Test Summary

Test Results

Expand All Collapse All
All times are UTC
2021-02-09 15:40:04 INFO
TEST-RUNNER
Test instance y0t5xnkCfh1DRid created
baseUrl
https://www.certification.openid.net/test/a/robotto-internal-2
variant
{
  "client_auth_type": "private_key_jwt",
  "ciba_mode": "poll",
  "fapi_profile": "plain_fapi",
  "client_registration": "static_client"
}
alias
robotto-internal-2
description
Initial test
planId
MgCT3PUAqtbME
config
{
  "alias": "robotto-internal-2",
  "description": "Initial test",
  "server": {
    "discoveryUrl": "https://emea-conformance.ping-eng.com:9031/.well-known/openid-configuration"
  },
  "client": {
    "client_id": "conformance3",
    "scope": "openid test",
    "jwks": {
      "keys": [
        {
          "kty": "EC",
          "d": "QPg1PBy12DhqqGeiuWBoIdhrfbOutP8nfSND46mdTgU",
          "use": "sig",
          "crv": "P-256",
          "kid": "2HKyz2Uc4F8hRcwyuPgA5Eg_salnEe7pfujUkvj2yew",
          "x": "NK3-2enqupOW-PGDSp2X2vrtqFIVnsVMciZdVwa7p8Q",
          "y": "Yrp1yMUYXZcWbHRzsXlH94v2SJZs0lxRbbCpvo1kcUw",
          "alg": "ES256"
        }
      ]
    },
    "hint_type": "login_hint",
    "hint_value": "patrick"
  },
  "mtls": {
    "cert": "-----BEGIN CERTIFICATE-----\nMIIDlTCCAn2gAwIBAgIJAKRJoaX7BlZbMA0GCSqGSIb3DQEBCwUAMGAxCzAJBgNV\nBAYTAlVTMRMwEQYDVQQIDApTb21lLVN0YXRlMR0wGwYDVQQKDBRBdXRobGV0ZSBU\nZXN0IENsaWVudDEdMBsGA1UEAwwUQXV0aGxldGUgVGVzdCBDbGllbnQwIBcNMTgw\nNTI1MjA1NzU0WhgPMjEwNjAxMDQyMDU3NTRaMGAxCzAJBgNVBAYTAlVTMRMwEQYD\nVQQIDApTb21lLVN0YXRlMR0wGwYDVQQKDBRBdXRobGV0ZSBUZXN0IENsaWVudDEd\nMBsGA1UEAwwUQXV0aGxldGUgVGVzdCBDbGllbnQwggEiMA0GCSqGSIb3DQEBAQUA\nA4IBDwAwggEKAoIBAQDEWwl/Q+nuL8KXbObpVzww1VkHwLF4W9QxrPI1V0Uh6V9r\nxUjrfSbtWNEQVDwQmoW8M1XjnRnGvdNRd0m6gNEQLKsqRN2xIvPdR0IO+2b+y7WJ\n9XlwdqHAFSWQJtoHzBAmkRirRMJrQSW5sB/NIBmyVqUdTV/FghNjc+IiPF4X1kxw\nwOzm7y2zlHZUpiPQknwPbWNeyunj/XQRrqWPg+RXzAKIjbVprxGaT8CexKu6oEae\nd8BCTO0rJIOkmjXZMl+SDhXQn9GHKFh60UlJddxVngxhX63MAQ1GsO8HsjrLgO3q\n4LmTDVHkprLy/wgBRDfo0IHb3gWhbOuRGMLLMKKvAgMBAAGjUDBOMB0GA1UdDgQW\nBBRuwpA4lqWaOkwmPcTQR8CH0Iv3vjAfBgNVHSMEGDAWgBRuwpA4lqWaOkwmPcTQ\nR8CH0Iv3vjAMBgNVHRMEBTADAQH/MA0GCSqGSIb3DQEBCwUAA4IBAQBiCmvQmmKq\nI/8sB312HTEFlvtpbYp429eNCGXWloOOqVQkJaBnvy9YUS/wCgusyKeMBgbgpV0s\n8bp/gEW2/MnlWW9+fbFuhzRRwvuV/7je1Avv9Y06RH8GKJYwk2j6qcO7Mn9kVhln\nlKxGdFxm/i0OBuZnUe/KDxKPjVEdUJbxAFfxdq4cUjfewMuoxsYruIDnLXjTBcj2\nPbJ6vcPzq/6TYwxRmnrXIAO6Nxe8ZNXn2x2+njwrUKW4WPQ7u3dyHlD+M3iTpm3T\nwSgg0FSYiBcXhWJLQCJVEb0kbKJ/PDmcvomusQWTL/0epS62azWG8PUUs4v9Xeae\nmAbHqPGh+5Bo\n-----END CERTIFICATE-----\n",
    "key": "-----BEGIN PRIVATE KEY-----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\naBcf1sY/flehjWEwkVDSh0Js\n-----END PRIVATE KEY-----\n"
  },
  "client2": {
    "client_id": "conformance4",
    "scope": "openid test",
    "jwks": {
      "keys": [
        {
          "kty": "EC",
          "d": "MTbmR5F_tN0zlvVrwESkMNHB-ZLoRpk3dlxHYged3Ik",
          "use": "sig",
          "crv": "P-256",
          "kid": "6waBCAJKuKMvSU3k540XHPx_4gJx01tmQh8giaYjj1k",
          "x": "XW7xFTCnyPLhhWb_dE0fIIavYTbilf3HDsUELAC5SwI",
          "y": "sm9SrdwPWJ_oQ5tbsDMi6xnsaoLWZLTFyy0L2q5vURE",
          "alg": "ES256"
        }
      ]
    },
    "acr_value": "high"
  },
  "mtls2": {
    "cert": "-----BEGIN CERTIFICATE-----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\nSe6ggOD1AFI5OQ3c8lCUzgGeFl69hz2UduHOyWs1KXUhgSy7fViAP90\u003d\n-----END CERTIFICATE-----\n",
    "key": "-----BEGIN PRIVATE KEY-----\nMIIEvQIBADANBgkqhkiG9w0BAQEFAASCBKcwggSjAgEAAoIBAQDTMtUKIVG1KMrX\nvHGAgjtfryfxiJr1ZK2+/R1E0sy9xuOpQwtCWGRjKTL1/TZ3GnQmC0FfH5qHzqLj\nbOAFiYH9LJB+bACXGTII9xlaqi7Mdog8nt3IKrAgs03+YM4TlbaV4DaATBXJFRsS\nPnRvYdOp+9Zh/XbRqA/waFjgeBS2ntBHOKJaLeXkTnid2dCdeWlz1qEK59yeRKM9\nP3Ow+/m8m/lxoxf6/riVayqji7ZzuvUaPfX6MMFbVUADx5sS0PVbxYizjcGznxC7\nQb1+DJcRwzrspw7A8P5h8ZMzEsT1wHfUHyFNOckmfXlUd1HzVHgpPGutzUjvDGXX\nxxZ1LBDvAgMBAAECggEBAJzGiiB39VheTJzy1OqJQhvYQPVp62Wn89XnvLdfJ/7k\nShFWpF/+j56QcbTq32hwabHn/wHmyuZvPLlIE8/ocGcIksZV0+ZWHK9NBjQoSo8a\nmi0t3QJ+tbnAgHAJWlBtfVkqVCrO0AkxsqPLWtFntCDlwhGBfpdJg3N5cihG21Fn\nnqUNxj2lVp1jxCAAcBHwCMfODFi0Kke/FLS3u9vHSRybUAbNid1adNJ6g3f3jKXh\nX5HPR2KYqDIyCQrqs9IAx7mM/T2W75NpZC1rW5GAWyw7sR71YDFI/Mronrdh0ZiH\nOpllwgM4bBD7ipNH3jNRgsAUr5nyTIJAii9z8XxGubkCgYEA+e88Kt3uZbFfcqTv\nb2ZTCUd3fyC0FcZ+/iHhKp2fmwsSIWB7k6++q8Vn/YHdew7KS+i4dvap30+k8Jf0\nu8p1NY82qHb5b/8igj6z015O+q1XE+hNoPUeIlX7JBVf0y3NIiiOTxvcWoIGKpth\nEVvlVk27PfYUEsnefFnKTQ7kNI0CgYEA2FLxXKrDQQRwtmC0My4LuAwhkGqxCwk1\nV8vD0k+J1JqVI3qQPxt5H241KtWwdb6QxAjuBe0i1Yx6vW1qC60NaZpM7RLFOEKy\nfwLuk19S9BKs1q0BRqcPpIP0PIZ+GgpKs7fIWcn19IFI/1KlSVYYV7qDgDmzMG13\nOPeJuAclAmsCgYBIyIdgAGMlUCL4ktl7OnQh9qLw7Ygj8zsWLK2SqHZLQ00TVTKH\njp1bDlC7PW9PH75/npThZ/GOK3Zf7hCCA3Jgl4UWSBdZqxXUkgfyHLupOoNqM7Mv\nlVIiM6HAH01ZhTQAp4jRts5TuRusmrUIxhciK97EK34q/oiA8/D6wcRpHQKBgBWb\nY0RQQiRyXxe4XQdnqAAAJjIYlgp2Jv/X+H0/OJMlxZO/oDzNb7G1/lWC9pcsK6WJ\nBs1MvFf8Kh5VmWwFIvvTT6+2WkCeWNna3x2VPeHnI6Bls2TtNuDF1VVeUaYkNQXy\na26cf5amezYVeTD0CoZouM3L9Zv2sxvbjcP14rp1AoGADoxlSjWxXOxZAr835wFl\nD3EMU5nhUGA0BdCfGgKqMaZmCr/ssfQDARgCKG/zLfmUBBBHbjZcHMXw6SW+E3CT\nN/q7iddT3FOgVder4GWTA+wFYdAywCT5At8wm7zeM2d/4cWlBaKew/u+A0ycUsD6\nbd3gRXjBZpD8Eep8ltVGLHw\u003d\n-----END PRIVATE KEY-----\n"
  },
  "resource": {
    "resourceUrl": "https://emea-conformance.ping-eng.com:3000/get"
  }
}
testName
fapi-ciba-id1-ensure-request-object-bad-iss-fails
2021-02-09 15:40:04 SUCCESS
CreateCIBANotificationEndpointUri
Created ciba notification endpoint URI
notification_uri
https://www.certification.openid.net/test/a/robotto-internal-2/ciba-notification-endpoint
2021-02-09 15:40:04
GetDynamicServerConfiguration
HTTP request
request_uri
https://emea-conformance.ping-eng.com:9031/.well-known/openid-configuration
request_method
GET
request_headers
{
  "accept": "text/plain, application/json, application/cbor, application/*+json, */*",
  "content-length": "0"
}
request_body

                                
2021-02-09 15:40:05 RESPONSE
GetDynamicServerConfiguration
HTTP response
response_status_code
200 OK
response_status_text
OK
response_headers
{
  "date": "Tue, 09 Feb 2021 15:40:05 GMT",
  "x-frame-options": "SAMEORIGIN",
  "referrer-policy": "origin",
  "cache-control": "no-cache, no-store",
  "pragma": "no-cache",
  "expires": "Thu, 01 Jan 1970 00:00:00 GMT",
  "content-type": "application/json;charset\u003dutf-8",
  "set-cookie": "PF\u003dhaBWidMVKcsoE9qRvNitjp;Path\u003d/;Secure;HttpOnly;SameSite\u003dNone",
  "content-length": "3631"
}
response_body
{
  "issuer": "https://emea-conformance.ping-eng.com:9031",
  "authorization_endpoint": "https://emea-conformance.ping-eng.com:9031/as/authorization.oauth2",
  "token_endpoint": "https://emea-conformance.ping-eng.com:9032/as/token.oauth2",
  "revocation_endpoint": "https://emea-conformance.ping-eng.com:9031/as/revoke_token.oauth2",
  "userinfo_endpoint": "https://emea-conformance.ping-eng.com:9031/idp/userinfo.openid",
  "introspection_endpoint": "https://emea-conformance.ping-eng.com:9031/as/introspect.oauth2",
  "jwks_uri": "https://emea-conformance.ping-eng.com:9031/pf/JWKS",
  "registration_endpoint": "https://emea-conformance.ping-eng.com:9031/as/clients.oauth2",
  "ping_revoked_sris_endpoint": "https://emea-conformance.ping-eng.com:9031/pf-ws/rest/sessionMgmt/revokedSris",
  "ping_session_management_sris_endpoint": "https://emea-conformance.ping-eng.com:9031/pf-ws/rest/sessionMgmt/sessions",
  "ping_end_session_endpoint": "https://emea-conformance.ping-eng.com:9031/idp/startSLO.ping",
