Test Info

Issuerhttps://isamfed.com:30443/test
Profile[]
Test IDOP-Req-max_age=10000
Test descriptionRequesting ID Token with max_age=10000 seconds restriction
Timestamp2019-06-17T15:21:05Z

Conditions


claims-check: status=OK [Checks if specific claims is present or not]
Done: status=OK

Trace Output

0phase<--<-- 0 --- Webfinger -->-->
0not expected to doWebFinger
0phase<--<-- 1 --- Discovery -->-->
0provider_config
kwargs:{'issuer': 'https://isamfed.com:30443/test'}
0http response
url:https://isamfed.com:30443/test/.well-known/openid-configuration status_code:200
0ProviderConfigurationResponse
{
    "authorization_endpoint": "https://isamfed.com:30443/mga/sps/oauth/oauth20/authorize",
    "claims_parameter_supported": false,
    "claims_supported": [
        "realmName",
        "preferred_username",
        "given_name",
        "uid",
        "upn",
        "groupIds",
        "employee_id",
        "name",
        "tenantId",
        "mobile_number",
        "department",
        "job_title",
        "family_name",
        "email"
    ],
    "device_authorize_endpoint": "https://isamfed.com:30443/mga/sps/oauth/oauth20/device_authorize",
    "grant_types_supported": [
        "urn:ietf:params:oauth:grant-type:jwt-bearer",
        "implicit",
        "urn:ietf:params:oauth:grant-type:saml2-bearer",
        "urn:ietf:params:oauth:grant-type:device_code",
        "client_credentials",
        "password",
        "authorization_code",
        "refresh_token"
    ],
    "id_token_encryption_alg_values_supported": [
        "RSA-OAEP-256"
    ],
    "id_token_encryption_enc_values_supported": [
        "A128CBC-HS256"
    ],
    "id_token_signing_alg_values_supported": [
        "RS256"
    ],
    "introspect_endpoint": "https://isamfed.com:30443/mga/sps/oauth/oauth20/introspect",
    "issuer": "https://isamfed.com:30443/test",
    "jwks_uri": "https://isamfed.com:30443/mga/sps/jwks",
    "name": "OIDCDefinition",
    "poc": "https://isamfed.com:30443/mga/",
    "registration_endpoint": "https://isamfed.com:30443/mga/sps/oauth/oauth20/register/OIDCDefinition",
    "request_parameter_supported": true,
    "request_uri_parameter_supported": true,
    "require_request_uri_registration": false,
    "response_modes_supported": [
        "fragment",
        "form_post"
    ],
    "response_types_supported": [
        "token",
        "id_token",
        "token id_token",
        "code",
        "code id_token",
        "code token id_token",
        "code token",
        "none"
    ],
    "revocation_endpoint": "https://isamfed.com:30443/mga/sps/oauth/oauth20/revoke",
    "subject_types_supported": [
        "public"
    ],
    "token_endpoint": "https://isamfed.com:30443/mga/sps/oauth/oauth20/token",
    "token_endpoint_auth_methods_supported": [
        "private_key_jwt",
        "client_secret_post",
        "client_secret_basic"
    ],
    "user_authorize_endpoint": "https://isamfed.com:30443/mga/sps/oauth/oauth20/user_authorize",
    "userinfo_endpoint": "https://isamfed.com:30443/mga/sps/oauth/oauth20/userinfo",
    "userinfo_signing_alg_values_supported": [
        "RS256"
