0 | phase | <--<-- 0 --- Webfinger -->--> |
0 | not expected to do | WebFinger |
0 | phase | <--<-- 1 --- Discovery -->--> |
0 | provider_config | kwargs:{'issuer': 'https://isamfed.com:30443/test'}
|
0 | http response | url:https://isamfed.com:30443/test/.well-known/openid-configuration status_code:200
|
0 | ProviderConfigurationResponse | {
"authorization_endpoint": "https://isamfed.com:30443/mga/sps/oauth/oauth20/authorize",
"claims_parameter_supported": false,
"claims_supported": [
"realmName",
"preferred_username",
"given_name",
"uid",
"upn",
"groupIds",
"employee_id",
"name",
"tenantId",
"mobile_number",
"department",
"job_title",
"family_name",
"email"
],
"device_authorize_endpoint": "https://isamfed.com:30443/mga/sps/oauth/oauth20/device_authorize",
"grant_types_supported": [
"urn:ietf:params:oauth:grant-type:jwt-bearer",
"implicit",
"urn:ietf:params:oauth:grant-type:saml2-bearer",
"urn:ietf:params:oauth:grant-type:device_code",
"client_credentials",
"password",
"authorization_code",
"refresh_token"
],
"id_token_encryption_alg_values_supported": [
"A128KW"
],
"id_token_encryption_enc_values_supported": [
"A128CBC-HS256"
],
"id_token_signing_alg_values_supported": [
"RS256"
],
"introspect_endpoint": "https://isamfed.com:30443/mga/sps/oauth/oauth20/introspect",
"issuer": "https://isamfed.com:30443/test",
"jwks_uri": "https://isamfed.com:30443/mga/sps/jwks",
"name": "OIDCDefinition",
"poc": "https://isamfed.com:30443/mga/",
"registration_endpoint": "https://isamfed.com:30443/mga/sps/oauth/oauth20/register/OIDCDefinition",
"request_parameter_supported": true,
"request_uri_parameter_supported": true,
"require_request_uri_registration": false,
"response_modes_supported": [
"fragment",
"form_post"
],
"response_types_supported": [
"token",
"id_token",
"token id_token",
"code",
"code id_token",
"code token id_token",
"code token",
"none"
],
"revocation_endpoint": "https://isamfed.com:30443/mga/sps/oauth/oauth20/revoke",
"subject_types_supported": [
"public"
],
"token_endpoint": "https://isamfed.com:30443/mga/sps/oauth/oauth20/token",
"token_endpoint_auth_methods_supported": [
"private_key_jwt",
"client_secret_post",
"client_secret_basic"
],
"user_authorize_endpoint": "https://isamfed.com:30443/mga/sps/oauth/oauth20/user_authorize",
"userinfo_endpoint": "https://isamfed.com:30443/mga/sps/oauth/oauth20/userinfo",
"userinfo_signing_alg_values_supported": [
"RS256"
],
"version": "3.0"
}
|
0 | phase | <--<-- 2 --- Registration -->--> |