  "device_authorization_endpoint": "https://emea-conformance.ping-eng.com:9031/as/device_authz.oauth2",
  "scopes_supported": [ "test", "openid" ],
  "claims_supported": [ "sub" ],
  "response_types_supported": [ "code", "token", "id_token", "code token", "code id_token", "token id_token", "code token id_token" ],
  "response_modes_supported": [ "fragment", "query", "form_post" ],
  "grant_types_supported": [ "implicit", "authorization_code", "refresh_token", "password", "client_credentials", "urn:pingidentity.com:oauth2:grant_type:validate_bearer", "urn:ietf:params:oauth:grant-type:jwt-bearer", "urn:ietf:params:oauth:grant-type:saml2-bearer", "urn:ietf:params:oauth:grant-type:device_code", "urn:ietf:params:oauth:grant-type:token-exchange", "urn:openid:params:grant-type:ciba" ],
  "subject_types_supported": [ "public", "pairwise" ],
  "id_token_signing_alg_values_supported": [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ],
    "token_endpoint_auth_methods_supported": [ "client_secret_basic", "client_secret_post", "private_key_jwt" , "tls_client_auth"],
  "token_endpoint_auth_signing_alg_values_supported":  [ "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ],
  "claim_types_supported": [ "normal" ],
  "claims_parameter_supported": false,
  "request_parameter_supported": true,
  "request_uri_parameter_supported": false,
  "request_object_signing_alg_values_supported": [ "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ],
  "id_token_encryption_alg_values_supported": [ "dir", "A128KW", "A192KW", "A256KW", "A128GCMKW", "A192GCMKW", "A256GCMKW", "ECDH-ES", "ECDH-ES+A128KW", "ECDH-ES+A192KW", "ECDH-ES+A256KW", "RSA-OAEP" ],
  "id_token_encryption_enc_values_supported": [ "A128CBC-HS256", "A192CBC-HS384", "A256CBC-HS512", "A128GCM", "A192GCM", "A256GCM" ],
  "backchannel_authentication_endpoint": "https://emea-conformance.ping-eng.com:9031/as/bc-auth.ciba",
  "backchannel_token_delivery_modes_supported": [ "poll", "ping" ],
  "backchannel_authentication_request_signing_alg_values_supported": [ "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ],
  "backchannel_user_code_parameter_supported": false,
  "code_challenge_methods_supported": [ "plain", "S256" ],
  "tls_client_certificate_bound_access_tokens": true,
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://emea-conformance.ping-eng.com:9032/as/token.oauth2",
  "backchannel_authentication_endpoint": "https://emea-conformance.ping-eng.com:9032/as/bc-auth.ciba"}
}
2021-02-09 15:40:05
GetDynamicServerConfiguration
Downloaded server configuration
server_config_string
{
  "issuer": "https://emea-conformance.ping-eng.com:9031",
  "authorization_endpoint": "https://emea-conformance.ping-eng.com:9031/as/authorization.oauth2",
  "token_endpoint": "https://emea-conformance.ping-eng.com:9032/as/token.oauth2",
  "revocation_endpoint": "https://emea-conformance.ping-eng.com:9031/as/revoke_token.oauth2",
  "userinfo_endpoint": "https://emea-conformance.ping-eng.com:9031/idp/userinfo.openid",
  "introspection_endpoint": "https://emea-conformance.ping-eng.com:9031/as/introspect.oauth2",
  "jwks_uri": "https://emea-conformance.ping-eng.com:9031/pf/JWKS",
  "registration_endpoint": "https://emea-conformance.ping-eng.com:9031/as/clients.oauth2",
  "ping_revoked_sris_endpoint": "https://emea-conformance.ping-eng.com:9031/pf-ws/rest/sessionMgmt/revokedSris",
  "ping_session_management_sris_endpoint": "https://emea-conformance.ping-eng.com:9031/pf-ws/rest/sessionMgmt/sessions",
  "ping_end_session_endpoint": "https://emea-conformance.ping-eng.com:9031/idp/startSLO.ping",
  "device_authorization_endpoint": "https://emea-conformance.ping-eng.com:9031/as/device_authz.oauth2",
  "scopes_supported": [ "test", "openid" ],
  "claims_supported": [ "sub" ],
  "response_types_supported": [ "code", "token", "id_token", "code token", "code id_token", "token id_token", "code token id_token" ],
  "response_modes_supported": [ "fragment", "query", "form_post" ],
  "grant_types_supported": [ "implicit", "authorization_code", "refresh_token", "password", "client_credentials", "urn:pingidentity.com:oauth2:grant_type:validate_bearer", "urn:ietf:params:oauth:grant-type:jwt-bearer", "urn:ietf:params:oauth:grant-type:saml2-bearer", "urn:ietf:params:oauth:grant-type:device_code", "urn:ietf:params:oauth:grant-type:token-exchange", "urn:openid:params:grant-type:ciba" ],
  "subject_types_supported": [ "public", "pairwise" ],
  "id_token_signing_alg_values_supported": [ "none", "HS256", "HS384", "HS512", "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ],
    "token_endpoint_auth_methods_supported": [ "client_secret_basic", "client_secret_post", "private_key_jwt" , "tls_client_auth"],
  "token_endpoint_auth_signing_alg_values_supported":  [ "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ],
  "claim_types_supported": [ "normal" ],
  "claims_parameter_supported": false,
  "request_parameter_supported": true,
  "request_uri_parameter_supported": false,
  "request_object_signing_alg_values_supported": [ "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ],
  "id_token_encryption_alg_values_supported": [ "dir", "A128KW", "A192KW", "A256KW", "A128GCMKW", "A192GCMKW", "A256GCMKW", "ECDH-ES", "ECDH-ES+A128KW", "ECDH-ES+A192KW", "ECDH-ES+A256KW", "RSA-OAEP" ],
  "id_token_encryption_enc_values_supported": [ "A128CBC-HS256", "A192CBC-HS384", "A256CBC-HS512", "A128GCM", "A192GCM", "A256GCM" ],
  "backchannel_authentication_endpoint": "https://emea-conformance.ping-eng.com:9031/as/bc-auth.ciba",
  "backchannel_token_delivery_modes_supported": [ "poll", "ping" ],
  "backchannel_authentication_request_signing_alg_values_supported": [ "RS256", "RS384", "RS512", "ES256", "ES384", "ES512", "PS256", "PS384", "PS512" ],
  "backchannel_user_code_parameter_supported": false,
  "code_challenge_methods_supported": [ "plain", "S256" ],
  "tls_client_certificate_bound_access_tokens": true,
  "mtls_endpoint_aliases": {
    "token_endpoint": "https://emea-conformance.ping-eng.com:9032/as/token.oauth2",
  "backchannel_authentication_endpoint": "https://emea-conformance.ping-eng.com:9032/as/bc-auth.ciba"}
}
2021-02-09 15:40:05 SUCCESS
GetDynamicServerConfiguration
Successfully parsed server configuration
issuer
https://emea-conformance.ping-eng.com:9031
authorization_endpoint
https://emea-conformance.ping-eng.com:9031/as/authorization.oauth2
token_endpoint
https://emea-conformance.ping-eng.com:9032/as/token.oauth2
revocation_endpoint
https://emea-conformance.ping-eng.com:9031/as/revoke_token.oauth2
userinfo_endpoint
https://emea-conformance.ping-eng.com:9031/idp/userinfo.openid
introspection_endpoint
https://emea-conformance.ping-eng.com:9031/as/introspect.oauth2
jwks_uri
https://emea-conformance.ping-eng.com:9031/pf/JWKS
registration_endpoint
https://emea-conformance.ping-eng.com:9031/as/clients.oauth2
ping_revoked_sris_endpoint
https://emea-conformance.ping-eng.com:9031/pf-ws/rest/sessionMgmt/revokedSris
ping_session_management_sris_endpoint
https://emea-conformance.ping-eng.com:9031/pf-ws/rest/sessionMgmt/sessions
ping_end_session_endpoint
https://emea-conformance.ping-eng.com:9031/idp/startSLO.ping
device_authorization_endpoint
https://emea-conformance.ping-eng.com:9031/as/device_authz.oauth2
scopes_supported
[
  "test",
  "openid"
]
claims_supported
[
  "sub"
]
response_types_supported
[
  "code",
  "token",
  "id_token",
  "code token",
  "code id_token",
  "token id_token",
  "code token id_token"
]
response_modes_supported
[
  "fragment",
  "query",