    ],
    "version": "3.0"
}
0phase<--<-- 2 --- Registration -->-->
0register
kwargs:{'response_types': ['code id_token'], 'grant_types': ['authorization_code', 'implicit'], 'application_name': 'OIC test tool', 'application_type': 'web', 'redirect_uris': ['https://op.certification.openid.net:61716/authz_cb'], 'contacts': ['roland@example.com'], 'post_logout_redirect_uris': ['https://op.certification.openid.net:61716/logout'], 'url': 'https://isamfed.com:30443/mga/sps/oauth/oauth20/register/OIDCDefinition', 'jwks_uri': 'https://op.certification.openid.net:61716/static/jwks_61716.json', 'token_endpoint_auth_method': 'private_key_jwt'}
0RegistrationRequest
{
    "application_type": "web",
    "contacts": [
        "roland@example.com"
    ],
    "grant_types": [
        "implicit",
        "authorization_code"
    ],
    "jwks_uri": "https://op.certification.openid.net:61716/static/jwks_61716.json",
    "post_logout_redirect_uris": [
        "https://op.certification.openid.net:61716/logout"
    ],
    "redirect_uris": [
        "https://op.certification.openid.net:61716/authz_cb"
    ],
    "response_types": [
        "code id_token"
    ],
    "token_endpoint_auth_method": "private_key_jwt"
}
0http response
url:https://isamfed.com:30443/mga/sps/oauth/oauth20/register/OIDCDefinition status_code:200
0RegistrationResponse
{
    "application_type": "web",
    "client_id": "5sImkTO57VutXYUMSReh",
    "client_id_issued_at": 1560784860,
    "client_secret": "PCJENbuU0zzq3aBf5Idv",
    "client_secret_expires_at": 0,
    "contacts": [
        "roland@example.com"
    ],
    "grant_types": [
        "implicit",
        "authorization_code"
    ],
    "jwks_uri": "https://op.certification.openid.net:61716/static/jwks_61716.json",
    "post_logout_redirect_uris": [
        "https://op.certification.openid.net:61716/logout"
    ],
    "redirect_uris": [
        "https://op.certification.openid.net:61716/authz_cb"
    ],
    "registration_access_token": "ikuj5yfEMuxMi7WCyxPB",
    "registration_client_uri": "https://isamfed.com:30443/mga/sps/oauth/oauth20/register/OIDCDefinition?client_id=5sImkTO57VutXYUMSReh",
    "response_types": [
        "code",
        "id_token"
    ],
    "token_endpoint_auth_method": "private_key_jwt"
}
0phase<--<-- 3 --- AsyncAuthn -->-->
0AuthorizationRequest
{
    "client_id": "5sImkTO57VutXYUMSReh",
    "nonce": "IkDzZrR7yny3C9Hq",
    "redirect_uri": "https://op.certification.openid.net:61716/authz_cb",
    "response_type": "code id_token",
    "scope": "openid",
    "state": "iPHDsU7VqsA07shi"
}
0redirect urlhttps://isamfed.com:30443/mga/sps/oauth/oauth20/authorize?state=iPHDsU7VqsA07shi&nonce=IkDzZrR7yny3C9Hq&response_type=code+id_token&scope=openid&redirect_uri=https%3A%2F%2Fop.certification.openid.net%3A61716%2Fauthz_cb&client_id=5sImkTO57VutXYUMSReh
0redirecthttps://isamfed.com:30443/mga/sps/oauth/oauth20/authorize?state=iPHDsU7VqsA07shi&nonce=IkDzZrR7yny3C9Hq&response_type=code+id_token&scope=openid&redirect_uri=https%3A%2F%2Fop.certification.openid.net%3A61716%2Fauthz_cb&client_id=5sImkTO57VutXYUMSReh
1http args{}
2responseURL with fragment
