Test Info

Issuerhttps://oidc-conformance.ping-eng.com:9031
Profile[]
Test IDOP-UserInfo-Endpoint
Test descriptionUserInfo Endpoint access with GET and bearer header
Timestamp2018-09-20T23:22:03Z

Conditions


verify-response: status=OK [Checks that the last response was one of a possible set of OpenID Connect Responses]
Done: status=OK

Trace Output

0.0phase<--<-- 0 --- Webfinger -->-->
0.0not expected to doWebFinger
0.0phase<--<-- 1 --- Discovery -->-->
0.0not expected to doDynamic discovery
0.0phase<--<-- 2 --- Registration -->-->
0.0register
kwargs:{'response_types': ['code'], 'grant_types': ['authorization_code'], 'application_name': 'OIC test tool', 'application_type': 'web', 'redirect_uris': ['https://op.certification.openid.net:61401/authz_cb'], 'contacts': ['roland@example.com'], 'post_logout_redirect_uris': ['https://op.certification.openid.net:61401/logout'], 'url': 'https://oidc-conformance.ping-eng.com:9031/as/clients.oauth2', 'jwks_uri': 'https://op.certification.openid.net:61401/static/jwks_61401.json'}
0.001RegistrationRequest
{
    "application_type": "web",
    "contacts": [
        "roland@example.com"
    ],
    "grant_types": [
        "authorization_code"
    ],
    "jwks_uri": "https://op.certification.openid.net:61401/static/jwks_61401.json",
    "post_logout_redirect_uris": [
        "https://op.certification.openid.net:61401/logout"
    ],
    "redirect_uris": [
        "https://op.certification.openid.net:61401/authz_cb"
    ],
    "request_uris": [
        "https://op.certification.openid.net:61401/requests/876669ef2b3891075309a06e00b98e6ace4cfca108af01becb9a804fff95d8c4#raD17HwKCMZ2X5qB"
    ],
    "response_types": [
        "code"
    ]
}
0.495http response
url:https://oidc-conformance.ping-eng.com:9031/as/clients.oauth2 status_code:201
0.496RegistrationResponse
{
    "client_id": "dc-6hZZWGYjr6szXg6yZOX7WM",
    "client_name": "dc-6hZZWGYjr6szXg6yZOX7WM",
    "client_secret": "z1tF0mH0QR1zZO4Duze95b",
    "client_secret_expires_at": 0,
    "grant_access_session_revocation_api": false,
    "grant_types": [
        "authorization_code"
    ],
    "jwks_uri": "https://op.certification.openid.net:61401/static/jwks_61401.json",
    "persistent_grant_expiration_type": "server_default",
    "pingaccess_logout_capable": false,
    "redirect_uris": [
        "https://op.certification.openid.net:61401/authz_cb"
    ],
    "refresh_token_rolling_policy": "server_default",
    "response_types": [
        "code"
    ],
    "scope": "address phone edit openid profile admin email",
    "token_endpoint_auth_method": "client_secret_basic",
    "validate_using_all_eligible_atms": false
}
0.496phase<--<-- 3 --- AsyncAuthn -->-->
0.496AuthorizationRequest
{
    "client_id": "dc-6hZZWGYjr6szXg6yZOX7WM",
    "nonce": "zqpDkXVzbEtPGtSE",
    "redirect_uri": "https://op.certification.openid.net:61401/authz_cb",
    "response_type": "code",
    "scope": "openid",
    "state": "OePDwCdBCjG8opcN"
}