  "form_post"
]
grant_types_supported
[
  "implicit",
  "authorization_code",
  "refresh_token",
  "password",
  "client_credentials",
  "urn:pingidentity.com:oauth2:grant_type:validate_bearer",
  "urn:ietf:params:oauth:grant-type:jwt-bearer",
  "urn:ietf:params:oauth:grant-type:saml2-bearer",
  "urn:ietf:params:oauth:grant-type:device_code",
  "urn:ietf:params:oauth:grant-type:token-exchange",
  "urn:openid:params:grant-type:ciba"
]
subject_types_supported
[
  "public",
  "pairwise"
]
id_token_signing_alg_values_supported
[
  "none",
  "HS256",
  "HS384",
  "HS512",
  "RS256",
  "RS384",
  "RS512",
  "ES256",
  "ES384",
  "ES512",
  "PS256",
  "PS384",
  "PS512"
]
token_endpoint_auth_methods_supported
[
  "client_secret_basic",
  "client_secret_post",
  "private_key_jwt",
  "tls_client_auth"
]
token_endpoint_auth_signing_alg_values_supported
[
  "RS256",
  "RS384",
  "RS512",
  "ES256",
  "ES384",
  "ES512",
  "PS256",
  "PS384",
  "PS512"
]
claim_types_supported
[
  "normal"
]
claims_parameter_supported
false
request_parameter_supported
true
request_uri_parameter_supported
false
request_object_signing_alg_values_supported
[
  "RS256",
  "RS384",
  "RS512",
  "ES256",
  "ES384",
  "ES512",
  "PS256",
  "PS384",
  "PS512"
]
id_token_encryption_alg_values_supported
[
  "dir",
  "A128KW",
  "A192KW",
  "A256KW",
  "A128GCMKW",
  "A192GCMKW",
  "A256GCMKW",
  "ECDH-ES",
  "ECDH-ES+A128KW",
  "ECDH-ES+A192KW",
  "ECDH-ES+A256KW",
  "RSA-OAEP"
]
id_token_encryption_enc_values_supported
[
  "A128CBC-HS256",
  "A192CBC-HS384",
  "A256CBC-HS512",
  "A128GCM",
  "A192GCM",
  "A256GCM"
]
backchannel_authentication_endpoint
https://emea-conformance.ping-eng.com:9031/as/bc-auth.ciba
backchannel_token_delivery_modes_supported
[
  "poll",
  "ping"
]
backchannel_authentication_request_signing_alg_values_supported
[
  "RS256",
  "RS384",
  "RS512",
  "ES256",
  "ES384",
  "ES512",
  "PS256",
  "PS384",
  "PS512"
]
backchannel_user_code_parameter_supported
false
code_challenge_methods_supported
[
  "plain",
  "S256"
]
tls_client_certificate_bound_access_tokens
true
mtls_endpoint_aliases
{
  "token_endpoint": "https://emea-conformance.ping-eng.com:9032/as/token.oauth2",
  "backchannel_authentication_endpoint": "https://emea-conformance.ping-eng.com:9032/as/bc-auth.ciba"
}
2021-02-09 15:40:05 SUCCESS
CheckCIBAServerConfiguration
Found required server configuration keys
required
[
  "backchannel_authentication_endpoint",
  "token_endpoint",
  "issuer"
]
2021-02-09 15:40:05 SUCCESS
ExtractTLSTestValuesFromServerConfiguration
Extracted TLS information from authorization server configuration
registration_endpoint
{
  "testHost": "emea-conformance.ping-eng.com",
  "testPort": 9031
}
authorization_endpoint
{
  "testHost": "emea-conformance.ping-eng.com",
  "testPort": 9031
}
token_endpoint
{
  "testHost": "emea-conformance.ping-eng.com",
  "testPort": 9032
}
userinfo_endpoint
{
  "testHost": "emea-conformance.ping-eng.com",
  "testPort": 9031
}
2021-02-09 15:40:05
FetchServerKeys
Fetching server key
jwks_uri
https://emea-conformance.ping-eng.com:9031/pf/JWKS
2021-02-09 15:40:05
FetchServerKeys
HTTP request
request_uri
https://emea-conformance.ping-eng.com:9031/pf/JWKS
request_method
GET
request_headers
{
  "accept": "text/plain, application/json, application/cbor, application/*+json, */*",
  "content-length": "0"
}
request_body

                                
2021-02-09 15:40:05 RESPONSE
FetchServerKeys
HTTP response
response_status_code
200 OK
response_status_text
OK
response_headers
{
  "date": "Tue, 09 Feb 2021 15:40:05 GMT",
  "x-frame-options": "SAMEORIGIN",
  "referrer-policy": "origin",
  "cache-control": "no-cache, no-store",
  "pragma": "no-cache",
  "expires": "Thu, 01 Jan 1970 00:00:00 GMT",
  "content-type": "application/json;charset\u003dutf-8",
  "set-cookie": "PF\u003dhhj9ug4U5H4mLp2SkBBfZt;Path\u003d/;Secure;HttpOnly;SameSite\u003dNone",
  "transfer-encoding": "chunked"
}
response_body
{"keys":[{"kty":"EC","kid":"WZycAcBmpIsK7AC_lDp1oVv0_pU","use":"sig","x":"EYdavwPxPZTOy-8azkMg0DdVidmFA8xxkD65uoUQqaw","y":"XnB5dzU3BH4boQQOLjwug5t0UcI6o0AUt2iEyyBSfF8","crv":"P-256"},{"kty":"EC","kid":"hozdUiKI2tnupnOxMglz3hqZzdI","use":"sig","x":"fEYk3Nzt1WkfuKO4z1ploajbQO0mF4KDN9aLCFp9LEE6OIv6NKQ54bhzz8Kz-KSH","y":"vpdExJFiaQJC4Z3tPQrf3gcfidOsF_Y-tW8zXNWtfUhg2XB3dmXN8zqoqg5R4_Da","crv":"P-384"},{"kty":"RSA","kid":"iw48tJYAHFt6Cio64Zkyt1P1_lM","use":"sig","n":"3aYk1NZOvBTsSoKDa3yjC5-IsJb02b2UedZRpqcEGc5D4zuPLPOzKdfkiJqdH0SzrAFlJhLmsTQWYe6EQAwtnoqZq6mB20sJpzldesmhjQeHp1xlVpNJ4rzRlP3JlrcTBUY7cn4dKnbpFw4ScyjjGZiYNkVUie5xZx3zTnIzfDnx7bFPDSB_egkVJVbzI6sbRV160Hi_ijzc75AtXQQRrOMgtN3pJI7BQd5nkH-pmOv9_VEu67pFJVhw7OWVONS2PIYqXjHOtO_GWBAoG1vxB7t1JLXfjKnhirh_L9r0JfzirJ0CslDV5CSq5BGtuEIvWzRYApA-lN8bJI-0TGOHUQ","e":"AQAB"},{"kty":"EC","kid":"qhmBURU2egiGFMm3gnHzCj_6X8s","use":"sig","x":"AHKPpCVRWVLQbc6EcVAwWlqvgy3djvVHV-I5Dppk4OJ4rCoyTxftBH2FLILypOjdQQC1aef3esklQCWVucdeIqs4","y":"AEEucgtAdU0rjIM8AaJNI84NxNVkPhbwiekZKLl6ZW4Oen58BvBJliHDbDXIQbpfRk9ZKQ1jFu7ujDLk7eANKsSt","crv":"P-521"},{"kty":"EC","kid":"1pzkTrqx61QHovTwm6zfCSOIoVU","use":"sig","x":"AAL4ymXgpGb-bXf7zG437bVL6dvGxMBwfNzgDtG0WG6B7CRmm_zbgFKBU0VwL4inq5JmZCNJpCPG0Ue0I4fYFDwn","y":"AO1tks_YmhLZwAyDhN18-rNeCKC_ZO7fH1XuklVw7LdJQoVYm5DAi7SF2swaNbgtU7iUv9xGqCICYTc64BPWLh69","crv":"P-521"},{"kty":"EC","kid":"4u_kl93Ywmq6jwslV-_rHaor4qM","use":"sig","x":"GvAz2_rQHvQPQgrKSja77NGEugZACRykNaedzgAF8miOi52jWXGXvndmHZXV_ztr","y":"rOAtcsJInw6FnAlK0m0ZQPi50R-gyU6QMaRx3t1q4Yu0GNmlUM54OWgeTpgfcTOJ","crv":"P-384"},{"kty":"RSA","kid":"vbZ1nKEPquCJLRzOTGXgN1YUCDM","use":"sig","n":"tq5MSaWxH9kFQPjmIVkl2Qlh_GMB_Fz2bkIXzQ7X4W-s0oLxq27SCc2N2YUAvturFo3sq5xHaziOeN8GwQ5AYXv7xfpo2ibnq8ZPs-LxbwEtkWUBiYxOjVdA7lqrCiCZ8vagKtxZDXNcqAp6AqQInDS5LFi7s1BpP8JU1ueJYnWL3X-4tu1fabciTNILJ_oWF6m3igfI2IM24FtstbyqgExrE_VLz32Ml4UcaK5UZR8_aUh_ZUE7ldD1Uwxgz5z2CmvXhxv_f2EqI67qHsepOmZyCl917Ipd1Zgz4SsEdu2Ox4qBhvW2y5LZtzZFLQfG0BYQ1Vn1tKAdAUHUtIXuEw","e":"AQAB"},{"kty":"EC","kid":"zn7C0HavPWAQlktyyP1-bSuDROk","use":"sig","x":"Li6Sm2LF39wKtOviYs_tZ7bnLXmXwpEUh1yq7jHuV6I","y":"_zR7st26gA_A4VB4AgwXBJSkfeXxLud93M0vdF8GfX8","crv":"P-256"},{"kty":"EC","kid":"5kv-xTubQhrSAd3EKNWkoPi0bBo","use":"sig","x":"OuZsnMk72Lo1uorfir3G3_OCfEfKXZ8ECD4FufdMOnE","y":"CJmfk8fKgMefVFvLwQ2fI7laQS9hIY3NEmDK7tmKFrg","crv":"P-256"},{"kty":"EC","kid":"NRNWjzWljA_Vito3kR7xP7k4o7A","use":"sig","x":"Ab6QAmNidfhHDpipUT-nyV82PD66N1IoCRIlodBOAITsDO2m9t390KkpBQ-jcP7qFHb7KyrJTuPwiLXM7n3Y_0_Q","y":"AVBugkGCCSewzRlnUyqivNZIhleiGD8Yc-Uew8bb6KWoL7u-2yauns3WGgr1LL1rkpIhZzJlKnGAVNW3pwRcEe93","crv":"P-521"},{"kty":"EC","kid":"OKmg_Z_HbFKw8KhUO9MJxInnHqk","use":"sig","x":"lHZ6yfwZBoBwA-XxOAZo51dDlIz01Mli8LUPCIQ9SLCf3QG78Gn6wLdu0GqvkEfC","y":"mkdeCGr0iCIZbj98XARCAdts3WHV0dwrPra7ZwKQQsJomyE2nWTMlN78mrWG3z5T","crv":"P-384"},{"kty":"RSA","kid":"aHH7Ogg3vaGZhCIQGhX_ZGr0CWM","use":"sig","n":"syTqjNox0hhU8MtLiOW334LeQfpSPyhDbabXh5n9ad_-ZpJWIZEiamS_oie4Xnwqpk-tHNEISNhdLsotIL5sakTYvXBZprGB_S7yFROwkpqgNLd_YTEZ2PH-fro81tdyG1tEOx7Np4KdsPxejLqakmjEWfLOci4sScfwtH0aREVY9hCHAyV8i_wHjhLKeAkILK2pc9XFQt1jmHXSXwhkO-WovD8ZGcmDDbZC5XAhOTHfCwLDEagS0pjsrW9xi24KnMkc8ujD4Sp0FH7CI4F7mnxHbzQhfIGQ_LsYQvUqpX5iR62IMqyn0GfUBUWlvkgVIUdGOOTIFrX66hN4ovZyNQ","e":"AQAB"},{"kty":"EC","kid":"Emet3gzdX2GJ6X3sR70ink1xDCA","use":"enc","x":"Afdbv3NjwdGtCSN0ubpp28226drqcYc8dkRFk489H7Hb5i3HzqjXRrrofPYo1jrf429MQUFxNBSvUglzSKFCcS7m","y":"AeJlrF4AjPh6aX7R9gIBjIYSOKEzecc0E0RBMr_3MrcfRkAyxFZdAoR9zPnkYV7c2ilf9JoNIglpGnfa7tjdTkeI","crv":"P-521"},{"kty":"EC","kid":"bVSaWvl7_PyXuNz10gfkrbMBdUU","use":"enc","x":"X-VQombGMfjQA9Ei0b-HJmbwSbLJjfG1Yn09-loXel-T1x8fMyOpycOVNqdaVnbN","y":"qkGUfywmBLntbEry6mupFYIFDFykHkWD8W06yvdKekYqP5XiThBSyOWY8JDWTkNi","crv":"P-384"},{"kty":"EC","kid":"h9-ADyHwngJLxB52_Z6cziGbrUw","use":"enc","x":"R6av-oDj3i1WLJwaabTKdqo621-jZ1tX2tiRHZ9SRo0","y":"-k2PyXxzkGN34HM5T2DklSYVnIt0yVXA7Z-VMrWgKUY","crv":"P-256"},{"kty":"RSA","kid":"zloXweeOUeYwbFBkvINwgIDX3NQ","use":"enc","n":"jH4KgmUAIqnHMbSbyxW0uDPVi0pf9bOlbR89bxzxsyGSI0_mxT4Aun7o5XNOELWbUjozmfcc26-PCgXMUoJUkyn-rSO-JQeG69K4RF5Nj23L54TNe605p1QKJ0mnDNTdHuNc9O4OOrMTWUCY2GitzaT5BYQ0ipnERMwZe0X21P-lREQeUCWU-A4rlwHuwv8ZQkQT9rZJ9WVyxNn5x4tWVluMMhhz0_FPUohcHSzNur_m13jbrYV4cenOHLHV88YXiW7E8oq9nHGcYxnsLOP3DH1XD8RijfD67RjVbD3MpIAzOUaZKolj6NpZlu4oJI5stoUTsx8x_kKd8mTNXapBVw","e":"AQAB"}]}
