Test Info
Test description | Using prompt=none with user hint through id_token_hint |
---|---|
Profile | [] |
Timestamp | 2018-05-17T15:39:15Z |
Issuer | https://reference.mobileconnect.io/mobileconnect |
Test ID | OP-Req-id_token_hint |
Conditions
same-authn: status=OK [Verifies that the same authentication was used twice in the flow.]
verify-response: status=OK [Checks that the last response was one of a possible set of OpenID Connect Responses]
Done: status=OK
Trace Output
0.0 | phase | <--<-- 0 --- Webfinger -->--> |
0.0 | not expected to do | WebFinger |
0.0 | phase | <--<-- 1 --- Discovery -->--> |
0.0 | provider_config |
|
0.355 | http response |
|
0.357 | ProviderConfigurationResponse |
|
0.357 | phase | <--<-- 2 --- Registration -->--> |
0.357 | not expected to do | Dynamic registration |
0.357 | phase | <--<-- 3 --- AsyncAuthn -->--> |
0.358 | AuthorizationRequest |
|
0.358 | redirect url | https://reference.mobileconnect.io/mobileconnect/index.php/auth?response_type=code&redirect_uri=https%3A%2F%2Fop.certification.openid.net%3A61286%2Fauthz_cb&scope=openid&nonce=2MeFHRrHBAYwBqMV&client_id=7cf82bd4-71c3-47df-9c49-70fae9c9b142&state=CuE4QZOrfzcUOoCl |
0.358 | redirect | https://reference.mobileconnect.io/mobileconnect/index.php/auth?response_type=code&redirect_uri=https%3A%2F%2Fop.certification.openid.net%3A61286%2Fauthz_cb&scope=openid&nonce=2MeFHRrHBAYwBqMV&client_id=7cf82bd4-71c3-47df-9c49-70fae9c9b142&state=CuE4QZOrfzcUOoCl |
0.526 | response | {'code': 'E_QawNFa1qbYr1r-IHXAiu_VKpR45thNWil1ExZ9SCE', 'state': 'CuE4QZOrfzcUOoCl'} |
0.526 | response | {'code': 'E_QawNFa1qbYr1r-IHXAiu_VKpR45thNWil1ExZ9SCE', 'state': 'CuE4QZOrfzcUOoCl'} |
0.526 | AuthorizationResponse |
|
0.526 | phase | <--<-- 4 --- AccessToken -->--> |
0.526 | request | op_args: {'state': 'CuE4QZOrfzcUOoCl'}, req_args: {'redirect_uri': 'https://op.certification.openid.net:61286/authz_cb'} |
0.526 | do_access_token_request |
|
0.527 | AccessTokenRequest |
|
0.527 | request_url | https://reference.mobileconnect.io/mobileconnect/index.php/token |
0.527 | request_http_args | {'headers': {'Authorization': 'Basic N2NmODJiZDQtNzFjMy00N2RmLTljNDktNzBmYWU5YzliMTQyOmNhNmE5ZDVjLTg5OTctNDZmOC05NjQwLTdiNTE5MWQyNGVkZQ==', 'Content-Type': 'application/x-www-form-urlencoded'}} |