2responseid_token=eyJhbGciOiJSU0EtT0FFUC0yNTYiLCJlbmMiOiJBMTI4Q0JDLUhTMjU2Iiwia2lkIjoiZ3RINHYzWXIyUXFMcmVCU3owQnlRUTh2a2Y4ZUZvMUtJaXQzcy0zQmJ3dyIsImN0eSI6IkpXVCJ9.ASYRUc3ZJHcPirQfm6ZEhlIPedeov2RY8QQY6bnj5Ub_Z6NaHtoJVVBnDDxCqjLm-8pReb7rjP2vLZhfH8mDRP5TamOk5yzOeCm-pUyYgZynthObOBvzL6b2Ah7LhHJqgO6ZxQsbhcDb2UxIqwvV6Y3ifSh-hbsP0V2tqN1etprBIqtwpN3e6CeGNrs_5-yYd5t3LsCICkYtpJW2UqZSOvHSrjcX__q6ntQr5m5vcuBMGngUXubvacaVF6CbQi5dBKUANvLYBWMlhfwpCp4NF-uGb3kwnudBaDuqFFsH1fkv9d7AFTcQh1YZEAE2yQb3381ChAsTFgrMoDACaMiTGQ.oIqXd3hPQV6YDqHSvzAAvg.YZX31M0M5gRv-1sFLkek8l9QrGU0QQdSXv-M1hjN6yY41uhghkh5e4W6tyncPubuQEE6vcSDEpKgwY7ufJTxhsgpxd6WhNSy-sIPZsU3nlptUxFRr9g5Th4IbaCf79PgVZ8Ys3bOI3_qtVO4Rm2Xi1ur8Q56dB6KGsq0mT4UrkF8CshNOQhJAtOicCePVeRLgQy42VE7gK_PZVppmF2cuiz3HKZYd712_mlF2CGfCycyTwSV2o1nAyzbg6HDAKote9bLmhw6cwSWWT7jry-Oi35UgxJm37yCb24-50M1mgSBPV8n7NXzVJOs3RpR96gWkNDQyXajDVRdTPY-C06-JavDi656o9owH8MOI3OZ4234P1HjPG2fxylZXGhTidZaZZGRsaQYGtOu7KVfB_y7Qquh6XqLS4PDzybe-jDLgYwLSuarl-ivvoTPdC_fQ6rqmDl4EtZ_LgkllN84rlDUSTIGjTnSGyt4Yf4fl2mToHFUDu4vUqy1xNY7-yxIrTCbP8d6WkBCwEZPHP8CN1mdv5YbbNB5VbFrzsc3XVbzUefslAE1j4OI78cpLeh2KIT8ATiHj6W0ef4gd_m7HnI_E3YNDJ6E3ni8grSOOPtjqTtnGwBeGUsNXkCOPDd0u6giy8Zm55cSlPfgJ3qcFUNFOnl_TpliRwZrv-BwZvMaHUL73McNelnyycpjux9RCggLxqpUd_qyNVxJOimRGldVKLVmUjxsNF5mW01jtkkluddrf4pV_D6hpF-e9AkDiqWObNth9BUFIkim9Lrsuq0iYfepd6Cw2GCtflTttvToTxAt1xZ9AUDFLwSGkR3JJGC44xZQGQQ8FlyzsGoKrw4FUyFWlYiA_xzqsTJHbDKFBvxoTL-7fkyF_D42OYZ1tGZf8j0RoLsKxwDb9mpn1b5sCQ.Z1na7m0NmSyMPBc3VfvyeA&state=iPHDsU7VqsA07shi&code=aFxCHHaT3FjNkSuNC9QKdtoEum6NNe
2response{'id_token': 'eyJhbGciOiJSU0EtT0FFUC0yNTYiLCJlbmMiOiJBMTI4Q0JDLUhTMjU2Iiwia2lkIjoiZ3RINHYzWXIyUXFMcmVCU3owQnlRUTh2a2Y4ZUZvMUtJaXQzcy0zQmJ3dyIsImN0eSI6IkpXVCJ9.ASYRUc3ZJHcPirQfm6ZEhlIPedeov2RY8QQY6bnj5Ub_Z6NaHtoJVVBnDDxCqjLm-8pReb7rjP2vLZhfH8mDRP5TamOk5yzOeCm-pUyYgZynthObOBvzL6b2Ah7LhHJqgO6ZxQsbhcDb2UxIqwvV6Y3ifSh-hbsP0V2tqN1etprBIqtwpN3e6CeGNrs_5-yYd5t3LsCICkYtpJW2UqZSOvHSrjcX__q6ntQr5m5vcuBMGngUXubvacaVF6CbQi5dBKUANvLYBWMlhfwpCp4NF-uGb3kwnudBaDuqFFsH1fkv9d7AFTcQh1YZEAE2yQb3381ChAsTFgrMoDACaMiTGQ.oIqXd3hPQV6YDqHSvzAAvg.YZX31M0M5gRv-1sFLkek8l9QrGU0QQdSXv-M1hjN6yY41uhghkh5e4W6tyncPubuQEE6vcSDEpKgwY7ufJTxhsgpxd6WhNSy-sIPZsU3nlptUxFRr9g5Th4IbaCf79PgVZ8Ys3bOI3_qtVO4Rm2Xi1ur8Q56dB6KGsq0mT4UrkF8CshNOQhJAtOicCePVeRLgQy42VE7gK_PZVppmF2cuiz3HKZYd712_mlF2CGfCycyTwSV2o1nAyzbg6HDAKote9bLmhw6cwSWWT7jry-Oi35UgxJm37yCb24-50M1mgSBPV8n7NXzVJOs3RpR96gWkNDQyXajDVRdTPY-C06-JavDi656o9owH8MOI3OZ4234P1HjPG2fxylZXGhTidZaZZGRsaQYGtOu7KVfB_y7Qquh6XqLS4PDzybe-jDLgYwLSuarl-ivvoTPdC_fQ6rqmDl4EtZ_LgkllN84rlDUSTIGjTnSGyt4Yf4fl2mToHFUDu4vUqy1xNY7-yxIrTCbP8d6WkBCwEZPHP8CN1mdv5YbbNB5VbFrzsc3XVbzUefslAE1j4OI78cpLeh2KIT8ATiHj6W0ef4gd_m7HnI_E3YNDJ6E3ni8grSOOPtjqTtnGwBeGUsNXkCOPDd0u6giy8Zm55cSlPfgJ3qcFUNFOnl_TpliRwZrv-BwZvMaHUL73McNelnyycpjux9RCggLxqpUd_qyNVxJOimRGldVKLVmUjxsNF5mW01jtkkluddrf4pV_D6hpF-e9AkDiqWObNth9BUFIkim9Lrsuq0iYfepd6Cw2GCtflTttvToTxAt1xZ9AUDFLwSGkR3JJGC44xZQGQQ8FlyzsGoKrw4FUyFWlYiA_xzqsTJHbDKFBvxoTL-7fkyF_D42OYZ1tGZf8j0RoLsKxwDb9mpn1b5sCQ.Z1na7m0NmSyMPBc3VfvyeA', 'state': 'iPHDsU7VqsA07shi', 'code': 'aFxCHHaT3FjNkSuNC9QKdtoEum6NNe'}
2AuthorizationResponse
{