2021-02-09 15:40:05
FetchServerKeys
Found JWK set string
jwk_string
{"keys":[{"kty":"EC","kid":"WZycAcBmpIsK7AC_lDp1oVv0_pU","use":"sig","x":"EYdavwPxPZTOy-8azkMg0DdVidmFA8xxkD65uoUQqaw","y":"XnB5dzU3BH4boQQOLjwug5t0UcI6o0AUt2iEyyBSfF8","crv":"P-256"},{"kty":"EC","kid":"hozdUiKI2tnupnOxMglz3hqZzdI","use":"sig","x":"fEYk3Nzt1WkfuKO4z1ploajbQO0mF4KDN9aLCFp9LEE6OIv6NKQ54bhzz8Kz-KSH","y":"vpdExJFiaQJC4Z3tPQrf3gcfidOsF_Y-tW8zXNWtfUhg2XB3dmXN8zqoqg5R4_Da","crv":"P-384"},{"kty":"RSA","kid":"iw48tJYAHFt6Cio64Zkyt1P1_lM","use":"sig","n":"3aYk1NZOvBTsSoKDa3yjC5-IsJb02b2UedZRpqcEGc5D4zuPLPOzKdfkiJqdH0SzrAFlJhLmsTQWYe6EQAwtnoqZq6mB20sJpzldesmhjQeHp1xlVpNJ4rzRlP3JlrcTBUY7cn4dKnbpFw4ScyjjGZiYNkVUie5xZx3zTnIzfDnx7bFPDSB_egkVJVbzI6sbRV160Hi_ijzc75AtXQQRrOMgtN3pJI7BQd5nkH-pmOv9_VEu67pFJVhw7OWVONS2PIYqXjHOtO_GWBAoG1vxB7t1JLXfjKnhirh_L9r0JfzirJ0CslDV5CSq5BGtuEIvWzRYApA-lN8bJI-0TGOHUQ","e":"AQAB"},{"kty":"EC","kid":"qhmBURU2egiGFMm3gnHzCj_6X8s","use":"sig","x":"AHKPpCVRWVLQbc6EcVAwWlqvgy3djvVHV-I5Dppk4OJ4rCoyTxftBH2FLILypOjdQQC1aef3esklQCWVucdeIqs4","y":"AEEucgtAdU0rjIM8AaJNI84NxNVkPhbwiekZKLl6ZW4Oen58BvBJliHDbDXIQbpfRk9ZKQ1jFu7ujDLk7eANKsSt","crv":"P-521"},{"kty":"EC","kid":"1pzkTrqx61QHovTwm6zfCSOIoVU","use":"sig","x":"AAL4ymXgpGb-bXf7zG437bVL6dvGxMBwfNzgDtG0WG6B7CRmm_zbgFKBU0VwL4inq5JmZCNJpCPG0Ue0I4fYFDwn","y":"AO1tks_YmhLZwAyDhN18-rNeCKC_ZO7fH1XuklVw7LdJQoVYm5DAi7SF2swaNbgtU7iUv9xGqCICYTc64BPWLh69","crv":"P-521"},{"kty":"EC","kid":"4u_kl93Ywmq6jwslV-_rHaor4qM","use":"sig","x":"GvAz2_rQHvQPQgrKSja77NGEugZACRykNaedzgAF8miOi52jWXGXvndmHZXV_ztr","y":"rOAtcsJInw6FnAlK0m0ZQPi50R-gyU6QMaRx3t1q4Yu0GNmlUM54OWgeTpgfcTOJ","crv":"P-384"},{"kty":"RSA","kid":"vbZ1nKEPquCJLRzOTGXgN1YUCDM","use":"sig","n":"tq5MSaWxH9kFQPjmIVkl2Qlh_GMB_Fz2bkIXzQ7X4W-s0oLxq27SCc2N2YUAvturFo3sq5xHaziOeN8GwQ5AYXv7xfpo2ibnq8ZPs-LxbwEtkWUBiYxOjVdA7lqrCiCZ8vagKtxZDXNcqAp6AqQInDS5LFi7s1BpP8JU1ueJYnWL3X-4tu1fabciTNILJ_oWF6m3igfI2IM24FtstbyqgExrE_VLz32Ml4UcaK5UZR8_aUh_ZUE7ldD1Uwxgz5z2CmvXhxv_f2EqI67qHsepOmZyCl917Ipd1Zgz4SsEdu2Ox4qBhvW2y5LZtzZFLQfG0BYQ1Vn1tKAdAUHUtIXuEw","e":"AQAB"},{"kty":"EC","kid":"zn7C0HavPWAQlktyyP1-bSuDROk","use":"sig","x":"Li6Sm2LF39wKtOviYs_tZ7bnLXmXwpEUh1yq7jHuV6I","y":"_zR7st26gA_A4VB4AgwXBJSkfeXxLud93M0vdF8GfX8","crv":"P-256"},{"kty":"EC","kid":"5kv-xTubQhrSAd3EKNWkoPi0bBo","use":"sig","x":"OuZsnMk72Lo1uorfir3G3_OCfEfKXZ8ECD4FufdMOnE","y":"CJmfk8fKgMefVFvLwQ2fI7laQS9hIY3NEmDK7tmKFrg","crv":"P-256"},{"kty":"EC","kid":"NRNWjzWljA_Vito3kR7xP7k4o7A","use":"sig","x":"Ab6QAmNidfhHDpipUT-nyV82PD66N1IoCRIlodBOAITsDO2m9t390KkpBQ-jcP7qFHb7KyrJTuPwiLXM7n3Y_0_Q","y":"AVBugkGCCSewzRlnUyqivNZIhleiGD8Yc-Uew8bb6KWoL7u-2yauns3WGgr1LL1rkpIhZzJlKnGAVNW3pwRcEe93","crv":"P-521"},{"kty":"EC","kid":"OKmg_Z_HbFKw8KhUO9MJxInnHqk","use":"sig","x":"lHZ6yfwZBoBwA-XxOAZo51dDlIz01Mli8LUPCIQ9SLCf3QG78Gn6wLdu0GqvkEfC","y":"mkdeCGr0iCIZbj98XARCAdts3WHV0dwrPra7ZwKQQsJomyE2nWTMlN78mrWG3z5T","crv":"P-384"},{"kty":"RSA","kid":"aHH7Ogg3vaGZhCIQGhX_ZGr0CWM","use":"sig","n":"syTqjNox0hhU8MtLiOW334LeQfpSPyhDbabXh5n9ad_-ZpJWIZEiamS_oie4Xnwqpk-tHNEISNhdLsotIL5sakTYvXBZprGB_S7yFROwkpqgNLd_YTEZ2PH-fro81tdyG1tEOx7Np4KdsPxejLqakmjEWfLOci4sScfwtH0aREVY9hCHAyV8i_wHjhLKeAkILK2pc9XFQt1jmHXSXwhkO-WovD8ZGcmDDbZC5XAhOTHfCwLDEagS0pjsrW9xi24KnMkc8ujD4Sp0FH7CI4F7mnxHbzQhfIGQ_LsYQvUqpX5iR62IMqyn0GfUBUWlvkgVIUdGOOTIFrX66hN4ovZyNQ","e":"AQAB"},{"kty":"EC","kid":"Emet3gzdX2GJ6X3sR70ink1xDCA","use":"enc","x":"Afdbv3NjwdGtCSN0ubpp28226drqcYc8dkRFk489H7Hb5i3HzqjXRrrofPYo1jrf429MQUFxNBSvUglzSKFCcS7m","y":"AeJlrF4AjPh6aX7R9gIBjIYSOKEzecc0E0RBMr_3MrcfRkAyxFZdAoR9zPnkYV7c2ilf9JoNIglpGnfa7tjdTkeI","crv":"P-521"},{"kty":"EC","kid":"bVSaWvl7_PyXuNz10gfkrbMBdUU","use":"enc","x":"X-VQombGMfjQA9Ei0b-HJmbwSbLJjfG1Yn09-loXel-T1x8fMyOpycOVNqdaVnbN","y":"qkGUfywmBLntbEry6mupFYIFDFykHkWD8W06yvdKekYqP5XiThBSyOWY8JDWTkNi","crv":"P-384"},{"kty":"EC","kid":"h9-ADyHwngJLxB52_Z6cziGbrUw","use":"enc","x":"R6av-oDj3i1WLJwaabTKdqo621-jZ1tX2tiRHZ9SRo0","y":"-k2PyXxzkGN34HM5T2DklSYVnIt0yVXA7Z-VMrWgKUY","crv":"P-256"},{"kty":"RSA","kid":"zloXweeOUeYwbFBkvINwgIDX3NQ","use":"enc","n":"jH4KgmUAIqnHMbSbyxW0uDPVi0pf9bOlbR89bxzxsyGSI0_mxT4Aun7o5XNOELWbUjozmfcc26-PCgXMUoJUkyn-rSO-JQeG69K4RF5Nj23L54TNe605p1QKJ0mnDNTdHuNc9O4OOrMTWUCY2GitzaT5BYQ0ipnERMwZe0X21P-lREQeUCWU-A4rlwHuwv8ZQkQT9rZJ9WVyxNn5x4tWVluMMhhz0_FPUohcHSzNur_m13jbrYV4cenOHLHV88YXiW7E8oq9nHGcYxnsLOP3DH1XD8RijfD67RjVbD3MpIAzOUaZKolj6NpZlu4oJI5stoUTsx8x_kKd8mTNXapBVw","e":"AQAB"}]}
2021-02-09 15:40:05 SUCCESS
FetchServerKeys
Found server JWK set
server_jwks
{
  "keys": [
    {
      "kty": "EC",
      "kid": "WZycAcBmpIsK7AC_lDp1oVv0_pU",
      "use": "sig",
      "x": "EYdavwPxPZTOy-8azkMg0DdVidmFA8xxkD65uoUQqaw",
      "y": "XnB5dzU3BH4boQQOLjwug5t0UcI6o0AUt2iEyyBSfF8",
      "crv": "P-256"
    },
    {
      "kty": "EC",
      "kid": "hozdUiKI2tnupnOxMglz3hqZzdI",
      "use": "sig",
      "x": "fEYk3Nzt1WkfuKO4z1ploajbQO0mF4KDN9aLCFp9LEE6OIv6NKQ54bhzz8Kz-KSH",
      "y": "vpdExJFiaQJC4Z3tPQrf3gcfidOsF_Y-tW8zXNWtfUhg2XB3dmXN8zqoqg5R4_Da",
      "crv": "P-384"
    },
    {
      "kty": "RSA",
      "kid": "iw48tJYAHFt6Cio64Zkyt1P1_lM",
      "use": "sig",
      "n": "3aYk1NZOvBTsSoKDa3yjC5-IsJb02b2UedZRpqcEGc5D4zuPLPOzKdfkiJqdH0SzrAFlJhLmsTQWYe6EQAwtnoqZq6mB20sJpzldesmhjQeHp1xlVpNJ4rzRlP3JlrcTBUY7cn4dKnbpFw4ScyjjGZiYNkVUie5xZx3zTnIzfDnx7bFPDSB_egkVJVbzI6sbRV160Hi_ijzc75AtXQQRrOMgtN3pJI7BQd5nkH-pmOv9_VEu67pFJVhw7OWVONS2PIYqXjHOtO_GWBAoG1vxB7t1JLXfjKnhirh_L9r0JfzirJ0CslDV5CSq5BGtuEIvWzRYApA-lN8bJI-0TGOHUQ",
      "e": "AQAB"
    },
    {
      "kty": "EC",
      "kid": "qhmBURU2egiGFMm3gnHzCj_6X8s",
      "use": "sig",
      "x": "AHKPpCVRWVLQbc6EcVAwWlqvgy3djvVHV-I5Dppk4OJ4rCoyTxftBH2FLILypOjdQQC1aef3esklQCWVucdeIqs4",
      "y": "AEEucgtAdU0rjIM8AaJNI84NxNVkPhbwiekZKLl6ZW4Oen58BvBJliHDbDXIQbpfRk9ZKQ1jFu7ujDLk7eANKsSt",
      "crv": "P-521"
    },
    {
      "kty": "EC",
      "kid": "1pzkTrqx61QHovTwm6zfCSOIoVU",
      "use": "sig",
      "x": "AAL4ymXgpGb-bXf7zG437bVL6dvGxMBwfNzgDtG0WG6B7CRmm_zbgFKBU0VwL4inq5JmZCNJpCPG0Ue0I4fYFDwn",
      "y": "AO1tks_YmhLZwAyDhN18-rNeCKC_ZO7fH1XuklVw7LdJQoVYm5DAi7SF2swaNbgtU7iUv9xGqCICYTc64BPWLh69",
      "crv": "P-521"
    },
    {
      "kty": "EC",
      "kid": "4u_kl93Ywmq6jwslV-_rHaor4qM",
      "use": "sig",
      "x": "GvAz2_rQHvQPQgrKSja77NGEugZACRykNaedzgAF8miOi52jWXGXvndmHZXV_ztr",
      "y": "rOAtcsJInw6FnAlK0m0ZQPi50R-gyU6QMaRx3t1q4Yu0GNmlUM54OWgeTpgfcTOJ",
      "crv": "P-384"
    },
    {
      "kty": "RSA",
      "kid": "vbZ1nKEPquCJLRzOTGXgN1YUCDM",
      "use": "sig",
      "n": "tq5MSaWxH9kFQPjmIVkl2Qlh_GMB_Fz2bkIXzQ7X4W-s0oLxq27SCc2N2YUAvturFo3sq5xHaziOeN8GwQ5AYXv7xfpo2ibnq8ZPs-LxbwEtkWUBiYxOjVdA7lqrCiCZ8vagKtxZDXNcqAp6AqQInDS5LFi7s1BpP8JU1ueJYnWL3X-4tu1fabciTNILJ_oWF6m3igfI2IM24FtstbyqgExrE_VLz32Ml4UcaK5UZR8_aUh_ZUE7ldD1Uwxgz5z2CmvXhxv_f2EqI67qHsepOmZyCl917Ipd1Zgz4SsEdu2Ox4qBhvW2y5LZtzZFLQfG0BYQ1Vn1tKAdAUHUtIXuEw",
