0 | phase | <--<-- 0 --- Webfinger -->--> |
0 | not expected to do | WebFinger |
0 | phase | <--<-- 1 --- Discovery -->--> |
0 | provider_config | kwargs:{'issuer': 'https://isamfed.com:30443/test'}
|
0 | http response | url:https://isamfed.com:30443/test/.well-known/openid-configuration status_code:200
|
0 | ProviderConfigurationResponse | {
"authorization_endpoint": "https://isamfed.com:30443/mga/sps/oauth/oauth20/authorize",
"claims_parameter_supported": false,
"claims_supported": [
"realmName",
"preferred_username",
"given_name",
"uid",
"upn",
"groupIds",
"employee_id",
"name",
"tenantId",
"mobile_number",
"department",
"job_title",
"family_name",
"email"
],
"device_authorize_endpoint": "https://isamfed.com:30443/mga/sps/oauth/oauth20/device_authorize",
"grant_types_supported": [
"urn:ietf:params:oauth:grant-type:jwt-bearer",
"implicit",
"urn:ietf:params:oauth:grant-type:saml2-bearer",
"urn:ietf:params:oauth:grant-type:device_code",
"client_credentials",
"password",
"authorization_code",
"refresh_token"
],
"id_token_encryption_alg_values_supported": [
"RSA-OAEP-256"
],
"id_token_encryption_enc_values_supported": [
"A128CBC-HS256"
],
"id_token_signing_alg_values_supported": [
"RS256"
],
"introspect_endpoint": "https://isamfed.com:30443/mga/sps/oauth/oauth20/introspect",
"issuer": "https://isamfed.com:30443/test",
"jwks_uri": "https://isamfed.com:30443/mga/sps/jwks",
"name": "OIDCDefinition",
"poc": "https://isamfed.com:30443/mga/",
"registration_endpoint": "https://isamfed.com:30443/mga/sps/oauth/oauth20/register/OIDCDefinition",
"request_parameter_supported": true,
"request_uri_parameter_supported": true,
"require_request_uri_registration": false,
"response_modes_supported": [
"fragment",
"form_post"
],
"response_types_supported": [
"token",
"id_token",
"token id_token",
"code",
"code id_token",
"code token id_token",
"code token",
"none"
],
"revocation_endpoint": "https://isamfed.com:30443/mga/sps/oauth/oauth20/revoke",
"subject_types_supported": [
"public"
],
"token_endpoint": "https://isamfed.com:30443/mga/sps/oauth/oauth20/token",
"token_endpoint_auth_methods_supported": [
"private_key_jwt",
"client_secret_post",
"client_secret_basic"
],
"user_authorize_endpoint": "https://isamfed.com:30443/mga/sps/oauth/oauth20/user_authorize",
"userinfo_endpoint": "https://isamfed.com:30443/mga/sps/oauth/oauth20/userinfo",
"userinfo_signing_alg_values_supported": [
