Test Info

Issuerhttps://isamfed.com:30443/test
Profile[]
Test IDOP-prompt-login
Test descriptionRequest with prompt=login
Timestamp2019-06-17T15:05:26Z

Conditions


multiple-sign-on: status=OK [Verifies that multiple authentications was used in the flow]
verify-response: status=OK [Checks that the last response was one of a possible set of OpenID Connect Responses]
Done: status=OK

Trace Output

0phase<--<-- 0 --- Webfinger -->-->
0not expected to doWebFinger
0phase<--<-- 1 --- Discovery -->-->
0provider_config
kwargs:{'issuer': 'https://isamfed.com:30443/test'}
1http response
url:https://isamfed.com:30443/test/.well-known/openid-configuration status_code:200
1ProviderConfigurationResponse
{
    "authorization_endpoint": "https://isamfed.com:30443/mga/sps/oauth/oauth20/authorize",
    "claims_parameter_supported": false,
    "claims_supported": [
        "realmName",
        "preferred_username",
        "given_name",
        "uid",
        "upn",
        "groupIds",
        "employee_id",
        "name",
        "tenantId",
        "mobile_number",
        "department",
        "job_title",
        "family_name",
        "email"
    ],
    "device_authorize_endpoint": "https://isamfed.com:30443/mga/sps/oauth/oauth20/device_authorize",
    "grant_types_supported": [
        "urn:ietf:params:oauth:grant-type:jwt-bearer",
        "implicit",
        "urn:ietf:params:oauth:grant-type:saml2-bearer",
        "urn:ietf:params:oauth:grant-type:device_code",
        "client_credentials",
        "password",
        "authorization_code",
        "refresh_token"
    ],
    "id_token_encryption_alg_values_supported": [
        "RSA-OAEP-256"
    ],
    "id_token_encryption_enc_values_supported": [
        "A128CBC-HS256"
    ],
    "id_token_signing_alg_values_supported": [
        "RS256"
    ],
    "introspect_endpoint": "https://isamfed.com:30443/mga/sps/oauth/oauth20/introspect",
    "issuer": "https://isamfed.com:30443/test",
    "jwks_uri": "https://isamfed.com:30443/mga/sps/jwks",
    "name": "OIDCDefinition",
    "poc": "https://isamfed.com:30443/mga/",
    "registration_endpoint": "https://isamfed.com:30443/mga/sps/oauth/oauth20/register/OIDCDefinition",
    "request_parameter_supported": true,
    "request_uri_parameter_supported": true,
    "require_request_uri_registration": false,
    "response_modes_supported": [
        "fragment",
        "form_post"
    ],
    "response_types_supported": [
        "token",
        "id_token",
        "token id_token",
        "code",
        "code id_token",
        "code token id_token",
        "code token",
        "none"
    ],
    "revocation_endpoint": "https://isamfed.com:30443/mga/sps/oauth/oauth20/revoke",
    "subject_types_supported": [
        "public"
    ],
    "token_endpoint": "https://isamfed.com:30443/mga/sps/oauth/oauth20/token",
    "token_endpoint_auth_methods_supported": [
        "private_key_jwt",
        "client_secret_post",
        "client_secret_basic"
    ],
    "user_authorize_endpoint": "https://isamfed.com:30443/mga/sps/oauth/oauth20/user_authorize",
    "userinfo_endpoint": "https://isamfed.com:30443/mga/sps/oauth/oauth20/userinfo",
    "userinfo_signing_alg_values_supported": [
        "RS256"
    ],
    "version": "3.0"
}