      "e": "AQAB"
    },
    {
      "kty": "EC",
      "kid": "zn7C0HavPWAQlktyyP1-bSuDROk",
      "use": "sig",
      "x": "Li6Sm2LF39wKtOviYs_tZ7bnLXmXwpEUh1yq7jHuV6I",
      "y": "_zR7st26gA_A4VB4AgwXBJSkfeXxLud93M0vdF8GfX8",
      "crv": "P-256"
    },
    {
      "kty": "EC",
      "kid": "5kv-xTubQhrSAd3EKNWkoPi0bBo",
      "use": "sig",
      "x": "OuZsnMk72Lo1uorfir3G3_OCfEfKXZ8ECD4FufdMOnE",
      "y": "CJmfk8fKgMefVFvLwQ2fI7laQS9hIY3NEmDK7tmKFrg",
      "crv": "P-256"
    },
    {
      "kty": "EC",
      "kid": "NRNWjzWljA_Vito3kR7xP7k4o7A",
      "use": "sig",
      "x": "Ab6QAmNidfhHDpipUT-nyV82PD66N1IoCRIlodBOAITsDO2m9t390KkpBQ-jcP7qFHb7KyrJTuPwiLXM7n3Y_0_Q",
      "y": "AVBugkGCCSewzRlnUyqivNZIhleiGD8Yc-Uew8bb6KWoL7u-2yauns3WGgr1LL1rkpIhZzJlKnGAVNW3pwRcEe93",
      "crv": "P-521"
    },
    {
      "kty": "EC",
      "kid": "OKmg_Z_HbFKw8KhUO9MJxInnHqk",
      "use": "sig",
      "x": "lHZ6yfwZBoBwA-XxOAZo51dDlIz01Mli8LUPCIQ9SLCf3QG78Gn6wLdu0GqvkEfC",
      "y": "mkdeCGr0iCIZbj98XARCAdts3WHV0dwrPra7ZwKQQsJomyE2nWTMlN78mrWG3z5T",
      "crv": "P-384"
    },
    {
      "kty": "RSA",
      "kid": "aHH7Ogg3vaGZhCIQGhX_ZGr0CWM",
      "use": "sig",
      "n": "syTqjNox0hhU8MtLiOW334LeQfpSPyhDbabXh5n9ad_-ZpJWIZEiamS_oie4Xnwqpk-tHNEISNhdLsotIL5sakTYvXBZprGB_S7yFROwkpqgNLd_YTEZ2PH-fro81tdyG1tEOx7Np4KdsPxejLqakmjEWfLOci4sScfwtH0aREVY9hCHAyV8i_wHjhLKeAkILK2pc9XFQt1jmHXSXwhkO-WovD8ZGcmDDbZC5XAhOTHfCwLDEagS0pjsrW9xi24KnMkc8ujD4Sp0FH7CI4F7mnxHbzQhfIGQ_LsYQvUqpX5iR62IMqyn0GfUBUWlvkgVIUdGOOTIFrX66hN4ovZyNQ",
      "e": "AQAB"
    },
    {
      "kty": "EC",
      "kid": "Emet3gzdX2GJ6X3sR70ink1xDCA",
      "use": "enc",
      "x": "Afdbv3NjwdGtCSN0ubpp28226drqcYc8dkRFk489H7Hb5i3HzqjXRrrofPYo1jrf429MQUFxNBSvUglzSKFCcS7m",
      "y": "AeJlrF4AjPh6aX7R9gIBjIYSOKEzecc0E0RBMr_3MrcfRkAyxFZdAoR9zPnkYV7c2ilf9JoNIglpGnfa7tjdTkeI",
      "crv": "P-521"
    },
    {
      "kty": "EC",
      "kid": "bVSaWvl7_PyXuNz10gfkrbMBdUU",
      "use": "enc",
      "x": "X-VQombGMfjQA9Ei0b-HJmbwSbLJjfG1Yn09-loXel-T1x8fMyOpycOVNqdaVnbN",
      "y": "qkGUfywmBLntbEry6mupFYIFDFykHkWD8W06yvdKekYqP5XiThBSyOWY8JDWTkNi",
      "crv": "P-384"
    },
    {
      "kty": "EC",
      "kid": "h9-ADyHwngJLxB52_Z6cziGbrUw",
      "use": "enc",
      "x": "R6av-oDj3i1WLJwaabTKdqo621-jZ1tX2tiRHZ9SRo0",
      "y": "-k2PyXxzkGN34HM5T2DklSYVnIt0yVXA7Z-VMrWgKUY",
      "crv": "P-256"
    },
    {
      "kty": "RSA",
      "kid": "zloXweeOUeYwbFBkvINwgIDX3NQ",
      "use": "enc",
      "n": "jH4KgmUAIqnHMbSbyxW0uDPVi0pf9bOlbR89bxzxsyGSI0_mxT4Aun7o5XNOELWbUjozmfcc26-PCgXMUoJUkyn-rSO-JQeG69K4RF5Nj23L54TNe605p1QKJ0mnDNTdHuNc9O4OOrMTWUCY2GitzaT5BYQ0ipnERMwZe0X21P-lREQeUCWU-A4rlwHuwv8ZQkQT9rZJ9WVyxNn5x4tWVluMMhhz0_FPUohcHSzNur_m13jbrYV4cenOHLHV88YXiW7E8oq9nHGcYxnsLOP3DH1XD8RijfD67RjVbD3MpIAzOUaZKolj6NpZlu4oJI5stoUTsx8x_kKd8mTNXapBVw",
      "e": "AQAB"
    }
  ]
}
2021-02-09 15:40:05 SUCCESS
CheckServerKeysIsValid
Server JWKs is valid
server_jwks
{
  "keys": [
    {
      "kty": "EC",
      "kid": "WZycAcBmpIsK7AC_lDp1oVv0_pU",
      "use": "sig",
      "x": "EYdavwPxPZTOy-8azkMg0DdVidmFA8xxkD65uoUQqaw",
      "y": "XnB5dzU3BH4boQQOLjwug5t0UcI6o0AUt2iEyyBSfF8",
      "crv": "P-256"
    },
    {
      "kty": "EC",
      "kid": "hozdUiKI2tnupnOxMglz3hqZzdI",
      "use": "sig",
      "x": "fEYk3Nzt1WkfuKO4z1ploajbQO0mF4KDN9aLCFp9LEE6OIv6NKQ54bhzz8Kz-KSH",
      "y": "vpdExJFiaQJC4Z3tPQrf3gcfidOsF_Y-tW8zXNWtfUhg2XB3dmXN8zqoqg5R4_Da",
      "crv": "P-384"
    },
    {
      "kty": "RSA",
      "kid": "iw48tJYAHFt6Cio64Zkyt1P1_lM",
      "use": "sig",
      "n": "3aYk1NZOvBTsSoKDa3yjC5-IsJb02b2UedZRpqcEGc5D4zuPLPOzKdfkiJqdH0SzrAFlJhLmsTQWYe6EQAwtnoqZq6mB20sJpzldesmhjQeHp1xlVpNJ4rzRlP3JlrcTBUY7cn4dKnbpFw4ScyjjGZiYNkVUie5xZx3zTnIzfDnx7bFPDSB_egkVJVbzI6sbRV160Hi_ijzc75AtXQQRrOMgtN3pJI7BQd5nkH-pmOv9_VEu67pFJVhw7OWVONS2PIYqXjHOtO_GWBAoG1vxB7t1JLXfjKnhirh_L9r0JfzirJ0CslDV5CSq5BGtuEIvWzRYApA-lN8bJI-0TGOHUQ",
      "e": "AQAB"
    },
    {
      "kty": "EC",
      "kid": "qhmBURU2egiGFMm3gnHzCj_6X8s",
      "use": "sig",
      "x": "AHKPpCVRWVLQbc6EcVAwWlqvgy3djvVHV-I5Dppk4OJ4rCoyTxftBH2FLILypOjdQQC1aef3esklQCWVucdeIqs4",
      "y": "AEEucgtAdU0rjIM8AaJNI84NxNVkPhbwiekZKLl6ZW4Oen58BvBJliHDbDXIQbpfRk9ZKQ1jFu7ujDLk7eANKsSt",
      "crv": "P-521"
    },
    {
      "kty": "EC",
      "kid": "1pzkTrqx61QHovTwm6zfCSOIoVU",
      "use": "sig",
      "x": "AAL4ymXgpGb-bXf7zG437bVL6dvGxMBwfNzgDtG0WG6B7CRmm_zbgFKBU0VwL4inq5JmZCNJpCPG0Ue0I4fYFDwn",
      "y": "AO1tks_YmhLZwAyDhN18-rNeCKC_ZO7fH1XuklVw7LdJQoVYm5DAi7SF2swaNbgtU7iUv9xGqCICYTc64BPWLh69",
      "crv": "P-521"
    },
    {
      "kty": "EC",
      "kid": "4u_kl93Ywmq6jwslV-_rHaor4qM",
      "use": "sig",
      "x": "GvAz2_rQHvQPQgrKSja77NGEugZACRykNaedzgAF8miOi52jWXGXvndmHZXV_ztr",
      "y": "rOAtcsJInw6FnAlK0m0ZQPi50R-gyU6QMaRx3t1q4Yu0GNmlUM54OWgeTpgfcTOJ",
      "crv": "P-384"
    },
    {
      "kty": "RSA",
      "kid": "vbZ1nKEPquCJLRzOTGXgN1YUCDM",
      "use": "sig",
      "n": "tq5MSaWxH9kFQPjmIVkl2Qlh_GMB_Fz2bkIXzQ7X4W-s0oLxq27SCc2N2YUAvturFo3sq5xHaziOeN8GwQ5AYXv7xfpo2ibnq8ZPs-LxbwEtkWUBiYxOjVdA7lqrCiCZ8vagKtxZDXNcqAp6AqQInDS5LFi7s1BpP8JU1ueJYnWL3X-4tu1fabciTNILJ_oWF6m3igfI2IM24FtstbyqgExrE_VLz32Ml4UcaK5UZR8_aUh_ZUE7ldD1Uwxgz5z2CmvXhxv_f2EqI67qHsepOmZyCl917Ipd1Zgz4SsEdu2Ox4qBhvW2y5LZtzZFLQfG0BYQ1Vn1tKAdAUHUtIXuEw",
      "e": "AQAB"
    },
    {
      "kty": "EC",
      "kid": "zn7C0HavPWAQlktyyP1-bSuDROk",
      "use": "sig",
      "x": "Li6Sm2LF39wKtOviYs_tZ7bnLXmXwpEUh1yq7jHuV6I",
      "y": "_zR7st26gA_A4VB4AgwXBJSkfeXxLud93M0vdF8GfX8",
      "crv": "P-256"
    },
    {
      "kty": "EC",
      "kid": "5kv-xTubQhrSAd3EKNWkoPi0bBo",
      "use": "sig",
      "x": "OuZsnMk72Lo1uorfir3G3_OCfEfKXZ8ECD4FufdMOnE",
      "y": "CJmfk8fKgMefVFvLwQ2fI7laQS9hIY3NEmDK7tmKFrg",
      "crv": "P-256"
    },
    {
      "kty": "EC",
      "kid": "NRNWjzWljA_Vito3kR7xP7k4o7A",
      "use": "sig",
      "x": "Ab6QAmNidfhHDpipUT-nyV82PD66N1IoCRIlodBOAITsDO2m9t390KkpBQ-jcP7qFHb7KyrJTuPwiLXM7n3Y_0_Q",
      "y": "AVBugkGCCSewzRlnUyqivNZIhleiGD8Yc-Uew8bb6KWoL7u-2yauns3WGgr1LL1rkpIhZzJlKnGAVNW3pwRcEe93",
      "crv": "P-521"
    },
    {
      "kty": "EC",
      "kid": "OKmg_Z_HbFKw8KhUO9MJxInnHqk",
      "use": "sig",
      "x": "lHZ6yfwZBoBwA-XxOAZo51dDlIz01Mli8LUPCIQ9SLCf3QG78Gn6wLdu0GqvkEfC",
      "y": "mkdeCGr0iCIZbj98XARCAdts3WHV0dwrPra7ZwKQQsJomyE2nWTMlN78mrWG3z5T",
      "crv": "P-384"
    },
    {
      "kty": "RSA",
      "kid": "aHH7Ogg3vaGZhCIQGhX_ZGr0CWM",
      "use": "sig",
      "n": "syTqjNox0hhU8MtLiOW334LeQfpSPyhDbabXh5n9ad_-ZpJWIZEiamS_oie4Xnwqpk-tHNEISNhdLsotIL5sakTYvXBZprGB_S7yFROwkpqgNLd_YTEZ2PH-fro81tdyG1tEOx7Np4KdsPxejLqakmjEWfLOci4sScfwtH0aREVY9hCHAyV8i_wHjhLKeAkILK2pc9XFQt1jmHXSXwhkO-WovD8ZGcmDDbZC5XAhOTHfCwLDEagS0pjsrW9xi24KnMkc8ujD4Sp0FH7CI4F7mnxHbzQhfIGQ_LsYQvUqpX5iR62IMqyn0GfUBUWlvkgVIUdGOOTIFrX66hN4ovZyNQ",
      "e": "AQAB"
    },
    {
      "kty": "EC",
      "kid": "Emet3gzdX2GJ6X3sR70ink1xDCA",
      "use": "enc",
      "x": "Afdbv3NjwdGtCSN0ubpp28226drqcYc8dkRFk489H7Hb5i3HzqjXRrrofPYo1jrf429MQUFxNBSvUglzSKFCcS7m",
      "y": "AeJlrF4AjPh6aX7R9gIBjIYSOKEzecc0E0RBMr_3MrcfRkAyxFZdAoR9zPnkYV7c2ilf9JoNIglpGnfa7tjdTkeI",
      "crv": "P-521"
    },
    {
      "kty": "EC",
      "kid": "bVSaWvl7_PyXuNz10gfkrbMBdUU",
      "use": "enc",