0.496redirect urlhttps://oidc-conformance.ping-eng.com:9031/as/authorization.oauth2?state=OePDwCdBCjG8opcN&nonce=zqpDkXVzbEtPGtSE&response_type=code&scope=openid&redirect_uri=https%3A%2F%2Fop.certification.openid.net%3A61401%2Fauthz_cb&client_id=dc-6hZZWGYjr6szXg6yZOX7WM
0.496redirecthttps://oidc-conformance.ping-eng.com:9031/as/authorization.oauth2?state=OePDwCdBCjG8opcN&nonce=zqpDkXVzbEtPGtSE&response_type=code&scope=openid&redirect_uri=https%3A%2F%2Fop.certification.openid.net%3A61401%2Fauthz_cb&client_id=dc-6hZZWGYjr6szXg6yZOX7WM
2.225responseResponse URL with query part
2.225response{'code': 'gz90rDLa6-2_A4irAW9KCy5p9-LJmRJl1F29o5Ve', 'state': 'OePDwCdBCjG8opcN'}
2.226response{'code': 'gz90rDLa6-2_A4irAW9KCy5p9-LJmRJl1F29o5Ve', 'state': 'OePDwCdBCjG8opcN'}
2.226AuthorizationResponse
{
    "code": "gz90rDLa6-2_A4irAW9KCy5p9-LJmRJl1F29o5Ve",
    "state": "OePDwCdBCjG8opcN"
}
2.226phase<--<-- 4 --- AccessToken -->-->
2.226requestop_args: {'state': 'OePDwCdBCjG8opcN'}, req_args: {'redirect_uri': 'https://op.certification.openid.net:61401/authz_cb'}
2.226do_access_token_request
kwargs:{'request_args': {'redirect_uri': 'https://op.certification.openid.net:61401/authz_cb', 'code': 'gz90rDLa6-2_A4irAW9KCy5p9-LJmRJl1F29o5Ve', 'state': 'OePDwCdBCjG8opcN', 'grant_type': 'authorization_code', 'client_id': 'dc-6hZZWGYjr6szXg6yZOX7WM'}, 'state': 'OePDwCdBCjG8opcN'}
2.226AccessTokenRequest
{
    "code": "gz90rDLa6-2_A4irAW9KCy5p9-LJmRJl1F29o5Ve",
    "grant_type": "authorization_code",
    "redirect_uri": "https://op.certification.openid.net:61401/authz_cb",
    "state": "OePDwCdBCjG8opcN"
}
2.226request_urlhttps://oidc-conformance.ping-eng.com:9031/as/token.oauth2
2.226request_http_args{'headers': {'Authorization': 'Basic ZGMtNmhaWldHWWpyNnN6WGc2eVpPWDdXTTp6MXRGMG1IMFFSMXpaTzREdXplOTVi', 'Content-Type': 'application/x-www-form-urlencoded'}}
2.226requestgrant_type=authorization_code&redirect_uri=https%3A%2F%2Fop.certification.openid.net%3A61401%2Fauthz_cb&code=gz90rDLa6-2_A4irAW9KCy5p9-LJmRJl1F29o5Ve&state=OePDwCdBCjG8opcN
2.563http response
url:https://oidc-conformance.ping-eng.com:9031/as/token.oauth2 status_code:200
2.564response{'access_token': 'eyJhbGciOiJSUzI1NiIsImtpZCI6ImsxIn0.eyJzY29wZSI6WyJvcGVuaWQiXSwiY2xpZW50X2lkX25hbWUiOiJkYy02aFpaV0dZanI2c3pYZzZ5Wk9YN1dNIiwiVXNlcm5hbWUiOiJqb2UiLCJPcmdOYW1lIjoiUGluZyBJZGVudGl0eSBDb3Jwb3JhdGlvbiIsImV4cCI6MTUzNzQ5MjkyMn0.OwqALnZdjDeGFbXp8Mk_Uzk5RqcphSSGMGSq2jM0vxwbSYzGDCYPL0tyOMvh_tLN7k2Aij8enXuOoPtRae7TWf9ggT7nnLl10bsUQLz79WAqzhJBAIP4UknhViTFaCJ-Hg0RcUv3k3DtkXhCS-WzldT-wowcLP1nQPhRbqiFEldjmjfRY7waUJloApsX97V2kAwnvryPXS50KTUjc1Z42c1P7rjJR1IRf2LMNazkMfiBS5Hfpn3jd2BCYbbp7Qh_eliNMeDCzD0lRSqP_m5FFDjlv27a4w43pdVJCP82t4A7ZvufTjJPmOdYLCDfak_dVhoDYiiSMz23PoH_b6v9bg', 'id_token': 