1phase<--<-- 2 --- Registration -->-->
1register
kwargs:{'response_types': ['code id_token token'], 'grant_types': ['authorization_code', 'implicit'], 'application_name': 'OIC test tool', 'application_type': 'web', 'redirect_uris': ['https://op.certification.openid.net:61737/authz_cb'], 'contacts': ['roland@example.com'], 'post_logout_redirect_uris': ['https://op.certification.openid.net:61737/logout'], 'url': 'https://isamfed.com:30443/mga/sps/oauth/oauth20/register/OIDCDefinition', 'jwks_uri': 'https://op.certification.openid.net:61737/static/jwks_61737.json', 'token_endpoint_auth_method': 'private_key_jwt'}
1RegistrationRequest
{
    "application_type": "web",
    "contacts": [
        "roland@example.com"
    ],
    "grant_types": [
        "authorization_code",
        "implicit"
    ],
    "jwks_uri": "https://op.certification.openid.net:61737/static/jwks_61737.json",
    "post_logout_redirect_uris": [
        "https://op.certification.openid.net:61737/logout"
    ],
    "redirect_uris": [
        "https://op.certification.openid.net:61737/authz_cb"
    ],
    "response_types": [
        "code id_token token"
    ],
    "token_endpoint_auth_method": "private_key_jwt"
}
1http response
url:https://isamfed.com:30443/mga/sps/oauth/oauth20/register/OIDCDefinition status_code:200
1RegistrationResponse
{
    "application_type": "web",
    "client_id": "eVvFWE7fraJeAY95afAl",
    "client_id_issued_at": 1560783917,
    "client_secret": "mIGKbESYfEzk71kmwu7v",
    "client_secret_expires_at": 0,
    "contacts": [
        "roland@example.com"
    ],
    "grant_types": [
        "authorization_code",
        "implicit"
    ],
    "jwks_uri": "https://op.certification.openid.net:61737/static/jwks_61737.json",
    "post_logout_redirect_uris": [
        "https://op.certification.openid.net:61737/logout"
    ],
    "redirect_uris": [
        "https://op.certification.openid.net:61737/authz_cb"
    ],
    "registration_access_token": "OWJbdSohBx6Nls3LEZr2",
    "registration_client_uri": "https://isamfed.com:30443/mga/sps/oauth/oauth20/register/OIDCDefinition?client_id=eVvFWE7fraJeAY95afAl",
    "response_types": [
        "code",
        "id_token",
        "token"
    ],
    "token_endpoint_auth_method": "private_key_jwt"
}
1phase<--<-- 3 --- AsyncAuthn -->-->
1AuthorizationRequest
{
    "client_id": "eVvFWE7fraJeAY95afAl",
    "nonce": "IXwnf9PAL8HWmNDx",
    "redirect_uri": "https://op.certification.openid.net:61737/authz_cb",
    "response_type": "code id_token token",
    "scope": "openid",
    "state": "0K8tGyFbVWp1xkQ5"
}
1redirect urlhttps://isamfed.com:30443/mga/sps/oauth/oauth20/authorize?state=0K8tGyFbVWp1xkQ5&nonce=IXwnf9PAL8HWmNDx&response_type=code+id_token+token&scope=openid&redirect_uri=https%3A%2F%2Fop.certification.openid.net%3A61737%2Fauthz_cb&client_id=eVvFWE7fraJeAY95afAl
1redirecthttps://isamfed.com:30443/mga/sps/oauth/oauth20/authorize?state=0K8tGyFbVWp1xkQ5&nonce=IXwnf9PAL8HWmNDx&response_type=code+id_token+token&scope=openid&redirect_uri=https%3A%2F%2Fop.certification.openid.net%3A61737%2Fauthz_cb&client_id=eVvFWE7fraJeAY95afAl
2http args{}
3responseURL with fragment