      "x": "X-VQombGMfjQA9Ei0b-HJmbwSbLJjfG1Yn09-loXel-T1x8fMyOpycOVNqdaVnbN",
      "y": "qkGUfywmBLntbEry6mupFYIFDFykHkWD8W06yvdKekYqP5XiThBSyOWY8JDWTkNi",
      "crv": "P-384"
    },
    {
      "kty": "EC",
      "kid": "h9-ADyHwngJLxB52_Z6cziGbrUw",
      "use": "enc",
      "x": "R6av-oDj3i1WLJwaabTKdqo621-jZ1tX2tiRHZ9SRo0",
      "y": "-k2PyXxzkGN34HM5T2DklSYVnIt0yVXA7Z-VMrWgKUY",
      "crv": "P-256"
    },
    {
      "kty": "RSA",
      "kid": "zloXweeOUeYwbFBkvINwgIDX3NQ",
      "use": "enc",
      "n": "jH4KgmUAIqnHMbSbyxW0uDPVi0pf9bOlbR89bxzxsyGSI0_mxT4Aun7o5XNOELWbUjozmfcc26-PCgXMUoJUkyn-rSO-JQeG69K4RF5Nj23L54TNe605p1QKJ0mnDNTdHuNc9O4OOrMTWUCY2GitzaT5BYQ0ipnERMwZe0X21P-lREQeUCWU-A4rlwHuwv8ZQkQT9rZJ9WVyxNn5x4tWVluMMhhz0_FPUohcHSzNur_m13jbrYV4cenOHLHV88YXiW7E8oq9nHGcYxnsLOP3DH1XD8RijfD67RjVbD3MpIAzOUaZKolj6NpZlu4oJI5stoUTsx8x_kKd8mTNXapBVw",
      "e": "AQAB"
    }
  ]
}
2021-02-09 15:40:05 SUCCESS
ValidateServerJWKs
Valid server JWKs: keys are valid JSON, contain the required fields and are correctly encoded using unpadded base64url
2021-02-09 15:40:05 SUCCESS
CheckForKeyIdInServerJWKs
All keys contain kids
2021-02-09 15:40:05 SUCCESS
EnsureServerJwksDoesNotContainPrivateOrSymmetricKeys
Jwks does not contain any private or symmetric keys
2021-02-09 15:40:05 SUCCESS
FAPIEnsureMinimumServerKeyLength
Validated minimum key lengths for server_jwks
server_jwks
{
  "keys": [
    {
      "kty": "EC",
      "kid": "WZycAcBmpIsK7AC_lDp1oVv0_pU",
      "use": "sig",
      "x": "EYdavwPxPZTOy-8azkMg0DdVidmFA8xxkD65uoUQqaw",
      "y": "XnB5dzU3BH4boQQOLjwug5t0UcI6o0AUt2iEyyBSfF8",
      "crv": "P-256"
    },
    {
      "kty": "EC",
      "kid": "hozdUiKI2tnupnOxMglz3hqZzdI",
      "use": "sig",
      "x": "fEYk3Nzt1WkfuKO4z1ploajbQO0mF4KDN9aLCFp9LEE6OIv6NKQ54bhzz8Kz-KSH",
      "y": "vpdExJFiaQJC4Z3tPQrf3gcfidOsF_Y-tW8zXNWtfUhg2XB3dmXN8zqoqg5R4_Da",
      "crv": "P-384"
    },
    {
      "kty": "RSA",
      "kid": "iw48tJYAHFt6Cio64Zkyt1P1_lM",
      "use": "sig",
      "n": "3aYk1NZOvBTsSoKDa3yjC5-IsJb02b2UedZRpqcEGc5D4zuPLPOzKdfkiJqdH0SzrAFlJhLmsTQWYe6EQAwtnoqZq6mB20sJpzldesmhjQeHp1xlVpNJ4rzRlP3JlrcTBUY7cn4dKnbpFw4ScyjjGZiYNkVUie5xZx3zTnIzfDnx7bFPDSB_egkVJVbzI6sbRV160Hi_ijzc75AtXQQRrOMgtN3pJI7BQd5nkH-pmOv9_VEu67pFJVhw7OWVONS2PIYqXjHOtO_GWBAoG1vxB7t1JLXfjKnhirh_L9r0JfzirJ0CslDV5CSq5BGtuEIvWzRYApA-lN8bJI-0TGOHUQ",
      "e": "AQAB"
    },
    {
      "kty": "EC",
      "kid": "qhmBURU2egiGFMm3gnHzCj_6X8s",
      "use": "sig",
      "x": "AHKPpCVRWVLQbc6EcVAwWlqvgy3djvVHV-I5Dppk4OJ4rCoyTxftBH2FLILypOjdQQC1aef3esklQCWVucdeIqs4",
      "y": "AEEucgtAdU0rjIM8AaJNI84NxNVkPhbwiekZKLl6ZW4Oen58BvBJliHDbDXIQbpfRk9ZKQ1jFu7ujDLk7eANKsSt",
      "crv": "P-521"
    },
    {
      "kty": "EC",
      "kid": "1pzkTrqx61QHovTwm6zfCSOIoVU",
      "use": "sig",
      "x": "AAL4ymXgpGb-bXf7zG437bVL6dvGxMBwfNzgDtG0WG6B7CRmm_zbgFKBU0VwL4inq5JmZCNJpCPG0Ue0I4fYFDwn",
      "y": "AO1tks_YmhLZwAyDhN18-rNeCKC_ZO7fH1XuklVw7LdJQoVYm5DAi7SF2swaNbgtU7iUv9xGqCICYTc64BPWLh69",
      "crv": "P-521"
    },
    {
      "kty": "EC",
      "kid": "4u_kl93Ywmq6jwslV-_rHaor4qM",
      "use": "sig",
      "x": "GvAz2_rQHvQPQgrKSja77NGEugZACRykNaedzgAF8miOi52jWXGXvndmHZXV_ztr",
      "y": "rOAtcsJInw6FnAlK0m0ZQPi50R-gyU6QMaRx3t1q4Yu0GNmlUM54OWgeTpgfcTOJ",
      "crv": "P-384"
    },
    {
      "kty": "RSA",
      "kid": "vbZ1nKEPquCJLRzOTGXgN1YUCDM",
      "use": "sig",
      "n": "tq5MSaWxH9kFQPjmIVkl2Qlh_GMB_Fz2bkIXzQ7X4W-s0oLxq27SCc2N2YUAvturFo3sq5xHaziOeN8GwQ5AYXv7xfpo2ibnq8ZPs-LxbwEtkWUBiYxOjVdA7lqrCiCZ8vagKtxZDXNcqAp6AqQInDS5LFi7s1BpP8JU1ueJYnWL3X-4tu1fabciTNILJ_oWF6m3igfI2IM24FtstbyqgExrE_VLz32Ml4UcaK5UZR8_aUh_ZUE7ldD1Uwxgz5z2CmvXhxv_f2EqI67qHsepOmZyCl917Ipd1Zgz4SsEdu2Ox4qBhvW2y5LZtzZFLQfG0BYQ1Vn1tKAdAUHUtIXuEw",
      "e": "AQAB"
    },
    {
      "kty": "EC",
      "kid": "zn7C0HavPWAQlktyyP1-bSuDROk",
      "use": "sig",
      "x": "Li6Sm2LF39wKtOviYs_tZ7bnLXmXwpEUh1yq7jHuV6I",
      "y": "_zR7st26gA_A4VB4AgwXBJSkfeXxLud93M0vdF8GfX8",
      "crv": "P-256"
    },
    {
      "kty": "EC",
      "kid": "5kv-xTubQhrSAd3EKNWkoPi0bBo",
      "use": "sig",
      "x": "OuZsnMk72Lo1uorfir3G3_OCfEfKXZ8ECD4FufdMOnE",
      "y": "CJmfk8fKgMefVFvLwQ2fI7laQS9hIY3NEmDK7tmKFrg",
      "crv": "P-256"
    },
    {
      "kty": "EC",
      "kid": "NRNWjzWljA_Vito3kR7xP7k4o7A",
      "use": "sig",
      "x": "Ab6QAmNidfhHDpipUT-nyV82PD66N1IoCRIlodBOAITsDO2m9t390KkpBQ-jcP7qFHb7KyrJTuPwiLXM7n3Y_0_Q",
      "y": "AVBugkGCCSewzRlnUyqivNZIhleiGD8Yc-Uew8bb6KWoL7u-2yauns3WGgr1LL1rkpIhZzJlKnGAVNW3pwRcEe93",
      "crv": "P-521"
    },
    {
      "kty": "EC",
      "kid": "OKmg_Z_HbFKw8KhUO9MJxInnHqk",
      "use": "sig",
      "x": "lHZ6yfwZBoBwA-XxOAZo51dDlIz01Mli8LUPCIQ9SLCf3QG78Gn6wLdu0GqvkEfC",
      "y": "mkdeCGr0iCIZbj98XARCAdts3WHV0dwrPra7ZwKQQsJomyE2nWTMlN78mrWG3z5T",
      "crv": "P-384"
    },
    {
      "kty": "RSA",
      "kid": "aHH7Ogg3vaGZhCIQGhX_ZGr0CWM",
      "use": "sig",
      "n": "syTqjNox0hhU8MtLiOW334LeQfpSPyhDbabXh5n9ad_-ZpJWIZEiamS_oie4Xnwqpk-tHNEISNhdLsotIL5sakTYvXBZprGB_S7yFROwkpqgNLd_YTEZ2PH-fro81tdyG1tEOx7Np4KdsPxejLqakmjEWfLOci4sScfwtH0aREVY9hCHAyV8i_wHjhLKeAkILK2pc9XFQt1jmHXSXwhkO-WovD8ZGcmDDbZC5XAhOTHfCwLDEagS0pjsrW9xi24KnMkc8ujD4Sp0FH7CI4F7mnxHbzQhfIGQ_LsYQvUqpX5iR62IMqyn0GfUBUWlvkgVIUdGOOTIFrX66hN4ovZyNQ",
      "e": "AQAB"
    },
    {
      "kty": "EC",
      "kid": "Emet3gzdX2GJ6X3sR70ink1xDCA",
      "use": "enc",
      "x": "Afdbv3NjwdGtCSN0ubpp28226drqcYc8dkRFk489H7Hb5i3HzqjXRrrofPYo1jrf429MQUFxNBSvUglzSKFCcS7m",
      "y": "AeJlrF4AjPh6aX7R9gIBjIYSOKEzecc0E0RBMr_3MrcfRkAyxFZdAoR9zPnkYV7c2ilf9JoNIglpGnfa7tjdTkeI",
      "crv": "P-521"
    },
    {
      "kty": "EC",
      "kid": "bVSaWvl7_PyXuNz10gfkrbMBdUU",
      "use": "enc",
      "x": "X-VQombGMfjQA9Ei0b-HJmbwSbLJjfG1Yn09-loXel-T1x8fMyOpycOVNqdaVnbN",
      "y": "qkGUfywmBLntbEry6mupFYIFDFykHkWD8W06yvdKekYqP5XiThBSyOWY8JDWTkNi",
      "crv": "P-384"
    },
    {
      "kty": "EC",
      "kid": "h9-ADyHwngJLxB52_Z6cziGbrUw",
      "use": "enc",
      "x": "R6av-oDj3i1WLJwaabTKdqo621-jZ1tX2tiRHZ9SRo0",
      "y": "-k2PyXxzkGN34HM5T2DklSYVnIt0yVXA7Z-VMrWgKUY",
      "crv": "P-256"
    },
    {
      "kty": "RSA",
      "kid": "zloXweeOUeYwbFBkvINwgIDX3NQ",
      "use": "enc",
      "n": "jH4KgmUAIqnHMbSbyxW0uDPVi0pf9bOlbR89bxzxsyGSI0_mxT4Aun7o5XNOELWbUjozmfcc26-PCgXMUoJUkyn-rSO-JQeG69K4RF5Nj23L54TNe605p1QKJ0mnDNTdHuNc9O4OOrMTWUCY2GitzaT5BYQ0ipnERMwZe0X21P-lREQeUCWU-A4rlwHuwv8ZQkQT9rZJ9WVyxNn5x4tWVluMMhhz0_FPUohcHSzNur_m13jbrYV4cenOHLHV88YXiW7E8oq9nHGcYxnsLOP3DH1XD8RijfD67RjVbD3MpIAzOUaZKolj6NpZlu4oJI5stoUTsx8x_kKd8mTNXapBVw",
      "e": "AQAB"
    }
  ]
}
Verify First client: static client configuration
2021-02-09 15:40:05 SUCCESS
GetStaticClientConfiguration
Found a static client object
client_id
conformance3
scope
openid test
jwks
{
  "keys": [
    {
      "kty": "EC",
      "d": "QPg1PBy12DhqqGeiuWBoIdhrfbOutP8nfSND46mdTgU",
      "use": "sig",
      "crv": "P-256",
      "kid": "2HKyz2Uc4F8hRcwyuPgA5Eg_salnEe7pfujUkvj2yew",
      "x": "NK3-2enqupOW-PGDSp2X2vrtqFIVnsVMciZdVwa7p8Q",
      "y": "Yrp1yMUYXZcWbHRzsXlH94v2SJZs0lxRbbCpvo1kcUw",
      "alg": "ES256"
    }
  ]
}
hint_type
login_hint
hint_value
patrick
2021-02-09 15:40:05 SUCCESS
ValidateClientJWKsPrivatePart
Valid client JWKs: keys are valid JSON, contain the required fields, the private/public exponents match and are correctly encoded using unpadded base64url
2021-02-09 15:40:05 SUCCESS
ExtractJWKsFromStaticClientConfiguration
Extracted client JWK
client_jwks
{