"RS256"
],
"version": "3.0"
}
|
0 | phase | <--<-- 2 --- Registration -->--> |
0 | register | kwargs:{'response_types': ['code id_token'], 'grant_types': ['authorization_code', 'implicit'], 'application_name': 'OIC test tool', 'application_type': 'web', 'redirect_uris': ['https://op.certification.openid.net:61716/authz_cb'], 'contacts': ['roland@example.com'], 'post_logout_redirect_uris': ['https://op.certification.openid.net:61716/logout'], 'url': 'https://isamfed.com:30443/mga/sps/oauth/oauth20/register/OIDCDefinition', 'jwks_uri': 'https://op.certification.openid.net:61716/static/jwks_61716.json', 'token_endpoint_auth_method': 'private_key_jwt'}
|
0 | RegistrationRequest | {
"application_type": "web",
"contacts": [
"roland@example.com"
],
"grant_types": [
"implicit",
"authorization_code"
],
"jwks_uri": "https://op.certification.openid.net:61716/static/jwks_61716.json",
"post_logout_redirect_uris": [
"https://op.certification.openid.net:61716/logout"
],
"redirect_uris": [
"https://op.certification.openid.net:61716/authz_cb"
],
"response_types": [
"code id_token"
],
"token_endpoint_auth_method": "private_key_jwt"
}
|
1 | http response | url:https://isamfed.com:30443/mga/sps/oauth/oauth20/register/OIDCDefinition status_code:200
|
1 | RegistrationResponse | {
"application_type": "web",
"client_id": "XCOYQxIFxHyDZmjSpYIN",
"client_id_issued_at": 1560784801,
"client_secret": "II2TBGHMpiQjFip5vT1l",
"client_secret_expires_at": 0,
"contacts": [
"roland@example.com"
],
"grant_types": [
"implicit",
"authorization_code"
],
"jwks_uri": "https://op.certification.openid.net:61716/static/jwks_61716.json",
"post_logout_redirect_uris": [
"https://op.certification.openid.net:61716/logout"
],
"redirect_uris": [
"https://op.certification.openid.net:61716/authz_cb"
],
"registration_access_token": "2md33s2deGCeXv0jflMW",
"registration_client_uri": "https://isamfed.com:30443/mga/sps/oauth/oauth20/register/OIDCDefinition?client_id=XCOYQxIFxHyDZmjSpYIN",
"response_types": [
"code",
"id_token"
],
"token_endpoint_auth_method": "private_key_jwt"
}
|
1 | phase | <--<-- 3 --- AsyncAuthn -->--> |
1 | AuthorizationRequest | {
"client_id": "XCOYQxIFxHyDZmjSpYIN",
"nonce": "5BbMDVHLbeVGoi70",
"redirect_uri": "https://op.certification.openid.net:61716/authz_cb",
"response_type": "code id_token",
"scope": "openid profile email address phone",
"state": "HWgMtGYz81UtFbn2"
}
|