3responseaccess_token=F628Ubo5DQI97LzR9vce&state=0K8tGyFbVWp1xkQ5&expires_in=3599&token_type=bearer&code=o1LZdXeITbQSF5Gxxxxb2g5QVhiQLP&scope=openid&id_token=eyJhbGciOiJSU0EtT0FFUC0yNTYiLCJlbmMiOiJBMTI4Q0JDLUhTMjU2Iiwia2lkIjoiZ3RINHYzWXIyUXFMcmVCU3owQnlRUTh2a2Y4ZUZvMUtJaXQzcy0zQmJ3dyIsImN0eSI6IkpXVCJ9.RnjD64fONpiCQ1AEty3hfg10_VPp38aop3NKsjjqPmFFUyVKJoVjlplLew5QYAmCg9r5L7oAbWviI91LEqReDm67cCpUUtlv2RDH3HXEZAJn9-rUns9vhTdfh_nFzVx3yGEhdtKmS0OD6sNWy2sCJPsdKg8E-XHNVwK3W7Rz5Wjzte2LfkvEfwZ4k69xWiMkT8PVGLoDrLdZuT3d_nHEt02AXnDjAdA-nGJnSVHc8DVG6kOeL3-npbyI1WrhGLTbmZMHxDxgJ-BgF_VNFUGfAC8qHU2D7U_DI4pPoAc0GiYsGJOJ8xcWFJBftNiU44lClPzFT2-tfC56AGESlIneVQ.B9IKONV8Q_qftrRq8dsYhg.zwhT-K63p-1ogfdMAU8LvMUcNGrRj3rMt6tIjQ3XU-livdEyXw5jpE-hhSk7qAKdUSGMQt-rmh3p_eiRc6sPT7MjiUuWA0bjMgMO_Zj-dSL2duwuf_s14DhzhLDaM4hEbBtRL6neEI4nauyE0M5_7t08uo8zGDieiDI2BN5P0Z_vQ5PSMWJyeJcvTsa2QJ4MQY1VZZEy3jvdolD25wPGLTZ1w8EOPV6ZrY80bjzHa46E-TPPmi7GMrmUPIyl8uHoGcX0Pq-NElLYZj0t9eVR3Dh3bGLCxAubm6ovW5B-OpRrTzeu9Mfe3T9Z_3vXopzRav-SrJev5N_mBC86K8FObMNw84b8LrAJlawxsYCU_f4BKohWWJsQaMizPeKaz8AfPDfqRsyLjNk6t1TFM0CmzCr4stTQ8hTHUQDfkFScl5K1pl-IHxkYk5czPcC-Y3NO2JBLVcHtDsH_D03uYHZPOs-T7izOCe7EgByqeleB6dnaDjbN_pn1Hc-n9Uc44dveofNrBGJuqRGSSKLD6jzIuVPinfzEyiLmk4XH643VKQ0CicxD8p8XjsrdWnKhjLfF6zqzDrWRnaO9hioR5FwNPaikeax_w_BOC8vW2aq1-1DIxEicb-ahqWnCnbQrLpcvWJt8YLaAbus4UmE5Tze8tPmm9VbDh8kb_ljso2LWmwn0sbjHOmttFCDHHUd__IXELWrOVXYBs6ex_FpjKynNKNg0mMJynkQh87WJ52XrQLp9iTphnVjuAT8G39Roe52I83eV9axFg0pb2BWN7mwM2KxDytl8SL5yks2XNzdfsz-u6n0RWC42mb-04Z3USF39ZeWG9E5mjxVvqXlMaedhhhsWdPcOrPYGgvYlKI-9LsPRMXe9hVqXntb23JlTJ8IoQBqcg8fk3EfCdYvl-HUshS4CRArxI-9WTJCB253BnvWP8BAOM7bWe9widBkz-eL2hiEcTfPWFke98GqrrpkZyA.yz1MpxYYLReL4XwPQdXQgQ
3response{'access_token': 'F628Ubo5DQI97LzR9vce', 'state': '0K8tGyFbVWp1xkQ5', 'expires_in': 3599, 'token_type': 'bearer', 'code': 'o1LZdXeITbQSF5Gxxxxb2g5QVhiQLP', 'scope': 'openid', 'id_token': 'eyJhbGciOiJSU0EtT0FFUC0yNTYiLCJlbmMiOiJBMTI4Q0JDLUhTMjU2Iiwia2lkIjoiZ3RINHYzWXIyUXFMcmVCU3owQnlRUTh2a2Y4ZUZvMUtJaXQzcy0zQmJ3dyIsImN0eSI6IkpXVCJ9.RnjD64fONpiCQ1AEty3hfg10_VPp38aop3NKsjjqPmFFUyVKJoVjlplLew5QYAmCg9r5L7oAbWviI91LEqReDm67cCpUUtlv2RDH3HXEZAJn9-rUns9vhTdfh_nFzVx3yGEhdtKmS0OD6sNWy2sCJPsdKg8E-XHNVwK3W7Rz5Wjzte2LfkvEfwZ4k69xWiMkT8PVGLoDrLdZuT3d_nHEt02AXnDjAdA-nGJnSVHc8DVG6kOeL3-npbyI1WrhGLTbmZMHxDxgJ-BgF_VNFUGfAC8qHU2D7U_DI4pPoAc0GiYsGJOJ8xcWFJBftNiU44lClPzFT2-tfC56AGESlIneVQ.B9IKONV8Q_qftrRq8dsYhg.zwhT-K63p-1ogfdMAU8LvMUcNGrRj3rMt6tIjQ3XU-livdEyXw5jpE-hhSk7qAKdUSGMQt-rmh3p_eiRc6sPT7MjiUuWA0bjMgMO_Zj-dSL2duwuf_s14DhzhLDaM4hEbBtRL6neEI4nauyE0M5_7t08uo8zGDieiDI2BN5P0Z_vQ5PSMWJyeJcvTsa2QJ4MQY1VZZEy3jvdolD25wPGLTZ1w8EOPV6ZrY80bjzHa46E-TPPmi7GMrmUPIyl8uHoGcX0Pq-NElLYZj0t9eVR3Dh3bGLCxAubm6ovW5B-OpRrTzeu9Mfe3T9Z_3vXopzRav-SrJev5N_mBC86K8FObMNw84b8LrAJlawxsYCU_f4BKohWWJsQaMizPeKaz8AfPDfqRsyLjNk6t1TFM0CmzCr4stTQ8hTHUQDfkFScl5K1pl-IHxkYk5czPcC-Y3NO2JBLVcHtDsH_D03uYHZPOs-T7izOCe7EgByqeleB6dnaDjbN_pn1Hc-n9Uc44dveofNrBGJuqRGSSKLD6jzIuVPinfzEyiLmk4XH643VKQ0CicxD8p8XjsrdWnKhjLfF6zqzDrWRnaO9hioR5FwNPaikeax_w_BOC8vW2aq1-1DIxEicb-ahqWnCnbQrLpcvWJt8YLaAbus4UmE5Tze8tPmm9VbDh8kb_ljso2LWmwn0sbjHOmttFCDHHUd__IXELWrOVXYBs6ex_FpjKynNKNg0mMJynkQh87WJ52XrQLp9iTphnVjuAT8G39Roe52I83eV9axFg0pb2BWN7mwM2KxDytl8SL5yks2XNzdfsz-u6n0RWC42mb-04Z3USF39ZeWG9E5mjxVvqXlMaedhhhsWdPcOrPYGgvYlKI-9LsPRMXe9hVqXntb23JlTJ8IoQBqcg8fk3EfCdYvl-HUshS4CRArxI-9WTJCB253BnvWP8BAOM7bWe9widBkz-eL2hiEcTfPWFke98GqrrpkZyA.yz1MpxYYLReL4XwPQdXQgQ'}