  "keys": [
    {
      "kty": "EC",
      "d": "QPg1PBy12DhqqGeiuWBoIdhrfbOutP8nfSND46mdTgU",
      "use": "sig",
      "crv": "P-256",
      "kid": "2HKyz2Uc4F8hRcwyuPgA5Eg_salnEe7pfujUkvj2yew",
      "x": "NK3-2enqupOW-PGDSp2X2vrtqFIVnsVMciZdVwa7p8Q",
      "y": "Yrp1yMUYXZcWbHRzsXlH94v2SJZs0lxRbbCpvo1kcUw",
      "alg": "ES256"
    }
  ]
}
public_client_jwks
{
  "keys": [
    {
      "kty": "EC",
      "use": "sig",
      "crv": "P-256",
      "kid": "2HKyz2Uc4F8hRcwyuPgA5Eg_salnEe7pfujUkvj2yew",
      "x": "NK3-2enqupOW-PGDSp2X2vrtqFIVnsVMciZdVwa7p8Q",
      "y": "Yrp1yMUYXZcWbHRzsXlH94v2SJZs0lxRbbCpvo1kcUw",
      "alg": "ES256"
    }
  ]
}
2021-02-09 15:40:05
ValidateMTLSCertificatesHeader
No certificate authority found for MTLS
2021-02-09 15:40:05 SUCCESS
ValidateMTLSCertificatesHeader
MTLS certificates header is valid
2021-02-09 15:40:05
ExtractMTLSCertificatesFromConfiguration
No certificate authority found for MTLS
2021-02-09 15:40:05 SUCCESS
ExtractMTLSCertificatesFromConfiguration
Mutual TLS authentication credentials loaded
cert
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
key
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
2021-02-09 15:40:05 SUCCESS
CheckForKeyIdInClientJWKs
All keys contain kids
2021-02-09 15:40:05 SUCCESS
CheckDistinctKeyIdValueInClientJWKs
Distinct 'kid' value in all keys of client_jwks
see
https://bitbucket.org/openid/connect/issues/1127
2021-02-09 15:40:05 SUCCESS
FAPICheckKeyAlgInClientJWKs
Found a key with alg PS256 or ES256
2021-02-09 15:40:05 SUCCESS
FAPIEnsureMinimumClientKeyLength
Validated minimum key lengths for client_jwks
client_jwks
{
  "keys": [
    {
      "kty": "EC",
      "d": "QPg1PBy12DhqqGeiuWBoIdhrfbOutP8nfSND46mdTgU",
      "use": "sig",
      "crv": "P-256",
      "kid": "2HKyz2Uc4F8hRcwyuPgA5Eg_salnEe7pfujUkvj2yew",
      "x": "NK3-2enqupOW-PGDSp2X2vrtqFIVnsVMciZdVwa7p8Q",
      "y": "Yrp1yMUYXZcWbHRzsXlH94v2SJZs0lxRbbCpvo1kcUw",
      "alg": "ES256"
    }
  ]
}
2021-02-09 15:40:05 SUCCESS
ValidateMTLSCertificatesAsX509
Mutual TLS authentication cert validated as X.509
2021-02-09 15:40:05 SUCCESS
GetResourceEndpointConfiguration
Found a resource endpoint object
resourceUrl
https://emea-conformance.ping-eng.com:3000/get
2021-02-09 15:40:05 SUCCESS
SetProtectedResourceUrlToSingleResourceEndpoint
Set protected resource URL
protected_resource_url
https://emea-conformance.ping-eng.com:3000/get
2021-02-09 15:40:05 SUCCESS
ExtractTLSTestValuesFromResourceConfiguration
Extracted TLS information from resource endpoint
resource_endpoint
{
  "testHost": "emea-conformance.ping-eng.com",
  "testPort": 3000
}
2021-02-09 15:40:05 SUCCESS
ExtractTLSTestValuesFromOBResourceConfiguration
Extracted TLS information from resource endpoint
accounts_resource_endpoint
{
  "testHost": "emea-conformance.ping-eng.com",
  "testPort": 3000
}
accounts_request_endpoint
{
  "testHost": "emea-conformance.ping-eng.com",
  "testPort": 3000
}
2021-02-09 15:40:05
fapi-ciba-id1-ensure-request-object-bad-iss-fails
Setup Done
Call backchannel authentication endpoint
2021-02-09 15:40:05 SUCCESS
CreateEmptyAuthorizationEndpointRequest
Created empty authorization endpoint request
2021-02-09 15:40:05 SUCCESS
AddScopeToAuthorizationEndpointRequest
Added scope of 'openid test' to authorization endpoint request
scope
openid test
2021-02-09 15:40:05 SUCCESS
AddHintToAuthorizationEndpointRequest
Added hint to authorization endpoint request
login_hint
patrick
2021-02-09 15:40:05 SUCCESS
AddBindingMessageToAuthorizationEndpointRequest
Added binding message to authorization endpoint request
binding_message
1234
2021-02-09 15:40:05 SUCCESS
ConvertAuthorizationEndpointRequestToRequestObject
Created request object claims
request_object_claims
{
  "scope": "openid test",
  "login_hint": "patrick",
  "binding_message": "1234"
}
2021-02-09 15:40:05 SUCCESS
AddIatToRequestObject
Added iat to request object claims
iat
1.612885205E9
2021-02-09 15:40:05 SUCCESS
AddExpToRequestObject
Added exp to request object claims
exp
1.612885505E9
2021-02-09 15:40:05 SUCCESS
AddNbfToRequestObject
Added nbf to request object claims
nbf
1.612885205E9
2021-02-09 15:40:05 SUCCESS
AddJtiToRequestObject
Added jti to request object claims
jti
l44EJXtVZwufOzahigYk
2021-02-09 15:40:05 SUCCESS
AddAudToRequestObject
Added aud to request object claims
aud
https://emea-conformance.ping-eng.com:9031
2021-02-09 15:40:05 SUCCESS
AddIssToRequestObject
Added iss to request object claims
iss
conformance3
2021-02-09 15:40:05 SUCCESS
AddBadIssToRequestObject
Added bad iss to request object claims
iss
11111111111
2021-02-09 15:40:05 SUCCESS
SignRequestObject
Signed the request object
claims
{"aud":"https:\/\/emea-conformance.ping-eng.com:9031","login_hint":"patrick","nbf":1612885205,"scope":"openid test","iss":"11111111111","binding_message":"1234","exp":1612885505,"iat":1612885205,"jti":"l44EJXtVZwufOzahigYk"}
header
{"kid":"2HKyz2Uc4F8hRcwyuPgA5Eg_salnEe7pfujUkvj2yew","alg":"ES256"}
request_object
eyJraWQiOiIySEt5ejJVYzRGOGhSY3d5dVBnQTVFZ19zYWxuRWU3cGZ1alVrdmoyeWV3IiwiYWxnIjoiRVMyNTYifQ.eyJhdWQiOiJodHRwczpcL1wvZW1lYS1jb25mb3JtYW5jZS5waW5nLWVuZy5jb206OTAzMSIsImxvZ2luX2hpbnQiOiJwYXRyaWNrIiwibmJmIjoxNjEyODg1MjA1LCJzY29wZSI6Im9wZW5pZCB0ZXN0IiwiaXNzIjoiMTExMTExMTExMTEiLCJiaW5kaW5nX21lc3NhZ2UiOiIxMjM0IiwiZXhwIjoxNjEyODg1NTA1LCJpYXQiOjE2MTI4ODUyMDUsImp0aSI6Imw0NEVKWHRWWnd1Zk96YWhpZ1lrIn0.BtFDzNjgwKc9uh8iAvkX8tON2pFE7WVE0BDuNfzvn2BgiMEYlLS9s41cqg2LHXwHP5CsZr0BaFX_tpOfuiRCsg
key
{"kty":"EC","d":"QPg1PBy12DhqqGeiuWBoIdhrfbOutP8nfSND46mdTgU","use":"sig","crv":"P-256","kid":"2HKyz2Uc4F8hRcwyuPgA5Eg_salnEe7pfujUkvj2yew","x":"NK3-2enqupOW-PGDSp2X2vrtqFIVnsVMciZdVwa7p8Q","y":"Yrp1yMUYXZcWbHRzsXlH94v2SJZs0lxRbbCpvo1kcUw","alg":"ES256"}
2021-02-09 15:40:05 SUCCESS
CreateBackchannelAuthenticationEndpointRequest
Created backchannel authentication endpoint request
2021-02-09 15:40:05
AddRequestToBackchannelAuthenticationEndpointRequest
request
eyJraWQiOiIySEt5ejJVYzRGOGhSY3d5dVBnQTVFZ19zYWxuRWU3cGZ1alVrdmoyeWV3IiwiYWxnIjoiRVMyNTYifQ.eyJhdWQiOiJodHRwczpcL1wvZW1lYS1jb25mb3JtYW5jZS5waW5nLWVuZy5jb206OTAzMSIsImxvZ2luX2hpbnQiOiJwYXRyaWNrIiwibmJmIjoxNjEyODg1MjA1LCJzY29wZSI6Im9wZW5pZCB0ZXN0IiwiaXNzIjoiMTExMTExMTExMTEiLCJiaW5kaW5nX21lc3NhZ2UiOiIxMjM0IiwiZXhwIjoxNjEyODg1NTA1LCJpYXQiOjE2MTI4ODUyMDUsImp0aSI6Imw0NEVKWHRWWnd1Zk96YWhpZ1lrIn0.BtFDzNjgwKc9uh8iAvkX8tON2pFE7WVE0BDuNfzvn2BgiMEYlLS9s41cqg2LHXwHP5CsZr0BaFX_tpOfuiRCsg
2021-02-09 15:40:05 SUCCESS
CreateClientAuthenticationAssertionClaims
Created client assertion claims
iss
conformance3
sub
conformance3
aud
https://emea-conformance.ping-eng.com:9032/as/token.oauth2
jti
Ckuh0LUdVphPGaeCm9y9
iat
1612885205
exp
1612885265
2021-02-09 15:40:05 SUCCESS
SetClientAuthenticationAudToBackchannelAuthenticationEndpoint
Add backchannel_authentication_endpoint as aud value to client_assertion_claims
iss
conformance3
sub
conformance3
aud
https://emea-conformance.ping-eng.com:9031/as/bc-auth.ciba
jti
Ckuh0LUdVphPGaeCm9y9
iat
1612885205
exp
1612885265
2021-02-09 15:40:05 SUCCESS
SignClientAuthenticationAssertion
Signed the client assertion
client_assertion
eyJraWQiOiIySEt5ejJVYzRGOGhSY3d5dVBnQTVFZ19zYWxuRWU3cGZ1alVrdmoyeWV3IiwiYWxnIjoiRVMyNTYifQ.eyJzdWIiOiJjb25mb3JtYW5jZTMiLCJhdWQiOiJodHRwczpcL1wvZW1lYS1jb25mb3JtYW5jZS5waW5nLWVuZy5jb206OTAzMVwvYXNcL2JjLWF1dGguY2liYSIsImlzcyI6ImNvbmZvcm1hbmNlMyIsImV4cCI6MTYxMjg4NTI2NSwiaWF0IjoxNjEyODg1MjA1LCJqdGkiOiJDa3VoMExVZFZwaFBHYWVDbTl5OSJ9.BQdhCTzNMs8lQRwf-wuxi5Oa8eRqPxU9X7c3ICbA8elEvdg-7oJA1juLHWqfUGlCxE1Fef-876JNdCXJUz0sxQ
