OpenID Connect Provider Certification Test Result

Test Info

Issuer	https://oidc-prod-eu01a-test1.ice.ibmcloud.com/oidc/endpoint/default
Profile	[]
Test ID	OP-Discovery-claims_supported
Test description	Verify that claims_supported is published
Timestamp	2019-09-11T09:14:11Z

Conditions


providerinfo-has-claims_supported: status=OK [Check that the claims_supported discovery metadata value is in the provider_info]
check-http-response: status=OK [Checks that the HTTP response status is within the 200 or 300 range. Also does some extra JSON checks]
Done: status=OK

Trace Output

0	phase	<--<-- 0 --- Webfinger -->-->
0	not expected to do	WebFinger
0	phase	<--<-- 1 --- Discovery -->-->
0	provider_config	`kwargs:{'issuer': 'https://oidc-prod-eu01a-test1.ice.ibmcloud.com/oidc/endpoint/default'}`
1	http response	`url:https://oidc-prod-eu01a-test1.ice.ibmcloud.com/oidc/endpoint/default/.well-known/openid-configuration status_code:200`
1	ProviderConfigurationResponse	{ "authorization_endpoint": "https://oidc-prod-eu01a-test1.ice.ibmcloud.com/oidc/endpoint/default/authorize", "claim_types_supported": [ "normal" ], "claims_parameter_supported": true, "claims_supported": [ "realmName", "preferred_username", "given_name", "uid", "upn", "groupIds", "employee_id", "name", "tenantId", "mobile_number", "department", "family_name", "job_title", "email" ], "device_authorization_endpoint": "https://oidc-prod-eu01a-test1.ice.ibmcloud.com/oidc/endpoint/default/device_authorization", "grant_types_supported": [ "authorization_code", "implicit", "client_credentials", "password", "refresh_token", "urn:ietf:params:oauth:grant-type:device_code" ], "id_token_encryption_alg_values_supported": [ "none" ], "id_token_encryption_enc_values_supported": [ "none" ], "id_token_signing_alg_values_supported": [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512" ], "introspection_endpoint": "https://oidc-prod-eu01a-test1.ice.ibmcloud.com/oidc/endpoint/default/introspect", "issuer": "https://oidc-prod-eu01a-test1.ice.ibmcloud.com/oidc/endpoint/default", "jwks_uri": "https://oidc-prod-eu01a-test1.ice.ibmcloud.com/oidc/endpoint/default/jwks", "request_object_encryption_alg_values_supported": [ "none" ], "request_object_encryption_enc_values_supported": [ "none" ], "request_object_signing_alg_values_supported": [ "none" ], "request_parameter_supported": true, "request_uri_parameter_supported": false, "require_request_uri_registration": false, "response_modes_supported": [ "query", "fragment", "form_post" ], "response_types_supported": [ "code", "none", "token", "id_token", "token id_token", "code id_token", "code token", "code token id_token" ], "revocation_endpoint": "https://oidc-prod-eu01a-test1.ice.ibmcloud.com/oidc/endpoint/default/revoke", "scopes_supported": [ "openid", "profile", "email", "phone" ], "subject_types_supported": [ "public" ], "token_endpoint": "https://oidc-prod-eu01a-test1.ice.ibmcloud.com/oidc/endpoint/default/token", "token_endpoint_auth_methods_supported": [ "client_secret_basic", "client_secret_post" ], "user_authorization_endpoint": "https://oidc-prod-eu01a-test1.ice.ibmcloud.com/oidc/endpoint/default/user_authorization", "userinfo_encryption_alg_values_supported": [ "none" ], "userinfo_encryption_enc_values_supported": [ "none" ], "userinfo_endpoint": "https://oidc-prod-eu01a-test1.ice.ibmcloud.com/oidc/endpoint/default/userinfo", "userinfo_signing_alg_values_supported": [ "none" ], "version": "3.0" }
1	phase	<--<-- 2 --- Done -->-->
1	end
1	assertion	CheckHasClaimsSupported
1	condition	providerinfo-has-claims_supported: status=OK [Check that the claims_supported discovery metadata value is in the provider_info]
1	assertion	CheckHTTPResponse
1	condition	check-http-response: status=OK [Checks that the HTTP response status is within the 200 or 300 range. Also does some extra JSON checks]
1	condition	Done: status=OK

Result

PASSED

(C) 2017-2019 - OpenID Foundation
E-mail: certification@oidf.org
Issues: Github

Version: 2.2.1