3AuthorizationResponse
{
    "access_token": "F628Ubo5DQI97LzR9vce",
    "code": "o1LZdXeITbQSF5Gxxxxb2g5QVhiQLP",
    "expires_in": 3599,
    "id_token": {
        "at_hash": "s3tO_9pHdklA1xZL1C_g4g",
        "aud": [
            "eVvFWE7fraJeAY95afAl"
        ],
        "c_hash": "mbCHZjLlKzuURZvXhtaUUg",
        "exp": 1560787338,
        "iat": 1560783918,
        "iss": "https://isamfed.com:30443/test",
        "nonce": "IXwnf9PAL8HWmNDx",
        "sub": "testuser"
    },
    "scope": "openid",
    "state": "0K8tGyFbVWp1xkQ5",
    "token_type": "bearer"
}
3phase<--<-- 4 --- AccessToken -->-->
3requestop_args: {'state': '0K8tGyFbVWp1xkQ5'}, req_args: {'redirect_uri': 'https://op.certification.openid.net:61737/authz_cb'}
3do_access_token_request
kwargs:{'request_args': {'redirect_uri': 'https://op.certification.openid.net:61737/authz_cb', 'code': 'o1LZdXeITbQSF5Gxxxxb2g5QVhiQLP', 'state': '0K8tGyFbVWp1xkQ5', 'grant_type': 'authorization_code', 'client_id': 'eVvFWE7fraJeAY95afAl'}, 'state': '0K8tGyFbVWp1xkQ5', 'authn_method': 'private_key_jwt'}
3AccessTokenRequest
{
    "client_assertion": "eyJhbGciOiJSUzI1NiIsImtpZCI6Ind0MjVPZ3lSX256RzNPb1E3ZGFhMnJMNi1nTW5GZGZSekJqaFVWUHU4UlEifQ.eyJpc3MiOiAiZVZ2RldFN2ZyYUplQVk5NWFmQWwiLCAic3ViIjogImVWdkZXRTdmcmFKZUFZOTVhZkFsIiwgImF1ZCI6IFsiaHR0cHM6Ly9pc2FtZmVkLmNvbTozMDQ0My9tZ2Evc3BzL29hdXRoL29hdXRoMjAvdG9rZW4iXSwgImp0aSI6ICJwV2NFOWs4QXBzY0FGVndjam5KSUJWQ0VxZXlKR3RYdSIsICJleHAiOiAxNTYwNzg0NTE5LCAiaWF0IjogMTU2MDc4MzkxOX0.GNr2AKF_TQjVG9OPs_lsrW4J4IbBcHaIaBRM9Z3KNAjlywEFRmk7xdw2UcTwppzfoqjqb2I17ITnUUstgstuMb84UARYjsViKI5PNXrl-pDViAFQcsEjwwcJVu0REBhLJv4O9FXK4l72eKlI-BheVGgFE4ziIis2ZAq6OcvDfmQjlTWlPpzJ_MSqsBDe6RwfSU0_CMi6BtH39sAsE94QjmT-KJIlvX9meHsu7B2L6EGbfFvrktHJxV0uPFWmIo8TspXAOBUav-0VqCfbDMOtinaFSQs71bL5IKFDnUgeIRP8oT8W4xUEC9xoe-DVSGP-yQZXbD-_UEfUyUDi4EihJA",
    "client_assertion_type": "urn:ietf:params:oauth:client-assertion-type:jwt-bearer",
    "code": "o1LZdXeITbQSF5Gxxxxb2g5QVhiQLP",
    "grant_type": "authorization_code",
    "redirect_uri": "https://op.certification.openid.net:61737/authz_cb",
    "state": "0K8tGyFbVWp1xkQ5"
}
3request_urlhttps://isamfed.com:30443/mga/sps/oauth/oauth20/token
3request_http_args{'headers': {'Content-Type': 'application/x-www-form-urlencoded'}}
3requestgrant_type=authorization_code&redirect_uri=https%3A%2F%2Fop.certification.openid.net%3A61737%2Fauthz_cb&code=o1LZdXeITbQSF5Gxxxxb2g5QVhiQLP&state=0K8tGyFbVWp1xkQ5&client_assertion=eyJhbGciOiJSUzI1NiIsImtpZCI6Ind0MjVPZ3lSX256RzNPb1E3ZGFhMnJMNi1nTW5GZGZSekJqaFVWUHU4UlEifQ.eyJpc3MiOiAiZVZ2RldFN2ZyYUplQVk5NWFmQWwiLCAic3ViIjogImVWdkZXRTdmcmFKZUFZOTVhZkFsIiwgImF1ZCI6IFsiaHR0cHM6Ly9pc2FtZmVkLmNvbTozMDQ0My9tZ2Evc3BzL29hdXRoL29hdXRoMjAvdG9rZW4iXSwgImp0aSI6ICJwV2NFOWs4QXBzY0FGVndjam5KSUJWQ0VxZXlKR3RYdSIsICJleHAiOiAxNTYwNzg0NTE5LCAiaWF0IjogMTU2MDc4MzkxOX0.GNr2AKF_TQjVG9OPs_lsrW4J4IbBcHaIaBRM9Z3KNAjlywEFRmk7xdw2UcTwppzfoqjqb2I17ITnUUstgstuMb84UARYjsViKI5PNXrl-pDViAFQcsEjwwcJVu0REBhLJv4O9FXK4l72eKlI-BheVGgFE4ziIis2ZAq6OcvDfmQjlTWlPpzJ_MSqsBDe6RwfSU0_CMi6BtH39sAsE94QjmT-KJIlvX9meHsu7B2L6EGbfFvrktHJxV0uPFWmIo8TspXAOBUav-0VqCfbDMOtinaFSQs71bL5IKFDnUgeIRP8oT8W4xUEC9xoe-DVSGP-yQZXbD-_UEfUyUDi4EihJA&client_assertion_type=urn%3Aietf%3Aparams%3Aoauth%3Aclient-assertion-type%3Ajwt-bearer
4http response