1 | redirect url | https://isamfed.com:30443/mga/sps/oauth/oauth20/authorize?state=HWgMtGYz81UtFbn2&nonce=5BbMDVHLbeVGoi70&response_type=code+id_token&scope=openid+profile+email+address+phone&redirect_uri=https%3A%2F%2Fop.certification.openid.net%3A61716%2Fauthz_cb&client_id=XCOYQxIFxHyDZmjSpYIN |
1 | redirect | https://isamfed.com:30443/mga/sps/oauth/oauth20/authorize?state=HWgMtGYz81UtFbn2&nonce=5BbMDVHLbeVGoi70&response_type=code+id_token&scope=openid+profile+email+address+phone&redirect_uri=https%3A%2F%2Fop.certification.openid.net%3A61716%2Fauthz_cb&client_id=XCOYQxIFxHyDZmjSpYIN |
2 | http args | {} |
2 | response | URL with fragment |
2 | response | state=HWgMtGYz81UtFbn2&code=BDcRNIhgBnVYOYypKjIS84d0p3QH15&id_token=eyJhbGciOiJSU0EtT0FFUC0yNTYiLCJlbmMiOiJBMTI4Q0JDLUhTMjU2Iiwia2lkIjoiZ3RINHYzWXIyUXFMcmVCU3owQnlRUTh2a2Y4ZUZvMUtJaXQzcy0zQmJ3dyIsImN0eSI6IkpXVCJ9.AblynKhnucJUAeom1JTzTSaC5XZjzOC_xeOwqwHZJZloNJ04gljQ3yr8v52TNpjFGZ59EcDPy7HFjs2FU7zmsp2XMJhElFAa0Gw3dPThttNHIb1aRDyJiuSlSb2518Dr-P6Oah83nH3mqfEGLqiGrm_1gvdWIII1Pmq1bCII3jQ3DzoA96LTWukFb3_LfOnr8WIw29eN-PpCYvl6tTgQLlaq7sI-0xtpPZ0OCZM6p9eAnWq02crI6trInFRa6hKe0RDgCIHe2wL4otY6QanJGuFx4F1sHZFoVz21Q34lkveHUPp_mrwM2VrPaKlwalKsbW0s2OyruJTA6GmMwPmdWA.MKvxgU7-mWL3vG_cMkIp_w.pu42TbW2COJwidQ_KzZF4wWH3AHTRfLLoXTvk40bsGzntLXtMCgBxAMQIoQj_f4MdMVmetSXbEV7cVO0ywRK5blOysVaNlAVt_hrYWLcqrfQ7WtJMJTJTRQmqUHHvLoo0lcMP_bo_abDzhxv9F1rw7iGrtiuXvr4Ov5mYL2A73yvbb3qkn-__M6Gm4T4aT4TFhiZ8ksJ38SrazpnTyWOkWXpjAmOau-kCNflI7PXcSAF1kzpwHpBXkqovH9-DEN-vHDTvrB5G3NCW5lobbQzNrC7PVBidIjTDVV14nrpZUldilE0jHeQRsyBz5tuqNrlawgFrKrktEoW0XZH3lCS128JJar0upWF8u6q8eDKBzWD6RcnG5fpEp_4hx-RaUVrXI9LEDUPFbLNgm1IH-gUHNKuzd9VHwIj0pz2t4g6YRzgzwiWvmHQJMNZn8Z950FgMfsf6Ah1-ado8h--MygKOcA40lOa7SCEDEiil4y09vCRFA17SJUAjQSWecMdKQgyIqqjiInHY09LzAaejwp91IExV3BYoFmkLJYFdE5TG67atU9bTY9SBFsjII5vxYSrjkYY8SF8B9AI0DIgiw2P1IT3rTLuO46G2xdTIDv0pn3ZXolcW_lTVeK9w0OPHXMzWRwba54vepMAQtPG7-yhC4XrMO6YaxcRQN9XJm6T1M-zRKf4CiHYvy2zYOVBTpE4aNI0TEDdbvzAAUQSed_uNmO8jRT5wgggNRzYUv9OUJHfTvG4JJRflLR72UBFh1W-qJCURvl_IeNf5pS38KEI4XN8MZtEQrSGNm7C5O_TXRg-7KPcW4qZrULV3TdtuaqM-jtwcF9aNjiS5BNvBfoKLDi9VwfPGRjSQTnELdlxyRxU5jN0It9gruZoNGHm15Y6XbTOzyxISSAS2IOcPlS9M2QKrwOXQWGHgrnJlmmf7oOeypggVONPJ7smM-WhMoiSYbPRWK7NlWAdHXqet_q5qycgk5CJMUbJCKY7OKGyFR_z5PG6zDCJC6opPT57F4D1SNE0_o6BBTrIQzK3bPLPKyos3-W6zwBR6d8f20bMw_0AUHPKi-AblHFSdrTft9ogpQts1Ry8Luq7aCDxEG_pp7ztGbeMClfenG_KkzmtwHtELKgoiyu0UfsTeSQGLD9g.MxpMOrb5KrwNiQXCKUQj4Q |