0 | not expected to do | Dynamic registration |
0 | phase | <--<-- 3 --- AsyncAuthn -->--> |
0 | AuthorizationRequest | {
"client_id": "clientID",
"nonce": "DzkUzzdBWIBQUSwP",
"redirect_uri": "https://op.certification.openid.net:61773/authz_cb",
"response_type": "code id_token token",
"scope": "openid",
"state": "dnzn6BBlRholwynE"
}
|
0 | redirect url | https://isamfed.com:30443/mga/sps/oauth/oauth20/authorize?state=dnzn6BBlRholwynE&nonce=DzkUzzdBWIBQUSwP&response_type=code+id_token+token&scope=openid&redirect_uri=https%3A%2F%2Fop.certification.openid.net%3A61773%2Fauthz_cb&client_id=clientID |
0 | redirect | https://isamfed.com:30443/mga/sps/oauth/oauth20/authorize?state=dnzn6BBlRholwynE&nonce=DzkUzzdBWIBQUSwP&response_type=code+id_token+token&scope=openid&redirect_uri=https%3A%2F%2Fop.certification.openid.net%3A61773%2Fauthz_cb&client_id=clientID |
2 | http args | {} |
2 | response | URL with fragment |
2 | response | access_token=seEwKpqMD2t8q8rVD4f3&state=dnzn6BBlRholwynE&expires_in=3599&token_type=bearer&code=W3lsRTnWRaMTDVLRHuGviyVFI8xzgU&scope=openid&id_token=eyJhbGciOiJBMTI4S1ciLCJlbmMiOiJBMTI4Q0JDLUhTMjU2IiwiY3R5IjoiSldUIn0.jCxJPfHzo925ox0XiWyBOlW8khoX1ygFztwYULdc93ZGOAfHlRKKhg.aPaf9w6uyf5ouLGa51ZZsg.-zgV0Rs9tJc_gK-21bXHuecQ6_Kk2Gr5F7bBp5qXWFRa35HB9RPL8Or-vPxewCHwBjFdngpciPpFEhR0yLw6M7CCHLNBmj3pEp1tlDELEd6AWsoZxEU1B9d-V1PpSnjKvtdR787yQHZzoHSCVwJXEqn56QWClYiw2TYfW2idTA_cvfllLMpfoNOJixcdhQ0lyxQlzFu6nyRdmJlommFQ3dN7HX1K4Kd0VaGuSgEH2YgPvbXt21ABZs7kgKqw2G-XZ9Pcra2ZrWTGOYvFYUt7puB2qwowYwp4ekU8hWFTVbmVg3oOFltjQlKxk53AeyDACFSyC1biTOjcXYF4xIkD5RRa6GQgNPL4aQfzF_xM7ZSp3D7uyVEKbB6Fn0cKBPtKDp5x1qIH7Jqcte9aqMMYD9VudicJFz-M0vHJOMbE4d4wfglkDhmfrg4dhdtYvmKSkVde05r4wtoJPX1pneu1LwMmOmT-e5K2Utyw1n95omZqnbDq3cdKeQSDVBS3Q7atYNanuQSWl1f9SFVWgPltAV2GGyhFcM9bgbyf_lt9UegjGpYYJVf5WL_EVmMvlNJLDcajZbSCNGwCaQgXCMGLnn00kYJ9f_SpG0vkf6TxXuXbYn1ShGbxjItopOQPZO6DNQGBNzn-1KdOf9x36IG0HVCLrqtp6p7VSm4MCx6LtTW4WfXeNpM_MQ523h_5EConixRvunujXvTJp1kjgB0xMW0ILDN9vu74MGeaUttmoDgVJGfOpJArbIRexnqg_5t2r2Am3mNS-3-8PEsUgSFGFsGT0FKQDqlBtjqP7eSFPcx7gg6zSWM04Bogsh8xLk3tZJ2oHbSNPca5jbnyVGLB2SsMaTyJGPw-u9s6OrSrDBf0ZP3o20ICfwl5aaOf5wg5Wnk1snOTKRKVGcCip8VGX1VXl_1fs30XChWcKENqaCUGAPM9gwYrmnzinhLy2o1z.xjLyuv-2LSqeZc2i1dJ0wA |