url:https://isamfed.com:30443/mga/sps/oauth/oauth20/token status_code:200
4response{'access_token': 'YdZX0ByPDWyAeesNyea2', 'refresh_token': 'mpPFqsdTUbqOtUsNp6sWESGEVUHgzMWDDnozCOjY', 'scope': 'openid', 'id_token': 'eyJhbGciOiJSU0EtT0FFUC0yNTYiLCJlbmMiOiJBMTI4Q0JDLUhTMjU2Iiwia2lkIjoiZ3RINHYzWXIyUXFMcmVCU3owQnlRUTh2a2Y4ZUZvMUtJaXQzcy0zQmJ3dyIsImN0eSI6IkpXVCJ9.SB98rl4BDZt8Q6OgOinFaxuCypO0oF8sX1-ysv-hKN2i5L_zmdOdY6inhv0EnbR0wrGljaCiL4I77v4reNkuEx-Ou9JPZUBfAGBqkG4GKPczSxxA0zAwANZNqjIHH-8_OljFFZMFhe15Wty_wd4mKX9IrWcga9cZ7kkzWjkNPpXlbqN89YXWOeW6bdDttmbSG-TOZbmKCi3ERxROVSa0Cukphe69Opghs1ykXanO2Q8ZJMs_kneSsfL9aLrYC2Okdpv6Mvqn8S31rzmpbgL4Zez1VMOINsuLFP7rJ1gEcz_YD7qbe8wX5sWFncAv461DU2f6TFMcaV6HpH3deeNwkw.T4_yNYOwK7kHcrHWxKhseQ.p5SYWQyVOTO-dK2_VQYAFY4wp748Fn_WI0MaTzHISbnr5m_raPXka2esbqSxHnSQiQTOcXcWVuAnRmoNszQMFkwnMB30ypeIHS8Ijr19M7JAa-hfDQA3tsb1qrGqgB5EL-l0JR-8Kg7zPhqm2yMy_7Fucw48nO0eHYGxmrY-cg2S4A1gsseQZ5xYDpBKiGM7I-tMNpiU2FDJXQ8ckAkTQvrTouiRWhnY5GqL-4Y9_YKlfWmdXhe9Uiaa5CfBLY7oEQKz4jg3ECi2H6Tthl2NvPfsuB2TBBYTpMcgjnCvdsc3ZRJm262eOFdTfBS2ksaMiS10t9A8kEQTENn6ODhxOmj1eD0ipFnWKXVexbtEULGFPDNr33ZX9PNSmkWEjNLmjFPSdNMCp1B56omqITve_oFYbbvMAtvHhCik7GcA2bSnmZcnOq8UHi51sTaOzqijyfAQSuzCzY79vmSJDTpF5bpRcrcRyObdo0mFHoPHs8RSlmKZm9Jo_CdQ3AGtNHwZsyfPD94OFMsN1rugslnpogNEX2qWgjp8wss1FYoj8NXu-OMyAPzB0k7szCMoX2c2Pf5VXeYnVP8CV3QKeUtfJKTpuTfF_xNxuicJigoduOzKBuhgGudiYCS4_2-xgk0tS2vDIWxrVzl7t0S4kWpyLgtoLhJMzQSjaz0ms_m8chsTGIuW7LNAzs6KLpR7-NmLbgzdZxBaTfZHUE_GU59TmRz5VZV4YvrasvTLdua3ai1d2y0BLThP8RvzeBAzEurNHZAdPa3pNYd1uLqldpE2qOi6Q2NL-iBsIqXJtK5UWBzcg6p5XhOAhqAViCPBGDEmogw0WmMPI4qBO9NGt1czIyFmmfX83MOqJB7A3vchQJq_xynPdbdAqNdmkWrrNUOi1jvOCRWNQcO28NYeEBNOGz3geltofv7fDc98iyH0wzjqbfWoFhXn776TTkng0gPXNOzXSncTWyuDPRxli_uOOA.3qDcD8pNKmVG8-pPk-LWHg', 'token_type': 'bearer', 'expires_in': 3599}
4AccessTokenResponse
{
    "access_token": "YdZX0ByPDWyAeesNyea2",
    "expires_in": 3599,
    "id_token": {
        "at_hash": "6tycSI7fpSMfkn4UMfGm5g",
        "aud": [
            "eVvFWE7fraJeAY95afAl"
        ],
        "exp": 1560787339,
        "iat": 1560783919,
        "iss": "https://isamfed.com:30443/test",
        "nonce": "IXwnf9PAL8HWmNDx",
        "rt_hash": "28MbBfeTilWt3f1EKtFDkw",
        "sub": "testuser"
    },
    "refresh_token": "mpPFqsdTUbqOtUsNp6sWESGEVUHgzMWDDnozCOjY",
    "scope": "openid",
    "token_type": "bearer"
}
4jws header{'kid': '_uhPdeGrTWxobFeH0XbzjJpRrzp3CB9nknx1yFV1G-0', 'alg': 'RS256'}
4jwe header{'alg': 'RSA-OAEP-256', 'enc': 'A128CBC-HS256', 'kid': 'gtH4v3Yr2QqLreBSz0ByQQ8vkf8eFo1KIit3s-3Bbww', 'cty': 'JWT'}
4phase<--<-- 5 --- Note -->-->
4phase<--<-- 6 --- AsyncAuthn -->-->
4AuthorizationRequest
{
    "client_id": "eVvFWE7fraJeAY95afAl",
    "nonce": "o2zTb5QTSH1bN6A0",
    "prompt": [
        "login"
    ],
    "redirect_uri": "https://op.certification.openid.net:61737/authz_cb",
    "response_type": "code id_token token",
    "scope": "openid",
    "state": "krX4WILwNcRaLmGD"
}
4redirect urlhttps://isamfed.com:30443/mga/sps/oauth/oauth20/authorize?state=krX4WILwNcRaLmGD&nonce=o2zTb5QTSH1bN6A0&response_type=code+id_token+token&scope=openid&redirect_uri=https%3A%2F%2Fop.certification.openid.net%3A61737%2Fauthz_cb&prompt=login&client_id=eVvFWE7fraJeAY95afAl