2 | response | {'state': 'HWgMtGYz81UtFbn2', 'code': 'BDcRNIhgBnVYOYypKjIS84d0p3QH15', 'id_token': 'eyJhbGciOiJSU0EtT0FFUC0yNTYiLCJlbmMiOiJBMTI4Q0JDLUhTMjU2Iiwia2lkIjoiZ3RINHYzWXIyUXFMcmVCU3owQnlRUTh2a2Y4ZUZvMUtJaXQzcy0zQmJ3dyIsImN0eSI6IkpXVCJ9.AblynKhnucJUAeom1JTzTSaC5XZjzOC_xeOwqwHZJZloNJ04gljQ3yr8v52TNpjFGZ59EcDPy7HFjs2FU7zmsp2XMJhElFAa0Gw3dPThttNHIb1aRDyJiuSlSb2518Dr-P6Oah83nH3mqfEGLqiGrm_1gvdWIII1Pmq1bCII3jQ3DzoA96LTWukFb3_LfOnr8WIw29eN-PpCYvl6tTgQLlaq7sI-0xtpPZ0OCZM6p9eAnWq02crI6trInFRa6hKe0RDgCIHe2wL4otY6QanJGuFx4F1sHZFoVz21Q34lkveHUPp_mrwM2VrPaKlwalKsbW0s2OyruJTA6GmMwPmdWA.MKvxgU7-mWL3vG_cMkIp_w.pu42TbW2COJwidQ_KzZF4wWH3AHTRfLLoXTvk40bsGzntLXtMCgBxAMQIoQj_f4MdMVmetSXbEV7cVO0ywRK5blOysVaNlAVt_hrYWLcqrfQ7WtJMJTJTRQmqUHHvLoo0lcMP_bo_abDzhxv9F1rw7iGrtiuXvr4Ov5mYL2A73yvbb3qkn-__M6Gm4T4aT4TFhiZ8ksJ38SrazpnTyWOkWXpjAmOau-kCNflI7PXcSAF1kzpwHpBXkqovH9-DEN-vHDTvrB5G3NCW5lobbQzNrC7PVBidIjTDVV14nrpZUldilE0jHeQRsyBz5tuqNrlawgFrKrktEoW0XZH3lCS128JJar0upWF8u6q8eDKBzWD6RcnG5fpEp_4hx-RaUVrXI9LEDUPFbLNgm1IH-gUHNKuzd9VHwIj0pz2t4g6YRzgzwiWvmHQJMNZn8Z950FgMfsf6Ah1-ado8h--MygKOcA40lOa7SCEDEiil4y09vCRFA17SJUAjQSWecMdKQgyIqqjiInHY09LzAaejwp91IExV3BYoFmkLJYFdE5TG67atU9bTY9SBFsjII5vxYSrjkYY8SF8B9AI0DIgiw2P1IT3rTLuO46G2xdTIDv0pn3ZXolcW_lTVeK9w0OPHXMzWRwba54vepMAQtPG7-yhC4XrMO6YaxcRQN9XJm6T1M-zRKf4CiHYvy2zYOVBTpE4aNI0TEDdbvzAAUQSed_uNmO8jRT5wgggNRzYUv9OUJHfTvG4JJRflLR72UBFh1W-qJCURvl_IeNf5pS38KEI4XN8MZtEQrSGNm7C5O_TXRg-7KPcW4qZrULV3TdtuaqM-jtwcF9aNjiS5BNvBfoKLDi9VwfPGRjSQTnELdlxyRxU5jN0It9gruZoNGHm15Y6XbTOzyxISSAS2IOcPlS9M2QKrwOXQWGHgrnJlmmf7oOeypggVONPJ7smM-WhMoiSYbPRWK7NlWAdHXqet_q5qycgk5CJMUbJCKY7OKGyFR_z5PG6zDCJC6opPT57F4D1SNE0_o6BBTrIQzK3bPLPKyos3-W6zwBR6d8f20bMw_0AUHPKi-AblHFSdrTft9ogpQts1Ry8Luq7aCDxEG_pp7ztGbeMClfenG_KkzmtwHtELKgoiyu0UfsTeSQGLD9g.MxpMOrb5KrwNiQXCKUQj4Q'} |
2 | AuthorizationResponse | {
"code": "BDcRNIhgBnVYOYypKjIS84d0p3QH15",
"id_token": {
"aud": [
"XCOYQxIFxHyDZmjSpYIN"
],
"c_hash": "qjTtle4-bzzL7TC3eDo4fQ",
"email": "test_isamfed@gmail.com",
"email_verified": false,
"exp": 1560788221,
"iat": 1560784801,
"iss": "https://isamfed.com:30443/test",
"name": "isamfed testuser",
"nonce": "5BbMDVHLbeVGoi70",
"phone_number": "87654215",
"phone_number_verified": false,
"sub": "testuser"
},
"state": "HWgMtGYz81UtFbn2"
}
|
2 | phase | <--<-- 4 --- AccessToken -->--> |
2 | request | op_args: {'state': 'HWgMtGYz81UtFbn2'}, req_args: {'redirect_uri': 'https://op.certification.openid.net:61716/authz_cb'} |