    "code": "aFxCHHaT3FjNkSuNC9QKdtoEum6NNe",
    "id_token": {
        "aud": [
            "5sImkTO57VutXYUMSReh"
        ],
        "c_hash": "x8mZBiNfieooIS8utHrJ0g",
        "exp": 1560788281,
        "iat": 1560784861,
        "iss": "https://isamfed.com:30443/test",
        "nonce": "IkDzZrR7yny3C9Hq",
        "sub": "testuser"
    },
    "state": "iPHDsU7VqsA07shi"
}
2phase<--<-- 4 --- AccessToken -->-->
2requestop_args: {'state': 'iPHDsU7VqsA07shi'}, req_args: {'redirect_uri': 'https://op.certification.openid.net:61716/authz_cb'}
2do_access_token_request
kwargs:{'request_args': {'redirect_uri': 'https://op.certification.openid.net:61716/authz_cb', 'code': 'aFxCHHaT3FjNkSuNC9QKdtoEum6NNe', 'state': 'iPHDsU7VqsA07shi', 'grant_type': 'authorization_code', 'client_id': '5sImkTO57VutXYUMSReh'}, 'state': 'iPHDsU7VqsA07shi', 'authn_method': 'private_key_jwt'}
2AccessTokenRequest
{
    "client_assertion": "eyJhbGciOiJSUzI1NiIsImtpZCI6Ind0MjVPZ3lSX256RzNPb1E3ZGFhMnJMNi1nTW5GZGZSekJqaFVWUHU4UlEifQ.eyJpc3MiOiAiNXNJbWtUTzU3VnV0WFlVTVNSZWgiLCAic3ViIjogIjVzSW1rVE81N1Z1dFhZVU1TUmVoIiwgImF1ZCI6IFsiaHR0cHM6Ly9pc2FtZmVkLmNvbTozMDQ0My9tZ2Evc3BzL29hdXRoL29hdXRoMjAvdG9rZW4iXSwgImp0aSI6ICJmN3duTzJ6VDlWNWtkVm9jWVZ5c2hZcTZuYmxVaDBKMyIsICJleHAiOiAxNTYwNzg1NDYyLCAiaWF0IjogMTU2MDc4NDg2Mn0.kttB0MHa3Tk_MEdSIGQN7vOKBraT5IJ3KGMqzF7MU4ot_mO-eUKMUn9ESvsejF6f4Co_XFEuma6ddQYLrPOaS-wsCww_AjKDqGW7Csn2UK4jxzbf7ZjA_kirpE9KBdgeMI7Jk8ngraF_bYaIWM7YYUkkeqgpUKPAOYqGbttisR9hJ8ONibw4o8QdSdbwTqZ08f3QhttrcBXpOOH2dyO0WX412f8dSQcQWqN_mvgHS0n0GDUeKJ36xXJcThobADKXbeaGaumLSSowHmLLOXELkanMM-ZqKkWQQzIyRSZVTQ-9UxD4hBxztgZCkRuS16mpt4nzRFCxzI7yBuuFYVXDkA",
    "client_assertion_type": "urn:ietf:params:oauth:client-assertion-type:jwt-bearer",
    "code": "aFxCHHaT3FjNkSuNC9QKdtoEum6NNe",
    "grant_type": "authorization_code",
    "redirect_uri": "https://op.certification.openid.net:61716/authz_cb",
    "state": "iPHDsU7VqsA07shi"
}
2request_urlhttps://isamfed.com:30443/mga/sps/oauth/oauth20/token
2request_http_args{'headers': {'Content-Type': 'application/x-www-form-urlencoded'}}
2requestgrant_type=authorization_code&redirect_uri=https%3A%2F%2Fop.certification.openid.net%3A61716%2Fauthz_cb&code=aFxCHHaT3FjNkSuNC9QKdtoEum6NNe&state=iPHDsU7VqsA07shi&client_assertion=eyJhbGciOiJSUzI1NiIsImtpZCI6Ind0MjVPZ3lSX256RzNPb1E3ZGFhMnJMNi1nTW5GZGZSekJqaFVWUHU4UlEifQ.eyJpc3MiOiAiNXNJbWtUTzU3VnV0WFlVTVNSZWgiLCAic3ViIjogIjVzSW1rVE81N1Z1dFhZVU1TUmVoIiwgImF1ZCI6IFsiaHR0cHM6Ly9pc2FtZmVkLmNvbTozMDQ0My9tZ2Evc3BzL29hdXRoL29hdXRoMjAvdG9rZW4iXSwgImp0aSI6ICJmN3duTzJ6VDlWNWtkVm9jWVZ5c2hZcTZuYmxVaDBKMyIsICJleHAiOiAxNTYwNzg1NDYyLCAiaWF0IjogMTU2MDc4NDg2Mn0.kttB0MHa3Tk_MEdSIGQN7vOKBraT5IJ3KGMqzF7MU4ot_mO-eUKMUn9ESvsejF6f4Co_XFEuma6ddQYLrPOaS-wsCww_AjKDqGW7Csn2UK4jxzbf7ZjA_kirpE9KBdgeMI7Jk8ngraF_bYaIWM7YYUkkeqgpUKPAOYqGbttisR9hJ8ONibw4o8QdSdbwTqZ08f3QhttrcBXpOOH2dyO0WX412f8dSQcQWqN_mvgHS0n0GDUeKJ36xXJcThobADKXbeaGaumLSSowHmLLOXELkanMM-ZqKkWQQzIyRSZVTQ-9UxD4hBxztgZCkRuS16mpt4nzRFCxzI7yBuuFYVXDkA&client_assertion_type=urn%3Aietf%3Aparams%3Aoauth%3Aclient-assertion-type%3Ajwt-bearer
2http response
url:https://isamfed.com:30443/mga/sps/oauth/oauth20/token status_code:200
