Test Info

Issuerhttps://oidc-conformance.ping-eng.com:9031
Profile[]
Test IDOP-ClientAuth-Basic-Dynamic
Test descriptionAccess token request with client_secret_basic authentication
Timestamp2018-09-21T17:17:55Z

Conditions


verify-response: status=OK [Checks that the last response was one of a possible set of OpenID Connect Responses]
Done: status=OK

Trace Output

0.0phase<--<-- 0 --- Webfinger -->-->
0.0not expected to doWebFinger
0.0phase<--<-- 1 --- Discovery -->-->
0.0not expected to doDynamic discovery
0.0phase<--<-- 2 --- Registration -->-->
0.0register
kwargs:{'response_types': ['code id_token'], 'grant_types': ['authorization_code', 'implicit'], 'application_name': 'OIC test tool', 'application_type': 'web', 'redirect_uris': ['https://op.certification.openid.net:61401/authz_cb'], 'contacts': ['roland@example.com'], 'post_logout_redirect_uris': ['https://op.certification.openid.net:61401/logout'], 'url': 'https://oidc-conformance.ping-eng.com:9031/as/clients.oauth2', 'jwks_uri': 'https://op.certification.openid.net:61401/static/jwks_61401.json', 'token_endpoint_auth_method': 'client_secret_basic'}
0.001RegistrationRequest
{
    "application_type": "web",
    "contacts": [
        "roland@example.com"
    ],
    "grant_types": [
        "implicit",
        "authorization_code"
    ],
    "jwks_uri": "https://op.certification.openid.net:61401/static/jwks_61401.json",
    "post_logout_redirect_uris": [
        "https://op.certification.openid.net:61401/logout"
    ],
    "redirect_uris": [
        "https://op.certification.openid.net:61401/authz_cb"
    ],
    "request_uris": [
        "https://op.certification.openid.net:61401/requests/876669ef2b3891075309a06e00b98e6ace4cfca108af01becb9a804fff95d8c4#ajfa5QMFpGe5cvet"
    ],
    "response_types": [
        "code id_token"
    ],
    "token_endpoint_auth_method": "client_secret_basic"
}
0.369http response
url:https://oidc-conformance.ping-eng.com:9031/as/clients.oauth2 status_code:201
0.37RegistrationResponse
{
    "client_id": "dc-wpuTQT2kfvcLiy7y2u8eCs",
    "client_name": "dc-wpuTQT2kfvcLiy7y2u8eCs",
    "client_secret": "UtMvBdUFFYyhBwpCvLBaD9",
    "client_secret_expires_at": 0,
    "grant_access_session_revocation_api": false,
    "grant_types": [
        "implicit",
        "authorization_code"
    ],
    "jwks_uri": "https://op.certification.openid.net:61401/static/jwks_61401.json",
    "persistent_grant_expiration_type": "server_default",
    "pingaccess_logout_capable": false,
    "redirect_uris": [
        "https://op.certification.openid.net:61401/authz_cb"
    ],
    "refresh_token_rolling_policy": "server_default",