2 | do_access_token_request | kwargs:{'request_args': {'redirect_uri': 'https://op.certification.openid.net:61716/authz_cb', 'code': 'BDcRNIhgBnVYOYypKjIS84d0p3QH15', 'state': 'HWgMtGYz81UtFbn2', 'grant_type': 'authorization_code', 'client_id': 'XCOYQxIFxHyDZmjSpYIN'}, 'state': 'HWgMtGYz81UtFbn2', 'authn_method': 'private_key_jwt'}
|
2 | AccessTokenRequest | {
"client_assertion": "eyJhbGciOiJSUzI1NiIsImtpZCI6Ind0MjVPZ3lSX256RzNPb1E3ZGFhMnJMNi1nTW5GZGZSekJqaFVWUHU4UlEifQ.eyJpc3MiOiAiWENPWVF4SUZ4SHlEWm1qU3BZSU4iLCAic3ViIjogIlhDT1lReElGeEh5RFptalNwWUlOIiwgImF1ZCI6IFsiaHR0cHM6Ly9pc2FtZmVkLmNvbTozMDQ0My9tZ2Evc3BzL29hdXRoL29hdXRoMjAvdG9rZW4iXSwgImp0aSI6ICJiYzhyVDhuakdhb1hTS2d4N1prWUhpa2pMRGg5SndQdyIsICJleHAiOiAxNTYwNzg1NDAyLCAiaWF0IjogMTU2MDc4NDgwMn0.lrajU3r8egtgRuWj2tZKIha9Auk2RKwwNlVNxAm39Sk6ccGFN79BAzucX_d25qMZY17m_ZABjdvct4apUZK1JlH6IIVCN5bzBxqr34WyNVhPSZEaRzmLsMW3h1oTGlGK60i_wM17iVuK-rATQe60TsWrKojw0cMzViEKulBFMA_91wHrc7QzUdmp_QoMYlDqCCahKk_D8rJiKInlUc-sZXUz-w5L60BSjQJC8VigHLVXguRtMFmKuTlTrbAYOXoC1H6G96HQMitECG394B1uunWMVVr5E4LGkJM9nC2fN7rJk8jlgCpJdv1WXg4wAApjVYYc6z6EZ3KsRCGIeN_dHQ",
"client_assertion_type": "urn:ietf:params:oauth:client-assertion-type:jwt-bearer",
"code": "BDcRNIhgBnVYOYypKjIS84d0p3QH15",
"grant_type": "authorization_code",
"redirect_uri": "https://op.certification.openid.net:61716/authz_cb",
"state": "HWgMtGYz81UtFbn2"
}
|
2 | request_url | https://isamfed.com:30443/mga/sps/oauth/oauth20/token |
2 | request_http_args | {'headers': {'Content-Type': 'application/x-www-form-urlencoded'}} |
2 | request | grant_type=authorization_code&redirect_uri=https%3A%2F%2Fop.certification.openid.net%3A61716%2Fauthz_cb&code=BDcRNIhgBnVYOYypKjIS84d0p3QH15&state=HWgMtGYz81UtFbn2&client_assertion=eyJhbGciOiJSUzI1NiIsImtpZCI6Ind0MjVPZ3lSX256RzNPb1E3ZGFhMnJMNi1nTW5GZGZSekJqaFVWUHU4UlEifQ.eyJpc3MiOiAiWENPWVF4SUZ4SHlEWm1qU3BZSU4iLCAic3ViIjogIlhDT1lReElGeEh5RFptalNwWUlOIiwgImF1ZCI6IFsiaHR0cHM6Ly9pc2FtZmVkLmNvbTozMDQ0My9tZ2Evc3BzL29hdXRoL29hdXRoMjAvdG9rZW4iXSwgImp0aSI6ICJiYzhyVDhuakdhb1hTS2d4N1prWUhpa2pMRGg5SndQdyIsICJleHAiOiAxNTYwNzg1NDAyLCAiaWF0IjogMTU2MDc4NDgwMn0.lrajU3r8egtgRuWj2tZKIha9Auk2RKwwNlVNxAm39Sk6ccGFN79BAzucX_d25qMZY17m_ZABjdvct4apUZK1JlH6IIVCN5bzBxqr34WyNVhPSZEaRzmLsMW3h1oTGlGK60i_wM17iVuK-rATQe60TsWrKojw0cMzViEKulBFMA_91wHrc7QzUdmp_QoMYlDqCCahKk_D8rJiKInlUc-sZXUz-w5L60BSjQJC8VigHLVXguRtMFmKuTlTrbAYOXoC1H6G96HQMitECG394B1uunWMVVr5E4LGkJM9nC2fN7rJk8jlgCpJdv1WXg4wAApjVYYc6z6EZ3KsRCGIeN_dHQ&client_assertion_type=urn%3Aietf%3Aparams%3Aoauth%3Aclient-assertion-type%3Ajwt-bearer |