0.527 | request | grant_type=authorization_code&code=E_QawNFa1qbYr1r-IHXAiu_VKpR45thNWil1ExZ9SCE&redirect_uri=https%3A%2F%2Fop.certification.openid.net%3A61286%2Fauthz_cb&state=CuE4QZOrfzcUOoCl |
0.926 | http response |
|
0.928 | response | {'id_token': 'eyJhbGciOiJSUzI1NiIsImtpZCI6IlBIUE9QLTAwIn0.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.OrvUB4DXinTfhC4TT60WQ9QE6PkmFkpA7P-HMYc0sGoXTw8GsSqUNYj1RE3mooElT3VPEOhRRMSDNj8-mwNwKC7L9MuF9oZlz17dVYsfBv_ySCP1OcZzoJJAYATRrEXorGvpMNQ94-Cwt3RWXS93MiMhakOHkKJ6_RsEVJskvy4', 'token_type': 'Bearer', 'expires_in': 3600, 'access_token': 'lWuGXd-YLmrXOAVzPSX2aWDFqg-GfNwQJqDpVbrkxM8'} |
1.284 | AccessTokenResponse |
|
1.284 | phase | <--<-- 5 --- AsyncAuthn -->--> |
1.284 | AuthorizationRequest |
|
1.284 | redirect url | https://reference.mobileconnect.io/mobileconnect/index.php/auth?id_token_hint=eyJhbGciOiJSUzI1NiIsImtpZCI6IlBIUE9QLTAwIn0.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.OrvUB4DXinTfhC4TT60WQ9QE6PkmFkpA7P-HMYc0sGoXTw8GsSqUNYj1RE3mooElT3VPEOhRRMSDNj8-mwNwKC7L9MuF9oZlz17dVYsfBv_ySCP1OcZzoJJAYATRrEXorGvpMNQ94-Cwt3RWXS93MiMhakOHkKJ6_RsEVJskvy4&response_type=code&redirect_uri=https%3A%2F%2Fop.certification.openid.net%3A61286%2Fauthz_cb&nonce=HPfkOiknrb3xcX0y&prompt=none&state=cezltMaHHkavteA9&client_id=7cf82bd4-71c3-47df-9c49-70fae9c9b142&scope=openid |
1.285 | redirect | https://reference.mobileconnect.io/mobileconnect/index.php/auth?id_token_hint=eyJhbGciOiJSUzI1NiIsImtpZCI6IlBIUE9QLTAwIn0.eyJpc3MiOiJodHRwczpcL1wvcmVmZXJlbmNlLm1vYmlsZWNvbm5lY3QuaW9cL21vYmlsZWNvbm5lY3QiLCJzdWIiOiJGM0VFRDU1RC01RTZELTQ4MjktODhBNi1BMzY1MzI1QThBNUMiLCJhdWQiOlsiN2NmODJiZDQtNzFjMy00N2RmLTljNDktNzBmYWU5YzliMTQyIl0sImV4cCI6MTUyNjU3MTg1NCwiaWF0IjoxNTI2NTcxNTU0LCJub25jZSI6IjJNZUZIUnJIQkFZd0JxTVYiLCJhdF9oYXNoIjoiUUZHZWVMbXNRTjIwSnh1cFRwVHVHZyIsImF1dGhfdGltZSI6MTUyNjU3MTU0NCwiYWNyIjoiMiIsImF6cCI6IjdjZjgyYmQ0LTcxYzMtNDdkZi05YzQ5LTcwZmFlOWM5YjE0MiIsImhhc2hlZF9sb2dpbl9oaW50IjoiZTNiMGM0NDI5OGZjMWMxNDlhZmJmNGM4OTk2ZmI5MjQyN2FlNDFlNDY0OWI5MzRjYTQ5NTk5MWI3ODUyYjg1NSJ9.OrvUB4DXinTfhC4TT60WQ9QE6PkmFkpA7P-HMYc0sGoXTw8GsSqUNYj1RE3mooElT3VPEOhRRMSDNj8-mwNwKC7L9MuF9oZlz17dVYsfBv_ySCP1OcZzoJJAYATRrEXorGvpMNQ94-Cwt3RWXS93MiMhakOHkKJ6_RsEVJskvy4&response_type=code&redirect_uri=https%3A%2F%2Fop.certification.openid.net%3A61286%2Fauthz_cb&nonce=HPfkOiknrb3xcX0y&prompt=none&state=cezltMaHHkavteA9&client_id=7cf82bd4-71c3-47df-9c49-70fae9c9b142&scope=openid |