2 | response | {'access_token': 'seEwKpqMD2t8q8rVD4f3', 'state': 'dnzn6BBlRholwynE', 'expires_in': 3599, 'token_type': 'bearer', 'code': 'W3lsRTnWRaMTDVLRHuGviyVFI8xzgU', 'scope': 'openid', 'id_token': 'eyJhbGciOiJBMTI4S1ciLCJlbmMiOiJBMTI4Q0JDLUhTMjU2IiwiY3R5IjoiSldUIn0.jCxJPfHzo925ox0XiWyBOlW8khoX1ygFztwYULdc93ZGOAfHlRKKhg.aPaf9w6uyf5ouLGa51ZZsg.-zgV0Rs9tJc_gK-21bXHuecQ6_Kk2Gr5F7bBp5qXWFRa35HB9RPL8Or-vPxewCHwBjFdngpciPpFEhR0yLw6M7CCHLNBmj3pEp1tlDELEd6AWsoZxEU1B9d-V1PpSnjKvtdR787yQHZzoHSCVwJXEqn56QWClYiw2TYfW2idTA_cvfllLMpfoNOJixcdhQ0lyxQlzFu6nyRdmJlommFQ3dN7HX1K4Kd0VaGuSgEH2YgPvbXt21ABZs7kgKqw2G-XZ9Pcra2ZrWTGOYvFYUt7puB2qwowYwp4ekU8hWFTVbmVg3oOFltjQlKxk53AeyDACFSyC1biTOjcXYF4xIkD5RRa6GQgNPL4aQfzF_xM7ZSp3D7uyVEKbB6Fn0cKBPtKDp5x1qIH7Jqcte9aqMMYD9VudicJFz-M0vHJOMbE4d4wfglkDhmfrg4dhdtYvmKSkVde05r4wtoJPX1pneu1LwMmOmT-e5K2Utyw1n95omZqnbDq3cdKeQSDVBS3Q7atYNanuQSWl1f9SFVWgPltAV2GGyhFcM9bgbyf_lt9UegjGpYYJVf5WL_EVmMvlNJLDcajZbSCNGwCaQgXCMGLnn00kYJ9f_SpG0vkf6TxXuXbYn1ShGbxjItopOQPZO6DNQGBNzn-1KdOf9x36IG0HVCLrqtp6p7VSm4MCx6LtTW4WfXeNpM_MQ523h_5EConixRvunujXvTJp1kjgB0xMW0ILDN9vu74MGeaUttmoDgVJGfOpJArbIRexnqg_5t2r2Am3mNS-3-8PEsUgSFGFsGT0FKQDqlBtjqP7eSFPcx7gg6zSWM04Bogsh8xLk3tZJ2oHbSNPca5jbnyVGLB2SsMaTyJGPw-u9s6OrSrDBf0ZP3o20ICfwl5aaOf5wg5Wnk1snOTKRKVGcCip8VGX1VXl_1fs30XChWcKENqaCUGAPM9gwYrmnzinhLy2o1z.xjLyuv-2LSqeZc2i1dJ0wA'} |
2 | AuthorizationResponse | {
"access_token": "seEwKpqMD2t8q8rVD4f3",
"code": "W3lsRTnWRaMTDVLRHuGviyVFI8xzgU",
"expires_in": 3599,
"id_token": {
"at_hash": "8g3Qm70tzuYxhnUpzCgWZQ",
"aud": [
"clientID"
],
"c_hash": "crRdaHM22OQq6a3mL5FVWA",
"exp": 1560834721,
"iat": 1560831301,
"iss": "https://isamfed.com:30443/test",
"nonce": "DzkUzzdBWIBQUSwP",
"sub": "testuser"
},
"scope": "openid",
"state": "dnzn6BBlRholwynE",
"token_type": "bearer"
}
|
2 | phase | <--<-- 4 --- AccessToken -->--> |
2 | request | op_args: {'state': 'dnzn6BBlRholwynE'}, req_args: {'redirect_uri': 'https://op.certification.openid.net:61773/authz_cb'} |
2 | do_access_token_request | kwargs:{'request_args': {'redirect_uri': 'https://op.certification.openid.net:61773/authz_cb', 'code': 'W3lsRTnWRaMTDVLRHuGviyVFI8xzgU', 'state': 'dnzn6BBlRholwynE', 'grant_type': 'authorization_code', 'client_id': 'clientID'}, 'state': 'dnzn6BBlRholwynE', 'authn_method': 'client_secret_basic'}
|
2 | AccessTokenRequest | {
"code": "W3lsRTnWRaMTDVLRHuGviyVFI8xzgU",
"grant_type": "authorization_code",
"redirect_uri": "https://op.certification.openid.net:61773/authz_cb",
"state": "dnzn6BBlRholwynE"
}
|
2 | request_url | https://isamfed.com:30443/mga/sps/oauth/oauth20/token |
2 | request_http_args | {'headers': {'Authorization': 'Basic Y2xpZW50SUQ6Y2xpZW50U2VjcmV0', 'Content-Type': 'application/x-www-form-urlencoded'}} |