3 | http response | url:https://isamfed.com:30443/mga/sps/oauth/oauth20/token status_code:200
|
3 | response | {'access_token': '0cQ80dCG18C0oO2hC1j7', 'refresh_token': 'Cf5xTKl4zOzWhmzKFXdU7OKYrEz2pxK92z3gXTbv', 'scope': 'address phone openid profile email', 'id_token': 'eyJhbGciOiJSU0EtT0FFUC0yNTYiLCJlbmMiOiJBMTI4Q0JDLUhTMjU2Iiwia2lkIjoiZ3RINHYzWXIyUXFMcmVCU3owQnlRUTh2a2Y4ZUZvMUtJaXQzcy0zQmJ3dyIsImN0eSI6IkpXVCJ9.hjhTwl9QB6UZybUUWfHe1F6H_HGhgEhuuusQi-p2dhUsHbOdoHsY1z3fzJ9yrmdZJHZQSQeuZC9VPcZLGpHyIrzEmz0FqFQ0YfnTxdMA7pnz5SGcbiGpk1AapmS5Fx_RHXhRImov8U_aLAxUAgZ2y0hzBAd7-HmIVz7rgpd73oZwG4yYTqT1RyFxCImtxPc6RZgEpTKGnfunBWpOZzKAB5C2vm1zLhEEm_-d3jOOt5JGM1VTOFcc-vwp65lWgneJJNIeeUSmnP4Yh3oa-kzS6UsRhSKeUEGaIGoM3_oZEUExCXO52oaCotmtDrcHKFASBfjIrUZ6GEb7wJPv1QYTDQ.60c7pIlU6Zvl7hJDT1r6pg.U2zT0FZHdkLEWzDLc3Fb0mIIKsarfoWdDyF9GP15-W6AGg0D5xP6GFCsO_lrsov1wpYkQ6WOgUd1Cc1cuuiCHA2r9HpqsFvgfifbrlUro3ySPNDan2NipRpllOpaHCcPuoXuKWpTU41L4bFdDZ3qcD_VC443FJZB0ToJ4csrAztbck5rZNUdST2WQdzR_oGGAAtm98MFjU15iNDm45gzJzXFNShNxdOoRcjRWWbxFmF5_Jm9KuUUlfzvP8gSvziNHPXWNKBNJrCOQJKeEJl2mdianjx9NEOglcysnfQZ12Xqmg7oZY5uVAziv37lOkD2NdutpLJhqEWzDy6RKuVd7Yj3hAXNW6-pUik3sBS_PEP6yS51HNJKWwc9rphlI45_q_yizSEojhB-zxaSc2wRLnGmtTo0w0rAjmj8pv9b0IeH0uD8VkFi49jffMBH354w2ipA6Atz7rDOcHUeRzUQwqlTS8_N1QjRBwpqxhHoDm6vcNlFYl9b6iZOMwyzpzdvvQ-Qrv3g7UehzKs8DTKMkFiahx3ibS2HrbwhyPrJB7jpRhj9hu1YISqlgd6SZNOObd3Bcom9ILsH5INMbXzjUuLLv001pDqDXaVbeG6QiieC2B2ozoRShRTKWfBb5GhWzvKNcwnuEyhdZutUwmuZBOxlsY_3ffS_PbC7NLl2tT1Zqs8tR70N6wAV_s1U-PFV3gfTXVGR-6l3G2POTwaJhySE3DTD-JHbPBhv-DLiRtkeXY3uJ1X0HB9ZCmYYWS-hMdgTKrbQSGa2BqasqF1SfNuNqE2ckGsPlsx8oXXSMJJ-w6g2almINNJKfrASxxe4lBaWD3n3EKyMtoYb5rH8MBB74G59B3WcmONFhsEYyAK4M4dG7TdYBAOEpx7XQAbNI_Mv3vWWOKTyBfQSTeZNBlwmJqJDXvsKStntT1fdbDwKg1KKuogqIcnrlzk_T78mIqmsRJPVn2BDIJrIcWMgQFF8b2p1Igg5vdlGvHuDxrIxK5xoqNkNK06w1bakaEQPGrCtPHQf9uXo92fzeiuwXsnpPS7Zve01IpeiKRcjNVoOIzcgW6EgxFOHiph-3pOxeZyvcme6_SrMkBjFXcC0-po4rYan4KpOXzuPp149G7p7NU4oKTAj8ABwKDhZFpLPZV3b0AO1dysLLqvjCyEJ5mLNgkWNKbO7D6X2e_pUR5fGFwgSQZHGllzv4_J4qXjU.9X6-XFMH0CktduPKGQ1QNw', 'token_type': 'bearer', 'expires_in': 3599} |
3 | AccessTokenResponse | {
"access_token": "0cQ80dCG18C0oO2hC1j7",
"expires_in": 3599,
"id_token": {
"at_hash": "RGoxLKzcccblRNi9gMhp_w",
