamp: 2016-02-02T00:31:08Z
Test description: Verify that jwks_uri is published [Config, Dynamic]
Test ID: OP-Discovery-jwks_uri
Issuer: https://ec2-54-153-169-151.ap-southeast-2.compute.amazonaws.com/oauth
Test output
__After completing the test flow:__
[providerinfo-has-jwks_uri]
status: OK
description: Check that the jwks_uri discovery metadata value is in the provider_info
[check-http-response]
status: OK
description: Checks that the HTTP response status is within the 200 or 300 range
[bare-keys]
status: OK
description: Dynamic OPs MUST publish their public keys as bare JWK keys
__X:==== END ====__
Trace output
0.000319 ------------ DiscoveryRequest ------------
0.000333 Provider info discover from 'https://ec2-54-153-169-151.ap-southeast-2.compute.amazonaws.com/oauth'
0.000340 --> URL: https://ec2-54-153-169-151.ap-southeast-2.compute.amazonaws.com/oauth/.well-known/openid-configuration
0.966845 ProviderConfigurationResponse: {
"account_endpoint": "https://ec2-54-153-169-151.ap-southeast-2.compute.amazonaws.com/oauth/account",
"authorization_endpoint": "https://ec2-54-153-169-151.ap-southeast-2.compute.amazonaws.com/oauth/authorise",
"claims_parameter_supported": false,
"claims_supported": [
"address",
"email",
"family_name",
"given_name",
"name",
"phone_number",
"preferred_username",
"sub",
"updated_at"
],
"display_values_supported": [
"page",
"popup",
"touch",
"wap"
],
"grant_types_supported": [
"authorization_code",
"implicit"
],
"id_token_signing_alg_values_supported": [
"RS256"
],
"issuer": "https://ec2-54-153-169-151.ap-southeast-2.compute.amazonaws.com/oauth",
"jwks_uri": "https://ec2-54-153-169-151.ap-southeast-2.compute.amazonaws.com/oauth/keys",
"request_parameter_supported": false,
"request_uri_parameter_supported": true,
"require_request_uri_registration": true,
"response_types_supported": [
"code",
"token",
"id_token",
"token id_token"
],
"revocation_endpoint": "https://ec2-54-153-169-151.ap-southeast-2.compute.amazonaws.com/oauth/revoke",
"scopes_supported": [
"openid",
"address",
"profile",
"email",
"phone"
],
"subject_types_supported": [
"public"
],
"token_endpoint": "https://ec2-54-153-169-151.ap-southeast-2.compute.amazonaws.com/oauth/token",
"token_endpoint_auth_methods_supported": [
"client_secret_basic",
"client_secret_post"
],
"userinfo_endpoint": "https://ec2-54-153-169-151.ap-southeast-2.compute.amazonaws.com/oauth/userinfo",
"version": "3.0"
}
1.884187 JWKS: {
"keys": [
{
"alg": "RS256",
"e": "AQAB",
"kid": "468b1763-142a-43da-96e0-53f2b6e1a7ac",
"kty": "RSA",
"n": "AM_U2ExHALTmiq8KLBZC7pKylVyr-r6oZrnwaUxQEMxZ6W8D0j_ijYmtj33qFqLCZ7iiAXC5DFDe96UxqxzAAsXUrqEHkhp2KWOZeXiyi0d-94jhZRLdpv9f_imWH-61d_Wj51XkXBSwUIZiwMYjP9ZeMK0gU5fU4fONBCnrIG6y-fbNSFsTiM-QvWG-KMU88o26XQNK924678_sgpVLYoeuKcEtEdvpNCGamttMMhi2B_vzVxn_dIbpsAGf5GbxCfyKw1w4Y9-bYX7YbV0GW25tjnh2Setfoo0EjImMeSQpXO-FYZgI39tSSF2Gm1d1aFu7bBlGYT9W1HUG3rRgUxs",
"use": "sig"
},
{
"alg": "RS256",
"e": "AQAB",
"kid": "8e6e22ef-f655-4aec-b700-f9cc7f5fca64",
"kty": "RSA",
"n": "lXyIIyuY92tQqbnpryqEqLx3ZlZcikt9sK_buJZS5m4RaQxY-JCIvX61l_Kd2OVXTyBpQ17DXT0EgpqKQvKLSmV2Uc1kYanRUbCT3fWI9kNjsaGQW7Y6qXjjhLdXce876pS1lHEYXuF-GuNvhICFu9GvD8KAtiJ4J2jixfaVd6DqBNndPPIGQZCilK5SJxkHBF6Z7r6LE1Cn5ByHPMCkBzRu9BzpDTYH--G9b75oh9YgF8qxZukfAVKBr8UUobHhI2PumpaSsOlp0weCS5MQL7Ti01P4efY6jVZaY5o4NdXzO9OLyrpXlZq5uOXuDrj9jd6Ozr2mV7G2wOg_COOPAw",
"use": "sig"
}
]
}
1.893078 ==== END ====
Result
PASSED