2 | request | grant_type=authorization_code&redirect_uri=https%3A%2F%2Fop.certification.openid.net%3A61773%2Fauthz_cb&code=W3lsRTnWRaMTDVLRHuGviyVFI8xzgU&state=dnzn6BBlRholwynE |
3 | http response | url:https://isamfed.com:30443/mga/sps/oauth/oauth20/token status_code:200
|
3 | response | {'access_token': 'oQ19auT55hUX4u7prjNH', 'refresh_token': '5UdNnoCXrwUmvVB0hXETldfxHK2EjrTJ7v5TJWpX', 'scope': 'openid', 'id_token': 'eyJhbGciOiJBMTI4S1ciLCJlbmMiOiJBMTI4Q0JDLUhTMjU2IiwiY3R5IjoiSldUIn0.94CvrSx0tGvnDv17miX_ATjIPKVYR2QYYzzlrOtXuC5A1huLCuOhwQ.hv-NN4HcTnleGbIOZmoObg.-CNQqriHKrLm_eBY18Metv55bIImeqeoXRTpbqdP7aHCBO9_oFbNyQWQm5IcRMEHjCMBzHwWtYBdUVvnxgyIy8kS2Tly7oNSoByK67Yf7v9mShyD7Ss0gJ3D9YiYGQ7t7CuUi9ly_VqV-3Khf19zimJovEoYuph4oVgcX4XXGNxa-CTDHkgTjGZ6T8X5i-Mw9IMOALW9rPpc6owRvwucwP45XHpsICc-y1E9Coqvoqj-MwUSLRhDyVVi-tOIU_Gb11uHS93-veiKZoz_5gka1xW7WZLxS4aWXhtLke5_py79i70Per3nO3Jyq-xgKIOJ8W13_1Tf9AQUGojaNr0MRq6fM4EmsPsLsxOHjgNpiZJgK8IvqKpL_UfhTqKDUuawNCZneGsCW6UU3DXQ7YOGd9fxOBYZb1K0yMxHjwms1VMPYsNgUqOwtfff6easiB3_YeeliqkVdrGApXnHh4yDc0prjyfA_mrJWUlf-TLXmI31YfbygxW26sNamDyxDJEAn7UG7u9gulfMhSoyDDVwbmWI_3SlKec7Su3NVCMyEc7O4rr0aJsmpvt6qFuTfNHCQRppvrVKvljy7lr_TaufEs4avZ8otDFo6FTrAGJ6V5S_2gTGG_5DqEwInNVqZ89muksUBZQp8Mo-nFlcRbaIdcNhmGS2fCMTlxUZNDjx3iXqMOe75VdlTwHOfk_vQxTCxCvdiKRuI9_bquIFTwpcgsHYJq6w-eshLho_9zXfNJSyBg2LlfGFfclV_aP4F15aROd5NNonWZqqnljv_aDgHpve7t_j1ulESJNlX_6wDDMU6gFUcbzFKAu_kfW41IICDoy3YINzQVaOoQX2uBPFdEX3F0ybhk6T_ILMASzdNGwo702hcQEDLBWezszWVYTlLqV-Er9H34L9pq1510yhc0ULF2PignScN6EjxZIYlAhUdd8lxVR03ASDskdn11BB.fwRSCrwh3H7qRs_w71y_EA', 'token_type': 'bearer', 'expires_in': 3599} |
3 | AccessTokenResponse | {
"access_token": "oQ19auT55hUX4u7prjNH",
"expires_in": 3599,
"id_token": {
"at_hash": "_pvMKHp5Sd5arZeuGF7YPw",
"aud": [
"clientID"
],
"exp": 1560834723,
"iat": 1560831303,
"iss": "https://isamfed.com:30443/test",
"nonce": "DzkUzzdBWIBQUSwP",
"rt_hash": "eYsgwHoc7W-XBv2cTJN-aA",
"sub": "testuser"
},
"refresh_token": "5UdNnoCXrwUmvVB0hXETldfxHK2EjrTJ7v5TJWpX",
"scope": "openid",
"token_type": "bearer"
}
|
3 | jws header | {'kid': '_uhPdeGrTWxobFeH0XbzjJpRrzp3CB9nknx1yFV1G-0', 'alg': 'RS256'} |
3 | jwe header | {'alg': 'A128KW', 'enc': 'A128CBC-HS256', 'cty': 'JWT'} |
3 | phase | <--<-- 5 --- Note -->--> |
3 | phase | <--<-- 6 --- AsyncAuthn -->--> |
3 | AuthorizationRequest | {
"client_id": "clientID",
"nonce": "yYBEJmdUTbnGs5mV",
"prompt": [
"login"
],