'eyJhbGciOiJSUzI1NiIsImtpZCI6IlJvMmxnRXNPdFdJMlJiRUxLRV85amZvSVRxWSJ9.eyJzdWIiOiJqb2UiLCJhdWQiOiJkYy02aFpaV0dZanI2c3pYZzZ5Wk9YN1dNIiwianRpIjoiM0kzTnF1UkpJSXVpenFhN3ZTdXZJNyIsImlzcyI6Imh0dHBzOi8vb2lkYy1jb25mb3JtYW5jZS5waW5nLWVuZy5jb206OTAzMSIsImlhdCI6MTUzNzQ4NTcyMiwiZXhwIjoxNTM3NDg2MDIyLCJwaS5zcmkiOiJhSlgxT20zZ2p1MkF1Unl1ZWg5WnVZdzllbTAiLCJub25jZSI6InpxcERrWFZ6YkV0UEd0U0UiLCJhdXRoX3RpbWUiOjE1Mzc0ODUxMjMsInNfaGFzaCI6IlBXVnVyNVBLRHRIXzBqSkpIQlVsdGcifQ.TlugFr3iHrZqkmXtGLUl8baMxqutZRguNINlADX23cnHNqfhf0wsdK5T7BfQXbQpq4tg4uAa-T90k7155cJyG4c7tYScgxR8oI6dsngt2Uwk0ZZSDuSAIktgX33LYqo9SPpHQNy_iHi2Y-jKWVteF1ys54ufqIH1Drz6i2hxBeKkc6XQLLr_NcITdzEyIhU7LxJP4QmLPDakc6bueeSCnbdVTxkyr0gQQe2W5YzU3z47CJjyqMgphgZeOscN_FGyzmvOnTxzZd5bh60QEpu8e8FzbkE3hTY-aVciK8dV-HL1rf_CrK-qUskrmqcFt2m4eCYbov4o_XNdFzDYeAKpeg', 'token_type': 'Bearer', 'expires_in': 7199}
2.864AccessTokenResponse
{
    "access_token": "eyJhbGciOiJSUzI1NiIsImtpZCI6ImsxIn0.eyJzY29wZSI6WyJvcGVuaWQiXSwiY2xpZW50X2lkX25hbWUiOiJkYy02aFpaV0dZanI2c3pYZzZ5Wk9YN1dNIiwiVXNlcm5hbWUiOiJqb2UiLCJPcmdOYW1lIjoiUGluZyBJZGVudGl0eSBDb3Jwb3JhdGlvbiIsImV4cCI6MTUzNzQ5MjkyMn0.OwqALnZdjDeGFbXp8Mk_Uzk5RqcphSSGMGSq2jM0vxwbSYzGDCYPL0tyOMvh_tLN7k2Aij8enXuOoPtRae7TWf9ggT7nnLl10bsUQLz79WAqzhJBAIP4UknhViTFaCJ-Hg0RcUv3k3DtkXhCS-WzldT-wowcLP1nQPhRbqiFEldjmjfRY7waUJloApsX97V2kAwnvryPXS50KTUjc1Z42c1P7rjJR1IRf2LMNazkMfiBS5Hfpn3jd2BCYbbp7Qh_eliNMeDCzD0lRSqP_m5FFDjlv27a4w43pdVJCP82t4A7ZvufTjJPmOdYLCDfak_dVhoDYiiSMz23PoH_b6v9bg",
    "expires_in": 7199,
    "id_token": {
        "aud": [
            "dc-6hZZWGYjr6szXg6yZOX7WM"
        ],
        "auth_time": 1537485123,
        "exp": 1537486022,
        "iat": 1537485722,
        "iss": "https://oidc-conformance.ping-eng.com:9031",
        "jti": "3I3NquRJIIuizqa7vSuvI7",
        "nonce": "zqpDkXVzbEtPGtSE",
        "pi.sri": "aJX1Om3gju2AuRyueh9ZuYw9em0",
        "s_hash": "PWVur5PKDtH_0jJJHBUltg",
        "sub": "joe"
    },
    "token_type": "Bearer"
}
2.865phase<--<-- 5 --- UserInfo -->-->
2.865do_user_info_request
kwargs:{'state': 'OePDwCdBCjG8opcN', 'method': 'GET', 'authn_method': 'bearer_header'}
2.865request{'body': None}
2.865request_urlhttps://oidc-conformance.ping-eng.com:9031/idp/userinfo.openid
2.865request_http_args{'headers': {'Authorization': 'Bearer eyJhbGciOiJSUzI1NiIsImtpZCI6ImsxIn0.eyJzY29wZSI6WyJvcGVuaWQiXSwiY2xpZW50X2lkX25hbWUiOiJkYy02aFpaV0dZanI2c3pYZzZ5Wk9YN1dNIiwiVXNlcm5hbWUiOiJqb2UiLCJPcmdOYW1lIjoiUGluZyBJZGVudGl0eSBDb3Jwb3JhdGlvbiIsImV4cCI6MTUzNzQ5MjkyMn0.OwqALnZdjDeGFbXp8Mk_Uzk5RqcphSSGMGSq2jM0vxwbSYzGDCYPL0tyOMvh_tLN7k2Aij8enXuOoPtRae7TWf9ggT7nnLl10bsUQLz79WAqzhJBAIP4UknhViTFaCJ-Hg0RcUv3k3DtkXhCS-WzldT-wowcLP1nQPhRbqiFEldjmjfRY7waUJloApsX97V2kAwnvryPXS50KTUjc1Z42c1P7rjJR1IRf2LMNazkMfiBS5Hfpn3jd2BCYbbp7Qh_eliNMeDCzD0lRSqP_m5FFDjlv27a4w43pdVJCP82t4A7ZvufTjJPmOdYLCDfak_dVhoDYiiSMz23PoH_b6v9bg'}}
3.182http response
url:https://oidc-conformance.ping-eng.com:9031/idp/userinfo.openid status_code:200
3.183OpenIDSchema
{
    "sub": "joe"
}
3.183OpenIDSchema
{
    "sub": "joe"
}
3.183phase<--<-- 6 --- Done -->-->
3.183end
3.183assertionVerifyResponse
3.183conditionverify-response: status=OK [Checks that the last response was one of a possible set of OpenID Connect Responses]
3.183conditionDone: status=OK

Result

PASSED