"aud": [
"XCOYQxIFxHyDZmjSpYIN"
],
"email": "test_isamfed@gmail.com",
"email_verified": false,
"exp": 1560788223,
"iat": 1560784803,
"iss": "https://isamfed.com:30443/test",
"name": "isamfed testuser",
"nonce": "5BbMDVHLbeVGoi70",
"phone_number": "87654215",
"phone_number_verified": false,
"rt_hash": "XS4SdE73X02dIHKJ1Wcfeg",
"sub": "testuser"
},
"refresh_token": "Cf5xTKl4zOzWhmzKFXdU7OKYrEz2pxK92z3gXTbv",
"scope": "address phone openid profile email",
"token_type": "bearer"
}
|
3 | jws header | {'kid': '_uhPdeGrTWxobFeH0XbzjJpRrzp3CB9nknx1yFV1G-0', 'alg': 'RS256'} |
3 | jwe header | {'alg': 'RSA-OAEP-256', 'enc': 'A128CBC-HS256', 'kid': 'gtH4v3Yr2QqLreBSz0ByQQ8vkf8eFo1KIit3s-3Bbww', 'cty': 'JWT'} |
3 | phase | <--<-- 5 --- UserInfo -->--> |
3 | do_user_info_request | kwargs:{'state': 'HWgMtGYz81UtFbn2', 'method': 'GET', 'authn_method': 'bearer_header'}
|
3 | request | {'body': None} |
3 | request_url | https://isamfed.com:30443/mga/sps/oauth/oauth20/userinfo |
3 | request_http_args | {'headers': {'Authorization': 'Bearer 0cQ80dCG18C0oO2hC1j7'}} |
3 | http response | url:https://isamfed.com:30443/mga/sps/oauth/oauth20/userinfo status_code:200
|
3 | OpenIDSchema | {
"email": "test_isamfed@gmail.com",
"email_verified": false,
"name": "isamfed testuser",
"phone_number": "87654215",
"phone_number_verified": false,
"sub": "testuser"
}
|
3 | OpenIDSchema | {
"email": "test_isamfed@gmail.com",
"email_verified": false,
"name": "isamfed testuser",
"phone_number": "87654215",
"phone_number_verified": false,
"sub": "testuser"
}
|
3 | phase | <--<-- 6 --- Done -->--> |
3 | end | |
3 | assertion | VerifyScopes |
3 | condition | verify-scopes: status=WARNING, message=The following claims were missing from the returned information: ['given_name', 'family_name', 'middle_name', 'nickname', 'profile', 'picture', 'website', 'gender', 'birthdate', 'zoneinfo', 'locale', 'updated_at', 'preferred_username', 'address'] [Verifies that the claims corresponding to the requested scopes are returned] |
3 | assertion | CheckHTTPResponse |
3 | condition | check-http-response: status=OK [Checks that the HTTP response status is within the 200 or 300 range. Also does some extra JSON checks] |
3 | assertion | VerifyResponse |
3 | condition | verify-response: status=OK [Checks that the last response was one of a possible set of OpenID Connect Responses] |
3 | condition | Done: status=OK |