2021-02-09 15:40:05
AddClientAssertionToBackchannelAuthenticationEndpoint
Added client assertion
request
eyJraWQiOiIySEt5ejJVYzRGOGhSY3d5dVBnQTVFZ19zYWxuRWU3cGZ1alVrdmoyeWV3IiwiYWxnIjoiRVMyNTYifQ.eyJhdWQiOiJodHRwczpcL1wvZW1lYS1jb25mb3JtYW5jZS5waW5nLWVuZy5jb206OTAzMSIsImxvZ2luX2hpbnQiOiJwYXRyaWNrIiwibmJmIjoxNjEyODg1MjA1LCJzY29wZSI6Im9wZW5pZCB0ZXN0IiwiaXNzIjoiMTExMTExMTExMTEiLCJiaW5kaW5nX21lc3NhZ2UiOiIxMjM0IiwiZXhwIjoxNjEyODg1NTA1LCJpYXQiOjE2MTI4ODUyMDUsImp0aSI6Imw0NEVKWHRWWnd1Zk96YWhpZ1lrIn0.BtFDzNjgwKc9uh8iAvkX8tON2pFE7WVE0BDuNfzvn2BgiMEYlLS9s41cqg2LHXwHP5CsZr0BaFX_tpOfuiRCsg
client_assertion
eyJraWQiOiIySEt5ejJVYzRGOGhSY3d5dVBnQTVFZ19zYWxuRWU3cGZ1alVrdmoyeWV3IiwiYWxnIjoiRVMyNTYifQ.eyJzdWIiOiJjb25mb3JtYW5jZTMiLCJhdWQiOiJodHRwczpcL1wvZW1lYS1jb25mb3JtYW5jZS5waW5nLWVuZy5jb206OTAzMVwvYXNcL2JjLWF1dGguY2liYSIsImlzcyI6ImNvbmZvcm1hbmNlMyIsImV4cCI6MTYxMjg4NTI2NSwiaWF0IjoxNjEyODg1MjA1LCJqdGkiOiJDa3VoMExVZFZwaFBHYWVDbTl5OSJ9.BQdhCTzNMs8lQRwf-wuxi5Oa8eRqPxU9X7c3ICbA8elEvdg-7oJA1juLHWqfUGlCxE1Fef-876JNdCXJUz0sxQ
client_assertion_type
urn:ietf:params:oauth:client-assertion-type:jwt-bearer
2021-02-09 15:40:05
CallBackchannelAuthenticationEndpoint
HTTP request
request_uri
https://emea-conformance.ping-eng.com:9031/as/bc-auth.ciba
request_method
POST
request_headers
{
  "accept": "application/json;charset\u003dUTF-8",
  "accept-charset": "utf-8",
  "content-type": "application/x-www-form-urlencoded;charset\u003dUTF-8",
  "content-length": "1004"
}
request_body
request=eyJraWQiOiIySEt5ejJVYzRGOGhSY3d5dVBnQTVFZ19zYWxuRWU3cGZ1alVrdmoyeWV3IiwiYWxnIjoiRVMyNTYifQ.eyJhdWQiOiJodHRwczpcL1wvZW1lYS1jb25mb3JtYW5jZS5waW5nLWVuZy5jb206OTAzMSIsImxvZ2luX2hpbnQiOiJwYXRyaWNrIiwibmJmIjoxNjEyODg1MjA1LCJzY29wZSI6Im9wZW5pZCB0ZXN0IiwiaXNzIjoiMTExMTExMTExMTEiLCJiaW5kaW5nX21lc3NhZ2UiOiIxMjM0IiwiZXhwIjoxNjEyODg1NTA1LCJpYXQiOjE2MTI4ODUyMDUsImp0aSI6Imw0NEVKWHRWWnd1Zk96YWhpZ1lrIn0.BtFDzNjgwKc9uh8iAvkX8tON2pFE7WVE0BDuNfzvn2BgiMEYlLS9s41cqg2LHXwHP5CsZr0BaFX_tpOfuiRCsg&client_assertion=eyJraWQiOiIySEt5ejJVYzRGOGhSY3d5dVBnQTVFZ19zYWxuRWU3cGZ1alVrdmoyeWV3IiwiYWxnIjoiRVMyNTYifQ.eyJzdWIiOiJjb25mb3JtYW5jZTMiLCJhdWQiOiJodHRwczpcL1wvZW1lYS1jb25mb3JtYW5jZS5waW5nLWVuZy5jb206OTAzMVwvYXNcL2JjLWF1dGguY2liYSIsImlzcyI6ImNvbmZvcm1hbmNlMyIsImV4cCI6MTYxMjg4NTI2NSwiaWF0IjoxNjEyODg1MjA1LCJqdGkiOiJDa3VoMExVZFZwaFBHYWVDbTl5OSJ9.BQdhCTzNMs8lQRwf-wuxi5Oa8eRqPxU9X7c3ICbA8elEvdg-7oJA1juLHWqfUGlCxE1Fef-876JNdCXJUz0sxQ&client_assertion_type=urn%3Aietf%3Aparams%3Aoauth%3Aclient-assertion-type%3Ajwt-bearer
request_mutual_tls
{
  "cert": "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",
  "key": "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"
}
2021-02-09 15:40:06 RESPONSE
CallBackchannelAuthenticationEndpoint
HTTP response
response_status_code
400 BAD_REQUEST
response_status_text
Bad Request
response_headers
{
  "date": "Tue, 09 Feb 2021 15:40:05 GMT",
  "x-frame-options": "SAMEORIGIN",
  "referrer-policy": "origin",
  "cache-control": "no-cache, no-store",
  "pragma": "no-cache",
  "expires": "Thu, 01 Jan 1970 00:00:00 GMT",
  "content-type": "application/json;charset\u003dutf-8",
  "set-cookie": "PF\u003d9buIPjIjxFrUPB9waOgEDF;Path\u003d/;Secure;HttpOnly;SameSite\u003dNone",
  "transfer-encoding": "chunked"
}
response_body
{"error_description":"JWT (claims->{aud:https://emea-conformance.ping-eng.com:9031,login_hint:patrick,nbf:1612885205,scope:openid test,iss:11111111111,binding_message:1234,exp:1612885505,iat:1612885205,jti:l44EJXtVZwufOzahigYk}) rejected due to invalid claims or other invalid content. Additional details: [[12] Issuer (iss) claim value (11111111111) doesn't match expected value of conformance3]","error":"invalid_request"}
2021-02-09 15:40:06
CallBackchannelAuthenticationEndpoint
Backchannel Authentication endpoint response
backchannel_authentication_endpoint_response
{"error_description":"JWT (claims->{aud:https://emea-conformance.ping-eng.com:9031,login_hint:patrick,nbf:1612885205,scope:openid test,iss:11111111111,binding_message:1234,exp:1612885505,iat:1612885205,jti:l44EJXtVZwufOzahigYk}) rejected due to invalid claims or other invalid content. Additional details: [[12] Issuer (iss) claim value (11111111111) doesn't match expected value of conformance3]","error":"invalid_request"}
2021-02-09 15:40:06 SUCCESS
CallBackchannelAuthenticationEndpoint
Parsed backchannel authentication endpoint response
error_description
JWT (claims->{aud:https://emea-conformance.ping-eng.com:9031,login_hint:patrick,nbf:1612885205,scope:openid test,iss:11111111111,binding_message:1234,exp:1612885505,iat:1612885205,jti:l44EJXtVZwufOzahigYk}) rejected due to invalid claims or other invalid content. Additional details: [[12] Issuer (iss) claim value (11111111111) doesn't match expected value of conformance3]
error
invalid_request
2021-02-09 15:40:06 SUCCESS
ValidateErrorResponseFromBackchannelAuthenticationEndpoint
error response includes only expected parameters
error_description
JWT (claims->{aud:https://emea-conformance.ping-eng.com:9031,login_hint:patrick,nbf:1612885205,scope:openid test,iss:11111111111,binding_message:1234,exp:1612885505,iat:1612885205,jti:l44EJXtVZwufOzahigYk}) rejected due to invalid claims or other invalid content. Additional details: [[12] Issuer (iss) claim value (11111111111) doesn't match expected value of conformance3]
error
invalid_request
2021-02-09 15:40:06 SUCCESS
ValidateErrorUriFromBackchannelAuthenticationEndpoint
backchannel_authentication_endpoint_response did not include optional 'error_uri' field
2021-02-09 15:40:06 SUCCESS
CheckErrorDescriptionFromBackchannelAuthenticationEndpointContainsCRLFTAB
backchannel_authentication_endpoint_response 'error_description' field does not include CR/LF/TAB
error_description
JWT (claims->{aud:https://emea-conformance.ping-eng.com:9031,login_hint:patrick,nbf:1612885205,scope:openid test,iss:11111111111,binding_message:1234,exp:1612885505,iat:1612885205,jti:l44EJXtVZwufOzahigYk}) rejected due to invalid claims or other invalid content. Additional details: [[12] Issuer (iss) claim value (11111111111) doesn't match expected value of conformance3]
2021-02-09 15:40:06 SUCCESS
ValidateErrorDescriptionFromBackchannelAuthenticationEndpoint
backchannel_authentication_endpoint_response error returned valid 'error_description' field
error_description
JWT (claims->{aud:https://emea-conformance.ping-eng.com:9031,login_hint:patrick,nbf:1612885205,scope:openid test,iss:11111111111,binding_message:1234,exp:1612885505,iat:1612885205,jti:l44EJXtVZwufOzahigYk}) rejected due to invalid claims or other invalid content. Additional details: [[12] Issuer (iss) claim value (11111111111) doesn't match expected value of conformance3]
2021-02-09 15:40:06 SUCCESS
CheckBackchannelAuthenticationEndpointHttpStatus400
Backchannel authentication endpoint http status code was 400
2021-02-09 15:40:06 SUCCESS
CheckErrorFromBackchannelAuthenticationEndpointErrorInvalidRequest
Token Endpoint response error returned expected 'error' of 'invalid_request'
error
invalid_request
2021-02-09 15:40:06 FINISHED
fapi-ciba-id1-ensure-request-object-bad-iss-fails
Test has run to completion
testmodule_result
PASSED
Unregister dynamically registered client
2021-02-09 15:40:06 INFO
UnregisterDynamicallyRegisteredClient
Skipped evaluation due to missing required string: registration_client_uri
expected
registration_client_uri
2021-02-09 15:40:08
TEST-RUNNER
Alias has now been claimed by another test
alias
robotto-internal-2
new_test_id
02eI3tjXIrBbVUC
Test Results