"redirect_uri": "https://op.certification.openid.net:61773/authz_cb",
"response_type": "code id_token token",
"scope": "openid",
"state": "NetmYDBVuftTKfyv"
}
|
3 | redirect url | https://isamfed.com:30443/mga/sps/oauth/oauth20/authorize?state=NetmYDBVuftTKfyv&nonce=yYBEJmdUTbnGs5mV&response_type=code+id_token+token&scope=openid&redirect_uri=https%3A%2F%2Fop.certification.openid.net%3A61773%2Fauthz_cb&prompt=login&client_id=clientID |
3 | redirect | https://isamfed.com:30443/mga/sps/oauth/oauth20/authorize?state=NetmYDBVuftTKfyv&nonce=yYBEJmdUTbnGs5mV&response_type=code+id_token+token&scope=openid&redirect_uri=https%3A%2F%2Fop.certification.openid.net%3A61773%2Fauthz_cb&prompt=login&client_id=clientID |
7 | http args | {} |
7 | response | URL with fragment |
7 | response | access_token=9ifz9Dn630KU1yaLDvdL&state=NetmYDBVuftTKfyv&expires_in=3599&token_type=bearer&code=2zVrOkVo6EeYzen6ixQeW1kq284nrj&scope=openid&id_token=eyJhbGciOiJBMTI4S1ciLCJlbmMiOiJBMTI4Q0JDLUhTMjU2IiwiY3R5IjoiSldUIn0.zF8mqphoARJ6WPabSYzaKDoeKT8OHU6LGnsC0wpKMs_oY2XCYtVtrQ.k5e6vhFxuMErefiLYSJG_g.tYjCKF1GX8o18oFmcNsqdHLZYnJdt2c9tjU6ragk0Kz1y3iLPiayDsMNSzN4XQEwDNE47kfUrQDibKc2CMwFmS2h2n1qAiW8tdN7CY8zDnt6rTllquhMXGDghGzmDfwP_YmCt6YJfelLwSjC3kWOf-tsqnnJtAoku8pie6wDYnxn1yAVltKDqlHfuIXZ5zQR4UPqldke71Yd4Msc8HA_0Ws5RGQv1Dn4yXbptcWcSVqxVbOKu-U_bwFgSWw_1cWOidPQ0KRbdKE9ltRq65bF973mgg7mOBK9gJkDE1p6qmRXqr1VGL6Sq9gWAv40Hy9fr_UI6i3oE3GEiNj2bEaeSFs8Gt17qWMbJbeM0JilZXgtjWZ0JNKzjim9I5O_KRmYCWkf0E0JCGGVVLzwi1BCvb90_rgHm7864LODPY7reDZmxB47tSF3xjE9nKIOFNO0RxeAhlfGqfCzFlRoVp5-YNuRkbRjCS6jcLpdY5RThxDd6etEgwiRurA5o0IOx7ql60BQf8hFJPYZtiNoYa7x2Cl2ed3cKpu9AzbSN6qlJp3U0afCwmvMTxcwFlgbzRSdouBqJHZy1tHt6X6cLYuax5lF3Af0ULXdz4u5UKcCqxj6j2oS7iTTE2m1bqouBs23-1uWxjDKq2ygTHThOVQojrBGRDY2yDl3inSjtNiTo9_K7BmXMOfSKsmhA-40Rnr4ORey7PUQqb1NmOtqzC6-y9h5--wJyNDNoPLyH6NcNL7RXsASLi_Rbf6-K8HRMhx9wLdEtLyY3SiTwAZyvsGj275J1dnqCKvkVXpcXbTD_5afPR8yh2NZVZ3yxuY3YOAGIl_lmatCnkdt3wL0lSU9cC7sdiXGpenTXA_4GbReDptE9q8iuxjSTZbeflWfUebdEhjUnVgQN40kQqS48wqPhSVJPpCrkTVMorSYlfFf9WcokatVV16G4BovQJg8h4GB.e3JKcV-XmXmHqbbuzbVG3w |
7 | response | {'access_token': '9ifz9Dn630KU1yaLDvdL', 'state': 'NetmYDBVuftTKfyv', 'expires_in': 3599, 'token_type': 'bearer', 'code': '2zVrOkVo6EeYzen6ixQeW1kq284nrj', 'scope': 'openid', 'id_token': 