1.466 | response | {'code': 'IR_emgluTUoY-Ns6eRFtwrcdGTdy154oaZZ2gk4BZes', 'state': 'cezltMaHHkavteA9'} |
1.466 | response | {'code': 'IR_emgluTUoY-Ns6eRFtwrcdGTdy154oaZZ2gk4BZes', 'state': 'cezltMaHHkavteA9'} |
1.467 | AuthorizationResponse |
|
1.467 | phase | <--<-- 6 --- AccessToken -->--> |
1.467 | request | op_args: {'state': 'cezltMaHHkavteA9'}, req_args: {'redirect_uri': 'https://op.certification.openid.net:61286/authz_cb'} |
1.467 | do_access_token_request |
|
1.467 | AccessTokenRequest |
|
1.467 | request_url | https://reference.mobileconnect.io/mobileconnect/index.php/token |
1.467 | request_http_args | {'headers': {'Authorization': 'Basic N2NmODJiZDQtNzFjMy00N2RmLTljNDktNzBmYWU5YzliMTQyOmNhNmE5ZDVjLTg5OTctNDZmOC05NjQwLTdiNTE5MWQyNGVkZQ==', 'Content-Type': 'application/x-www-form-urlencoded'}} |
1.467 | request | grant_type=authorization_code&code=IR_emgluTUoY-Ns6eRFtwrcdGTdy154oaZZ2gk4BZes&redirect_uri=https%3A%2F%2Fop.certification.openid.net%3A61286%2Fauthz_cb&state=cezltMaHHkavteA9 |
1.868 | http response |
|
1.869 | response | {'id_token': 'eyJhbGciOiJSUzI1NiIsImtpZCI6IlBIUE9QLTAwIn0.eyJpc3MiOiJodHRwczpcL1wvcmVmZXJlbmNlLm1vYmlsZWNvbm5lY3QuaW9cL21vYmlsZWNvbm5lY3QiLCJzdWIiOiJGM0VFRDU1RC01RTZELTQ4MjktODhBNi1BMzY1MzI1QThBNUMiLCJhdWQiOlsiN2NmODJiZDQtNzFjMy00N2RmLTljNDktNzBmYWU5YzliMTQyIl0sImV4cCI6MTUyNjU3MTg1NSwiaWF0IjoxNTI2NTcxNTU1LCJub25jZSI6IkhQZmtPaWtucmIzeGNYMHkiLCJhdF9oYXNoIjoibVc4VXVUbHJqWXhnMXI5cnVhdXRJZyIsImF1dGhfdGltZSI6MTUyNjU3MTU0NCwiYWNyIjoiMiIsImF6cCI6IjdjZjgyYmQ0LTcxYzMtNDdkZi05YzQ5LTcwZmFlOWM5YjE0MiIsImhhc2hlZF9sb2dpbl9oaW50IjoiZTNiMGM0NDI5OGZjMWMxNDlhZmJmNGM4OTk2ZmI5MjQyN2FlNDFlNDY0OWI5MzRjYTQ5NTk5MWI3ODUyYjg1NSJ9.DKV07n-yg_rvny0w-yPjHCeA7KLlOC2JADH48djSOB0BrkB-64jw1XerfnUxTYjrtJqNM_wBdj5HueaouZfY5fDliItWdSq1fpoP7OWOP4fTsI0My_ODzDhSdItrbpJfk4sW_T56TDQQaSjlB56mggfr_Z4MAGSXO7w0XNqKF3I', 'token_type': 'Bearer', 'expires_in': 3600, 'access_token': '2A6q82Umpcv1zDVEC9XfDgoaUq4bEtHq-Im73WR4DFA'} |
1.871 | AccessTokenResponse |
|
1.871 | phase | <--<-- 7 --- Done -->--> |
1.871 | end | |
1.871 | assertion | SameAuthn |
1.872 | condition | same-authn: status=OK [Verifies that the same authentication was used twice in the flow.] |
1.872 | assertion | VerifyResponse |
1.872 | condition | verify-response: status=OK [Checks that the last response was one of a possible set of OpenID Connect Responses] |
1.872 | condition | Done: status=OK |
Result
PASSED