4redirecthttps://isamfed.com:30443/mga/sps/oauth/oauth20/authorize?state=krX4WILwNcRaLmGD&nonce=o2zTb5QTSH1bN6A0&response_type=code+id_token+token&scope=openid&redirect_uri=https%3A%2F%2Fop.certification.openid.net%3A61737%2Fauthz_cb&prompt=login&client_id=eVvFWE7fraJeAY95afAl
8http args{}
9responseURL with fragment
9responseaccess_token=SqL4Ux5icw1LFsr1QNb3&state=krX4WILwNcRaLmGD&expires_in=3599&token_type=bearer&code=EwcpTA3tHsODJuph5cCW6yP8rzUCL7&scope=openid&id_token=eyJhbGciOiJSU0EtT0FFUC0yNTYiLCJlbmMiOiJBMTI4Q0JDLUhTMjU2Iiwia2lkIjoiZ3RINHYzWXIyUXFMcmVCU3owQnlRUTh2a2Y4ZUZvMUtJaXQzcy0zQmJ3dyIsImN0eSI6IkpXVCJ9.O9PbmVa2PILLPxm7W_OXMMBlvLi9M75zs8B_AH-uj_6qOyrmPsX6FCK07oY6tFpJXf2mebV1pp0j5_sNhSZLXAZOob8YfT5955M10SIW5rRrxe0qJuQke7DXWCWBh7J1e3kHVEukmixcCoXG9XgaYzwsGwOtL4CnPHdPimHIziVjkDQEFDLBnm8zKxeeXK26WPKOnCPafdi1a5L4sUXKiEk3ACgG_0cQHXdJeMwtaUyrjnpx2dYqbpcfg27W1I9pB5WmWAYDIB7D3AQMDzD5iFRrR6I4ZOHldh534tiYSQCaacpJ5O4uaVsX3tH_DxZTBJiUDzsZek7z-J3ScAIYiQ.6U5-5BHt3ZR6bMzsR0WeDw.GOesOfr4nKtn_7fUbVZERHVJNtYdgbMwN3fkSFtXF83dSklKCF43wmExaGrBFQJmCXFg0rczYGr1WhC_uAwIWsutEXa4JHhhlQkRT3FWXJZBsNbzEn_YiDEj0_5oglZtbrB9YyFT8wF5bt2eskt9L41jnoR-WC6sMZLRL4iIsfWOWGe9lR1TluEtfvs1aCQWtSaC7ecshDyAqEnCWjUX1SQa_wB98Z1Oda1GLfGhyRq6yq8fWS_Z_kgwMaYXsh2JJa7g2JDbMQ5tjJ4BxX_yu1jACdXRJ3BJCrxZ7dpKl1NGceGFUe9nqNZYB-9YpVVIvgqeynZoFl6aXHjwyQhmXeiylXRdJB_lF_XiznWH4NCpf5k3VI9L0-JtGNC-GuzVC8Ni-ZGU0zbxyOJ7lVqa7S4xFnh7B2AIKqex0PaUwQCKDc2_0nlL10U0jS-Hxf7FC9tYNaQ_yBA3blI-n_cP8SGhOzgKwkQIde4-PnwYt0ViBFwbE7E0-SwbdtY58d73vgOV9Q0Qv1aLi-u2Gd1V_mSp4VyDtMzgZ7XZV90cr5veoWtooMOFdBiOAZCiZg-PUYVhO9_XwYYtvuPMagTkRw3oj_Zia6NkkythtW5xHbpxGFh63r_SdSIr9x28eQN_DQeNseKUymSQV9sJYcTQi0BSC1Nasnm8yc4Z7H5FzJmBV035mZWlNOHOmJMRQ6ctMYauYEJOjaa5DLoShmWT6shM9l8yAFb5f6nimpX2QhNLyRUoJqAZyeag0rBC6GeNUFJ3W5hfDVWRxw3d6PtYevCakspv02uxpdXA47ja4T3avRYl4NsLvSXlQpdR6ZUvncKkoYw33CAPHkmZ0UG4uS733Iy0ZeNBXyXFs5luKuw60lOxNOYQ6PMiTyjuMorxv7g27EYphQDHhTzImbqikSZAcWMgnas-6_pHxpseBufdKtW5tkuY57l-4096VJ3bqGbvyqxtdA5nVGnCFtGDeQ.TKX1aKud8mCs99bScJnDnA
9response{'access_token': 'SqL4Ux5icw1LFsr1QNb3', 'state': 'krX4WILwNcRaLmGD', 'expires_in': 3599, 'token_type': 'bearer', 'code': 'EwcpTA3tHsODJuph5cCW6yP8rzUCL7', 'scope': 'openid', 'id_token': 'eyJhbGciOiJSU0EtT0FFUC0yNTYiLCJlbmMiOiJBMTI4Q0JDLUhTMjU2Iiwia2lkIjoiZ3RINHYzWXIyUXFMcmVCU3owQnlRUTh2a2Y4ZUZvMUtJaXQzcy0zQmJ3dyIsImN0eSI6IkpXVCJ9.O9PbmVa2PILLPxm7W_OXMMBlvLi9M75zs8B_AH-uj_6qOyrmPsX6FCK07oY6tFpJXf2mebV1pp0j5_sNhSZLXAZOob8YfT5955M10SIW5rRrxe0qJuQke7DXWCWBh7J1e3kHVEukmixcCoXG9XgaYzwsGwOtL4CnPHdPimHIziVjkDQEFDLBnm8zKxeeXK26WPKOnCPafdi1a5L4sUXKiEk3ACgG_0cQHXdJeMwtaUyrjnpx2dYqbpcfg27W1I9pB5WmWAYDIB7D3AQMDzD5iFRrR6I4ZOHldh534tiYSQCaacpJ5O4uaVsX3tH_DxZTBJiUDzsZek7z-J3ScAIYiQ.6U5-5BHt3ZR6bMzsR0WeDw.GOesOfr4nKtn_7fUbVZERHVJNtYdgbMwN3fkSFtXF83dSklKCF43wmExaGrBFQJmCXFg0rczYGr1WhC_uAwIWsutEXa4JHhhlQkRT3FWXJZBsNbzEn_YiDEj0_5oglZtbrB9YyFT8wF5bt2eskt9L41jnoR-WC6sMZLRL4iIsfWOWGe9lR1TluEtfvs1aCQWtSaC7ecshDyAqEnCWjUX1SQa_wB98Z1Oda1GLfGhyRq6yq8fWS_Z_kgwMaYXsh2JJa7g2JDbMQ5tjJ4BxX_yu1jACdXRJ3BJCrxZ7dpKl1NGceGFUe9nqNZYB-9YpVVIvgqeynZoFl6aXHjwyQhmXeiylXRdJB_lF_XiznWH4NCpf5k3VI9L0-JtGNC-GuzVC8Ni-ZGU0zbxyOJ7lVqa7S4xFnh7B2AIKqex0PaUwQCKDc2_0nlL10U0jS-Hxf7FC9tYNaQ_yBA3blI-n_cP8SGhOzgKwkQIde4-PnwYt0ViBFwbE7E0-SwbdtY58d73vgOV9Q0Qv1aLi-u2Gd1V_mSp4VyDtMzgZ7XZV90cr5veoWtooMOFdBiOAZCiZg-PUYVhO9_XwYYtvuPMagTkRw3oj_Zia6NkkythtW5xHbpxGFh63r_SdSIr9x28eQN_DQeNseKUymSQV9sJYcTQi0BSC1Nasnm8yc4Z7H5FzJmBV035mZWlNOHOmJMRQ6ctMYauYEJOjaa5DLoShmWT6shM9l8yAFb5f6nimpX2QhNLyRUoJqAZyeag0rBC6GeNUFJ3W5hfDVWRxw3d6PtYevCakspv02uxpdXA47ja4T3avRYl4NsLvSXlQpdR6ZUvncKkoYw33CAPHkmZ0UG4uS733Iy0ZeNBXyXFs5luKuw60lOxNOYQ6PMiTyjuMorxv7g27EYphQDHhTzImbqikSZAcWMgnas-6_pHxpseBufdKtW5tkuY57l-4096VJ3bqGbvyqxtdA5nVGnCFtGDeQ.TKX1aKud8mCs99bScJnDnA'}