2response{'access_token': 'Bhm9xBRQGpi05zX4beX0', 'refresh_token': 'bKaS2yYhbnjYllNCGhFhN5b0vz0xDvRJCAMru1x4', 'scope': 'openid', 'id_token': 'eyJhbGciOiJSU0EtT0FFUC0yNTYiLCJlbmMiOiJBMTI4Q0JDLUhTMjU2Iiwia2lkIjoiZ3RINHYzWXIyUXFMcmVCU3owQnlRUTh2a2Y4ZUZvMUtJaXQzcy0zQmJ3dyIsImN0eSI6IkpXVCJ9.H5aAbdiqCAbuL4c8WMsdYrYr-LQG85Rla6zCVxICMzCQEQhxJqWm1nQTwJbh887N-6qLSjj0kLg9BFkOmIMQtTDK2Kz7Ez-NM58-MsZr1i6OMzTjVGjHU_kYs1Pm3QehYdHgqdBDXwAiZmZtwtnk9ZwjXT3Eas6H16X4tYx9FrXRdjJJYdlc-glUPBfJRmsW_QFB02TpzHLY9NMJqA1Ruv5UE3EVv7EBCxjpm6Dtf2TGprcfLc90Ie42P8s7JTUPKZ5GMBmgXAEqbaTneTSYHsV-34Zbh-j7elzKRxrrN8rpnnyVDNiIrmWNB3ZBLfYFpVzdchjdwf0NiKW-u3u_JA.e1riIJOnFoAWfSgTe2lmPg.2n8POfXAuhoN7dOKdcxTo2E-BroV30C2HcP5-JcU6gA_rs4cmhLe7cBaser8QZ36NapO2WxRXfwY-Ax4EvR7OQiqwTTb_izwhVjRHwmQVVQTEDnee4ChyHukqJEIU65U_Vl2wKG-9YGwT6umZlxLRZPaOlHMgUhUH9rD4lN5h_kzTNGWivS-BQ50_3E9d0G2QRAZDGs3OJ0__lKEhs0jFW8RdjSbJcm8Ob-M6px3bCyj3ZbRGRFd9UBRtarWi5ILWWowm4nhUw0R9MbxTxOUJv2Q7vQFvgVVveEPnieX28FE0VIbIM9KbeKIU9XV7kYoZgl4OerFqLLnBmaENKmFWf21gjxzTyquyUbn09Gn1uK_NyYzWjVeUKJVAhq1x6ZYgteMlKeB89O9hD-VQAdY-97hlj9VO9HrnQPe9k8QLkN4jIVYO63xd7E9jlZRy1zLGAU6xwMDTr4SCJ4JuCijteVcDkRLlE2eBK_y3NeQ294Gpl9fsgJv7rG1mDG2_qUaJGida0wnZsmTcxdOO6eqYfOKvcjXrxieU0XQIXGwcBS-2QdtzSVMDleOOkunRo4_gd3vOnYigwCCnDrJdSwiPPjOPTJqKeupKhJNCeG2DZ1DZynHZfhN9XhUmqwiA77_OYZDG5EMZ3EBt-bnuoyuPkkkLhDnvMXYzrONI1HEQm7jiLu8vjXYvdOShpVCYaP390P-ikNIiY2oQO0oVF8sfr1hNQII6DCw9VcKCcFXsZELaWs5QHEnqHHJa_Xr6F99tGQgNE9OdJqOklt5MEzU6yveKiuTVrjQoFOCsVjPUSrylGhUs5rWz25-vTKOL19XviTtriBYNXMbjlbnjp84nOmo1ShpHovTARcChwyiEDRhV-oSHHQO2HQQElibTJbewJJtHt_P9WlLdV_CKTww1cl4S3ll1epjFvuaQy_UGsPSZCFu94nCfPbD9hDivZSd5E_MveeDYuh6KQuN0D9cag.H1dyPmBOD3oCEQ2S56Nyxg', 'token_type': 'bearer', 'expires_in': 3599}
2AccessTokenResponse
{
    "access_token": "Bhm9xBRQGpi05zX4beX0",
    "expires_in": 3599,
    "id_token": {
        "at_hash": "iy4yhHUwH5ERdOW7TPFddw",
        "aud": [
            "5sImkTO57VutXYUMSReh"
        ],
        "exp": 1560788282,
        "iat": 1560784862,
        "iss": "https://isamfed.com:30443/test",
        "nonce": "IkDzZrR7yny3C9Hq",
        "rt_hash": "7EJ3GO3AtVqFB5kjkcJTng",
        "sub": "testuser"
    },
    "refresh_token": "bKaS2yYhbnjYllNCGhFhN5b0vz0xDvRJCAMru1x4",
    "scope": "openid",
    "token_type": "bearer"
}
2jws header{'kid': '_uhPdeGrTWxobFeH0XbzjJpRrzp3CB9nknx1yFV1G-0', 'alg': 'RS256'}
2jwe header{'alg': 'RSA-OAEP-256', 'enc': 'A128CBC-HS256', 'kid': 'gtH4v3Yr2QqLreBSz0ByQQ8vkf8eFo1KIit3s-3Bbww', 'cty': 'JWT'}
2phase<--<-- 5 --- AsyncAuthn -->-->
2AuthorizationRequest
{
    "client_id": "5sImkTO57VutXYUMSReh",
    "max_age": 10000,
    "nonce": "RsIeTRYE8Ns5Ucsf",
    "redirect_uri": "https://op.certification.openid.net:61716/authz_cb",
    "response_type": "code id_token",
    "scope": "openid",
    "state": "zkV0N2RAsvogoTpG"
}
2redirect urlhttps://isamfed.com:30443/mga/sps/oauth/oauth20/authorize?state=zkV0N2RAsvogoTpG&nonce=RsIeTRYE8Ns5Ucsf&response_type=code+id_token&scope=openid&redirect_uri=https%3A%2F%2Fop.certification.openid.net%3A61716%2Fauthz_cb&max_age=10000&client_id=5sImkTO57VutXYUMSReh