'eyJhbGciOiJBMTI4S1ciLCJlbmMiOiJBMTI4Q0JDLUhTMjU2IiwiY3R5IjoiSldUIn0.zF8mqphoARJ6WPabSYzaKDoeKT8OHU6LGnsC0wpKMs_oY2XCYtVtrQ.k5e6vhFxuMErefiLYSJG_g.tYjCKF1GX8o18oFmcNsqdHLZYnJdt2c9tjU6ragk0Kz1y3iLPiayDsMNSzN4XQEwDNE47kfUrQDibKc2CMwFmS2h2n1qAiW8tdN7CY8zDnt6rTllquhMXGDghGzmDfwP_YmCt6YJfelLwSjC3kWOf-tsqnnJtAoku8pie6wDYnxn1yAVltKDqlHfuIXZ5zQR4UPqldke71Yd4Msc8HA_0Ws5RGQv1Dn4yXbptcWcSVqxVbOKu-U_bwFgSWw_1cWOidPQ0KRbdKE9ltRq65bF973mgg7mOBK9gJkDE1p6qmRXqr1VGL6Sq9gWAv40Hy9fr_UI6i3oE3GEiNj2bEaeSFs8Gt17qWMbJbeM0JilZXgtjWZ0JNKzjim9I5O_KRmYCWkf0E0JCGGVVLzwi1BCvb90_rgHm7864LODPY7reDZmxB47tSF3xjE9nKIOFNO0RxeAhlfGqfCzFlRoVp5-YNuRkbRjCS6jcLpdY5RThxDd6etEgwiRurA5o0IOx7ql60BQf8hFJPYZtiNoYa7x2Cl2ed3cKpu9AzbSN6qlJp3U0afCwmvMTxcwFlgbzRSdouBqJHZy1tHt6X6cLYuax5lF3Af0ULXdz4u5UKcCqxj6j2oS7iTTE2m1bqouBs23-1uWxjDKq2ygTHThOVQojrBGRDY2yDl3inSjtNiTo9_K7BmXMOfSKsmhA-40Rnr4ORey7PUQqb1NmOtqzC6-y9h5--wJyNDNoPLyH6NcNL7RXsASLi_Rbf6-K8HRMhx9wLdEtLyY3SiTwAZyvsGj275J1dnqCKvkVXpcXbTD_5afPR8yh2NZVZ3yxuY3YOAGIl_lmatCnkdt3wL0lSU9cC7sdiXGpenTXA_4GbReDptE9q8iuxjSTZbeflWfUebdEhjUnVgQN40kQqS48wqPhSVJPpCrkTVMorSYlfFf9WcokatVV16G4BovQJg8h4GB.e3JKcV-XmXmHqbbuzbVG3w'} |
7 | AuthorizationResponse | {
"access_token": "9ifz9Dn630KU1yaLDvdL",
"code": "2zVrOkVo6EeYzen6ixQeW1kq284nrj",
"expires_in": 3599,
"id_token": {
"at_hash": "-dC2pUI7pNxvyt7mhVzzKA",
"aud": [
"clientID"
],
"c_hash": "qCeB9ADiOqD-p2xNQCDltA",
"exp": 1560834726,
"iat": 1560831306,
"iss": "https://isamfed.com:30443/test",
"nonce": "yYBEJmdUTbnGs5mV",
"sub": "testuser"
},
"scope": "openid",
"state": "NetmYDBVuftTKfyv",
"token_type": "bearer"
}
|
7 | phase | <--<-- 7 --- AccessToken -->--> |
7 | request | op_args: {'state': 'NetmYDBVuftTKfyv'}, req_args: {'redirect_uri': 'https://op.certification.openid.net:61773/authz_cb'} |
7 | do_access_token_request | kwargs:{'request_args': {'redirect_uri': 'https://op.certification.openid.net:61773/authz_cb', 'code': '2zVrOkVo6EeYzen6ixQeW1kq284nrj', 'state': 'NetmYDBVuftTKfyv', 'grant_type': 'authorization_code', 'client_id': 'clientID'}, 'state': 'NetmYDBVuftTKfyv', 'authn_method': 'client_secret_basic'}
|
7 | AccessTokenRequest | {
"code": "2zVrOkVo6EeYzen6ixQeW1kq284nrj",
"grant_type": "authorization_code",
"redirect_uri": "https://op.certification.openid.net:61773/authz_cb",
"state": "NetmYDBVuftTKfyv"
}
|
7 | request_url | https://isamfed.com:30443/mga/sps/oauth/oauth20/token |
7 | request_http_args | {'headers': {'Authorization': 'Basic Y2xpZW50SUQ6Y2xpZW50U2VjcmV0', 'Content-Type': 'application/x-www-form-urlencoded'}} |
7 | request | grant_type=authorization_code&redirect_uri=https%3A%2F%2Fop.certification.openid.net%3A61773%2Fauthz_cb&code=2zVrOkVo6EeYzen6ixQeW1kq284nrj&state=NetmYDBVuftTKfyv |