9AuthorizationResponse
{
    "access_token": "SqL4Ux5icw1LFsr1QNb3",
    "code": "EwcpTA3tHsODJuph5cCW6yP8rzUCL7",
    "expires_in": 3599,
    "id_token": {
        "at_hash": "Js1tB6zTcHY7W8m2CEzB3w",
        "aud": [
            "eVvFWE7fraJeAY95afAl"
        ],
        "c_hash": "ZA-9PDWpsOxHrDBY3NVkKQ",
        "exp": 1560787343,
        "iat": 1560783923,
        "iss": "https://isamfed.com:30443/test",
        "nonce": "o2zTb5QTSH1bN6A0",
        "sub": "testuser"
    },
    "scope": "openid",
    "state": "krX4WILwNcRaLmGD",
    "token_type": "bearer"
}
9phase<--<-- 7 --- AccessToken -->-->
9requestop_args: {'state': 'krX4WILwNcRaLmGD'}, req_args: {'redirect_uri': 'https://op.certification.openid.net:61737/authz_cb'}
9do_access_token_request
kwargs:{'request_args': {'redirect_uri': 'https://op.certification.openid.net:61737/authz_cb', 'code': 'EwcpTA3tHsODJuph5cCW6yP8rzUCL7', 'state': 'krX4WILwNcRaLmGD', 'grant_type': 'authorization_code', 'client_id': 'eVvFWE7fraJeAY95afAl'}, 'state': 'krX4WILwNcRaLmGD', 'authn_method': 'private_key_jwt'}
9AccessTokenRequest
{
    "client_assertion": "eyJhbGciOiJSUzI1NiIsImtpZCI6Ind0MjVPZ3lSX256RzNPb1E3ZGFhMnJMNi1nTW5GZGZSekJqaFVWUHU4UlEifQ.eyJpc3MiOiAiZVZ2RldFN2ZyYUplQVk5NWFmQWwiLCAic3ViIjogImVWdkZXRTdmcmFKZUFZOTVhZkFsIiwgImF1ZCI6IFsiaHR0cHM6Ly9pc2FtZmVkLmNvbTozMDQ0My9tZ2Evc3BzL29hdXRoL29hdXRoMjAvdG9rZW4iXSwgImp0aSI6ICI5cE1ubHRkNVdVbE5QMjZIcWxKelNhMXRkZWFKNmRsNiIsICJleHAiOiAxNTYwNzg0NTI1LCAiaWF0IjogMTU2MDc4MzkyNX0.XYG5DrrVKvu9HqILKaXQRwvrnDxFx3fcQGN6C3vLKjibrLvQ3VXHIlD2t0vMnVosn4BAufqK_LMJbY31mmP29GHrfJdXTqrrf3BcBXoAk1JfDN9jZQ1HkkcuW3lkqL46Oj4NDHzTl7Elp4w_Yq_ioQ8wRNaeofz8BCt9Py_fX0kU_BOJKcs3gwPwd9epWmtw7fu_9bog0GwPU3LGCCju6OFhi59H35N8gx00XHzvd7ZFeeXtaqngbMrbIl4TVUULWyXm937YklQ7h8hzTz90GzLUHcpU3zzCY3knWbzREBCu6mhFqpGUusmTL5IHh8fomtWv7wDccBIvqHOcn1T6vA",
    "client_assertion_type": "urn:ietf:params:oauth:client-assertion-type:jwt-bearer",
    "code": "EwcpTA3tHsODJuph5cCW6yP8rzUCL7",
    "grant_type": "authorization_code",
    "redirect_uri": "https://op.certification.openid.net:61737/authz_cb",
    "state": "krX4WILwNcRaLmGD"
}
9request_urlhttps://isamfed.com:30443/mga/sps/oauth/oauth20/token
9request_http_args{'headers': {'Content-Type': 'application/x-www-form-urlencoded'}}
9requestgrant_type=authorization_code&redirect_uri=https%3A%2F%2Fop.certification.openid.net%3A61737%2Fauthz_cb&code=EwcpTA3tHsODJuph5cCW6yP8rzUCL7&state=krX4WILwNcRaLmGD&client_assertion=eyJhbGciOiJSUzI1NiIsImtpZCI6Ind0MjVPZ3lSX256RzNPb1E3ZGFhMnJMNi1nTW5GZGZSekJqaFVWUHU4UlEifQ.eyJpc3MiOiAiZVZ2RldFN2ZyYUplQVk5NWFmQWwiLCAic3ViIjogImVWdkZXRTdmcmFKZUFZOTVhZkFsIiwgImF1ZCI6IFsiaHR0cHM6Ly9pc2FtZmVkLmNvbTozMDQ0My9tZ2Evc3BzL29hdXRoL29hdXRoMjAvdG9rZW4iXSwgImp0aSI6ICI5cE1ubHRkNVdVbE5QMjZIcWxKelNhMXRkZWFKNmRsNiIsICJleHAiOiAxNTYwNzg0NTI1LCAiaWF0IjogMTU2MDc4MzkyNX0.XYG5DrrVKvu9HqILKaXQRwvrnDxFx3fcQGN6C3vLKjibrLvQ3VXHIlD2t0vMnVosn4BAufqK_LMJbY31mmP29GHrfJdXTqrrf3BcBXoAk1JfDN9jZQ1HkkcuW3lkqL46Oj4NDHzTl7Elp4w_Yq_ioQ8wRNaeofz8BCt9Py_fX0kU_BOJKcs3gwPwd9epWmtw7fu_9bog0GwPU3LGCCju6OFhi59H35N8gx00XHzvd7ZFeeXtaqngbMrbIl4TVUULWyXm937YklQ7h8hzTz90GzLUHcpU3zzCY3knWbzREBCu6mhFqpGUusmTL5IHh8fomtWv7wDccBIvqHOcn1T6vA&client_assertion_type=urn%3Aietf%3Aparams%3Aoauth%3Aclient-assertion-type%3Ajwt-bearer