2redirecthttps://isamfed.com:30443/mga/sps/oauth/oauth20/authorize?state=zkV0N2RAsvogoTpG&nonce=RsIeTRYE8Ns5Ucsf&response_type=code+id_token&scope=openid&redirect_uri=https%3A%2F%2Fop.certification.openid.net%3A61716%2Fauthz_cb&max_age=10000&client_id=5sImkTO57VutXYUMSReh
3http args{}
4responseURL with fragment
4responsestate=zkV0N2RAsvogoTpG&code=DHtCqApSDRji4wTic2cBKZIjn78VQj&id_token=eyJhbGciOiJSU0EtT0FFUC0yNTYiLCJlbmMiOiJBMTI4Q0JDLUhTMjU2Iiwia2lkIjoiZ3RINHYzWXIyUXFMcmVCU3owQnlRUTh2a2Y4ZUZvMUtJaXQzcy0zQmJ3dyIsImN0eSI6IkpXVCJ9.DUXLXW7La8rkLV9VpzCP2iNIASCOOnQG-5hYdvr26iui90tXVcA8Kh0IuLNA2BCQAjveoMj2nMZPb6FBZBfOVhnv9PKV_GE_UYQmjls1aV2_IPR_-ygIPYuhKODU92jrfc6anflCA2i3LSKK5DOJ_fU9AipAyazyft8eKrVvaOtEo61C3Z94Sga4dcT_6uR6P05vxpPhaHpVMOSUaZKURzaulJJc6IJObKr3gXrktedecKBJBgXMNSSFFdlpVJcF0FsZXxVukmHGm4Lhgl6mDW0wHrWQ97W6Urs04KL-T6eRR0i6yvfkRV3DjRDegTen8XW_ILMxI7AaM9YhhJ0yHQ.6LQa_v-5KbNe0sfph3EliQ.wCmtuDY2z43IOVz6rC5ph3uCqU7rr4JqPN6_A0AVWBo7IMjNdtML5EqxrSmHBLFQKX4q9xhrNeoKOshtY2r201JGlxr3lBeFU0YOVjN60vErIOCy2NaKvjomJF1TXJ6kgthVIusm3YYc0aFL7VmBPo6rnjPPDlwcHs9dd9JX1SSyWgTa2c9Kewv3pBTZi9bQNoM6myWQgHKlLfjs6OBnmpE6sgbalA42-m8ErbL_HnSbdG_OrOMf3P0t4wqBBQmMgMhkoYFF-GH5ZP3Qr9HiVKNcFeCK3t2IuVkPp5_6iMv80qDTsNQgZ5AxGVL2ZMCT6JvYpd7cryqmXrIVsqCYTEmrgaUPtaxzE08ZCqg4lx9cqyRAwJwm4bMQ3kq2XJw16cVSlbTc3SFWCU0KfnMsn2g2AU7GWUkeLZIlkvl93AIybOkcYXWUYZKKHhX6caFXlZJido266sLWfN_Jyb6QVSKnQvin9Kbb1lglOTRNxZx7j0drCPFy3T67-M_wHLy_ioUDKFDxqD6ds_rtBrh-NJ6e4b0jnlUgUHw30Wr1UlZiEIJRNMarqy9MnmizIeZsLGpSUSpszAZNkbPKYD9aLtU3Gi0EoTB5_X9VA1tzYTNn6SzXyfkGporor9AzAuwAiP3qz4CuDHTlHEoeiX7m5fcqbbSsscauiL3briWXycSYbhCTs6fF5uGmRz5FzNR7GaBu4Y2GL_RcAuHN5Wh1jJ4ZzfvagJPTIV1HJneP-Ri3TKBlB6etrQ5ZpTIMHBMGKZFSZL7Wp3fG7rLbrBzATciqNb6d6DjfMz0RyzbAZHyYDITKcSXycAXBSKbqeQfPN87hZwyNYOhL16IdXpeu7PR3_hpMOpSfYJ3Sk2Zf1CrQoFkVv04qcaVRf36FI9zvtdMPUmHk1UNr2tlRfXpdORMpZ4uVmREUJmz9PJIHbV4Y_zNyi6OjHh1exdLRQDw9.BXQMa3FtBUjDe8W6pW4jwA
4response{'state': 'zkV0N2RAsvogoTpG', 'code': 'DHtCqApSDRji4wTic2cBKZIjn78VQj', 'id_token': 'eyJhbGciOiJSU0EtT0FFUC0yNTYiLCJlbmMiOiJBMTI4Q0JDLUhTMjU2Iiwia2lkIjoiZ3RINHYzWXIyUXFMcmVCU3owQnlRUTh2a2Y4ZUZvMUtJaXQzcy0zQmJ3dyIsImN0eSI6IkpXVCJ9.DUXLXW7La8rkLV9VpzCP2iNIASCOOnQG-5hYdvr26iui90tXVcA8Kh0IuLNA2BCQAjveoMj2nMZPb6FBZBfOVhnv9PKV_GE_UYQmjls1aV2_IPR_-ygIPYuhKODU92jrfc6anflCA2i3LSKK5DOJ_fU9AipAyazyft8eKrVvaOtEo61C3Z94Sga4dcT_6uR6P05vxpPhaHpVMOSUaZKURzaulJJc6IJObKr3gXrktedecKBJBgXMNSSFFdlpVJcF0FsZXxVukmHGm4Lhgl6mDW0wHrWQ97W6Urs04KL-T6eRR0i6yvfkRV3DjRDegTen8XW_ILMxI7AaM9YhhJ0yHQ.6LQa_v-5KbNe0sfph3EliQ.wCmtuDY2z43IOVz6rC5ph3uCqU7rr4JqPN6_A0AVWBo7IMjNdtML5EqxrSmHBLFQKX4q9xhrNeoKOshtY2r201JGlxr3lBeFU0YOVjN60vErIOCy2NaKvjomJF1TXJ6kgthVIusm3YYc0aFL7VmBPo6rnjPPDlwcHs9dd9JX1SSyWgTa2c9Kewv3pBTZi9bQNoM6myWQgHKlLfjs6OBnmpE6sgbalA42-m8ErbL_HnSbdG_OrOMf3P0t4wqBBQmMgMhkoYFF-GH5ZP3Qr9HiVKNcFeCK3t2IuVkPp5_6iMv80qDTsNQgZ5AxGVL2ZMCT6JvYpd7cryqmXrIVsqCYTEmrgaUPtaxzE08ZCqg4lx9cqyRAwJwm4bMQ3kq2XJw16cVSlbTc3SFWCU0KfnMsn2g2AU7GWUkeLZIlkvl93AIybOkcYXWUYZKKHhX6caFXlZJido266sLWfN_Jyb6QVSKnQvin9Kbb1lglOTRNxZx7j0drCPFy3T67-M_wHLy_ioUDKFDxqD6ds_rtBrh-NJ6e4b0jnlUgUHw30Wr1UlZiEIJRNMarqy9MnmizIeZsLGpSUSpszAZNkbPKYD9aLtU3Gi0EoTB5_X9VA1tzYTNn6SzXyfkGporor9AzAuwAiP3qz4CuDHTlHEoeiX7m5fcqbbSsscauiL3briWXycSYbhCTs6fF5uGmRz5FzNR7GaBu4Y2GL_RcAuHN5Wh1jJ4ZzfvagJPTIV1HJneP-Ri3TKBlB6etrQ5ZpTIMHBMGKZFSZL7Wp3fG7rLbrBzATciqNb6d6DjfMz0RyzbAZHyYDITKcSXycAXBSKbqeQfPN87hZwyNYOhL16IdXpeu7PR3_hpMOpSfYJ3Sk2Zf1CrQoFkVv04qcaVRf36FI9zvtdMPUmHk1UNr2tlRfXpdORMpZ4uVmREUJmz9PJIHbV4Y_zNyi6OjHh1exdLRQDw9.BXQMa3FtBUjDe8W6pW4jwA'}