    "response_types": [
        "code id_token"
    ],
    "scope": "address phone edit openid profile admin email",
    "token_endpoint_auth_method": "client_secret_basic",
    "validate_using_all_eligible_atms": false
}
0.37phase<--<-- 3 --- AsyncAuthn -->-->
0.371AuthorizationRequest
{
    "client_id": "dc-wpuTQT2kfvcLiy7y2u8eCs",
    "nonce": "Qf1CTzRyO7rTGImC",
    "redirect_uri": "https://op.certification.openid.net:61401/authz_cb",
    "response_type": "code id_token",
    "scope": "openid",
    "state": "MBpZ4ttJMggnBFgZ"
}
0.371redirect urlhttps://oidc-conformance.ping-eng.com:9031/as/authorization.oauth2?state=MBpZ4ttJMggnBFgZ&nonce=Qf1CTzRyO7rTGImC&response_type=code+id_token&scope=openid&redirect_uri=https%3A%2F%2Fop.certification.openid.net%3A61401%2Fauthz_cb&client_id=dc-wpuTQT2kfvcLiy7y2u8eCs
0.371redirecthttps://oidc-conformance.ping-eng.com:9031/as/authorization.oauth2?state=MBpZ4ttJMggnBFgZ&nonce=Qf1CTzRyO7rTGImC&response_type=code+id_token&scope=openid&redirect_uri=https%3A%2F%2Fop.certification.openid.net%3A61401%2Fauthz_cb&client_id=dc-wpuTQT2kfvcLiy7y2u8eCs
2.405http args{}
2.721responseURL with fragment
2.722responsecode=sLAGeduax9KCT4hByd12TqHuaiNNAtqXJ7J2FKkU&id_token=eyJhbGciOiJSUzI1NiIsImtpZCI6InExa19WZW9TcXRKX0Y1Y2ZlRXRRRkJHcW1LOCJ9.eyJzdWIiOiJqb2UiLCJhdWQiOiJkYy13cHVUUVQya2Z2Y0xpeTd5MnU4ZUNzIiwianRpIjoiWWlwRWZmdURDT3FEWnAxaElUSDl1RCIsImlzcyI6Imh0dHBzOi8vb2lkYy1jb25mb3JtYW5jZS5waW5nLWVuZy5jb206OTAzMSIsImlhdCI6MTUzNzU1MDI3NCwiZXhwIjoxNTM3NTUwNTc0LCJwaS5zcmkiOiJLZnJxQmNBazFabkVrMXN4eE5qN0JRdzJpbmMiLCJub25jZSI6IlFmMUNUelJ5TzdyVEdJbUMiLCJhdXRoX3RpbWUiOjE1Mzc1NDk3MDEsImNfaGFzaCI6IldBNU9PeW12QTRFUVcwUFFwQzQ5WEEiLCJzX2hhc2giOiJsQzZwVFA4T1JxRXJhR3FmQ0diemtRIn0.CDCMz0x0GbIk6JtiNNPwHzkzDsVNhCtY_1o_foQgblQJDD71F10gJl9c7EXN_e-7tEOrI0buY1Qg2o8klE0O7XXr5YhS21AJxBh9Dgrgr4eOFQ292WuS3p4QCM8uS1vHeB_kjMdJ4g678_bkGTRnqb2VO-j_LUWI74x-zC69JimAwSdCqoJ_V83fhpbl9DcJ_h956Em_hlvTFcGLGHEzpLmqPRec4I63rEl2kS6srXzoBIdH_3Ya5IuNno9-uuUFzESdLJjZiLEeAJ5NBhe6NUocEpJb6UPB9lW9z-mwyddexF1zuB610WeN3tHs6DSqVGb9vMMXgNK9pPhiFmWvPg&state=MBpZ4ttJMggnBFgZ
2.722response{'code': 'sLAGeduax9KCT4hByd12TqHuaiNNAtqXJ7J2FKkU', 'id_token': 'eyJhbGciOiJSUzI1NiIsImtpZCI6InExa19WZW9TcXRKX0Y1Y2ZlRXRRRkJHcW1LOCJ9.eyJzdWIiOiJqb2UiLCJhdWQiOiJkYy13cHVUUVQya2Z2Y0xpeTd5MnU4ZUNzIiwianRpIjoiWWlwRWZmdURDT3FEWnAxaElUSDl1RCIsImlzcyI6Imh0dHBzOi8vb2lkYy1jb25mb3JtYW5jZS5waW5nLWVuZy5jb206OTAzMSIsImlhdCI6MTUzNzU1MDI3NCwiZXhwIjoxNTM3NTUwNTc0LCJwaS5zcmkiOiJLZnJxQmNBazFabkVrMXN4eE5qN0JRdzJpbmMiLCJub25jZSI6IlFmMUNUelJ5TzdyVEdJbUMiLCJhdXRoX3RpbWUiOjE1Mzc1NDk3MDEsImNfaGFzaCI6IldBNU9PeW12QTRFUVcwUFFwQzQ5WEEiLCJzX2hhc2giOiJsQzZwVFA4T1JxRXJhR3FmQ0diemtRIn0.CDCMz0x0GbIk6JtiNNPwHzkzDsVNhCtY_1o_foQgblQJDD71F10gJl9c7EXN_e-7tEOrI0buY1Qg2o8klE0O7XXr5YhS21AJxBh9Dgrgr4eOFQ292WuS3p4QCM8uS1vHeB_kjMdJ4g678_bkGTRnqb2VO-j_LUWI74x-zC69JimAwSdCqoJ_V83fhpbl9DcJ_h956Em_hlvTFcGLGHEzpLmqPRec4I63rEl2kS6srXzoBIdH_3Ya5IuNno9-uuUFzESdLJjZiLEeAJ5NBhe6NUocEpJb6UPB9lW9z-mwyddexF1zuB610WeN3tHs6DSqVGb9vMMXgNK9pPhiFmWvPg', 'state': 'MBpZ4ttJMggnBFgZ'}
3.042AuthorizationResponse
{
    "code": "sLAGeduax9KCT4hByd12TqHuaiNNAtqXJ7J2FKkU",
    "id_token": {
        "aud": [
            "dc-wpuTQT2kfvcLiy7y2u8eCs"
        ],
        "auth_time": 1537549701,
        "c_hash": "WA5OOymvA4EQW0PQpC49XA",
        "exp": 1537550574,
        "iat": 1537550274,
        "iss": "https://oidc-conformance.ping-eng.com:9031",
        "jti": "YipEffuDCOqDZp1hITH9uD",
        "nonce": "Qf1CTzRyO7rTGImC",
        "pi.sri": "KfrqBcAk1ZnEk1sxxNj7BQw2inc",
        "s_hash": "lC6pTP8ORqEraGqfCGbzkQ",
        "sub": "joe"
    },
    "state": "MBpZ4ttJMggnBFgZ"
}
3.043phase<--<-- 4 --- AccessToken -->-->
3.043requestop_args: {'state': 'MBpZ4ttJMggnBFgZ', 'authn_method': 'client_secret_basic'}, req_args: {'redirect_uri': 'https://op.certification.openid.net:61401/authz_cb'}
3.043do_access_token_request
kwargs:{'request_args': {'redirect_uri': 'https://op.certification.openid.net:61401/authz_cb', 'code': 'sLAGeduax9KCT4hByd12TqHuaiNNAtqXJ7J2FKkU', 'state': 'MBpZ4ttJMggnBFgZ', 'grant_type': 'authorization_code', 'client_id': 'dc-wpuTQT2kfvcLiy7y2u8eCs'}, 'state': 'MBpZ4ttJMggnBFgZ', 'authn_method': 'client_secret_basic'}
3.043AccessTokenRequest
{
    "code": "sLAGeduax9KCT4hByd12TqHuaiNNAtqXJ7J2FKkU",
    "grant_type": "authorization_code",
    "redirect_uri": "https://op.certification.openid.net:61401/authz_cb",
    "state": "MBpZ4ttJMggnBFgZ"
}
3.043request_urlhttps://oidc-conformance.ping-eng.com:9031/as/token.oauth2
3.043request_http_args{'headers': {'Authorization': 'Basic ZGMtd3B1VFFUMmtmdmNMaXk3eTJ1OGVDczpVdE12QmRVRkZZeWhCd3BDdkxCYUQ5', 'Content-Type': 'application/x-www-form-urlencoded'}}
3.043requestgrant_type=authorization_code&redirect_uri=https%3A%2F%2Fop.certification.openid.net%3A61401%2Fauthz_cb&code=sLAGeduax9KCT4hByd12TqHuaiNNAtqXJ7J2FKkU&state=MBpZ4ttJMggnBFgZ
3.463http response
url:https://oidc-conformance.ping-eng.com:9031/as/token.oauth2 status_code:200
