Test info
Profile: {'openid-configuration': 'no-config',
'response_type': 'code', 'crypto': 'none', 'registration':
'static'}
Timestamp: 2016-02-03T05:12:44Z
Test
description: Claims request with essential name claim [Basic, Implicit,
Hybrid]
Test ID: OP-claims-essential
Issuer:
http://dualstack.3a-test-1256922533.ap-northeast-1.elb.amazonaws.com:8081/
Test output
__AuthorizationRequest:pre__
[check-response-type]
status: OK
description: Checks that the asked for response type are among the supported
[check-endpoint]
status: OK
description: Checks that the necessary endpoint exists at a server
__After completing the test flow:__
[check-http-response]
status: OK
description: Checks that the HTTP response status is within the 200 or 300 range
[verify-claims]
status: WARNING
description: Verifies that the UserInfo returned is consistent with what was asked for
info: Missing required claim: name, Unexpected claims in response: [u'iss', u'aud']
__X:==== END ====__
Trace output
0.000442 ------------ AuthorizationRequest ------------
0.001041 --> URL: http://dualstack.3a-test-1256922533.ap-northeast-1.elb.amazonaws.com:8081/oc_v/AuthorizationEndpoint?state=0qptC5Z8cp52PFmY&redirect_uri=https%3A%2F%2Fop.certification.openid.net%3A60347%2Fauthz_cb&response_type=code&client_id=CLIANT9999&claims=%7B%22userinfo%22%3A+%7B%22name%22%3A+%7B%22essential%22%3A+true%7D%7D%7D&scope=openid
0.001049 --> BODY: None
34.355827 <-- state=0qptC5Z8cp52PFmY&code=63lBpnHzwepKGISq
34.356261 AuthorizationResponse: {
"code": "63lBpnHzwepKGISq",
"state": "0qptC5Z8cp52PFmY"
}
34.356634 ------------ AccessTokenRequest ------------
34.357024 --> URL: http://dualstack.3a-test-1256922533.ap-northeast-1.elb.amazonaws.com:8081/oc_v/AuthorizationCode/
34.357030 --> BODY: code=63lBpnHzwepKGISq&grant_type=authorization_code&redirect_uri=https%3A%2F%2Fop.certification.openid.net%3A60347%2Fauthz_cb
34.357043 --> HEADERS: {'Content-Type': 'application/x-www-form-urlencoded', 'Authorization': u'Basic Q0xJQU5UOTk5OTpjbGlhbnRfOTk5OQ=='}
34.828075 <-- STATUS: 200
34.828123 <-- BODY: {"scope":"","expires_in":3600,"token_type":"Bearer","id_token":"eyJ0eXAiOiJKV1QiLCJhbGciOiJub25lIn0.eyJleHAiOjE0NTQ0Nzk5NjIsImF6cCI6IkNMSUFOVDk5OTkiLCJzdWIiOiJzZWlub3UxMjg0NiIsImF1ZCI6IkNMSUFOVDk5OTkiLCJpc3MiOiJodHRwczpcL1wvZHVhbHN0YWNrLjNhLXRlc3QtMTI1NjkyMjUzMy5hcC1ub3J0aGVhc3QtMS5lbGIuYW1hem9uYXdzLmNvbTo4MDgxXC8iLCJpYXQiOjE0NTQ0NzYzNjJ9.","access_token":"vpEoay3EMzdlZeHbGSqRs2rGKiyEiLgi"}
34.830120 AccessTokenResponse: {
"access_token": "vpEoay3EMzdlZeHbGSqRs2rGKiyEiLgi",
"expires_in": 3600,
"id_token": {
"claims": {
"aud": [
"CLIANT9999"
],
"azp": "CLIANT9999",
"exp": 1454479962,
"iat": 1454476362,
"iss": "https://dualstack.3a-test-1256922533.ap-northeast-1.elb.amazonaws.com:8081/",
"sub": "seinou12846"
},
"jws header parameters": {
"alg": "none",
"typ": "JWT"
}
},
"token_type": "Bearer"
}
34.841131 ------------ UserInfoRequest ------------
34.841499 --> URL: http://dualstack.3a-test-1256922533.ap-northeast-1.elb.amazonaws.com:8081/oc_v/UserInfoEndpoint/
34.841505 --> BODY: None
34.841516 --> HEADERS: {'Authorization': u'Bearer vpEoay3EMzdlZeHbGSqRs2rGKiyEiLgi'}
35.270110 <-- STATUS: 200
35.691140 Available verification keys: [(u'2011-04-29', u'RSA')]
35.691196 Available decryption keys: [('a0', 'RSA'), ('a3', 'EC')]
35.691218 <-- BODY: {"sub":"seinou12846","iss":"https:\/\/dualstack.3a-test-1256922533.ap-northeast-1.elb.amazonaws.com:8081\/","aud":"CLIANT9999"}
35.692261 UserInfo: {
"aud": "CLIANT9999",
"iss": "https://dualstack.3a-test-1256922533.ap-northeast-1.elb.amazonaws.com:8081/",
"sub": "seinou12846"
}
35.703241 ==== END ====
Result
WARNING
Warnings:
Missing required claim: name, Unexpected
claims in response: [u'iss', u'aud']