4AuthorizationResponse
{
    "code": "DHtCqApSDRji4wTic2cBKZIjn78VQj",
    "id_token": {
        "aud": [
            "5sImkTO57VutXYUMSReh"
        ],
        "auth_time": 1560784863,
        "c_hash": "sPpy-i_hrSRxpyL2e1MsQw",
        "exp": 1560788283,
        "iat": 1560784863,
        "iss": "https://isamfed.com:30443/test",
        "nonce": "RsIeTRYE8Ns5Ucsf",
        "sub": "testuser"
    },
    "state": "zkV0N2RAsvogoTpG"
}
4phase<--<-- 6 --- AccessToken -->-->
4requestop_args: {'state': 'zkV0N2RAsvogoTpG'}, req_args: {'redirect_uri': 'https://op.certification.openid.net:61716/authz_cb'}
4do_access_token_request
kwargs:{'request_args': {'redirect_uri': 'https://op.certification.openid.net:61716/authz_cb', 'code': 'DHtCqApSDRji4wTic2cBKZIjn78VQj', 'state': 'zkV0N2RAsvogoTpG', 'grant_type': 'authorization_code', 'client_id': '5sImkTO57VutXYUMSReh'}, 'state': 'zkV0N2RAsvogoTpG', 'authn_method': 'private_key_jwt'}
4AccessTokenRequest
{
    "client_assertion": "eyJhbGciOiJSUzI1NiIsImtpZCI6Ind0MjVPZ3lSX256RzNPb1E3ZGFhMnJMNi1nTW5GZGZSekJqaFVWUHU4UlEifQ.eyJpc3MiOiAiNXNJbWtUTzU3VnV0WFlVTVNSZWgiLCAic3ViIjogIjVzSW1rVE81N1Z1dFhZVU1TUmVoIiwgImF1ZCI6IFsiaHR0cHM6Ly9pc2FtZmVkLmNvbTozMDQ0My9tZ2Evc3BzL29hdXRoL29hdXRoMjAvdG9rZW4iXSwgImp0aSI6ICJUTG13M0k3SmJNTTd2NUdubDZpTVRKRDJzUXNhb1hSYyIsICJleHAiOiAxNTYwNzg1NDY0LCAiaWF0IjogMTU2MDc4NDg2NH0.v-grNoimTBVKHyLy2PCYiJzJB7TEz5pLfrxkvgA2vJknQy4HGS0xYcWtVNRBNVlctz1suZkgjVPgKcjzmD0nKDMn0_SxhKTcJ3utEmez4RaYT2y98i7ZGQ4fFKrQy57YVdRmNk3ktwxl6Pu7UDtKGvRMdxltjUaAZfyfl8s7ULAqVboaYLTv1ET6jTgy9YplYNheu_K7FNOvN-undTQ2lSzwsaSR_O0ELvjuzwD-x5PARJELQ-9QmSGUyAZRk3f3R3DzB2rEDUbI7VNPW36LMkuTSM4JicEdI1Xii-h0LWplGCl53U2vTCNp_LfyL8syOTi3Cn23QKauJro0Kq7dqw",
    "client_assertion_type": "urn:ietf:params:oauth:client-assertion-type:jwt-bearer",
    "code": "DHtCqApSDRji4wTic2cBKZIjn78VQj",
    "grant_type": "authorization_code",
    "redirect_uri": "https://op.certification.openid.net:61716/authz_cb",
    "state": "zkV0N2RAsvogoTpG"
}
4request_urlhttps://isamfed.com:30443/mga/sps/oauth/oauth20/token
4request_http_args{'headers': {'Content-Type': 'application/x-www-form-urlencoded'}}
4requestgrant_type=authorization_code&redirect_uri=https%3A%2F%2Fop.certification.openid.net%3A61716%2Fauthz_cb&code=DHtCqApSDRji4wTic2cBKZIjn78VQj&state=zkV0N2RAsvogoTpG&client_assertion=eyJhbGciOiJSUzI1NiIsImtpZCI6Ind0MjVPZ3lSX256RzNPb1E3ZGFhMnJMNi1nTW5GZGZSekJqaFVWUHU4UlEifQ.eyJpc3MiOiAiNXNJbWtUTzU3VnV0WFlVTVNSZWgiLCAic3ViIjogIjVzSW1rVE81N1Z1dFhZVU1TUmVoIiwgImF1ZCI6IFsiaHR0cHM6Ly9pc2FtZmVkLmNvbTozMDQ0My9tZ2Evc3BzL29hdXRoL29hdXRoMjAvdG9rZW4iXSwgImp0aSI6ICJUTG13M0k3SmJNTTd2NUdubDZpTVRKRDJzUXNhb1hSYyIsICJleHAiOiAxNTYwNzg1NDY0LCAiaWF0IjogMTU2MDc4NDg2NH0.v-grNoimTBVKHyLy2PCYiJzJB7TEz5pLfrxkvgA2vJknQy4HGS0xYcWtVNRBNVlctz1suZkgjVPgKcjzmD0nKDMn0_SxhKTcJ3utEmez4RaYT2y98i7ZGQ4fFKrQy57YVdRmNk3ktwxl6Pu7UDtKGvRMdxltjUaAZfyfl8s7ULAqVboaYLTv1ET6jTgy9YplYNheu_K7FNOvN-undTQ2lSzwsaSR_O0ELvjuzwD-x5PARJELQ-9QmSGUyAZRk3f3R3DzB2rEDUbI7VNPW36LMkuTSM4JicEdI1Xii-h0LWplGCl53U2vTCNp_LfyL8syOTi3Cn23QKauJro0Kq7dqw&client_assertion_type=urn%3Aietf%3Aparams%3Aoauth%3Aclient-assertion-type%3Ajwt-bearer