3.464response{'access_token': 'eyJhbGciOiJSUzI1NiIsImtpZCI6ImsxIn0.eyJzY29wZSI6WyJvcGVuaWQiXSwiY2xpZW50X2lkX25hbWUiOiJkYy13cHVUUVQya2Z2Y0xpeTd5MnU4ZUNzIiwiVXNlcm5hbWUiOiJqb2UiLCJPcmdOYW1lIjoiUGluZyBJZGVudGl0eSBDb3Jwb3JhdGlvbiIsImV4cCI6MTUzNzU1NzQ3NX0.Qm1wS4XIXYSXzvpmiyoVvh9WnbDm6rm_4Jr1Ru2xdL6JHyhgc89y9k_nUJ2y5NjcDb_UJns8lTWy-lQLQlRiiq5qw_DFMpVwJoB1IlH5yKgWqouI6pDnqukEGUw72ycm4Li5BGKdENmHosFn1WOqohKjsD74V5si99PPFVxbkOGL78_dMAvVIGkYl1gEt2Vx2O6fTthsB5OL4kyp8Ns-ExL3jXPr4DvtiaPgRyZczs1uqQWw2-k6NV0UMUpWmEfjzDNBCd1kW3_PWGELEBI8N3RZv3S17KrHXF__HdA2ovEzQXKS1NRcciYgCe-Gx9l1ZCWMYWEgKn1PFBhVen1EYg', 'id_token': 'eyJhbGciOiJSUzI1NiIsImtpZCI6InExa19WZW9TcXRKX0Y1Y2ZlRXRRRkJHcW1LOCJ9.eyJzdWIiOiJqb2UiLCJhdWQiOiJkYy13cHVUUVQya2Z2Y0xpeTd5MnU4ZUNzIiwianRpIjoiWWlwRWZmdURDT3FEWnAxaElUSDl1RCIsImlzcyI6Imh0dHBzOi8vb2lkYy1jb25mb3JtYW5jZS5waW5nLWVuZy5jb206OTAzMSIsImlhdCI6MTUzNzU1MDI3NCwiZXhwIjoxNTM3NTUwNTc0LCJwaS5zcmkiOiJLZnJxQmNBazFabkVrMXN4eE5qN0JRdzJpbmMiLCJub25jZSI6IlFmMUNUelJ5TzdyVEdJbUMiLCJhdXRoX3RpbWUiOjE1Mzc1NDk3MDEsImNfaGFzaCI6IldBNU9PeW12QTRFUVcwUFFwQzQ5WEEiLCJzX2hhc2giOiJsQzZwVFA4T1JxRXJhR3FmQ0diemtRIn0.CDCMz0x0GbIk6JtiNNPwHzkzDsVNhCtY_1o_foQgblQJDD71F10gJl9c7EXN_e-7tEOrI0buY1Qg2o8klE0O7XXr5YhS21AJxBh9Dgrgr4eOFQ292WuS3p4QCM8uS1vHeB_kjMdJ4g678_bkGTRnqb2VO-j_LUWI74x-zC69JimAwSdCqoJ_V83fhpbl9DcJ_h956Em_hlvTFcGLGHEzpLmqPRec4I63rEl2kS6srXzoBIdH_3Ya5IuNno9-uuUFzESdLJjZiLEeAJ5NBhe6NUocEpJb6UPB9lW9z-mwyddexF1zuB610WeN3tHs6DSqVGb9vMMXgNK9pPhiFmWvPg', 'token_type': 'Bearer', 'expires_in': 7199}
3.466AccessTokenResponse
{
    "access_token": "eyJhbGciOiJSUzI1NiIsImtpZCI6ImsxIn0.eyJzY29wZSI6WyJvcGVuaWQiXSwiY2xpZW50X2lkX25hbWUiOiJkYy13cHVUUVQya2Z2Y0xpeTd5MnU4ZUNzIiwiVXNlcm5hbWUiOiJqb2UiLCJPcmdOYW1lIjoiUGluZyBJZGVudGl0eSBDb3Jwb3JhdGlvbiIsImV4cCI6MTUzNzU1NzQ3NX0.Qm1wS4XIXYSXzvpmiyoVvh9WnbDm6rm_4Jr1Ru2xdL6JHyhgc89y9k_nUJ2y5NjcDb_UJns8lTWy-lQLQlRiiq5qw_DFMpVwJoB1IlH5yKgWqouI6pDnqukEGUw72ycm4Li5BGKdENmHosFn1WOqohKjsD74V5si99PPFVxbkOGL78_dMAvVIGkYl1gEt2Vx2O6fTthsB5OL4kyp8Ns-ExL3jXPr4DvtiaPgRyZczs1uqQWw2-k6NV0UMUpWmEfjzDNBCd1kW3_PWGELEBI8N3RZv3S17KrHXF__HdA2ovEzQXKS1NRcciYgCe-Gx9l1ZCWMYWEgKn1PFBhVen1EYg",
    "expires_in": 7199,
    "id_token": {
        "aud": [
            "dc-wpuTQT2kfvcLiy7y2u8eCs"
        ],
        "auth_time": 1537549701,
        "c_hash": "WA5OOymvA4EQW0PQpC49XA",
        "exp": 1537550574,
        "iat": 1537550274,
        "iss": "https://oidc-conformance.ping-eng.com:9031",
        "jti": "YipEffuDCOqDZp1hITH9uD",
        "nonce": "Qf1CTzRyO7rTGImC",
        "pi.sri": "KfrqBcAk1ZnEk1sxxNj7BQw2inc",
        "s_hash": "lC6pTP8ORqEraGqfCGbzkQ",
        "sub": "joe"
    },
    "token_type": "Bearer"
}
3.466phase<--<-- 5 --- Done -->-->
3.466end
3.467assertionVerifyResponse
3.467conditionverify-response: status=OK [Checks that the last response was one of a possible set of OpenID Connect Responses]
3.467conditionDone: status=OK

Result

PASSED