10http response
url:https://isamfed.com:30443/mga/sps/oauth/oauth20/token status_code:200
10response{'access_token': 'GoUVfkp6fntSZbAX8N3T', 'refresh_token': 'r9MzpibC3UuCqfittwvYihXjRFuhAviQAi9T0shy', 'scope': 'openid', 'id_token': 'eyJhbGciOiJSU0EtT0FFUC0yNTYiLCJlbmMiOiJBMTI4Q0JDLUhTMjU2Iiwia2lkIjoiZ3RINHYzWXIyUXFMcmVCU3owQnlRUTh2a2Y4ZUZvMUtJaXQzcy0zQmJ3dyIsImN0eSI6IkpXVCJ9.nhxJQj0tpXI4YB1e7fuMfw8q28COMMKw5St76kxAy9crjaddgBsuVW2rT-E7pkt0GQR5rf9qQCdgRmYw2Bm13TSAJ-aa9BI9R5reLo3yMtU65tTMxo5E09j7x9UtFX1ny2rmH-XEdCVkzsFxHJcGKgRgXI0I-qRzXOkm3WRTX3ht-lFgT3vG077ain7JbHow4LcOvB8uw6UnibxfNJJyn8PT8bKZtCD-vSDrEqtyPUSR4dVv9mP5sjd95FYxbEHSSvWdGoca3cZorgHriIngluyjSR1HLtBLTGabc43iKazXVZwsaFNR7Ctw4qoRvVMRBqv3UGe16xGMWjSET8DDgQ.DMPh1VV3kMZbeRjGL59Ssg.IOj3a6EDOMs83VM89bXvaIIR9ThJ14XCYUhsrFPPwJ6U08y6wLg5wzpmxWUkqDNM0NDfhBPIJPG__EpkSbbyoxviThc6Fp8yIIhkZuWVnhDCfXXaWm0r4BmIBAXUaCpRjhzorx2w5R4Y-VBgE16zHkzW89FKKEtF1vbY0Q8fNlqqPJtNYvzqDBYzHYXgmCOsxwAzdxKWg5pXyrs3QsNfF98VtWgx6B9Fi3-C7Dtgi2YHM7XQxCAUL7e2jQjl1Xa_Pzv7CYG-rq3mmQ_hrkCeFcC069vVuLHAzokUB2kdJEk6AmzHvRmd_xc37Jlh-FRWOX7-_p8XhpQmNAhu1NbxWY4eKoPPU781lK0rlCxujBnxHfj3DY4xJHoQWNpuik-OS8hIXaMVEtfN4PmGNvPzJ2A7CEZ7ski_TKjj1BSo2ToMDfJWEbLnaYRXGeXpN90QZWpiBuMVCrOtclIe3wkrQ3O-HTuFMdSe6GzylEmGed6A_R-Ljck6wZ7XfBbS-Qv5mihcs_wrPpG-VZnhfGqXroM35lzCcT72NcBjjzsJE08oKd8o4G6Z0baj1hc4qroRFFXX0opeBDkmVLR44EtA9i3aNMv4gFV79JUZCFYgcL1V0hd5cdH39dgrQwnlNthm3CjX9sUoAru29FRHligw9_g0WiMc5Jp5_v8vzj25rgAdu7J5kvcR70T4D6lNLm-RDC7GKNZCPcyqvHMuhr33VzygSCDwSlNRRWICpMT9LxAnztJd_vlT7u18LI6eOebnXnZDYmdmGHuvARfEHgWnWLv159V3u_fv-ozogPvBvNI6YQBEHv5k8g97uMgKbHpoTPRGdl9N3rJMII3A5JTyjmOA7Z4RHYtRcX42tKHDweC7sop4wMjk_G-XYw97L-Y5kb8PpC3CC5zT4ZatWR4dbiQt2d8BjuxPLabTAi7tL0tfm5ToGeAibeGDb8Se2j5qBtECTZgXV5DC4LdUrBSX5w.Cv8eol1V7NNtD_mO8Fpl-Q', 'token_type': 'bearer', 'expires_in': 3599}
10AccessTokenResponse
{
    "access_token": "GoUVfkp6fntSZbAX8N3T",
    "expires_in": 3599,
    "id_token": {
        "at_hash": "oaEtEmYatihW4_EUw723qQ",
        "aud": [
            "eVvFWE7fraJeAY95afAl"
        ],
        "exp": 1560787345,
        "iat": 1560783925,
        "iss": "https://isamfed.com:30443/test",
        "nonce": "o2zTb5QTSH1bN6A0",
        "rt_hash": "sTQobxi-TkwwlgZnDj2qNg",
        "sub": "testuser"
    },
    "refresh_token": "r9MzpibC3UuCqfittwvYihXjRFuhAviQAi9T0shy",
    "scope": "openid",
    "token_type": "bearer"
}
10jws header{'kid': '_uhPdeGrTWxobFeH0XbzjJpRrzp3CB9nknx1yFV1G-0', 'alg': 'RS256'}
10jwe header{'alg': 'RSA-OAEP-256', 'enc': 'A128CBC-HS256', 'kid': 'gtH4v3Yr2QqLreBSz0ByQQ8vkf8eFo1KIit3s-3Bbww', 'cty': 'JWT'}
10phase<--<-- 8 --- Done -->-->
10end
10assertionMultipleSignOn
10conditionmultiple-sign-on: status=OK [Verifies that multiple authentications was used in the flow]
10assertionVerifyResponse
10conditionverify-response: status=OK [Checks that the last response was one of a possible set of OpenID Connect Responses]
10conditionDone: status=OK

Result

PASSED