7 | http response | url:https://isamfed.com:30443/mga/sps/oauth/oauth20/token status_code:200
|
7 | response | {'access_token': 'ppsl2kZbw2q31jEQjyFO', 'refresh_token': '2PDOKWAq9gXuaXmJCzKbIH3EqOWvTsJntGs3yWHT', 'scope': 'openid', 'id_token': 'eyJhbGciOiJBMTI4S1ciLCJlbmMiOiJBMTI4Q0JDLUhTMjU2IiwiY3R5IjoiSldUIn0.HyV-vjol80l8zcIUIAavULhfM1g_xwqp1rDMjdQ1KbCP6_UX8nVX2A.P3FGGGa23FFSqtB3GdFJOw.6seWCiczVp9Otv3eYv29kOVGC9HMRq_bWKXLRUWqrp20P1HDt_2Dx0TnzGJRhnCZBIv9V-AKEFTzScvi5akR_CoEh5po9hBk7Uo4aWpEtj9jXzvQuAWSO-Da8dXWE3V3lkBg22VthRqSdWezD7Id8z0hKx6nMKfL3Qds3p_GfXbvVYJHXYJpQrLgBqLgbP8OnDdRasIe382Y33dKT71TSH50nIXVUNBA_QHsm8pWe2KjzGz7cXl8afhPf_ALE-QoOYW2xWsI3vwA4Ozdb30FK25UFZ732ApbwHOLz_aDGgRQLZNzscfYsJK4E5Nl-yPmpr1Jeno4fynfMbHA0zCFluMnr4BdtDGf5JyBz9QMKHzqP4dQRyiBZeeX2NGDqsKHfj87pC0-Ut5n9NMzwcXktWzBOL6J_1Kg9DgkPjU7cWVOhycXI0sNzUwKvmLuqOSxuAsFdyWVyAsTtLFzTujU42GC89DktoWRu0M97elVH9MrKVu3SNPjxr8zrbEDSlWHO30MNelyNYmtg4saS0uBFLG9EIWgiB1bhbZXcfCsyithrZJbhb8O3RyxmaXYnQ9tqboSzysopbia8A5oe_Sd9qWo-zrx8nagfetqicVVX31loDXEYOepCpDGT_-LDgNhBRM6DvpMnG-TGDvfS6_7dgZ-l9KScsUqrQNB8SYkwJtnjn2s0fzV8j2EJsQuUlsmMbFuufmZwFVAaeLaBSzsV4wvjEHmRDZZHEnHXN0WC3gL_4bJ9tGO-RltwwhzY1jEqzB3uVO-wb5f0XJqkVHCn3k_kka7r9a1Ffx_Af4edkicllQ_SJ0TYpUkeVL0VnUA2gBjOOYKnKDeCGF1-HePEInt40kAw-xGe5xo_vG4eDRguAya7g1GGDyt4qDr0wIWoWiKO8aOGxQzC2BsAryzAlUoEawYRbr2SnqhxUs8M_4d5TNpaKdo-_v1MzFZOVEk.K_obANDsctczqe8QsvXmZg', 'token_type': 'bearer', 'expires_in': 3599} |
7 | AccessTokenResponse | {
"access_token": "ppsl2kZbw2q31jEQjyFO",
"expires_in": 3599,
"id_token": {
"at_hash": "K_MyqtdCxd1qsLoFKLSpkg",
"aud": [
"clientID"
],
"exp": 1560834727,
"iat": 1560831307,
"iss": "https://isamfed.com:30443/test",
"nonce": "yYBEJmdUTbnGs5mV",
"rt_hash": "_Qw35eE5Y019xKHjIBgWLw",
"sub": "testuser"
},
"refresh_token": "2PDOKWAq9gXuaXmJCzKbIH3EqOWvTsJntGs3yWHT",
"scope": "openid",
"token_type": "bearer"
}
|
7 | jws header | {'kid': '_uhPdeGrTWxobFeH0XbzjJpRrzp3CB9nknx1yFV1G-0', 'alg': 'RS256'} |
7 | jwe header | {'alg': 'A128KW', 'enc': 'A128CBC-HS256', 'cty': 'JWT'} |
7 | phase | <--<-- 8 --- Done -->--> |
7 | end | |
7 | assertion | MultipleSignOn |
7 | condition | multiple-sign-on: status=OK [Verifies that multiple authentications was used in the flow] |
7 | assertion | VerifyResponse |
7 | condition | verify-response: status=OK [Checks that the last response was one of a possible set of OpenID Connect Responses] |
7 | condition | Done: status=OK |