5http response
url:https://isamfed.com:30443/mga/sps/oauth/oauth20/token status_code:200
5response{'access_token': 'rMP2zJpXyKYexoanouEF', 'refresh_token': 'A3ODkbVKbHjz61f9zaFfMqDTuOPE4YSRPGj0C88Y', 'scope': 'openid', 'id_token': 'eyJhbGciOiJSU0EtT0FFUC0yNTYiLCJlbmMiOiJBMTI4Q0JDLUhTMjU2Iiwia2lkIjoiZ3RINHYzWXIyUXFMcmVCU3owQnlRUTh2a2Y4ZUZvMUtJaXQzcy0zQmJ3dyIsImN0eSI6IkpXVCJ9.nAhZ3cAhv97eGYqLATyZBqCVUWKqlnHJNJMh4Ci5YzD2NKFMD6u3hGpnzDVxNB6sI35ACa8RD885hpuenW_4m8x8-WmbpR3iB2-0viABaDUOizHNgQStrf80CVRMfY2rO5QRNMe8IL0xIfyxJJWXLiMm6tfcnBdJZgRQOqBZG1jpgaDkT4H0zHUYYTeXUKQ2XxEbuG1Xb1URgOqzOlf9JAFpipGa0PJDj9EWcDvFIa74sMiz5GOnwkP1pZ-_KTdVC1VAEdQrjFwzdbiJfVKYRWhJ-IufWpgmkD628WomHsc4tS9shJJpFgxcM2033G1pzGYqvXpKdvMFEXqx-rWjTA.PZhUky4Jr91-EYkHY0EkEg.E4gHyDvyYyfDT6WLotSVq2RAdCesvkgITEIcJ_aafg6vRE3BetXvqTrNB_uEx7sV262PyX4Hhyt7i1XNG9IrJ5s8CIF_8gjms-7OBoasuVn8ZPF5fF2vKk7YxItUoJsczkA8SrS8posORfTzZzwS9dw6Tl1giYIxPlqu9Q1Zrlxv31Jqq3-TuuA67w5puvS5v1kd8Hl1Z7aGv-JFHit5Q0gP-ll6mgVxx3dRRyT5bCXK9iACUmh4LIYVUoQ7nydx27SnW8sbSlCFt5-tjYzahMZN7ynuFs9QKyn-tOw3bPLBSN4OsHP4XfcVsKvZ6AS1223OH8njIKwjMwwDxnUInyOrd8_CS3TAlbOxOWLQ3SpcKEY4wYjudZpaWMtXmjqdszA3z02JpbqhzUsBbdZot-ovwvb5Srd3zyG7xm_IRXlJdwoRxVWcvYH6hXnKeh52BVa8Ap1sg3T8p7K1F8uC5wF07PABHwBEg_q0uhcX-XyDTXPeYpXIjNStRBhSbIxZ8wqaRXEzRMJ4jSWJ7DMK2WIDiqZcXis-Zb3f8wlSAxlVYsPxaEUsbdxgA0k94ZI7mppW9-GcKTrpeSKXvRu1ScqH6JGsbiXsZjzQz05F4FMznm01ZNYU55ZOOIopuOyoR4h7Nq0La59C5X8xKhRmcKQEsY5Pt7l9VmJcW9JZo7zg_6nul0z_neA1SgyXxQYU0ToF-AQX_f9GohxjgFgng-UeY_2BWCXbUZxz96k0_uuT2749OzxC6xygGVi27Y66OwnJ3wAYIGupWjeAydZuhIGfWeQ5hjq_Le_rL9M_7noxba1FsPocTUqW54KFEesShNLIcgiAQ2_9A3QxOaWirY0oT1HE5dImxsBiKuTjSNdM_iyeYV9_mA2PMXiGM6VfHsCsx6zFVmsGB7AZJn0KFSirq-bZ4zTY1ApT2A-wk9g42mhFRbskoQ3YQzj_sdBQRUmG2RcqE7WvDqF3TbKwYT38XzUR9vsqHR-7NzqYzO2PS4C1LrsKurgLBXWl9DKX.ezfLBiCw-Vwwtj7rmgGhUw', 'token_type': 'bearer', 'expires_in': 3599}
5AccessTokenResponse
{
    "access_token": "rMP2zJpXyKYexoanouEF",
    "expires_in": 3599,
    "id_token": {
        "at_hash": "cogy-tyTf1_MhwgguM0Bcg",
        "aud": [
            "5sImkTO57VutXYUMSReh"
        ],
        "auth_time": 1560784865,
        "exp": 1560788284,
        "iat": 1560784864,
        "iss": "https://isamfed.com:30443/test",
        "nonce": "RsIeTRYE8Ns5Ucsf",
        "rt_hash": "u2fTYyEjNt6ED-g1gHoVEQ",
        "sub": "testuser"
    },
    "refresh_token": "A3ODkbVKbHjz61f9zaFfMqDTuOPE4YSRPGj0C88Y",
    "scope": "openid",
    "token_type": "bearer"
}
5jws header{'kid': '_uhPdeGrTWxobFeH0XbzjJpRrzp3CB9nknx1yFV1G-0', 'alg': 'RS256'}
5jwe header{'alg': 'RSA-OAEP-256', 'enc': 'A128CBC-HS256', 'kid': 'gtH4v3Yr2QqLreBSz0ByQQ8vkf8eFo1KIit3s-3Bbww', 'cty': 'JWT'}
5phase<--<-- 7 --- Done -->-->
5end
5assertionClaimsCheck
5conditionclaims-check: status=OK [Checks if specific claims is present or not]
5assertionSameAuthn
5conditionDone: status=OK

Result

PASSED